Malware Analysis Report

2025-01-18 22:05

Sample ID 240502-12b63ahh24
Target https://google.com
Tags
adware discovery evasion persistence stealer trojan
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file https://google.com was found to be: Likely malicious.

Malicious Activity Summary

adware discovery evasion persistence stealer trojan

Modifies Installed Components in the registry

Downloads MZ/PE file

Sets file execution options in registry

Executes dropped EXE

Loads dropped DLL

Registers COM server for autorun

Installs/modifies Browser Helper Object

Checks whether UAC is enabled

Checks installed software on the system

Adds Run key to start application

Drops file in System32 directory

Checks system information in the registry

Suspicious use of NtCreateThreadExHideFromDebugger

Suspicious use of NtSetInformationThreadHideFromDebugger

Drops file in Windows directory

Drops file in Program Files directory

Enumerates physical storage devices

Modifies Internet Explorer settings

System policy modification

Suspicious use of FindShellTrayWindow

Suspicious use of WriteProcessMemory

Enumerates system info in registry

Checks processor information in registry

Suspicious use of SendNotifyMessage

Modifies data under HKEY_USERS

Modifies registry class

Suspicious use of UnmapMainImage

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of SetWindowsHookEx

NTFS ADS

Suspicious use of AdjustPrivilegeToken

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-02 22:08

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-02 22:08

Reported

2024-05-02 22:53

Platform

win11-20240426-en

Max time kernel

2699s

Max time network

2700s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://google.com

Signatures

Downloads MZ/PE file

Modifies Installed Components in the registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A

Sets file execution options in registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{7593CAE2-7A17-4BF9-B5E9-F906B03BA3B9}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\MicrosoftEdge_X64_124.0.2478.80.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{DB8BF81C-D24B-490F-B7BF-87D65A25F14B}\BGAUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\MicrosoftEdge_X64_124.0.2478.67.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Registers COM server for autorun

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\notification_click_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\PdfPreview\\PdfPreviewHandler.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO\\ie_to_edge_bho_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{BA4344C9-31F7-44C1-9802-7F90B352D5C5}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.185.29\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=BCB89D72F14C4BAD91C30C19B94FC4BF" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{DB8BF81C-D24B-490F-B7BF-87D65A25F14B}\BGAUpdate.exe N/A

Checks installed software on the system

discovery

Checks whether UAC is enabled

evasion trojan
Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A

Suspicious use of NtCreateThreadExHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\AnimationEditor\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\LayeredClothingEditor\AddMore_Big_50X50_Dark.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\MaterialGenerator\Materials\Pavement.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\ErrorPrompt\SecondaryButton.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\LuaChat\icons\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_zh-TW.dll C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\ffmpeg.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\avatar\meshes\rightarm.mesh C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\fonts\families\Ubuntu.json C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Settings\Radial\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VR\edgeBlur.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\LuaChat\graphic\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\msedge_elf.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\configs\DateTimeLocaleConfigs\zh-hant.json C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Health-BKG-Center.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Settings\Help\AButtonLightSmall.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VirtualCursor\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\vcruntime140.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Settings\MenuBarIcons\RecordTab.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VoiceChat\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\PlatformContent\pc\textures\water\normal_03.dds C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\LuaPackages\Packages\_Index\UIBlox\UIBlox\AppImageAtlas\img_set_1x_8.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\LuaApp\icons\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\az.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\fonts\SourceSansPro-Bold.ttf C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\AnimationEditor\addEvent_border.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Controls\DefaultController\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\InGameMenu\drop_shadow_favorite.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\LuaChat\9-slice\chat-bubble-self-tip.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\StudioSharedUI\close.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Controls\DesignSystem\ButtonStart.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\edge_feedback\camera_mf_trace.wprp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\Locales\ms.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\InspectMenu\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Settings\Slider\Right.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VoiceChat\Connecting.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ViewSelector\front_zh_cn.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-online-8x8.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\msedgeupdateres_gd.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{7593CAE2-7A17-4BF9-B5E9-F906B03BA3B9}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\msedge_wer.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Locales\bs.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\ms.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Locales\te.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\sounds\impact_water.mp3 C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VoiceChat\MicLight\Connecting.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_ga.dll C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\Locales\ca-Es-VALENCIA.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\DeveloperFramework\checkbox_unchecked_disabled_light.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Scroll\scroll-top.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\msedgeupdateres_lv.dll C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{7593CAE2-7A17-4BF9-B5E9-F906B03BA3B9}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\Locales\kk.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Controls\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Emotes\Small\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VoiceChat\New\Unmuted20.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\VisualElements\SmallLogoDev.png C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\identity_proxy\resources.pri C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\configs\DateTimeLocaleConfigs\ja-jp.json C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\SelfView\SelfView_icon_camera_enabled.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\Controls\DefaultController\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\VoiceChat\MicDark\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\Locales\eu.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\models\ViewSelector\ViewSelector.rbxm C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\GameSettings\ModeratedAsset.jpg C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\content\textures\ui\InGameMenu\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File created C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File created C:\Windows\AppCompat\Programs\Amcache.hve.tmp C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A

Enumerates physical storage devices

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Platform Specific Field 1 C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision C:\Windows\SysWOW64\wermgr.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\BIOS C:\Windows\SysWOW64\wermgr.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU C:\Windows\SysWOW64\wermgr.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\124.0.2478.67\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133591613349530346" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\ = "IAppVersion" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebSvc.1.0\CLSID\ = "{EA92A799-267E-4DF5-A6ED-6A7E0684BB8A}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\NumMethods\ = "12" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5F6A18BB-6231-424B-8242-19E5BB94F8ED} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{E3D94CEB-EC11-46BE-8872-7DDCE37FABFA} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{60355531-5BFD-45AB-942C-7912628752C7} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgeHTM\Application\ApplicationCompany = "Microsoft Corporation" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\NumMethods\ = "8" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\NumMethods\ = "41" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ = "IApp" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{9F3F5F5D-721A-4B19-9B5D-69F664C1A591}\VERSIONINDEPENDENTPROGID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{60355531-5BFD-45AB-942C-7912628752C7}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\ = "IJobObserver2" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\ProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebSvc.1.0\CLSID\ = "{EA92A799-267E-4DF5-A6ED-6A7E0684BB8A}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\ = "IAppCommandWeb" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ = "IGoogleUpdate3WebSecurity" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C9C2B807-7731-4F34-81B7-44FF7779522B}\TypeLib\Version = "1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4}\Elevation\IconReference = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\msedgeupdate.dll,-1004" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{8F09CD6C-5964-4573-82E3-EBFF7702865B}\ProgID\ = "MicrosoftEdgeUpdate.CoreClass.1" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C9C2B807-7731-4F34-81B7-44FF7779522B}\TypeLib\ = "{C9C2B807-7731-4F34-81B7-44FF7779522B}" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\VersionIndependentProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassSvc\CLSID\ = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\roblox\shell\open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\version-7d64f40489634ca5\\RobloxPlayerBeta.exe\" %1" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC}\NumMethods\ = "7" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{8F09CD6C-5964-4573-82E3-EBFF7702865B}\ = "Microsoft Edge Update Core Class" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine\CurVer\ = "MicrosoftEdgeUpdate.PolicyStatusMachine.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ = "IGoogleUpdate3Web" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\Implemented Categories\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ = "IProcessLauncher" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ProxyStubClsid32\ = "{BA4344C9-31F7-44C1-9802-7F90B352D5C5}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\MSEdgePDF\shell\open C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreMachineClass\CurVer\ = "MicrosoftEdgeUpdate.CoreMachineClass.1" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\MSEdgeHTM C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe N/A

Suspicious use of UnmapMainImage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2988 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 1876 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 2136 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4624 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4624 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2988 wrote to memory of 4284 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe N/A

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://google.com

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffc9270ab58,0x7ffc9270ab68,0x7ffc9270ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1600 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2088 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2144 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3008 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3016 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4236 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4424 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3304 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4684 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4800 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4812 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=2320 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=940 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1444 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3024 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1468 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=2032 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4348 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=4144 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5088 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5360 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5380 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4812 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5616 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5348 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5460 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6356 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MicrosoftEdgeWebview2Setup.exe /silent /install

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RTUxQzNGNEEtMjEyMS00QkY1LUE1QjctOTdGNTYxRThENjdCfSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins5QUE0MjEyNS01MzI1LTQ1OTctOUVGNC1ERkY1Rjc4NzNDMTh9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE0My41NyIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc4NDc3NzYwNDMiIGluc3RhbGxfdGltZV9tcz0iNTk5Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{E51C3F4A-2121-4BF5-A5B7-97F561E8D67B}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RTUxQzNGNEEtMjEyMS00QkY1LUE1QjctOTdGNTYxRThENjdCfSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins5NkY2Q0IwOC1EQzQyLTRBREYtQTAzNS02NzI1ODBDMkE3Qjl9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtyNDUydDErazJUZ3EvSFh6anZGTkJSaG9wQldSOXNialh4cWVVREg5dVgwPSZxdW90OyIvPjxhcHAgYXBwaWQ9Ins4QTY5RDM0NS1ENTY0LTQ2M2MtQUZGMS1BNjlEOUU1MzBGOTZ9IiB2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbmV4dHZlcnNpb249IjExMC4wLjU0ODEuMTA0IiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIj48ZXZlbnQgZXZlbnR0eXBlPSIzMSIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iNSIgc3lzdGVtX3VwdGltZV90aWNrcz0iNzg1MTk1NjM1MiIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=4996 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=4368 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffc9270ab58,0x7ffc9270ab68,0x7ffc9270ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6140 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=5980 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4480 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6448 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=5588 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5568 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=6164 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{7593CAE2-7A17-4BF9-B5E9-F906B03BA3B9}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{7593CAE2-7A17-4BF9-B5E9-F906B03BA3B9}\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe" /update /sessionid "{076DA373-DFCC-4275-A643-D16A447C60BB}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MDc2REEzNzMtREZDQy00Mjc1LUE2NDMtRDE2QTQ0N0M2MEJCfSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins3RTBGODk3Ni03RTkzLTREQjctQUY3QS03OTkzRTFENzM4Q0V9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtWUFFvUDFGK2ZxMTV3UnpoMWtQTDRQTXBXaDhPUk1CNWl6dnJPQy9jaGpRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTcxLjM5IiBuZXh0dmVyc2lvbj0iMS4zLjE4NS4yOSIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjAiPjx1cGRhdGVjaGVjay8-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEwOTE0MjcxNTI5IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEwOTE0MjkxNTc5IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMTM3MzYxNTg3IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMTQyNjAxNDIzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PHBpbmcgcj0iLTEiIHJkPSItMSIvPjwvYXBwPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI5MC4wLjgxOC42NiIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBsYXN0X2xhdW5jaF90aW1lPSIxMzM1ODYyMTA5MDkxMzk3ODAiPjx1cGRhdGVjaGVjay8-PHBpbmcgYWN0aXZlPSIxIiBhPSItMSIgcj0iLTEiIGFkPSItMSIgcmQ9Ii0xIi8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjkwLjAuODE4LjY2IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiI-PHVwZGF0ZWNoZWNrLz48cGluZyByPSItMSIgcmQ9Ii0xIiBwaW5nX2ZyZXNobmVzcz0ie0UzQTU1RTQ2LTJCQkYtNEU4NC1CM0E3LUZDMEQzMjEzRjkyM30iLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6380 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU8A4D.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{076DA373-DFCC-4275-A643-D16A447C60BB}"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=6580 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6796 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=6324 --field-trial-handle=1820,i,14345171231099304317,1880259628516175993,131072 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\MicrosoftEdge_X64_124.0.2478.80.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\MicrosoftEdge_X64_124.0.2478.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\MicrosoftEdge_X64_124.0.2478.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.118 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{9C16596A-107E-42B4-BEFC-28C1FCA3033C}\EDGEMITMP_25B1E.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.80 --initial-client-data=0x244,0x248,0x24c,0x220,0x250,0x7ff67ce588c0,0x7ff67ce588cc,0x7ff67ce588d8

C:\Windows\SysWOW64\wermgr.exe

"C:\Windows\system32\wermgr.exe" "-outproc" "0" "4628" "1300" "748" "1296" "0" "0" "0" "0" "0" "0" "0" "0"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.185.29\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE3MS4zOSIgbmV4dHZlcnNpb249IjEuMy4xODUuMjkiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTQ2ODgwNjUiPjxldmVudCBldmVudHR5cGU9IjMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjMiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEyOTQ5NjUxNTI4Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\RobloxPlayerBeta.exe" -app -isInstallerLaunch

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7Q0E4MDM3OTgtOTZGOS00NzIxLTlGODktN0M5NDRGMzFCQzFCfSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ibGltaXRlZCIgcmVxdWVzdGlkPSJ7QTMxNEQ5RjAtQzUzQS00NzRFLTlFODItMkU0RkRERUVGMDJBfSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4yMjAwMC40OTMiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RHhPYmpIR2ErblJhMmF0QzN3bytJRXBDNzgrWlllQVVia1hwREMyY2o3VT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIiIGxhbmc9ImVuIiBicmFuZD0iR0dMUyIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjYiIGluc3RhbGxkYXRldGltZT0iMTcxNDE0NjAzNyIgb29iZV9pbnN0YWxsX3RpbWU9IjEzMzU4NjQzOTA2MjQxNzYxNCI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjIxMTQwNjgiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE1OTUwMjY3MDI4Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{DB8BF81C-D24B-490F-B7BF-87D65A25F14B}\BGAUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{DB8BF81C-D24B-490F-B7BF-87D65A25F14B}\BGAUpdate.exe" --edgeupdate-client --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7Q0E4MDM3OTgtOTZGOS00NzIxLTlGODktN0M5NDRGMzFCQzFCfSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntDRjQzQjEzMC0zMDk4LTQzN0UtODlCMi01QUUzNzRCOEMyODl9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iNSIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTU5NjIyOTgwODEiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiLz48ZXZlbnQgZXZlbnR0eXBlPSIxIiBldmVudHJlc3VsdD0iMCIgZXJyb3Jjb2RlPSItMjE0NzAyMzgzOCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTYwMDEyNjMwODgiIHNvdXJjZV91cmxfaW5kZXg9IjAiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIGRvd25sb2FkZXI9ImRvIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy81ZjE5NTYxMi0zODRhLTQ4ZWEtODQwOC1iNGVkZTlkYzU2YmI_UDE9MTcxNTI5MzY3OCZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1uUzZ4UUU3TDltSzJTWHZuWEhGTWFnV205VjhScHE5Um41UU93SWdnY2s4eGJqYzQ3Q1dSRkpEU21MZmhXbEkydjlpbm9vcmVLYkk1amlUWnBQYUJNUSUzZCUzZCIgc2VydmVyX2lwX2hpbnQ9IiIgY2RuX2NpZD0iLTEiIGNkbl9jY2M9IiIgY2RuX21zZWRnZV9yZWY9IiIgY2RuX2F6dXJlX3JlZl9vcmlnaW5fc2hpZWxkPSIiIGNkbl9jYWNoZT0iIiBjZG5fcDNwPSIiIGRvd25sb2FkZWQ9IjAiIHRvdGFsPSIwIiBkb3dubG9hZF90aW1lX21zPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iNiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTYwMDczMDE3ODEiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiLz48ZXZlbnQgZXZlbnR0eXBlPSIyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNjAwODg2NDE0MCIgc291cmNlX3VybF9pbmRleD0iMCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9Ijc4MSIgZG93bmxvYWRfdGltZV9tcz0iMzkwNCIgZG93bmxvYWRlZD0iMTgwNDQ0NDgiIHRvdGFsPSIxODA0NDQ0OCIgcGFja2FnZV9jYWNoZV9yZXN1bHQ9IjAiIGluc3RhbGxfdGltZV9tcz0iMTU2Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\MicrosoftEdge_X64_124.0.2478.67.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\MicrosoftEdge_X64_124.0.2478.67.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x1ec,0x258,0x7ff6758588c0,0x7ff6758588cc,0x7ff6758588d8

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{26FB43A9-0FEA-4CE2-8E85-452883988D04}\EDGEMITMP_B3C43.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff6758588c0,0x7ff6758588cc,0x7ff6758588d8

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=124.0.6367.91 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\124.0.2478.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=124.0.2478.67 --initial-client-data=0x254,0x258,0x25c,0x230,0x260,0x7ff74a5c88c0,0x7ff74a5c88cc,0x7ff74a5c88d8

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k AppReadiness -p -s AppReadiness

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODUuMjkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NDcyRTM5QzYtNkIzQi00MEU0LUFDQjUtOTQzNUI2NjlEREM0fSIgdXNlcmlkPSJ7QjE1RjU1NzAtMkExMi00MDVDLTgwQTUtNTRFNzRCRkYzNzZGfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins0ODhDMDQ4OS1DNUEzLTQxNEQtQjAyMC1DNjAxNEVGRTM0RTh9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2MTk4NDA3MzkzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2MTk4NDA3MzkzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjMzMSIgcGluZ19mcmVzaG5lc3M9InsyMjExMUIzNC1EODFDLTRDQzEtQTlFNy00QUU4NUQ1ODYzMjF9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNC4wLjI0NzguODAiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBjb2hvcnQ9InJyZkAwLjQ4IiB1cGRhdGVfY291bnQ9IjEiPjx1cGRhdGVjaGVjay8-PHBpbmcgcmQ9IjYzMzEiIHBpbmdfZnJlc2huZXNzPSJ7N0NENzZBM0MtRjM2NC00MUJELUFEMTAtRkM1MkFCNDZCNzI1fSIvPjwvYXBwPjwvcmVxdWVzdD4

