Malware Analysis Report

2025-01-18 22:26

Sample ID 240501-tws43aba9t
Target WebsitePing.bat
SHA256 4d49f0484b1ac88af0613235b6281cc59ad92181146c767033a0d2f9a9c9f2c0
Tags
adware discovery persistence spyware stealer
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

4d49f0484b1ac88af0613235b6281cc59ad92181146c767033a0d2f9a9c9f2c0

Threat Level: Likely malicious

The file WebsitePing.bat was found to be: Likely malicious.

Malicious Activity Summary

adware discovery persistence spyware stealer

Sets file execution options in registry

Downloads MZ/PE file

Modifies Installed Components in the registry

Drops file in Drivers directory

Loads dropped DLL

Checks computer location settings

Reads user/profile data of web browsers

Executes dropped EXE

Modifies system executable filetype association

Registers COM server for autorun

Adds Run key to start application

Legitimate hosting services abused for malware hosting/C2

Checks installed software on the system

Installs/modifies Browser Helper Object

Suspicious use of NtSetInformationThreadHideFromDebugger

Checks system information in the registry

Suspicious use of NtCreateThreadExHideFromDebugger

Drops file in System32 directory

Drops file in Program Files directory

Enumerates physical storage devices

Suspicious behavior: GetForegroundWindowSpam

Suspicious use of SetWindowsHookEx

Opens file in notepad (likely ransom note)

Suspicious use of FindShellTrayWindow

Uses Task Scheduler COM API

Enumerates system info in registry

Suspicious use of WriteProcessMemory

Modifies data under HKEY_USERS

Delays execution with timeout.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Modifies Internet Explorer settings

Suspicious behavior: EnumeratesProcesses

System policy modification

Suspicious use of UnmapMainImage

Suspicious use of SendNotifyMessage

Modifies registry class

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-01 16:24

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-01 16:24

Reported

2024-05-01 17:12

Platform

win10v2004-20240426-en

Max time kernel

2700s

Max time network

2620s

Command Line

C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\WebsitePing.bat"

Signatures

Downloads MZ/PE file

Drops file in Drivers directory

Description Indicator Process Target
File created C:\Windows\system32\drivers\CisUtMonitor.sys C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
File opened for modification C:\Windows\system32\drivers\CisUtMonitor.sys C:\Program Files\Uninstall Tool\UninstallTool.exe N/A

Modifies Installed Components in the registry

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Sets file execution options in registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Temp\_iu14D2N.tmp N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000\Control Panel\International\Geo\Nation C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\MicrosoftEdge_X64_124.0.2478.67.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\7zO8E17C311\Setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallToolHelper.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FC3E52E2-311A-40B4-BF75-64D7F9BF5C2B}\BGAUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\MicrosoftEdge_X64_124.0.2478.67.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\elevation_service.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\uninstall.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\_iu14D2N.tmp N/A
N/A N/A C:\Users\Admin\Desktop\Uninstall_Tool_3.7.1.5699\uninstalltool_setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2E2P9.tmp\uninstalltool_setup.tmp N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Windows\system32\regsvr32.exe N/A
N/A N/A C:\Windows\SysWOW64\regsvr32.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A N/A N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Windows\SysWOW64\regsvr32.exe N/A
N/A N/A C:\Windows\system32\regsvr32.exe N/A

Modifies system executable filetype association

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\exefile\shellex\ContextMenuHandlers\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C} C:\Windows\SysWOW64\regsvr32.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\exefile\shellex\ContextMenuHandlers\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C}\ = "UTShellExt" C:\Windows\SysWOW64\regsvr32.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\exefile\shellex\ContextMenuHandlers\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C} C:\Windows\SysWOW64\regsvr32.exe N/A

Reads user/profile data of web browsers

spyware stealer

Registers COM server for autorun

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C}\InProcServer32\ = "C:\\Program Files\\Uninstall Tool\\utshellext.dll" C:\Windows\system32\regsvr32.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C}\InProcServer32 C:\Windows\system32\regsvr32.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{FE8E6AD6-DABE-45E1-88C2-48DC4578924C}\InProcServer32\ThreadingModel = "Apartment" C:\Windows\system32\regsvr32.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO\\ie_to_edge_bho_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\PdfPreview\\PdfPreviewHandler.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=37B279C53CBB49F4A8794BD7AAD1E9D4" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FC3E52E2-311A-40B4-BF75-64D7F9BF5C2B}\BGAUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\msedge_cleanup_{56EB18F8-B008-4CBD-B6D2-8C97FE7E9062} = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --msedge --channel=stable --delete-old-versions --system-level --verbose-logging --on-logon" C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A

Checks installed software on the system

discovery

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A camo.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A
N/A drive.google.com N/A N/A
N/A drive.google.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A camo.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\gl.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\hu.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_te.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\ko.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\qu.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_ml.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\pt-PT.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Trust Protection Lists\Mu\Analytics C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Trust Protection Lists\Mu\Social C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\zh-CN.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\augloop_client.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_pl.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\hr.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\lv.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_fa.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\am.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\show_third_party_software_licenses.bat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Trust Protection Lists\Mu\Content C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\kk.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Trust Protection Lists\Sigma\Analytics C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\mt.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\uk.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_hu.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Notifications\SoftLandingAssetLight.gif C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\ne.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\identity_proxy\win10\identity_helper.Sparse.Beta.msix C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\sl.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_ka.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_sk.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\sk.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\VisualElements\LogoBeta.png C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files\Uninstall Tool\is-DSBST.tmp C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\lo.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\notification_helper.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\elevation_service.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_nb.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\augloop_client.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\edge_feedback\mf_trace.wprp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\BHO\ie_to_edge_stub.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\msedgeupdateres_kk.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\ms.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\fa.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdate.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_kn.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\nl.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{56EB18F8-B008-4CBD-B6D2-8C97FE7E9062}\124.0.2478.67\MicrosoftEdge_X64_124.0.2478.67.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\WidevineCdm\manifest.json C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\nb.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\qu.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\sr-Cyrl-BA.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\identity_proxy\win10\identity_helper.Sparse.Stable.msix C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\identity_proxy\dev.identity_helper.exe.manifest C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\sl.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_pa.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\identity_proxy\dev.identity_helper.exe.manifest C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Trust Protection Lists\Sigma\Analytics C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_lb.dll C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\sv.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\el.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\Locales\he.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\msedge_200_percent.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\tr.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Enumerates physical storage devices

Delays execution with timeout.exe

evasion
Description Indicator Process Target
N/A N/A C:\Windows\system32\timeout.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\RestartManager\Session0000\RegFiles0000 = 43003a005c00500072006f006700720061006d002000460069006c00650073002000280078003800360029005c004d006900630072006f0073006f00660074005c0045006400670065005c004100700070006c00690063006100740069006f006e005c00390032002e0030002e003900300032002e00360037005c006d00730065006400670065005f0065006c0066002e0064006c006c0000000000 C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\RestartManager\Session0000\RegFilesHash = c643772c8262670bdbd37a82482fc7dcfb46a1bbb2e59a6d7741fa4ac2c25775 C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\USER\.DEFAULT\Software\Microsoft\RestartManager\Session0000 C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133590545182906185" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\RestartManager\Session0000\SessionHash = 732553e29645ec19d7179efccb58445ba066f2bf02e5343f05f90ade4089abc0 C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge\InstallerPinned = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ = "IPolicyStatusValue" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\.dmg\ = "7-Zip.dmg" C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.xar\DefaultIcon C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.gzip\DefaultIcon C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5F6A18BB-6231-424B-8242-19E5BB94F8ED}\ProgID\ = "MicrosoftEdgeUpdate.CredentialDialogMachine.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC}\NumMethods\ = "7" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4}\ProgID\ = "MicrosoftEdgeUpdate.PolicyStatusMachineFallback.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ = "IPolicyStatus" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.tbz2\DefaultIcon C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9F3F5F5D-721A-4B19-9B5D-69F664C1A591}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.PolicyStatusSvc" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine\ = "Microsoft Edge Update Broker Class Factory" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\ie_to_edge_bho.IEToEdgeBHO C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{60355531-5BFD-45AB-942C-7912628752C7}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.gzip\DefaultIcon\ = "C:\\Program Files\\7-Zip\\7z.dll,14" C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\.squashfs C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\roblox-player\shell\open\command C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.cab\shell\open C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.tpz\shell\open\command\ = "\"C:\\Program Files\\7-Zip\\7zFM.exe\" \"%1\"" C:\Program Files\7-Zip\7zFM.exe N/A
Key deleted \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\roblox\shell\open C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\NumMethods\ = "24" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.001\shell\ C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.rpm\shell\open C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\ = "IJobObserver2" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\.swm C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.gz C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-711569230-3659488422-571408806-1000_Classes\7-Zip.ntfs\shell\open\ C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.xar\shell C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.squashfs\shell C:\Program Files\7-Zip\7zFM.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{2E1DD7EF-C12D-4F8E-8AD8-CF8CC265BAD0}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\msedgeupdate.dll,-3000" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.rar C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\7-Zip.lzh\shell\open\ C:\Program Files\7-Zip\7zFM.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ = "IGoogleUpdate3WebSecurity" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{2E1DD7EF-C12D-4F8E-8AD8-CF8CC265BAD0}\LOCALSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback\CurVer\ = "MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\NumMethods\ = "24" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\ = "IAppCommandWeb" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Opens file in notepad (likely ransom note)

ransomware
Description Indicator Process Target
N/A N/A C:\Windows\system32\NOTEPAD.EXE N/A
N/A N/A C:\Windows\system32\NOTEPAD.EXE N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe N/A
N/A N/A C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Program Files\Uninstall Tool\UninstallTool.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3900 wrote to memory of 2792 N/A C:\Windows\system32\cmd.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3900 wrote to memory of 2792 N/A C:\Windows\system32\cmd.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3432 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3352 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 3352 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2792 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe N/A

Uses Task Scheduler COM API

persistence

Processes

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\WebsitePing.bat"

C:\Program Files\Google\Chrome\Application\chrome.exe

chrome.exe bloxstrap.org

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffb5590ab58,0x7ffb5590ab68,0x7ffb5590ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1708 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2188 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2968 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2976 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4372 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3316 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4328 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4832 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4980 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5108 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5024 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4724 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5244 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4340 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3252 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4720 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=2964 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3052 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3260 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5196 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5468 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5432 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe

"C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2716 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:2

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

"C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe" /silent /install

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MzJBQkE0RkYtQTM0QS00RTM1LTk5MkEtNTk4RTFEOTVEOEUxfSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCMkM0Qzg0Ny05RDk0LTRFRUEtQkEzRi00NjFDRURDRUU4MkJ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE4NS4yOSIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc3MDE0MTY1MTEiIGluc3RhbGxfdGltZV9tcz0iNTQ3Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{32ABA4FF-A34A-4E35-992A-598E1D95D8E1}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MzJBQkE0RkYtQTM0QS00RTM1LTk5MkEtNTk4RTFEOTVEOEUxfSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntDMEZERDNERi1FQkQ0LTRDQUUtOEZGNS1GRjUzQTc4NTE2NDd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc3MDY1NzMwMzIiLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=1640 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=2432 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5152 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2388 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=848 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\MicrosoftEdge_X64_124.0.2478.67.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{A1C1D2CD-1C2B-4E50-B974-7A7E005B38E2}\EDGEMITMP_A03AF.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x23c,0x240,0x244,0x218,0x248,0x7ff777d988c0,0x7ff777d988cc,0x7ff777d988d8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4828 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MzJBQkE0RkYtQTM0QS00RTM1LTk5MkEtNTk4RTFEOTVEOEUxfSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InswOUIxQzBGQy03NTQwLTQyMUQtQjY1MC0wRTY0NDZBNDg2NEV9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMTI0LjAuMjQ3OC42NyIgbGFuZz0iIiBicmFuZD0iIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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_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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMTk2NzU3IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI4NTk0NDYzMDk1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiB1cGRhdGVfY2hlY2tfdGltZV9tcz0iMzkxIiBkb3dubG9hZF90aW1lX21zPSI0MzkzOCIgZG93bmxvYWRlZD0iMTcyNzIzNzY4IiB0b3RhbD0iMTcyNzIzNzY4IiBwYWNrYWdlX2NhY2hlX3Jlc3VsdD0iMCIgaW5zdGFsbF90aW1lX21zPSI0MjU3MiIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" --app -channel production

C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe

"C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe" -menu

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://github.com/pizzaboxer/bloxstrap/wiki

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffb3d1446f8,0x7ffb3d144708,0x7ffb3d144718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2136 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2384 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2720 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3472 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3480 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5136 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5136 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5412 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5676 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5636 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5368 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5832 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5404 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5620 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3576 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5328 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x534 0x538

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5560 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=4184 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3252 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1612 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=5668 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=5592 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2148,15905219186343676689,748925239559892691,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3168 /prefetch:2

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5372 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5164 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3252 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe"

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Downloads\UninstallTool.7z"

C:\Users\Admin\AppData\Local\Temp\7zO8E17C311\Setup.exe

"C:\Users\Admin\AppData\Local\Temp\7zO8E17C311\Setup.exe"

C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp

"C:\Users\Admin\AppData\Local\Temp\is-2A7RR.tmp\Setup.tmp" /SL5="$1402D8,5217119,205824,C:\Users\Admin\AppData\Local\Temp\7zO8E17C311\Setup.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B3D68F3B-D569-477D-8FB5-5817C3465474}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe" /update /sessionid "{51E1B67A-6081-4477-B23B-38FD17EDBF35}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NTFFMUI2N0EtNjA4MS00NDc3LUIyM0ItMzhGRDE3RURCRjM1fSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntEQUFBRkM0OC1GNEFDLTQ4MTYtOUFBMi1BMjk5QjA4MzI5RkJ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7c0c5REo2TTNmWmtQN0NFTFdHbkR4Qyt3YVJhUUV1RUx2TElmWGsvTUF0Yz0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE3MS4zOSIgbmV4dHZlcnNpb249IjEuMy4xODUuMjkiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBleHBlcmltZW50cz0iSXNPbkludGVydmFsQ29tbWFuZHNBbGxvd2VkPS10YXJnZXRfZGV2IiBpbnN0YWxsYWdlPSI0Ij48dXBkYXRlY2hlY2svPjxldmVudCBldmVudHR5cGU9IjEyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMDk4OTUwNjU1NyIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjEzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMDk4OTYzNjYwMiIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjE0IiBldmVudHJlc3VsdD0iMCIgZXJyb3Jjb2RlPSItMjE0NzAyMzgzOCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTEyMTc5NzE5NTQiIHNvdXJjZV91cmxfaW5kZXg9IjAiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIGRvd25sb2FkZXI9ImRvIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy83MmVkODA4Ny1lZTk4LTQyOWMtOTMzMC1jYTNjMTkzZDQxYWY_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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMjE3OTcxOTU0IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMjIzMTI4NzAwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PHBpbmcgcj0iNSIgcmQ9IjYzMjUiIHBpbmdfZnJlc2huZXNzPSJ7QzIyMTMwREMtQ0QwQi00NkQ0LUI2RDMtRTcwMTg3NjNBMzFGfSIvPjwvYXBwPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI5Mi4wLjkwMi42NyIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBpbnN0YWxsYWdlPSI0IiBsYXN0X2xhdW5jaF90aW1lPSIxMzM1OTA1NDk1NDU0NzY5NjAiPjx1cGRhdGVjaGVjay8-PHBpbmcgYWN0aXZlPSIxIiBhPSItMSIgcj0iNSIgYWQ9Ii0xIiByZD0iNjMyNSIgcGluZ19mcmVzaG5lc3M9Ins1OTgwRjg0Qi1BNDFDLTRDMUEtQTlDMC00MzAyQkYzQTA0MTJ9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNC4wLjI0NzguNjciIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZT0iNjMyOCI-PHVwZGF0ZWNoZWNrLz48cGluZyByPSItMSIgcmQ9Ii0xIiBwaW5nX2ZyZXNobmVzcz0iezY4MEZDODNFLTBEODUtNDcwQy1BOTQxLUVBNDlEMEQzM0JGMX0iLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU728F.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{51E1B67A-6081-4477-B23B-38FD17EDBF35}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTg1LjI5IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iNCIgaW5zdGFsbGRhdGV0aW1lPSIxNzE0MTYwMDgxIj48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTIzMjk3MjA4MSIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Windows\system32\regsvr32.exe

"C:\Windows\system32\regsvr32.exe" /s "C:\Program Files\Uninstall Tool\utshellext.dll"

C:\Windows\system32\regsvr32.exe

"C:\Windows\system32\regsvr32.exe" /s "C:\Program Files\Uninstall Tool\utshellext_x86.dll"

C:\Windows\SysWOW64\regsvr32.exe

/s "C:\Program Files\Uninstall Tool\utshellext_x86.dll"

C:\Program Files\Uninstall Tool\UninstallTool.exe

"C:\Program Files\Uninstall Tool\UninstallTool.exe" /install_service_silent

C:\Program Files\Uninstall Tool\UninstallTool.exe

"C:\Program Files\Uninstall Tool\UninstallTool.exe" /add_control_panel_icon

C:\Program Files\Uninstall Tool\UninstallTool.exe

"C:\Program Files\Uninstall Tool\UninstallTool.exe" /init

C:\Program Files\Uninstall Tool\UninstallTool.exe

"C:\Program Files\Uninstall Tool\UninstallTool.exe"

C:\Program Files\Uninstall Tool\UninstallToolHelper.exe

"C:\Program Files\Uninstall Tool\UninstallToolHelper.exe" /pid:7232

C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe

"C:\Users\Admin\Desktop\Bloxstrap\Bloxstrap.exe" -uninstall

C:\Windows\System32\cmd.exe

"C:\Windows\System32\cmd.exe" /c timeout 5 && del /Q "C:\Users\Admin\Desktop\Bloxstrap\*" && rmdir "C:\Users\Admin\Desktop\Bloxstrap"

C:\Windows\system32\timeout.exe

timeout 5

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=3940 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=4932 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5704 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1476 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=5784 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=3520 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=2952 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x534 0x538

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4956 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=3976 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe

"C:\Users\Admin\Downloads\Bloxstrap-v2.5.4.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0iezhBNjlEMzQ1LUQ1NjQtNDYzYy1BRkYxLUE2OUQ5RTUzMEY5Nn0iIHZlcnNpb249IjExMC4wLjU0ODEuMTA0IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSI1IiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTQxMzU4OTQiIG9vYmVfaW5zdGFsbF90aW1lPSIxMzM1ODYzMzY4MTAwMDAwMDAiPjxldmVudCBldmVudHR5cGU9IjMxIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIyMTE0MDY4IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDIyNTEyMjQ4MyIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FC3E52E2-311A-40B4-BF75-64D7F9BF5C2B}\BGAUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FC3E52E2-311A-40B4-BF75-64D7F9BF5C2B}\BGAUpdate.exe" --edgeupdate-client --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RkUzNjQ0QkUtMzM5Qi00RkU0LTk1QzItQjhERjkyMThEMTIyfSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntDNzIxQTczMi0yNjg0LTRGOEYtODRDRC0yQjYzQkZCRkRDQjl9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7MUZBQjhDRkUtOTg2MC00MTVDLUE2Q0EtQUE3RDEyMDIxOTQwfSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMi4wLjAuMzQiIGxhbmc9IiIgYnJhbmQ9IkVVRkkiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSIgaW5zdGFsbGFnZT0iLTEiIGluc3RhbGxkYXRlPSItMSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDIzOTM0ODU4MSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE0MjM5NTA4NDk2IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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_UDE9MTcxNTE4NjYyOSZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1NUDZJNiUyZlF6dGpwV2YlMmJIbzBOU1h6OVExaWNOJTJmTyUyZjFZQVprQm9UaDMlMmJ4eWYyVG1MUGJMJTJmS056ZlprSk1tMWZyM2FRc0hucWNWbDd5aHNNTXNBcU81QSUzZCUzZCIgc2VydmVyX2lwX2hpbnQ9IiIgY2RuX2NpZD0iLTEiIGNkbl9jY2M9IiIgY2RuX21zZWRnZV9yZWY9IiIgY2RuX2F6dXJlX3JlZl9vcmlnaW5fc2hpZWxkPSIiIGNkbl9jYWNoZT0iIiBjZG5fcDNwPSIiIGRvd25sb2FkZWQ9IjE4MDQ0NDQ4IiB0b3RhbD0iMTgwNDQ0NDgiIGRvd25sb2FkX3RpbWVfbXM9IjI2NzA1Ii8-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\MicrosoftEdge_X64_124.0.2478.67.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0xe8,0xe4,0xf0,0xdc,0xec,0x7ff7d72c88c0,0x7ff7d72c88cc,0x7ff7d72c88d8

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff7d72c88c0,0x7ff7d72c88cc,0x7ff7d72c88d8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7OTZCOTUxQkItMjA1MS00RDAwLUE5MTUtREY5MTM4MEUzRDFCfSIgdXNlcmlkPSJ7RTVCMzk0MkMtNDRCQy00QkYxLThFMEItQTI1MTdERTU0QTcwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins3OTA1N0ZEQi03QzBELTQzMjQtQTg0Qi0zQTA2NDBGNkE0MjN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-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-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMzMCIgcGluZ19mcmVzaG5lc3M9InsyRjEzREU2MC04OTJELTQ2REYtQUVBRS03MUNGOTI2RTUyNzF9Ii8-PC9hcHA-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-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjMzMCIgcGluZ19mcmVzaG5lc3M9IntEMDMxMTFFMy1CRjYzLTQ4MEUtOEJFNi1EMzlERTZGNTkxRDF9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNC4wLjI0NzguNjciIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZT0iNjMyOCIgY29ob3J0PSJycmZAMC44NiI-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjMzMCIgcGluZ19mcmVzaG5lc3M9Ins3Q0EyNTkxRC1EN0NDLTREMDUtQTNBRS1ERTVEMzE3MDBGMkZ9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" --app -channel production

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Bloxstrap\Settings.json

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Bloxstrap\State.json

C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe

"C:\Users\Admin\AppData\Local\Bloxstrap\Bloxstrap.exe"

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe

"C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\RobloxPlayerBeta.exe" --app -channel production

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=5052 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=6128 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6120 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5984 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=6240 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x534 0x538

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6392 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6548 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=5856 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=6600 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7072 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=6888 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=7092 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4648 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=7228 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=6852 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=5652 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=5628 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6312 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=7208 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=5848 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=6848 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=6912 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=6100 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=7344 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=7056 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=6708 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=7128 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=7112 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=7680 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=7840 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=7984 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=8104 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=8252 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=8396 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=8556 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=8588 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=8612 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=9272 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=9428 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=9568 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=9756 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=9900 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=9264 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=10236 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --mojo-platform-channel-handle=9888 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=10056 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=10664 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=7852 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=10408 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=10212 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --mojo-platform-channel-handle=11068 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --mojo-platform-channel-handle=11104 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --mojo-platform-channel-handle=11200 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --mojo-platform-channel-handle=10524 --field-trial-handle=1920,i,2872904900368881393,13864092475608411547,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffb5590ab58,0x7ffb5590ab68,0x7ffb5590ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1744 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2272 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3088 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3092 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4372 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4576 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4252 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4652 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4828 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4824 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\elevation_service.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\elevation_service.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --rename-msedge-exe --system-level --verbose-logging --msedge --channel=stable

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff716d988c0,0x7ff716d988cc,0x7ff716d988d8

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --delete-old-versions --system-level --verbose-logging

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff716d988c0,0x7ff716d988cc,0x7ff716d988d8

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x234,0x238,0x23c,0x210,0x240,0x7ff716d988c0,0x7ff716d988cc,0x7ff716d988d8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5052 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3224 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4920 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2452 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4788 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4548 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=2392 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5428 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5468 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6108 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6232 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4424 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4272 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5064 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\7-Zip\7zFM.exe

"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\Downloads\_Getintopc.com_Uninstall_Tool_3.7.1.5699.rar"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6428 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:2

C:\Program Files\Uninstall Tool\uninstall.exe

"C:\Program Files\Uninstall Tool\uninstall.exe"

C:\Users\Admin\AppData\Local\Temp\_iu14D2N.tmp

"C:\Users\Admin\AppData\Local\Temp\_iu14D2N.tmp" /SECONDPHASE="C:\Program Files\Uninstall Tool\uninstall.exe" /FIRSTPHASEWND=$10452

C:\Windows\system32\regsvr32.exe

"C:\Windows\system32\regsvr32.exe" /u /s "C:\Program Files\Uninstall Tool\utshellext_x86.dll"

C:\Windows\SysWOW64\regsvr32.exe

/u /s "C:\Program Files\Uninstall Tool\utshellext_x86.dll"

C:\Windows\system32\regsvr32.exe

"C:\Windows\system32\regsvr32.exe" /u /s "C:\Program Files\Uninstall Tool\utshellext.dll"

C:\Users\Admin\Desktop\Uninstall_Tool_3.7.1.5699\uninstalltool_setup.exe

"C:\Users\Admin\Desktop\Uninstall_Tool_3.7.1.5699\uninstalltool_setup.exe"