Network

Country Destination Domain Proto
US 8.8.8.8:53 google.com udp
GB 142.250.200.46:443 google.com tcp
GB 142.250.200.46:443 google.com tcp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 4.178.250.142.in-addr.arpa udp
GB 216.58.212.234:443 content-autofill.googleapis.com tcp
GB 216.58.201.110:443 apis.google.com udp
N/A 224.0.0.251:5353 udp
IE 209.85.203.84:443 accounts.google.com udp
GB 216.58.212.234:443 content-autofill.googleapis.com udp
GB 172.217.16.238:443 accounts.youtube.com tcp
GB 142.250.187.206:443 play.google.com tcp
GB 142.250.187.206:443 play.google.com udp
DE 128.116.123.4:443 roblox.com tcp
DE 128.116.123.4:443 roblox.com tcp
GB 128.116.119.4:443 locale.roblox.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 3.162.20.13:443 static.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
AT 13.32.110.30:443 js.rbxcdn.com tcp
GB 128.116.119.4:443 locale.roblox.com udp
US 172.64.154.86:443 roblox-api.arkoselabs.com tcp
GB 128.116.119.4:443 locale.roblox.com tcp
US 2.18.190.76:443 apis.rbxcdn.com tcp
US 172.64.154.86:443 roblox-api.arkoselabs.com udp
GB 13.224.81.14:443 css.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 3.162.20.128:443 images.rbxcdn.com tcp
GB 128.116.119.4:443 locale.roblox.com udp
US 8.8.8.8:53 76.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 128.20.162.3.in-addr.arpa udp
GB 216.58.212.234:443 content-autofill.googleapis.com udp
GB 128.116.119.3:443 ecsv2.roblox.com tcp
GB 128.116.119.3:443 ecsv2.roblox.com udp
GB 142.250.200.46:443 google.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com tcp
IE 209.85.203.84:443 accounts.google.com udp
IE 209.85.203.84:443 accounts.google.com tcp
IE 52.111.236.22:443 tcp
GB 128.116.119.4:443 thumbnails.roblox.com udp
GB 128.116.119.3:443 ecsv2.roblox.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
GB 142.250.200.46:443 google.com udp
IE 209.85.203.84:443 accounts.google.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
GB 128.116.119.3:443 ecsv2.roblox.com udp
GB 216.58.212.234:443 content-autofill.googleapis.com udp
GB 128.116.119.4:443 thumbnails.roblox.com udp
GB 128.116.119.4:443 thumbnails.roblox.com udp
GB 128.116.119.4:443 thumbnails.roblox.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
DE 2.19.126.159:443 tr.rbxcdn.com tcp
DE 2.19.126.159:443 tr.rbxcdn.com tcp
DE 2.19.126.159:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 lms.roblox.com udp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
GB 128.116.119.3:443 realtime-signalr.roblox.com tcp
GB 128.116.119.4:443 lms.roblox.com tcp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 friends.roblox.com udp
US 8.8.8.8:53 privatemessages.roblox.com udp
US 8.8.8.8:53 trades.roblox.com udp
US 8.8.8.8:53 chat.roblox.com udp
US 8.8.8.8:53 contacts.roblox.com udp
US 8.8.8.8:53 notifications.roblox.com udp
US 2.18.190.78:443 static.rbxcdn.com tcp
US 2.18.190.78:443 static.rbxcdn.com tcp
US 8.8.8.8:53 lax2-128-116-116-3.roblox.com udp
US 8.8.8.8:53 silver.roblox.com udp
US 8.8.8.8:53 lga2-128-116-32-3.roblox.com udp
US 8.8.8.8:53 sin4-128-116-50-3.roblox.com udp
US 8.8.8.8:53 c0ak.rbxcdn.com udp
US 8.8.8.8:53 nrt1-128-116-120-3.roblox.com udp
US 8.8.8.8:53 aws-ap-northeast-1a-lms.rbx.com udp
US 8.8.8.8:53 cdg1-128-116-122-3.roblox.com udp
US 8.8.8.8:53 aws-ap-northeast-1d-lms.rbx.com udp
US 8.8.8.8:53 bom1-128-116-104-4.roblox.com udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 128.116.32.3:443 lga2-128-116-32-3.roblox.com tcp
US 128.116.116.3:443 lax2-128-116-116-3.roblox.com tcp
JP 54.65.249.17:443 aws-ap-northeast-1a-lms.rbx.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
US 2.18.190.69:443 c0ak.rbxcdn.com tcp
GB 128.116.119.3:443 silver.roblox.com tcp
IN 128.116.104.4:443 bom1-128-116-104-4.roblox.com tcp
FR 128.116.122.3:443 cdg1-128-116-122-3.roblox.com tcp
JP 52.197.175.207:443 aws-ap-northeast-1d-lms.rbx.com tcp
US 128.116.116.3:443 lax2-128-116-116-3.roblox.com tcp
GB 128.116.119.3:443 silver.roblox.com tcp
US 128.116.32.3:443 lga2-128-116-32-3.roblox.com tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 2.18.190.69:443 c0ak.rbxcdn.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
JP 54.65.249.17:443 aws-ap-northeast-1a-lms.rbx.com tcp
FR 128.116.122.3:443 cdg1-128-116-122-3.roblox.com tcp
JP 52.197.175.207:443 aws-ap-northeast-1d-lms.rbx.com tcp
IN 128.116.104.4:443 bom1-128-116-104-4.roblox.com tcp
US 8.8.8.8:53 presence.roblox.com udp
US 8.8.8.8:53 78.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 3.122.116.128.in-addr.arpa udp
US 8.8.8.8:53 69.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 3.32.116.128.in-addr.arpa udp
US 8.8.8.8:53 17.249.65.54.in-addr.arpa udp
US 8.8.8.8:53 3.120.116.128.in-addr.arpa udp
US 8.8.8.8:53 207.175.197.52.in-addr.arpa udp
US 8.8.8.8:53 4.104.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.50.116.128.in-addr.arpa udp
US 8.8.8.8:53 cs.ns1p.net udp
DE 35.157.11.174:443 cs.ns1p.net tcp
US 8.8.8.8:53 s.ns1p.net udp
DE 52.58.118.4:443 s.ns1p.net tcp
US 8.8.8.8:53 waw1-128-116-124-3.roblox.com udp
PL 128.116.124.3:443 waw1-128-116-124-3.roblox.com tcp
US 8.8.8.8:53 3.116.116.128.in-addr.arpa udp
US 8.8.8.8:53 174.11.157.35.in-addr.arpa udp
US 8.8.8.8:53 4.118.58.52.in-addr.arpa udp
US 8.8.8.8:53 nrt2-128-116-120-3.roblox.com udp
JP 128.116.120.3:443 nrt2-128-116-120-3.roblox.com tcp
JP 128.116.120.3:443 nrt2-128-116-120-3.roblox.com tcp
US 128.116.32.3:443 lga2-128-116-32-3.roblox.com tcp
US 8.8.8.8:53 b.ns1p.net udp
GB 128.116.119.3:443 silver.roblox.com tcp
FR 128.116.122.3:443 cdg1-128-116-122-3.roblox.com tcp
JP 128.116.120.3:443 nrt2-128-116-120-3.roblox.com tcp
US 2.18.190.69:443 c0ak.rbxcdn.com tcp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 js.stripe.com udp
AT 18.66.27.24:443 js.stripe.com tcp
US 8.8.8.8:53 followings.roblox.com udp
US 8.8.8.8:53 voice.roblox.com udp
US 8.8.8.8:53 badges.roblox.com udp
US 8.8.8.8:53 aws-us-west-2a-lms.rbx.com udp
US 8.8.8.8:53 roblox-poc.global.ssl.fastly.net udp
US 8.8.8.8:53 aws-ap-northeast-1c-lms.rbx.com udp
US 8.8.8.8:53 mia4-128-116-45-3.roblox.com udp
US 8.8.8.8:53 fra4-128-116-44-3.roblox.com udp
US 8.8.8.8:53 aws-eu-central-1c-lms.rbx.com udp
US 8.8.8.8:53 syd1-128-116-51-3.roblox.com udp
US 8.8.8.8:53 ams2-128-116-21-3.roblox.com udp
US 128.116.45.3:443 mia4-128-116-45-3.roblox.com tcp
DE 18.158.172.208:443 aws-eu-central-1c-lms.rbx.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
DE 128.116.44.3:443 fra4-128-116-44-3.roblox.com tcp
NL 128.116.21.3:443 ams2-128-116-21-3.roblox.com tcp
US 52.26.51.94:443 aws-us-west-2a-lms.rbx.com tcp
US 151.101.1.194:443 roblox-poc.global.ssl.fastly.net tcp
JP 54.168.155.197:443 aws-ap-northeast-1c-lms.rbx.com tcp
US 52.26.51.94:443 aws-us-west-2a-lms.rbx.com tcp
JP 54.168.155.197:443 aws-ap-northeast-1c-lms.rbx.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
US 8.8.8.8:53 24.27.66.18.in-addr.arpa udp
US 8.8.8.8:53 3.21.116.128.in-addr.arpa udp
US 8.8.8.8:53 208.172.158.18.in-addr.arpa udp
US 8.8.8.8:53 3.44.116.128.in-addr.arpa udp
US 8.8.8.8:53 194.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 3.45.116.128.in-addr.arpa udp
US 8.8.8.8:53 m.stripe.network udp
US 8.8.8.8:53 94.51.26.52.in-addr.arpa udp
US 8.8.8.8:53 3.51.116.128.in-addr.arpa udp
US 8.8.8.8:53 197.155.168.54.in-addr.arpa udp
US 151.101.0.176:443 m.stripe.network tcp
US 8.8.8.8:53 m.stripe.com udp
US 44.235.71.62:443 m.stripe.com tcp
US 8.8.8.8:53 176.0.101.151.in-addr.arpa udp
US 8.8.8.8:53 62.71.235.44.in-addr.arpa udp
GB 128.116.119.3:443 silver.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
AT 13.32.110.129:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 129.110.32.13.in-addr.arpa udp
US 8.8.8.8:53 101.58.20.217.in-addr.arpa udp
NL 128.116.21.3:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
US 2.18.190.81:443 setup.rbxcdn.com tcp
N/A 127.0.0.1:51442 tcp
N/A 127.0.0.1:51446 tcp
N/A 127.0.0.1:51449 tcp
US 8.8.8.8:53 233.69.68.104.in-addr.arpa udp
US 2.18.190.81:443 setup.rbxcdn.com tcp
US 2.18.190.81:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 81.190.18.2.in-addr.arpa udp
GB 128.116.119.4:443 badges.roblox.com udp
IE 20.166.2.191:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 msedge.f.tlu.dl.delivery.mp.microsoft.com udp
US 199.232.210.172:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 79.190.18.2.in-addr.arpa udp
GB 184.28.176.83:443 tcp
GB 184.28.176.83:443 tcp
US 8.8.8.8:53 browser.pipe.aria.microsoft.com udp
US 52.168.117.174:443 browser.pipe.aria.microsoft.com tcp
US 8.8.8.8:53 174.117.168.52.in-addr.arpa udp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
US 13.107.3.254:443 s-ring.msedge.net tcp
US 152.199.19.161:443 fp-vs-nocache.azureedge.net tcp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 161.19.199.152.in-addr.arpa udp
US 128.116.101.4:443 roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com udp
US 172.64.154.86:443 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 tr.rbxcdn.com udp
DE 2.19.126.133:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 aws-us-west-1c-lms.rbx.com udp
US 8.8.8.8:53 aws-us-east-1c-lms.rbx.com udp
US 8.8.8.8:53 aws-us-east-1b-lms.rbx.com udp
US 8.8.8.8:53 sin2-128-116-97-3.roblox.com udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 c0.rbxcdn.com udp
US 8.8.8.8:53 c0cfly.rbxcdn.com udp
US 8.8.8.8:53 aws-ap-east-1a-lms.rbx.com udp
US 8.8.8.8:53 aws-us-east-2c-lms.rbx.com udp
DE 18.158.172.208:443 aws-eu-central-1c-lms.rbx.com tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
US 13.56.190.176:443 aws-us-west-1c-lms.rbx.com tcp
US 3.137.18.191:443 aws-us-east-2c-lms.rbx.com tcp
HK 16.162.94.120:443 aws-ap-east-1a-lms.rbx.com tcp
US 3.224.12.184:443 aws-us-east-1c-lms.rbx.com tcp
US 8.8.8.8:53 s.ns1p.net udp
US 13.56.190.176:443 aws-us-west-1c-lms.rbx.com tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
HK 16.162.94.120:443 aws-ap-east-1a-lms.rbx.com tcp
DE 52.58.118.4:443 s.ns1p.net tcp
GB 172.217.169.10:443 content-autofill.googleapis.com udp
FR 128.116.122.3:443 cdg1-128-116-122-3.roblox.com tcp
US 128.116.127.3:443 mia2-128-116-127-3.roblox.com tcp
US 8.8.8.8:53 176.190.56.13.in-addr.arpa udp
US 8.8.8.8:53 191.18.137.3.in-addr.arpa udp
US 8.8.8.8:53 10.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 3.97.116.128.in-addr.arpa udp
US 8.8.8.8:53 120.94.162.16.in-addr.arpa udp
US 2.18.190.80:443 c0.rbxcdn.com tcp
US 34.230.168.52:443 aws-us-east-1b-lms.rbx.com tcp
US 205.234.175.102:443 c0cfly.rbxcdn.com tcp
US 34.230.168.52:443 aws-us-east-1b-lms.rbx.com tcp
US 8.8.8.8:53 c0aws.rbxcdn.com udp
AT 13.32.110.117:443 c0aws.rbxcdn.com tcp
US 8.8.8.8:53 102.175.234.205.in-addr.arpa udp
US 8.8.8.8:53 80.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 52.168.230.34.in-addr.arpa udp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
NL 23.62.61.129:443 r.bing.com tcp
US 131.253.33.254:443 a-ring-fallback.msedge.net tcp
US 13.107.128.254:443 exo-ring.msedge.net tcp
US 152.199.19.161:443 fp-vp-nocache.azureedge.net tcp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
N/A 127.0.0.1:52840 tcp
N/A 127.0.0.1:52843 tcp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com udp
IE 20.166.2.191:443 msedge.api.cdp.microsoft.com tcp
GB 184.28.176.83:443 tcp
US 131.253.33.254:443 a-ring-fallback.msedge.net tcp
GB 184.28.176.83:443 tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
FR 152.199.21.118:443 static-ecst.licdn.com tcp
GB 87.248.204.0:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 254.4.107.13.in-addr.arpa udp
US 8.8.8.8:53 0.204.248.87.in-addr.arpa udp
NL 128.116.21.4:443 presence.roblox.com udp
NL 128.116.21.4:443 presence.roblox.com tcp
NL 128.116.21.3:443 realtime-signalr.roblox.com tcp
NL 128.116.21.3:443 realtime-signalr.roblox.com tcp
N/A 127.0.0.1:53276 tcp
NL 128.116.21.4:443 presence.roblox.com tcp
NL 128.116.21.4:443 presence.roblox.com udp
NL 128.116.21.4:443 presence.roblox.com udp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
GB 87.248.204.0:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
NL 128.116.21.4:443 presence.roblox.com udp
NL 128.116.21.4:443 presence.roblox.com udp
NL 128.116.21.4:443 presence.roblox.com tcp
NL 128.116.21.3:443 realtime-signalr.roblox.com tcp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com tcp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp

Files

\??\pipe\crashpad_2988_ECBTDCGDSRMOUMMZ

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5ffb34d2b815c9c6985d5f3a50292a11
SHA1 af5669f2b62a118a3128a41a70537d349a407b14
SHA256 e36d4fc1d95b391899b34a41690cddf186f31ec1ae740f4f63aee2748f4cc1cb
SHA512 0beb9d4953f1e8b557be0f1a7ace444ccf5d021d3b3a09a561eb48400d3c2f9792c67f4731c20a3b22d9c0a02c0edf220b2adc6a3148b917d0a6ad8185b08eb3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b5905945f61e7a886e03554d08f8dbbb
SHA1 f2952fbc5eaac08dc03750bcfb8ad000278dfe97
SHA256 b312ab945f64993630b9177bf08c1988a0629debe3e70bee8d92f7c8bb0abe59
SHA512 c4acbc3f96c95b2215e2edf88ff966cdd4512dc38eedae76fe9c1cc091bfc54104d61e9969375f52adfa57912db0f134547583a0fdc7ce1393abba7d784437d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4b29cd4be5a015f1963fe1aac7eef08b
SHA1 2d816fa7c3ff03e015a521420acf39a5965a863d
SHA256 8771a2b6f32fb037eecf602271bce58088a522645a9af394eccfe0bc8287c810
SHA512 a02a36aec58a9b1e3662bacdbd2960783d73e0c1fde2f1f7702d60336e635b5c171c7a35b202d6a3744be138a514530ed68ee816ca01a776832217417f5b81a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c94ba509d9556b2486c0ccfbbe80847d
SHA1 6c09fef31a9dee8bb895cf2d5f72e57df99c64dc
SHA256 8673f51013c9e7cd588492b867403cead4645c5175f02b01b9c71e3ec71102c9
SHA512 e3ec5a5dbc77512bd18c2756ae84ffad4fddf9722ed0f4007f3e2f2d15f9d00c29bbef57df77495c19eca13d640867b108e182aad23d0e108796d3ac39ad6a3b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 08d08ec9df9550270601539329f53b2c
SHA1 a37b9999cbb0d44c7ed30e5510603a33fb56a9bc
SHA256 4cd198aeddf64afded490954a79056481d46710dd0a8c83a0584158ceb51bebb
SHA512 fea2f1aa383fe53a5df61176b02a44e80c9a32520a926f18ca8ef1bfdfae9564d5d2c7293bf427dfeb11afada188bd28517ee927aea2022db15c3c5f8886c733

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ca77747941c3c06dc06bf8c0b6e2464d
SHA1 4e01d953c908ae1ffa26b31a18672dffe8a03e57
SHA256 fc9f773f28895f5867978292592f6e0057264e28f4fd798233ce9ee45d977ada
SHA512 b74b77c482836f459de0273965f60abfdeacbd1f78e8389a05bfb3f00589e7fab1a7e8f796d6f9dec9090641cd4995b3528e57944a983a5ecce5e11bbe2ebf0a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9c523d3381fa66e9aee498659830da71
SHA1 7c80cc3b83acc909585db3950a94435bdc682fb8
SHA256 3010e654fff045646827c6c43ba9f2620f2aaa91bdd8f5350d13d3998ffed32a
SHA512 cc14829a8aff81921046072b0dd6ec7043bbc0a0b9d36b0730ff3f173a4339b1ca06aafb30f6152db427b1db92ca651b75c132064a6f4750705a92b97330b767

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e826fb54828d645568da7fc29efde247
SHA1 74789029ed357bf81e774c1f9e45757ba9e9512d
SHA256 ad4d747dc81f7def6cfa9d5674a256cd02ac0cf6064ef131a6e7167afb338c4e
SHA512 9fac1620ea3db2e87a28b077d5b7e505eb266359110d2fdf57e00b82c603281a1e7657da86c2aa91ad9cd378b66a8b9b3976ba44e765013044f1b20128f9fceb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0cf4d2e02c3512cf838ef9fb56e45371
SHA1 21ff5804366c8da71a89e284ff8b018d605abc6e
SHA256 8b4175c4d8eb7061024e570065a48e9289d91668122710c938ecde8e28dbaa26
SHA512 e6733b9d7a467452bec4479318841282ad12bf0c837006b5cb46415e33d14200aa1df39235c477b0f75067ee09e2c99313edd5433ba90f9e416ca4eaa1758219

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fc300f5ecee8c1ea82c0dec8f7ca1022
SHA1 07a11c8f5602ea744d5bf7314e94c0e3e030e94f
SHA256 178eb14868287e694acbc554ff287562e473bf6a5df87bb5a726881963aadb82
SHA512 b152a4711ec610d1eb49a4b6360814d2a9c530e8a98771a7a6cc70484f8670cddcaf6f71238ee4856165242fb90b91aed88d748acbbe111de9e1caa5c3299c53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 675332872d10bda7172bc46cba087f64
SHA1 9466a1eab76f14afa4f7af4f5c05cef9d69d2bbb
SHA256 1f856f4118b57042e05d4eaf86e461e435bc4f61eb9122b18ba95346850fde77
SHA512 491489a3ad3d0c49c2e498320938678b7a511f262ad04cd9ec47484b1c38ae85440d0b7f50f8e317d3e82ed936709f32c727d8a4becf355bbada76c9a65c61e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 169c75a2458d3d32852ce0009eb76a0b
SHA1 05b3b9cb298db534a07cdf96ca67b97e936220de
SHA256 46a8505584b5417b3a6ae5cb07e9fb46d249c0248e3e59308594bd27f4b02142
SHA512 efd93f02599563ae4a3411147fbe7f4ad4dd748bcdeeff6ac61430a3e347f6a76a129dcd52aae338508d5eaec0dcd51747d13804c76e46963512da13394dfee0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4c3930c43f8e6815a0f8cec6050b9dbb
SHA1 a241f28e78a622421652183a905baa1410b1d054
SHA256 89bbc1b062a4e9ec15b5dea5fb9c8638a4a129eb3186d3405d8f6f4cd0cb9b05
SHA512 034af440edaa0773a8c1e3bfa3dc1b5745665e848c593fd2a69f5fa76736401703db40d9fd238774b32526861f2f1034997127a31a49c48fd2ddce5641084cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0e91383c19a21c9d9c997d4e64a81d1d
SHA1 2e121ca2377a7a5065462a7f0c3ab0a012511404
SHA256 db83bc1c641eac2397e66cd974d5132dc918b3b2585ccbe39dc1bde3354cd958
SHA512 f1398062bb2cbc4eec0faacbbdb20e17eef0ae8700e2f6e8efaf9d0f4d6afc6d8eeba7bf31051363ba586f5b8796ac25f7f789cab8aef28bf3529c8f9b6bba88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 20b3fab88441499cc9799dc048cb10f0
SHA1 b5249d8ccd01303f937bccc1d38f705a8919c19e
SHA256 4c4569d46e7e0c39af998cb3aadf7a0db687b8e6d6abf697d2aa4551fd24cb01
SHA512 210295d383c332ba36eff152a1f601b15f5004f123a1a8392beb22690651c2801280b4da5e0469d0b7a7f6f0dcbabd74698a71b7020a1d8399f6c9b97c82ce02

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 1f50ddb9930a16940c2e080c54baac4c
SHA1 527b1a83ecfff55d0150520e76b61c60cc24eccd
SHA256 f1f85ff4095fc4ee48e89860893655906b1129b761f6b0c79b46f37513e5fbe1
SHA512 9443cb33ae853e7be19517c44369d7f536b08cc5dbecedbb978ee336fdcd92135635250e6572c36a1f9ff22f275270b5233af77f828256af29669d3d6afaebc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 afc4c38fc5fc269507bb8d841e52d761
SHA1 c84564a83267f19fc3abf36197dfc4cf633e3357
SHA256 f4023164a7168c050bff41d770708ef4a0d9cf7303bfae0bbf59ae70d9b8db59
SHA512 955ab9fb37ac55c97ccbe2d003488407adf78b2ff129b105fe1247277167290e1999e0e4cd2a7c22007f82460ba79a5046e4c4378a85cba1e149316190a9baf9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 48e73c2edddaa3b9d2b4a388603e21af
SHA1 1d7fb6f08f7d54c44d80e7fc274241b0639cf9ba
SHA256 dad08b4d830431a1af5399d95dae46ba526090811ed9cc941e62a99ae31e2b6d
SHA512 ac5ccecfdc894afb68b758bd7771b0b8278bb424441871d20245faa68d24d2bacc59a0bd194c2c763189ddd89dc599e4ddaa1aa781a8370aeda387ac63a12d75

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe59a416.TMP

MD5 251ec156f5e77926c68e242e380431b5
SHA1 2a9d740456a6f209a2e118daae977d4e4a6cad5a
SHA256 15f0bd8033748269f638f1d77b6630bf2afbfcf8fcdda9bce8077ae2752b93ed
SHA512 03594e6af7de1e6301a5447c302648e25b28312b219727b18a083dc7882fc9410f7d54b248c0a63c67e1ad814e3e2020fa17bc26ba5dacab6c6bfb221098124f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 f871e84ae7be94868243e15db61a2dca
SHA1 1a6c2584e27ce31e567529d1a1366e4fe7dbe9fd
SHA256 cd8b35fb98834a908f1fd4d95c0762fdf3d09fe58e10f76ccbcffbbb57b6e20b
SHA512 1d02f05de4f5fd31074f360a47c2fe3615653c1ee24817658d6f5c34ad5544271cf03bf8ebbd8ccd875bc8d7f773fbbbfa83621a3abb9686ce0acef2fb1522a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a33ee4b4114e77abf27d2bf9ac0dd7af
SHA1 c491f841ad28a17f85d77f9ff8b380d940182417
SHA256 aa1f1e0e4ac0bef2b695dde9a0e874a4373e299783f63ad610ebfa3d4264fdc0
SHA512 31da8702e9344fa1eb447afd58a1842482db8978a48d6fda5ad300b494332ca6e5f964c567873936635644ab2b49dc2d89792de1885ea9bb39d9368557fdbb8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0dd020968eef6e5ecff49e66aaa4101a
SHA1 372c2afe968c91f7b8a0ba858b394204f19d7506
SHA256 cb6bb96e037be7740e41fd37297db61e2f8e4f106ca65a2f85b220af82a06567
SHA512 917bc07c8ded2344a90bc02529775544f2cf24808a350bc04ab8e7373506c481fbcf1bd9d000ceb1b8a803811552a7e0073d722d8d8119abf0d5f703d61ce6aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 32c4d28845d6a862734f866746ff85e8
SHA1 ed0d97901e09fbfbb0ea568fdc0b3fd2c41d748b
SHA256 63d2e191e8aa2026b6ba605dad837b4cc16e4869b619514cea9f44dbf732f82f
SHA512 1b7a2716cfff5e16bc878836cafb3c95eb55b3a80d57326a825b184e4b647371bdc5e0b614b6313ded6134f2290ca5f2f297fbbbf67660181ba265767cfa21ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 288739a455348cc3e9c6236af09d9016
SHA1 82fd6fa10d9208876bab8ac1182c019204c999b5
SHA256 4a2c7fab4148434c35e30150facd81d13a0827fae6772e1e35c1ed1da1da601b
SHA512 9ff34921ddebe83d8413aaa455a775b77395b0b7f48602c09199ff5124c9315fe2dcd6f734f6af9564e8fe93cd774c4c67493929bed1a7e2c492c9e6e4afa4a8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 835cf5db21d73d9248c7a91f09b193d8
SHA1 9722b8541571d9449c9e7df34719ca9620cfc7cc
SHA256 5ad3178379ba842bc81757fcdd7e026d6a8eb705bff58fff8719f5d5ea0231f1
SHA512 63e0384f6a80094d11644a3094626dc54fca3e8b790719a25d0f3dbbbc4228659874e6504354335ee200522929b02f1e62723b78980bc63b404ba988e382350a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 2c41cc276bf6aad14598e9e65958e4c1
SHA1 034dbd7ace418fde48d257fac147cceb3a9b4eac
SHA256 e941d7683c71b10e15edf071357a5694e515437b76772f3d2f7e8c5fd356027b
SHA512 19775d9d2a8bc985e79271956f1693deac1f07dcda018f3fe2bb076a541469949c31d501dd0f352ac530834f2925298e8e4051efb87fbf64dea2e694fc90f849

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5adf07.TMP

MD5 ffef6853fb70b74c3a34365db8d28aa7
SHA1 1b08513386947490e936bf74690fee8be7477476
SHA256 376da21b54d83255f328325f30261d85939af0bb8e668ef413841eb7ad064a0a
SHA512 ab6e2fe71668b4e85c1683ff28ab98886232bd51dbd4b19a3e0fc2509c430233c47587f1ea9d7d30889bb81c14f86b3ef3fa827b6cab25f40a90e87700a4e2d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 4368197566717dc2f92e978a5a89a7f3
SHA1 02611db1c8229d0e844c444ebf46d53195808a54
SHA256 c1cf20fccdbebdd3841d9a83af6dc0bdacbff5d2cf03087add127c355a17ae2c
SHA512 468a380fca715ac199b5e7053d9989beed9e37b6e78a17aaa13bd2291b41f1b92a1aec8ac7d82d957c6b5ab7073ba74313f43b2155e4dea2a3282ae184d5a2f5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 070663c16eeb63f315992ea07c581663
SHA1 d5f047bb1b1a442a09d78b4a12ebc4a2ef5207be
SHA256 56d139af6b6a9a2fcd08ed31678dbdaecb24c02bdbbe93856064f4a55f2c2ec9
SHA512 336f9d78a0d3ae0f02ee28f9ad2c7c6e5a5fc6560067c8563ed44d2c5ebb5860a5a3d2b6f36f097dc222e7a095f79110b19522ee0c46ede74f662a31383cb585

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 19153423824e58baf0a53f9dd2479d15
SHA1 ce12added23d730b08a0905f337fedf437946c69
SHA256 ba0ffb64b500594a163816fe321bee531f4a718b6bccc490b23cdca5198ebc58
SHA512 3e8883bc8253fbf6add5cfe15106b0d85d184852d80c9465eb5174fe20a1b13008abff5b7aa0cba9ce5a3313f511aa8fc96f2727ed317e5f2143b6fcdc498d2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010

MD5 903351785c6d1035f5981effb0986406
SHA1 321c14288fe3d79aa26693f46b4c5076e7bb3381
SHA256 45ec7eb947af3c2b6679920e7ddb8d94f5c65c212214c8c6a312a6e7f08c53ca
SHA512 556595babd363b7d6d0b2599ab5e2e3f50b6de0fa753a7733dd6f4f3de7e48c5caf12ecc12adaee651440d5afb3f9b817ef48ddb29281187663e525fbcbba451

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026

MD5 20980bab135f476d48a3f69148762f28
SHA1 75394cf4059ccf01a554278c554a5610dcb9b73e
SHA256 e4219e58333dbb133997b1fa9b51e906b464190beb8d206f0f39f1db909f95f4
SHA512 ab291427fb1da8b8e6b47018d18de6b9267bceec59fea507cae5c43203e4099530e3a17a12d6840a231f9f5b3539dcf5a480573d61ddea14450dd48ba4caaf6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 9c34ed7dca2d79bf3c4a041a949f9acc
SHA1 86f89b93adc55a4d89615ea285ee79280e6329ff
SHA256 d3818aaf90ee9344df4b14e2d4362036c27a085443f880e0d67d7675661081bc
SHA512 516b33cc77f72261bb2176d535c42ec2aa756b4fc0afa29d9e94268c18e2042e62fd3f83ec41be3da98a25c6aa7f1c37a10929bd8443077228a66dd647085601

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f7919800bb3aa4ecbbc9af7a346bddc3
SHA1 63b8d4c2c696a2f26efa9c258513fdf8716d72de
SHA256 2f41c4b30a3e345c82f031d938a2b327280a36921e944bda0ce360144c84b44c
SHA512 87fce939a05044bdeae6ab79694de7d2c40693d9009dc6103c8099db61b14bfe7a83991ecd8f0b2be74631b7e585b7832b1928d3f83f3c7cce6453a23c68ab62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5e32ec4ec7a53c664b65ab9c527fe4c1
SHA1 1ffdf9d7a3724c1070e55a2b78b10b4fd1dcf720
SHA256 d23c36a3a13d211bb4cc2f2235039e2333ddc29cd445dd1a8287b0e1a641d577
SHA512 3a0bf9da9e109c6a92ab10e9be12d4f53659588bb22f26d67d0e4d2a2853158a5e771e4b3cc411c3f2504095153dcc559753c490356f220d9537e1623f0f3210

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 61d8b7273f5665582794226e57a69a8d
SHA1 3988474f49e76ab67b9a127aba38e54d06fb2fed
SHA256 afe9e2b1a51f1ae562fbf5535fefd1657d27862f80ed5e6eb0d73069bc34fe72
SHA512 4451c57509102faae5e2eadebd15131a15baf05e64680a32adaa8a186c33a38b4f31025e689ab041850e63c60e826a76cd231d5235914ec34c89c2610cbc4a42

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 5e9d54ac37c6d97172b64115797b4868
SHA1 8e02df77f6ed35a95e5aedd52cf8c94b065d729f
SHA256 1a7ae075535569fbb63526962c4a5f81782fd2701a3bbe36c845cd10fe225255
SHA512 8b503a666c523000bec3ddc8b24d3c02232cc2195fc2496cceeb55bc99d318ee39094c04fcfe39eed0c8a598bbebc19201565d4acae75994c1316dcd476d7296

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 527a9855a71e6108833b9fcaf053170c
SHA1 e923503f4414c1636d8057e04179644f499f4ad4
SHA256 ff907e59eb8be8ae14e0be00671c02b6a6c3bb17bda6d92dacc2097e696ae4c0
SHA512 a876294d82ad3b21c55cdf0b4d65f3c1a6c5799ab009f3d46e9cd3235b019716acea6552b55b3e4ea5ef5f2c213adf32b2274e4f375d95c5c2e3814de832f043

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7e47ae904d3d72dd32c383f9a18384b1
SHA1 d8c888191cf953b4fb4d753e58adcd374053139c
SHA256 1861ca30008ad81da4874f24ac2c23606b7612b64ed59e937dab520b53b0bba3
SHA512 f005c283f99894a506dd3785d0b228a018a6210a98781ce9fb5be42eaec388cfc3095ea7bb0d1f5d72aedcd7b711f8009a5d36550c57047051d4a14dbe60a620

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000117

MD5 588ee33c26fe83cb97ca65e3c66b2e87
SHA1 842429b803132c3e7827af42fe4dc7a66e736b37
SHA256 bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760
SHA512 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8d5e81b3de80db866ec5a1349c07c4fd
SHA1 1e6b6949d585dbef417692f23722cb84ca6b1403
SHA256 2f7a63f02ae3272a2ad3ce9af45bd40018d042390a29d40edd8bec91c373e8e1
SHA512 f158ba53a3ae520423c1fc87a923e63f966dd23369f1ec0de5625bb28aff126e76b78db23f6ac329d3d08a856bb386ca239541fe30453ab2b00edcb6ab20b94d

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

MD5 a2f58a117c60b1622eede88d2163ef19
SHA1 91ed6cf5b0efb2c0bd3e06ab5775775ccd1bd631
SHA256 e74d896bc3469b5a28eb5a04ea364a9ab32737d573868fb08a327820ea624c04
SHA512 19964984f66876032ef15283c25e31737e1f56c27a3f9d7fe204dccdc0a45c64e3380a5924f4b82301e55a5371bd7c9c61776e8ae6cb15a0e0502d189384c14f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0190763c3898fd2377b4805889e64a5c
SHA1 5a9f932077fe440700cb5a9098e86fad4f84667b
SHA256 b106d19c0932b7b9b5ed6ac619d7541d346a338e7a35e1cc40f00ec528af0387
SHA512 ae84dcbd9f942183136da204f4f4a2532189d0e66797acf6d76ab93544166756ae88d6aa50ebc238919ec681795b88de493f042d231dc6dfcf9a53f35b5500fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5b5bac3cc95d06efd34275094e26bf86
SHA1 9d6c7025e5e8b68dcaa9768871534a54ec1d3cbc
SHA256 db90a16a3f14e93121cf516eef8317a4ec0c592f5725bf044db1bf4f5213bc77
SHA512 d7eb2e9fdc9c9344539c768cd3ce0ed0a6170b13729926bd53415a041adffca5f47d655b15de6c4c03273751c17c1e6a133f69a66f4beb2a753b97a5c777a778

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 9f992554d0709fbbf6ca92b8f4bb5246
SHA1 93aa98ec5e2f03eaad57c17609805ae333f81504
SHA256 a3a4e02eb80ff47956e8fe8f9fad2fda077c7405f0942f00d692598c0eccb595
SHA512 4dd11a67d903e83ee2bc8b8330bece56f070a023564e1daadc60b9decae0d053c73d4a013ec9552ab7bb4df9205202cd931f4b855d670ae938d4d463168d946b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a109fa96d73dfd814f67e310a6941425
SHA1 a5adb2b4cb7abebbfb078ed467234f1d45002722
SHA256 bc2b50857c6d32200a74f22b75ad7240fc02f1d700be5fb9199cd550dc6c460b
SHA512 33513ee21fd25620951190b179ee4f69958802b198d762354146fb732f7b0f5eab836243eb01498c93b1b6a3c96a311b148a1fa10658ccdfc42c875c8bdea3b0

C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe

MD5 e284a7bdf53b953d5514c6abe985ed60
SHA1 91655419b0e29b53bebbd102127056f396af6bb0
SHA256 de29073ba5d2f701473a80f14c9dc35b2a11194918b8f682357b09d57c2aeb2e
SHA512 2066d8dd92d2c64df6eae441fc25914a6214ff52ad264a38c156f59fd1587d6a7627f19a1b537fd82d95b7c66acaf73169b855df55fce0163bd3b05333377195

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 76b86c93af8d98502f98a12e359261bc
SHA1 4253d87a648874640afabf2213aba86ed9a7b83c
SHA256 e00e858fd780b1476e7b5e36133f6cabc11ae962fdfca7000aff518b8308338f
SHA512 ffed20f9fddbdd29b36ccdcf6279b8651bd57c651d50b008e9c35382b5ed9c4f916b1702297653e3690fe852b935f5e4431e20d1682094632d4109aa8536377f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 3592b0d30e55b549eff910a1baf7e43f
SHA1 c204f667dc851640a9f9a7ed748185ac3c2765ac
SHA256 4bd7ea28d927ca1e778af0efad411f4523ca2f72cc3d302544ac79de9a920c99
SHA512 151744e2741bb140129316dcca93b45c7b32e2344816ca9a1bdaacb498d67c0af843f3c6507086b2e9da68591d94893be5c16a4fdb0d4b9340c3d7a99cf2e5b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a1b445c5adb85c738ee224e6eeb6049
SHA1 bcf2186f4a04218d4436f16a3538f27a16c5e7f5
SHA256 8032a63cb8216a51bf3304ca19b66698d43093339d33711bf6ff9707d6b19af9
SHA512 8aa9b7592960cb229ba5331e5d1da625c7e08926e4f3a586c612ecdc9e45aadc90a9f2e309665c479fec6163603d9f577d173acc235d0ff619f469988e7d170b

C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\523f61d67bf4c528e001c52e84c35ef0

MD5 523f61d67bf4c528e001c52e84c35ef0
SHA1 f26774809dc1ea0bc7376606964ebcc06bfdc398
SHA256 834bd41f708d1393a528da769b015538b45b279b4af4969e1df54c0c426add3a
SHA512 d99d834d3632804160428367360f8a4c0ab6e1c9146ab12b07d6f44c30def1482809d5cac41ae84a64e5d8b99a4fcf2090c74e39b2692094168737501301b15f

C:\Program Files (x86)\Roblox\Versions\version-7d64f40489634ca5\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MD5 610b1b60dc8729bad759c92f82ee2804
SHA1 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552
SHA256 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08
SHA512 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdate.dll

MD5 965b3af7886e7bf6584488658c050ca2
SHA1 72daabdde7cd500c483d0eeecb1bd19708f8e4a5
SHA256 d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19
SHA512 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_en.dll

MD5 4a1e3cf488e998ef4d22ac25ccc520a5
SHA1 dc568a6e3c9465474ef0d761581c733b3371b1cd
SHA256 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011
SHA512 ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe

MD5 60dba9b06b56e58f5aea1a4149c743d2
SHA1 a7e456acf64dd99ca30259cf45b88cf2515a69b3
SHA256 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112
SHA512 e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeUpdateCore.exe

MD5 c044dcfa4d518df8fc9d4a161d49cece
SHA1 91bd4e933b22c010454fd6d3e3b042ab6e8b2149
SHA256 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2
SHA512 f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\NOTICE.TXT

MD5 6dd5bf0743f2366a0bdd37e302783bcd
SHA1 e5ff6e044c40c02b1fc78304804fe1f993fed2e6
SHA256 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5
SHA512 f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_ar.dll

MD5 570efe7aa117a1f98c7a682f8112cb6d
SHA1 536e7c49e24e9aa068a021a8f258e3e4e69fa64f
SHA256 e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01
SHA512 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_da.dll

MD5 d34380d302b16eab40d5b63cfb4ed0fe
SHA1 1d3047119e353a55dc215666f2b7b69f0ede775b
SHA256 fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f
SHA512 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_et.dll