C:\Users\Admin\AppData\Local\Temp\is-2E2P9.tmp\uninstalltool_setup.tmp

"C:\Users\Admin\AppData\Local\Temp\is-2E2P9.tmp\uninstalltool_setup.tmp" /SL5="$B0434,4356272,845824,C:\Users\Admin\Desktop\Uninstall_Tool_3.7.1.5699\uninstalltool_setup.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=2844 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=4176 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6796 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6304 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=6956 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=7164 --field-trial-handle=1948,i,2205997951141623427,10203692784804060736,131072 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
NL 23.62.61.89:443 www.bing.com tcp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 89.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
NL 23.62.61.89:443 www.bing.com tcp
US 8.8.8.8:53 55.36.223.20.in-addr.arpa udp
US 8.8.8.8:53 72.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 18.31.95.13.in-addr.arpa udp
US 8.8.8.8:53 183.59.114.20.in-addr.arpa udp
US 8.8.8.8:53 28.143.109.104.in-addr.arpa udp
US 8.8.8.8:53 bloxstrap.org udp
US 172.67.198.211:80 bloxstrap.org tcp
US 172.67.198.211:80 bloxstrap.org tcp
US 172.67.198.211:443 bloxstrap.org tcp
US 8.8.8.8:53 www.recaptcha.net udp
GB 216.58.201.99:443 www.recaptcha.net tcp
GB 216.58.201.99:443 www.recaptcha.net udp
US 8.8.8.8:53 195.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 211.198.67.172.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 216.58.201.106:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 172.67.198.211:443 bloxstrap.org udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 4.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 227.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 172.217.16.238:443 clients2.google.com tcp
US 8.8.8.8:53 1.80.190.35.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 consent.google.com udp
GB 172.217.16.238:443 consent.google.com tcp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 8.8.8.8:53 github.githubassets.com udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 185.199.108.133:443 avatars.githubusercontent.com tcp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 8.8.8.8:53 camo.githubusercontent.com udp
US 8.8.8.8:53 private-user-images.githubusercontent.com udp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 185.199.108.133:443 private-user-images.githubusercontent.com tcp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 154.108.199.185.in-addr.arpa udp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
GB 216.58.201.106:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 collector.github.com udp
US 140.82.114.22:443 collector.github.com tcp
US 140.82.114.22:443 collector.github.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 140.82.114.22:443 collector.github.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 11.227.111.52.in-addr.arpa udp
US 8.8.8.8:53 252.15.104.51.in-addr.arpa udp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
ES 3.160.231.109:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 233.69.68.104.in-addr.arpa udp
US 8.8.8.8:53 109.231.160.3.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 e2c62.gcp.gvt2.com udp
QA 34.18.10.222:443 e2c62.gcp.gvt2.com tcp
US 8.8.8.8:53 195.18.217.172.in-addr.arpa udp
US 8.8.8.8:53 222.10.18.34.in-addr.arpa udp
US 8.8.8.8:53 setup.rbxcdn.com udp
ES 3.160.231.64:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 64.231.160.3.in-addr.arpa udp
US 8.8.8.8:53 api.github.com udp
US 8.8.8.8:53 collector.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 140.82.112.21:443 collector.github.com tcp
US 8.8.8.8:53 21.112.82.140.in-addr.arpa udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c45.gcp.gvt2.com udp
GB 172.217.16.238:443 consent.google.com udp
CA 35.215.54.231:443 e2c45.gcp.gvt2.com tcp
GB 172.217.16.238:443 consent.google.com tcp
US 8.8.8.8:53 231.54.215.35.in-addr.arpa udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
NL 13.95.26.4:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 4.26.95.13.in-addr.arpa udp
US 8.8.8.8:53 msedge.f.tlu.dl.delivery.mp.microsoft.com udp
NL 104.109.143.163:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 163.143.109.104.in-addr.arpa udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
FR 216.58.213.67:443 beacons.gvt2.com tcp
GB 142.250.178.4:443 www.google.com udp
FR 216.58.213.67:443 beacons.gvt2.com tcp
US 8.8.8.8:53 67.213.58.216.in-addr.arpa udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
US 2.18.190.81:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 81.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 138.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
US 185.199.108.133:443 objects.githubusercontent.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.154:443 github.githubassets.com tcp
US 185.199.108.133:443 objects.githubusercontent.com tcp
US 8.8.8.8:53 collector.github.com udp
US 185.199.108.154:443 github.githubassets.com tcp
US 8.8.8.8:53 api.github.com udp
US 140.82.114.21:443 collector.github.com tcp
US 140.82.114.21:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 21.114.82.140.in-addr.arpa udp
NL 23.62.61.155:443 www.bing.com tcp
NL 23.62.61.155:443 www.bing.com tcp
US 8.8.8.8:53 155.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
NL 23.62.61.155:443 r.bing.com tcp
NL 23.62.61.113:443 r.bing.com tcp
NL 23.62.61.113:443 r.bing.com tcp
NL 23.62.61.155:443 r.bing.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 113.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 login.microsoftonline.com udp
NL 20.190.160.20:443 login.microsoftonline.com tcp
US 8.8.8.8:53 services.bingapis.com udp
US 13.107.5.80:443 services.bingapis.com tcp
US 8.8.8.8:53 20.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 sydney.bing.com udp
NL 23.62.61.171:443 sydney.bing.com tcp
US 8.8.8.8:53 80.5.107.13.in-addr.arpa udp
US 8.8.8.8:53 171.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 167.154.64.172.in-addr.arpa udp
US 8.8.8.8:53 67.31.126.40.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 8.8.8.8:53 tse2.mm.bing.net udp
US 204.79.197.200:443 tse2.mm.bing.net tcp
US 204.79.197.200:443 tse2.mm.bing.net tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 collector.github.com udp
GB 142.250.178.4:443 www.google.com udp
US 140.82.112.21:443 collector.github.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 malwarewatch.org udp
US 172.67.168.207:443 malwarewatch.org tcp
US 172.67.168.207:443 malwarewatch.org tcp
US 172.67.168.207:443 malwarewatch.org udp
US 8.8.8.8:53 unpkg.com udp
US 104.17.245.203:443 unpkg.com tcp
US 8.8.8.8:53 use.fontawesome.com udp
US 172.67.142.245:443 use.fontawesome.com tcp
US 172.67.142.245:443 use.fontawesome.com tcp
US 8.8.8.8:53 203.245.17.104.in-addr.arpa udp
US 8.8.8.8:53 207.168.67.172.in-addr.arpa udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com tcp
GB 142.250.187.214:443 i.ytimg.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 142.250.180.6:443 static.doubleclick.net tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 245.142.67.172.in-addr.arpa udp
US 8.8.8.8:53 14.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 214.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 6.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 2.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.178.1:443 yt3.ggpht.com tcp
GB 216.58.213.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 1.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 dl.malwarewatch.org udp
US 104.21.46.176:443 dl.malwarewatch.org tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 172.67.142.245:443 use.fontawesome.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 play.google.com tcp
US 8.8.8.8:53 206.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 172.67.142.245:443 use.fontawesome.com udp
US 172.67.142.245:443 use.fontawesome.com udp
US 172.67.142.245:443 use.fontawesome.com udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 20.114.58.89:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 89.58.114.20.in-addr.arpa udp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
NL 96.16.53.139:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 139.53.16.96.in-addr.arpa udp
US 8.8.8.8:53 crystalidea.license-manage.com udp
DE 194.233.169.63:443 crystalidea.license-manage.com tcp
US 8.8.8.8:53 63.169.233.194.in-addr.arpa udp
US 8.8.8.8:53 api.github.com udp
US 8.8.8.8:53 collector.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 140.82.113.21:443 collector.github.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 21.113.82.140.in-addr.arpa udp
US 8.8.8.8:53 youtube.com udp
GB 216.58.204.78:443 youtube.com tcp
GB 216.58.204.78:443 youtube.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 consent.youtube.com udp
US 8.8.8.8:53 78.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.214:443 i.ytimg.com udp
US 8.8.8.8:53 accounts.google.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 216.58.213.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 84.203.85.209.in-addr.arpa udp
US 8.8.8.8:53 10.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 yt3.googleusercontent.com udp
GB 142.250.187.225:443 yt3.googleusercontent.com udp
GB 216.58.204.78:443 www.youtube.com udp
US 8.8.8.8:53 rr4---sn-5hnednss.googlevideo.com udp
NL 172.217.132.201:443 rr4---sn-5hnednss.googlevideo.com tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.178.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 225.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 201.132.217.172.in-addr.arpa udp
US 8.8.8.8:53 drive.google.com udp
GB 142.250.200.14:443 drive.google.com tcp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
GB 142.250.200.14:443 drive.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 play.google.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
US 8.8.8.8:53 apis.google.com udp
GB 216.58.201.110:443 apis.google.com udp
US 8.8.8.8:53 drive-thirdparty.googleusercontent.com udp
GB 216.58.201.97:443 drive-thirdparty.googleusercontent.com udp
US 8.8.8.8:53 blobcomments-pa.clients6.google.com udp
US 8.8.8.8:53 content.googleapis.com udp
GB 216.58.212.202:443 blobcomments-pa.clients6.google.com tcp
GB 142.250.187.202:443 content.googleapis.com tcp
US 8.8.8.8:53 97.201.58.216.in-addr.arpa udp
GB 216.58.212.202:443 blobcomments-pa.clients6.google.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 peoplestackwebexperiments-pa.clients6.google.com udp
GB 142.250.179.234:443 peoplestackwebexperiments-pa.clients6.google.com tcp
GB 142.250.179.234:443 peoplestackwebexperiments-pa.clients6.google.com tcp
GB 142.250.179.234:443 peoplestackwebexperiments-pa.clients6.google.com udp
US 8.8.8.8:53 202.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
GB 142.250.187.206:443 play.google.com udp
GB 142.250.187.202:443 content.googleapis.com udp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 23.102.129.60:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 60.129.102.23.in-addr.arpa udp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
NL 104.109.143.75:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 75.143.109.104.in-addr.arpa udp
IE 209.85.203.84:443 accounts.google.com udp
US 8.8.8.8:53 e2c66.gcp.gvt2.com udp
IE 209.85.203.84:443 accounts.google.com tcp
SA 34.166.9.70:443 e2c66.gcp.gvt2.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.35:443 beacons.gvt2.com udp
US 8.8.8.8:53 35.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 70.9.166.34.in-addr.arpa udp
US 8.8.8.8:53 13.242.123.52.in-addr.arpa udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 20.114.58.89:443 msedge.api.cdp.microsoft.com tcp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons5.gvt3.com udp
GB 172.217.169.35:443 beacons5.gvt3.com tcp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 216.239.36.117:443 beacons2.gvt2.com tcp
US 216.239.36.117:443 beacons2.gvt2.com udp
US 8.8.8.8:53 117.36.239.216.in-addr.arpa udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 216.239.32.116:443 beacons4.gvt2.com udp
IE 209.85.203.84:443 accounts.google.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
GB 13.224.245.62:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 62.245.224.13.in-addr.arpa udp
US 8.8.8.8:53 ssl.gstatic.com udp
US 8.8.8.8:53 accounts.google.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
GB 13.224.245.9:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 9.245.224.13.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 play.google.com udp
US 8.8.8.8:53 youtube.com udp
GB 216.58.204.78:443 youtube.com udp
GB 216.58.204.78:443 youtube.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.214:443 i.ytimg.com udp
US 8.8.8.8:53 accounts.google.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 8.8.8.8:53 suggestqueries-clients6.youtube.com udp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com tcp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
GB 216.58.212.234:443 jnn-pa.googleapis.com udp
GB 142.250.200.46:443 suggestqueries-clients6.youtube.com udp
US 8.8.8.8:53 234.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.178.1:443 yt3.ggpht.com udp
US 8.8.8.8:53 rr2---sn-5hnekn7l.googlevideo.com udp
NL 74.125.100.7:443 rr2---sn-5hnekn7l.googlevideo.com udp
US 8.8.8.8:53 7.100.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr2---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.103:443 rr2---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 103.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 rr3---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
US 8.8.8.8:53 104.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 telegra.ph udp
NL 149.154.164.13:443 telegra.ph tcp
US 8.8.8.8:53 t.me udp
NL 149.154.167.99:443 t.me tcp
US 8.8.8.8:53 edit.telegra.ph udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 8.8.8.8:53 13.164.154.149.in-addr.arpa udp
US 8.8.8.8:53 99.167.154.149.in-addr.arpa udp
GB 142.250.187.206:443 www.youtube.com udp
US 8.8.8.8:53 gg.gg udp
RU 91.215.42.31:80 gg.gg tcp
RU 91.215.42.31:80 gg.gg tcp
US 8.8.8.8:53 www.mediafire.com udp
US 104.16.114.74:443 www.mediafire.com tcp
US 104.16.114.74:443 www.mediafire.com tcp
US 8.8.8.8:53 the.gatekeeperconsent.com udp
US 172.67.199.186:443 the.gatekeeperconsent.com tcp
US 8.8.8.8:53 btloader.com udp
US 8.8.8.8:53 privacy.gatekeeperconsent.com udp
US 8.8.8.8:53 www.ezojs.com udp
US 104.16.114.74:443 www.mediafire.com udp
US 8.8.8.8:53 translate.google.com udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 8.8.8.8:53 cdn.amplitude.com udp
US 8.8.8.8:53 static.mediafire.com udp
US 104.22.74.216:443 btloader.com tcp
US 172.67.199.186:443 privacy.gatekeeperconsent.com tcp
US 172.67.170.144:443 www.ezojs.com tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 cdn.otnolatrnup.com udp
US 8.8.8.8:53 www.mediafiredls.com udp
GB 18.172.155.200:443 cdn.amplitude.com tcp
GB 172.217.16.238:443 translate.google.com tcp
US 172.67.73.78:443 www.mediafiredls.com tcp
US 104.16.53.110:443 cdn.otnolatrnup.com tcp
US 8.8.8.8:53 api.amplitude.com udp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
US 172.67.170.144:443 www.ezojs.com udp
US 8.8.8.8:53 api.btloader.com udp
US 8.8.8.8:53 ad-delivery.net udp
US 8.8.8.8:53 74.114.16.104.in-addr.arpa udp
US 8.8.8.8:53 232.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 186.199.67.172.in-addr.arpa udp
US 8.8.8.8:53 216.74.22.104.in-addr.arpa udp
US 8.8.8.8:53 144.170.67.172.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 8.8.8.8:53 200.155.172.18.in-addr.arpa udp
US 8.8.8.8:53 110.53.16.104.in-addr.arpa udp
US 8.8.8.8:53 otnolatrnup.com udp
US 8.8.8.8:53 translate.googleapis.com udp
US 44.224.18.40:443 api.amplitude.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 www.google.co.uk udp
GB 142.250.200.42:443 translate.googleapis.com tcp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
US 8.8.8.8:53 g.ezoic.net udp
US 216.239.32.36:443 region1.analytics.google.com tcp
GB 216.58.204.67:443 www.google.co.uk tcp
BE 64.233.167.154:443 stats.g.doubleclick.net tcp
FR 15.188.219.54:443 g.ezoic.net tcp
US 8.8.8.8:53 go.ezodn.com udp
BE 64.233.167.154:443 stats.g.doubleclick.net udp
US 130.211.23.194:443 api.btloader.com udp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
US 104.21.87.79:443 go.ezodn.com tcp
GB 216.58.204.67:443 www.google.co.uk udp
US 8.8.8.8:53 g.ezodn.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 ads.pubmatic.com udp
US 8.8.8.8:53 translate-pa.googleapis.com udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 ad.crwdcntrl.net udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
GB 142.250.200.2:443 securepubads.g.doubleclick.net tcp
US 23.53.112.234:443 ads.pubmatic.com tcp
US 104.21.87.79:443 g.ezodn.com udp
US 8.8.8.8:53 bshr.ezodn.com udp
IE 54.78.246.130:443 bcp.crwdcntrl.net tcp
IE 34.249.151.204:443 bcp.crwdcntrl.net tcp
GB 18.245.143.58:443 tags.crwdcntrl.net tcp
US 172.67.142.121:443 bshr.ezodn.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 172.67.142.121:443 bshr.ezodn.com udp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
GB 142.250.200.2:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 42.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 154.167.233.64.in-addr.arpa udp
US 8.8.8.8:53 54.219.188.15.in-addr.arpa udp
US 8.8.8.8:53 40.18.224.44.in-addr.arpa udp
US 8.8.8.8:53 79.87.21.104.in-addr.arpa udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 234.112.53.23.in-addr.arpa udp
US 8.8.8.8:53 58.143.245.18.in-addr.arpa udp
US 8.8.8.8:53 204.151.249.34.in-addr.arpa udp
US 8.8.8.8:53 130.246.78.54.in-addr.arpa udp
US 8.8.8.8:53 121.142.67.172.in-addr.arpa udp
US 8.8.8.8:53 226.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 ut.pubmatic.com udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 185.64.190.82:443 ut.pubmatic.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 82.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
FR 15.188.219.54:443 g.ezoic.net tcp
US 104.16.53.110:443 otnolatrnup.com udp
US 8.8.8.8:53 download1323.mediafire.com udp
US 205.196.123.11:443 download1323.mediafire.com tcp
US 205.196.123.11:443 download1323.mediafire.com tcp
GB 142.250.200.42:443 translate-pa.googleapis.com udp
US 8.8.8.8:53 11.123.196.205.in-addr.arpa udp
US 104.16.53.110:80 otnolatrnup.com tcp
US 104.16.53.110:80 otnolatrnup.com tcp
US 8.8.8.8:53 woreppercomming.com udp
GB 18.165.227.106:443 woreppercomming.com tcp
US 8.8.8.8:53 www.ovardu.com udp
US 104.21.96.72:443 www.ovardu.com tcp
US 8.8.8.8:53 www.opera.com udp
DE 18.193.34.132:443 www.opera.com tcp
US 8.8.8.8:53 106.227.165.18.in-addr.arpa udp
US 8.8.8.8:53 cdn-production-opera-website.operacdn.com udp
US 8.8.8.8:53 www.googleoptimize.com udp
BE 104.68.66.120:443 cdn-production-opera-website.operacdn.com tcp
BE 104.68.66.120:443 cdn-production-opera-website.operacdn.com tcp
BE 104.68.66.120:443 cdn-production-opera-website.operacdn.com tcp
BE 104.68.66.120:443 cdn-production-opera-website.operacdn.com tcp
GB 142.250.200.46:443 www.googleoptimize.com tcp
FR 15.188.219.54:443 g.ezoic.net tcp
BE 104.68.66.120:443 cdn-production-opera-website.operacdn.com tcp
US 8.8.8.8:53 www-static.operacdn.com udp
US 8.8.8.8:53 www.redditstatic.com udp
US 8.8.8.8:53 static.hotjar.com udp
US 8.8.8.8:53 snap.licdn.com udp
US 8.8.8.8:53 connect.facebook.net udp
US 151.101.1.140:443 www.redditstatic.com tcp
US 2.17.251.42:443 snap.licdn.com tcp
GB 163.70.151.21:443 connect.facebook.net tcp
GB 13.224.245.87:443 static.hotjar.com tcp
US 8.8.8.8:53 72.96.21.104.in-addr.arpa udp
US 8.8.8.8:53 132.34.193.18.in-addr.arpa udp
US 8.8.8.8:53 120.66.68.104.in-addr.arpa udp
US 8.8.8.8:53 140.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 87.245.224.13.in-addr.arpa udp
US 151.101.1.140:443 www.redditstatic.com tcp
US 8.8.8.8:53 alb.reddit.com udp
US 8.8.8.8:53 script.hotjar.com udp
US 8.8.8.8:53 region1.google-analytics.com udp
GB 163.70.151.21:443 connect.facebook.net udp
US 151.101.1.140:443 alb.reddit.com tcp
US 8.8.8.8:53 px.ads.linkedin.com udp
GB 18.245.253.99:443 script.hotjar.com tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 www.linkedin.com udp
US 8.8.8.8:53 99.253.245.18.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 14.42.107.13.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 bat.bing.com udp
DE 18.193.34.132:443 www.opera.com tcp
US 204.79.197.237:443 bat.bing.com tcp
US 8.8.8.8:53 www.clarity.ms udp
US 13.107.246.64:443 www.clarity.ms tcp
US 8.8.8.8:53 c.clarity.ms udp
IE 68.219.88.97:443 c.clarity.ms tcp
US 8.8.8.8:53 x.clarity.ms udp
US 8.8.8.8:53 c.bing.com udp
US 20.114.190.119:443 x.clarity.ms tcp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 software-x64bit.com udp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 67.227.226.240:443 software-x64bit.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
IE 209.85.203.84:443 accounts.google.com udp
GB 163.70.151.35:443 www.facebook.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
FR 15.188.219.54:443 g.ezoic.net tcp
US 216.239.32.36:443 region1.google-analytics.com udp
US 172.67.199.186:443 privacy.gatekeeperconsent.com udp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
US 104.22.74.216:443 btloader.com tcp
US 172.67.170.144:443 www.ezojs.com udp
US 172.67.73.78:443 www.mediafiredls.com tcp
US 44.224.18.40:443 api.amplitude.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 130.211.23.194:443 api.btloader.com udp
US 104.21.87.79:443 bshr.ezodn.com udp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 script.4dex.io udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 ghb.adtelligent.com udp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 hb.yellowblue.io udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 prebid.smilewanted.com udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 ap.lijit.com udp
US 104.26.9.169:443 script.4dex.io tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 107.151.11.18:443 ghb.adtelligent.com tcp
DE 18.157.230.4:443 tlx.3lift.com tcp
US 172.64.151.101:443 htlb.casalemedia.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
GB 108.138.217.48:443 hb.yellowblue.io tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
US 172.67.14.119:443 prebid.smilewanted.com tcp
US 172.67.14.119:443 prebid.smilewanted.com tcp
US 172.67.14.119:443 prebid.smilewanted.com tcp
US 172.67.14.119:443 prebid.smilewanted.com tcp
US 172.67.14.119:443 prebid.smilewanted.com tcp
NL 145.40.97.66:443 prebid.a-mo.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
IE 34.249.166.190:443 ap.lijit.com tcp
DE 51.89.9.252:443 onetag-sys.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 oa.openxcdn.net udp
US 8.8.8.8:53 static.criteo.net udp
GB 18.245.143.58:443 tags.crwdcntrl.net tcp
US 8.8.8.8:53 cdn.prod.uidapi.com udp
US 8.8.8.8:53 invstatic101.creativecdn.com udp
US 8.8.8.8:53 cdn-ima.33across.com udp
US 104.22.52.86:443 cdn.id5-sync.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
GB 18.245.254.89:443 cdn.prod.uidapi.com tcp
US 104.18.35.167:443 cdn-ima.33across.com tcp
US 104.26.9.169:443 script.4dex.io tcp
US 8.8.8.8:53 cadmus.script.ac udp
US 104.18.22.145:443 cadmus.script.ac tcp
IE 34.249.151.204:443 bcp.crwdcntrl.net tcp
US 8.8.8.8:53 oajs.openx.net udp
US 8.8.8.8:53 id5-sync.com udp
US 34.120.107.143:443 oajs.openx.net tcp
DE 162.19.138.117:443 id5-sync.com tcp
GB 142.250.200.2:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 4c5c948ebe60f3c07e634fcfb8518e47.safeframe.googlesyndication.com udp
US 34.120.107.143:443 oajs.openx.net udp
GB 142.250.187.193:443 4c5c948ebe60f3c07e634fcfb8518e47.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 google-bidout-d.openx.net udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 34.98.64.218:443 google-bidout-d.openx.net tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 169.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 4.230.157.18.in-addr.arpa udp
US 8.8.8.8:53 119.14.67.172.in-addr.arpa udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 151.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 66.97.40.145.in-addr.arpa udp
US 8.8.8.8:53 190.166.249.34.in-addr.arpa udp
US 8.8.8.8:53 48.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 252.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 18.11.151.107.in-addr.arpa udp
US 8.8.8.8:53 192.146.102.34.in-addr.arpa udp
US 8.8.8.8:53 87.70.96.34.in-addr.arpa udp
US 8.8.8.8:53 86.52.22.104.in-addr.arpa udp
US 8.8.8.8:53 89.254.245.18.in-addr.arpa udp
US 8.8.8.8:53 167.35.18.104.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 117.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 145.22.18.104.in-addr.arpa udp
US 8.8.8.8:53 143.107.120.34.in-addr.arpa udp
US 8.8.8.8:53 193.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 33.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 cdn.ampproject.org udp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
US 104.21.87.79:443 bshr.ezodn.com udp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
US 8.8.8.8:53 gum.criteo.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
FR 15.188.219.54:443 g.ezoic.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 id.a-mx.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
US 8.8.8.8:53 id.hadron.ad.gt udp
DE 162.19.138.117:443 id5-sync.com tcp
US 8.8.8.8:53 id.crwdcntrl.net udp
US 8.8.8.8:53 match.adsrvr.org udp
US 23.53.112.234:443 ads.pubmatic.com tcp
US 8.8.8.8:53 js-sec.indexww.com udp
DE 51.89.9.252:443 onetag-sys.com udp
US 8.8.8.8:53 hbx.media.net udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
NL 79.127.227.46:443 id.a-mx.com tcp
IE 34.249.166.190:443 ap.lijit.com tcp
NL 145.40.97.66:443 prebid.a-mo.net tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
US 23.220.112.27:443 hbx.media.net tcp
US 104.18.38.76:443 js-sec.indexww.com tcp
US 172.67.23.234:443 id.hadron.ad.gt tcp
US 8.8.8.8:53 cm.adform.net udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 eb2.3lift.com udp
US 8.8.8.8:53 csync.smilewanted.com udp
IE 52.211.13.38:443 id.crwdcntrl.net tcp
NL 79.127.227.46:443 id.a-mx.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 76.223.111.18:443 eb2.3lift.com tcp
US 104.22.31.209:443 csync.smilewanted.com tcp
DK 37.157.2.228:443 cm.adform.net tcp
DK 37.157.2.228:443 cm.adform.net tcp
US 8.8.8.8:53 ce.lijit.com udp
DE 51.89.9.252:443 onetag-sys.com tcp
US 8.8.8.8:53 secure.adnxs.com udp
US 8.8.8.8:53 dis.criteo.com udp
US 8.8.8.8:53 api-2-0.spot.im udp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 sync.1rx.io udp
US 8.8.8.8:53 creativecdn.com udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 csync.loopme.me udp
US 8.8.8.8:53 b1sync.zemanta.com udp
IE 52.213.68.198:443 ce.lijit.com tcp
DE 141.95.98.65:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 76.38.18.104.in-addr.arpa udp
US 8.8.8.8:53 234.23.67.172.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 153.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 38.13.211.52.in-addr.arpa udp
US 8.8.8.8:53 27.112.220.23.in-addr.arpa udp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 46.227.127.79.in-addr.arpa udp
US 8.8.8.8:53 209.31.22.104.in-addr.arpa udp
US 8.8.8.8:53 228.2.157.37.in-addr.arpa udp
DE 37.252.171.53:443 secure.adnxs.com tcp
DE 37.252.171.53:443 secure.adnxs.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
IE 52.214.140.212:443 match.prod.bidr.io tcp
NL 178.250.1.9:443 dis.criteo.com tcp
GB 18.164.68.91:443 api-2-0.spot.im tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 ssum-sec.casalemedia.com udp
NL 35.214.196.176:443 csync.loopme.me tcp
US 50.31.142.95:443 b1sync.zemanta.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 8.8.8.8:53 image6.pubmatic.com udp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 8.8.8.8:53 gum.aidemsrv.com udp
DE 162.19.138.117:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 secure-assets.rubiconproject.com udp
US 104.17.43.93:443 gum.aidemsrv.com tcp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
US 8.8.8.8:53 image8.pubmatic.com udp
US 172.64.151.101:443 ssum-sec.casalemedia.com udp
US 8.8.8.8:53 ssc-cms.33across.com udp
GB 185.64.190.79:443 image8.pubmatic.com tcp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
US 8.8.8.8:53 rtb.mfadsrvr.com udp
US 8.8.8.8:53 sync.mathtag.com udp
US 8.8.8.8:53 pixel-eu.rubiconproject.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 67.202.105.24:443 ssc-cms.33across.com tcp
US 8.8.8.8:53 pixel.rubiconproject.com udp
US 8.8.8.8:53 ads.stickyadstv.com udp
US 8.8.8.8:53 cs.admanmedia.com udp
US 8.8.8.8:53 t.adx.opera.com udp
NL 198.47.127.19:443 image6.pubmatic.com tcp
GB 185.64.190.79:443 image8.pubmatic.com tcp
US 8.8.8.8:53 ssbsync-global.smartadserver.com udp
US 74.121.140.211:443 sync.mathtag.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 80.77.87.166:443 cs.admanmedia.com tcp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 dmp.brand-display.com udp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
DE 18.184.102.200:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 cms.quantserve.com udp
US 8.8.8.8:53 casale-match.dotomi.com udp
US 8.8.8.8:53 ad.turn.com udp
US 8.8.8.8:53 cdn.indexww.com udp
US 8.8.8.8:53 static.smilewanted.com udp
NL 89.149.192.196:443 ssbsync-global.smartadserver.com tcp
NL 154.57.158.25:443 ads.stickyadstv.com tcp
US 8.8.8.8:53 eus.rubiconproject.com udp
FR 149.202.238.101:443 ssbsync.smartadserver.com tcp
US 34.160.19.107:443 dmp.brand-display.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
NL 89.207.16.201:443 casale-match.dotomi.com tcp
DE 91.228.74.200:443 cms.quantserve.com tcp
BE 2.21.18.175:443 eus.rubiconproject.com tcp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
US 13.107.42.14:443 www.linkedin.com tcp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
IE 52.31.50.141:443 pr-bh.ybp.yahoo.com tcp
US 54.172.53.250:443 sync.srv.stackadapt.com tcp
US 54.172.53.250:443 sync.srv.stackadapt.com tcp
US 54.172.53.250:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 spl.zeotap.com udp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 50.31.142.95:443 b1sync.zemanta.com tcp
US 80.77.87.166:443 cs.admanmedia.com tcp
US 104.22.51.98:443 spl.zeotap.com tcp
US 54.172.53.250:443 sync.srv.stackadapt.com tcp
DE 18.184.102.200:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
US 8.8.8.8:53 sync.targeting.unrulymedia.com udp
US 50.31.142.95:443 b1sync.zemanta.com tcp
IE 52.94.223.37:443 aax-eu.amazon-adsystem.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
IE 52.31.50.141:443 pr-bh.ybp.yahoo.com tcp
US 8.8.8.8:53 sync.adtelligent.com udp
US 8.8.8.8:53 image2.pubmatic.com udp
GB 185.83.71.234:443 sync.adtelligent.com tcp
DE 18.184.102.200:443 rtb.mfadsrvr.com tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
US 80.77.87.166:443 cs.admanmedia.com tcp
IE 52.94.223.37:443 aax-eu.amazon-adsystem.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 sync.smartadserver.com udp
NL 198.47.127.205:443 image2.pubmatic.com tcp
US 8.8.8.8:53 simage2.pubmatic.com udp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
US 8.8.8.8:53 pxl.iqm.com udp
US 50.31.142.95:443 b1sync.zemanta.com tcp
NL 81.17.55.173:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 198.68.213.52.in-addr.arpa udp
US 8.8.8.8:53 65.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 53.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 91.68.164.18.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 212.140.214.52.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 95.142.31.50.in-addr.arpa udp
US 8.8.8.8:53 176.196.214.35.in-addr.arpa udp
US 8.8.8.8:53 93.43.17.104.in-addr.arpa udp
US 8.8.8.8:53 171.78.68.104.in-addr.arpa udp
US 8.8.8.8:53 79.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 8.213.145.82.in-addr.arpa udp
US 8.8.8.8:53 196.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 25.158.57.154.in-addr.arpa udp
US 8.8.8.8:53 200.102.184.18.in-addr.arpa udp
US 8.8.8.8:53 24.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 101.238.202.149.in-addr.arpa udp
US 8.8.8.8:53 107.19.160.34.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 201.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 200.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 211.140.121.74.in-addr.arpa udp
US 8.8.8.8:53 175.18.21.2.in-addr.arpa udp
US 8.8.8.8:53 147.128.46.52.in-addr.arpa udp
US 8.8.8.8:53 250.53.172.54.in-addr.arpa udp
US 8.8.8.8:53 141.50.31.52.in-addr.arpa udp
US 8.8.8.8:53 98.51.22.104.in-addr.arpa udp
US 8.8.8.8:53 234.71.83.185.in-addr.arpa udp
US 8.8.8.8:53 205.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 19.127.47.198.in-addr.arpa udp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
US 54.88.142.103:443 pxl.iqm.com tcp
NL 89.149.192.74:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 c1.adform.net udp
US 8.8.8.8:53 ads.creative-serving.com udp
US 54.172.53.250:443 sync.srv.stackadapt.com tcp
NL 35.214.241.248:443 ads.creative-serving.com tcp
DK 37.157.5.133:443 c1.adform.net tcp
DE 18.184.102.200:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 dsp.adfarm1.adition.com udp
US 8.8.8.8:53 p.rfihub.com udp
IE 52.214.137.185:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 sync-tm.everesttech.net udp
DE 85.114.159.118:443 dsp.adfarm1.adition.com tcp
NL 193.0.160.131:443 p.rfihub.com tcp
US 8.8.8.8:53 dsp.nrich.ai udp
US 8.8.8.8:53 d5p.de17a.com udp
US 151.101.2.49:443 sync-tm.everesttech.net tcp
FR 51.68.39.188:443 dsp.nrich.ai tcp
NL 35.214.241.248:443 ads.creative-serving.com udp
NL 35.214.196.176:443 csync.loopme.me tcp
US 8.8.8.8:53 cs-server-s2s.yellowblue.io udp
US 23.22.169.188:443 cs-server-s2s.yellowblue.io tcp
US 8.8.8.8:53 bttrack.com udp
US 8.8.8.8:53 id.rlcdn.com udp
US 192.132.33.67:443 bttrack.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
US 8.8.8.8:53 74.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 173.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 103.142.88.54.in-addr.arpa udp
US 8.8.8.8:53 37.223.94.52.in-addr.arpa udp
US 8.8.8.8:53 248.241.214.35.in-addr.arpa udp
US 8.8.8.8:53 185.137.214.52.in-addr.arpa udp
US 8.8.8.8:53 131.160.0.193.in-addr.arpa udp
US 8.8.8.8:53 118.159.114.85.in-addr.arpa udp
US 8.8.8.8:53 49.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 188.39.68.51.in-addr.arpa udp
US 8.8.8.8:53 188.169.22.23.in-addr.arpa udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 67.33.132.192.in-addr.arpa udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com udp
GB 172.217.16.238:443 clients2.google.com tcp
NL 23.62.61.155:443 www.bing.com tcp
NL 23.62.61.155:443 www.bing.com tcp
NL 23.62.61.155:443 www.bing.com tcp
NL 23.62.61.155:443 www.bing.com tcp
NL 23.62.61.155:443 www.bing.com tcp
US 8.8.8.8:53 getintopc-com.webpkgcache.com udp
GB 142.250.180.1:443 getintopc-com.webpkgcache.com tcp
GB 142.250.180.1:443 getintopc-com.webpkgcache.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
GB 142.250.180.1:443 getintopc-com.webpkgcache.com udp
GB 142.250.187.206:443 www.youtube.com udp
US 8.8.8.8:53 getintopc.com udp
US 8.8.8.8:53 media.getintopc.com udp
GB 142.250.187.206:443 www.youtube.com tcp
US 172.67.75.211:443 media.getintopc.com tcp
US 104.26.1.196:443 media.getintopc.com tcp
US 104.26.1.196:443 media.getintopc.com udp
US 8.8.8.8:53 ajax.googleapis.com udp
GB 172.217.16.234:443 ajax.googleapis.com tcp
GB 142.250.200.42:443 ajax.googleapis.com udp
GB 142.250.200.42:443 ajax.googleapis.com tcp
US 8.8.8.8:53 getintopcofficial.disqus.com udp
US 8.8.8.8:53 211.75.67.172.in-addr.arpa udp
US 8.8.8.8:53 196.1.26.104.in-addr.arpa udp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 199.232.192.134:443 getintopcofficial.disqus.com tcp
BE 64.233.167.154:443 stats.g.doubleclick.net udp
US 199.232.192.134:443 getintopcofficial.disqus.com tcp
GB 216.58.204.67:443 www.google.co.uk udp
US 8.8.8.8:53 c.disquscdn.com udp
US 8.8.8.8:53 disqus.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 151.101.0.134:443 disqus.com tcp
GB 18.244.140.16:443 c.disquscdn.com tcp
US 8.8.8.8:53 134.192.232.199.in-addr.arpa udp
US 8.8.8.8:53 134.0.101.151.in-addr.arpa udp
US 8.8.8.8:53 16.140.244.18.in-addr.arpa udp
GB 172.217.16.234:443 ajax.googleapis.com udp
GB 18.244.140.16:443 c.disquscdn.com tcp
US 8.8.8.8:53 referrer.disqus.com udp
US 199.232.192.134:443 referrer.disqus.com tcp
US 8.8.8.8:53 programming-link.info udp
UA 45.89.245.61:443 programming-link.info tcp
UA 45.89.245.61:443 programming-link.info tcp
US 8.8.8.8:53 61.245.89.45.in-addr.arpa udp
US 8.8.8.8:53 how-to-pc.info udp
UA 45.141.156.42:443 how-to-pc.info tcp
UA 45.141.156.42:443 how-to-pc.info tcp
UA 45.141.156.42:443 how-to-pc.info tcp
UA 45.141.156.42:443 how-to-pc.info tcp
UA 45.141.156.42:443 how-to-pc.info tcp
UA 45.141.156.42:443 how-to-pc.info tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
GB 172.217.16.238:443 clients2.google.com udp
US 8.8.8.8:53 42.156.141.45.in-addr.arpa udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.238:443 clients2.google.com udp
GB 216.58.201.97:443 lh3.googleusercontent.com udp
GB 216.58.201.97:443 lh3.googleusercontent.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
NL 185.184.8.90:443 creativecdn.com tcp
US 8.8.8.8:53 88-99-253-237.top udp
DE 88.99.253.237:443 88-99-253-237.top tcp
DE 88.99.253.237:443 88-99-253-237.top tcp
US 8.8.8.8:53 237.253.99.88.in-addr.arpa udp
US 8.8.8.8:53 148-251-75-109.top udp
DE 148.251.75.109:443 148-251-75-109.top tcp
US 8.8.8.8:53 109.75.251.148.in-addr.arpa udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c8.gcp.gvt2.com udp
SG 34.87.124.238:443 e2c8.gcp.gvt2.com tcp
SG 34.87.124.238:443 e2c8.gcp.gvt2.com tcp
US 8.8.8.8:53 238.124.87.34.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
FR 216.58.213.67:443 beacons.gvt2.com udp
FR 216.58.213.67:443 beacons.gvt2.com tcp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 172.67.75.211:443 media.getintopc.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 crystalidea.com udp
US 173.230.144.164:443 crystalidea.com tcp
US 173.230.144.164:443 crystalidea.com tcp
US 8.8.8.8:53 164.144.230.173.in-addr.arpa udp
US 8.8.8.8:53 webstatistics.io udp
DE 172.104.132.120:443 webstatistics.io tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.180.10:443 content-autofill.googleapis.com udp
DE 172.104.132.120:443 webstatistics.io tcp
US 8.8.8.8:53 120.132.104.172.in-addr.arpa udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp

Files

\??\pipe\crashpad_2792_ODRFICGSJONZNIZV

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007

MD5 a484f2f3418f65b8214cbcd3e4a31057
SHA1 5c002c51b67db40f88b6895a5d5caa67608a65ce
SHA256 79cbe928773386d07f0127f256f383debed5ccea5ff230465bf46ec7c87319d6
SHA512 0be1bb8db08f6e6041a85cfee90cd36a5b595afbca34d52a125465454fc806b4bb7ae569eaf4c882922fb1b962b6060534e597791cd0ad23483be5981d9be85c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 368faad75704c45f10fdd673b70ecbd8
SHA1 dbaf74973e6181d35ae87cc89dfa0b89abcf4c09
SHA256 af94bc26b35518826e43a3173c9474b81f0bcaed8fdecf32d8da0012b56e6879
SHA512 d063106676c1c902dc539e52a74dc02c6aac4353790ffa80042acaad71ce4278b8c154e5ab5fc64ffb33f9a8d0c24cac0589f06530255d21e91dad6fe43b7b54

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 499b62df5df5f6ab37ad7f22dcbf883d
SHA1 e51d7403dc0f2547548a00b2dcff5ea98e46bd7c
SHA256 60a4167049de1ddeb4dcd5b72ec0782a08c803a776996967c9c0aec57e5d6ba5
SHA512 4990f19684a2d872724aa73383b24dd5d6cce08b928a7a97e6398caaa5b5458ec16e8ac6b59682cf8df5704c3f765391ccf0b9b054f4cada40a8cb371004d1d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 cf55351e50fbfa7118850d83e7fb3735
SHA1 693325f212adbac13e357da7d0c8d1e635441b53
SHA256 23325bbd05d1deb2f5d2d32a22cb85edd6155c2b1c9f15f1ca3306cf80f295e8
SHA512 c25d26d248bf6406acab7f8ff495b845989c4c677bae6857a79c230d259f685a41c4bfa384ac1bf95f39af0ad4264b2e6177f5e24115c66cc4e4db2d7da3ee9b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2bf03d3b04ff0985aa3a16df1e9be17f
SHA1 444728976d9b466461923888431f66085e9926d9
SHA256 0443469e5bc61416c3bbf2ae0270e7173ead20ce6e865d1d237bef6f2e1f9065
SHA512 21b87f2f095c7507f9ad84c445e6d3e2d61babe4a5b20c96875294e1bf735f5269016a940d1c0ba2a344bcaee722f150e8bf61d1afc4919c8c33a60db057b7d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 23e0649320433604b1c2365481218db0
SHA1 a40749deeb37ba4b9a914b947d9a1c0f701a7a3b
SHA256 51ab56e3c25a76bd2d9a99fd431735beb9c82dd92754be68086eaba4e6499ac2
SHA512 d02a21fa95e6411ea488f5ac9b2f547ef2759b89895ccaa26f78116d80ed105e43da61c30e354a9a6b4450d561f3c662a12632d84cc8e3720eba2cf2d7c35a8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5cb54806e5b918fc2cc2f02f58ea8b4b
SHA1 853ca0c2bf3278147f6f9ff197ef02eeff2404bc
SHA256 5e8efafd13021d404d7735f94bdcf412a243139250618edcf6311722fe9cea32
SHA512 9070f82584abd8c880eafda5a42051e223cb50a9275e7df2c6f10df9eef59941214ad261dfb384201a7d3caeeea769b248e160eb37839394b153a2ce25c99fce

C:\Users\Admin\Downloads\Unconfirmed 36411.crdownload

MD5 dbb820772caf0003967ef0f269fbdeb1
SHA1 31992bd4977a7dfeba67537a2da6c9ca64bc304c
SHA256 b2ac1e407ed3ecd7c7faa6de929a68fb51145662cf793c40b69eb59295bba6bc
SHA512 e8ac879c7198dffb78bc6ee4ad49b5de40a5a7dbbda53d427d0a034941487d13c8bb2b8d590a1fcdd81cd6abb8f21fdfcd52924eb00c45a42ee06c1e4b3d590f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8b83579b74bc77b7b0c28005ae9a1afa
SHA1 c96c9080757fe484ae071afebbcba9cc3cb85e6d
SHA256 e38e35f087efc8ec7fd17dcc5ac647732f9c6df93f163226028a2c63db06e21a
SHA512 fccfaafe83ade59579d3e5cc1669da10c23f151ee9c6a9e61c9450e35dd740070b901a748518825266a193ffbc29678a60930a639e2c482a5480df95405e4678

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bc21c21e622da567dd914a920e9b940f
SHA1 b42f6ac82b3d6c0801e21cae26cd64766fbeac6e
SHA256 11319b95ad6d2bd00074f7478d6eb0fee2bf4ea44a288405d1beaa073fe3c661
SHA512 8491a847685356c758ffacf3f68d01e9818443c6d8eea2adc551405a8d8e83396f5c11520167150866cad838034c73580318153278a1d0f7a3bcefaf9186c8df

memory/364-327-0x00007FFB44D4B000-0x00007FFB44D4C000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3657866c16041e9264e96bcfc9cb97ce
SHA1 17bc27a5ca4e0e922a4ef2ab73eca93fcd2dedfc
SHA256 17eadce44a8ddc9add9b3fbdb1ca4ee6da336e604b620369aae78f8bbac80a01
SHA512 ea482186f3760eca51a9f320974905d2fcb0f453bf65ca1dfab76ebd8092f222f2d29a6fcfe0c1f91fdbe69ea8ae31de3dd99f0958ed1cd6926058b0478e3ff0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58dbc5.TMP

MD5 b7c6c978d40fc962081a3fb8482a05cf
SHA1 27bab4053f94c4dc0748f5be21b77d2ec9f98574
SHA256 59064a822420b595e7b61f98713855dac0730c78d723c7841c12643e7d036339
SHA512 4f4c8981f94d014695c46dab9183c0cbf229334dfda8739f54c6ef51406f5ad7147c209526e631daea04b36f8265a162bfbed59e4a59290a98f977c51472c0bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 1214a01094e0166209c60ee051986f1d
SHA1 576e78a014f87bf48746c2ffa47fcd7fecbbe3d3
SHA256 5dfac726bc8e35fda62dec9bf4c3137002e9e667425f200027b01db06d9a1887
SHA512 d6600105774b18527efacc75af84815b12d85bb12723a716677b8806fd085e8888898cabbfb4152221e47dad9beb6c99869899f6aa0f70daed2dbd1fc25e3c8b

memory/364-354-0x00007FFB44D4B000-0x00007FFB44D4C000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 bb7a5b5ccd4be8ac1e7e2862715f5465
SHA1 fec32ef53eebe9003ed0c092f61a88f2f9309d1d
SHA256 f200c3432c97332669e37bee3ad7a43641a2815fba4749681e7f34f245302280
SHA512 d5d418cc54c1415194503e52b356bd8035a0f3a60b61e7d5b175c3b92587c3f7049a67cb336899f286e2ad808d6fa846feae30e0b552dddd5ed3c588077dda9a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 873d08a1aa25ddf4eb98e12907f87d8e
SHA1 db98fd893a8128724da8cdd1a4751a5f367de098
SHA256 40d92ddb84de28649ccd3739b534b5e0dead3c2ef4861c2561137aeb2b6f2e87
SHA512 d59f7cc78bddc5f1a8d12f2b4c26c0f28788201aae1c3bdf4a1a1544eb04ae5de5948df41f81361dc955308f85dc9f52d75627b27a4d6f8d8eedb2a6730b16ce

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\configs\DateTimeLocaleConfigs\zh-tw.json

MD5 702c9879f2289959ceaa91d3045f28aa
SHA1 775072f139acc8eafb219af355f60b2f57094276
SHA256 a92a6988175f9c1d073e4b54bf6a31f9b5d3652eebdf6a351fb5e12bda76cbd5
SHA512 815a6bef134c0db7a5926f0cf4b3f7702d71b0b2f13eca9539cd2fc5a61eea81b1884e4c4bc0b3398880589bff809ac8d5df833e7e4aeda4a1244e9a875d1e97

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\configs\DateTimeLocaleConfigs\zh-hans.json

MD5 fb6605abd624d1923aef5f2122b5ae58
SHA1 6e98c0a31fa39c781df33628b55568e095be7d71
SHA256 7b993133d329c46c0c437d985eead54432944d7b46db6ad6ea755505b8629d00
SHA512 97a14eda2010033265b379aa5553359293baf4988a4cdde8a40b0315e318a7b30feee7f5e14c68131e85610c00585d0c67e636999e3af9b5b2209e1a27a82223