MD5 b78cba3088ecdc571412955742ea560b
SHA1 bc04cf9014cec5b9f240235b5ff0f29dbdb22926
SHA256 f0a4cfd96c85f2d98a3c9ecfadd41c0c139fdb20470c8004f4c112dd3d69e085
SHA512 04c8ab8e62017df63e411a49fb6218c341672f348cb9950b1f0d2b2a48016036f395b4568da70989f038e8e28efea65ddd284dfd490e93b6731d9e3e0e0813cf

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_fil.dll

MD5 7c66526dc65de144f3444556c3dba7b8
SHA1 6721a1f45ac779e82eecc9a584bcf4bcee365940
SHA256 e622823096fc656f63d5a7bbdf3744745ef389c92ec1b804d3b874578e18c89d
SHA512 dbc803c593ae0b18fd989fdc5e9e6aee8f16b893ae8d17e9d88436e2cd8cae23d06e32e4c8a8bf67fc5311b6f2a184c4e6795fed6d15b3d766ef5affc8923e2f

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_fi.dll

MD5 d45f2d476ed78fa3e30f16e11c1c61ea
SHA1 8c8c5d5f77cd8764c4ca0c389daee89e658dfd5e
SHA256 acf42b90190110ccf30bcfb2626dd999a14e42a72a3983928cba98d44f0a72e2
SHA512 2a876e0313a03e75b837d43e9c5bb10fcec385fbb0638faa984ee4bb68b485b04d14c59cd4ed561aaa7f746975e459954e276e73fc3f5f4605ae7f333ce85f1b

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_fa.dll

MD5 cbe3454843ce2f36201460e316af1404
SHA1 0883394c28cb60be8276cb690496318fcabea424
SHA256 c66c4024847d353e9985eb9b2f060b2d84f12cc77fb6479df5ffc55dbda97e59
SHA512 f39e660f3bfab288871d3ec40135c16d31c6eb1a84136e065b54ff306f6f8016a788c713d4d8e46ad62e459f9073d2307a6ed650919b2dd00577bbfd04e5bd73

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_eu.dll

MD5 a7e1f4f482522a647311735699bec186
SHA1 3b4b4b6e6a5e0c1981c62b6b33a0ca78f82b7bbd
SHA256 e5615c838a71b533b26d308509954907bcc0eb4032cdbaa3db621eede5e6bfa4
SHA512 22131600bbac8d9c2dab358e244ec85315a1aaebfc0fb62aaa1493c418c8832c3a6fbf24a6f8cf4704fdc4bc10a66c88839a719116b4a3d85264b7ad93c54d57

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_es-419.dll

MD5 28fefc59008ef0325682a0611f8dba70
SHA1 f528803c731c11d8d92c5660cb4125c26bb75265
SHA256 55a69ce2d6fc4109d16172ba6d9edb59dbadbc8af6746cc71dc4045aa549022d
SHA512 2ec71244303beac7d5ce0905001fe5b0fb996ad1d1c35e63eecd4d9b87751f0633a281554b3f0aa02ee44b8ceaad85a671ef6c34589055797912324e48cc23ed

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_es.dll

MD5 9db7f66f9dc417ebba021bc45af5d34b
SHA1 6815318b05019f521d65f6046cf340ad88e40971
SHA256 e652159a75cbab76217ecbb4340020f277175838b316b32cf71e18d83da4a819
SHA512 943d8fc0d308c5ccd5ab068fc10e799b92465a22841ce700c636e7ae1c12995d99c0a93ab85c1ae27fefce869eabadbeafee0f2f5f010ad3b35fa4f748b54952

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_en-GB.dll

MD5 d749e093f263244d276b6ffcf4ef4b42
SHA1 69f024c769632cdbb019943552bac5281d4cbe05
SHA256 fd90699e7f29b6028a2e8e6f3ae82d26cdc6942bd39c4f07b221d87c5dbbfe1e
SHA512 48d51b006ce0cd903154fa03d17e76591db739c4bfb64243725d21d4aa17db57a852077be00b9a51815d09664d18f9e6ad61d9bc41b3d013ed24aaec8f477ad9

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_el.dll

MD5 ac275b6e825c3bd87d96b52eac36c0f6
SHA1 29e537d81f5d997285b62cd2efea088c3284d18f
SHA256 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0
SHA512 bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_de.dll

MD5 aab01f0d7bdc51b190f27ce58701c1da
SHA1 1a21aabab0875651efd974100a81cda52c462997
SHA256 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c
SHA512 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_cy.dll

MD5 34d991980016595b803d212dc356d765
SHA1 e3a35df6488c3463c2a7adf89029e1dd8308f816
SHA256 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e
SHA512 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_cs.dll

MD5 16c84ad1222284f40968a851f541d6bb
SHA1 bc26d50e15ccaed6a5fbe801943117269b3b8e6b
SHA256 e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b
SHA512 d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_ca-Es-VALENCIA.dll

MD5 2929e8d496d95739f207b9f59b13f925
SHA1 7c1c574194d9e31ca91e2a21a5c671e5e95c734c
SHA256 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df
SHA512 ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_ca.dll

MD5 39551d8d284c108a17dc5f74a7084bb5
SHA1 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884
SHA256 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07
SHA512 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_bs.dll

MD5 e338dccaa43962697db9f67e0265a3fc
SHA1 4c6c327efc12d21c4299df7b97bf2c45840e0d83
SHA256 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04
SHA512 e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_bn.dll

MD5 7dc58c4e27eaf84ae9984cff2cc16235
SHA1 3f53499ddc487658932a8c2bcf562ba32afd3bda
SHA256 e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98
SHA512 bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_bn-IN.dll

MD5 a94cf5e8b1708a43393263a33e739edd
SHA1 1068868bdc271a52aaae6f749028ed3170b09cce
SHA256 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c
SHA512 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_bg.dll

MD5 8375b1b756b2a74a12def575351e6bbd
SHA1 802ec096425dc1cab723d4cf2fd1a868315d3727
SHA256 a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105
SHA512 aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_az.dll

MD5 7937c407ebe21170daf0975779f1aa49
SHA1 4c2a40e76209abd2492dfaaf65ef24de72291346
SHA256 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9
SHA512 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_am.dll

MD5 f6c1324070b6c4e2a8f8921652bfbdfa
SHA1 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf
SHA256 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717
SHA512 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\EdgeUpdate.dat

MD5 369bbc37cff290adb8963dc5e518b9b8
SHA1 de0ef569f7ef55032e4b18d3a03542cc2bbac191
SHA256 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3
SHA512 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_as.dll

MD5 a8d3210e34bf6f63a35590245c16bc1b
SHA1 f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693
SHA256 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766
SHA512 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\MicrosoftEdgeComRegisterShellARM64.exe

MD5 7a160c6016922713345454265807f08d
SHA1 e36ee184edd449252eb2dfd3016d5b0d2edad3c6
SHA256 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9
SHA512 c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e

C:\Program Files (x86)\Microsoft\Temp\EU7ECC.tmp\msedgeupdateres_af.dll

MD5 567aec2d42d02675eb515bbd852be7db
SHA1 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37
SHA256 a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c
SHA512 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 11ceca9655d04ca3eef0bd290266c31b
SHA1 ffbb1e77161cf12e5d106950cfebcd070765566b
SHA256 6f3365edf2279dae737aeda9f8b0ab7da6c5a59b87e27c08819add469ccf86ed
SHA512 3c2d7bc56fbd029e1bb7e8a8b2907820181411577f268bbe46584a8fb505b311444c989d997924efc64e758eef4829cea2422153ab3675fe67b25f476b4f7ed5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9965340709b290a3ccc262afb04ec569
SHA1 682b5c27a2aa7e806954550383a0d8b2dd04b9b3
SHA256 280a17c4808bd8ac4fb76c275ffacc38d387e1bf88ed27ad8f4d804e3efb6562
SHA512 296cb70557bba39407b510fce0e4f46df8a8310b6598b2de1666c319c3cae09172607a1757ac534aa8698d634d74b836906489ecc64794dd401e0a06024a65f1

memory/4628-1856-0x00000000006D0000-0x0000000000705000-memory.dmp

memory/4628-1857-0x0000000073AC0000-0x0000000073CD0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 06b41e42dd576e9e6a4c4150c3c1f448
SHA1 75fda8a2dd2a78a7539a3c9ab55dd0cf996962d8
SHA256 149920379c285955230e701c19e3989cb49e40579f63f2f6d909b56b23adddae
SHA512 d6b1eb5e3021ae197082fcf81e3cde9e34eeb8f5e890103608dfc66b34a83e76b1cd3943fd4912a0ae7ecaedd61d8abe4c9ad90e11017c013bf4ed1856f87b1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 09598a757b4b472e1637763451643402
SHA1 706ede9522f0737641d8db175239422954c83c6d
SHA256 6b2845a18f8eafaab348edad37d99592454f288b7f98041b0ee41fcb67503dae
SHA512 384c231b1fd576a8f9cd011b35f81d4f9ec11350102bffc530d75fdad8d47535a4122e634b1ac5240c446786e002aa39e6b46ef848748031c39875c61b6ff9be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bcd61dc6c3a72bbf3894728965c047f8
SHA1 45a72627dc393f3af68932a233312bc1d4737282
SHA256 a6d22b89257a9c5cbb25031aa47fe94d84807c3287ed23c92283e34057f57c63
SHA512 9b1006350ddef390710a383d3fbbad1bacc750ad7ea997164826c35c20d81da76c200caa8c811c578fdbf5c363fe2e1365f595145197fdd5eed6bb67386c037f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d86e4627131b87df0b7b353ff16ad27b
SHA1 4f961fef407c3d2673c8c6dde7eafb12dc5fbb49
SHA256 3a0d5912a9b303c16e3c011df07054ee3f15688603d72c245e8aa39fb1075637
SHA512 a8650347d6b595255919e32a589a61afea956a33d04f7595017451569248a42700687de23932f9218fabdc5095d7c4f10b9ace2f99ec1c1a961b56e78de297ad

memory/4628-1904-0x0000000073AC0000-0x0000000073CD0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 402b8cec09d05777bc3e4f0b89fed56b
SHA1 24d9a4992cf05d8c853341080602a14ef592c198
SHA256 50cff1d8839c48d252357dca45e8122b721ba7049f81042e35ffd396463d0ce2
SHA512 1123509e5cd25e89da6fcc64071efb07c19b0b45a36c66bcfffcd58e707ed245b187f7d920f1738e74f5412d3d600d6816a5767b197207115958103712f8902d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e1c6335a08290923df4e88cfa5018047
SHA1 cdc7dc19b45ed1ab4a75cc3c2b9e6801ac93b257
SHA256 00232276da5376d4f67d6f4cdf6f24ecd97269661441ff3e6cce8581f316e162
SHA512 1a1b55ba410a6e06492d969aff5377d0b17fc524ce80167c5645899ee55d355dd758171d7e572b8c02e63fd19ab5b1319fc05996ed05f2567619a98a0ee453e4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a7f607b210385f19e4512060bca89540
SHA1 ffab88e9abffe3721fa97655b00dcf9c9c6a4849
SHA256 08fb6adc8bdbf9d7eb53410f6940f3f8b7ea6be60b33eadb1f7055e783e8e08d
SHA512 d865c907e69b8f1845c180ea6a46f85ed643222f4346d7df7fd06f0b0092bc9b3107789151e900f7617045d1cc37170d4458812348bc3f587ffd8b3c5d5f6445

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 53e8b87c6d5b22f4e35dbcf171fe10a0
SHA1 0e4b500b7b8b2097c8022fc2826d3bac645fc670
SHA256 8356b9d775b68cc30c437aec8ac4d04290029fad70193f4e1452e4567032ab01
SHA512 c4ba59bb524ff0156ee8fe7eab2b1fc87cda7fbbbf4f2944a3eaa165979725ba46d090bf5b89b25bef0e900541c99cd986dfd767a2e91245067915b845553590

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b61f2328dae061721c82bef05cc275db
SHA1 18f3b253cc9de9e353169ffd9f5868d4fbda85e3
SHA256 cae719c45d871849c4f927c8402ac6875f1455d2ee6eac54c13d638aa54fa3b6
SHA512 a8b68b853310a7fa83fdb05e7605702ec3ae70c73a95fdc2df26f392aedc4410b3944aaf83178ff40a7d1cd0e5d5e9085866e040dd9bbfb8395c00f0ca62a3bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 924416f52d2f0cebe7d6b595e7fca61f
SHA1 cd82abe34d6c6c8a548257de798786ca1955ac69
SHA256 6d885a2958f51f669de9568068d50585418fd3930c47beed383d345a298cde5e
SHA512 f4e67cc0cd528911fec9e62a3cb1204f402fb4237b3513438bf1378aff2e9ffe69899c159aac5aced6bbaf00fd2e6f0c4351bbd7ccbcb2262ac6e14a6a06edc4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 70aade3af79a0889237d88dfbc214845
SHA1 7c5db41a705e83138d320514eb96adb9b8894dac
SHA256 53277efde09528ff8a469c8bf731e92ea6bbd3504a7541be7771a87d5a1aae8d
SHA512 b0d89bd1ef75aa72471aba1e7c7170c739c0eb37e5f5c00d714610a4e17d40d3fc5e106d75ffac92407dcfb03c7ca7207e0e1a2ddf083e6e9c811b8d843c2afe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6df091a88708ac1f4b7d777fcd83e271
SHA1 84fd545fc60bb766fc3e8f449420eb670e2f977d
SHA256 0e7dee503d64d29387b804b7a2d0fa65f686ccb185c8e0030541d2eeb82cfdc1
SHA512 198f058fbadaca8776039dac0a9235547b20bf6adc15e96b8baf0f68b6ec8d461e8d8655ae23293b159309311aae0df655dd4a9dc540daa54a8f9f2ed2f7d205

memory/4628-2016-0x0000000073AC0000-0x0000000073CD0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 57d5175a4435d40d3e2b042c6e165bd2
SHA1 4be0b5d70542af9aecd58b9ee6b384e180a57c0c
SHA256 0e07172d8c1a3e4c2d3a0c6b61ffa7bdf0a6baf73260d617835314179c1c4ff7
SHA512 5eb114898efccc8e5a3910b2f9b7e871295bf44cbcf71d96980cda194304c8f569171bda296bc6e670093b2a7d6927d16cec1b4cbe12c4d530d36aedb80caf58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cf3f5010fedbfbb0111f8e73120c49a3
SHA1 5eb255b19aec9587e6f6f37e84cfd8326a97089f
SHA256 95742664e04ab9256fd63e367d1c92fe92dc03028c1ce47c2dfd7a41aa47e80f
SHA512 5b3321ae2fb57c466f4bf5f4db39170e712086b413dde093612e7ec2c3f1cc06a5e88c7fdae9ba1410c34e8faf35dcf4d066d69d7ab4ed858c41f4835a219978

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b3747e43cc8bf9eb0004d935ea5fe0e2
SHA1 7fe2338c6c1924937b2d91f961db5a0a79c85717
SHA256 c55583ca828aa6bed519ce6bbf60f783d44193581f494e54c316546cb226716a
SHA512 0422e85660ab077015662607d0819b5a36855f9857480b7aea937af4ad864f894697dac038c324758b6dc98098d384d047288535a2d8e5051e2d3351476a8f78

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d5472cc6a8ec0c467d230643540f90aa
SHA1 b5a80628acd607d85c80afde4a5177e6c650a0ed
SHA256 f9c978f6a1e723bf99ff9e555c120abfdc72007e7ba314aeeec698493bbda29b
SHA512 a8754b71fb1995a49fcb3bf4c5fd8bd90e8752d858b22483e4c158fd6f67041e1dd110d240a98be092166ce160dfc84276804374e6cd543281182100ca3285f4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 38e2c485429e17ab5810ce7f7f0340cc
SHA1 83f2c42070061bdcc90425148844ce1ada3b1779
SHA256 af595556da79ff08773c59550c3bf6e25f976599689ef4bd09248173991bdf80
SHA512 99cde171bacaca30e244d70aadcd4ecfc85d8dfb2a8f063628fd581d34dc92154eea6fa4d3627b5566d349541e179a165220c289ca8446f7c3e8cfa5ac13fd97

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

MD5 20568237f1ef73b6127f6b9c812981e3
SHA1 165a9c0e3628cf1200f3e4fc19eedde21b85edd4
SHA256 d3a39fdf051ced4497da28f2c5b14608d1843ec42380a00623cb8ce3edebf5dd
SHA512 cc045cbf82d6242cb93aed70bfa372083d562cd3bbf80a02c8f1bdf9668f34b56a82b3c8c1c81c68281441cbd3d9be1b4f143e86eab3174dbb3b3d7cfa91addf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8c239bf0335426ca1369caafa0c2ed02
SHA1 5b4636cdc95bcbd2725d576fbdb142bae0b076db
SHA256 5e8120bdf75531de13d37f6215fad48db8730e2f10e334023465ee60b60f5668
SHA512 b61616d34aa40a3e358bb512c1a1205cac9fe45ac09f58afda2fae3ada944a9c8fb8f768684853d01b36c2b281b0e18b9b5f26bce33dff8883c448cea0707a3a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9428cb3dae1782bcd266108c1cb50c7e
SHA1 82a8067a920517eb0763468d817dc6df37eb90eb
SHA256 fbda31b14d34f536d019b6d37c0cb4707217114967140059e30cbba31b4afe74
SHA512 b69f1b293de4ef0813a5bb1d0ac111a1e07bd344a5f58c276b1e35b65c836f62e79a3b2f802ac27009d401b6c704c435c8b6c3bb589458cb6ec95117fa696bd0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1ed9e993c4a37e65b3cccbcc29bea49b
SHA1 68202de5a20becb97ef3fe7312701e0f7b0f1684
SHA256 96a4685a4d67d882939ed6a2e3cb7b6f30e6a0e032384178069fe4d6113055e2
SHA512 7858688fe047245ca683f8e116c72f63917611588111e837034f53bf22d7d644c1414a8fb8a608419d0252fea17e34cad890e9b152a0ae847ed5bdfe69b34f0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 52c4377d4eb6fb1aeeecd52d2d265568
SHA1 2613313111a37f17c078df0fcdfa03db3223f52f
SHA256 48b74550ab9e6bd4625807d3d1ea7201e07472d5662c567ccaad7a163826393f
SHA512 25cc30906cb0da1f877d6c58ef5ed0e23345dae5a2373448759b3e02245ccfa42c85cd78e15830fd68e3e4ee6f36da4f303d7065e47b5a656de59c08f797da07

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000044

MD5 de0786ef131f615672869035355992e6
SHA1 9d1318cf41287b11354440b2bed5f5c0dfb50b43
SHA256 91677e50729665c94fd6e2029e7092c557d8a07cb2a79d7edd9dbda987692387
SHA512 ed7867efc4c6e3a5472a2ee308090b1d5c90a2ea6f632ddbedccc3f046d7daefdce676b324b3999909c5f9eb82ebcfb8008662d771bcc4b34ae4747fbafe4c91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

MD5 c2b7f59e7eef56285bd18e5d0763b4de
SHA1 778b18fb34679d01f3056e89021a3f4623f75373
SHA256 aa2baa93d8fe182766f8a1d13c1d517f20c8f80e9a3a126fd259e9d43e64131f
SHA512 b16fd4f98c5c130ba9140c4a3652e285d5a4bfa8d5c6f0fefbc1e97fdd1bd8edfce6336942324216177ad018dfbebe6717b46a4ee2742e3da9ca69b81e3b3b67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000042