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9cb63b552ee7fe7e9f5d89e75ff65ad0
SHA1 cf8400d72f4019271d68132f381a18debc845e01
SHA256 22a62753e20267f3a667c972a8e25d45ec8896adee9bd370b26f333afa28eaa5
SHA512 39e40f7dc71743ed15fdea84aba39851fbfd17acdcf6162d17f10c929044dcb3fae0dfd07d19a2a29403b63f2628b42628c7d03c8ee93f6fc502ab0254fa9e64

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\Cursors\KeyboardMouse\IBeamCursor.png

MD5 464c4983fa06ad6cf235ec6793de5f83
SHA1 8afeb666c8aee7290ab587a2bfb29fc3551669e8
SHA256 99fd7f104948c6ab002d1ec69ffd6c896c91f9accc499588df0980b4346ecbed
SHA512 f805f5f38535fe487b899486c8de6cf630114964e2c3ebc2af7152a82c6f6faef681b4d936a1867b5dff6566b688b5c01105074443cc2086b3fe71f7e6e404b1

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\Clear.png

MD5 fa8eaf9266c707e151bb20281b3c0988
SHA1 3ca097ad4cd097745d33d386cc2d626ece8cb969
SHA256 8cf08bf7e50fea7b38f59f162ed956346c55a714ed8a9a8b0a1ada7e18480bc2
SHA512 e29274300eab297c6de895bb39170f73f0a4ffa2a8c3732caeeeac16e2c25fb58bb401fdd5823cc62d9c413ec6c43d7c46861d7e14d52f8d9d8ff632e29f167c

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\TerrainTools\checkbox_square.png

MD5 2cb16991a26dc803f43963bdc7571e3f
SHA1 12ad66a51b60eeaed199bc521800f7c763a3bc7b
SHA256 c7bae6d856f3bd9f00c122522eb3534d0d198a9473b6a379a5c3458181870646
SHA512 4c9467e5e2d83b778d0fb8b6fd97964f8d8126f07bfd50c5d68c256703f291ceaed56be057e8e2c591b2d2c49f6b7e099a2b7088d0bf5bdd901433459663b1f8

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioUIEditor\valueBoxRoundedRectangle.png

MD5 521fb651c83453bf42d7432896040e5e
SHA1 8fdbf2cc2617b5b58aaa91b94b0bf755d951cad9
SHA256 630303ec4701779eaf86cc9fbf744b625becda53badc7271cbb6ddc56e638d70
SHA512 8fa0a50e52a3c7c53735c7dd7af275ebc9c1843f55bb30ebe0587a85955a8da94ff993822d233f7ed118b1070a7d67718b55ba4a597dc49ed2bf2a3836c696f6

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\[email protected]

MD5 55b64987636b9740ab1de7debd1f0b2f
SHA1 96f67222ce7d7748ec968e95a2f6495860f9d9c9
SHA256 f4a6bb3347ee3e603ea0b2f009bfa802103bc434ae3ff1db1f2043fa8cace8fc
SHA512 73a88a278747de3fefbaabb3ff90c1c0750c8d6c17746787f17061f4eff933620407336bf9b755f4222b0943b07d8c4d01de1815d42ea65e78e0daa7072591e9

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\[email protected]

MD5 83e9b7823c0a5c4c67a603a734233dec
SHA1 2eaf04ad636bf71afdf73b004d17d366ac6d333e
SHA256 3b5e06eb1a89975def847101f700f0caa60fe0198f53e51974ef1608c6e1e067
SHA512 e8abb39a1ec340ac5c7d63137f607cd09eae0e885e4f73b84d8adad1b8f574155b92fbf2c9d3013f64ebbb6d55ead5419e7546b0f70dcde976d49e7440743b0f

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\Thumbstick2.png

MD5 a402aacac8be906bcc07d50669d32061
SHA1 9d75c1afbe9fc482983978cae4c553aa32625640
SHA256 62a313b6cc9ffe7dd86bc9c4fcd7b8e8d1f14a15cdf41a53fb69af4ae3416102
SHA512 d11567bcaad8bbd9e2b9f497c3215102c7e7546caf425e93791502d3d2b3f78dec13609796fcd6e1e7f5c7d794bac074d00a74001e7fe943d63463b483877546

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\[email protected]

MD5 499333dae156bb4c9e9309a4842be4c8
SHA1 d18c4c36bdb297208589dc93715560acaf761c3a
SHA256 d35a74469f1436f114c27c730a5ec0793073bcf098db37f10158d562a3174591
SHA512 91c64173d2cdabc045c70e0538d45e1022cc74ec04989565b85f0f26fe3e788b700a0956a07a8c91d34c06fc1b7fad43bbdbb41b0c6f15b9881c3e46def8103e

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\[email protected]

MD5 e8c88cf5c5ef7ae5ddee2d0e8376b32f
SHA1 77f2a5b11436d247d1acc3bac8edffc99c496839
SHA256 9607af14604a8e8eb1dec45d3eeca01fed33140c0ccc3e6ef8ca4a1f6219b5dd
SHA512 32f5a1e907705346a56fbddfe0d8841d05415ff7abe28ae9281ba46fedf8270b982be0090b72e2e32de0ce36e21934f80eaf508fd010f7ab132d39f5305fb68f

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\XboxController\Thumbstick1.png

MD5 2cbe38df9a03133ddf11a940c09b49cd
SHA1 6fb5c191ed8ce9495c66b90aaf53662bfe199846
SHA256 0835a661199a7d8df7249e8ae925987184efcc4fb85d9efac3cc2c1495020517
SHA512 dcef5baccef9fff632456fe7bc3c4f4a403363d9103a8047a55f4bd4c413d0c5f751a2e37385fe9eba7a420dbdb77ca2ff883d47fcdd35af222191cc5bd5c7a9

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\PlatformContent\pc\textures\corrodedmetal\normaldetail.dds

MD5 f527b5859d7ca6c080ba954f3013883f
SHA1 3d00b598b1fb762ae0921bcc49ca189f05f417d2
SHA256 ff11c95774ee0405666fa313f1e53ebb46b1352bfff3456ac2b2caccdab07b4d
SHA512 e908a29c4316a15f5c16a005c69b402e0525b80e0c3284d6f19074ab8b05d62d079ecf43974b223a68d7c56cbf1789df69ab260553de1aab0edfbdad5e6d654d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fea8cf304860c759285547d286e87220
SHA1 d172e126fd9c35032f67c7c171b68237862ec631
SHA256 8ba9f49afb24c8b1410db94f775cdfdd7447680c8b6fe582b581ae584bdd642d
SHA512 eb584e67126d98ca6f223e133f1c2b76f64f017e2a150546a3faeb3639f74fe29499eb621ffcd5a865e7b7b2701e5b1e42765ba13a77fbd33d33e2ffed1b7cae

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\[email protected]

MD5 3fec0191b36b9d9448a73ff1a937a1f7
SHA1 bee7d28204245e3088689ac08da18b43eae531ba
SHA256 1a03e6f6a0de045aa588544c392d671c040b82a5598b4246af04f5a74910dc89
SHA512 a8ab2bc2d937963af36d3255c6ea09cae6ab1599996450004bb18e8b8bdfbdde728821ac1662d8a0466680679011d8f366577b143766838fe91edf08a40353ce

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\shimmer_lightTheme.png

MD5 4f8f43c5d5c2895640ed4fdca39737d5
SHA1 fb46095bdfcab74d61e1171632c25f783ef495fa
SHA256 fc57f32c26087eef61b37850d60934eda1100ca8773f08e487191a74766053d1
SHA512 7aebc0f79b2b23a76fb41df8bab4411813ffb1abc5e2797810679c0eaa690e7af7561b8473405694bd967470be337417fa42e30f0318acbf171d8f31620a31aa

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaDiscussions\buttonFill.png

MD5 81ce54dfd6605840a1bd2f9b0b3f807d
SHA1 4a3a4c05b9c14c305a8bb06c768abc4958ba2f1c
SHA256 0a6a5cafb4dee0d8c1d182ddec9f68ca0471d7fc820cf8dc2d68f27a35cd3386
SHA512 57069c8ac03dd0fdfd97e2844c19138800ff6f7d508c26e5bc400b30fe78baa0991cc39f0f86fa10cd5d12b6b11b0b09c1a770e5cb2fdca157c2c8986a09e5ff

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MD5 610b1b60dc8729bad759c92f82ee2804
SHA1 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552
SHA256 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08
SHA512 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdate.dll

MD5 965b3af7886e7bf6584488658c050ca2
SHA1 72daabdde7cd500c483d0eeecb1bd19708f8e4a5
SHA256 d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19
SHA512 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_en.dll

MD5 4a1e3cf488e998ef4d22ac25ccc520a5
SHA1 dc568a6e3c9465474ef0d761581c733b3371b1cd
SHA256 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011
SHA512 ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdateCore.exe

MD5 c044dcfa4d518df8fc9d4a161d49cece
SHA1 91bd4e933b22c010454fd6d3e3b042ab6e8b2149
SHA256 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2
SHA512 f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe

MD5 60dba9b06b56e58f5aea1a4149c743d2
SHA1 a7e456acf64dd99ca30259cf45b88cf2515a69b3
SHA256 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112
SHA512 e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\EdgeUpdate.dat

MD5 369bbc37cff290adb8963dc5e518b9b8
SHA1 de0ef569f7ef55032e4b18d3a03542cc2bbac191
SHA256 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3
SHA512 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_ar.dll

MD5 570efe7aa117a1f98c7a682f8112cb6d
SHA1 536e7c49e24e9aa068a021a8f258e3e4e69fa64f
SHA256 e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01
SHA512 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_az.dll

MD5 7937c407ebe21170daf0975779f1aa49
SHA1 4c2a40e76209abd2492dfaaf65ef24de72291346
SHA256 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9
SHA512 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_bn-IN.dll

MD5 a94cf5e8b1708a43393263a33e739edd
SHA1 1068868bdc271a52aaae6f749028ed3170b09cce
SHA256 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c
SHA512 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_bg.dll

MD5 8375b1b756b2a74a12def575351e6bbd
SHA1 802ec096425dc1cab723d4cf2fd1a868315d3727
SHA256 a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105
SHA512 aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_bn.dll

MD5 7dc58c4e27eaf84ae9984cff2cc16235
SHA1 3f53499ddc487658932a8c2bcf562ba32afd3bda
SHA256 e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98
SHA512 bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_as.dll

MD5 a8d3210e34bf6f63a35590245c16bc1b
SHA1 f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693
SHA256 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766
SHA512 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_am.dll

MD5 f6c1324070b6c4e2a8f8921652bfbdfa
SHA1 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf
SHA256 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717
SHA512 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_bs.dll

MD5 e338dccaa43962697db9f67e0265a3fc
SHA1 4c6c327efc12d21c4299df7b97bf2c45840e0d83
SHA256 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04
SHA512 e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_af.dll

MD5 567aec2d42d02675eb515bbd852be7db
SHA1 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37
SHA256 a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c
SHA512 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\NOTICE.TXT

MD5 6dd5bf0743f2366a0bdd37e302783bcd
SHA1 e5ff6e044c40c02b1fc78304804fe1f993fed2e6
SHA256 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5
SHA512 f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\MicrosoftEdgeComRegisterShellARM64.exe

MD5 7a160c6016922713345454265807f08d
SHA1 e36ee184edd449252eb2dfd3016d5b0d2edad3c6
SHA256 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9
SHA512 c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_ca.dll

MD5 39551d8d284c108a17dc5f74a7084bb5
SHA1 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884
SHA256 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07
SHA512 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_ca-Es-VALENCIA.dll

MD5 2929e8d496d95739f207b9f59b13f925
SHA1 7c1c574194d9e31ca91e2a21a5c671e5e95c734c
SHA256 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df
SHA512 ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_cs.dll

MD5 16c84ad1222284f40968a851f541d6bb
SHA1 bc26d50e15ccaed6a5fbe801943117269b3b8e6b
SHA256 e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b
SHA512 d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_cy.dll

MD5 34d991980016595b803d212dc356d765
SHA1 e3a35df6488c3463c2a7adf89029e1dd8308f816
SHA256 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e
SHA512 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_da.dll

MD5 d34380d302b16eab40d5b63cfb4ed0fe
SHA1 1d3047119e353a55dc215666f2b7b69f0ede775b
SHA256 fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f
SHA512 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_de.dll

MD5 aab01f0d7bdc51b190f27ce58701c1da
SHA1 1a21aabab0875651efd974100a81cda52c462997
SHA256 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c
SHA512 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_el.dll

MD5 ac275b6e825c3bd87d96b52eac36c0f6
SHA1 29e537d81f5d997285b62cd2efea088c3284d18f
SHA256 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0
SHA512 bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_en-GB.dll

MD5 d749e093f263244d276b6ffcf4ef4b42
SHA1 69f024c769632cdbb019943552bac5281d4cbe05
SHA256 fd90699e7f29b6028a2e8e6f3ae82d26cdc6942bd39c4f07b221d87c5dbbfe1e
SHA512 48d51b006ce0cd903154fa03d17e76591db739c4bfb64243725d21d4aa17db57a852077be00b9a51815d09664d18f9e6ad61d9bc41b3d013ed24aaec8f477ad9

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_es.dll

MD5 9db7f66f9dc417ebba021bc45af5d34b
SHA1 6815318b05019f521d65f6046cf340ad88e40971
SHA256 e652159a75cbab76217ecbb4340020f277175838b316b32cf71e18d83da4a819
SHA512 943d8fc0d308c5ccd5ab068fc10e799b92465a22841ce700c636e7ae1c12995d99c0a93ab85c1ae27fefce869eabadbeafee0f2f5f010ad3b35fa4f748b54952

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_es-419.dll

MD5 28fefc59008ef0325682a0611f8dba70
SHA1 f528803c731c11d8d92c5660cb4125c26bb75265
SHA256 55a69ce2d6fc4109d16172ba6d9edb59dbadbc8af6746cc71dc4045aa549022d
SHA512 2ec71244303beac7d5ce0905001fe5b0fb996ad1d1c35e63eecd4d9b87751f0633a281554b3f0aa02ee44b8ceaad85a671ef6c34589055797912324e48cc23ed

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_et.dll

MD5 b78cba3088ecdc571412955742ea560b
SHA1 bc04cf9014cec5b9f240235b5ff0f29dbdb22926
SHA256 f0a4cfd96c85f2d98a3c9ecfadd41c0c139fdb20470c8004f4c112dd3d69e085
SHA512 04c8ab8e62017df63e411a49fb6218c341672f348cb9950b1f0d2b2a48016036f395b4568da70989f038e8e28efea65ddd284dfd490e93b6731d9e3e0e0813cf

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_eu.dll

MD5 a7e1f4f482522a647311735699bec186
SHA1 3b4b4b6e6a5e0c1981c62b6b33a0ca78f82b7bbd
SHA256 e5615c838a71b533b26d308509954907bcc0eb4032cdbaa3db621eede5e6bfa4
SHA512 22131600bbac8d9c2dab358e244ec85315a1aaebfc0fb62aaa1493c418c8832c3a6fbf24a6f8cf4704fdc4bc10a66c88839a719116b4a3d85264b7ad93c54d57

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_fa.dll

MD5 cbe3454843ce2f36201460e316af1404
SHA1 0883394c28cb60be8276cb690496318fcabea424
SHA256 c66c4024847d353e9985eb9b2f060b2d84f12cc77fb6479df5ffc55dbda97e59
SHA512 f39e660f3bfab288871d3ec40135c16d31c6eb1a84136e065b54ff306f6f8016a788c713d4d8e46ad62e459f9073d2307a6ed650919b2dd00577bbfd04e5bd73

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_fr-CA.dll

MD5 b534e068001e8729faf212ad3c0da16c
SHA1 999fa33c5ea856d305cc359c18ea8e994a83f7a9
SHA256 445051ef15c6c872bed6d904169793837e41029a8578eaf81d78a4641ef53511
SHA512 e937d2e0f43ade3f4a5e9cdeb6dd8c8ad8b5b50a7b6b779bda727a4fe1ced93abd06720395cc69a274ce3b0f7c6b65e1eba1ecf069db64edb80d007fbb4eedbb

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_fil.dll

MD5 7c66526dc65de144f3444556c3dba7b8
SHA1 6721a1f45ac779e82eecc9a584bcf4bcee365940
SHA256 e622823096fc656f63d5a7bbdf3744745ef389c92ec1b804d3b874578e18c89d
SHA512 dbc803c593ae0b18fd989fdc5e9e6aee8f16b893ae8d17e9d88436e2cd8cae23d06e32e4c8a8bf67fc5311b6f2a184c4e6795fed6d15b3d766ef5affc8923e2f

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_ga.dll

MD5 3b8a5301c4cf21b439953c97bd3c441c
SHA1 8a7b48bb3d75279de5f5eb88b5a83437c9a2014a
SHA256 abc9822ee193c9a98a21202648a48ecd69b0cb19ff31c9bbf0c79dab5f9609b0
SHA512 068166cfdf879caf4e54fe43c5265a692fcaf6a9dcbf151335fd054bbec06260bc5ed489de6d46ca3fc0044bc61fa1468fea85373c6c66349620618ee869383a

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_fr.dll

MD5 64c47a66830992f0bdfd05036a290498
SHA1 88b1b8faa511ee9f4a0e944a0289db48a8680640
SHA256 a9b72fcb3bdb5e021b8d23b2de0caeca80ddc50420088b988a5b7503f2d7c961
SHA512 426546310c12aeb80d56e6b40973a5f4dffef72e14d1ac79e3f267e4df2a0022b89e08bba8ab2ffa24f90b0c035a009bed3066201e30fe961d84ed854e48f9c5

C:\Program Files (x86)\Microsoft\Temp\EUD84.tmp\msedgeupdateres_fi.dll

MD5 d45f2d476ed78fa3e30f16e11c1c61ea
SHA1 8c8c5d5f77cd8764c4ca0c389daee89e658dfd5e
SHA256 acf42b90190110ccf30bcfb2626dd999a14e42a72a3983928cba98d44f0a72e2
SHA512 2a876e0313a03e75b837d43e9c5bb10fcec385fbb0638faa984ee4bb68b485b04d14c59cd4ed561aaa7f746975e459954e276e73fc3f5f4605ae7f333ce85f1b

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 25319b9cc9bc82b5ac9d6ccd9ba655d9
SHA1 8075fc8314a74731245cd7458d197b9fa6fbec22
SHA256 a692a28302a867716186a47028297ac2a9fe261984b9d8dbc3ff145ef30a1c06
SHA512 148b2e0ec6d4e7f6ff1b4d9978d8107716be23eff67978f7ac768d9c3e6eb3b71d1f8827b78e3f667680aa3b8a56ae900d0878b74b1511b5898df7075dd78fcc

memory/6948-7612-0x00000000002C0000-0x00000000002F5000-memory.dmp

memory/6948-7613-0x00000000752D0000-0x00000000754E0000-memory.dmp

memory/6948-7618-0x00000000752D0000-0x00000000754E0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 497886e4de8f8ff1d4380bea31bf338a
SHA1 836ece622f3f5a78afa8913e58f6545af9c53029
SHA256 968d7af92ffb2298ebd3a8c8634378af65f8fae8e5aba13197df57433d0d0bf3
SHA512 b2bfe11a35f98eefba4ace2638d82f7c7cd71e6da4bd71f523fbe7709bab917b6bc9bd8abf2bd0780560914aad198d46bf8d900adf976ecb8ac0dd7b53e7f8a5

C:\Program Files\MsEdgeCrashpad\settings.dat

MD5 761431cf957bb6b19a7cf87f84aedc82
SHA1 51f2af7091d7455a9ff82482a228fec45ca8d650
SHA256 ec2a0ae03412a7a00f4b6db9967b79af8bdcbfadfff3bcd8b3d0c3ffd6f3aca0
SHA512 7d5fe81395d45412de138e2ff99cec0fc66c0d20b14bb9f5a67f5859325ba6b9e011940e3294d8892e49232f4416536c300451922afbe9136d0a43745c6ec2fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 91209b88d388b75812bc50fe08d23021
SHA1 4e314f88bdf4fcd47a938cf08a0fd5d16c5efed3
SHA256 97f733f88b1db13f8c05c31d00169ca94c672b0639febde02eebca6c77f81e62
SHA512 227dbdce3648440163747a036eacff5c480d64c56dc4fef15f928fa2b1d9cb95d6e5480cf53c878454149eb18385073ae91aee368a828ed8601b0ecdb9700a2e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dadf90d285bc670e1d347830cc57496d
SHA1 9c80d0427328df8bc9f0964d9ea69fe96f5e6b12
SHA256 3c009ca7a598908e78e95233c479393c632626bb34eb9775e735cffa00aa975b
SHA512 4aff53b613ac9b72fe91bcd432cb8bde8fb0b7330135c912b6a7d04e00976586b7a17ea9a2cc2f01db451c10faf2004e4c8e7bb287953a716f5086015d20cd23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c7e691dac1a559a4d2c777f1d7073f0b
SHA1 5f40e4ee0fe0df1af3ae34d0664627be4fc179ee
SHA256 c795fb7459eb900a432b8f498bb7be2b25005da68ffdbef292b72b818906abed
SHA512 32bfdda37ac884880d1bc0a494143cce5c85afc030b0d4b54f73e6a40e5ff085bd76ced598eaec8161f82a9f3b0e47e22f678550f903f0913bd7d373f3300270

C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Installer\setup.exe

MD5 c31297188ec9fbaa60449f769339963e
SHA1 8502d9e0cef18137529f0a46ad6e69a1577e6cae
SHA256 2e2eff110475dd3dfd732ab514e4692032e67b2d228d0081634a87f45cde5ff9
SHA512 9525e3e08b953fe36270c7b4868959e9bded055c5577e5ca94d79606b671e6660d180f763b54a276bf356e82d7073901c373e0b40cfca924cc4b38384c20e22a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bebc8a69544cd19f2d2e9bb71b56444b
SHA1 90f44074299876be5f7449a0bf0d4590d68f4999
SHA256 c7b1d9607a47a20e9b86ca38b2908c8fc8c8e2bfd09f08b5018b07dd4f92d146
SHA512 9745aa846332bd96d6c59b7b67dda3b10494969e2f4e8c336a2ec0706b41cfdbd5424a44b7bcb5ac06d1e4cb7a9324cf9a62ecec5afe959de06168fa19f06582

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1147f55a5b7552ac8ee6ddc590b3d517
SHA1 243140dd144978306cf848b6ae849393d95959cd
SHA256 64bf4898fdbc52ccb7c04cd3d3a71d26b8395e6d9810ab1f8c96bb9cc32c5667
SHA512 64b1649713b9edc13cd0b4f76a2d4d2f343ba794e2316aae6921be56e7bc15641be8a10cad69b09235eeb3aaf7e122c0034fdce1e08e84ae1fbe17e6d02e905f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 0f7cf287e58a34448e8c9d80ac529fd4
SHA1 fd06e45b36c53fb63846855e53200c92e91f211c
SHA256 528d4bfcdff9717b6034a6ab4503b9396e7de882e5bf47d3fb3e4beb1430378b
SHA512 6996fb7877d947309f15d441452af6f35b201785c24b206f2142fa538dc6c640ae19539029474471f7f2ff41d54a9f49ac995da3305751fddcf3ba1c9f87e692

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 4873178a8a47a753997f3fd73838ca50
SHA1 58a806ef8c12e8024f00d2ac40496bfdeea8e95d
SHA256 c00506cc7b5379a3e82b9da5399dd36ae8354fce107fd73f50e310355beb2164
SHA512 823dc641762972ce0a9f0934cae1d2a8b7f8f25f497685e124f9515daf4b0f60701913dda14107b4fcc47207111aa317111a2a3327272f90263d78381c8c1894

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 029cc7f83dabb3331d7398809773c61b
SHA1 716b9d703811213f901f11ff268a260c6da2737c
SHA256 caa20a899c9787b2f0185d6294b29efcc95d986bdce33d122853060189cfec89
SHA512 eba4087d0bebf9caf2c6a48ccb842067ba3d7e9191ca7c8ead5afaac5db8902ff13180b9d96fa628e308d3db09c8d1f3ca0cd092ea17feadfccd99e8b658a004

memory/6948-7808-0x00000000002C0000-0x00000000002F5000-memory.dmp

C:\Users\Admin\Desktop\Bloxstrap\Modifications\content\textures\Cursors\KeyboardMouse\ArrowCursor.png

MD5 126ac632390df9aa91ee259d80c98a2a
SHA1 0e1016a9e8cf4914adba426414acd81e57567a7c
SHA256 0ab24d553e82033f2333d6b6bbd22ba387f2a1a31565a1dba808ee50415f4934
SHA512 3fb86c0a42482a37fa588bfbb0143fc1d96982a68675e9a745ce6520fd5178ef9a979e8bfc8f77352b25b8660e41f6b74aedde6623ad9e792d8b5187227de614

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\sounds\action_jump.mp3

MD5 5e8ac4372fe9cb87a43722142d2d4e3b
SHA1 d7e9a6f1616fb86cc27dd567c42b19500cdeb7a5
SHA256 7a6538ea47940710cec9e1695284e8eb751198324d089b26ed52992f69cc2607
SHA512 72e21431a782ea1a882e3525a83cb22439c1c72f2d14154fa2e080fb682aa1a54fa32dc90d423b74def21cd7a76d7f1baf6d77c5d0823f04e7cb8fa81c73db47

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\sounds\action_get_up.mp3

MD5 fffb71b8be5f1d71eb040b22068d61f5
SHA1 d675c8d5568e67e85cd7dc03d191832349155a12
SHA256 6134552f737b81230d42e17f3b32a8e30d0943cb2fab5f4fac756c2f0e3213bb
SHA512 adeb26967e37ccffa400952c4112ab850d8475f95c87827c84dbb34b19a56acd0b88a56eda3afcc244136b05d826ea964406e67177adbe6d6ebd3cff89a87735

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\sounds\action_footsteps_plastic.mp3

MD5 08bcdedf21b7843a0554c57e33357fdd
SHA1 36498057f481df17f2a208a8d86ac0004e6d5469
SHA256 11da1dda2276b4a29315b0f91ed6deb29d309e5ffe4fde256a80b86534043e28
SHA512 15bc4d55d5e8915cc427f4d19011598d224e7053d94ee04acb53b30e8f4e9880665e2108d87f09b59716252d35230340e99422f488f952d287328f18b9929280

C:\Users\Admin\Desktop\Bloxstrap\Modifications\content\sounds\action_falling.mp3

MD5 c48c0f1f12b88868bdfa5dbe93625773
SHA1 7e0ce4bff82981d945087fd9411281f740e2a398
SHA256 7a5e846a8fefe27ea1cd500f46bb63583b45fb86596a3a7561a186a14d1ab147
SHA512 b15f9a96a7a0687219ba0aef84e35001e8afbb32e41a4e3e7b93b8e4080fc31cbf09de32e219498723438d26adcbe4b0f0685a095af078882ce94dcff0bac2fc

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\Cursors\KeyboardMouse\ArrowFarCursor.png

MD5 acd9e073f889363b3ebd9f7cc5c59c02
SHA1 d6f667a7706bb4c19634f7db37d0a8db31d73cfd
SHA256 7ff3078f857af8d09824c1091170eb991cc3cc32798a17667d45c813fa606388
SHA512 08c944cefab8979dab2796c1fc94f8ac5f22f46b524d940afc7ea2d47872d3239de5bf04fcc577d4ff2931574318524a430e9484b815941c14346d46281211a5

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\places\Mobile.rbxl

MD5 34cf579311f6f9a358bea63c563bf5f0
SHA1 c8681c2e32f8c102c736495533e9f3a3fc533fe2
SHA256 70604d44c691309d79035b2695a0ce2efcdc41adcc764e78542eefb52319e20f
SHA512 6bedf5e296cb7dcf4a2930e4ca9522bece02a76673a7d052cc6a6c3eb982a054c8a842aa74bfad9d60af505e930757d8ef257ab56e0d261a348ba74b25bd8f3e

C:\Users\Admin\Desktop\Bloxstrap\Versions\version-24872f7beace4d0a\content\sounds\ouch.ogg

MD5 9404c52d6f311da02d65d4320bfebb59
SHA1 0b5b5c2e7c631894953d5828fec06bdf6adba55f
SHA256 c9775e361392877d1d521d0450a5368ee92d37dc542bc5e514373c9d5003f317
SHA512 22aa1acbcdcf56f571170d9c32fd0d025c50936387203a7827dbb925f352d2bc082a8a79db61c2d1f1795ad979e93367c80205d9141b73d806ae08fa089837c4

C:\Users\Admin\Desktop\Bloxstrap\Modifications\ClientSettings\ClientAppSettings.json

MD5 d037ed3acf2243998b729b0b6bc8a2e3
SHA1 49d57a453165c3aeae8ed58fe115d34c78970a7e
SHA256 e33ddbbd95e72fba54128cd011aa31aa54b632a575e06b95f93f6079eb078f2c
SHA512 0f832c8b8152a4bbc017738250b22b90e07865a1e4fd373e6711d948d46d46918a5eed6f10d95287dbf5d340d75ab664856ca14f0d6424404ec78f8801f57085

memory/6376-7898-0x00007FFB65290000-0x00007FFB652C0000-memory.dmp

memory/6376-7899-0x00007FFB65320000-0x00007FFB65325000-memory.dmp

memory/6376-7908-0x00007FFB64810000-0x00007FFB64820000-memory.dmp

memory/6376-7907-0x00007FFB64810000-0x00007FFB64820000-memory.dmp

memory/6376-7906-0x00007FFB64810000-0x00007FFB64820000-memory.dmp

memory/6376-7905-0x00007FFB64810000-0x00007FFB64820000-memory.dmp

memory/6376-7904-0x00007FFB64810000-0x00007FFB64820000-memory.dmp

memory/6376-7903-0x00007FFB647F0000-0x00007FFB64800000-memory.dmp

memory/6376-7902-0x00007FFB647F0000-0x00007FFB64800000-memory.dmp

memory/6376-7901-0x00007FFB64760000-0x00007FFB64770000-memory.dmp

memory/6376-7900-0x00007FFB64760000-0x00007FFB64770000-memory.dmp

memory/6376-7897-0x00007FFB65290000-0x00007FFB652C0000-memory.dmp

memory/6376-7896-0x00007FFB65290000-0x00007FFB652C0000-memory.dmp

memory/6376-7895-0x00007FFB65290000-0x00007FFB652C0000-memory.dmp

memory/6376-7893-0x00007FFB65240000-0x00007FFB65250000-memory.dmp

memory/6376-7892-0x00007FFB65240000-0x00007FFB65250000-memory.dmp

memory/6376-7891-0x00007FFB65130000-0x00007FFB65140000-memory.dmp

memory/6376-7890-0x00007FFB65130000-0x00007FFB65140000-memory.dmp

memory/6376-7894-0x00007FFB65290000-0x00007FFB652C0000-memory.dmp

memory/6376-7917-0x00007FFB62F40000-0x00007FFB62F70000-memory.dmp

memory/6376-7913-0x00007FFB62F40000-0x00007FFB62F70000-memory.dmp

memory/6376-7911-0x00007FFB62DD0000-0x00007FFB62DE0000-memory.dmp

memory/6376-7916-0x00007FFB62F40000-0x00007FFB62F70000-memory.dmp

memory/6376-7936-0x00007FFB62C90000-0x00007FFB62CB6000-memory.dmp

memory/6376-7935-0x00007FFB62C60000-0x00007FFB62C70000-memory.dmp

memory/6376-7934-0x00007FFB62C60000-0x00007FFB62C70000-memory.dmp

memory/6376-7933-0x00007FFB62B60000-0x00007FFB62B70000-memory.dmp

memory/6376-7932-0x00007FFB62B60000-0x00007FFB62B70000-memory.dmp

memory/6376-7931-0x00007FFB631A0000-0x00007FFB631AB000-memory.dmp

memory/6376-7930-0x00007FFB631A0000-0x00007FFB631AB000-memory.dmp

memory/6376-7929-0x00007FFB631A0000-0x00007FFB631AB000-memory.dmp

memory/6376-7928-0x00007FFB631A0000-0x00007FFB631AB000-memory.dmp

memory/6376-7927-0x00007FFB631A0000-0x00007FFB631AB000-memory.dmp

memory/6376-7926-0x00007FFB63180000-0x00007FFB63190000-memory.dmp

memory/6376-7925-0x00007FFB63180000-0x00007FFB63190000-memory.dmp

memory/6376-7924-0x00007FFB650E0000-0x00007FFB650EE000-memory.dmp

memory/6376-7923-0x00007FFB650E0000-0x00007FFB650EE000-memory.dmp

memory/6376-7922-0x00007FFB650E0000-0x00007FFB650EE000-memory.dmp

memory/6376-7921-0x00007FFB650E0000-0x00007FFB650EE000-memory.dmp

memory/6376-7920-0x00007FFB650E0000-0x00007FFB650EE000-memory.dmp

memory/6376-7914-0x00007FFB62F40000-0x00007FFB62F70000-memory.dmp

memory/6376-7915-0x00007FFB62F40000-0x00007FFB62F70000-memory.dmp

memory/6376-7912-0x00007FFB62DD0000-0x00007FFB62DE0000-memory.dmp

memory/6376-7910-0x00007FFB62CC0000-0x00007FFB62CD0000-memory.dmp

memory/6376-7909-0x00007FFB62CC0000-0x00007FFB62CD0000-memory.dmp

memory/6376-7919-0x00007FFB65030000-0x00007FFB65040000-memory.dmp

memory/6376-7918-0x00007FFB65030000-0x00007FFB65040000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 713da549a99a8aa26a9ff8fd966c310b
SHA1 c8e3c1314c031cc0034fbb2201e05e80afde3274
SHA256 e0e5d7f07598f184fd54fb00154d04f2cada4217f12d4751d4857dd69193200b
SHA512 6a392ec25b07cadcafd9c9686f1e8c04288430b59951253f98eb1857c7445888ef2a854c1c3527abea179d6e04eabdea915a42d7fda2018f9600d179dc951293

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 b2a1398f937474c51a48b347387ee36a
SHA1 922a8567f09e68a04233e84e5919043034635949
SHA256 2dc0bf08246ddd5a32288c895d676017578d792349ca437b1b36e7b2f0ade6d6
SHA512 4a660c0549f7a850e07d8d36dab33121af02a7bd7e9b2f0137930b4c8cd89b6c5630e408f882684e6935dcb0d5cb5e01a854950eeda252a4881458cafcc7ef7c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 1ac52e2503cc26baee4322f02f5b8d9c
SHA1 38e0cee911f5f2a24888a64780ffdf6fa72207c8
SHA256 f65058c6f1a745b37a64d4c97a8e8ee940210273130cec97a67f568088b5d4d4
SHA512 7670d606bc5197ecb7db3ddaecd6f74a80e6decae92b94e0e8145a7f463fa099058e89f9dfa1c45b9197c36e5e21994698186a2ec970bbdb0937fe28ca46a834

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 24021fa412995e48bac34175abe2b6d7
SHA1 abbc75ffe20d1c2d52e535a5913620e212e763e5
SHA256 b72a5928c7b77213f822042e29b944c9b813f2b99290676dafecbb22400938cd
SHA512 542680645d6685b8a2a286f9e11ec6670783963406b9c0f06fb9f42612d130cdf0797875fb1860397e13b5930209cad0317b2dee850a8ebff7e106874c86262e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 934d8faa1219b7cc9b9e6acf28c847b3
SHA1 9f935f33c96c15e7d506aeb1b822fa020e74b57f
SHA256 735e046962aa151b8fda7578b45fe0ae0ac6aa187da0e99e7316766934a0e73a
SHA512 9479254e191f54a1c89af5c3a63d2ead53e7542ae750b6c0304454feab87b51056eff04c244ac14e9eeb7740901b9f6108da3e2bd818a1ef092479bc2e305aa5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8b419ab60485f47df85c0d51a7998933
SHA1 dd597c9646a5a0657117149c8b1e55ca4f99e29f
SHA256 0d641debc5c21c8876c13b47cdee4eaf57a3c56dd008271dc4fa0236fbf583ee
SHA512 ae49226bc844f7ecc6b19e8dd480f6dd670674012c6c0da3908a6edfd0e65c5824206ff50a570e9ee0cd2a19680d606875d740cdfd4728a18e7b78772ed1d7c2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 1d7c85beab960ef6952a8fc9a4b84529
SHA1 52669f90e23bfba74f15749512235ed7bbdd3f80
SHA256 c1e4fee6e8b09a9eddd28f3a04a3988cdab6f3bb8ea09d841bc78b271b52a3f4
SHA512 832e13d40c9eced210c51b18f5fd647ebd10ea2354f2b209d3cfdecc5c707518bf0c3c35d2fd8deb71a67d858cdfef575e96ed0dccd4490ae0c27ebefce9b008

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5f3561.TMP

MD5 e97857b69aeb3c0e8a04af645c6fc388
SHA1 dec3a3938aaa2b8508ff02efd45904b64b0edbae
SHA256 2af7164638aa937b57b9626f03bcfbd2793704ef63b98f007c22031ea14d3f1d
SHA512 563f55701132fdf5ef1cf9cc674fa624caf23494382b6e47beaf6e3abda6024c50b8c25bd625d0d99e3fcb24c2a80fd91aa2e6d6c94507c25878928e9b18946f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 cb93651b90b40672cf1818f52f776ec5
SHA1 d21eb36199679868773df606a52ccfb8b47694a1
SHA256 51f69768d9a5c93c8cb73dd5a0e909c64c2624f8f46fbff232ba0c394a8ad4d9
SHA512 6517a8184a8e0ba9dd43cf39b7e7a58cee2930dc3d31c9fdab0ac8277bce316200a346ae492ef9a1a17e0b25abc35f51ff6086bffdf72623fbec6ffd2d33aabf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 1cecd16bc887a09007bf963e5345bc51
SHA1 53acfdf96e825b8291c6b22d6add9e3065c9fc95
SHA256 ff0f5124b84092089648cc4893024c8bca7558cf573f6e9ceae61b354fe2862e
SHA512 bd8a6aa14ab253f069f299c883e4e9ed3a075a324167a5bbb4c0b006363112f46ee36efb950beabf296fcdf68101f1efd5393ca0c6f26859fc3953cb780105b4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 6eb6c7911223b34318cdf0997155a546
SHA1 e42657a304b40a741d90121494dc0311e8390520
SHA256 b7a81eecb1386401d52189f619361c24e85d171b0f097124660e930adda9064d
SHA512 113837c59001e8a1063cfbf8cf6dd0c4e986c3b3f49860f1d2df867ee605217ddedb00522a539fae81074e9741029736ac7b447ea4a21ecf36a13c3fc2649bf2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 d7b13a161f13c237414a153ec2c33dc9
SHA1 2f47f581e3b4ee78b2ec0bcff61610ba6521eff5
SHA256 193dd509600a7950d0c730b8e2a848cce5cffb9b2504286480b8ab5febb83a51
SHA512 030a08b8132999b55923082780dbc7ff715503c3fbe7663225c9be2efdb8d366112efac4c2ae02ffd75b2b1c6f0eeb447fca9d85a3df4095eac4c1b8af57cdce

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 efb53a46a42058da87b72a179faf85c0
SHA1 cb0038fa2b93db157cc805cb169c27f9d25e3c5e
SHA256 85de66a9bb504bb18df7be9cc36b45d7aeb84a83774c00d07da2238e627ae80c
SHA512 bcc42b5a1e9e0341cd2b9a970b7f68efba153374ad7dbc9e4d323e0bcf14c8052e2426f47f36918886330bed4dd781d5cbf10cc25a8a84e41174c36300acd67b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 94275bde03760c160b707ba8806ef545
SHA1 aad8d87b0796de7baca00ab000b2b12a26427859
SHA256 c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968
SHA512 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe60a59b.TMP

MD5 d2a13cb33787bf9451ba32fe14910aa0
SHA1 a085eef635ca026862240e3cb056c9d07aa5f1b4
SHA256 7cb59ae468d9ac213857e337fa67ade7885eef496a97328390ebdac313f2762e
SHA512 6431ff3f6c6b869929404e24682ee52fb6e39c11912969ea8dde488dbd42dc4d69cd13e5023f1412244198eeb60fc60a2f8809cda0d8d29683a137bda500a45c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a0736ac7c6a0af0b33cd521e620510d8
SHA1 290d571b752a9253dd7cc55b4508585b18a6d887
SHA256 1bf09c897f78289fb9acf3427b865514b50a19ee9532ca72ed712c2d09336691
SHA512 b64b74164408d7dcc220295ec92ee1a936284ba2c5b7bda462f5fa738407b3873881481c42bf145b1df07b059bf233a1d70da47e92ccc56db0128e735e5ef833

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 606f78f02dead1e1c7dc7047dd06cffe
SHA1 8c0c3a9baf85580a51a95153bf21749ad04a17cd
SHA256 c2d44209c68dc03c4c4df527a14a6a61932856fbf840b3b7cb8a01bd826e8bc8
SHA512 b0fff03ad3ae6005c7ecfe9178d4c9dc9fe7b95c14dee6414941cbb00dcc1775720bc00d1a24a34501017aef8d8338c7bca61259417ebb477d02ba423b6d19b1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b3ff1e58b98483f3e101a553c6f6b39b
SHA1 00da37b907bf33c0593e3c3876327a6c644222b9
SHA256 bb016a461c244d880d8d1e8fb7869eeecd13d95d7d060b1e8720deb0e076dde8
SHA512 b40b313e7a99ed2a037b0d81c263aa14b3197751c0868b239bbd518ce29ed22ef4050aaee5c193a88717bb7c273f41e10d851aae23c8cc5d1383c9d6efc8e41e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 72997113125e15fbe380c756045c2255
SHA1 c5f6dff2e75eece60d51ee1be585f83188224e0f
SHA256 5dfe1ee6761d5e21bb31ede7c20da6ae561d76539abd643f3bbe7a8ffcdaacd0
SHA512 5d4fb719808f55f4767ce9490280019f2ac31e6f98ba68077739528e48ba1bd0466571dccd2750eda5dd0a545a4aeee04187eac93793a0b4d123231f383d2cf4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c5d2d2ab118484186cb8779dc548671b
SHA1 7689ebaa407faa35fb8c5c9d2ae0e8c88eae3376
SHA256 69c1d600e1e32c2dd632f5ad1d7118d9da890eb05c23a443b6c2b6d1dc6ccde0
SHA512 3754d0b2fc49ee8ca1d4aff07e99c3990a37e7a5b9310b2119de304b783268c182f1db82ebc0e8591df3a5bbf2f565d6f79b654b755c4ae1fa2e3b40c77d2beb

C:\Users\Admin\Downloads\UninstallTool.7z

MD5 e793131964b75b4a7377104842678ef9
SHA1 05fdbbe0061189af5ea86a420eff21b820bcf632
SHA256 21eebb50dcdadcf156867e5eac385eb3fc161c80e2164bcd2c63ff131f25e032
SHA512 011b26ea90a9c6ec76ebe5fe4be41c24ae2fe5ccbd86d88015a47223991c073c4ed2b2622f678812aa43895ca2f0e96016d477042102c89fd4f740385f1414e6

C:\Users\Admin\AppData\Local\Temp\7zO8E17C311\Setup.exe

MD5 c3cb7320eaf2478ba4c63b099ed4dde9
SHA1 965947e71f3f2bf2efedb515c3818914758c2909
SHA256 c5ef64d63c18e2b386b91615e6d2c141efaf540f0d6a1ebd55b859abb6a78c78
SHA512 1208a32b4f92f38b170425519d61ecd3033aa78d4d850f6c85ec10c361f633564ee9535d7e7a251d62df6b5c1cbd8e37a86c270ed444392f7adb1cf195926dd4

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\1.png

MD5 66c82ef6bffe982f5080dc4fd412ebc2
SHA1 deaa3af6f369b2c36200fbb02012c775ce6bd78e
SHA256 f3d4f7c1d59f5c77b6a38541f862dab8aa9867c8b9f7ddb57afb0d704148c103
SHA512 a93e88de08db75ed60b78dd7a48f20ffbb942e7128d0a150497fb4d35389605e00b0c1b29631c209455a220b30c5dde2bcbdcf14ec0a9c0466a2589d9563c8c9

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\eng.jpg

MD5 4ad999118697c0735eed9b5437e2ddd9
SHA1 6f4c6026e3e31f8eaac4ab9ba633cdc64541a2c1
SHA256 ee6d8d45a073ff7c69012cf34b1fa4dafed071e709f64143d57a42be5bb6e7f4
SHA512 bf62bca3fa087cedf89c93a2a4952922e6ccf4c1ad356e68db33aae59bc10309fc37d778180ad20f48c8473a9c44fde3614a19c7e762c85588af0ca83c93ecaa

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\Portable.png

MD5 89475a0f65e50ee9c484967ebc348ab7
SHA1 06ba9bcdada628fc6b0a77437c8f700004ae4648
SHA256 5f9ca566d37e1f25d19bbf5f885862808cb6b3d1a4dbcca5af812a58ae6fedf9
SHA512 d062a31dc8cacc15159e96b18f8aaa01c4457cacc7e0f6cf78b78bc30600dadfc3d12932d6ba72b03197df7d3c2d86757c474774bca3c430d7d0c8710713b0c8

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\port neaktiv.png

MD5 893aa141cf93c75adeeb0f4e7ec917bc
SHA1 36bb3105e25671d2aa0da41e6f906f5bc24119f9
SHA256 f87de21bac4f7ee32d32f65c6754f57057bcb8b00376f13a9275e86b722c2fd9
SHA512 0a630b83b4ad69ccd0a5d48999e8702e3d8e72208a50e0b3efaecaca87d71995b8bc55c1a19918cff75710ad086d552a57bd1e861e7db2303959dc3ba2e7fb87

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\Installer net.png

MD5 1c5bfe3b17ae62449e5f9e42b762f33b
SHA1 47f77205abb1318baf5e3add0670b7ee9fbb8f24
SHA256 567a2d3cea865f672b63e6ff44fc7091173a79fa840c9d20286ecd5429029823
SHA512 07e8c8f38e4e8477248092656af2e6844e325e301647a84efd2435d9cf3e5876e17dc1baaf18435f7a90459a6ce35b47fee36f3098b74604e48c87072210cced

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\stac.png

MD5 eaec12cf0e741d23cbf1a100e7dee23e
SHA1 d4e20ea202eccedb63c35ee138726fadf16abd9f
SHA256 b38e0315691adf47090665ec21aee0c0cb5014246cfe0edf0c1f1ff36c45d2ac
SHA512 344c5f14efc854f579e925928ff3b95e213f4cf325e1d80359d7ea756b11f11d756338a921a370f6308abe78981f8f5808f4941b4646d31c7ee1819bb8216c50

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f43cef53e7621a7013402bc96e97d712
SHA1 89645d3ab7d1225f3e74a40391d5e143c4a04f6e
SHA256 6a55330a46ad722ab7d9a6636035464e22c02aa608aae1f59c3dbbf411718f50
SHA512 c754581f667bfda98a9bdcfd38f758722a6b15233fc7508ce137440e9ce1387e9dfc21a999eaa434aafc5a44fb1b0a94a5fd503726e825a1c08bb9b7a002440d

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.185.29\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

MD5 b18c705b3c68cc49d9bf3649abc75c24
SHA1 6dc8963dea0f3185368790dee2a346301b4fa24c
SHA256 c2ca3135f3cafd79bf90d4cb3118943ca17f40e0d651d1fc32b1b3d22d1412aa
SHA512 7ac302c1e85c652bd897ce1af812950cd23a53c041af82fdcecb2314bbd1667bf2fc672dea40c21858e64befc9bf60190a4428f0b41c30317bb0e5ec7c00f71b

C:\Program Files\Uninstall Tool\utshellext.dll

MD5 7450eff6374cd5378a27f494f15849dc
SHA1 5168538e28091ad0d1ebae973a531b1096ca480a
SHA256 6e3caf03f2a91ba53720493dd6430e89acb59f48e5bfcb13aed4834684103e94
SHA512 a164b046b7909cbee69b905ed4ceaccb4296fddf6c0a5484d534ca2dd04627449bda67ea75ecde3eefe604199f4073d6eb50343f70a2c04b44e16d8b5141d37b

C:\Program Files\Uninstall Tool\utshellext_x86.dll

MD5 51745e3bbcb789cdee730e609bd487f6
SHA1 7714106de81c45f719711a84c0c5a120c8683eac
SHA256 720a1f0ba688e4312eec27137306f37e00e72c1f52b5631b5f734c96062ed85d
SHA512 b166a76d10ef788ed6b367a33f274f9e2392d4dc1776233e5615fa85a7d4e001685bbd71488750b66a97a1c434a5f4bca3c2f8d31038013646e8377587e6b33f

C:\Program Files\Uninstall Tool\license.dat

MD5 a7de0cdc6e665f77a9ed4f391f670b0f
SHA1 74b4dacb4eaba1fedb6374e13c5baabed898e8b6
SHA256 cc4323b9b1bac99ae721610e8a1e55b54e79ff8824aca5882bc155f11ee55168
SHA512 8b2ca92ca4c9f9dc7da82feb924bd34c6642f0e0c32b405603c1eab7733849281a489ee4b4bffdd0add749c087b9a57b302f7a878fc360406f02638bdad577e9

C:\Program Files\Uninstall Tool\UninstallTool.exe

MD5 a68da4ed42b7e98185520bb987b0631a
SHA1 dc7c8eef9eec18e66b9a0b5cfdcfe742ca6ba352
SHA256 df89613af9e70888eec81503d71c6ac7e7cc3df5e2732598d2a0f98d1ff2344c
SHA512 2b97013429cbce7e451dcb6f38dc75241dadafe963a88a7ad912039c548ac9c5794862adf6219b83f93fb00dc31ca9348c987beedcd7a730b070ac52c781c7a0

C:\Users\Admin\AppData\Local\Temp\CisUtMonitor.sys

MD5 1b16fa25136adb7b3c41a3f1d474c901
SHA1 d6d0fc8367c3939fedc45474c37ed16b83b53f15
SHA256 917572f2a45f7b8312ed09d783418534e95888c10f3e0b6cf40c5df58a7c390d
SHA512 e67e214b87b7b5ff9a678d4ccf4c65f8f828e46969498e8163b565658baccb3d72c60c43e8b5a459ec0215e079949182c92c750484f1b3dfd0e5af21634cf236

memory/5208-8846-0x0000000140000000-0x00000001405C4000-memory.dmp

memory/7884-8848-0x0000000140000000-0x00000001405C4000-memory.dmp

memory/7584-8852-0x0000000140000000-0x00000001405C4000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\is-GSCJA.tmp\icon.png

MD5 80098e870420675d8fd79a8c78f6a531
SHA1 0fd98f17e3b14121704da6c7be0c2a58e6fc1ced
SHA256 3f22be86c167606e84faec40e344055ec2dbc81d6448d9fce2889640dee80dc4
SHA512 8d9aed337339cc3f62267a5af28b4416415671001db87530432688c649881e41ecaa1d0e6475c19773da28bd6173627891cf2d2e12f8b310874546a33ff233a5

C:\Program Files\Uninstall Tool\preferences.xml

MD5 cea06f95b5702d812be0bf9820b6b172
SHA1 4196edb3ed25d431b54ea432b6526210d36f51d8
SHA256 9e84653cfbda48bae38bd208004051eeaea7b2051ab23c2c4960fb62e74fd3e6
SHA512 f0783ae356c2c213ff5b455756164cf18b9afa0e8872bd9707dc0b0d59f695bdf01ef47e8d8add6daecbb0b987e88e26e3b11c9469f20e4e8485b36c60d99dbf

memory/7584-8858-0x0000000140000000-0x00000001405C4000-memory.dmp

C:\Users\Admin\AppData\Roaming\CrystalIdea Software\Uninstall Tool\preferences.xml

MD5 83d1f005fa89c26f366a68cf4dcf1db7
SHA1 babf0335af1de9f0d69ba96f99e3c1b91a51905d
SHA256 6b1a1b1d3fd58de78db454335bfbb0c0c8acba7417b42f2495e0697485523eca
SHA512 0bc495490277f5bab6b2165c9dc104dce1a020ac2f6a34e1514ff54de3f0e0e61ceb4578e692e26d6b283074872776990ac102c940b6b7cb0f536fe2d0218415

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\269c0465f0b4b6ee.customDestinations-ms

MD5 5a07308b91362d4bdb36ee038d09e029
SHA1 dceecc13d2eecd9c59c98724d37177910e5a1cb0
SHA256 fdcddd626b8692502641c2c883f9356e9600fdde362ee21bd67e8d38f5b4baef
SHA512 152b5b4c62d7638eccac72d1f57c81048f2ea3e8a39ab8171417b7dee757adec5add09533b1ad1e8334a79f68d87ff1d96b2ab0a0df7b8d0e0ea04a8d2db2e66

memory/8044-8899-0x0000000000400000-0x0000000000474000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5f45fd1e8def8b5952325aa0573b882b
SHA1 8eb4444071b40772b10d5f219220f5bc6e44fee7
SHA256 62ed5b3cd483e74eed38c80ec2d9adb5ebba1968b211c99daed1fa9028bd1326
SHA512 3ac540099009af330ff08d93be3a1b3ad5753b2a0a86a7e0285adc20431b3d1285914b0ff08feede236faf5ce0a6a7dba8879491953c48128b1d8ebb973c25c2

memory/7232-8917-0x0000000140000000-0x00000001405C4000-memory.dmp

C:\Program Files\Uninstall Tool\preferences.xml

MD5 10bbe18d943ee4edef0067e01f8d95d2
SHA1 7501f29239807237d31251140d6cef7cee156fa1
SHA256 986a37c0e1efe44ca233479beac2f2e8b73109200c3a661a4c1c9c5ea8c33869
SHA512 89ff1504c5ea161faa4b7afa3650720b97a0e50b9a810cc089474720f993fb9d0b7617dd3f0424ff472fa7431f446a3fad981ba6478cccb518fdce241c7294ad

C:\Program Files\Uninstall Tool\preferences.xml

MD5 db59424a18dda03cebf64d2fc5714af7
SHA1 75b83456b939f8736232cd136f0bd3db724f41f1
SHA256 58bcc3425d761a09edf839e5e8c086deccf6f5e6f92a53056c02be35070198fb
SHA512 cab3a8a97e546bb750ea5a1d5b2f7a272524e9d4dfc043b59c42b94eb675d8763776ed8d0c4c9d39947a5ec7aa74219db94f261b05d5b57dc40017611bc9d570

memory/8044-8949-0x0000000000400000-0x0000000000474000-memory.dmp

memory/7232-8952-0x0000000140000000-0x00000001405C4000-memory.dmp

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 ad0948cb9dbcefab775a9cf00ae5cbb5
SHA1 861bf643af955e9df8a0d67bc9e8424bf38a4e9d
SHA256 5720ef2eee303efc68c2a5b01449158b0b78a8ada56a176d197d647870de3e10
SHA512 a77c04042f7bbcba04c878e0dde0622bf0a12206a9435f0182916b5fbff006b54df860b7bc6b93d923fce039fa3139a2d0da19d5fcf1bc501c9f6171c47db58f

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 4f8fb46bbd612b15c99a612f8ccb0b29
SHA1 31ca04083fb7d3a7bf165daff101d68abe5929b4
SHA256 e41e3ca1361e6e42fc7ecc7650696a9565a7911b15d163e3abcd56a74ce5c2c6
SHA512 419a217b080c5509c9af8743697c8becc291193c95c896a972f4064beea32f83e51db5d7792dc0bd2498f61f0326ecddec1c0d07d459e83e7bfe70dd2b50c65a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8fd0b5b938cf0d397e87df13c1e916e0
SHA1 442e47a1ca505c985aaf974131ed10f3370e9710
SHA256 e4f6cc1c28f23acdb083312d2aacf31305b1e8ede108ed56c2b9356cd0fa1d7f
SHA512 fcd9dd7acc2942d2dcf1ab84d6da99b34976fa6867245fb34df9bdaa304baa33b713f5d5e4660af496e8c89afb323d491d5798f41a80ec04a612cf106715dbee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 cc069142644d84f13267e6e4aaf98290
SHA1 d69509909e44f3f4089d0052149d357dcf97776e
SHA256 478ac9f677bc43e4a93ccfca35343edb45fbf3f303b21e837a4d9efe55f372d6
SHA512 051f920adfa3da686b0854c9aa18f4cd12b00339f6c69a526482fd4900c4e001fb294ed3a81144a3531f58b7dc23857169766fff0e51385a18424c101dbce0c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ef9c042d90d587ba3fd866475f5db884
SHA1 38852568e0112a9b853686004c779f297a8f97c4
SHA256 8ba550b2f1ab4d0de0a456d4c9bb69fb61e191c733e076ba649f7c14e635a0a0
SHA512 64170a35f4c0c513ab0f3e7791eef7e9748a382d93e0168cad3bd737dfa00bd18a7b1cf07a5863bce439639b30ee201e14c75b680e380f8f5ac9232155c843ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 5e21d760b62254ddd2eaeda548d191eb
SHA1 f1ac9d6766df3d6cc85db515dfc8bb2121ba0b8f
SHA256 e35728fb9fd4635a7625f41cb1d2d0f31e3c1df67216973ff7e664c3fdb19cb6
SHA512 3a75f7859839d2646d6615c378b885bfd1bac1da550482ac07169b18128e38627dabc364edc0368e6a7fa6e470b7413b22aefc8b170ec49f20fd13d4c8be7c52

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 354238ad0286571750c6fdb462f49f10
SHA1 44d5806df80e9e863d795e5ec7cd97f7be0a01d5
SHA256 e102c32465468503c94e7983327480563432b8d235a56b5b8aad31a7decfe9a9
SHA512 37fbbcbf1ae7289688d4ad5666d498a5e664f7e168020580e58d4bc4eeffa08e5b401cd33fe086214faab554e87b69defb112684054d67f12a3b4f6addab84cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 528c6ccec90332076959590155b520ba
SHA1 77891001ae80f8de27c3bcccf9827a868f0b9182
SHA256 233650c5b0d47cfddfeb692cdd943d3faf7bac380cd1ca59a436ba62566542db
SHA512 64dc22d79f17ec5936ad8245813347603f39a3643a6af75f29cf027a6ee0afb7807f2bed0b1b676580635d8acadb24d5e011ca63d57eb224a927d56a69c6ae96

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2792_1056142205\Icons Monochrome\16.png

MD5 a4fd4f5953721f7f3a5b4bfd58922efe
SHA1 f3abed41d764efbd26bacf84c42bd8098a14c5cb
SHA256 c659d57841bb33d63f7b1334200548f207340d95e8e2ae25aac7a798a08071a3
SHA512 7fcc1ca4d6d97335e76faa65b7cfb381fb722210041bdcd3b31b0f94e15dc226eec4639547af86ae71f311f52a956dc83294c2d23f345e63b5e45e25956b2691

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2792_1013138311\Shortcuts Menu Icons\Monochrome\0\512.png

MD5 12a429f9782bcff446dc1089b68d44ee
SHA1 e41e5a1a4f2950a7f2da8be77ca26a66da7093b9
SHA256 e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37
SHA512 1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir2792_1013138311\Shortcuts Menu Icons\Monochrome\1\512.png

MD5 7f57c509f12aaae2c269646db7fde6e8
SHA1 969d8c0e3d9140f843f36ccf2974b112ad7afc07
SHA256 1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f
SHA512 3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4a1b3570-9afd-44df-8904-f49fdb94bcc9\index-dir\the-real-index

MD5 7733b3a351514fbc86577469fde84538
SHA1 64ea8d077c5d73816dbcd36ddbd05706788a24c5
SHA256 53fe86dc39301c3357de23bd5c9172b0b0dfdf68948a4a87fb4ee1d62c9210c0
SHA512 132a8b999492a42b6cdee787f9431103165a0eeea3ddca56d55fa7ff3e5a981207ae2ec90e1dcf81f93c184e42ce8bbc16611a819d0d9283c25b8fb14d6cee20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4a1b3570-9afd-44df-8904-f49fdb94bcc9\index-dir\the-real-index~RFe65588c.TMP

MD5 a39887afe85a76111dad472df881ca82
SHA1 c667d413a6309b9630007977436681f725da1506
SHA256 200de7b3ba7433d4aa14da00645aff178f3d9a60a6a43a28608b07839876dd98
SHA512 f96dc3e0f4be173b4a743f449d2a2c5d509294549f36e568be94f6010dde1836e321309015c1782aedd9a8462f2e0b025adcdd3c07bd9eaa5ed033b52ec42f50

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 81a36dc2981038aaad242088d43255fc
SHA1 516bd5261d68a9776cd6d8c08df0df07e55224ce
SHA256 2013466468f4590ea07d082aca7af742d1d1d2d72e47f552ef4556c6308eeb20
SHA512 fa5b7482e877ebea840b2721d451c61fd3284ce955f670db8e5a477e3594c472d69d95f1401cc130e00f02d7d1fef3f1a3e03dfccf4a4dacaa185e8d639fca02

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 59d6966f085ef6aa8346b86efa896f2c
SHA1 d71b8753ba66829636b5024a4fd7c3d17b7fb54f
SHA256 7d8500f703e06556523fd9033d13b678e9a2eb2a6c3b44c25c6187af488f767a
SHA512 374b42ce441831a47ce28b0205c00bb7ef0802b3eb12ed012223d46e8ff44ef291d149e0513e6a39c69ec99e631eea5e92e3e3ba4a1a4cef7a3496786f60d1a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 887fd04dd6e016dbd68efd0e49d8472d
SHA1 e4d0313be1cfe7a1213e0b61b269dffd35a354c8
SHA256 db377ff1024a96775d6218264ae0005f18d3ee635485b54cb5a300c14200e8ec
SHA512 91389c3b72cc651d1b78f92bee294f146f476932b214e9d4fb458d91697fdc9c0761b1f71e3e6ad13f30d27847cfd9f19c761ed54ecd6c915064dbb7a8af0839

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 8432341a32da968cb33cea63ac20e8e9
SHA1 73e5ed6c6ac16e1dcc7e4c328cd3e859943e2352
SHA256 bf6eeeabb28cfccb64548dc53c9ebec6a1e700b5d75f83e6dc5b44f507a6acd6
SHA512 f5f0a83143153eef42c6291ed70264f14a0a836fdc1d922d579db76f367e5ed98738547579775001f51e479499ca7583c3e5c3fe31ef82c379c0f0909ad271cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e94658bac90b8805d671340c8ea01889
SHA1 3377e22257133139d2b848e7ac402e3579d0c1ab
SHA256 b1d9c7ff68e5ffa1a19024f511b526f012fd78fbe0a1ff3735f076b3fc7dceff
SHA512 18e676fb2a92f6e3cd3a05afe7f8d3c2d5cea0dbfc1079b010126ddf2e0e53ada86ba636aa63a0615562669ebd3abf8b4d403343fb738f7e4ba0b2c638dd0b5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 1ed837386a66f9efc76e2faee2c2f3df
SHA1 4eac52fab06e025ea2604db4bc35befede5a6fc4
SHA256 8a7d8481ed9067dab04ce7722b1ff185e51ccb26dd1f32e945a04a4f6383736e
SHA512 36f3eef5b0ff453d6d2c10d2aa0846cfcd966ce9575c509aef49ad4ebd5be94af123d91957c41373cc8be0d4245a3ba4035368267d8e63b77908b32cb4e71c32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 eee13a7d8f99bd7be9627cfcbb8a1a36
SHA1 0ea451ce97099e4e206b190a78523092cca0977c
SHA256 4fd1d7190c68e5648bb71e190023d51e2d950e26113a06dc3f8ec937ef6d97f0
SHA512 458d817223ee01e325110fec581e4fcbe230e81b8f7f85b0d2c1ab363a668a769fa80c73446d17b5cf7068cf955a2c35f1785ee3693989805bddd8cd51a484b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 30ae58ba0cfc5c718a967726946bb4a7
SHA1 9994631508fe1b0d174e2ac10029a9efa37d4dda
SHA256 f79025f5cefa4fb68a093cb35376d019f92eb143a0c2708928fb3cb6f6804022
SHA512 be274c6d7428e85808ce58d80c6675ab3d7d207430d33da822b0030478b336fb9330f1a0c1e4473bbb53de2577be6b6656c70632279c3b40d577772354866884

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 161a90ddf0efd9f3d492f2c9c109e823
SHA1 0d118f3261913fbc2c9c6a76291ba2c60e51f7a5
SHA256 04c57411a04d62e596cbb43e6fb76923dba61768ce99b86dd3f2b20742074212
SHA512 b8d7b5281fa81ee206659cc8af0c12fa5aa2c5146d1fe3e6729c9007ad5cb8c7543e20788c084a894b0353c2ba863776234e4535ab0ed8f065b25e4dc2e57675

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6e59f4acc65dc32102c6c39b726bb384
SHA1 23eb16edc7b592595bdbbe383c158fdcd32d06e2
SHA256 3d029565e7ba2e2673df48db56c4d341b47f416aa3b396f6657758b8b19174db
SHA512 2170968c7695fd7c06d3d7eb628baaf24710113a8ca36d7fc7564ed7ae69065f17bc5f321634e6df7c670006dab95f74e97551e2d6709d3ab7ee547a684c3700

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe

MD5 3f208f4e0dacb8661d7659d2a030f36e
SHA1 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff
SHA256 d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b
SHA512 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{4FF2C071-94E8-4712-91F6-B569F833EE6D}\EDGEMITMP_71017.tmp\SETUP.EX_

MD5 5070a34dbada1aaa375cc572b5fc7d0c
SHA1 e74b7ef714755870976abe3d2b4a7db0b9cc21e5
SHA256 03e7a32e1f10fced6a07dfa4e6cfd92510d4bf6929d423798e4fb5ca91fe6c20
SHA512 fed3fcbb64a59070b0efd677ca2edc982d28e37cdf7283f2777af8aca7d3760a7eefb8d01b3c2bf4b4ec3708a74c3412f0dede91e31dca1b6f8a4e4edc673aa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 fe176bb98b1bd669b09a33eb65b6a364
SHA1 0b7e0445fa781231822de1b7f74bcd9532c6d3f7
SHA256 7e15855cb1b7c76f9a56f024a744f37278f59a789b4e63d27ac67a5250ef152f
SHA512 c226103cd28db349197713b03eaff67c0ef9dd6eeed45f76da8b4c94b6e7df610de7eaaad04f6854de6c6a447351bcaf6dfe50f0a27c52eec5458f3a5f3e8fdf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\configs\ReflectionLoggerConfig\EphemeralCounterWhitelist.json

MD5 2665856d00641a29330d7d288d1763c2
SHA1 46ade8b16db4393ad67d7720e85ed227bd563799
SHA256 2d3b37280cff13a1fd0a4d74d076d7ed4cf4779cdba936b8b986bc812fa06e7d
SHA512 fd6af3ba2075cca6a49539b6f4983132b3fe2a106948d10c59c698df909d961ae8c8c08b9e7c3984e4066efe32a635d012325aa41885a7adcd32b55bdd72c011

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\configs\DateTimeLocaleConfigs\en-au.json

MD5 8938eebe2f3155af06df80b86e7a05a5
SHA1 ed54759abc4237ad84e95c3171c2111d1a7e1fa8
SHA256 72e7651dc467409cf831ad25c8d382b9e1ce6a685bab6e32d8dbf60571e8882e
SHA512 d032254cc9f44e36c7603ac56e80eddbdb518c951144ee1b5975f571dc52b02bfbc6e1c2c4c7dc1fa711edb5c49ea393fd8a680824d3841527031681e01bff34

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\RoundedBorder.png

MD5 813861d946e685975cf1ec818f45e8c8
SHA1 06b08750c469498c3cbc3983b0fb9143e5e02f4c
SHA256 604276dee0f5b5099823fcf8681435fb1bf0f2fe2de353d9abed1f8e5ddd0b5c
SHA512 634aed09ae89517a959f18aa719b9655e03c2a5400962a9c52a1814b607b22392b9d32431cc07bdf364aff6f63412c090135ce68a33f691b9e8b8cf11b3f8b67

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AvatarImporter\img_window_header.png

MD5 1a44a2f4c32a23515ce0bf9dd260d7f4
SHA1 8bdceac5c3c7e00a5e4e283e325895d8bfa3da42
SHA256 b66872a1911cc3e617daa1f7637a43099bef01f0928e3f1253f9de78cb8efd7d
SHA512 fb9c640e6f1dd440d3d9b0dd282f7fe71374e73c96b00311ee7a8e94ad258f48368d95cbacf37b36f93fcd58bb6305828b95285216ba467c77de88b02f462310

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DevConsole\Arrow.png

MD5 04e3809a79b0f6c4dab9a15ad2d6ad65
SHA1 1f9d974079c249a3b474fe4648c144469186e27c
SHA256 93f2ca2be07b1be8e81e203a6a0c26762c48a52033dafa09a4646cdf51882041
SHA512 a841896ff549a7c6df08e770f31dcdc9045ffed6f6b0aff47958e3cb9abd275b1e8838186c722f90d0825bca2b8f9041ee0e3547fae9a370dd0478fdafa1c504

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\Debugger\Breakpoints\MoreButton.png

MD5 69645e4bbbe34819994e8428c0dfa0fd
SHA1 eff3a177e4ead4376faf79ded1689999e4479264
SHA256 c4a9896b172ece8f2c9f112635687e2e416301906e0c1d8c85a551cb0dfe6b42
SHA512 cc42754ade9b8441355bfe41176ee07df427da1af57677bf4d2c870b7f66c72014f730a7dbb74321e3e542506d9415fdf2ac0b6ccf4c5c74c1f2db30e6851200

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\Cursors\KeyboardMouse\ArrowFarCursor.png

MD5 7fc063459c2bc2c5f8d348781d9689a5
SHA1 566e5f6dc24ae35fe8cab66f405570d861a9734c
SHA256 750e61ec1fb3b598a989d178033c8117b1d4200dacdc44c606d7638c746f136b
SHA512 4661264adf0f223881e395c3c001eadb2b4554122eb2f0193930f868be69e4ac09702ee43b821329e6c8c696b5c9d6687b297820140decf17c0fc9fcbb430983

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\CompositorDebugger\select.png

MD5 1575e6a7bde98bac564ccecf07fdad46
SHA1 c5f4aae344025bb2661e9be6568b5064f273fabc
SHA256 c029189ed0e22471d290aa50071c6ab6b0cf3615dd8fbee9f5f52e20f2d5f144
SHA512 e8010ceaf75365d9f8df4c02f81ee0f44c5595b303afee6ccb4e70f5ed9bb7e5dcedb1acc657f41b6c2426fba0cbff42640811fbdc656b5d7cc4c286d61d4f2e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AvatarEditorImages\Sliders\gr-slide-bar-fill.png

MD5 287777e135a74674632a815374e8cf18
SHA1 51b689c8ee37ca8b58d89e62c55f04a45b8afb04
SHA256 2de301dd8c71c5707813b6dfe98f53b9f6e748e68a1e5909873858dcf87364c1
SHA512 dc0ca9f5b823c1a357d73bcccc306be1be063e1974bf4f1723dfca684749385e4d2c2f80a2d15e95a8b14793ceafcd72af0f4a5384d73ee486a4c4243835ebff

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AudioDiscovery\error.png

MD5 d61cc6f519f5db3203efbbb28eebe0f0
SHA1 5115d34375f4335b7ab8d1a24a1771f311051e93
SHA256 d3951ba0f98ef80e4a91349949f21a71e1eaf27582811e09dd618ba45fc67ffc
SHA512 992e28a80681984062429e5faafd5a23965356b4433c21cdad054553e95e544272e82efab1564a71a0013e13300d14d7855fbacc7a65b082306b6c6a8e54b8cf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AudioDiscovery\done.png

MD5 160c3833d61490b033cda0412a7c2a2d
SHA1 f3e9e50b453f52528747027fb8451f2c56544f95
SHA256 98e48e93860665d46f1b082802ba5d5f700b04957df77ab8cedcf4d399b77305
SHA512 d09c5bd6b8ff823d8074a820de5b4a265a20b045b6cdbd8e59e8d3abf74270b4f923ea057a1d96e12b046c878daec5db3285c22c05f568f7ea2c62c4461fcc44

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\TangentHandle_SelfDefined_9x9.png