MD5 27134070249eb78e61922e089cb41464
SHA1 4af2ceb19603088d207eaf0da5a2b281b1cb93a4
SHA256 42d3fb202ad75b27bc4eba2cb283c38132034448144dd4c0d76601b7063fe458
SHA512 a4d3a10ae1d6c92c15e134aad39e2fbd9e47ce9a7d5f5a1c7c247bfb1020dda591fa23a56f8e5809726875d1fa9649451e816729017d35dcf8dbecdb3ae132ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043

MD5 e1028f45b3a1f13c8256c60e5d0072b0
SHA1 c4d880803128e7b939c71e9c1a12b3d1f2d6ec13
SHA256 af4c9e4d7fc7eb18a91b3d31cfac4011d5bd60a51c8fea151cc03e6f7cc02e3e
SHA512 81bda8f2b8eef7026c6ccb747f8253eb7759cf66838eb72afb095f1c26453a3465282f4168117374713b2f29ff541466e7bb4100d087d87c329010f7c213f088

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 40a835e31591265832ff1abbc580640e
SHA1 059c455f86ab2db66bd88d210e86b6e1cd67c8e9
SHA256 00afd5bac687cdd4d92630a8011f241298a4200f869a88f7d6e4415a2841788e
SHA512 280a28c59db8016f84a975728514ce36916f41b14fea87aa08e40a7afbf3c8cee3fb0c916f6fc2545cadd9daed62f18c7be061312f8b54b79f5fa9da855214d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b69795f92137f34f58f96ea934055d24
SHA1 eec20506fe3c2c5fe1acec232c9b48d4b70bb095
SHA256 aa352f59e4bb58c3db04086f7207c95d33d1f3af00be9ba230693c283d488cb5
SHA512 e9cafb235fc68a355ee34f6fa66b1f696ffd208f90e0d9a38fed98e8c400a0e360d95112ae00482432a53651f7b322b8bb9441933841e3bef87c2ddccbde05c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 508f557aa73b6144ea3d8430a6863b30
SHA1 128c4c5e9b47cc470f9c9850f40ef0d8c94c318d
SHA256 a85768e2023567064729f6f04dda11b893327ba03c73d6da37724e68d312c2d4
SHA512 0a529a63eb1201a3e2203cef908356bea114a42a5636aeeb7687c6fdb75bf3db7f1706fec9792e43d376652d4374c6038ec9b23f67581f3d19ecdc06ba524442

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d55392e7f571f2eea929eed581c5d3d5
SHA1 9e85ad7554ebb1f8d55b8782cf536f1cf61e84e4
SHA256 e49fa5a5dc5b611705d5d776d1a7335e90fe9d1507ce42f3508e6d6c1a6822aa
SHA512 3e257dff56c190e75f0a77172ba9fd342bc854470e06768b4c449820461c785854772b6028e2ab8004e652c51c2e80792e2fcb32d86ca3240d8c6f48d5939333

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a90196de7a852422448ec0f0b21e5c29
SHA1 4ef55b4e93ffcf1f67c4bf5776666a14eb1e6f17
SHA256 e4a0986290b711a781ffe349c488d0a4b61fa5646cf8c309ebc4a01f2a12d0ab
SHA512 891efd818a17c22a4237a899927647750901fee0730334bb58147d9e4c14e97ae641ae6c8e7129f7fe921385ecff505551681057aaf10d50fccfcd2a8866fed0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 f5f335b39d696ee354fea6bc9432bf4e
SHA1 effea783a21767d2bd77264b861d5cda47aa64df
SHA256 967d741cbe163218320492e23537995acb435614ef4d43a534f943da22e00d7c
SHA512 544b16b8681f12cce86fc44293e65e33d8a58816453bde296c39381f16f21caf334fa10009a7b1f3b78593c041a60c34fbfaa34da4633c59a255ebcd8f3ec3c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 36fbaeef0a3a930d45558badbf15e3e0
SHA1 d8e8b965b5aadbc777ee66de38e2e1473098f406
SHA256 c310fb8951b9555f29e8aa800bc2854413425b6471b8b62bbadb0d25c4491812
SHA512 fe972c4ac119d4dcd6e9e06b88627490bb1fdf5e7319239c3de8ebba6e55d5f567201ec05ac4c64180a3d4b69e22b250693679ce59804df5a55d4eb914004e2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8e6dc92d7ba100ffed1da5c11721dced
SHA1 ca09a6d1f0ac1f8bdbd22c86bfd14bd69e827379
SHA256 8d9effd0c38aef0c6aad6f43556fd8d1ce77fa8850cd7478a8b23eb2384f14be
SHA512 905de548f9fde468f022b6ef5b056a48995e5ccf12e0a7af9529a51c09b7c77101b1f8c55739b61dbc8993363febdffa8e8ea5a65ff770823b2363c1aaa14e73

memory/4628-2893-0x0000000073AC0000-0x0000000073CD0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\ce310620-f7bd-454e-83a8-692a20feed57.tmp

MD5 ac9b37decf44af289816173a6295db92
SHA1 afe28f6bb14c7a9ac249a78efb0271b2efb68002
SHA256 e268d3f4a82ed6b8b3edf53e01c60013965ca87500022a78ab429ccb1cffc4d4
SHA512 9d32dc5ce8fab9cc346a53857e3deb35c59fc4d01e9ed8faff06b6f74508b84f9f9d6b2382abc9fbce28cc5a3bfca1190ae7f2203d65d8d0d0cc2237a864f930

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c67aa682a8f14f4e70c96ce8d0738486
SHA1 181d8b436dae1022ad9ee1ba2ff5716cd20d1acc
SHA256 986dbe33a8aa1d53d94c83d712ae53db91a9824c762ab73721b09b05a4100106
SHA512 3772f736014f7cabc6c84b4ef445dd0949d0b1cb85dc73f7e4b6fe1768ac554ff619b54ac8e3cd76cc96419a946ac8145bd3ae184cd83aa6309eba4193db0c2d

memory/4628-2915-0x0000000073AC0000-0x0000000073CD0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7f0a4eb582ca87ed1c96b2b96bea1960
SHA1 0f1481bbdc7181fe1ae04487326060daf3c4a9d1
SHA256 ba405fff17d2904d6b33b632ffa6cd4300f8e7d686c5160370d511315cbdf0b6
SHA512 3654c48f645129b0b177bd4b4d4efc910c2a1c0c4a6eed169d2f16ffa87d3e4ebc8bda0295a09d569aebc7933d27396bfa7798b5939493a0a3cfe0a076b1b7fb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d693d285eed6a7dfacc2db92539022f1
SHA1 6b398ecf04cf6eb897bd0b20d7bfd354a6894dd4
SHA256 260e1dc54a51686b934285762081dcd866df56abb43b4f611c2ed450b729c550
SHA512 255fb19e9b5541fb03655aca9b91d3dcdb5b06174ea58e69391da75613d7b43d62193d08ee4b8e8cefb8026653ba074c35dff64bbff3d35538a9deeda8a4664f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 2f888e0093e0ece9f984b43d9290f651
SHA1 221eb8f632baa35d0e062e99c5a29e8b5dc202ff
SHA256 9433abfebeb257ac5ec3631f3d4c5bfd0b2d6beda816b6605fa1986439c4dc5c
SHA512 cc647f61b048f46ceeb88ab8661b2a3bb2453b7439f35ff273b4c061d1490a544b52723062efdf5b467dc862ef64767fee90cb759f7537f11bdb3fa90346c36a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d2b9a7c8ddd3593ffb3b5b1a63de7eae
SHA1 ca7889b599b2f8810f5895a647e6f179e39f30fc
SHA256 423012fe618f25100f51eef424d802034ca8121d349cac4bb3047849679c4f4e
SHA512 dec218eb0420294c7611a31eb46c6154d6da5779f4464f7b04ac33ab7179cf4ba5a74f2ae02f13bbb1900f306a4d59479c84fc90ab5b562bb8861a8b9c450d4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ce2e7d299641456cbc8f3baccde0cb42
SHA1 224b3df2eb5038dc8a130c7506eec5b85d610268
SHA256 97070b1b54fdafaf568a8a2b14dc19142e3b2301119e8be4f0ce63daabb4b2a3
SHA512 9a2978bcba90109172c2cf874e5d26b291d95fc59e52e60e40a7a38cf9164e964f67d818471e9957f609f34a4af7032d7464d0db4088795c7be5151a887eb066

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 37a7f2dda52717a125a6548d4270d04a
SHA1 c4255a88425f51de5bd857ab55e062ca8d9237ba
SHA256 13a7ab7c16e88acf613b86f71a942e8cb7da85a84fcd6820310667f8fe8f4b2b
SHA512 cb123a42dedaa67359f16416c87af1967cf502be8eae26ae440dc9278d6165c811dc4b4432d2eeca4250b277b235cd73ad967dd4fe729b7bf42a72aa36f2f45d

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.185.29\MicrosoftEdgeUpdateSetup_X86_1.3.185.29.exe

MD5 b18c705b3c68cc49d9bf3649abc75c24
SHA1 6dc8963dea0f3185368790dee2a346301b4fa24c
SHA256 c2ca3135f3cafd79bf90d4cb3118943ca17f40e0d651d1fc32b1b3d22d1412aa
SHA512 7ac302c1e85c652bd897ce1af812950cd23a53c041af82fdcecb2314bbd1667bf2fc672dea40c21858e64befc9bf60190a4428f0b41c30317bb0e5ec7c00f71b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 79c38ab73cf210cd9079963e36438786
SHA1 9b6af6d88ca6b32b4efc12d3a25a9274cb249609
SHA256 6e861b8f88f1609e6c1d61dfdf00724032a480ba633904f7d4b4d2633b448315
SHA512 acdfefecc5375a59340603ea2278b4a2a35d1f43971027ca55651b2e1246885e5c6ebcd86835aabec68abac20a505fae4984d56c9506567d5126a8b8ce46703f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 013d9c3396107bcd400e20a7d02486ac
SHA1 afb5da858a74bb5e53da6ae83f956953b1ccf612
SHA256 04a94e639307773521b170ed5bbd1f62d263cf254655284ce17f457399982dbf
SHA512 e398e5b4f4aa76d93e4ad129294659e29f4fe96965bf84130cf8ccc782535427146496e829112d06a18d68b1fcfdc7ece3408847453b47ad7212b573f5326555

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 94f2af2ab03d1333303d8f0919e7f51d
SHA1 7cb4cd48b8e9e5248a628d43619f9700679abd1a
SHA256 910a831201b0a906f25a1eb3ff890f5406aa0cf4e6023336839281f5287033a2
SHA512 103e0ad32edb17acf9d5f075873fb2d10ec315838c57efb9a014215c67b99094531b5a034275638d48c05bd94c011e84d0ddb30e382980ae976219a0c8d740a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9e7ec6c94fcb58f8945770d66dfb4c42
SHA1 ce76676cc01ff8f47f2cbd17e3b97b4876acd0d2
SHA256 1f30aac01847eb818c0992693a45f119c69aa1f004b2b9a3f55cdf157840be06
SHA512 1f539f83259e2a09a30ec7e9131b054b8cb5ed0bfe287e922c16fe7e3296fd346ab7c22cfda94b0bb7e10ff7ff3e30d9158800cb794ab9a3abfc9ebcaf1babc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 be38b8b4cc5716c67ea7139433c38183
SHA1 0256551b34d9e1e666c7855df45dec3f8429690f
SHA256 c5e57a03cfd28ae147491a9ddf0213672b06f52c7aba8c83521257cd1bcbc7e4
SHA512 5513f8ef9cbb169a601cfed8787f3334a7303f33427d49a27b7b283f92b3d45a68b94d2ee01230fd1f2394f8a6dc1804a8f400c3e744f97673576b03dd83ad0a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 536164e82ee81060947c8da09eda84ff
SHA1 fe6a43579a2ef53f29c7dcb545c4a0383399e8f9
SHA256 e8fd1690f46de5b7415adafe664bc344e1fdbb51fed6e9cd2d2feaefa3b3c721
SHA512 cde9d0a51534a6f7e69809c0b9142e652e699663a01ab0a8948849f324d4bcb8cbd557ea0ecbfbfc468f39581d8d5eda0a34a9d16f3d156575eb4d9db2ed946f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 831c6e603503dd4cbcfef0ce0a4bfaba
SHA1 f50228c767321beaf660cdbc08d7d7e4fe46d27d
SHA256 2331b7124eb3fdd6855784f4923aaa6de0b21b5a10e0b28111916c222d02c2f8
SHA512 059e682e864f0e5b55488c87805ac5d38551d6e06583631d1a3db743316db6209579e30c2df41925f1cb0d07c81391dae7c5b988d1f3c313f031c20af9319358

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8d61c78c7065079e2e447668ac566a98
SHA1 45c0f01808d53a248268629749d02302a8e1129c
SHA256 771a888a5ae3e0d80c9bd597e742bc41900a612d6baabbff4585528269e2b110
SHA512 23f60a51a8d2b5152ff30d388eaf7bf53f220dbd787832bb95eae78a536ebd4ada86b2f9c5a3edd2cf309c2bcb82d3f014c2bf48d441d520bc3b3de9440ffe8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7ab754047f624040f91f4d6c2df9a4e5
SHA1 7800b000c36341beaa3bca9c858014a310f367df
SHA256 cbe3e78bd6448826147c8c09729efa684e3bb5e5db9bd01b96d256eda44cef6b
SHA512 ad0a2cb5879eba76faa26963ae3bb159be72e3ae479e5761e63502786d16bdd2d4902383cd448a498c0fdeb9e5b20a4fbe91d1c925ea71dab8b748e4fcf4aefa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0c301b50a19d4cd804443eaa8ab26454
SHA1 a0d4e493200586e96a48d90e57a882283e6c766f
SHA256 2ef87f0bc963f933aa92c0da0cc97dde1ecf43443d8cdd1c91faf5eb93e21bda
SHA512 dda9d80ed25b4acb9855ef2d5b4ba543f73bea87e9af282fcfdbc20ff46bd6ed028438718463762234d35364cb92c227c1ac7ba52d336a31dc8cc17f636c7d74

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d848bf01760831a22b553b725a65d972
SHA1 630abd3289b8b07b31f31b41ac3381db700e57c4
SHA256 9a263d9f8dc66a3b64a25ac70091d13b3905da5c923c52e6d2031211a3b19a05
SHA512 db4a7eee5052a3e864714bb5ec82aac265cb14bac1cfd5f730429701214f06b4b1cea1ba7f3ec5a12815f15d3fdb0ae71466ded2b14c95ce9fda6a88309e898c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 505058172c38c3993e78736384094ade
SHA1 f6acaec58a9da60a9df99c9a7ef32aa559b1ecbf
SHA256 e127f2170365ed4c7b9a1db3bd0530fb16e381a0aba9c1b16ba680c8afc1787c
SHA512 70e123eea061a391644b9f87f5ea2e4e4b95dbdaf94450f72383e7c4fc84d4660371d2c2b189fd61543afe4d81b33a43d4819f6ef19c518278ada19e26490ca4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f76ac2701a267ccfacefa045be62b324
SHA1 8d6abdbc913a9ee11cce5db276730858a358e37a
SHA256 1957b6dc072700130f16299ece6c98e835036b1c093a5bd726bf1f526ca21e95
SHA512 70773bb8f7b6a45a0ad50e1e3002b92b4fffaed9a6ddfaf8759fa142b8c04055c263ae7b9bfa65d8203445cbbb5e646f31d1d839a7105647b7466cc9757dc415

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 aef4d554ebae5b6a2a9960299258ba5e
SHA1 5dbaec5ec9cd3578b2fee9e8b78cb029cdf1b2ce
SHA256 0480e3219983ea7033ea166fc21300c83941f8cc1ab1e0fa2bf1479e7f903739
SHA512 e6281108773ba48a4ba0a5af37dcc6e4a81d773a7be8ce322c295fa3ff7462e61fe3a4e0839210476bf47435a049553542997751903cbf67716df9cd2cd82f6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 21e7fcae95f4b18ffb0dcb30798c5342
SHA1 547590b27c507c2dee2441ec857b62a7ebfaa130
SHA256 4ecd0bdb57c053d9b97ac893010648e53f5f69fb36a59d925cb4fd300bbad033
SHA512 eb3971f53d852b87f53fca7dfa7e1db4b769bca3834892161ba74d44edc97516ec7b0399cab9428ed78dc3a59643463e8b32b7e0e7679624faadf6729db0f67b

C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat

MD5 08612db437a9b335e559614f17980d11
SHA1 99e3080cf1b535d9d493a8ce3cbcf1d9ea84bd03
SHA256 fae80e079ca37deadd63da51e5f28dfaef3446d01bf72dc42e992c027389bd4a
SHA512 73717befecca045212e1a8f3b6d4c86500567a759efe9cf2fb7c8030c377ef2051df890511fb9739f89208f553fd3fdfc5c7953aed45914ba25134e6a22f5288

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e88e051fab1fe981103252ffd538dadd
SHA1 53c7bdd9b94bc396218ae5a6187c9af6f37270f7
SHA256 913439475f5bb794dd1cac5d35857564aaa536d7772c6c3675ac70b49f667a57
SHA512 b47843e4b4786765a8cbdfe9693e11fd0da5a8ed6d483685dffc4921b2a05d901e28d4c3d8173b221319619ff69ed78ff9fce2e478f623909121ce6b6131bee2

C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.80\Installer\setup.exe

MD5 1cd79627301bfdeb1d3fba51cad868a6
SHA1 2b71bae909047dd0374425e9df941ef93fb696dc
SHA256 74ab283991de81543bff5786ad8bebd41c243bc00beda305da00c55a60ac2093
SHA512 839860435573bddfcbb950e2986333dd43ab5df5b2a0032fb18cd25c736e94d998b5ea1fc1e1b0c1d02a28b9615653becc4b535434bfd8a7a02f5995acf1808f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eba0030b0409e7df801cbececada3a8c
SHA1 e65ff6d5ed4d0bdf19c42967987ec6610180db11
SHA256 aef43425b9d6ac24008cbe9021b5fd20888311ad6918e24b5dec413254ace357
SHA512 fdbc2ce66040afd066534aca76ddf6948b600903ed01b00f7233a2f803915f50804a0d5884c49b38c882ba51d41b669158d88e5e233bfa7788f63ab36804797d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0d251b54191ebe255ad33a290ed56e85
SHA1 85d64d3526bb4076be6acb335295863171b5637c
SHA256 006ec487e2abdfdb02f050b82537716d8c5a3e4fbc851b267c06201bb9f9ed5f
SHA512 6c661d6a52268598a703708c800daf368d5f0588022d7cc80d99586f1e7fe1f2ab84ae6015b5e19f8745b801d1087dde912f1489002c919459bbed6bc72bd8aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0554bda1714d7618a611ce808685bbcf
SHA1 08febf2affecc8031700421bc47e8e934a2a11bd
SHA256 5ca58bb61576ed4d3e91b36e7b8494863eeb7f424abe7da7cafb482ee08d88cf
SHA512 2ac3ce3e5c7abfa2131bd843081592af430b343fb515c50edd5c297612dee53349cfce2100a47b90edb0ede0f3a833548140c6c62cfc3b2b9f8d1aa2eed02789