MD5 a1772485a25255e1109ca0b5498a46b7
SHA1 a9880e7c46cdf740067dec971b60444dd37b5b55
SHA256 ed03f99d27beb430df7dbe4ff192253b835a6ce4557af3821621b456d2849711
SHA512 532e3e87c90ee24bc30b19642496ca7db8f43d965d22013f82b01c1281322b8c7821279d0af3fc77cc565dd80f0daa3c9f013e48d06dc9be20c97a0cc48007eb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\TangentHandle_Automatic_9x9.png

MD5 8c313274f18a1fba14c453f90517e5e0
SHA1 5a3a159b4ca817e595ae0536f76de83a3bc09a7d
SHA256 b15356e17acad6ceb3ff1611f24e443b7f05472ac6ada812e35f583f452b41e9
SHA512 cca6480fda34aaf5117e42e339dd2172c581dcb422d9fd8e8109ea840a874b6873ed96ec49d8e89d53f61b978a77507f0c3487b2fb8a06f078c296bb2e56407a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\img_key_indicator_selected_border.png

MD5 a7b8f9aaea5734fd54ed91e5eea89d43
SHA1 391532a89a681930c8c188322a0eb6354aa4301f
SHA256 10c63155df14ee4722692d99c7036903949888ff3b72e19d7e4ab154a9236894
SHA512 edf28823b810386778af9be544a776c0fa6d65ab2f019b087abba5acf7bed9c0b40aa664320bf97916de4d805c15d4c3791347e67cf80414666c23fb61109135

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\img_key_indicator_inner.png

MD5 6c953f8f6a7d93ba2952e957e7d89168
SHA1 f76348c793f8d218afb8e70cb8861a4635886d24
SHA256 e69c3130b08d8659870de69262bde1937787f8f609fa6be1f7ccb97fd2115a2c
SHA512 d125db38c898ea809f3f9fa9956765dda054aa5511391dca0e7b01162e4593ee458e6e75bedce3925278c0e6daa18e827f9e4c33c935d4497e3e4ad2bd9e5a72

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\ic-checkbox-off.png

MD5 26bdcfe49f01a51083a2e7727356c33d
SHA1 4650c2063d21cb95cdff2144327eb08f4f0f7773
SHA256 cee662aaec2c56ca20f594e5b6de04848e81279865f1865c61971bf74f324cb3
SHA512 88f33e6c6f863e7330f1ad82a24fe19c42a79bf8036b2c03cf4b66fb16499c2b87eea1a093f7a68bb80e580ce7cc07382faaf990cb9ea5bdf688e4c21cd2361a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DevConsole\Sort.png

MD5 a2c4f55a6b2891c9ea2e7c7d546dccf2
SHA1 11ee60b87958bd381d3b99acff495570b0d7cf8b
SHA256 4991b9928ea2992e2dcfa5fd62eb3a4becf1646379aafe5dc4c4bb1defc1daba
SHA512 cd8c53e127c2a07f4b746d35b9e31c30e0d41967be650c66b9c56dba119768e8dca341288f37c86a80ef06f6703dd6113e70bfbade4d9c04563a53343cb4e11e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\Votes\rating_small.png

MD5 efe814b37ecd45701803cd3f3525c7d3
SHA1 c5c244c572e125a65be61b1a1cec3cf0a9723199
SHA256 d6b537f449aa22c1d9255919d293385a8b13bbd42e02b690df07a0f698414d64
SHA512 826b343393eb1295ef92d80122d0b9eac636567647040b4c71554195fde14e306bcb75420b5ab85b1ac9409d152b1808ce97c7fd1c2eaf761aa46f2b6bd3cd7e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_chat.png

MD5 d3d3ae3ffd214bf4fc73afee12ddae57
SHA1 57cfb749638f707a20a76ae557900988b8f6b7d0
SHA256 4ce263f97f0e271fff9e445d68638974c88dc5379a1b9b43661f515db9ab41fd
SHA512 2ec5f5d45d5e0a6274631f9ddb23777526ff653fcce88c40c6f33935a7f4c0ee4d432564b69ca983328441894be7212e696c87550773c39c2def8076fe165209

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\icon_tick.png

MD5 71898a43a16fe94819bf1711206102bd
SHA1 699cd26adeb8721fc1b647bcc796473f3ddcbad8
SHA256 44c1fa71b1f2c2a7b5f7a0d2bbfadfa5962cbed33d51cfd6fd14351436feb6fc
SHA512 a3bdc53a5c674f90e84b2067c426987b1108c11d12596b329322f557b72e6ed6871b0114250d25a5f9c2cb40043197a7cd7cfe44af8b866c7c572d68309894ce

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\button_radiobutton_default.png

MD5 6a06a79d3cb4ee2317321ae62de91418
SHA1 e004e70419ba1b94e7fef7a545dfbe92d947edf9
SHA256 885375cf5a1369863ba7503196d702877a1b1770a5dbec72410a7246fad945de
SHA512 91331ea24a0994f0b67c935effee9eb82e0763153ee4f0b5b2c860f13b7fb57bee8ba09908cbb88ccd7f38c356541dcd8b024d2fa93fd1057b04d01650c55cc7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\button_radiobutton_chosen.png

MD5 126c70f1f08bb34687af9f8dd166ffe4
SHA1 046437e76df775de276dee4b7d1a9545f80010f0
SHA256 4903f498472e3ad6405e5fe707b77941e87abf6e6f3b75b0c83b17ca0f44e47c
SHA512 5dd905347c533076722d75e20d4a00bb480e99239d919348665c44ad91deab58c2b045542ab5d4ff59a74d936c3fc7c7caafbcb898a5e7f84b0f7a29cf97a8c3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\button_pressed.png

MD5 5b99e904d991c55dd9f606c47a3d2419
SHA1 192718ca186df4c70ec0f0ef835a904808e4c578
SHA256 2ca07bd5afcf844f5c8af8ea92fa9cecc7a6a022f335d8378e4e05a83564436b
SHA512 18a38121027ae690b31a1317ca92ef1cd5e079ab936bb72ec20f697e11eb27c733296b297240c27180abf2bf867783debf907300b741a3103b1662f1c4380c34

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\button_hover.png

MD5 de2529a0afb4baba0cfda5bbd33c6ecc
SHA1 63ae6d57f8c6d70ac72aaeb28044b6f402914d4b
SHA256 4f5f6ba747680f7fed25e213120bcb77ab6d5a5c6800d6f4f2804039241e5fe2
SHA512 96c9e461b0215e9610dd6dd96268fd1e517b116914ead080aafa87cef1ad4809160cdbd951e3f7949f9938253b38db7fb99347467dd1e211724003e37d74b104

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\button_default.png

MD5 6daaee55409ec66e4590b622583af279
SHA1 4ac228776e59918bf99e0bbc18b95962649d2f80
SHA256 19de126f489942459ae47ce60c0d768903d0efd0fff7b8ea3558e1e8e6bccf7f
SHA512 75590610a2c1cfdaf813195f9e83753c318ee2cbe8465a7be16f8016bccb0e3815e4aeab93bc739f92f6e3a34e17e327bab366a1888fc476351734b5e1c9f678

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\R15Migrator\Icon_AdapterPaneTab.png

MD5 628e938ead319adff7dac275a127310a
SHA1 199db8ae2baf3833f48df89bb58725b92055c635
SHA256 a654ee1ddbb6d65851d4be563346313a7e22e48728541b2cd685d62692bf95f0
SHA512 9c1de4209af380b8762d4ba0df0eb91a9cb70afd4ecca22e3b98215537850e6096b2d05d7363fec2a17717494e14097bc5d81c69f0134d4b38dab6643b748526

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\PublishPlaceAs\TransparentWhiteImagePlaceholder.png

MD5 fa611767c9bf0d60da81600d21ae1639
SHA1 e7499acbfbbb23b754af8321424e2f930984e61b
SHA256 6f048e28f3806a6062cafce9433691ba04817504faca680e602b1561473002a3
SHA512 b0e16bb34ca18f60025b4640cdb1173f6d416f2d111ee398d540b059b0726345027eaa79e6a656f2e0d87b3a2c4cb910222b0b8c0cdfcc9c4cfb67fbcfcace19

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon__backpack.png

MD5 7dd238d5fb207a6d05c479657681db18
SHA1 01a310aa854cf32e71cd86675e1118915caf3200
SHA256 393846d8d59946b7baa70759e3568a4e123c39d420d5750dc9b71611e382f735
SHA512 f70adc4e7e934900a2bbc3e424680486608c2c6c4a192c4f6560fe132c1a2d59ddc54bbbf9b16b4cf54d615be81a7c0a8a36bafb60e064aadb4bf238fb911d5e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_minimize.png

MD5 657d382fd28d9de4123bdf9201b9ded9
SHA1 53ae27d47cb8694dc566fdc84c594de214aea01c
SHA256 e4df133c802e9901d2b63a1abdff9f78e334f5c6a3ec5ec9a6609094d13fa859
SHA512 c2d245d9f92a898f7a66c310d5851a153895cab3dffcfd7b9291a3d050c5defaa3ccb238b052d08fcf41467b55d3992d023ea13cb665fd41ad46ced869a227a2

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_menu.png

MD5 c0f639b7456fb6ff42e5b24d4dc44a66
SHA1 9d477ad963847d1b3c978399747aad09494d744a
SHA256 b997e9e30afd770e15368f5ab4d5825b280ae3e659c6e91da6a4d040934eb3c1
SHA512 dc2dfe054df8ae74988c0eea6f8dc9c5811c7675de1f1620674f08592dcd57c7a56a7756562a122bde4ad94c81e93ece96d80260ff9a43b6391bf3df3ef6ccba

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_maximize.png

MD5 e76eee0b3608cf1902d9958b04ea7b25
SHA1 90355eaa97545c06c0d1be93bfe718f19ab59bd5
SHA256 944d369945f2a4439cf284e5acfdd3962d071160677aed27ad084dd5632405bc
SHA512 cbd5491399799296e6eaec22421c25517b8bdc9dec71404d393804041a7c2e4d7c21b7c3d4e4238bb86335f07a35a6978b1e496787ee0aa93e47e8c237576d60

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_leave.png

MD5 5a2c517212d1a8739b1d54202e1067fc
SHA1 e2bdd4bf9ffb3cff42941da26156f09e69e5a198
SHA256 5c48ea304d1f46d592d14f6b91b65a6a57c59d64604bde8d688c4c82480ff4b2
SHA512 37f3c1f37a8fd2a4a45ef511f6fb4e35103a14b142ad56a7168ffba42c5094050f894af14d543aaf4a45865d500fe7731077d4ca794fc6275ad0c87f3e522dd7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_leaderboard.png

MD5 c91b571a5be26fc3403aa32eb4383357
SHA1 5c0861f8179a363c403b2ab9b6e929266f86be88
SHA256 2a1bbb816d4f85ccc26afe6911e1b1cf1c038b2fbf353c061625bbd3aff1feb9
SHA512 f54eb611c4af08996492de8d954f01fe27f4ab540432d2fd3cac096782b9554ab966369668e975381e2be6fd13e17a4fa9e07e81635886cc27c25108085a5f41

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_home.png

MD5 3bcf3ceb3a9a8fe31cff6b998ce293bd
SHA1 1b4e6a545f10bae445b86e13e79c58abc34d2dc5
SHA256 9547bd09c8f6daffc343cf0c6bad800d31826cf9d1c27489b2a1b50855652544
SHA512 27d3fc82811edb0733881078553c469ac9fb2d207ea01227b816fc399a8cbad57fe2888856cdffa4b61e38f07093acae258f74eebc4f8799ef048d60e593ecf3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\icon_emote.png

MD5 3a4490e4e7de8076591ab9bd9a690b1e
SHA1 37c2c94767556cd8feb46f34a459860f545856b9
SHA256 bfbe1a094b5dd6e4d4bf2959941e563a450bfbbd55453f30d6d87ecbfd889ba3
SHA512 22854a9ded5f53802bbe8448d4dfe9c76d19d54094999e5fa42202169e75431fdb591ccad5ca1a866ff81823887216953837fb5d1942b824c4a18d7bea3a628c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MenuBar\divider.png

MD5 37c110f3af8feefaa02e2f217792a6c6
SHA1 20eb9c3aa1db7f48bf11f88e283e4fa8d28140e9
SHA256 675d308aae176239a036c900502f3382eb92701a78aed58f7940b965e4fc58e0
SHA512 4fe00f9a8d8e4720660de3bc9733908c6c84f746cf7ace4c2c2776018810e978d8c930186f583aa6220eb097ac9bfcc46fb2cfbc8926db7fdc471350b5d9060b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MaterialManager\All.png

MD5 95462b3e4590552191bacccd3e748220
SHA1 af0f50b0816f9395d51c17d7140f1ffa297a6e7c
SHA256 40f5abc4db78d43521461eaf2b63b686e13146b29312871b4a536a7d35b996fd
SHA512 0a4b14c2b4dc2d94a45dc58e6a223574c4c74ff61fe0f391a628d539f8f4ed28fa254e2b857380b47130961cb87f0cea48ee717d0fa5529e803a46c479c75ac7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\MaterialGenerator\More_Menu.png

MD5 582d98b59b48226883c636f89852eac3
SHA1 2129db668798fba7006d89bb4aedf3e1943a1ee2
SHA256 eb0764b73cab6663afc1f9539d9752be98eb519022eb5e417aa4932df4b161dc
SHA512 480c6ff10c6f6267b5be9938a5df7df9b969dfd6c9f800e278105a7f1d925c7845a6c44ff2c860fccc1cc03fb1c9bd6486a3f9160e8a57487e7d02827f4e1f89

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\loading\robloxTilt.png

MD5 5c9c07ca5f90ed4f815745f2f6a93b32
SHA1 b02807e09ae35d28bbd4c3a4a46286df64867a35
SHA256 1c3f058f0469890f5407ccbd6df318e1206e1ae5c48ea71b44e2a6e98fb2f20c
SHA512 1b9879549ad4259fe8efd7af262a6b8ea13077b05720cea986329976a992f7323c1551fb49123706e144b8966601664ebcae538928fba4be5ff1a36a24112476

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\LayeredClothingEditor\Add Icon.png

MD5 2315b7dcc318105ec101f1c3ebecde3a
SHA1 5de326b373104c64ca4a6e392c17916ae18a0584
SHA256 cd766533e7b399bdc06a88542c1be2fec925cda5f893e917a48cd6a855dc3c8d
SHA512 f3deda35f8be3b3573f22b4225b034af965c1cd53dda7644d1d47d1c43f24eddf6622bd182d678c93fc24e735b082bd6ac992b339135cd0837455d42187b830d

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\Warning.png

MD5 f49b7bef08c774d127ca1c02cabbd0f2
SHA1 132bdf993de5bc07976a2824ec7df84ca5ce2d8c
SHA256 314dbc8fa127896f00b3badd99086020ef1c365b6609c3bfa8cb7b3ed9d1737d
SHA512 5503986267d5cbad9531c521c51275baa0e5637ce2710dc12cbfa8cdb1b0553303c58c570e279175dcfc3d1c9f8c95b98a9e1959dffdd51a4486953d565c4cb9

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\refresh_dark_theme.png

MD5 8678f2434612d36983732062a2f8945d
SHA1 7b02a3977026587a41eb47c1e9fe81c98c3a408c
SHA256 cdc2bce3b69893c6af295c43364881f7cb7b07eca1a904a89fccf4fe226deb1c
SHA512 1cfd4d34096f037f4d1bac076a27c4ecd68bb6e7ec32aa11453db2a55e1ba4a611240984d346d84edd6e1bac834cff52291642924bf71dd670a08b73e3809712

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\MoreDetails.png

MD5 d9775b64e933235b2590d01ec7f0c602
SHA1 f441faf816baf976eccb71d2ca33fd03eedef7db
SHA256 772eeebab1e0f3ad4cd8110d983e3057ea74ced1de0972911513f1ac94b9b567
SHA512 9df8f931f87662c5353d8a9871bb5b4249c707289d7a3da435d32160298d8821ac68105d8236a809c3b0d972f48390d5fc06ec9358e079c749af2a43e851fc0c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\edit.png

MD5 4faba6b283d05a2699cbce11c02dd459
SHA1 ba236a1ab8520f5a4cd1f51a759d056dad63911d
SHA256 6d5a3230d8a6e8f4f16692ca01e969ffc6b1b65f7c23ec7bca9be9fdc98b9d35
SHA512 b60d97fc18555eb57fa053a5d0dda57bd8531e73c986a099e32ad7a630b910a5c0071bbf2dba07bfe8d12e593b34c0966ee5b36119db517e212e505c5b14219f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\copy.png

MD5 60209bf18728f34817c6deb999764c42
SHA1 2ba24d76c7fc3a8239c9905ba0dc93188740b0e1
SHA256 a1ddc6e244ad62784431a5516c600d77ee7acba25ef6f0463c75e6093e734d38
SHA512 ccfc6541eae8f9703f4a789e0e37daab45c533bd364c7d025a898706d9f28efb929ef396ca5f0791bbaf9e8d88ce5131bcf16c01d785fa6ab20afa52fc1125ae

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\GameSettings\CenterPlus.png

MD5 cef0711bb6a9f58e2f12af3a1fa2154a
SHA1 0beb9858d5686f73e2f613d1cb98609de6d3cad7
SHA256 e7bb7a9ac9617cf9c342af1971ac87ba282e8016a62dd13b1eb0dc855da89655
SHA512 646c4a636c68048799aeba0129773ac811169ae1177bf8367f7b6bcbb305d09dd93d3a941b3032e58fa02ddf6c53c542c4c08eef0b55ec5dc85229fd09918892

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\MediaPlayerControls\play_button.png

MD5 682faa11af8256ffd2e18c3f600f4c00
SHA1 fb65034db8d284906e8e6448477981ebd7af2b0e
SHA256 e3a952ba7a966218c4d4601557540a482d9f5bd5c1d67e0d91fc2e8ffe3671b4
SHA512 e4cb1bacba40de3baabca0c176990ecae96fbb43acef32f11a8ff830dc4d17b026f13b1f5af5298a05d2cdec817c4c400db1855f2101ef05a16f2775e64a2a70

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\MediaPlayerControls\pause_button.png

MD5 86d904eaca21d41718a1d70c6c10807b
SHA1 24814ced0632d60f424066f9d508f622036a3d59
SHA256 cf803a0dafea9aa18e51f814a2f9c8e628f8f6eb9991895ad3cd85ba9990ba1b
SHA512 ce6e131e912fec07f6174768b75e148eae05376099bad9a4630cadc8e7247919a3e37717af432615c5b932626c9c67f0713469c3d3d11aca59abce5e5f2681b9

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\Favorites\star_stroke.png

MD5 c55c40aacdfa18c7b8aa41b4ab1f7223
SHA1 7c66a5bc8b9255755c92d10a56496dac59c58602
SHA256 8fc3f7100130e555e74326e8a98e6477cceb3546a6704703e0d4b710f442689d
SHA512 de8255f8e99fbefe4752335009ce26876ea4f7a3ad4e5d3e75089d41920163805de2352b1e06b3622b27e73f267b1e1364327f082c62eb7e8e9567e76686e884

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\Favorites\star_filled.png

MD5 21adb66511447a9bb5c0742c3f6830e6
SHA1 2de8f64aaf93a1e02b2f8b0dec953d0817b9ce4f
SHA256 647fc778b99d42877c000a568157e619dfe2edf6f27bcaa5ec45e3d81fbdf972
SHA512 bb51b61bae5b2ed14e2ccc24454fd04669796037d3d77033cd243cf171a5c524c6babbd16d38abd53c0f2125471af871cef5aa0d70b5874df75e8ebc67137091

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\AudioPlayer\audioPlay_BG.png

MD5 2321a64952cf4a756862011968459fb3
SHA1 c4bdf8140b3ff345421e4e67f43821203b7d0375
SHA256 abecfe68525e0183828e6c360fb810b496e7c11a12e5b34a11b7f719684f0a60
SHA512 57e3393cb945f08a79f3467ed2969a53fd4fbfa74ddd495ad770def9b45cab05083d3f7c21f5ce698749ecd69d7d4f569e48d557159e1cd5cf24695c209e61cc

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\AssetRender\hierarchy.png

MD5 7c2f300d95773f2c3a27b159a4da3c76
SHA1 0bcd607c2999b38203b4225d68e9b8e4d5698d50
SHA256 c5dd6d9463a4418ff3c7787460a29dadafde7ac7065b400cd158c8131ea5dc1e
SHA512 8166663cae11a9bdebf04cff17b40d34790f38a3f80b88e77dd91622f2eb8c0f26462fe30ed5e9f4e0eaae4f8cdd3c35aa17a365d4f036c332311542ab831230

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\AssetPreview\more.png

MD5 43aab57b1fd2cd1a6bbb780ccfabd67b
SHA1 dc1d3d1be592326a11edc3200d9f044373f0b164
SHA256 026fc703c2417318a412faa07d6ad48078c2fec2b19e8879be482c44e053d7a2
SHA512 a3c03af2448d9ddf042c14ca7ce084e8dc10fef630d5d6df9ffefa0027a68df0a97cd60ea63893b3d56e30b7a113b25b8c6b9c0add293a03424ae0ec6f69ae20

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\DeveloperFramework\AssetPreview\close_button.png

MD5 d477fe1707aaae5375a4a68ba271d7f5
SHA1 7b1f98effcaf5ba7cdcb21461ab4ac133b2912ff
SHA256 cf55aa122e93b491b1c9e39b4d30434f9a068d0f81ca6e9957e882b87e88196b
SHA512 2ad78873415d4cfad030002110598fb15795596768e04837c10328b1e56c60eefcfe5d4151b9a78c026ebdc9c2b83459b5aee5f4e6a09859dbdae57651768bae

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\ic-checkbox-active.png

MD5 824530c5779efba3da8fabf8f141122e
SHA1 6180a0391853c3581e765dfa6da88b06ca5140c8
SHA256 94c4d3612d181dc008c96b44dde1a3a634c9fa862ec8f39ec86b8360199e68ac
SHA512 9b165f8ba0307bed982aa70c4ac02e4011908e92d523af8bae5b323c35bd52b0a7b650206553c707fca2079ba966b07d8021ffa310167ad175bd1e1fab74fcf5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\fbximportlogo.png

MD5 2a4d27a3f3b21b55b31d34931ae7c956
SHA1 3a29912f0e95a076ff9b4763517c836dd1e80efb
SHA256 fecbd8e4a7bf1aa1c66bafeaf718dd2f494442b140e49d2e22073b027230e518
SHA512 58353f7d4bc6d5055681de3621703f50c7d91f3ec025fc4a825c845cdca1dc4432da43ef7c4786ea6aeff0979b379bf6693effbd6e4a440a768fc0780f053c79

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\[email protected]

MD5 27e25e8e79253929eaabe7ebb9a41019
SHA1 9eed3db83b00ff4175e84928466c5ee724976753
SHA256 993e3655350f2292ce54b472f355aaf42d0d71fde4ffea717d0b9875f6dd204e
SHA512 238cbebe41bda44d153bbde931d4ff5accca44f7a96b999238aab6eaa840d944543c80ae863d7f0601d16551f67c819884159f553a5ea85b95a2ee0a92f9eb76

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom_hoverpressed_left.png

MD5 269fe485cd527fde7963d0fa5fe766ba
SHA1 ada67b358d6bf21fbddfe956050f93ece5607075
SHA256 b5ca759a248d36e8bf5593f307c3ff779fa1d2dddfc5bc92bd0bc8b823a454c2
SHA512 03431c2a053d935fbc25797e0c069e4811838d44e9c8f45c1422ba58dec34cd5cf889f18bab417b72d84788c900638dd6794b1beeb5a48370b348adb568e8a5b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\[email protected]

MD5 57e26dab25ba897be5440600599a2fc9
SHA1 9ce0b1341b8fc2ea1bc3fd15db54d75646bc4724
SHA256 bcb31d098920992df01ca00bc665cfbfba2ccf156e2aa6c920ff86bb47554d53
SHA512 ff1fdd74fcf58db6cb71877ee7c1cb1d767f45cb17ca114329adf56c7b2d497e120e39c83195046ea26555bae6759a7f22ce354ef87f0eb69971c3d3264cc2ea

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_zoom_default_left.png

MD5 ed1283a8c963f0b50e5558dd4e4e8b0c
SHA1 4249ff588c168e8eea1c56d379895d5982fbf422
SHA256 6c83abfbaf6b434139935dde4411bfc46daa22825e617246aae2908e130793d1
SHA512 a21482626189a000e927d1477b56ece332a935706d86381e4ed99d72b19645818c61e894b899f3fc61190e9a6b43636c9171b9ed87b49c7089796b20d3593978

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\[email protected]

MD5 ed8ace4aa7b220c4a31fd36330527130
SHA1 4902374f18d6768320b177db8ad95b4d74136eb4
SHA256 09e4377c563629109dc26666da114adac215583f6639d980b0b8c0fec6f26ef6
SHA512 e5b535a4c761f6f45bda182cfa12244a0f8d51273a1e99ab457ad993a8a70479b0a886516f75b6f9b6096ff377a9f1fd7b0e230e622b968ed74e44320450fa10

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_control_start.png

MD5 a9221c7c3569904efd404517e1f90825
SHA1 b5695f7a461f30c610d06f3dc03bb6fe6b5c1bfc
SHA256 1a042003ec56d53379c4ed170abd0e9e3d6dd32331d8637e44a0d130cf5a710b
SHA512 b7d27aa148270e9404c748cfc09ace69952f05f0edf7caba0a6999a7ed63e529f3758c2f8e72a15a5b3bfd85a0bb4959bd00b86aba871307bad3399bff7f40b5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_control_previous.png

MD5 6e8a105456aaf54799b1ae4c90000ff1
SHA1 5a9a277b6ef822caaede13b34c222fb69451c141
SHA256 fac4a9e1c49c9f3fc07dbce40f4648987cf90f4c2ed0a96827630341621e9845
SHA512 8e74329066b3c0c4b8303976cc4207b94ebc7ee38b74dedd490c2006feb53a99a0671e407ec649ec9da6a4d3ddff46bb7150963dfa8254364ab619db9ec3fd54

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_control_play.png

MD5 dad5fb6a59c969030d9a691c99c9ca1b
SHA1 85f82181fbafa9bc64f27d996cfd44481f40805b
SHA256 0cbe6ce1996b53df1fbe6592153069139478050441d0977c923996e2700dc226
SHA512 ec833c88ee063d5a6b0294b0d94e7f11ddaa4d2e21317e90f977e7d2627cb84b4933507cebad9b45c67906f8e95633064c607c88f17a65fb5bfcca932a3216d9

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_control_next.png

MD5 34a4a4801e02097cef3e46e6b9c67c41
SHA1 2f271ae04352f39bb72c677a16da03f19a51f672
SHA256 7ca0bdacdebc16eace9d67078a5ecbc8d9f6098fad80e0d8c09fb5f708ad389b
SHA512 87a29f06c2539a6df2f043fbee747812f0672a9a6a97df906d8a38b9ede7a7e7ad2a61850888e39ad6b45f422680f4c89cc40c3724b1b4a0312dde8c35ed2a75

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\button_control_end.png

MD5 b8f247614b7b6711b080a17b6eb3ac80
SHA1 22237edd3ac496a9f9be726cd841e853a930c299
SHA256 9a0fded115052a75e8eea0811eebf45cd7a2cc1aea4a55e9625f5ac264bd695d
SHA512 603d72c9971427961e304926030ae56d19687b6adf2c958a5b15bd775046784c12cd77667227abaf7016d47e43b1d8c44111d2f9a8cd723c2152f4af35fe7dc1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\AnimationEditor\btn_manage.png

MD5 fa0bf2e9412a905bc7f9ea8ca5bebd72
SHA1 4fa7d03187768367e06f706d914e6479fb1f70e7
SHA256 47e44e15545b8c9120a7954207d43e791982d0565f1e6cf8a7a71488fc53228f
SHA512 ba092553ab52cd824878944db86e2ab954900675a731e3cd5a91c5fcebd1d728cf76115369cf4087c6e90c8e68ac160ebad497b7eeeea690e79be55709ec641b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\meshPartFallback.png

MD5 168a8027985ac6ba2f5ddce63bbf4993
SHA1 8e2ce5053e16b0a30371e86736bb916d1b667924
SHA256 4734efe5136f8028b9c27544b8a768b1564aa43d33ac7f3bf6beb717fcde8f84
SHA512 cc3359f32a1a0a59acee4d327a5195f435d808feeac2a793f6bd76cfef51c8ce83f221b0855c99f2118de8b6951d22d3a15d8c9ab662c1399fe2fcf35b97daf2

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\collapsibleArrowRight.png

MD5 0cd3b19d5b97441ecf6728884c6a979a
SHA1 4d10409fc08481832ae7698632f21e5c73440d6d
SHA256 2538e1a592a140983e8017f18e1b3c070c20c299a48340fb4a9f05a17b117131
SHA512 3c1a8b827ce00ca9e7af27b6058093ed5422fec5894d6916ac91ebaf20f87f356136082b69a0780eae950b65f36c279f6dae604b463b9f64dfbe92d1cda67151

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\collapsibleArrowDown.png

MD5 49175ff1a754e418cfbacc0922dc77d3
SHA1 41a63a18a41727ff9422663f5d5cc241c91157ab
SHA256 025d8228a615101c41b2ae0b3ff0f6ddfe0ce09c649d0fe951443d246b9169c3
SHA512 a0978712d1922e53f3c01730b20ce7a57975b41a6e585f54d2238361ea83ab325d10f4ffa54fffbef6a00db68407190d74efecab4ff12b23e3f15d0f1dd3cda7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoactStudioWidgets\slider_caret.png

MD5 aadabb49b7669474a0c97a25d58f0abc
SHA1 30ad3e62270c231db05f3fa8f9e93ff8897e18d2
SHA256 7bd0c94715f6bce071e463011b7330881f6d81ee2c9ab75d59fad55534afbebb
SHA512 b6022d6f5afc705b4572ddc8285114849590704e9b915560f2762c2a0301f0904f14cff5c7342a89f51bc6856dd7564b5ecc25a2c3349a79c12d89742dd701be

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\RoduxDevtools\Undo.png

MD5 80575c012f34757ca350c5fe17228e28
SHA1 fafe471034c77b99df231322cccf35e2f93ea68b
SHA256 e99259738cba4fa21161d32728fd36cfdef50f4aa0729ec96f8cfeeb772e480d
SHA512 986cb7ebede46743f14a3f4eed9a74ea65dc590da0e01cc4c4b86ddbe32b0c2ee57da4291d2a20e045d3df191679ceb3dcb3bb0507260b1d54043ec12003cb11

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioSharedUI\sort.png

MD5 abfa445fc9467f71188ba556b89c1128
SHA1 ef65fa51a1f6b019bd3c1d66a32e691ad9a9a07b
SHA256 4d9cb5d516b5acc35efb8cef2513431ce4cb635aa36be37de8f94791f9858be4
SHA512 cf020b01ec043749322bb80d302a2fe618c16a90ce2669a4fccadf53f975f4b36509268f76b200d6a322d21abe6e3bc6b3aed7c1b35865aaa38f7680a6b01e17

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioSharedUI\clear-hover.png

MD5 acf8471049f222049d82e4bb2238791c
SHA1 52237ebd0d64cd023b2cda3c58f837dc25e50e05
SHA256 3eb8f9c0b13bfe3fb1a7442b9c70067e369e95ef9819aa538ceb03a441e335f0
SHA512 45df64a00c8b22b1914d675d7562ce802e05c1dc9244c8d476510687b5b2be866782a11ae8200ff0d6d5d2b13b118cfb30d70b140c90ec121f2c58928d931cf6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioSharedUI\avatarMask.png

MD5 72512c958a8988bbf427b1b00e145b33
SHA1 133e27eef465b5ac62e300ce2862011d9a7a3cfe
SHA256 35a5053cc3d0aa18be3abb32429b22c387849ccc6c19e3efe8edafb41fc296b6
SHA512 cfcf03b2ab5e2405ef8dcd3a7dcd47da47d04cb0e25c600ec726d027ce6456b1ae77f027fa911464f3a4c38421473b480915381778a56fb108d9d4f25e9316cf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\StudioToolbox\AssetConfig\[email protected]

MD5 97788161324392fe1af78ff82b9c953b
SHA1 e9992beba9b73f7a03e7426dbf12fdd219633c4e
SHA256 cf2c4273a398e58620f7f751ab9ccae36da95fbd39055184b4f3cc96393ebadc
SHA512 447fca7cd7249597403de54621bb53663f3e378fa043d439ef1abd4363775d28402c6670d4a06d23381073b7585b30661dbf9aea35eef66ea92c8a2501730266

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\TerrainEditor\select.png

MD5 c5bd9371b9972163779ba02df9c04d27
SHA1 bc4fb507838c9e687bc244711709c2b76d74f97a
SHA256 16b339efae0906156882aa4eb2d2af41aee2a6e06abef020e91a9b5a621fcc16
SHA512 5542076d549eaeaaa94dc1be285aed8028ceec2e7506bcfeded176875d698553f8fa900a65ef82de937cc0cb864dff53301da94b8e3babe6b6101ecdfd7d849f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\WarningIcon.png

MD5 11fe2da866f2dc0df26eb22f29b8317f
SHA1 8b363da10cd17df8bea2c88c531ce25c84769f1f
SHA256 270ea141f213b8198874a4b195288fde75cd2f1e127769a7f032a2c9e0f9eaeb
SHA512 9dda672cf9d1d512ce6a65b99974cd8f6dc9e58dd1676c7f918ac5f671cbc000ed984e64cda9124e03188ddb224a2e7d867428ff7a0a10459a2e8f007b3da7b1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Slider_dn.png

MD5 df3eb416644869c2ffaff2b323afc4ca
SHA1 769df7e3aeba24cc7c4d050e4757acf3a2aa649a
SHA256 effe0ac709b45fe6afc5960336807aae5c383a2141425bc5cb0689460cefac08
SHA512 001a873b69c9c24c5ce76721a08ef1ee4c0553e62cd99e1f3fdf97c212433ea8af40ca8d7f434a5bc8b946c9a1bb8ec267abe444020b844029843528c2a99e19

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\scrollbuttonUp_dn.png

MD5 6afc0fc2a3872f1ceef970b21d6fe668
SHA1 14caff8011623d768b3d8be13edbb0b3572397a1
SHA256 bf6188bfafd38ce7879adfdbc94a6e5904153e969f5434c07a3105cddd8aea6d
SHA512 dccc690ae743f78b572e40a2e444758dd07017bd7e6a7f1b8921eb2d14c4bf8a7ef6b2f815fa30b396f2ea48b9f58a152807cb1f601baa2e8bd0a87cb99bb2c3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\scrollbuttonDown_dn.png

MD5 b56e78a8a63f21a903fd068b0ae979bc
SHA1 86c305ed8c0d3d225890659015d569650ac55560
SHA256 594db4bbf536cf2a9fe622d2084d225367b33298bebbfd359bbbd9179e98ff99
SHA512 7835e24dfaf95f12a6a18052b9e90c625aabc45f60c678eee0b18d666ed05f9c05e45b8da448d996ed49728ae441360631cab8c297226119bd07c6b8ce4ceea9

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonA.png

MD5 4e9fffa7ef87e4f2a12e597b0392647d
SHA1 42de01a9600b90be9cd07a53af2cb369d37ee5ec
SHA256 740dd32f8b0c9f8df99c87ee00ac7cdd20482226a269c9dcb4f32f112a1baa4d
SHA512 6d59194fa83cc814d52ef044ff212914a6ab5bd6b927f1a15e5c6054f2cc1d28551707dd5fe45e3ddda553edaff62ca3420c9d2d23da056353be0f2d81a75f8c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonB.png

MD5 98d9495e40f4b882809a670a0c65cd5e
SHA1 82e800a80a9d637218765c430ee94d3eb2820065
SHA256 869ddfe94b055ee6b54e02d39c03420bf992ec9163f527c37d3dc06c648f2c9d
SHA512 f05a3e9092cdd7ded5ea1a8138d2d44566a6cdd4f7dc1de6ef311c23f75d63758360cf78ceaf5414616347e2ab9a8bb233047281009bb19e78bf5c998c942f82

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 081d63d4081684c874e59a716ea0d20b
SHA1 c7e00597a8cd3533421463b1c555e220a5adc798
SHA256 237abb6f802b7a741caa240ccb8a0ed8caf6a2af11e1c0aaedc0ac6570d68c26
SHA512 1c0459c4415de41b86edc3dec7e2cc891aa21c4af0ad9f047187add46b2f5936970a5d1c35ddaa0e45acc00153ec20298eadc2409277ffb7826a11221b392956

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 2d0159eb704f834bb6c55cff810a9f5f
SHA1 15fd6ecc951861c9408610652c3014aee9dab8b8
SHA256 0032f03bc848fccc32d78e68b4e1fa988efd8c5b5c508b9459e67c313f3b73d0
SHA512 a15a78faa0c9f2c0e64e0a4d55199a70d70bb5ab892102728a6f6a5ee0de5eafea18e54e2ecbfa224d6b581d7530aaa609cdb77ed53b6610fb9331ba73261099

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 bbaadcf09dfc3b9283b5da241776a95f
SHA1 cfbde58ab2ff0b858a1f3171d895357fa86f3903
SHA256 10a2820b3ffbdb899b1db8abe4144fb687ee1adb274955c2cfde449c490840b9
SHA512 161882de373e96855e57bf454a6f13a1d749485424a0ef86e84f6464f707931070f58123f7ca0f265455284a5f39d6f311973cc50bfd7224128160a580de7ae0

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonR3.png

MD5 af06400bc9448ae8c1059a75382aa7fc
SHA1 02ec13e78a42797926bc817c74737987da1d4fce
SHA256 8069df27bea2ff5b73884393b5d2eae97baddf98f9a2a71ab8af9e0d66ab0598
SHA512 96501f478d27834d3a405f1ffa4c47b1f6b7dd29b73f8b8594f5a629845d831258281db5bddbef72973eff8c7855ff7116b24c3487da31a813ac9e265e3cefc7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 57d512b430d8a45720cb6a3c802480db
SHA1 a3585851ab513752b77945f4b6d8199341862df7
SHA256 8d02396242b6c3c4a21fd4abe3abf0a9983b616a279b8d52199be3a1ffb7716a
SHA512 5c1feac437cf57d49c8168d8f2b049f13a92ce91363830875ba89ede95f67adbbee970a21753d4f5329367ce5015d9fb9d958857034908f9d8623b7a9813f010

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 8f86b1eceb81f0048f629d24d84697ff
SHA1 3f2e8a196356a3235577800bbd032c30bec6a2a1
SHA256 74a4e82d2381089b272453cc8d4ae1ff5d8abbafadff646bc8ca92f25c73024b
SHA512 b18d6eb7b7daed4afffddc403b82a75795a0d19da7b5acaf979ff614aa732a1d59f77e2ba9edb50caa3485e4ae7ce5965aeaf0622dcdadfbdff93e63023c95bc

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonR2.png

MD5 f06dee3a01c3c341b0df2bd14f4ab8a0
SHA1 d678f39c51a4719b8d0eb430c2aacca3dc984dbf
SHA256 51abf78564e658287dc68e96436a5bd1407876699c4b633d42bbb4db64d3f2b0
SHA512 93623c3115bb8c1477a19b0b43c0d92aad249d68b68bc7c2b3438ec14e579d73a0ef9102003d67309e8adb7cb08e26fa66a884327ed01154c7d8b6f32d40df0b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 3df8de3cc7323c0b7c7deea81483c5bf
SHA1 853e59f4808a05d8dfe400891e31d8e544f4a563
SHA256 b2bc6ef41a3c380890d08ec736c3f505ea64e0f1e281c8f058f516f0ff09f38c
SHA512 265fe28175c0a7ec9c66a11178cade33dceec004f0aff3e3d8189e15b8b9b930e8c19013544183fb75ad0a6ab7810662d2b970a6ac42de7d3bafc19299a6053a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 2d064df9f73038fbc26c135af4884782
SHA1 53905816284bf4db921b28d454477d404e3190d2
SHA256 74dcff663c86d8172a5e5be2ac62bf7f341c8dddd9059366813279cca14c69c0
SHA512 7f1c7f0a693a6bf2c0cb8a7974001de2ad90b66145b4a7274d7f09d9037b5b939407fc6dbb286a41ee601583fec6ac19a7c8477f08a8fc6ae1885c7c55f5748e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonR1.png

MD5 37a4e6933db91a8eb075201513aad2fe
SHA1 a21a15f2fd10649f09e9a61fa5555bc5279595d5
SHA256 512dafcd4209155f53980b094ce8ecb2fe1716b5cf0dd06229e2406168769b05
SHA512 ec85b9ad07a691e8a10e3def6abc83dd55b65de81b84ee3ae874876532308fbfa9d06b319fe217a6836255a9c7745a590dea405cded1d93df3cdc168ee4feec1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 4f411ac49a905460b9d3d3e788aa63c8
SHA1 1cd8f745d86fe0043ca42524174f7e1b41546846
SHA256 1ac40227cd1baee66db749791973a2da7ac7baf9c9efc5a3c27429bf3bc9f7e9
SHA512 9fbe567fdca1c963d635681db28d99c45635578ec5e8541349f2895b668dcb81686950f99813aa167767d958df493602c0a0ec43feda78aafa64c836785f1106

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 e2cf68bb6de3a80604a5ab3587591307
SHA1 e59300f938f4c286887379094b4f5dbd23ed380c
SHA256 e58a8bf5fe76b7bfb8b672a84b0ca2b3b73b658afbc1a94767eee8a4f8d655ed
SHA512 818824635c9b0aa8a8e2df72eb15295b63e699ca34626deda1ce146571639a50a995aac68a8d942e574eeb09bf3b57d7b35c68637d6f8df22cbb8554d527d185

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonL3.png

MD5 217f315636a272e97518180f70bfe07a
SHA1 08de6998a5a1a974de1ad034a0fb715dceb5ca56
SHA256 e198886a9e67947e249a91c17157299dfbc68c87e16f2601a54f5e1b0c82d05c
SHA512 f81013c458c40bca04caa031760d85ba7b9eb51773041d9b798e1073cd4a1608c01ffb436484a8fa208866491c335200f89be81a05ad19833f81ffa4281a3544

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 a8494f65c75d47769ad2eda23e91fd0d
SHA1 569e31d6bf1b97162dbe12624d09fcc8767dfb2b
SHA256 c0bc50163a7b49bd22636b7e1d3427c9d5eb263abbe6a0b1fe4b601c7b2912b6
SHA512 93d273eee71e0b7016946319bb7de78bf38d620b272e0a834664ce6370afa35d9f6ba73bbd33d88b9309db65857617f698bbbc3a7a4f85d4269a8eb2fd4156a0

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 9e066a073ea14fc2be38415e6dd27f15
SHA1 f65fe094f8ad34f113821dd117b0e2d373b133f1
SHA256 3583f9fd61c0b8f25468fdcf4ec98d277d15edb38e38ec8730929c13122ed77b
SHA512 85e129c053fa6cec3ddfbde58fa3b16f9d0280b9a6177d23c86e60b94841d36ed6565224307459ef14cacdc7d811b7156f4fdca87147d2e91051381e2939b809

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonL2.png

MD5 17d2361b4679bf79a5fc24dc22d155f7
SHA1 bc7a194a665701ed02011673bff319256b865dd0
SHA256 494b4d48903143eb52ae48acdfc98ec195ab31297d82b66e91e78119d4874ccd
SHA512 213a021b464745872ba579a4d5e2a2a8bde71da2a4d84a15a2c1c9a7b1c2997d782f4f5d82e0d35aaac0b0e0ab9f37c4853d448d228ee10dc60038ea7e54aaff

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 6e69082605f4519bf5748e66f5b6d995
SHA1 13551460987a16c29ed0903833b55c4a3952c8bf
SHA256 55ea94657b34954bcb827137207b83cd84dcf180deff1645a22dcf6c49f17016
SHA512 6c6636aea095648f92335612a4b4e29681cb711f9f42ff3c6d3f5c27a4c986b51efcca067a56aefc81ff55729f78bdbf44c76a84a5e34db265b19a069512c2f4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 d50fa86a73d2aa770c077081f7922b7c
SHA1 aa4fd3d423da061324d7a1b649bf1c85fea5c44b
SHA256 db026b16a5ea9915071b2a068a451af4bcfa131d74cd129b9043b225a6905d2c
SHA512 58a87ac31f5e8737912fb9379ee57cfd00a56735306dd5e626733f4d7c01869c66ef28f92847021cd70d68b1ce0f8ae26876307d632f5600bf9aadead7e86d43

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonL1.png

MD5 9b81ee22e449bbbab0d39b220a9938ed
SHA1 c0e88a12d1c76f2749f4201acaee6b07e0e7b550
SHA256 dd24d91312027ccb55b61294d5191cc1b5e67fe884505cc7644d5c8ee467acb9
SHA512 6d0a218fc61a8de9f0499dbb7f4a3e649b3f610d8a3c36199bc0d7d84f7ef4a617abb0430b7cce99bbe1cc233e647867e6bbb9dbf221b09aa6a7d0e49d9e2a0e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 8f5bb2c29b230c8d28870a77044fda5d
SHA1 ad131a51ac9a761f90f313f0c383fa49dbad1b75
SHA256 5c5d368a55e6d25b4e0dbfcdb968d39cbe4020d3479974bb93da9d371da1b19d
SHA512 1e6ac17a11e4c0aae64353d38aa69699e9776066e48e93279b048f97a65ecce042e1e16a29d4101689883769e1b7cb7c50b97389e3ad24d2228fb02a8449ba46

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 6c57cafef772398708cdd4abb58bf221
SHA1 ebb77b00050ab256c90ed5a4d691ecfda0410a8a
SHA256 417a8926867b1a86a49b7683129e567262f868f3c81a46c932c59335b8c9ae83
SHA512 ad9d2f75087b4d442c7b73b2bb37478d2c1f76aec9e1c6c4d0cf3d73ea286be4fb39c01a6223847bbc86411751df2f1c5f93fbb6d8b77b832fe4a08360c8fd4f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 d6b91d7aef7a3c9d1f8d8a97fa14def5
SHA1 80f85cdc8290572a0213f02f273ebb927d931cce
SHA256 9b7026066507ed256a64c5b47f2479c208e58fc9df5270e44be5cceb58e59d0d
SHA512 10c6588adfa3bcd66d754e96a5ab01c3ea089e9489f0b570c5c179733a73c5fe9a004d236752f134e4178a7d971e7290df2dfd4939f9717df96a36f2504fbbd5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 c2f7b0b700d8ade8914e3a4a75d6b77c
SHA1 93320d76e7e6f230b55f0eddbb9cba61626fab50
SHA256 a9f1ca2fbabf385c48454838517a94ddfdf823c57642c219d9266c2ca964e45b
SHA512 20940f17eb67d62c70be68a2883610dc63ff6eee8b231c3445946c6fb4f6ccd4bad02e201f558a0996f9433a905cb91eb1460540724e0c2000e707399a6467e8

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 fb3330297e2c0c706222975a67831096
SHA1 9dc953f5ad9ea7301b2ef0cbbf2316fb3be84421
SHA256 f8247baf138b2b8a0f39826afd292c45d35d5515c4f35ce6e5be437d7ac26744
SHA512 fdb4815839f1c0d71911ffea920a59bff217530b15fd14337a7e0ee8fe5e37dc55c1bbcd4b517105d95a92e055e47a1d75d4f0a9506a755f7ac6de07ec1a5f64

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\DPadUp.png

MD5 51f84802172dc8684d16b0819d74624d
SHA1 dde3b9d30c021494e9e9422035330f828db43f2e
SHA256 dafbb4dc01a753ddc55b0c31b239ad864746f18724332e313cb8bdd65422eb9f
SHA512 5b2fbb5710887adece48e2d31ed3d41dbf13c356d57bb42eea95019917573f513b36b21eb7bd5f4bdc28d954e44d1ac0a0d705d75c265be5a332851d9817d6aa

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 93731b91b12a43c99494682c62b87236
SHA1 38cc775126a4a672ec30ce50e72afa8b702f3f25
SHA256 5d80d6e9fdc0dbcfc038c41f14dd403e4c5919cff9bc9ba0c9e6af5a76a76fb8
SHA512 8195f120eee3454eabb286d8ebc01df5ad481a1f9f0ff5afaeaf7db9e216558cb858aff4adfa84cae18eeaf19fddebb2582aee2e394dbf829fbedf41a01f6ad6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 1bea8c12f1d3f56e345295c8009c216f
SHA1 e7ffb66bbf37858742720b84e3f134d9635267c5
SHA256 966e2d20ba262edf675c2604c9e0ea7ee43a57d0e11347b86adbd85a91ce7338
SHA512 042b01279406a141440e8f787fa20de11f964d45254f32e2b45c176566e0be8854471315b06c291a4581569c632cefca99d08270a2f326f6c1073444f0d996b3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\DPadRight.png

MD5 5f123be4fa46eb75031c1503474936fc
SHA1 b67b934f76aac19e94dc57fcb921f68ce055dddb
SHA256 bb9a013ecaf7f97ce43d7658f3acb5599a96fa68a3149bd6c8817706b194ee06
SHA512 559948ce3385b164db6051d4a8f1a348247372c9a5f4412594e9ebfa36f1d9c1ec4677e59f5643095a211a411464cc71cc58fddf5d424a8c89903596e3344dcf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 1248d000506faedff96c45830e9893df
SHA1 e031cc967ff2e1093e427747c1265ad75595b903
SHA256 39e49c24c1553dc94c2437053852a268f3ab4579d0c8fe2713159df4b4ed6130
SHA512 622caebd35544be9474b441085b88df1d7ba5df11a9b14bcff78da926d80e26dfa3ec39058648d0ae028192a078d70a9da4130424f611209597f8ffc5a52fdc5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 8957ec81457950bdf23575fd61ecfd15
SHA1 cc4576049024b922fde213c0764d342653c35d1c
SHA256 e3133a2be96c61d8f0cbe4994dae0a457ceb5c983de0c1386e6285d8a65ab976
SHA512 a39893a37d626b58bb0514e3a742979ef75d31c9b4f8186032aad7949e5844aa0148a5fab7fdf41ae4428484095ed76f3bba23c919968fe5501ea4e52802a7ba

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\DPadLeft.png

MD5 3f827622beb85f707e2780d906678618
SHA1 af5ab68ddcd20d687fbd7d2031a70a878fdfc1fd
SHA256 58dd19d2b6711db19e6dadd4705055e3dabf1a619bdfbd0e343d92df28b37996
SHA512 a374050cd10dc00e5d4781c126abaeb99836c6311c3d73da42a56a6017e133008346ec146c5ac999f46999b8b3e0dcd9bd18be4ea8dda7ccb8faf1447a694d7e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 9864fcfdbbfdb954154f2b73c9c3180c
SHA1 7e1a594a6d14c0707295173f573878c01dcb5d3e
SHA256 66510b18dc22ab1af71978fd8cccd61d3032ef1ea1de63d33f6431fca0fedf94
SHA512 714f083911f038e012ad735aff5e08f62a26a2b6cbdc69b5099d05188e8c6fc756347f878862a102ca705fe48cd49387cf24a07400aca614c76b0269e0e67bfe

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 38f7f23230f13e87745f853397e7a506
SHA1 a1b7591a605f306e46d4dacc0819722af1828d58
SHA256 ad0718fdcd5251abda4ca9903025aff43aafb671311e922ed85622f51e3ca7a9
SHA512 e8fc2fd18b25d12a3ba17f2855c5f94852e9adcfdb8dd7f303bccd330d2ed1a86dd58cbdac7cb816db9b4ab6fbfd7ed980850ab51d013ab5ff66a5e1fd447c65

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\DPadDown.png

MD5 96baa12443bb854c6b4c21e3012f37eb
SHA1 64bc539e20a6f173bfc4ea8b91def7ad5cac1b67
SHA256 a8375b2acc9571a14b9867eb7d42a4acbea9b4f0729be31dad8d1cf8b261aef6
SHA512 aedf840a91061c2185d1d0c6d9b056563e91e06877bed246540543c63f0b082e5f313b24234cbd3ce76c9392f273bb7f6e29390c50f1630ed5bed0c19713ffc0

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 597069879a8da993270862e14523d79f
SHA1 1f980bdf18e4915dc752410aaef6014a8915cb96
SHA256 eaa388b0f6180dc7e621a7c7b9eca3db4fdf88721b282296d42306f50e33a0ee
SHA512 3ce6fee1251b62a9e3b4aa392cb9d8e6ac1d5cc177c60bdaaee681de7a8c9f301121b65a2ac89b8efe42daab64501ac993f582aea6372f801e29b4ba8424a2de

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 5fdb5598976b092da18d27855626e237
SHA1 0cdb484327fddb9bd4da9217aa58b084e7ab4cf3
SHA256 aecf17b4a51ccbe589fafb1643eb6d3cf232a2e28c0978fb0b38bca7f74ef7e6
SHA512 4919134abc2e4ad93f110b39d5623c444d50a580cc3d0894db14f7797b1c7b50cfb7b2121ad23bf7c046c23a16e53e41b15dd93b3efdee88bb4653af50b6e70a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonY.png

MD5 a3c5e8f4c03c7e06a85ba28a942f9066
SHA1 649579a6f06fba3dcb0733843ae39d2a98fef03a
SHA256 5593161232d1a25504d0192c4d83827bc285d9518a4192c49a05bc28edc235ef
SHA512 1d27131dd976fc3e227425ac5997bec272d4176a7db3c187b7b97fdde7dc4656951da1dcf14e3e43231ef78c6a30c016a477c5e480388f3128f5453df6a7c041

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 fcfd116f5eb3fe8671ea5b0f51e39868
SHA1 19161f83602479f151a67b13165ac4afdff316de
SHA256 05bd7e8ded3048544798838d057c196c9e181e5220126c9e0f079712c8151ce4
SHA512 8edb279c3c2ea830320d9d5858e3782fdb86c6cd53b40e8895356a93220649152c0f2cdcbbae5569a3e4ddccf9dd2c8e2c45bf4cef08541156f24e8bf2a5d697

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonX.png

MD5 b494ef4035d2762f77f23ffe19f4cedd
SHA1 73906471277b810a55fee287239ee0265d816892
SHA256 6fff2f93c9d90a0d03b6f280f773515784addf48a0e7703ea787f9a4f6c4eecb
SHA512 6c1cc347ac2c1d04ae39b1c577131817ad70043daa203e200a43ae33ca689365fdb98b2459d9d74539da8eb75e90a3e3c1553fd5cd81ec52e5b464480ae6f9aa

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 8d334d00292d7502722119da4f99b74c
SHA1 1ca95808fdeb0f60370e795a6c859538db60e883
SHA256 8a7138d90724d0a10d3d92250f52bd9065736cba28cc8861b59b4ffef9ea93fc
SHA512 ae5b65b96ede98c49319f2e0ec93e48171288e0ef7bf73f489b7c69262cfe53897379210dccc4b250dfff406d6a8eed6f1bdad403a987255d3b1aacdd133c455

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 e5e14c36ab04646cf8cd74c84b2e90bb
SHA1 cc3ed8feb9d2ff8c19885b2bc71b0b4c1f8127ae
SHA256 8840ac1131bfa1864b785a1a8ed6cdeec95b216cd20fb78aba2b62ca06e8cce1
SHA512 921c11d5f1bdf4c5fca94b8c6dbe7b49dbb094e6ac1f43b239b0270b7174882f7c6160a80baa425cb8928d0fb37f53883b55da694e6974de2c1420f852ebcab6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonStart.png

MD5 784b7138aa489184f9b2e6cd1b4f57a1
SHA1 bd7cadacbd61d7931775f9177b8d227bc35b5f33
SHA256 3484726386728075118ce16176e3b338ecac138961bb7f45f20229a739983239
SHA512 e967fa565e2dd7b624fe0239bae0c608505c36a5d9b811b0352462cafae11fabbc2798cf38e763eca1d17a260568b713a5746d9a9295707def99c60d2bc7e8d4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 807df215cd1630736b6747bbc9d344ef
SHA1 2925f40098e2406358fe7bf084c8af947dbffc0d
SHA256 601678007b5297866c82c4b19338b645ba368d2ab0b5a99fd671d04fa297d417
SHA512 24ee5004b5f49ff7d1f2705c1614633825315f8a9911fbbbd76836ae3312117fa22b938c77e6435a1ef1c33b4e4f6a9eade413dc44c5a77fe0f39c0b6aac9fc5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\ButtonSelect.png

MD5 25c5cf26e3efaf06976253a6130d90db
SHA1 6a8a9cc0f541012fc519fec2785dbdba90c15f44
SHA256 0f223409b874e18f61596d3fad29c690e9b50f32991ee65d48a4eb0e34bb1cfa
SHA512 48ab142bcbae3e98f26bfa3e72d15eed67827f9861b05ca86b53520da65ce7a8f07c23bcb01753c9ae1778ff1216b2fa09019c9283f5f7b857e6a7453438830d

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 10f5c6070151cc3371fed628af1f8690
SHA1 8fc9d7fc2c7bcbe11151841c97cb4d56b391e02b
SHA256 54a655cc3c722d6e6b083c57ce12af763092d94d855175b415b67f8f00e39880
SHA512 b53b5db66d52421d81a4c36c766e5c68a90b2c44e1c98eb08a4bdc9e18f40f5a45fe4d8034960ee2b9274cc46b6cc992296a81e24cab1215e215af48d5c77a48

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DefaultController\[email protected]

MD5 6e477d91550ec0ae1b672b1b91f9fe9f
SHA1 423ffab9521ef33fc93a0cfb96662b696953f65c
SHA256 15af3abcd979f5fc08e4dd3bc7bf641a2ec028eea15f5f1b9c84d550597f40b5
SHA512 c1218317bf28b21c2877279a972e5e5188281bf6ec0fd411bf1b777ca307950cab5f0b50d735b869336c514a9ce901311ae33a3b576c2127e865b6a09074197f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonA.png

MD5 3a983a9c02860cca82af30c1788d2fc8
SHA1 7238969ab465a10ae6e9c7634fe7c047c0e743ae
SHA256 dbbc8e81c4ea6cba0a2763826e084e9e166dcb04db4bac944b760980262e3488
SHA512 4fdd4e22de666898756764d99a8b9662896c12385791bb385f792276095040cac26468a4e2abebac7f155e2eeec26ce6b17fe3b468d9a06524d1cca54af88dc0

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 2098056636400dfccd797c50b5d5c010
SHA1 ff7afcb62ea1111f610151bbdc38ad5eda95440f
SHA256 224e11c1dc4230958b187c3b02fd6785b7d4265d698c785b7247dfe0f7b03274
SHA512 abaf0bda59f06682de874753027abea95fbe21cbe2044b811e0be0dc3e8d1a96f8178dfa6c572b1900b682a5f58c15033120094e874af459e5b6ed37a673a6c8

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 0a6424fec4e1ef4f9c40054128a75de5
SHA1 cb546e161ce78087fcdcbade6379696a6ad91112
SHA256 50a161bc07a9b20cb953688291fa9bcf9c080dde6e240738440b9251de5cc5c3
SHA512 396b27c2d12b0f0ce1b54f87829339ecfbf398a2a8eedc202db443789012ca3594a764deac9498f29e73eb382b24ba4e6054d5137bc6393f5104b162c9f13533

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonControls.png

MD5 71e18b91d472b7df888494b550875ea8
SHA1 b6b3fbe66b5d59586926747a8e927897ca00437e
SHA256 8c318abe07c3458de5170f2a8853572b8390d892895cf5f7b9c45bbebfb1f2d0
SHA512 08329329e08438133f1b01d493b4d02b7e81acb6c802c2dd54cfd742ea10a33545c6740a59af9f859f4dfda3d7ebf66d0b4b1ccacf1dc0cf9d4cc34c48929902

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 b4d6c6e6e8d36e28838c922b2a36676b
SHA1 5af880e88cec3fc9501732350a3c3c1ad6b07993
SHA256 a29469789e4ede2cd1644e4aefb10bfbf9bf60c148712734e02fba50643605db
SHA512 6aaa63b1dec244422c84615c2947fe5ef6e84fb1572f7aa03b1b06f035d8121705bf07e343a153a0bdff6c4a016590cefb1a4f6b035de66e428ee8b331e2d861

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 58122bafd20ba22cf65012610ccaf06b
SHA1 8a2e919f8b5a2e68560b5d448b338195cb31a991
SHA256 fb7a64a006ca4be4081c8389731f338e7415f0201ae5863643a6adc483a593c0
SHA512 6711fa5110b40b7c3362e282b53485f15a79a17d99cae28aef6a84d947e4c50b86e9d988fc20de988a24c4cc39a2a3cb1c4a9c09006e6ffd052697c15d3dfcb4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonB.png

MD5 dacd03ca05a337036be2d4823e0e9dc0
SHA1 5da1262e604a947c6f6d038ed854017acb28b254
SHA256 2411236e7f9f944d4cfb599e727e1d16d10942b6e6e6778b4b5f63998e407839
SHA512 36c12ad9d8ef18a0ecb12387792298ebb7874949e045529dc3314bdfbd5d3e2af93c5f6b83be59963e7674ce228b5581e2bf3221caa047616043b580630ba5a6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 f9b52bb9ae336da70b75d00352d5983d
SHA1 e9bdf39a9f5c1cb75c3286e61db697f983789435
SHA256 53da42b0935c10015f2753a0ce01661b364e1091e9c66691bbcf073862921421
SHA512 e12e8424791499a0ab360cb9c9555ed6ba293f3c05e4929f1867ba34263865f102a85bcc20a933df8f8bd2c750f43a29729cac7dfd8b21175b53bd5aea643010

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 b0525fa01654818715008a963a72b009
SHA1 9a7c14fc56506a72b42582892ff30361e4371467
SHA256 f06c5420c22853765ae17bb573fa311bb42e73f5f36886e29f0a4ab9fe55d6e2
SHA512 7ceedb6a04bf678d39fbec636d2a65d3d794c4785f5dd2d080ea06607405c9c6af0a824228fcdc43937d7cb3c073f56fff420bcb20e1bc67f0219a2d29cac385

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonL1.png

MD5 5e82aa0e7ce8acc35ad740066831180a
SHA1 b1186772f5417bc236b14543affc154f373eb02b
SHA256 806d476835008ba60a82f8a703adfd89e3c75b832cfe051e5ba3b337460a7a2a
SHA512 5d28fc376d9b0ace12981cc376f1b1447eaeb1942b7d1ae9e13dccb07e483d991481b955f8bc888bf7fa42b8ec6f171422e306feecca365eea57dc28d0fd0613

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonL3.png

MD5 5a412293dea26d39954dd1495192536b
SHA1 38190ee7dd0f798c32499e36ae101782a7a87279
SHA256 30c36a257209d2b94f0ff7730dbd40d283dd9a066f3314d239b08f5668a6a5dc
SHA512 41b730fa7566a2c4ba3401d2a0ed04b108e70776ba7d99a74225c4acd5d618a9fe11f4b8843e32cf2655e8fdec976b453f7ba497b6f8ba85714947d4a3f98600

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonSelect.png

MD5 502aa8fb010821b4e954ad1720b31b0c
SHA1 8112ca05813e6907548ea9793d32b13633e4a12a
SHA256 db046d35e7b011098e8b8d4e434a27f75a8c22a54426570ace127ad133aec9c3
SHA512 e5324ad7e7ad6c7bbb51fa36c1eb5e43b339dfe6e6994cc595e4d765b34f7b6a276c3db9683cea154a9c67508fae22533be51b7e5e50aeee47fadfd2132e6188

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 6d84ce60b2102dfe8e196d9c31a8ba2a
SHA1 a5c141207114043bff52bd942c116fe1729747ca
SHA256 0bcbdf654ecdf00e2dc59e460e187e73b3489df575ab532e25897c5eea49a9fa
SHA512 1d424f8335ded1ece3352e4736fdbf6b4cd35cc9fdfbc1bf540b94a1974914b1c778bd54952d0d92b944b7f2eb1de215c2b719d753bf2283b7a4ba4b04fd92be

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 0a47abe53698d1ca029c08414db8d001
SHA1 db72e0e0ab8458cac4aaca44812d3c9c2bde4491
SHA256 710e7cc7b5940202fbd5d4e99c9bf64850b7721d49dc8799d118e41d2bb2f069
SHA512 7686fe5ed81add72e0203dd6c3ef58f916d30721a6a912a26ff9b22af1af3f0efe6d4c395afd9e10e56f353f27c099969cd863de8b103bf86f185d94e26ac20f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick1Directional.png

MD5 b2c059b890dd60b44a55f6abc4c95758
SHA1 30cb1e3a3161d2c530a2a67634d48ebbde523af8
SHA256 8acad19efab84c77f563f037a8d96e9b6a176c76bbeec8d8a4f869a932597708
SHA512 e6a4d31bd144bfddac0f8cf4c606687870318a47b606aaa24ba2cd75487b4ab073c893bac0c5b4ee21106056b139e18a6d700f52a53ad6058ecc831d13c291c6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 b475dd377ed1ec49e7620bea2b32be5c
SHA1 04bc25c847d9abe3ba283572c1833516bbf3694b
SHA256 15960220c7298822cc26758031b0bebecb0bdfbfc259d3b51c01335849d53eda
SHA512 95000e7730694d14ebd5be0cbb1f4c453284e0fa1adcf75aeb64a8063c9f4d51a93e2cc649d0a27cb35b40e5aad768f8690872d032c7fe0c132d2f2fabeea4fa

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 8c809bd9fc2bc3aa3bb7a0452d091f0a
SHA1 1087d813bff627b43299776d7396ffe42bcf3027
SHA256 0f8d9734883c52ec73933227b2f7ae268f688ec912bacfc86bdbee78a55f38a1
SHA512 51a55bf911ff210c421b686e71dc36c08f9a4b5314a5dd42fe0f80e0dac34defba819b51dd43ab69a8ed21d2dbaa4409bc359af42cf6b8681ce2a7b2ec380666

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\DpadUp.png

MD5 e58dfcc4accebeb0cc5d9705d4d8e987
SHA1 db319e746d73d99c2c54c64eff0cbaf4e06e7f05
SHA256 9595e8c5ae0aa228629d1e265a44ba5843066b6157e065a9c8e092b5dd086ff4
SHA512 02147a29fd8617dbccb30bec803682edea877da6756894be1d493c73cd37d20747657c88df72f1ba6893146c1065e5430401dbc56566472943b13c38ddc7831e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 b070ad27100154768d234b60143f41c3
SHA1 c4182fe1b7d69ceaf91e994be304e7db51392d63
SHA256 07c1b116410e4cf057b2bbce6053b81f3cdb59898970f289a3f2aa5d48649bcd
SHA512 1b91de4b08d5534651897c044c3ef0f7bc4a4654e8ab901d4269519b69deb7a55c422876de19c9b109929570001df09b1be7881e014baccd58b0dc7357e8e8b0

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 46f16340b93fc134e65fe7c478b9cc70
SHA1 765be31b4fc2bbccec22cf2cf599238b54e2b15f
SHA256 f1d3f745d90c0fbe32578dd2997391abe42a36e15a403b1af79d685e4d636daf
SHA512 4cb1a0a692c193ac62f725e5fa6f38779feb960740ca7a95ea2d69ba5555e36a61b59f4971eb8cc3ebdba1134ec61a8b2baa0d4d44c6c0d310f3ede3df74160a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\DpadRight.png

MD5 96c4d967877827f92beff7a303374a5c
SHA1 f8362f36800a5e14d6cb97ebd2145e0b6e7fc576
SHA256 9509e917dfe34e0732a90d656bcc6ac39f600493d81154b105467bb1aa75e157
SHA512 dea5546026410b9a11f8211e7446dca37ef14415a48adcddd09813d80eee3977c2396f3dd9d6986a4cd3d8deb756aa15afdaa7cc8db86c97ed31e228f5a30578

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 26164f8303a3c7790faf308e1ff10988
SHA1 1dc81777018f6d336ec51c7d545e49dc27295d24
SHA256 67e7fb313765065bb5332fcd30f4436b2cccb4902dcca878be402f0c53889d89
SHA512 82fc62f203e7745af69cbfc38b7a30f3aee19b782214070cbb11055ec4171fbcae4258e53e9e59efae460050f7a606f0a01b722edd4986e2dc20eed9e0f34c69

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 6b395238217f2a72aafdb9a33db8b7c3
SHA1 924c0f166118bbb7c1816ebf24b7d7063b979a3d
SHA256 608f519acf60a7e9ca4167bb8d14816741c0be976d2cf773d6f6bb26743697e3
SHA512 069a6c01ba5cb89efa4a5d95466df600f1fd3ba389b6ea1c46bb0e68b4408e65267c0bfd96b68531f8dc3fcbfd10f0887999b318c147d86ec8754cd52c3b37d7

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick1Horizontal.png

MD5 47886eb1efabf16f633be2c849bfe62d
SHA1 a1c8941d58cc9f2ed2fe03537eb980587f4e715f
SHA256 068b78edb9acd119057c904566164873a1474b051fe1c6e327db9c3c26e18e87
SHA512 18cb26154186b36bec7810d071021856d9928cbeb08b193ee33be51b89db0a7fa1e7d788951d72e39f393d82204bb4c1dd40ed052088663a7a72888ecd3165ad

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\DpadLeft.png

MD5 9f72438a3c25cac93d159cb54ad9e226
SHA1 90c3392069789bd1246f219bfa708e562643d543
SHA256 1c289e0a38c0bb5046d154797d2fc1c43b9c1cd84ca2e829fe30ff8c0a004d29
SHA512 3576f51264a07b10be0a4436f8e7fa4e98c6fe5caeccfa1044adc6e6aee7224d911219aa32fd6c971893b5357b05168fc12cdfc076fcbe8391fdc1c8a8c1ee97

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 0c0d95bec1068c4b8563a35242250b44
SHA1 ac6b8b8a2d4888ec95ad4700786b97f6890c1711
SHA256 f33f9c867be39cb9906ba26f5f089a78b4bdf86a63c8b8b6724fec21536f5bb9
SHA512 d2d9f3b3ddfd30d22399c94de906ca5100826ca93108b65e5de4f6a8ec9b4effc8b24dbdace1efa09ec4527867b1e1116cec4b72403e86a8dc0b24b9fb43ac52

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 8308ecaeef4c4a63bbef7660bb69d804
SHA1 dfe0a20d8a0d1c0c564e453422f823a7e12857dd
SHA256 5d35a3e0acf03ccf9ec094ed17b021c868a703694287a5a294970f26e656b7be
SHA512 e6f689823055419cb6c47b074444a944e46d8360d52532d7921b6fd15937cdd4e387be0ec2c3de1e4b597b63b83b11aa0d136420cb5d6cab926e3a4123310543

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\DpadDown.png

MD5 e5c51701a827fc5053852fd52121973d
SHA1 d6120e110c8c24840fba41b5f11fd77d334da8f8
SHA256 7fbed2590b840cb757a1cebdc0025ed105f8689fa4db9ca8e299c486c5359933
SHA512 e154929f05194149db43c43f3e1fac210c73b6e689e1d723166fa4f29dff5811ade0132458ee88198fe0b708c03266c7b7c68d306c7e9a3a1613d1ab3569d209

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 fc006d0ac85f5dd261dce1f075be507b
SHA1 e80ca17a050157d1fa3f5136187661d0c2bf8d83
SHA256 ebe8d5f26bc1d7465d27587419ceb8f97690860fe665ab0dd3e159601dd771d8
SHA512 f8b4c7a3a116f57eb74a7404fcffd56345eeaf7c2fca57ae0616c5c8bc6e098f1c8a0a5c39ecab44f206290cc66ead12e1cd4a5b08bde5abfa32922b09c5ff00

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 8af97a6443e98e6c49bb2536bb42bc98
SHA1 93268afb35c55558c55d57311fa5d5d4d9744235
SHA256 7655818df788f3a9eb494c80c3160978310b16ec4d51377866fb5651fc4f23c3
SHA512 8641303e567749d4237dc6941b6c0f4e0d5c794e36a904bcabae03c8e2213bb4d391a3ae1b6c2cea58c0c63269aaf397241597db2f49d4f5aae5083c346e4707

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonY.png

MD5 fedcb80d40d361414df3acd4ecf42c25
SHA1 004c7ca446d032683582b9af542c0edea1bc99fa
SHA256 70036ab2c5e7dd8591738e982ad4aaeb690af6bf11f284ec8ca66850a3e71729
SHA512 778d499feb849547b466e088c79dec201a53ef30b70830cab35c971f89d9b6f1504a2648e9241f82fe1ea4e4c4f323773dbeb9ef909ab534ebb27f3ea69b4239