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2d3aa9ad0ccd9ff9eff3a8a2ea7e4530
SHA1 462a674b0d34a31879a3557aff30088a38d5594e
SHA256 48615ba765a6617adc221515f73831428b35cf046ba14dabb019b9530430f129
SHA512 c204662e7ea8d99c79aad0a4ffe7d1d70013862df2331f6228a41840c1372243c0b39691aa78f9909511431b6cb70e69c01d35a6112315f2da3fc4c817f4ce62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fa819b42b06adbcab989850881e4e541
SHA1 aaea0b9b008c6b9105f840cadcad7d7f96203096
SHA256 e9083e2a43dd1c5d937da5b3a9be6a759044f4fb859ff935caf04eb5e6c6638c
SHA512 c03d55378ea5cbbf29e692f6229685dd6924da787fd01ed36c5f5eaa227b3fc31c7620108d3081caf4c89d64f5459653cf200cbf12badae4adda79681bc6fe9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1716a6b55abd593e91a2a8db67136337
SHA1 f1ee544a226c50e939a84bd36b748b315e367d88
SHA256 79af2d6448df45790643430578a3fc89119b7282ad58cfc8d16f79ced2ac27b0
SHA512 3b8e115a0ab802a13709ebe9abd7ef8e7e0cea6d0622cbadab54162f25f6d9e5bc14c69a5e19206933ecf7b4002afb52cafa253941f5a4d841bd249eced1dc4a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 534d46f111aaa1fdbb0168d6cbd4682d
SHA1 39c250cdb8a14b165da65a546142ccf2a8ceb945
SHA256 6c0deb455c8559e480fb5687bb8bade33b6c5f26103204d35a8f5e3153582aed
SHA512 99f3dc0ddf6fd0e6c2609fc7dc93ef5f41ca854edc70cb0d4826d8005a3a47594316bd01c55dc23cd1be7bf13542a349b7c1e9851f6f9e27ac508ebe900d718e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8b2fc34b68b7fe729b9284814bf7d23f
SHA1 284ea211281d3cc579c75b058f359f48a72e3ad5
SHA256 c4abadbae4f852c966e0a556aa9df190b4d9081405cf4dac187af97f43e4ed73
SHA512 7690a779adc5c439cd6012b3548f8d6145b870c67db6298675114faefd8ed26b8b329a46da3ae0959aa8c16faff64af233ef381755f24836f5d01e498c452e74

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 32da05a74e788717face35334fffe42a
SHA1 4e95726d942fbddfe91b97321463165d69a9be52
SHA256 32b2a1952b59a73f000ac76304d03fca34227bd9336405e0d4cdd72c2f4dfe99
SHA512 9d9b5fd7f5442af2d0e323b15d2c1b2fec84cae949f7818cc81f4d718b2449c6321589edaf06cf9a2498c7326a307879a805e1297124eb8d29caf32da009ee02

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cb0ed5b6d692a8ca11b09c3970a5ff44
SHA1 2b96aed7c9e4b1b431c8ec5385562dd94891245a
SHA256 17e2af2690fc9355b4bd03312c5157f334fa00b84f6762f101c9f563e2a50fb9
SHA512 c83876379ef265926ac58885db3b16a47c76ecc8c7e35c327afed7dfdbf306611b5d6f8b8c05101fd211fc680f3d5748fa0edd17562cbcb3aa7e874bfa659242

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 aa673538c18f3ddc52e117e95eab2308
SHA1 f9148d57d4cf1a58c5671592b37ef277bfb62078
SHA256 37b52803b09bed4e3b96d50e18a54af57c9e14e54df25d09cf3f91a4f7bde5d3
SHA512 efa9c5519ec1ee39bb2995e12b2ba24114a70e567b7e315ca1a124ea6908c4628eac857a2c6f062e8cbde4c69a9a932782e19b86976addf8a6eab209e5213132

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f8139f12c1b7313b95ce2d934b2d6ab4
SHA1 2386eb0ae641e51d97147ad02904a7bcc2780147
SHA256 77d8b90bcb5c8079999964f9c11b13b3e15c06f78cc0cebe4e083a3b4057e476
SHA512 865d9eb7307e32851773eb8aaf7a5183dc8749720df8ae53b3dea1bb811f0cbd08854df172aa53164c3e160d82bcaaa2c8872557dc213fec657451a938607d81

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db35a0ae144973dface162b2d22efc5b
SHA1 00d2b2005d081b1b52bfb8359c600879159fb4ce
SHA256 7f77fbeab2f60580d3fe6e24dba8ec4b9417097b84eb782d0502b8a1f739c42b
SHA512 e7d835f8059728a8ecfab9f171725126694591d6f81ef40b5549563a962a7b667aaffaa87cbe1481aac7385925eb3e3e7b7cc21bfb7407948e37c153419c7301

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5acad04c7571b3abf5ec48e6b7a40a9e
SHA1 2468d55279e6da128ba2fd308d4a6987840010c8
SHA256 ab6767ed68feb0124e71257c0d9c31fc270a1fd6f4960b5fe21c2f8aa0a2aa47
SHA512 19d411c24f211f7893621b19f2869e5744501cdfb89bc202a6a6fd04585e33d8c236b40fe6ae08daeb45a696bcdb9715871b9a4cf944bfdf73722e923e7f5aa4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4ddc69f61e2f4449e36f54c2bd66631e
SHA1 4659387d67359ced4a223514d8a034082ee09302
SHA256 498068083a2d28b1d95105fb21408101b4a1f4776a3e0d483e30a18a1786765c
SHA512 d0e63dc09d6faf4bc931a30a7987396609874eb2d14b7063ed06233bb8c6763d1730d9b7ca32f9362665187606a3bb7666322ce841fa3c4188654596237b6ce3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6979a9001c4f7adfba87fe1f2ba84209
SHA1 a5d731d5caae454f780c541653be3742e8ed4c0a
SHA256 ebcb315e7ede9ebcdc8115c822f5fdeb4fbe8222d2284fb738823f3a4437b23f
SHA512 e70e97d46dc80755904d91b43587dcb592f5f5fadf60aa89e1190f2d62fc4893f20eedbd066fdf1f627111490abed4d5f4f57e309537bc060af3b482e538c406

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bd505fb58b21fa53d3a47ba9e11fdfcc
SHA1 d279325f07dc5907910e28270ed676172dcfd802
SHA256 b09b830ec3947fcd6c341271289b41e072d40ac2484a5a48af3c14da9588d9ea
SHA512 5d488bef6c34b679cf0815374a79abcd4debb85fc1805486b025a0779db39cfb458d46f321491eaf1d2cd34301a70e5fb6edc11c0c61d2f669ee7b0baae3ef2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af67490e38d933392ba692ab8fa27290
SHA1 0e083bc490d71741ed5744354e437bfa7c580e45
SHA256 b3895567d93839900d363b05cc76e56b32c7fb77cc34f489180fa846e204f6f5
SHA512 3295c7a88265f110f42a62f87dea4c0618665da55563573ea82fcb91e958c0f3046d42af4497a12d23cbc2cd5c7e389da4a3945299f12d136a27e0794badde89

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8c34e16c3a002d3d5259dc5f034507da
SHA1 9d68249193a7083ef2b0a123a0ff11cb2287bd21
SHA256 597636c802d52c91338daafedd192071095ac3b8470f93fdacb46d20e113c200
SHA512 aa4d52bb3d01f2ed8cad707315801a2792f85fb8ee37f11034a3aeb934e553aa933ba07289af85013996c991081fb0abdab9dcc8d3080849b0759b76d8577837

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 30d7c166003d1140506d939150e20cca
SHA1 e461dd7b11accf5774592a2dd41dcd3fa24e0f9d
SHA256 e6f369e82cd8bbe63dc9b7351654f4ccdddb17a100156d01b62cfc5455fa0ee7
SHA512 e7a746e8294c69cc0ce0576f07120f170271359eef839d854946e5de4ec2e1cf04910868486dfcee0b7fb0620f89488e0edb4b03a534d1243381333bd234d3cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 138af5576a280384321bdf7c0c6e9f41
SHA1 2dbb5a3b67dbfb85a63c07dec6d41ce3d27b32e1
SHA256 41af13c666821afc3b2ecbac0a2977ae5b202a994636e88bca3a69966cf7d64c
SHA512 7ecbd69a4b99679df8ac63760a383da632e1ac996fc9f7808fb2ec12566131edcda16a8f530fbfcfee80b56d18f72b6775fe4c8dcfe07ad5a347533b9f598ce8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 cc46c2d9a0ed82cb6960b00bff0f19e4
SHA1 fd91be20ed45ef5902629d8529b592f5b04d16fc
SHA256 7999e09eb31536daa71efad3754c5d28103b3313834b0a8eca61080f4eaa8c24
SHA512 bb787dd3717f92807341da06a8b620c5f97bb004a34edd8da4c6fc2aba32cfb1486c2659da82e8fde0c72aaad0125d406ccdf829cc9aa6f9abd42624edea0f58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a7978d8e85152760ce5c6b5405912d31
SHA1 3bcdc509f5b3c687f859db082f818267bbe5cc81
SHA256 d8418d08c05d767070a6252bd1a58db8b5141f0deea8bf2544ed5fb29970bebf
SHA512 bbe8993dd7549d053b2ef532b141a4e2f2d7ac7c28f1e1548877574bce7f03ae33f7ce8bad7b88950aed5f32af9ee68f3b05648d1dd8b7bcdef7eb6064385f23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cf3bb40c6b94219a2874a64525f5cdc5
SHA1 24e833387ae6599f8f180f2a2d7235def6613529
SHA256 2d588966487e0c092007c0f51b3b99c1cd06dab8242d10624175aa4a75592698
SHA512 1eb6bb710bdec980898b2f9c22fd79f94fec2cabf095a963c6cdd6f50aa3156ee6290da7e806ed4d20f18095ce10e5a0f60e1a78de334a69bf5df281a58f66e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2b378cbc1045fa841c68cbcdba13bdf5
SHA1 976efc98a65ea4216ecc246ca78c1e3d8daf5aac
SHA256 5668f4a253d763122fbc3b91fa0353e1c04b8b27425a403272dfe19d05981bfc
SHA512 96b3ef7b376eca3fe857e6af0bec76b0efaf110171c98173290a2ae34889730de7947534f1482512990e4b5cd11d1cfc7a116a4664b445e4df5e082bea3d5d5b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af6e661c6c66f79c199ac1bc973b24c9
SHA1 255179375f3d29d72dd79c7c929e1e2ed66631ff
SHA256 32d8137c0f22621fc059e84edae47ef6f31e5c373f632c25165c24947202be1f
SHA512 fa651356878b100315ee2dfef8cd2faa203eeaf4d0006d975f83e08141688ef02cadb27e941a36341f13d53cdd715605ebe873406afa85266a510bbeb08fafc0

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe

MD5 3f208f4e0dacb8661d7659d2a030f36e
SHA1 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff
SHA256 d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b
SHA512 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 91205ae3e8aa009b89ad43af8991e6d4
SHA1 2f551c033b65ead58e8e1845c8226bb37bf786b1
SHA256 c2bf952666d2f0fbb1312236de9755f440c8fe26ff6d1160d0501484259673ff
SHA512 be092256f305da0da5b7c533400eacce0834d451138ed65b6e46e2cd54bfa7af656b0a8dd590e76e405ad2e0937de058ab32ab1d257c827522219c4b53253a1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e46834ae4a2ce6a1d8a68e76895908d6
SHA1 fa32a78d27dc70c06370ea791ba532e6831a1e3c
SHA256 0c86557b355db80b0b15721273ee2aa7621a2646c99951bb35bf7c71e5b06bfe
SHA512 715336fbd5ac92a4b4850b6ef451031be7218ad23a697ea87ad74dfcc4b948bd01fed32b695a7cb33ff3de398b6bcb00f5105f67e28d00cec2673f0c136b2cd5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6dc7ee92545b92638b9c395f4bf10f95
SHA1 1907d6ed6e37302a8fdbb4827e71a7772930e047
SHA256 7c923422290a50029aef492f71afa3285a85acb572533914a56ebaf1e4d2a29c
SHA512 b51dacf39ea9220c190fda59d0f3331a6e7a8a8ba4e72b7018d4fba655984d3440d02f9eb495bc628c00fd5bc424138df04800568fbff3ab8ddf5e1e593c99b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 056f567bd8a65d57ced27bd992036171
SHA1 3e01281ee0876eef464866bad5cd941f73ca3d7a
SHA256 4c401f984277da661fe987d0b57e77a74b2f0433dad76a5a867bd6a93f5f7363
SHA512 b547125c694b141c7388cf139cc566c5e6a2632dbefe1c5ae9531354d537d1a83d031c83ec97f8aa1cf05519945b8271ff78ed460d7d376506acc62f7da236ba

C:\Program Files (x86)\Microsoft\EdgeCore\124.0.2478.67\Installer\setup.exe

MD5 c31297188ec9fbaa60449f769339963e
SHA1 8502d9e0cef18137529f0a46ad6e69a1577e6cae
SHA256 2e2eff110475dd3dfd732ab514e4692032e67b2d228d0081634a87f45cde5ff9
SHA512 9525e3e08b953fe36270c7b4868959e9bded055c5577e5ca94d79606b671e6660d180f763b54a276bf356e82d7073901c373e0b40cfca924cc4b38384c20e22a

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

MD5 28f5cf3c1d590016d7e5ecb1843571f5
SHA1 406f6637234211764c4e13753272caf704ffec2a
SHA256 a975a3a4ee010fbcc6a60c8c1798a19a1dd795655b4b629d20053bac9c5a3da2
SHA512 0e1fe3d1cbc9eb36c41a534b26ae95603bfad4e2f593fe1a8df9570209924772a0668d3c4a20006fdb700fed1decaffaebb189f34b8474eae0346ae924c6e938

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9c80e201281ba1a50e3a10a62567489d
SHA1 c0bb8fcdc449e5027296139c1597f7a44959fe9c
SHA256 eb1525124bee5c654bb0a7407971fb44a464a48693a0e954dfdb543402e242cb
SHA512 68aea8ae159e616e76f1c8950eacde2f295c80252f8363078ac1e15ba3ef234010e880ada633b2977201ba860fbf5fbd44105f9c8fd3bbdd114d008913af5c8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af04b1637939404d35edcb953a66327e
SHA1 081564a4c2ada73d030e1e2b99a9457eb48a8ac0
SHA256 c0117a0abaf5ab7177d0ba7f6ca87006276b231955d1b430cd8f957bbe41a1b0
SHA512 e6416ec9d8e84a5a031ad592c555d82aa6c3d054c27ca42d146fd93fd83a32b85f0430f354a734852fb8be2db4f5ae3e7a96870184e14c2757d7edd0715b6343

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6e2f29fdfcdbae490b6b2f7be62732e7
SHA1 f23615e62067bfad302be1e168633b82e4ca8766
SHA256 3bfc8f816acd6ee82c8d7d984cd9b1aaf2d017bf43fc6595d8d55ea50063b902
SHA512 21ccdd0168b2ef709f7110ca851e51c2fa455b943ce2a6b345ff8c4f29c1203973f4def847fa29873d5aed4c3443ccbe4968d4e6b21317ae231005b05cdc04a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 79b81359d5f82acdbb88e3b530d0f996
SHA1 fea6fa3de016fc2bf1d84a569b3a2a234d5f2108
SHA256 aa52dc8d8c2b9371f7e18c32764b1e9263215f5a84a7406836236b1b6d1d8945
SHA512 b4ad61a2ab2122b964740a3f6e68e786f2d9c74ef917d2c56317d69fa4a10399f201dd1a06c97559caa583351e7a747725c69a2011ca3093ae4941113b60497b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2ae14f93a363cba6f669244c9c83ee2a
SHA1 7d0ab05ee0cba41f7d741069edbe2981f7b74764
SHA256 e6df270fb7ee87f81c82c9577667e001eb0331f875fa79bb15b9bd67d2cb394d
SHA512 930b04d315b2ae521d83cb396ebf82cebb4a68d4b0f795e6959abf6bbcb620f11c468f93fd44dc2393a1f4ae16581545d8851e010cd5f0daee74703724dd37d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 115d8ae558c950a45e25c6b8cf7450fa
SHA1 f79cef30533a06648073f9e22f7f138b4cfcccc7
SHA256 caafb2ebbdbd31dc4ed683d948e0c085273e0581f0f17774ff4962fa0ac9addd
SHA512 c8c2a82e0eccb8c83bddf32ee6af762ef8b4bc5ee64a924fad22f10a691995627632e6b63f275acca7921111bc97d52eac9bb101c1d6ea2d4572723a0191af60

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8809f6277addc0bab08557426ca5fea7
SHA1 4ef615b6c6bd1edc48671ee0708dc09f778fdc7e
SHA256 7136697b96324022860eae87c931c170142fb18f084aa614c6f228c5fffdff7a
SHA512 0116de1bfa45014c16a33b07a48e14dc9e8463a83830fbc398aa8b95d578a34948415e2fc1a61ef54afd47765ce13f41b337cdca3b0b9df73d50771841f8d858

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0ae7a60f234c66538da7a8790a520e5b
SHA1 e62a86dbe5e63a0f133e24319eda11f9f7854712
SHA256 670ada57f99c45fcb7c4e4f4dc396e112b4b5c1ab5b2ef2e6ecd9ccdeca55b78
SHA512 7f5059956d2b549f49539bd25c1c9b8378b88a226098bef7009d89222b7b045d999ffebbca8e6c21754ead7e33c3a6bb87dcba22d62484bda6b83f4aea3bd53f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d1c7a7f5aefe6da4628c379eb45ae596
SHA1 8dbf83481363ed08f532c92322b446238658a84b
SHA256 04e25195437bfd1273bc53e85b13a7f9a1d1429ede480351a7acf560743fc9b0
SHA512 730b9670476e94e3141563daafea191a2883c9eccf08d96d57ac69d8f4f882ec91ec8cd9b9f0445071f0cda3f54ee104efd1e528010d5c72c0197720def0b40c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ad06601eddf0d0cc8813ce639cf21c25
SHA1 ca8721071c0b1227fe731fd7098a636aadc19462
SHA256 a20b7d8675bd7eb786864c46e63df137ae486c20d1a102aa1d9b739843191b64
SHA512 e66f19a34498f402e5a7b1a9242d9595dd9a206220c18a0b913b068654784f2ba57b690c31a472af9748f8256d8059742670b0206f29970df19ae32087e89da1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c83927163b0b57b512526ef2adcb7f01
SHA1 6cb2ca9c43b872eff81d3e89267874f76002d16d
SHA256 8632b22bc4f5a1b197d444f9d221a6cf49196cf76ac4552e923c87098ab68c45
SHA512 976248b6fa4572bc323073a4d4195e8ccb6b272d4383fb7d84accaddd78dc30b51153ad059439f2cd8cfe8132bd80342747876e788efc214442be46a559569ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d025ce2b90064134462006a85e018b53
SHA1 4e542b622687e96b028d1f152d876e703ee29489
SHA256 3b599b84027a69495d02b0235525db6fbd98242c524d3b206715075e0d4b3042
SHA512 cf8774d99b456453fffaa4c7059033fa78eb5902f31149c2bb58b94bf9b0048260c4b7b8634325743f4c86ae798803c976f91bf91def9c463400320d4b9d3a55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6f255dbaeddc3d2751d2ffc19356c39e
SHA1 07ee00ea01ea59b6e31f4f0f562331cfdf4f3ddb
SHA256 a0881a46e92e2f1d64fffcd1023ebf9dffc9687fc177a87a884262dc4d2ac2bb
SHA512 b866da62fc2ae239840ffd95b0468a4ff7e73d28f21374b3f987272fa2ea185a3286284e644eb0b9096d201c24aafe3a611f943f8dcaa7831ed5ccfe8a95a368

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 553283d57e3a64be901fd9658c84c9fc
SHA1 2d419b0dc93ce417e8b38ed175e85f4751441677
SHA256 02e0b0eae0e2b9ec58b870fd11d750fa4096d4b64798cb72c7a53a6ea8a2147a
SHA512 9dd3e8357be67b21595615972a50285f3a296502d8d4b43dc223909d83e5d3f03a060a29b812d567f5f70c15f0be34a029280f6fc76723243b2f2028bbf08262