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 28901fa18a95e0583319b0b9f512a90c
SHA1 aa30d95b837f683a59d009ef0967bd13f9d8de1a
SHA256 bde666d92dd4843ff77208f15296dc0edf429dd48a802f23153ef19412b65f3a
SHA512 b70d74c7e8b12f0ea7405e645d30d4a3fd02f5917a5edfd4a2a05032b88ddf7dc366a6a33035e26e45487690008fd9e4e93e259389c65f71f45d782350b7a4bb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 75a7b1ba8146cf95cbb5f094a8ae892d
SHA1 c4f3bc1d7ba2993da66dc4fe4f006123b7304782
SHA256 2bd3157508432500cd270e19517ff1db181ecdf78a41a28d95ed88ba884abb01
SHA512 23ffe2f62b73a5a324e1b77cb07f4a7ff3ba8c764c46e1b58e447adb8741b34100ed208c60e5aa83e13b6597d6f82e0958b43164ef2c79907afaa6be0f4c8162

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonX.png

MD5 c85551f7abae4aef7f13c3efc193b590
SHA1 1ff6e54031e5a1e4358d784da561cbd1c7c4e701
SHA256 3401a0be6ee2a4d1b628d8791b28ccec601043d963904c75ce16e1f16e6ff8bc
SHA512 91c92bc51b047dff060e0ad833e1020344c881a34bc4a3fdc9d3d875f1c5f51b0470f423bb22ccc0a71e01555111334d667105de3d4f04a9b6647695b685f97e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 f20ec221aa71e5aeb3fca0671e39bb17
SHA1 cfd456297d8abd722ee2ca3fe260fd909d2a5ef0
SHA256 a130aab16ca1e8f65ce4b492a83665d3c07dbf0d3d65fa5973f6fa1134c29237
SHA512 16ca5f3fcfd7b9af2a1268b89df8543f98c7bb936487fc6e9f3d6f86fbc3a051488db5bd5f4f8871516609c4cef63610b893e9784e8c3897cb29b3fc16d545da

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 0afa0590f488bf2e37296f2ac4e74784
SHA1 790a0769c11a38be950c42a975aece21b7d6f2f2
SHA256 8641cd9d20e089ac98041da9f4c25565974d693625793d42fc91050eaa4420fb
SHA512 8749b78460c46d0fe7d8c388e9ba3811b86d499dbb51aae1e4408da3cbfceabb2dbabf477791ddb0ffa46b38a1dc44be5082087d6554281ad151c9a4b88dcc8b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonStart.png

MD5 28c65b4c3a33765a269b33cd13f7b5fc
SHA1 6c4c94ed193c3cf2ce85109c9131cca6c7ea352c
SHA256 df21933e78fea872cd05a63a95e3992b5d78c2b0a531d73af8aa4f4ad5875ee9
SHA512 b4a7cf4fa56802a85ee87ddc68ae10eb91022a09391f207a995c6eebd67dd1244c95405b2bffe927e92fa84a06961973a8bde7491ad7806e94b4b3777d8dcc57

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 b58baea9a7fb413c3a60ee885ee67b94
SHA1 bf1ff22f43d5842a025cdf64cc30e4f3d11a010a
SHA256 6f60e481f2753d0e2e650c9abf65fbf66d4ab65e393e2f2d01423d80e0f6350e
SHA512 bdeffd0b9d62bdf624b24c54200f18e1cdb03d4fb431480fb642a09fe9e3485d945b0e5938b1db0c1445de0c466f13cfd387aff145c7f277d33a8ba80a028a39

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 cfe4372e34a0bdf5a5c14fb4eaa29ab5
SHA1 b3393cc3e86cb762c764a4375d575c440a5994e0
SHA256 9023fd5d30ee5fa8e4b136de4aec8d87739263a4a6ff9037226256656ea8d79f
SHA512 143ffc0eec6487c607fd718f885067be43b32ac1218d148421686019507286e70dec39d2a9d32bf4c8019a95fb2b7501844b0bb736db100c3d30c28fd9420d56

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 dc7eeb98b92fcd1c11176ad4dcd645f7
SHA1 a0aff80248e4e571c5c823cb82449291f662cdbc
SHA256 fd6886f358d056a6f5c83fffbb2b75ea2be2c770900dfa468ababfbae657b4d3
SHA512 6d741c4fd17d5b061e987646b0d33cfa4a076fca7f92990b20eeedb3b17df84cd5ac5d741143a1818b5fa9064e7d0570c91ff45af48acc9ffa77153b9db00555

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 a7c5a7ccec6dc9966cb8db832e9aec45
SHA1 8dea53594d779534a70ebdf3e3d05a26aaac7b33
SHA256 d2686254d63e44d9177db6cd8b8598bbdc11b2c4db9b9c8a955943c858fe33f2
SHA512 eac80c4c84d406aa5e0e41800eaf8ecdcbf988aa3905cbed350e3300cfc4a52497debf9a267ffd53f933d2a6ecf1b99e1b125831c04799e6236034bf2cf6455c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 e8852cf7368c0a1cdc56d5017dbea5f7
SHA1 187ac3e5078a62460c3422ba8e2ac87154ff6d08
SHA256 22e6280817ace5a4d5bf097917257d0a69140a8b7baf7609f648029e60a30e35
SHA512 3f78ee3fbd74dc8962bd56190cb0a385693c6c492eee5291089b806803c625661092a0d21ca52edf2e3e18e0abde38072077495088cd469fc23d482cc4b439c1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick2Vertical.png

MD5 d19b6df417c458c97f1472fc27086984
SHA1 641ed6be28b14682bf0836a039f55a6ff651be71
SHA256 4d74637dcdbc47c255e75aaa3d66116c9babd44038b4ad6dca1b60a87486403f
SHA512 eaeb1649d07004af2beb91c5eb3c80ec3532b70a9cb6b9845cee1e15105b64a243cce70ce737cfe00f13ea1a49b885f420b1198eb821edacd261948fca6bb432

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 e04171bf6cd9c9896f6a21fc23e2ac0d
SHA1 188c393df8c2f0be083010c409030fa5f1db36f4
SHA256 48df6d794768617c16dd93f673dda933157dd2e916aea5d1f390bb807e567afa
SHA512 827358acb28aa49d6dfce3bbd98e6dd7f842205d3b4137d0a44b3a6bebef1a439de88a8d093a378ae782cc94fbc7ffb82e2b47e5cab3234433c54ec7f38095ba

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 daa1bd9a23db7e9cab1d02d72cf4029b
SHA1 5b482c6d095b4787c989fd980199091c6340c46e
SHA256 8d0de9824fc39f2b838cfd4c64c546acc99bfc179783801d4feae9a5e63b06d9
SHA512 b7fbf83294e44d7a8dfe23feb33911cb27191def9e6d8bdff9b70a0ec9acc0a16d48d7268023f5286510a83cdf69c606f95587571b589955a34cc897d1179aad

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick2Horizontal.png

MD5 6acaa701d6009e8d6bcd73bf64386399
SHA1 32096f8fbbf9d86b9987fb58a105c9fd7592de91
SHA256 6085f76bc465d1820b5914ac2bcba9920c5701f6026a675888b97dbb660d43eb
SHA512 5c96fd5ef634d60a72a6649a4d944ec9da3037940d85a3f0c3afe2ec29b320756bcdba7212dd18e96f6f0793ae21d50f3b04662798913633f25e57721ded8ddb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 e148fa6e4c0febdf07902d5b6b5caad6
SHA1 04fd5d16e98031b5840a3677d4fe13a9fbf65eff
SHA256 e9036f615b390846bc833eae2dfc7d7e14197cb16530c2bb0abd83da9a4b3749
SHA512 828e85369961d67cf772b735c37110c4ed9bd82dca9dac238aa0cdc5849970b0bc53b6d4fe27cc738860ad200b07a8a018ec7d72556acdd157dbcea91d85978b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 e9354b4bf011676c168d627077e47dcb
SHA1 969a5a459379023bda4fcccbb1c6e44b6c068514
SHA256 3919fe8a8d8ff92860d13f6e433a8834778ae51855c7694eaf2fa9f1d27e954c
SHA512 a353adb2c5d7389c71cbdedca0f6eddbf437e5d82178fdf8695b2109e082950c01b8843dfc0a6d4a952012c001655ed68144a4916bc43eafde844c962bf755e6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick2Directional.png

MD5 5ad1b3ff85646ac012c0cf7318b664ea
SHA1 53e07a79f8b61105f807cc8166124ca91873d1ae
SHA256 53e091f053a2158fada95878d759f2e30534b8b5ebc3d336aa9cc0dea7c91fe8
SHA512 72b1019e9e8543b4e1b00758224cdf0a7ae4c54a2464b8746dc7e9df8d26a935116b8b08976d62252a3b924b149347631caa3dfd7a9290b3f374602fbeabc17c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 ddb9a88cabbde84e82d4900028408141
SHA1 a2293edb34f1603ede115bfdf7533e5a6c802ace
SHA256 50ea9e090ea5e95204f52e630009723059db0acc8aeab8829b545b2548ff8ee0
SHA512 e2894bb55a85f5858e985f88866f74a8863b1b6335664fe4751e4c4beab60f16ed1782c0bc7506c75fb76fb7a9841cfeaf2d5dc8493f954a097bb958801635da

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\Thumbstick1Vertical.png

MD5 4fa8d4ef5fd078affb3c02d944c2984b
SHA1 7dd9d066fb43b6d5c86b15cd099ac7b8c8f8a803
SHA256 0823c4d3888e69bb1c396560395d80a9c8f9007a186d67dd36fa44207e032eb1
SHA512 3bb031c996b5225439010515cad50e48cb9d5c59b54abe05bc532f622b57a027927a30a9402b56113111e04c28f2fa039c13e94cd9f0ae46990c6f1b914569f1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 7bfa83aeadb757d08b57df3249cde17c
SHA1 e09989b15cae4ebe13002c6a8a81a4558024fc26
SHA256 9a5d74e1c977ea4d90c117e3993fd422ab2b4eee919de1af4dab41b287513c80
SHA512 20fd01a0a36b15e8964f149741aa185a535bed0349c89f1944c526bbcdd2f831f79cf565db6a53bd7a44cc2c9688a79b7afc5ac0e0fae0ccacfaf3a0dfbed2b1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 397583f09d1f69196f94ade9252b7a6a
SHA1 8c522d607b4f1bd18f4f4826b95650d2cbedbfd7
SHA256 822b4e4d28673c0ddb322214614f5ef58a8102e8c0fb0b539cb5503304e2fa61
SHA512 b8ca717a8d62935b543168ec7a1ac7d69c8b3215108e16484a38dcaa1e89be28fd98b3d02507707989a2374b4ae28f7a57986af43f0929a0fbad191d94aa2f83

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 04f9e09e62a63850b912f27954f5b87b
SHA1 4798bce20d25e4239fdc9c9cb1a2d6cb0d07b9bf
SHA256 6c136f7aed0ab74541f211b4e7c4ad9ab000eef928cd75ac1579797e68f5099a
SHA512 a33bb3809377364f2ff5c5b13ceecd0dd3ecff6b1f0279acf48d639a0ac08a7c06749e671d5889c92476f7fcaad01f28108425525996afd24947c7bcd5723f6d

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 a051c061ce135ba531edd7223afd3175
SHA1 bc918002544b69e0d0d101ceaee97f42856dce35
SHA256 61f1348f70ea2f05ebe0d760309f7f56ed6ffcf4995e9c15a7e3215716c2a8ce
SHA512 beddafb24a38752e1ad47b819bea119c6692267c6b57112da07009167a6091b9316344b3a00b9be254bf21d0239b6f6c2505f751309b441e6e0bc89747df7a0a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonR3.png

MD5 150e2655f19477d8ce2890d9fb3baaec
SHA1 23c184770736b35932ae8236b1b6ec8acbb570c8
SHA256 a32e787ff0ed46f49bb04d26bce9c12ae69e55054911ea268fefc6e1825a9ebd
SHA512 8d03cc755fa64df373e2a879db756933da913bc920459da1820ae3594d564345e85acc9bca774db4e9bc943971b61abbec25f18b9145f232beac5eb1d288024a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 16b0057e335ae004a32ceaa7a9a0268d
SHA1 8b0d567de58799a58037417f5f4b41588490db92
SHA256 84e8fb6bd5f09ae8966908d13a1a039b6452113dd243cfbc0b7988dc6010e6a9
SHA512 25b305754e862f2d521397292b2c6b993be09cec45bda551e2071c64ad90063dd908e8444c0089f2bc74fd0d84c05b3b5a3498fcbf988a3984ff605b43d6fa27

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 03430e48b5a9f28720784af560041138
SHA1 05b8807935028ec0749d3f00fc2e9b5d4fac7577
SHA256 4a68da7aca362345764760cb8f79677f11bff740474d28de1bc98d47dbd987dd
SHA512 c46ff8fda56dd57cd3c20a1d9abb6c6955d8684b47bebd65ca95f7adad53ff082e7360911a7e8cc14215c67398263466bbdf05371a2b00e683e30abbb80737ab

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonR2.png

MD5 9b4ebea8b8e6fe6906ab806983fc1fe8
SHA1 24611788540a0b8ac9302ec20e68e23bbf8f0fea
SHA256 e15af558a19cf1f9ea2f0d2c61fe3fe0a79bac6d8ee506be257a1b847958a9a4
SHA512 9390a4201978422b02924bc038f679205af5c44ff194b511e07f6e80dfc2ef6ba5c5e30bc52488f15c9da35a2a4b8c9481b2d9108a5781c276b12ea03fedb3e4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 99634468671dd1fdd2380ff9fcf09a36
SHA1 99f4fee7ed1bcdd24a8339bb94e4a6bb2a136010
SHA256 ae030ce862b21229d4e89f1718710d3f9503bbae26fa3dca136be7483a41bf5e
SHA512 ecb18a144e4f55ff9ecf6cc46bf54aa6402fa10a57f90730e386d80a07ef3f5bc60e155f42d9fb4cbdaf04311620ca915d343364aebb5394e999fbc917025721

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 4ae151fef08a5764cdd38d4e87e2d9b4
SHA1 7762f226bf46ed19d674330af12ee1dad8a5b24b
SHA256 897a733015f49aa3648307a8659b8407239af37feab169fc3428aaf4bc3d8760
SHA512 20f09d809c4696473b5c1bdaa42e9afc6a8c9a07b747677591b5c64786f73d8dc6506ee4a8f03e9c062c9ef97ad09a75790dcd1c87a368f146f2ef73b6480e74

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonR1.png

MD5 5c7a318e47309977601131038ac7343b
SHA1 a14067d8785600e54eb733a618ac1fec104f20b2
SHA256 72744ecace8f991bff82e487ae653b6c6aaede95394c72870b6446f1339884cf
SHA512 b94a3ab604feb0dba0f4d2664e8dfa5a3f6aef31197b7f7edd2ae206bd586988c8c708ae66054b3d52eabbc7c66f11fa63ad9bee11db76bdaf1ced7bc4949ab3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 42ef7832e322bbd26e4d50a218cc1ef0
SHA1 6357f15e86506c471325980c58935e1aa151cb10
SHA256 f9b531f974b55faae05593de6aa60203b3186092e4e43477998d4f227c1a3d24
SHA512 b18084c16d74b990f2edf8c93fab3bad8c77a7689ba22f713b7139c4122837b43e6aeabf5560e2f03d95a0719e8acb64582390bbd546204493b228a150fd8c9b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 a3124463e29924791fd96f33be003779
SHA1 684700497bb313e341119cd1ec494fa4e6bb98fe
SHA256 4dd2423f5923f3ac9f9f78dae9e39e6f9b1bd74630e32cca3bebfb92e090ab4a
SHA512 9b16224a05a919c47f7b868664cca4c4cc48467a5ed4c56a35f4f9cdd0b22dbf8b96d5a8e6d0cee42345fc66e66bf6db7e1943725bc76fa5e0d6223ccf416b3b

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 70112d691934931a63fa02da389221ca
SHA1 7593ff2a1259f14c39a372c0b019b723aec9da73
SHA256 c4a552d5b0b1929beb1851b5db5ab94ed77d60baf86925f0fe10eaf1bf958dfc
SHA512 ec1d51be0a74939873d73852eb5485c9e4b545f9682fa0d7266e90b89b964ce1ba0a7f77ac2df9efcd4ad5a9b1bc26197371fcf73fd89b607994810bcf5638bf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 80d3d28c51448a9fbe0ad899d12182df
SHA1 ea3892c34d23552eac2ae54bce2d61aed3b40303
SHA256 2b6d6b7ab5f777d16731d4ac2a18e1f5f954031854f45a032952a0a93ae56210
SHA512 cbf7e7c2841bfdd4a637114dee97ab94a7f84fbb091cc3a4b93606b9f536cbc36d7d5779f82f773e63a621e67bf078e0b4f509da7f9736f2dca749ea6de74718

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\ButtonL2.png

MD5 9a02afaf7ab4c16c9035dd02c6188277
SHA1 180ad93537b08e80571ae731f7d9fd29dc9518ce
SHA256 eb4ece9e62ce7e011f7f6be9a2f6bce885e99351a164abd6ed745f145298cd4c
SHA512 2781315738f2c163cd0502e06077a4865368b6b6a715011b31b0b2c7d9796891605fa49761cb4339cf5512f37f9c12d2e7fdac8745a67637c4dbf0764285e956

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 c3760920efba11d3dcff47f5e400a6ff
SHA1 7bed61da786a7b2b7e5254bee65031db92df3555
SHA256 d8adc569a75a49a69cdc869bd30a290104f84ee6c3fc40078b56b413471abb4d
SHA512 159b208c8e5ea20c7e7af8255c469199306d894a26dd8857a3df9033271b2463664c17c665e9880702d4970c38f34e0badde3727381166dccaaa9b7db225b33a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Controls\DesignSystem\[email protected]

MD5 e45fc42efd73ec13ec910fdae6503578
SHA1 e0fa57e4c463611968c9d76d9d45c90017b4e50c
SHA256 b446e672d29365e07e35acc8bf55c13db2388ee5bad0dd9b0cdccc6e8afeb24c
SHA512 51b9439cea6dbc3ac565432c4842723a3d17e878ffffc1b256a5c15875641388b2fb9e6b41982ce6e2c8fbcf0b6bf430abb7ee756ba19e4b936e95b1be5b497f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected]

MD5 70dd6c62f9aa97f05c3bdf6ee3bbddff
SHA1 b6b27d6a190a72de924235453e9d653e07cdf7a6
SHA256 9c00cc998428cb7937a124e01b9ecf0c3ef27ce30bc0f8547704aa0538f1edeb
SHA512 900b9aed8f90a924fd1c21f665c057c810fcd2f3f6788c33b6bc2ac4aa598022ebabefd6f93f908f05864adb01664c495ff25526d11fd94208b0cccb35118114

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected]

MD5 077a692facd389652705eea89aa4569b
SHA1 e33631480786673148f9cddbb5110e7ddd97e394
SHA256 cbd8fd72c0d0eb77388a9af25b33d813cc0d63348a9078663331129ffe9014f6
SHA512 ae63648d86a49f8c6f4199432d9ba061d23b2d1116449b47502b26878e098e5115902bd677b32f806c0da6b122413e50c40ae7e5bb7ae9907848df65e1da2277

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\SecondaryButton.png

MD5 96edfa8e6af26fd954ab9c919296e0ea
SHA1 863c35a162e9eea88357a91e4e9b7bb2dc353000
SHA256 e29635ced0c85303fdd83ffc24bc4258c471d00fd5f696b46b7cb2a8453e3a73
SHA512 da2553562c1b9181f09fe922c19913736c62efccddf91d750234af71d8ba4b9acbefe015fc7a1d7b285d3a65d215f2a37cad1c8ed01fd28119ef239d7b1906cb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected]

MD5 05bb15476eefdca15855f1cfb13548c4
SHA1 e9793dd909c2816738631767a19c17ac5dec4d6e
SHA256 608344cf299eefaaec5b1b86730ff0212b677c42b7638d0812f03d18f5cefe4c
SHA512 0bb41619c3e79eec13eadc5d3ea9f9a2bc204f33a2c56c2a88e041e2e8f77a3ef73fad613528a3f3e0b94b5dc561143766873b9db2f007bb981898d18a24d442

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\ErrorPrompt\[email protected]

MD5 653d8514a824fcab2121411f5f8fcc61
SHA1 6cae565c3a2b2ed049c989569de20c6efbbeab26
SHA256 e6d8a4e0c1932545aa305a897f63d4180a1e23f3cbdef466ef80a4fe1ab5b2c4
SHA512 44acb18757dc7008f8e4339c50735e298bd8bb656b7044360ee9e4cc7fceab26939714a97876c9fd5fe83e26945366cd66f753589541bf91ce5d61740a349b44

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\rectBackground.png

MD5 25e4f9860236a5cab36d76778a85a9b5
SHA1 79c56cb54bb00871f09c8488ab76a9003d7e2052
SHA256 3e918437bee25322584673d82a3da34b04518f072671416e08244a0b89b43bcb
SHA512 e16ac8585f5a9190b6ab32ba3b1d4c2194442008ffeef71edd9d7395c80dfad445a167002ef54be04fd334b40b962450dff6f535b14baf2dedffe184ecb1dbcb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\hoverPopupRight.png

MD5 44c01160cffe376e9ef6a04a5b0a17a2
SHA1 11ea8df25e9635496495221043e9aeb5f284b7d5
SHA256 6aae308ac5a2688d053b7a3667df991549ecbf128ebd31ebeccb9180ae5f79a5
SHA512 e647a39f58d7362c2234c68cf6dbc66fc07ff7f209819ea164fbf1f1d91f07a3ffa0b1a031c029ecba5c12ca340a3df99f8addabc3dde803d23308c995c17e5c

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\hoverPopupMid.png

MD5 1b91bef729339f178bbc4875bf400ebd
SHA1 57d9185f8d57dd667c0aa1cd54c478082e531311
SHA256 34afb0ff6c6fab36b4347d63bc661fb0fc43a2c8499a22a2a3400b437fdac51b
SHA512 5dccab62c6f9b35393efd549a7f537b7e854637da22a27ba547152fa8410a80b71c0c6f91484b59f9120c1070e7b4094829da76c6d4e95431daadf2c0b8c7dda

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\hoverPopupLeft.png

MD5 b6eae9a95cc68b74ccc3d251d56a764c
SHA1 d4ccad7a340d5f406b8dc8bd7ce0cda156d8c565
SHA256 ff925d745afba045a71b353cf767873589e8a447332d382cc19b3bd220412a17
SHA512 d2ae91585196d4657d8f0ae3a5ed0200a368430ea3c54747222949b8989b28a0d84ee7c5379991e99d78695f6173eb702b90d9d512927bc59de8cdf9dce2baa4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\hamburger3D.png

MD5 28d77165185918574d06bb799133ae29
SHA1 32169f6fa5810dc171b5308db720e6a454d41878
SHA256 8a7899c6df99b842b44dc8e18f957b8bbcc0ea86e23608e4f4628dac0c4ae9db
SHA512 266e0cfd49448720a0f5e2181692caae202bd47373d4751b3e538c6b0575ef52c60a0749099607640074a6483f996fce703444590aa2e5dad226203a255b08b1

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\buttonHover.png

MD5 4e5186b7a6e632f69feba4529aa189e9
SHA1 7440b51dcad376e77f2837ed5f58e4d830fd0b5a
SHA256 a3779821a7b71fee59fb50967a538b01707ff95ddd06d1805b5c1183bc47318f
SHA512 3902b71fd5e8c9ea6817605bff2d44aa0549fa1b39767460245b378d09b248ee1b0266110952a81f0aa0a9b46582be57160fa49b9327385e2b1f4f370d6fae93

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\buttonBackground.png

MD5 664edea61a69ad4e1fcea2a44b35aae2
SHA1 635b758982c69891fbdc117538d1caaeb7069e2f
SHA256 dcc4c21bf16ecef34ea010c5913ffdf47681922b051bfd62c305703e5f4881ab
SHA512 57d4adf2ad184f5572bd086b2c0f7c5ff0f11b308f849fe99888e47b02aa4b62042f980e023d7dabbe63d31d6d272e93dc52bfc825d06eb7b3eda33f5606f5f5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Menu\buttonActive.png

MD5 a5e9ca03a166529795bc74dedeb7bd20
SHA1 cea88a12bc9a7d5807dab515c29b4d1eed1857f0
SHA256 de4d22ceca606bade06b8f8ad193079c97c038c2e3dd79b8a1111376f8705705
SHA512 015eefacd09fd1155800b8129f537f68ff472db6c3231481d1f1d929aba5047ff5309cf7d0017f1c2b64c44734a3f9e523254fb6a9c37b5bf4e30230d4d268e6

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected]

MD5 c468f4141f059d3875be64a0585b3f80
SHA1 bbd8436886f315d4ea3744ca285272d070ed73ba
SHA256 25783ec45201afd154862e2bdf517c9726f37ee06e90e38a358c602bbc1ed2e8
SHA512 a8cf5d376c4245773e3f06ba45c37ae690de62433990bcb979fb1864a5a64ea7c7dfa9b1bd5b6dbcaa7f90aaccf3f6523f2fa5fa43e3af16694431310e46b547

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected]

MD5 d709ea4fe5022b2ffb3adbedce679838
SHA1 b969a03908b05b9efd46e05d9599688b1f2388af
SHA256 d48b5d55faf0d204fbaa1b775397c29c8624a443e527ff485c7c03cfef9d731b
SHA512 893521bc5dea3774f1f112cb7a7f7f84b359e21980113d53147ba9b206f120266c36e21c022b82fb145e00757d912ebf7aa27fd8f561e53f9bfc8fb8b808d416

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\NotificationOn.png

MD5 1fbe7e415b83b9e5fae6a6df706f3bb9
SHA1 aa133c85475713b87ab894acc52871a47e78d738
SHA256 d45bbeaeaa3c3c11303a4c618e669b804e9542f6c1303281481f8faafc28ce14
SHA512 01895a3da6f6642e3a7619e16cd0b4f8f65cecc6c5f581ea83d1c4a4a0a5694ca669e84b7caff47fafdab4408b186a75a99898d47622471ed9f082309a742775

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected]

MD5 f88c2020e28455c332f460eade554adb
SHA1 bee85122705f63e14c7720e5cba02c6b82b97033
SHA256 ad479aeccf900a627c89169735ca16d8f3c3f80468ac1f57d5a9193506cd4799
SHA512 70af718b96b32ce83b96a3754065a35ead1fa5fe620ed53d6ad176980d0e021dd87e1ed0d6e24d9661932664993ac99b008e493c6e3415a1a0e5b748d4f99794

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\[email protected]

MD5 096165dd66920fb923f033d92b9bcbf4
SHA1 99547609b846b840ddc0c7e117cb7a8bc1bed917
SHA256 d5ffcd66426b03f294ed5b1561232c881b072e2120f91cd053fe6e9f7a4e333f
SHA512 3821b65514cd556e2c8d0a7946f19f282d57f505dece10a00db9145c16db24aac98848d899a21ad0a5cbd92459f3e060505d64745fd7340b7da79dcf47a4c5e2

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\PlayerList\NotificationOff.png

MD5 d99148ccb580f2e2f804b446afed55ce
SHA1 a161d7533b18feec8ea61917986846d4b8e327fb
SHA256 1db19e03117a3c7111aa113706286f957a75ab0fcee394554bb3c0f797bca02e
SHA512 69dc1e694631bd46319914191df48ec612f1abb007fc38c6c0d5e28fc2b83fbad01f70fcfddd0b4f461791f7596b115308708922ff52c9a9255f310fb824c87f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Help\[email protected]

MD5 0621e258c6ff2c0720f56e7bd0708f6a
SHA1 c7a75679db80760e8b03d61816a72062689b8a40
SHA256 994f57d50e4124362a2279e449ed70a595cbb57ba251aac39eb888eddce94927
SHA512 796f0f33f1708154d521ec9ae813a4b08ce1435c665f22212b0a82dc137c5481515921b5f91f8f1078dffdf76cf64389dd64e38f3acd53ccdee2dc0d40c29e0a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\Settings\Help\GenericController.png

MD5 07477ed1262316310a05d0d7aac60a87
SHA1 57f5b1c773eade29d283505bda709b30aafbf9f2
SHA256 e39b38b34384481ab4fbdcdd858f03b9460c6cb53d5b035a3abc96b023fe55a9
SHA512 34636b430b857ac26dd645f099d4e03d44364f1046d5aa27d57530312ff2fa225bb0c2b0ac768b0d461da952f208506fb7278d6daf7d973bfc2b0069f33d6d20

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\[email protected]

MD5 35b6308a8dfaa51446c7eb91f47a0d03
SHA1 3f07ffad820cf54689d075e3b0b63e15b2f217e2
SHA256 267cd39177711bcb80d8c2b63a69d0fed64d0c020d204139402676d7d60af4c8
SHA512 dd9b325a798d480cd41ddab5ba4c80c35eb86be333bbb68d4a5a291741083065eb2342350ead15195b51bbe1104cb17484447d09a0e90ac46dc33797008f6daf

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\[email protected]

MD5 f0f787300d57add5b12fc7f7fc2685fd
SHA1 17365db1875aa307c86dfc466b6b4021a9291c09
SHA256 2827b2cda2a2f753d363b0ce3f6545b2082c266dde87445079b3bf717f7779ef
SHA512 45c823020b214020465a1ae3def6c0ffbb9eacea218f2a08a31bb4417ba114eb9d9178c8c06b849c05511d03f49f1565d4cc16d504aa2bdf5783a696087cd656

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerDark\[email protected]

MD5 36a1a84c05c27ad56545b0feef9aab34
SHA1 6e0c05468709c0f2524e8661315214d41b22c1af
SHA256 664388db94c163d1399a9c98cd54497fff1d9b4e5cd7c32153d4c90984f4928d
SHA512 e1339948dcd9e24d219734c0baee8dd25298f8e54c038eea5c15d97c4299f65c903eb19cb92e81bf1d6d973dd43ba046fd5afdb79dbca23ee62c95e1a8013b68

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerDark\[email protected]

MD5 a550685ba21566b090f3f47efc5009af
SHA1 d591b17e6985951f40ea42a56ba1740022945d7c
SHA256 83f68ae5807ebf68f945da72450584cd4aaffdd5f4ad3341ab29cf4b92790c8a
SHA512 39b4c77bcf0e125a4cd49ec68c54b86e822e9eb2a0481cde3fa9584669801e17480307ee482c97e9f261cc781bbf8ef2650aa617c9b5ffe2c517d0ce08ffc51d

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\SpeakerDark\Unmuted100.png

MD5 15019fbab803545b70a18d3a7955b5d0
SHA1 8b83b787c1decb55fa3416e1543d4ad6b586c23b
SHA256 b716b0f34ed42a7c6ca2a2f57900c024f0694e0e42fff9e5ba404fb13f3dbc0f
SHA512 4509fc646461f6839f3bec4dc775db4a88ed4e86bed2482dbea448f30670ebcc7839881848d05aeb7e4b8e48159c62ad7730ad1c1696624fe3e84e38b82ea405

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\Unmuted100.png

MD5 e2731892d397848874cb3b0498d65ad7
SHA1 66aadf9f07806903c391dc1d97de874b95f4820c
SHA256 c1b1fcb4c1f5dd131d59f8d809023160cdabb88d0497f9766632bc28afc185dc
SHA512 73636de46fcfac7a4a811fb2f99fffda7efc9e1f7f9b176c1d7bd24180ddefbeeec7d0c12429a3972ef95e59cb61cd62cf91f0077910ed4d0c66cfbf8e25cbf3

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\[email protected]

MD5 ef3bd273798fcd9d998d08b1eff5402f
SHA1 182e397ac5bae0e77a7a8dabeedd6d6b3378d56d
SHA256 5ed00327f2669306a4bff940e93514e2c827afa3f9097a180fb976f74a0775ed
SHA512 bccff7e50f60e981a559c0e761a544b8e4c0e46d311fff1f630d26418b05d45183dc908b7d1f8bfedc5a76c1c54c3f1541bcf439db62ba87c441af63ac2bce27

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\[email protected]

MD5 8a4ef41ef32375506243f43b23475ad7
SHA1 f14889c870eb02e2841d05ba446f3b205f1f3c0b
SHA256 c8e51e51e9beed24d4713fb9f855b4678ba2b2f8a9266a3ca472d1569ce9ea13
SHA512 3b0349d2019a51c1cafccad8e29acb96c76e66cb56fcd06a52f4f0392baece35b1f9b41ebb3993525245f254bd3f565e6448b548e4816ada87df0f3b34072424

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\content\textures\ui\VoiceChat\MicDark\Connecting.png

MD5 8b5f44d42f1ed398d2940af61424ea17
SHA1 2acd0ac861f20afca26fc5483eda7f3ede167b6f
SHA256 7ae5a4be9668b5bde3885b1ae02e01c22c9ca7e83b58285c0d84e08bb8d1a5dc
SHA512 2bd0ad7463ea7959130b9c5c1a2d74786fba4da9af7fdc91c6ba0905a0e7ab00c74a6fe77cfec2712d0bab2327ea4bd02546217da8b6c9fb3705ff89d5b1b95e

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\PlatformContent\pc\textures\foil\diffuse.dds

MD5 b79e6464c2a4e060275c1a947d2c46fc
SHA1 cbc5d75c02e4613e9002e39e9ef1d00d63183fd8
SHA256 8552dc6e0cb6d92005d531258fdb0648f943c720eafff55b51659ec80b7c3e3c
SHA512 79f8c6437f1e73b2b130fbdad2e4890bd0510cc47cfa77fa96f44e1ff4dcaf7718a7677df929e423f5623d59a94e1876d72be73c0be411128b29702237c9d0fe

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\AvatarExperience\Profile_Picture_Group.png

MD5 6fa9b0050a28c9e6ac5a31fdd58646ba
SHA1 79f9a4d02f47f0b4217b22e16bba5e2421ee12fa
SHA256 1317cd4930b2d211d11e2cc64fea85f3cdf95f1a46eeb24c50aaa0a0382a651a
SHA512 c7a03f920bfae685f3ea11f1654c5052eef5dc286a97ab05ecffd31c737beb8f17eb905b47bb4bedc499a18b1fc241433e22ba76e58f7d8e31524dfe8b61d358

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\[email protected]

MD5 0a593012e35f881abf38e36d4ce39c3b
SHA1 d26f4e6cf62aa6b890d30b8972531d2bd853c567
SHA256 449dd92ecd6c54e06cebcb1ed53cdcc7b709c4ef33764fff0cd3d3d6483326d8
SHA512 86692763487d4118106e6d715d206ee2891f7cc13c6987af4c22226c9ec5382604bef3e9326fefefaf074264e4ad241cc9e086c90145292896c70136f639b634

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\[email protected]

MD5 6b35388acee8299ceb9fa0e3de0f76c2
SHA1 9be400ea4a0e9ad1ca595f36026a43394c81d768
SHA256 a5bc3aebec36b5d4fe2bf08a3723a50ef3d8e16ad968814c70a76b6d6f72f494
SHA512 2f52b7f3d26994a68fd51b23fa2980e308b667d0fb359696d43cb9927b70bee3f98c2687393133498712bbb8c3537be463a58e555d873adf75b5fa6ae0bb00dd

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\graphic\gr-avatar-frame-36x36.png

MD5 ba30394f15cf422a3ddb0f0422a5fce9
SHA1 f507f9e9eb55aad8e4dd2695a475d3f7512da835
SHA256 05f345f3e88553fb619229ece06ee71e8ec7e6fe63f34227dada513f9fb0a380
SHA512 dce5118e9182b3e346b2d8b97be4460a80a48081676d7ba1b29b82343a03ac00c8d6f1bea0bfa55054807f9a981e74a78d39c348ffc83a1d1e509c129082c182

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\ic-view-details20x20.png

MD5 948db13d32b5dd516caf7f580d709093
SHA1 2451c3b1983b297b95dbf57689db9a7978750112
SHA256 4414b92554eeb1e1b6c17245242d09dcf848552a914a3b336e30b1067533c6a7
SHA512 353e7e75ca0878cb4b9be22eb6498239f6e00d0e01d864d9101165b66accb3992f5fb2eda049323a6d9d57a7580e5a11fe3781e745b02a1b3982c6fa074e63e5

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\[email protected]