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e43d51307fb5760a602a5cc6514188f1
SHA1 b7b9e9d912124ef0f9f4393ccb21f0ff4dc99d08
SHA256 0dcdd2352a48604ccf62547eb79efc89cda9a50d4015d469307c937bdf6e1648
SHA512 cbf7d845884759c4ed6ee661f0fb2745edfd6a497e1f5edbb8dc1226a352082fa356badc4ba033c8cf59e9f45f98ee82f7022d954c5e9d5c0c9e941a387ccd8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 504208c112120f56792d713500f9eb84
SHA1 60497cfb7e6a5e5753d7830dffe8764b30286ffd
SHA256 0e81266e377f185e6b38cc86a8130e483eccae4df5843e1bd552b04c789c042e
SHA512 3370a759669b4f151f45d7b38a672ab46e4f0dbf32c58193ba231d476d4b261b880deecb89b2a2ff8092eb6bea40b843a673fe85cfe157f5a70ab17fdf2979de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c4f1ba22e60bf39c296c4efb92bc4802
SHA1 418bd3cfcf124964b20c92bb6a3c4bb629574796
SHA256 86c3a92962cf04a646dec2a93094fdd6d3831ad2a4247f2334f67533fa910003
SHA512 eb19701f3bc7efdffdc7d69affe7c954ed75576c6319c319d18b2d8330914a1005fd63a054510e0cf5bda517f67eb95e3770e0c647b7bc869c819329c27eb599

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e6212e5b3d4c0069b7200a55d9aeb5a1
SHA1 8d62536e9eddae12d4a72cc831944867863b6a5d
SHA256 4f567374c15d43e115312c0c807e1040c8da134231318eeb295698d5956baca0
SHA512 62caba9785a6a96cda13ee0760e0eeb0ae4ee0c38f9fbf3723394fc231232ffd7c305404ee8774bc32123e5d09f7d43897ba12a67e83a168419d627b6d471b41

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bdc5181c82a7d60982f25e8b3b9d1051
SHA1 9d14781e07637e720751b18f56c607b560977354
SHA256 b9d3d5902a6c5f8bbf8fa9c1eecd255256da77c962566d78c3cfa0bd2f14b687
SHA512 b0364d6f9d190dbb5c163a67c91f56f49fc839512ec49008e8dbed43860c9e87e0b97efb1b5fbc97b2bbfb71a596d224b20df225e16c8cb57e5761f062ce0287

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3aa0e687a0d536d9835fbb82088c8757
SHA1 e5ea8c2baacd32b0da2ea454f1ad795c18f42e79
SHA256 0a5d620df0157424c79bd1778385fbdf993946114c87ad89c33dba3b30e36406
SHA512 c4f914348219030c17359a0a3428fbca6fea07d9f4e9a60b53088368188704540e30f82a2ca5a596887a98436c15319faae8d8e803f30148dfa749b8809de0c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ce401454e77ab693574a13424214d138
SHA1 5736a72e7649b91c438165dae4f6674b82ca1a9a
SHA256 bd82805b666097ce1f86dc690861a9b15b212044ee381cea2542c3b102415615
SHA512 50b9e0395f76f3e9bf72d56a6b0974c41e31c1238bd35bd453906168a1e27f9875f5a851b46e495a4754b467cf13edc565ae0fcc36f987037a6fcbb9cae78447

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1aa8c3c5068cbe1739b868ec778e32c9
SHA1 73de8fc4d0412ce1802b59ae6c7b7c4c1e24ed3b
SHA256 eb1236835c353d6b0f94c17f04662babd5076278170a428c013b7932e1a2ac3b
SHA512 e6672587c56db6dd37a7b7b13046eec4d99a0718976110706d906aed331e760b40a0f886c1de795b8d9a9b41d93ed91bec130c81d89025336c7fec2b28e04df4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 735bcb1ead1369b6a13034371c81442d
SHA1 9c4679b0da45af59409423f2cea2fcc0076708d8
SHA256 e31329212745c43082be27077e3c19bb0fc4e3ea99b2546d65e2896f2bb412ed
SHA512 bbf00c72837d13423a9d568d5151a2fea4df431c3c46b80b1e626e595b04b18724f559f578d3f937f35092d1fec2534024a0eb6ebdfc3e1c1b74874e99c04c10

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a1e9b3e6c589266cf3028e75ae2e3437
SHA1 e11a37ec93f72c657bef14b45b0f0fadf63c97fd
SHA256 f48aa6d0a297e5207132282bce508594109f6e9beb5c10354bcbd0928b254fef
SHA512 2257cd4e7d02f23ba646b12fcd85ea87206d9edf46e5be50d17ef4b9baa6b5832bae60a259ee485a3946a1bf647b4ca188933c2ff1e3c7ee5583a1256d5f7aba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 de919c47fa97c55fe02ff6d24160d136
SHA1 6b4a03b4e23f137396a305035120a62ce7eb09b0
SHA256 1a95f005e626d0eba42d42a843e7a35c0e8c6571d072b958a746bc105773c4c6
SHA512 4f3d88a152aa772a5313aa3d3d8f962b3aa9c7e180d9f669c6905ab1232e9a666c716d683a736b69c29ea3d3538029f6babe0a105b43b7774b5b1a0562e22593

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3a7682ee763a7175782df9057b631acf
SHA1 89dbd1b4b7114407eff0bbb7d13fd46bf26126a0
SHA256 bd1942ff91052b15e9181409cd34500ceef3f514315804572c266fbf707d5b68
SHA512 aff6645366444450d780089bc4de530c4197d41be9fa4dc6c3188be17a15b7ec76dbac95defae8ca7bca454632e60df2e926bfd9464e3eaaf2612c92a37b3012

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a22eb7857c7f81e56f49d38ae328ec48
SHA1 c336dd759f65ceac7e229e40d9a31666dc6d8f95
SHA256 022646f671efc8d329da32f2fb9875b112babd0fad4f36d55afa20744e6b9247
SHA512 7de94ec020c4afb6b4f55fb0e2f83df3a536cfeef271449d142771b6c671611387ee8229c372bbcb16fbbe3923537503f919bcb147c0a3993dacacd46411bbcb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 87b338e36a79e7138b4508474445ad32
SHA1 6d936e0909e9a27a688f0dbe6b8ea29998fb668d
SHA256 bf9ffcaf7a72b422d462eaee6e451436dbdba312051298a80c1cbd6d9f440356
SHA512 4e6749d5df29bc512c6341c2a628a13610fc537a0e531d45425b0322e201b1e4b034606a7ffaeded2ca050f05ff6fc585d3347abcaee7f9591c6ef997547b3b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5ddbfe6beb3739c9fbcb08c027f7e0db
SHA1 f17a8949e71090a8de0d754285b7872b36349059
SHA256 8361641a6744878140b0a6bf1d9591c2d520f1bcd8bc0542e9c01fd6acab72bb
SHA512 908b9b34152ee4c94553fd513ccc9d0f307baf08c5f460833f941cf489f588bd1dea57a78f36c871aaf30b3f6554773a3d52c7c90e2307b0eec9d29da8b70afb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2b46acde636341fec80ec3e344e0d840
SHA1 310c27a661531833241106a15657bf254cc14c9b
SHA256 8c7aff0f16912d7076e29241b8916342d3b7b4b5bc3dd39fa9c1368675f211f4
SHA512 05dc9435f5750ba4d21b5500143593f5a71607cb2969654c31d3c84086caa88a5661749b3cbcd0041334976526bf8e149c83f2ec2e129973f5edd29b297ce949

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d2145325ccbffe5a4c27daa41434585a
SHA1 fbe2bffa5d0be500f15e1e47b38377329d7fc359
SHA256 bd824448c2e23d714652e7fe60605c2a746f8709280ab04e4996d50fd7073aca
SHA512 ac827af98e27dc68b853aa2b81f10f44e1e0e972552cd8ad190b97421a45fc11f4e1d5cf025f7844278ad8c560d21cde2fb1375253fdac75677e34e2c45249df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5baab1153ca670f642adfd497be3ea59
SHA1 84d53d4aecc3a3791c17cae6a1847fdf873b9499
SHA256 4c66176eed88ff9ecb0370fd2c3dc20012bc70b9f1231e5c78cd568f301aecab
SHA512 9694f3d3910028107023332233a351a917c890f26ce5cbd0e2a2666cc9d0c57aa33dce7440c1dcee80e4d1c7a9b676529c2b36047c0a01262feb5e3faed25fc3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 872b2e32b3c696be3f0711e8517687bb
SHA1 adbb8b9a8564b205d4e6502fc8d6517a1b316c47
SHA256 d7fc097a08e800c5bbaf6db5982d83a4b79ea4d4bfd90e2220cc12b6ae354974
SHA512 ebab8c8f14d7b66d9fb4301f1b114f7bea255711f7f0c19a50cdc1fdd333889b4605bb3a4e956bc0df479d9ee17e1fda6dde16294bb7819379c350c559dfde70

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5d9d5545e67dcd8ec73aa508d2eb7c4a
SHA1 75e55c1f1b47bb773947338727f0f4c5ef736870
SHA256 2a0b355a6264d73c59ac3a9f16d03dc2704fc56893f64c6ef3a4dafca02dac04
SHA512 fba0fab808baacd775e13b5254aac761ee4dffef065eed5d9295bca6ef57051cf2561383d86d7dd6c5d13bc23d4b9d8b586088eb3be82360f5d5e2df7a369daf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 981f1df571a96c18e2748e9506e488b6
SHA1 91d2a52cb415b328148582131fdae4022bf36407
SHA256 44f439c9536997959e405597048344707aa98b0c2f878c8e3fd677e06cce4a61
SHA512 20e89bfc7e1708f57581f09e1f493cd8f8d8285ad13900ec2d940c54312b5a3a0540aabb2ec147c296df6716e5cd5fa237ad266a83465a42828157c2c27e75ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6b8e0530dd5338ff62c44b416c25bc41
SHA1 282a3182fb845e458591e9271e1e8be1abebd3c5
SHA256 b61035e16991c81cb121c77b2bef21a777c37b858cd685674cdce0dee1565612
SHA512 c80bb1ba126de88cae70481bfc4bcb32eb45215a4af3b183feab9aa472ac2bb4eff41b6d8192008f561b08a84ff951f8c583aba28efa03ab219a0aa09c32401e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 015cb45ac76844cfcd647914441612bc
SHA1 453372f5ebe49d24738b5b83368bc8946c7db047
SHA256 1086ea76797a182494eb5b0b4acb2fdea49175dc446fad2ec666439258bfc691
SHA512 184e059ae223c1833a09440f7bdce73a317bb879890e557aefcab80fd819edb5f7c2c00e7ba1910c1dc6686cd62d07e7afead6e48f1832f9106de77e147d9f1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d1950223d91f7e7c5b5b0692530ea469
SHA1 cb83cbb37df94a3cbdf984ce1c0e6daeb76b206c
SHA256 5c0569303e0f2c07b6b9b02982541ffd57521f46fd75804fe64dd284e19295a9
SHA512 ebce50f60288024007536d4e8a4ee1d0e8479f782f93372cbb8f275b4cbe4f8a7facc2fa6529a1480cb447368f0ca5d6c1cae119fcca5af8f803a43060405d3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bd211a9c51dc492899ed8d8bbd0dba37
SHA1 b479b74ed2fad2f5d9f789082ae21f82b03a6c33
SHA256 1283b976711be84b2f329d85ab13ac246b162fef6d4bbfb7152e00811ea9d9d3
SHA512 048564720ba2a83250f7c94d0a78d6b0aac837e16516eba1dbedb2da54275da6cde1e4f39ebb38f7ab7e668a4c0affa73c9ec62c3db093f14e1c689d59d302d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d75e382efe1d104d5010f4bb447e6c8b
SHA1 387a8e12aef56ef78405d5130313aadd90c65f40
SHA256 72137eed3be1fbcf9bcd211b437677a714d57964c4c9425582114f56d7996607
SHA512 1f36961ad81ceabeeb6c7aaa075cc3a4eed527703eb66210fb2834c562b04a22b8cbfef26b5796d36ccaf130a79d085fa77cde82988f0d1a6f28e3aae53d8cb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 30b47509f235a02eb6c197864757d675
SHA1 8f10a2c61ff3a567516f37086dcd61d5abee6033
SHA256 2ba1a510adf8ddb23fbd918afe64193194a66fcdd97e17c6196787151d1ba201
SHA512 5345ad3b40af7ee84a9cfe7fce7f1f521da17636ddb79906748f276ee5808588e03b3e784ff8312366482ce97400f9351c612cebb06572848bdddfd4591ce441

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 204a44867a7c607de982e592e62f0a2a
SHA1 c3a0845986f93fbe54685db1230587b6a42cfb7b
SHA256 fcbf75d5b5fb73fce28cd2bc40c1fb5475f9d90c8adbd52700f029b335c278d5
SHA512 3dd3b9e5cbfa217dd49afebd263ecfcf852f58c6440dc3a85b8c2c6cf3cc3201baf7c4d64cbd4617d0b7e78261a42ed72694fcad5dae203b5cac88ed599f66cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 12042b649f885fcc717b8bacac7c9f71
SHA1 840e1fec2725c621cbce1fbb7b932645929623ff
SHA256 76a5d68c60c12762cba043541566f2e425038577d48bd4954ca2466fdc0366bb
SHA512 2f7e79e2737a3871ffd33b520a6fb59a62914302e044be2c6c4927437c1d9c03804a43adfe8fe039fcbab93e23faaf1555e672433023c28a6ef7f32d2cbfcd46

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 22636d4f1009d8002b0ba96c4f098d9e
SHA1 bd6667b3251114d59ff0b98075bfd078997a11fa
SHA256 a4710a1420c1a28d6e8f9972a7ee80131b1f47544b9aaa43b68b25c7675ac25a
SHA512 852ae959181f89cc51cf3834c9d8c4963eb70a129c53e16856edba692fe11cd0549dc224f147adf2bab81c6ca2d8b1b75eafab436004a58b0d8ebf28fad3abda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 17973980cf996e2ebd37c8d290b6d016
SHA1 9a5794af1cf75057d550dc7d6d3f4aa50f9f5fa1
SHA256 6a1dcd9f425a3a94a6f66430675c76811f65f769eaf8d62aba9efa7c1d92e569
SHA512 f52f08af712619929b8a41b0b54501ad68e603f09e4a6a1b72760bdea02551d6c632e0622ff897b0315eb74fd578faeafa321b6b6abcbcdd1f35e56806e1a160

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 725afbfc8faf724b1c660c3aed037ed8
SHA1 88c8dc41f35431cafaef7b119425c7b83452ec66
SHA256 5d415721c96b94d06b04f30526667f21d91d8fabde699bc6cdfdab41f7b85ccb
SHA512 3d420e8f3437cc0c3286c9e4b381dde05caa243edaf91822e00e9ad910c38134a05782a5e1df7b359275e81f561ca000666079954051137965ad41035a45869a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 387be4c9fc40348655ed88f01d549d82
SHA1 64f814e1461dc0c24bf675c7f5f6cb4c840a4cc9
SHA256 6ea6627914da77b1832eadff56c47ced1b0ef312302f479b0d8e48c4e6deae0d
SHA512 89e9c5df98948ba7651a9e7ab1d6f37a39e1f98df48ef9b4d4a2435b6f1e18a4a3bfb29157157eb72f234fc86dc321a96d7df1585d56b78d2e8cdf6b58c9a666

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 153a0997a9d9d1b11d1a5f952789e293
SHA1 120b3d96d08a0e31db91eb15014cc3d1b47400ef
SHA256 2697c52619933a605538825f35c11e6429a559fe6be68626dc0d27e2620a3fbc
SHA512 e1411b9673e31fc84ca6cc803ec942562b4219f326e0bef94f20648e09fd0ea9091ea7ec904bc7e5e6545179e1bbbaf74e4ab321fad2911b2ba0dd14d9847d3b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b5124a770cc0bb8a6eb04cdf95367888
SHA1 e0a78e8adf875cd4612585a046a685faafd23c8f
SHA256 7c61786ffc28078497462e164d58e4f9fe3fc4299feb754e84365341e9d6ae63
SHA512 fb5d701c588d5744184917e7efc0406d2bc58845a872a3776aa6c1fa576eb146ee4e036bd9e533e62cd53fe4a7a6514509faa5d1b91d85178ff9d017333276b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 47e5ae8aeee1d2a6a4ba2adcd3fa72d0
SHA1 97f7876fb115001be5d2e544c59307d5a4053ce3
SHA256 5933fd71bc375d518540062a9891ba3a5c294e727b86c4d60bc00bb20981a6aa
SHA512 7cac83f0d0824dcf8a1dbab00a53298dbb339dea00f3ae2af5cd6670fe53d9edc49fe832931d2f2724b9cfc8323b2214df9efd14e7845acc21721dd7319ac0ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e1e6bd4a657a8a79433bfc3899d73298
SHA1 d0db80045b77a48845f2450061ebdfa27fdbb769
SHA256 0270d06e46c3fa9552c04c19a6252dd7465c60692321fdf5132359ef10f8ee66
SHA512 7a691753d5020f9cc1c01fee1ef70265788c19b990bad10cee59e2762749d694c95a6a0c5059b0e934913353c8b7e43d12924c31c5e14807fea45a7c69c5a4a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 73cf12664f8ccef0a90c3888a598eee8
SHA1 bfa99f39b3f547a542b1bf0e3ada5fadd6c2548b
SHA256 83fc95c22103a96ad885cd4c3bfebd719bc2186fe6c83246ad9a7816e669b083
SHA512 38abfe163a665ddbc427a4bfdc672a6c85b9d723e74ccbe796ebaf6d9f30875412a697779fd356156b808ed3e5ea19eeccc785c5f4aaf7a10f4777a3dbd5f72c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ccf9f850a8753311c5e7e5dbf1e90575
SHA1 07d85c104ca9fcb9a5e11329393d2aea08640f3c
SHA256 6d2465df5d1523525abe4875c45bcc38f195432338cf5359e52898c1ec76f736
SHA512 204957c788f2a14031d413386e1fcb6bcb0289a761149286894f080e98ec5207072fcb4dcf692d1e8aec645eab0f245847f2873ae1bfd3c82b0305ad1758a6e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 60f06ed64fa52d5eef4fd8b1453ba394
SHA1 1f95c7ccbb51948e39fc0903446758c018a40563
SHA256 8e31ad6949a789d4237917d082c3b9c27ed303f46cd9853447989ea7708b462e
SHA512 41611b6ddeeb1f66e8e5db26464146e7bed3a8cb2a14528af5872ae18aea62fc993733e5effe3ff49bb182db4bd85af488cc27b172f44eb820f97441e4c16b46

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cb634d22c7153f416d997dc13145447c
SHA1 befde46c4a8aef4c5f2fc07e25861ad7c6778374
SHA256 6e4c701989ec01169de64c8155f79f2345ae4589a742790fc5a8bd4ebc280fe9
SHA512 2387e4cbc125ad6580747bbf7a9a0680b1a01651e62bdb94660567d8806f409c1229bef123e01706f2fae3b6cc7b8c43e8f6272df343bacf37084d1703c7d478