MD5 51f12487e0bb28fe5572c515945cf0f6
SHA1 394472092a7abaf3af9ef390011e03d73cee3f0c
SHA256 04de213bc88a4bd3e2fb79ee2ba37ce212565d05d2f84d08498c935d484cbb39
SHA512 f787783de70205c86255ab3951eb9912ae71056b7a7484336cc78a0c79910c74549cb286134dd47cfc06821f6c29d3d90d91b2a60451142809827a678af5ed2f

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaApp\icons\[email protected]

MD5 0cd0a3621c9f57b080f96c3767b15b3b
SHA1 052b527dc80e35ec9de8b44935c2e1031fb50373
SHA256 c97dae744049b0046b546b38334a9c4d0a5ddf1789e7a45a9669bcaa3e66c752
SHA512 c419fbb2d2be89ae80bd3bac4f1297ace641f6b16c036454f430e093ce1b962fa11a61ac50a984c898c4994211dc4eef8eed966dae989b03b722913ec9e2fc6a

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-ingame-12x12.png

MD5 1b6ba13f70fd1024f08f6303f371f668
SHA1 9dd2bbb77ab02a9b4a06bfa2fe1b7bab0fda6110
SHA256 798e53488f17f2b5298e91b35cd68e3e231d30b888c92e2d57c6c9af6a9c1eba
SHA512 a593b9cc800c2b8fd95b8eee396217c7f5642074374e0feffac4aecf9fd4ee33a321e62a2faf35e3c8c7dcc61fdbcb1c1d16c5d5953a6a86f2daea7e012a3174

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-instudio-12x12.png

MD5 59d9c05a33e9fcd5ad0da0e2f9bbcc10
SHA1 2a97fbd444af84f13b690d9f2c646ec6b5355b7c
SHA256 0e1076ffa6184c43801a4203cad61d2de14572778e2cd5c68936d3e4b9f69ad9
SHA512 fcc8a98b737837b00b3d505db51ece6b640c13fc4ebf56aaab60bbbb65321e3d968ed19aaa139eb85802bedb166efdd11f1907cbf407155d18879f8728cc23b4

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-online-12x12.png

MD5 caff21b2541e1edef04307f019a1d666
SHA1 4d85d843cd8ea705763a8e5a9a15ea4ec8a1ef5c
SHA256 2a385eb2f4623cbfe4140130d48ced7a1ffbc1cb5f0df2749919793822eb7981
SHA512 33bede41466ca793f5c37605237ea02896411346bcc0b6beaf27eed4dbd6427132a40833b794103a84c2465f7d67863d9fa2a248076dcab7c613bcbd6304fc01

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\[email protected]

MD5 b31cba2eceb6e9be57e332e7d317908f
SHA1 617287f792a661c9cb8c8cca2b72fc6f3af10648
SHA256 c90e6afd53f78a9a85da9a448e10af6a85b43560b217d6268baa99ca6c5ae81b
SHA512 56f0980a19ed11b7ff2a42dbc42911393de65f8d956b85234ef775ea3fe085a0f2cc73acb268757e36673e05d5a8ef3afbc3558ae6c12e38963d3d88b29175dd

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\navigation_pushBack.png

MD5 e79e9707fb497daeafbc3b4416384e8d
SHA1 485b0d4aa6bee1b9efc7622ba06e0f8cc5666be5
SHA256 11753cfef640bdcfc418c5de4bcbee13711af079c5262339f43c76e61254f47a
SHA512 b2166d69a81a72674c893f85f95404bd6c3af046c2a7c89ff62a13c49eadf0884410ea16f1e8c1b03e12500a3cf31726dfb524d63dc865a10754adb043629cfb

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChat\icons\[email protected]

MD5 a1d422dfb26b38a662e0a9fcc1c86fc7
SHA1 46ba31bc0e3190674134054ad67cc9160095b4fb
SHA256 26bcd3bb8c4b68759f727094d0bf6947d594e4b5e0ab641ab58d9fa311714a91
SHA512 45ee96b1347f4d1c81b96d5194fe1cc49eacb7ab50441f328b9a15fa5883010b820b5b11761bc490c2b27b7580aab585a1d658eabec22eea1a306e1bf70aca56

C:\Users\Admin\AppData\Local\Bloxstrap\Versions\version-24872f7beace4d0a\ExtraContent\textures\ui\LuaChatV2\common_search.png

MD5 a09dd3beb2d6270f7663296f9e770b54
SHA1 d9c73d4cd15d6bd5f61294703225273cf509f29c
SHA256 8e29e24581549f56e10e617a2caf9f424c74809514db516a19cb5e46e6619a3b
SHA512 d8d1a2de1896ec807c699fb85928aca95ec593a2b7e3e490e07374db5c3e069ac115bfeaa91b5fdc1b9e36bdc3f4ddcc74c49e22f79f083ee30f9cbf014efd44

C:\Users\Admin\AppData\Local\Bloxstrap\Modifications\ClientSettings\ClientAppSettings.json

MD5 f8fdf52257de442520e74ad6a4a66d9e
SHA1 f6c1fb4b73ba51ae254b99e4f1f742a78ff0e4c0
SHA256 c49548a3906c8be7eca1eb5a9e61587317c18b5b022aea4990f9367e48514c25
SHA512 b521642fd60f7eabcffd476a5d959b0b97961454a91467f1a301ed86bdf6cf85312bbd3f6f0fbabc36c0b5ac36ce4fb4a7ab2f39ef56452aac458296d05be3b3

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 fda81923e5a55b338b02bb33d57efe11
SHA1 c0bc524f719a5f15c2da645803b089ccf20ada41
SHA256 edf3c527a354a256ad6eb127d7d680885e55088e68d8c381d6be477ef1573a28
SHA512 8d26d117c52e698c92b59811898359530b9d595c9dd348a3fcb9803aa5005ff3b88238794db79e956ea246cf85a1d845a840def46ad9022348f39ae68af7e8c8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old

MD5 f69a864fd564a834d44a00b0a0e0bc64
SHA1 0b61e5c201cd15c83be557a0a39f500af00c3b86
SHA256 427b60ac8d987e5be3d6b5a783f2a458fbd070ca96ea0637eb9fab59bd5ec247
SHA512 7b72af5ad3d5b0cdc2bb935fcd88a7fd132b252537a1d79fc642e49e89095f83b1184bc3c14df4e314bd6060a9046156b094ea7f81b515599feb8d3b276f255f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old~RFe6d52d8.TMP

MD5 c7eec3109ac878decc0e9b05d7726365
SHA1 44f9425c94fa31987a859a1a25eec0d604f5f5f5
SHA256 674fd51db24b2e90a097dde054e45ecb70105e4eb3ee40a779a4918e76730ed6
SHA512 96f56b35a23d2e5d00720a82b1a1c14abdc9591ea5871b9f8c247e0c52d91efd0cbc018be01719f9a7376c4a2c360b887fb24f51ebc0b6d8c88df6ab7962ddcc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 d5384aef3a19f46358f408d1d3edda8a
SHA1 4926e345e7191770d7b316d8acffdea1061041a1
SHA256 3d7b4e5a4960072b9b9293e80a2661872b0673ff1cd0737abea4cf378068691a
SHA512 adc962660e547d22c210434167d75f03c033b58ede18e0355bc3116ea08d8a65df7a7825ac53fdb68bd2958fec03deeecb19b0bb9a6ddacadfc91c0515a6032b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\9b5c6388-b13a-46f5-bc30-e660dc797a9b\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c

MD5 29ad9ea37ce397f90a9b0322792a453f
SHA1 e0ae24a29fe1daaecadcb6f6db1cd6e3d051a273
SHA256 e7ac7314e4507f160cd0c863fa5c2cdad5c8a0fe83d5421e184b9aea877c4a84
SHA512 444c3999c3673d298894d99c61d57cbebac28da2aa63826764ac8ec21b0eec81174b4e1483391bebc55b4a81e1b9e17d97702f3cd995694488f4821a33addb20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005a

MD5 b322e56a86b24d52ba6c2a10614ce78e
SHA1 9a990a198453af55e2c86f8a85ef6eebcb296f4a
SHA256 3df48c3c951cd9bde194b92d644cb82eacb0ea91d01761fbafb645c4462b816e
SHA512 0aa6f828d3a3472325651075887379ad159c348c4399b10e0c3b2556d52f879e1f57b4e8a80c77c1845653d0fa50c8b228c5ac684ca70b79b98c245e4d38ebe1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005b

MD5 138e0d87bf9b3e7e0ac905d20abc91df
SHA1 a306dcf04ff266d6d5acf9a47d2e9d91c6a4ab2d
SHA256 e21049905a61839144025097a996d45992869a4f7a5281491e1a0d43ab00319c
SHA512 91f4753eab0c165b57703f4f350274553d0fa75d67405761a81468f6f311c0890486bf8115fe5c3d1829f133e861642912fd8f05472a819141178b2d8f43b001

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005d

MD5 8b46159f0c940fc3e6abf99185f44f11
SHA1 1a2e27feaf823cf1a84a203d1bcd320a7f6771d1
SHA256 c77f0313cc7771a1dbcb739c98e4a8387669747c359cb59593b13c3891164979
SHA512 6e780c00db95c810b62752a5335e214d815aeaedaa220fda93a191b514d8d6a077e772665a1ba7f321d124c17b1d62a4f4b3837e4e4c65eb3d4e029999389560

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 27a59eafb02097ee9c25b18669909e51
SHA1 3ff21da2c6febd6bc4a104ef200505aea40cf61e
SHA256 c978b9804c071f8b3d3da02d68c6e43e0ea925aa8d3956d08712a376ac0b59a8
SHA512 537874e72448d4a79f674ee27b506effad431d08cea879ce602430513c7f0605d98c39d84518db1a7eec151fb9def7605c8ec577135deffe66b44b0096aeb97b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 628051d2984613069ebb991e097456cf
SHA1 482068926a1a501851f2ae3eb181c03fbc3aa162
SHA256 76b4ba9ab8cf84025a23adcba64c8e6d67b4d6d54f8796f0f5f19b6bda57ad99
SHA512 a4cf1e4ca30ea064b7ecb133dc5811f88ffea288b53ab5418635780d494a671695b46be6f4c66ee4c01e3f7bd5a9ee32ebfd2c4cce570f5d1f622ec506281ad6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 680ce3ba92c1521b3a57f256a25febe4
SHA1 c4332a910ee7af68d1a90d4045059eb9abb5f291
SHA256 da49da546b976a0c574d725cc25204a0e95b1518838a32cf37c422f677085ac2
SHA512 595f4616c3deb685f4c18231b8119c916ea8774617ad8d6449919093f8b3888affa2bd430e759d57a98e9a077433e2e674bf8a8feae198fedf554113fb63134a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 af3c3469059ee46c0e2827b44e449ca4
SHA1 3769c9b6d93cf37f9def07f025913ba9deaf19e3
SHA256 587791cc2258836f61918e67093463b4ba983b8ca1540a790aae5274c0baf562
SHA512 40d716a2fc9d42931e582d8f459dd3c27201b7a7a004466206d77b3a30f3b2cccae1c618f07fcae81682e1075209a26312da78828fdaf0198d84877df7cce5f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3e000f74654597c4eb2c3220bde685da
SHA1 04618d71b0432ebba4f6ff2bc229bab5b4c6cf10
SHA256 046fcc6dc96b6897088421f38289c80b159772f08795537f2a068cff9d91d68f
SHA512 aec88aba2054a7b86d2ad3ce22dc986bec0b7325dfbf2f56b50c1327b1320e253c7181f8989924c274b3619aece3be8b1d01019bbe9225c9950776e7a2fae139

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7378861b42b4496fad0a6c2737d938dd
SHA1 bf755c9424445cd2c3beb4be900a38c303066c47
SHA256 1f5c33d6607d85aebf2f2388d908735ff604d4fac66dc8b31a1d7cdd7c05b595
SHA512 a3532a537addda0450f2a5a9db27d6b24b7c402c29507cda4abdc3cb85bfded5e20455f33ce87c703f326dd353999e0b402ca56e3535cd7808b542bb38a11ebe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 92d6fb5b52436f8547d674d4d96d2b91
SHA1 fcd8d454513feef5d67186ad4c828925b3c3d5c2
SHA256 471246deafeff273c6fc9bc8437b43b88fc32974b66a8e3f01ca67f480caae82
SHA512 23ad08036570fc55ce9d93653cd084ae8ddae1af031fe192f576ce9daa09adf2087af9b06846b08b091a40ccbede8fcd31e0773cb4bdac642691a99b60cba497

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\4a1b3570-9afd-44df-8904-f49fdb94bcc9\index-dir\the-real-index

MD5 be27059818a75d75355e0af9fa65ba6a
SHA1 78c6bd8a5efc3e1c741f1de831916e4f37b620ad
SHA256 27072e799a8333b35945d0b253eea3de26a153dd2faf875a2c105ba3ca6760cc
SHA512 b99a2ea94d6734683cc03afaaa835a2e22c5d7d52f18c8d814f51230af4d8b609800c10f2b44f997748309696fab5579b8d82f770babcb5f2337d9715e993674

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 9547cb0099478374e5f2cd899d6f02a2
SHA1 67c0bb5909c4c75b7332bf01e8f074ae0ffe4765
SHA256 59524ed376fe302251adc1d3193f709e69cb246ae0011498658314c9d4ad9cd6
SHA512 ce40c0df7604ae18b74d1ff0e0f547562e3b5cfae1cf9604bc648953a4e8c619743a8b08a5f7db82617267557af956b9a0818d99fff42a376d4fd65f8fe96490

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 7ab5b074971fe0d2d400e26be13afd31
SHA1 c431c8082e4ce6241cf337ef5adabab7af135605
SHA256 7e1c468b7f4cd694a262765f7c0095320c618fad0a43e6debcae0a80219b0692
SHA512 200e9fef86e11a848f7936e5129809b08d12df630d68be6c1506657ad2227d82060b80948c923ac5ac9085fb18bae3c254a00a0a88805610967a8c25c14fce21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2accb5fb799858e5bc50cec45f38d82d
SHA1 16b7e9e17d83ceb3f5d8e72e41f8092bb56774e9
SHA256 8d0010ebe6846409b68e66589d2c858415c1fc08e554ae28b96bf8522d176bd0
SHA512 ab9f68fd4171a07b5785d48ba8ac02eb9c4b57595b4d5f9ad3996a9ab51f78d26401c9c82b61326af258bcc222096943c005cb682967af2fb671bcdd181bbcfc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 767948afee1ef9736b322dce2402d535
SHA1 ee28a2d1acf0b93e3b3b6d29dc74229c2d37fd38
SHA256 8eb425ff330a518004ac9dd40494b6afbf4c68fae6444e7aeb3704d6012c3121
SHA512 9f40d2bf42598b1bdc13e464d4141aee61b9688a80aeabc8701f8da560cb4a045bed285a7e6ef6747108ee159d23fc29ec91b42b6266f792e8c5d17fe9ad6557

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1d53a5eb047f77f133b21b7f0d6c5150
SHA1 9846055d24b7bbc0835204fbb872f20f68ec50aa
SHA256 7ba57b9f11a9795d30edf03433780ae90f02c621ef4ed90fcd1f696e95b613f6
SHA512 d2b292905fbf228104941428d95d60349fb98bf298bce16e8d082a0fefec63d621bcb008b44d5eb04586957d775dc5f4595338a73bc7d40709634bd942d86939

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 d725480144a92bd4452c956fb78b83be
SHA1 c5331fa56108f8b92fd17f8bf1c64681adaf964d
SHA256 88f31629c9d942996e208c22aa3c3451b6d47f253d4fc679b2f62a1d9ed827b7
SHA512 3966a88f3321a277e8c191f2246f9af840c5dc66f1c6508a56bf852c018bcf36f410c1feb4aaeeadad689c06a83e84b7efbe092877cf812ca4daf0cff305d235

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0fd4075a245b12fc273fee0eee212486
SHA1 6b3fde733ab7497b7ac4a7c8239fdcdaa79fe460
SHA256 fd07c92ad11ef31161d7b4aa5b87dd14407ee83d5a7d8a8e848f3c95ccf506fe
SHA512 54af2c861860e59667f7c8a36582fa6174ed8b5fa73b923cfad8867eb24523a74373c62b348d96a71af042529fe58a94959ad5ae929ddd85c98b1af2ce1161f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000081

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000085

MD5 288e237007f65b0d88cca0a2c70e2688
SHA1 d858c9c8b26baeb4f71e4e276b595036a226352b
SHA256 63eb3036f3ad1840f922f83275f9203bfb08868977ebca1ead7eb55122a40754
SHA512 63bfcee327231285c52df7cedde5be98e0cd5823b2d9e2558df851ded7f70f33a7b875e591603d774020cc6ad55d45ba376b2a51f57b31942c8973ad7ae9274a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bb

MD5 1aca735014a6bb648f468ee476680d5b
SHA1 6d28e3ae6e42784769199948211e3aa0806fa62c
SHA256 e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a
SHA512 808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 89d4dddd40ec9b5eb042a5e44fc8e98a
SHA1 b2b3aba69a5bc58b8f5d8cc6e40b3a7950e29dab
SHA256 80f0d9cfa54a24d59375b74dafa45047ab5107fdd055f84d4726e1888dbd0629
SHA512 8943fa1b6eb58758cc70bdd9f9c76ae705908c111767af94c2b1f7176e0c1a755adf87920efd99d72f34a261e21fd0eb62db1b0a5feb457519d634acfb4b2bc3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5480319e4b9bd7e0950de81137e606b2
SHA1 1b6287133eb66c7c098c4aa48d7fcd703dc7e8ba
SHA256 ef15003b8e892009405bd762fb277419aa893dedc64baccb10cd04eaff132646
SHA512 6f256816c3c24e468c8a158cc90e419d1b1a225a63bc205cf0c86d5ddab23e16afd3a6e32db2aa86eff16dfe0a7b55b8ff36e109b344f74040daa31821d72eae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\reports\c129463c-81fc-466c-99fa-c2f8a4f4d0e3.dmp

MD5 a599def52cca4f1e7c52ba3bc1922cd8
SHA1 16fa84f329bbf2b3542cab46684fc65adcfb8f4d
SHA256 a03e2c498dec042e341c8480b74b7a94da704b4c9e8f53e61f3a501a9f840818
SHA512 337f247f4ec2de834ea4be75dfca26d9122bf21e57c1bc9f39cdf2a410bd5f3d99e3b777dfa8cf8dec8ce92dc299bd418b2fe61b4874b02af4e065582821a8fc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\reports\69313cdc-b958-4aff-9644-2f3a122e8701.dmp

MD5 2a2ec46a1f8c7465e263362805436670
SHA1 7151e3bf5105535759419b2f0d09617518968ca8
SHA256 cf54590ed6cef806d2b839b0ef289179e6491ea5ec8301ecbf4a03748b46a6e0
SHA512 af77ebcb22521286196057fbf856a7ba87b8d7debc30b6681005266d7897b45f3e2d06657ba57ab7f93456ee82802ce35708968e37f76cbea22f6a934fcb1050

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\metadata

MD5 9652443bb3f74255946cd6e19b509692
SHA1 6f9c1f626441e98f4c5c172634c73071e10cd528
SHA256 8353193e884b3f53b062643e4209c04c2010a62494b99fa9514edd20cb9cc306
SHA512 3a2e046d8709a062329cf4fbaf0ca605b3ef792f07ac006762933429138e272391d44ce48ea2224fc12575e18b108de9c52b9cc86176fde39bdccc5267bf8968

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\reports\9e65f6b3-6a9b-4923-8fa1-707d3d9629c0.dmp

MD5 4068b57aac2dc6bbb426aa9fa0241ac3
SHA1 cad5e01e3d8b75e23d89136cb2b6b1a9cbe805df
SHA256 c89293d8a5162eab837eb234ee844b179958d4a74c4e238a4c13db4312f82666
SHA512 be637a48f5a517fb2eb9407444042349cb09b4f486a1eaf987ca18e6b30c5b9a54fb9f54a8bde70a11a592deac53c77c0c676356037eddf2068c867a39154b34

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\000003.log

MD5 36ed9e695425323c9a83f9202f8bb0da
SHA1 59873b2d41cd9f5b07665dfc9c4ad1a0478dbb3b
SHA256 136271fd1555fd89d30e4b7f09d653d8162b49de858178fde381c7fb42009ab0
SHA512 3f56ba1d1f20c90e2afba7f785f973b417810f02fcdb7e1e77de911fc509c7baa6df7d6d4b9a2e1804f0ed862cddc936854f6271feae930ea0fe93f3e351a9b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1

MD5 790dd15d38b86ec99848766717f06c51
SHA1 7be2102e91796d447607319f721377c609555db1
SHA256 de812ba051cc529dcb949cc6a27cc8b22e41a913a34d1bb6cfdd44f7c142d3a6
SHA512 a6f9f4fdc287c05f1c3577e3fb2c2cf29e482ca54a94447d453c2e40f1d6e003a63e874e864d328b1779171b03c30b2376154cfb2cb7662e81f973f05af071b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\reports\e197ff46-25bb-4a3c-9a70-1529a175b0d8.dmp

MD5 038644e80a9db1f8b1f4c89fca9e202f
SHA1 54b52b60b09f18b0a18e914a29f516483fe6c710
SHA256 7f5e41c531c47150f139659382a78a0ebebbb624c7e550b5bd7cf625dead0754
SHA512 cf921a8434356bbfd5fb1b400b08b3a6cee265a1f0960175ee21ac8f5f7e09bb2b8b849da74b0d14d22b447607a62ae2a9a86a1f5288e7a16101999ca17b669a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 ecca8993047150870094c763386eb4e0
SHA1 e77376a1868359b6270fe9924477d645bd5d7d1d
SHA256 bc2822a5efb199dcc655254b162e8e690280697a639ba9b6901133798470dafc
SHA512 28eee493fd526ef4227665583b28d600954d71babf027c2aa6bc8d72684d4ebe8b84436dd75a7fe29b6d17c8fd91f27a08e4d9deb53e8460a518bd7c09ca297c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\a8ce8aa8-958a-44e8-8482-41bd1d7548a3.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4ed33a9c1e8bd9b8ed0a4b1758ed231d
SHA1 0c30d4c54276058c6f5227bfd00e027877cbcb41
SHA256 65603d3337e4954ecf78953a4292f4bb77b6622f08cbecd904731574258c0f7d
SHA512 7601b1ac3e2a2e4a54515fcc76f2926866d0244464910d4ce1e1391d31924f0485150c6f5f79331507a6680bc4703178c9ad0bed956377682d8401a443bf1a97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 914cfc1d6eb8a66c8a926745af801033
SHA1 66c4f8c09a1164f144082a38943ef6cb26a7a296
SHA256 76e26c1b55647e8352197e0004c592ce773f4fcbf227e1d35389710aa2a377e0
SHA512 14103a4107cf1d8580d1c540e986aaecbcc2476c82c058eee4c89996ce4d635bfc3aa03b480f8f97fc2a39eff2829ee3bee0903925b8a74bdefb248833b864f3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 327dddecc45bd7e1394ff318b7ac69ff
SHA1 876a5932ed43768803cc7c843dae908f2384f128
SHA256 32bef6d79db88759615c5be4b144780cbd1d176e5174210db0eadd9dd364404a
SHA512 d82ab1e3203fb9588b185725b261662373eb6271ea710c245ba68366258a5c571842f5cd2662eef948b939cf6a4201b184001db5b417e9d706c24789439bfd33

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 6d7067c73dd7b10a1f6cb038f6ecef68
SHA1 cc07ba97fefd21eb66b7b490584d588882b256a1
SHA256 4116eb849c3e707407afd3c18cb695319e11677c3464736d31fc7aa1fbee4080
SHA512 3f1ea04fe2bd88d262dc3858272c6a091e49a80cab2b94b756bddf24e8841568ee83efd70f6d6987b4aaa51ee296ee6b73f01417ef69718b3b0b0c5d1deb648f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 36e6d73de00c81b376c07c62e65e372b
SHA1 559c17443bfecaa8b99f10fbc9be6e43916d3ece
SHA256 760d7f2e86eaf907ce45f22e38fb9d3367884962321ce49d506f80301c56e6a9
SHA512 959722d0f7a29d6940934e0c4ba042c8742df14dcd915d2bcff897e6147d723d22d97a4e7af01ed3236ba9c170a7d46cc450389e7564fc52c2809e0fa31b57bd

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ec8eede0fab8929eeb5f2e47bb208239
SHA1 3d2a671568e6ad05bd44196e4f48ab95dda81e08
SHA256 3a545090ed1b51ab2cab62e434c214183f170f6d5330eb0a5be0e58e3c423b52
SHA512 4194f84f28904d76fa6739dca4d9e24f456c4ef0c42f306c26c24b38f42cafaa9375a039d0c36a07a7164e41e1bdb4ebcb4267c367a5b9b8e98a309f3dbd8de4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a429c314a87f51927b883856eabf11d0
SHA1 6b8076c811697ced293c6003d7aeee9629279ae7
SHA256 dd3f179d87a4dd2c700440ca037a00f2c0434b46b9e3fd664bae787c38616774
SHA512 78c83036136be518aa9abdb7bd78ab3e81f9bc9f017f1a4839f721a9a232cb8f932e90f56ead613f7844a6f5030c4d50936ac4949eebc583197081462bce9026

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 92d2cb98e51845d6d4c3b5363e3e8735
SHA1 8f16528dc34d2f49422669d92f1eb0c8a10e02e6
SHA256 1357df996e956965c75da0a874b4e36d2f68f5a4374fe5193a407bd240538420
SHA512 3ca4f9562f862695452e464de70583ccf75397607f64402f68e4f7ee46bca6d2ad8aac526fdab1fd76ae4f0504e5c1533c3454dd68a952fb870303fa5a170acb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e9

MD5 1b4e26d1e768efa13fce73e4ca9eab41
SHA1 f53a49402a9141e9d404536b938a6a8f61ea5532
SHA256 172b6e29077969e8c2f294d33a1b299d6c31eb19ae19db28afad092a63b9d515
SHA512 3ee45aea7e04a445fd5099f1e6d06dde9655388606e3754bb65b5e2debecbad53a9974d27c7c5c733a9efe4bd43b4dd1c53da7daca3a422378ace1dc31f7b4a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0d71e85d699b74cb850beb2a6ecf645b
SHA1 badba46ea65f818a32e2cd3769fafb66accd9dc0
SHA256 1896957184c9db382b28cd64d392377f70dcbb8de1f75100df00527d6a7d6d2d
SHA512 e5a9689d7f3ba25f824d73acc6bf222d1bfd9586bb03a58ee45b4c963a067ff7f2addc5b667b940b73834636a35a0b93e9a8233b6d63178f36df3d17f8e25677

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f8124447004d57ecd51e53634f7be19c
SHA1 6bf5f08549c020e2d942b184cc353e71862016de
SHA256 e6136f945bfe3497b313ee38ff4433bfd55810519133d9c66f7f0b9b67e9829b
SHA512 093441838a116568fb331361cbd2e2d576d7ee8f5733d84b5bb9b8ef7724ed0aa4dc531028d389996119892914ee62bfc89cf07f357842b1c8d38ea27b1e5e96

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f2

MD5 fe51ab178d3987f7ad219f0e83e87cc2
SHA1 4b24ff49fe603b5ec0251b935d2d52ebd7a15a49
SHA256 bf61b9845ca19fbd225f8dd2eb0381f7bab7f6dd8301dd9ec095b0ca07f98f0b
SHA512 26e247737998cb35c6e8a0a49f5ea468abfc22dcd239cc7855f29db65617853da4a48633f5ec392e1bc6dcb9f5988161f9c427ebb422303a224551672f78d074

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f5

MD5 b604e11bc42e6ebffdc1f883a9b57509
SHA1 7b36ab9b8ad462773b8a65d33509983dffa0d162
SHA256 a1801ce85c0fb79bfcc7144edc19833bcbff8be1153c8359395e356faacf56f1
SHA512 3ba84d0633a3119bc9a58602bb542cb261ef1c3f70491be6147028762c02cf3f3be31b576d0159cf27cc7bee21866d9d5b4c066779aa0c3abe0f3a16a81e7113

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 09a3d011eeaa186036fbe8ec874f0307
SHA1 61ad348d492307bd0b86b26a6693cdbc256bab1e
SHA256 00d9108efa9772b0fec63592fb025d3b9272e44263baaef311df16fa516cb1a4
SHA512 29e958b58a36226455d8258aea6c92cab1b36da0f819a5feb5a28716097a64b9661d8b0ebe9efe1afbffcf0d46f676f6112adca06132fe5b990a53f389184c80

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4438d20e1cc3134be2e4b2567166f7df
SHA1 7c6658c6c9f2d40226f7e8c643fb858ed3035ee2
SHA256 0ed0bfc2dd0f727b102dd3759f268bb1be675e09136b4b33edf05cde34ba550e
SHA512 7f7759d12e3a7edf3552188150626e3f032f942c63736c75ea402caf9f0c1654c71e6cadd4339d559c0e4677e2afe522c7a7dc97eb8b2c06d97fbd67497557ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 18d2082e90051d8941fee6ad9732d027
SHA1 7df8c5f9f05cc91ae34aa582d0ae532b79fd2319
SHA256 1d7cdf0710e06e23ed37d04d21d0947eea9d1904d4a46ff3ba31e1d63d593f81
SHA512 aec3e27b944107e55b012c23d193574b471e11d45581491c3da7eb5d0fb6a0d67b51f9f125437bc36ffb1b452713ed1fc1f5f6323363ee979de9155ddfc687a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 2107f754eb2d60ae4e82ec019bc7028e
SHA1 2e38a2afa8aceec4959a295f8e9bb725cf1a9d13
SHA256 7daa0d88def131627952f788b860f020a43cc71a9ef137b3f8d27c4cae62487d
SHA512 10de928dac53da513cbb0308060dcafd6be96b6c61ac0d127a79a83de59e33eff7899723abd39502f7cf513a7b7ec36e191d9f9f705bb4d9dd0f57827e625441

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe6fb958.TMP

MD5 b21c23e4b737d21dc9e8f7bf8ddbc62f
SHA1 73d53604fa7d81a11ebca2f710ce4d4bc56bdcd6
SHA256 c97d4c59fc41a1ca71895775630c3e817c8387e1ca7bf972d13ce588257e45f7
SHA512 c0587da727b46f95196af75cd43f518d96dcf7ac4f8eda6e8bac705eab5a9c8b77b4defb8f0c48df09414af5bc50b6ae99096f0c3d285351e1aabfa89ded4e99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3bb2818b3771edef75c27a06df5f4672
SHA1 1f84ca08cf701f9477c37f376866d3720e23be67
SHA256 dccc627847fddfd39bcbf27554d4b690695f6d8dea522838f6c37a42d87a2851
SHA512 10cb635ad3ffc0e438e4a85e90c70477c1aa45d9102e936cb009aa80f22e7d1116aa4ee821e18364219ee3acf995e95bf958a482194e7cc6e0cfae66d8ef2577

C:\Users\Admin\Downloads\_Getintopc.com_Uninstall_Tool_3.7.1.5699.rar

MD5 637aede4c480d7e2e50a0d2bc0d9b209
SHA1 d7c1283ce12a28faa51dadf3034d0a855003b84c
SHA256 ae2f9c0aceef880f643933ef392e25fa4cded852fb32af972ebfdb680a7cb691
SHA512 433a889e0934571c33b34da4efbb8a066a19d36253089bdf51e1e746e316971e20d95cd34c9e12dec62faf5654a941abc6bb4cb15e898f5123a5c85398d33410

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 5cbbcfd7a50b2f20922292b51e84d479
SHA1 f35218bf2ee69ae591c706807d6325db2b5c7a14
SHA256 bfb40644fe0f990ec93a5dd4dc4b21930cbba1e3ad88fdd214d457d2587fdf82
SHA512 4f16f5ad01a333cd6c5bb9a1cbcfb4b7ec3cf8d45986bc2990a9eeb73b103ef309bbbf2cdc2e704ac9c774591a864239009d8451a1c47ec8aa591e1ab241c996

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f1bfd4297593efd5d2e562f3d9f9861d
SHA1 73362a877cfb91cb6b70dbb4b1e12141f89189c5
SHA256 3f6ee077694b138fed99c6cd6a78ef7d2a2c00c48ed8b0990572d162d10aa323
SHA512 3fe30dc3966a0e4daf2d2c5e30673e6bafdf2e87a9fa88f63b800dc15bd0f45bb9963e535426664f810d70d7db2505e3ddb02d01c9b68f6c94b50fe8b28f82c1

C:\Users\Admin\AppData\Local\Temp\_iu14D2N.tmp

MD5 8290ca0c36b233f3440063a41fb4c869
SHA1 83f097d230e75393e20ee522e5f137159c745f66
SHA256 963a8f36d99348fd05214aa37ac81436ba9f40a2e306c4c7362abec7fdfbcdd5
SHA512 be79cc4fc5603738c222d64376bc212e9f6ccbce3e038fd23efd810f245259a452876b586ab220995c69b7facac861f11a363ed1f462f1f6ff3174bc241c576b

C:\Users\Admin\AppData\Local\Temp\is-7NE16.tmp\_isetup\_shfoldr.dll

MD5 92dc6ef532fbb4a5c3201469a5b5eb63
SHA1 3e89ff837147c16b4e41c30d6c796374e0b8e62c
SHA256 9884e9d1b4f8a873ccbd81f8ad0ae257776d2348d027d811a56475e028360d87
SHA512 9908e573921d5dbc3454a1c0a6c969ab8a81cc2e8b5385391d46b1a738fb06a76aa3282e0e58d0d2ffa6f27c85668cd5178e1500b8a39b1bbae04366ae6a86d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d6259c9b3b7cd70d4e3e3496b85e697b
SHA1 5484cfb6498136ccfaff51a8ea3c9616f16c3899
SHA256 f5a567445d76b5c4d61e1cd5e79d48fbe81cea3323b6e13ba68d75664ecb12ef
SHA512 2489bd894fcba8c2d4a550c4136ad98ffabe0cf2f16d06fc235bbab77c33bd9d369aba5ae2946b5777ef307e178d1a03e0da633ea1dcc5df2b20057b42410d6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0d883b5c41bb77a5b8c52fae62eae5b5
SHA1 92c3854fe340fa1a4acc972525b286b13f0ed848
SHA256 51fbc46f52fafa4d162619d88f48c86aa23d9ec47cbe4849a2cf3d438805bb0a
SHA512 2cbca1c872aad994622502784eb7ff274c03f6da2f3f44944bcd637f2728d0dd9ab71478c581e5e68e5c05a58c34e8714aa7888aa25723aaed23e43b9cc666e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000100

MD5 018136fd7fc3d4addb115f6bdd708077
SHA1 e6698906552abc94a7092b302d5bb70f34557157
SHA256 3434cd12f12cbe0209cd8c71c2bb67b668f0313d14f1ab81ce6b69bed1735058
SHA512 f8b99a922e82b1b85c61ef2ae19bafa6b4e898e1bd139d3d28744633be971ebf1117cca8a31c5bd173ee35535ef481adc107ebf626a5a293e66097715b79c54a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 cc3dac5204c1e35601ae5ec7edf1c313
SHA1 3fb46df5e1a7491b9ea7fd1291614013dd864b92
SHA256 7b14b1c8a46849767c545e0f56c879368dfe7f16cb947b0c51867808746df03c
SHA512 518dd3dfbd23b779a5187ed7f1497460b60d6b0371e2a1738aaf9385e084cd69e3407e90e1a35fe04819d339e51b89fd58f7f722927278f16cc62fd921300cf7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f405c37baa0cf530f6e55caf0ec2443d
SHA1 ba52a07ee002b6eb06cc8dc90d2f01b879c0d98b
SHA256 2c11896fedd514484a0a55fe817b47502c38d138d9b3392ace7b2ec05330ea07
SHA512 70f4a16c72a0cd55fc9156a07ae6445e960bfac791ec2619fd54930ef593500201db6cbf954f851e131323433b1a03a7f6acc84916dca9b89cff89b54ca2f5fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 51e003319539c945f429991db56b10ac
SHA1 465628ddd59e3d7242ec8d2fd4eb5fa6a8121c37
SHA256 f66d9648dd337a73bd43cd04c13059d92eba1360ad7ea74c60773f054716fd16
SHA512 2dfdb572c73f25268b726e6f4b48a53da5340e9ac34231976d4471b8eed1b0caa7d3e2ee5fee5637cee1ae95c578391ded7bb3d4b2a1a3e2cc4435a8265ee28a