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ca15bbdba8d7f5e5ef2da675e2a5b9d8
SHA1 c8a8c61df726621329c17bb2d961ba585fd83320
SHA256 6770ebd4efb8d0c955040f4f0c7f2560958ee714566cf723497d38ea3b5a5109
SHA512 8d105910865a6b3e998f18810c2aa62ffdac5a353edb86622dd5852fc11efca1c0817cc6369676cbbce56ac39044c25d2e0315562ec6b8607b561954786efab5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f4ef101d57dfd348d8c8d9296c6a844d
SHA1 97e031e7731e22851cf9b0f8c1042e8b0dabfe66
SHA256 9365b736a171128bda5567fe4dfa18c8aed6380f72726ae22f1ebcdded81f483
SHA512 eba876c93f49e98feb62d918cdada3da7e1e5c21cd0a2e4b15aca08d8a48094b974ee3a60004c2c7e63b2a9b612ef42d72cf8a51a716e0d11aaa86a3526da75f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db24d67db72b19721c7ee5b87224af6a
SHA1 b9faaa7b960216ce4bd749dffbf1e8051d35edef
SHA256 1be8239f87170f93ccd560fc32cb44c13ea7edbe27e466c234396841c4f8d0a0
SHA512 0c4be527697e67fc55537df218c78e3945ecabb801dc5274d66002e551d857e409727a3b3b664d7fb2eb30df621a4ec7b5068fb1b633ce2f96c5e908370c1da9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 62b6abf619511c1b7751addf357be175
SHA1 dc4bcc3af9e07dd02cf501e5836dc77b3bf3f4fb
SHA256 84462d77fdb2ce319d9468c4f9eaf6c96517fa72b1ca5665f84a635ffa7a7fa1
SHA512 4f33df61522dc15b79502258362161d917fe52576e66f4ef6ea1ddb4205f447b9a6264db8bf53f491d0ed06632ea33b33cb833234e9d7162e35066686d4185ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1940d8e8d267c33fbbae8206f199c551
SHA1 4db49006fad367776fe76dfe84066a3088597ae1
SHA256 8ab1eb471a0bf1abc92596f64846e4dbd8af710a7e53487aee29b530759f71c0
SHA512 7b36f336dd1b364084b9d5954fbb22fde97f3af9aa4a58d4a2404e48ab1c6f070c6021bd3c0752101abc5f00b884df5a81689d3ffef9bc9adbbdeaaf3a9e9d53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7eec2f0bb25a9ae39c7e7c2252576a62
SHA1 c868282af9d9a395985b2d6d59ad44411eb75fe5
SHA256 a67907a63f29e701ab6ba861a9fbce75d0dc4681579839a65ce6cc42fcb35b19
SHA512 47b69120a13b2edc5dcd259aac0728bf498c5b289194591a863f531d3c945535c939bf7a453228bbbe211e1846e088f0e1ed44bc4b9bee253127b299e5a5de91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7b7722bc9d7687df5e1750c862f01d29
SHA1 245dc381b4fa46cb52f7aff8b2cf5722bbca4090
SHA256 a85713a45c1bb91808ce1a598b0c39c15dbfbad54eea5569bc04d6fe521c57d3
SHA512 3ad2914b8527df0cb9b9ffc543aef216f641f8b1feae22d8a9e779ef21121c2cc15ce1a638e6d479aa46ce476656275a90e829597866dee5476c034b65fd80de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 df65fcde6f9b6e3c1039fcc8ea55c782
SHA1 166f065a3a71d1092e560a0acfa8b701c4c3fa3d
SHA256 9c377ca696c5927a8fbf7ee47aadcadc6845164717722c5fbfb90d62dbed2e22
SHA512 092826af558b5a8089950536e8e0f80cdfd2a27eb00c4da8f4c92a825f0a61e5e29a08aebdde331429dbfef0dee43f7631ce1da123a521b78e29dad1da63df7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3f6baf7444b8f17fc4a90b256d1e06ca
SHA1 01c6c1d6ce0006ee0526d9338e6cbdda70f6b797
SHA256 4bf7666c4aab1f7fae677061440eafcb40d83fa41a56110b552d5213cb3915ec
SHA512 ae49a20f29a145d983bc1f3040c3af418a82e7a22e416230e3a4b97f5f2278f0431c54e7c8caa467510090e2cb9e868f416e976ba167ab8301d2a69919696582

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3b5a7e5bcf712041c613acb0b17b7aa2
SHA1 06dbe68eca6d949d46596168ddc4b780a8f27ec9
SHA256 43f8f46d9a17da97726e2fb15e174e11433fd62f140453068ee9c16a42022639
SHA512 fa9e49052ea855df681846550e12d0f090d977b530ec351a39ea5ab507661b08a9997c2ada0692f43adc76ffdcff9052e61319950c548db92f71ae3e362adb25

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e9f95f66c5707bf246528cc94ed36a19
SHA1 ed21cbb7fc13e28d8ba85427d949c5a2392f229e
SHA256 880e937fe659e40ca04bf35170cd86a7f86295b5b9aeeaaabd2ffd2b687d0244
SHA512 019ad3d3564f5fcbdad0487eecbbaa8b561d098a78622ec0a21e3c9c4939adc02eff565fc8c067ab82893b2266bbabb5cbfa7edd23b9e4e9847be4c2d00227aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 259a3f43da5bc8f51fa4af0ed7698df3
SHA1 8e4a82165c5bcee4e88e2036fe21aca7008d963b
SHA256 572c228b652512823787245fdcc3d9852e852c945fa04b5abac599e9355331b9
SHA512 36f96c3c7549f8780a98ab07136c22c439c4d360be864b735f74b2589a4231e8ba3f254b36af4ca7879cae1a9fe64e743b52006cf5681457edc67ec55d1b899e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 18a643d91ebd6cdec3e7ee8488ef2c12
SHA1 1b1f3dcd55c88c02d43efcb85f6be86df662afb2
SHA256 6a93ca0bef7c1a4481da989acdf0a8d8de1f31121aa6891e3bb4b03342ebf4a0
SHA512 1545d99b009ebc511dfe97a527aeef4f330cb892066f4b379675623ca846407de83f9e860b355f9ada603a05ad70e9e58a0a8e3ec8337c4d7103b6eae790cff3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 385eba23b86dde3f36d3552774570cc8
SHA1 ad04d6ececbd12849719876778e99091e84baaef
SHA256 e1a603d2a3a6688286fb2fb33c42a47370b36da27af13b42d6729912ef84b708
SHA512 e1416ef9cd91febd7cbf4c8729565f053dbc69d94ee64293c9cc460ead62096d2f3810226e1b113a2a0273858cd6a66903f8afc29510065eb4b9d7bd7ced280a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0b4744c08d96c30904ac38f15d349df9
SHA1 8db7d41ddedcd5252b2a5c519003cdfaf1c3efb1
SHA256 3e272da9b8a10eab2a358790ed8ba1d65b59fea61eeddbf2a735800ed2e27349
SHA512 93d33e018039dc97f5c4b569f6ab5cd2325faada264e73397f7bab58be7f73bffe8e3d49bc9b7455049a47f86d8f30e599ba26a7a3154e322be9616aefd65d87

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9b11ca0b7f55f27fe516bd8e862ac894
SHA1 07e99c89f689abcca6538e4d657717daca8f69d2
SHA256 1c7318ba4a49212aa793404da67d3ca5e48fc6d4116eb9535e57c0c9402cf03d
SHA512 77de3fdf22c9563559e460d463f103d025e1a7c8164c55e40f4373df45d32edeb6c623609235e150cf33f2d570d51beb495cddbf85a91865fa9a1d8dccfca487

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5f06056bc3219c7fabb8d36c3870f901
SHA1 c76033cb774717b4a11dbee4eb5c37e69b0cc726
SHA256 dc9ebf0948840c3de332e4b4c34f8251de65a73c6ebd083547002776af8b9b25
SHA512 2137a0c7b745a947971910276cc6f589f43f0016f47a4824e8df109f9a105b17b277d0e286604874535ef6456634333e5651fe194c81ae95ccb7a301a5be2f46

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 21c5a36c0f330f2a8b99fad21da83cb3
SHA1 41df56109560c9fc396af51d167d76535576965c
SHA256 8958d3165cb80b6446d4c43a8a80bc62f47203b26566120d969703f28c185a1f
SHA512 b31b742c6af5867f093ceb488fd7123683e21d6ca3a52533d83e73e5a6b1aec2ccf2281b3495087693381a7a017b02500d535463483c70c1fa529f8111a67706

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b76fa70bf80fd125333031ef195e5ca9
SHA1 45f1319fc18af4c73e675aa6d326a1f8bf249f5c
SHA256 c341b2109b82f9c6049b59de15ac1f72ce0bebd5829287db53009bdc1207a9fb
SHA512 8441af3d90acf1fcb8a8b30e44d28a46c01861242a372f3b68c4cec715184a5d72cc3d75ae50e320cc1fb03ed0c778cdd42ac49dee8615dafffa77dd43c9b89a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 92562dc6a98811e2eebfff9f537ee1dc
SHA1 b429ceab26737328f243264b0f6df74959ef729d
SHA256 796007caac5b6f7456cf2db0a35b7844c67eac53e7a32b08c5c196634a233ff3
SHA512 4ed17be78decbb2566e443216b32fda990e3cde6144bd19d489a0ebb9e2310adc09badf0ebfc70c72b0c2cbf90f478e897cffd10514476b73ccbee8def3a6f83

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bd288a1feb12a11b5138372405159450
SHA1 984980ff1611129878ac158c69e3cf958f35e891
SHA256 209c566b592022c3bebe4bd88e3b284fc25458a0907c85e28673f2b80bc449a0
SHA512 5b6bc6b5bda244fc9f23aeafd65a0442a3089987c91d1d16c598a536de544fbb83ccf1a0a75a15b74e32430ced5219aaaabb7c6975800f4a9e6e78d2074afb3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 35dffd015a90ecd58617f7c33867e002
SHA1 79e01d41acae219413279915b8ce308596193083
SHA256 b9f9d02b200bfedf0811d6403e8187f280bd8e99e75413836aca278fbc5a765c
SHA512 ba79c868aa1f8c8b418fad032208eea3fb6421c6f7e47ab46be10df78fecaa537311caba7f04a91d1a352e2f77d2db25fb3a3c5de6fd14813ea324255a79062a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c8b8f890f9318cf61c397cc137c1e4d4
SHA1 ec9abe1a44e031fcfef5b8b2c8c640d7c47d11a9
SHA256 de7faf74b239d95c154b8bef6a411260045f4e62d84e7ae7e79c4a9d189b05a4
SHA512 fa4c468681b294a8708efb459d472ab312fac4cf08664d05c38fe88c8d7f524eabf8989516843b9dd941153e2a53e76849671508c7569cb72966c94d9554acaa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8bba93048ab014be51520493112fa578
SHA1 fc452600043ac2fcce09512588c4d34a7e700b51
SHA256 44f5127289627b3d41a5470e0975f8bef9d1c2dcf89ff31a1597754addee9436
SHA512 b8866c88996570d97bf2ef8fcc6645b1542a6aba135bbaccfbc83ba6d981e76f29ca2307ce45985a3c933f087e896fde046cda8b385d249c17cc39a859bfced7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a98d0adefdb0ea2b0fcb61c654fd1b2b
SHA1 d57fe54aa26b0f570af79dfa718d65c7f7795542
SHA256 24ea61a77be5310f1a33e0c7beec718949a6b327efd3f3830b24652a38572b20
SHA512 bac27360bfd0507a865a0686e64b6ed1ee20468e1abc55c81197a37a88db53a77211906fbc5fce2026f448caec511ab72e7f77147d2ff8cbccdff1ce4b505881

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8f08aeb7617ca4cf5b048ae5ccb57f34
SHA1 5ef6e3eae2b7dfe5163890159ee39d2b4d448ce3
SHA256 20ea8aae2bacea9ea4a9b53b772eae36a20ef26a8a4f7fbf7af8eb5e429e9dff
SHA512 71a30730bd604a818115b6004572fd4db03e4c136bfeb6429dfcfadf983db4574e624ab3f3291610f07d3943902817c90bb5a0f47c65b086d2dd6b7f775b41d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1e0edf4b6ac20130390330edf8318aad
SHA1 9aabf88704bd38f7df7d858bb6f3388f72ea3601
SHA256 94467b15da8bb1f35f2b52f9378f314cb25e67fc0e2111304cf13a367c2afde5
SHA512 873b2bfa613ee8b9de54f37444c40cb624df5a048d0bc25c694e5634ad31cf3b5e7b59c23c09a289107663b7a3817e769511c6fa2493123ff371adbfb2cf4c5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9134e1391e5b5d4511fbe371dd87b6d2
SHA1 4b4f25d515ea6d786c94ae6c29d5454d510af679
SHA256 19afc6ba259a741018c1d4e3d232c001ba58a2a5b7403bbe1636d4d1e2b6cafa
SHA512 f82908673233ecfce12443be0e49c1e47e86ff6966ccc1b1fe2085ae1bd1fd14c0d7237cc14decc554810970daee55a3051fd90eefb4a0b3389fe2cce3fad5ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d30ff00b42b39766d07f4734c245e658
SHA1 eca9bb282a6a8c8fb0bb5a82ae41792259aa316b
SHA256 f0f6bfd4cb6c24f4c9645e12fb9a51a975412218d2cfd8801c50e53b9f12b7c7
SHA512 aff3928fb8b61970d94a876565be28cb835deab3e04acc58135816ae81b4db29ee24a05e742a2a0e84563ec134b52eb4c3013daddc270531df832b3ef9177416

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d3348fde5c339165c452b907de584767
SHA1 58e0ecd17c27418ab6480467befe67050c5cbce7
SHA256 c33b7374010b55b561c893bae9abda5c33478995f598751b70da2ddb670bd38a
SHA512 af2d9cc936b2bdf33c6b9a2b71dd77b23f20fa339cc7f5020515a75410119cba14020b88f05505b788ff266b90bd6426ca36148b8a551f610e27abc1c19cda92

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7f3d745d005d554a85d07edf763f93b9
SHA1 88f7077b6883df1726eb4701bbee0b566ff30b93
SHA256 2ad00825e0a747008cb9ac01ff5d4aeb25c94ed7531f366aa15cbf9f95495bec
SHA512 a2c2c65adf98f721eb9b75401cc94be70048fd25c560d362bbc9ace91b5064c2438686f4dfd6e3565d7e6d405348e4df9a765280672f6007a2a3811936eeeb20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 450fb4a98bc62bd43d7e37c3568b9aa0
SHA1 dada3008bf1ca6c36467e0126020e3fedc9a6055
SHA256 af51254b2a12a500f986e46d7b0d60b3ac65ccc156044dedbbcca1bdc03d83a0
SHA512 9a2c7c6e79ea7fff4764602b15ac3fcaf7c0604658121c411e5d3c691edffd5ca2ed640cd914283b156b1af1e49dd49807bc9ba9e6d43df5e3b0c65fdcdd57c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 78c35f93ce3bad2dc697c2f75ec519c8
SHA1 4424422533a4daba98d67df0112579dfe5fe29c0
SHA256 3011a7be23928087261ecbe3f12c8c36c65d667b6cdd1c8eaeabc41255db12cd
SHA512 9cfedd7d3f2df023a93ff999d7bd02e3743e91082864617e3663e852cbc0abdcbce2b3b260992c354eff758872a24772a5e80be664c27c1e4f47659e9083ecfe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 46255585cc42f99a523be15ff4ef5dc5
SHA1 48e7b968d61d81bd0d93940a31830f0d05941be8
SHA256 c82cfe299bd54617839ee8ce619bacdaa32ca33b90434aa6ce29dcfbc2d672d7
SHA512 f7d22242483521913879b1cbeb4602dd2eb655f78d6e59ffa3fa0390e2536c6b66ca2a66538ea3f65a46667f1603a20a8865297d37f7388613e66d6497c339a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eeef55b49d3e6f8dbb8e621060b4bbb5
SHA1 76fd790e39d6dc529781a244e8a5db50fb559261
SHA256 12c093c2fd4329cd34101e1da29028ff2d6211475b7fe009c7aa81ed71f82c54
SHA512 dcd46703f1e2f8bfe15bade98afbde7714a0af8370fb9ad7100dead95b8a3943d350f95403958e87b67754c3c3d88a14a33a5925239bd402df383e261e77e292

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1053132986a2398fb5fabadc3d8c2965
SHA1 63616a4722664956b269be30b37c3c13a522adb5
SHA256 1aae7f494c5d4a809a7ba6257c7feeaeb461f022706b9b5f8a1f9c2fe3aa0ecc
SHA512 f1d223acb32cba3cbe6209f64e9551b21450d0a2de21e0608460d262fc6e379644d3080103789540255b64dbe3d4b44d8ef599862ea75b52571c01c2f3d3a7ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 578b44a737733a91424db84055abebb4
SHA1 0327317755fce8c4f7c6b06f031aa8ae523bb070
SHA256 df016c598f91da9d970b4b964e0819b7dd35152120419417828c3eeb1bd5ae85
SHA512 138474e706e97ec6768cdd4d768784d33eb822a955ccd3c7e2410aa165213149f1cab2a79bc967693392ba98e69b7c83b5491d7267770be44d751f27faa22b6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6a1485d63c102d3c1c8dd8700bbce4d3
SHA1 14ec8c85fdfba288eb8166fee8fa0b5e28325d01
SHA256 ee9be2b168b4dd68e459700ddc1f353fa319515e00bf00ff39d353649b887c00
SHA512 89225d7a34f516dbb0ac7ead43778e4fef8e3d5270bbe1aa6be9cb88c280b9da31f63b7fa28f6e4324494c9edb109340a59b471e0b43c3a792caca4a96a0092c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95c6c99733d4f77141e675a1e603ee73
SHA1 26dc21338e752e4319845701822735abb4b1438d
SHA256 e1c4b069edcdb21deb955f6b0e3b8ce3910f0cbbf19c9cdfc9d68de00b037f45
SHA512 c554f486bd6a35d8d2c4357af9085213cd4deb04bc7091ab560cec88824c31af3274b44ee0644631c018923be34f240d90191aace8c72365687f9a3c129501fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 92686924b28967856e3ecb424e558acf
SHA1 2351f9bd52a570ce8ac6237a395ca515ea8b70b2
SHA256 9b83231b7d3e2ab586b8596cfae9227d7c0fb2c67a25cd990ad0b39c4a344228
SHA512 9caa7c3a6488a99330c0cd3374ba9d4d8db3532b5c8e5f341d7f98cc5cde15eab9dfc405922ec2a2d03eb2a75d76ea5485e0de246e9dc49d12af3d2b7613d1ab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 04f8ee4ab04989d3b29e104b0880d232
SHA1 f71835fbb35347dcc05109b88a30d03df2aeddfd
SHA256 3ab3f4104089728d97ded084f18fed5aa37b7dc76fba8711a4cc9dacdfc46a1a
SHA512 8125ec12660278cf593022e2b69e4387e0a0a800b306f17a337e8f4c8bc87af67b7bbc884b1cac04e1f39497d34e654645d4b3f423a9e02c6341f0eeec6ebe2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cfd9e4b78fa031db8ebfba6df90ea358
SHA1 ac429a2a212ce44bd39d5f1dcea2e4d4cd7e7762
SHA256 967d9dd191f5e038c13be2964ed84a653a8f9678b4122c985939385b6a947434
SHA512 c588218b20ee39a890770ba650b8fc3e95c796e17b5e5b5ec76d6b9842ff1aa547183a75d8e7ac4adf409a2b5ed7db2b532107af72c70fef7ba602d68258d2d9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f3595cd5f96d287d77185d86a3e9a293
SHA1 83aba6f946e1e364a44f35d5f0ef7423653ec14b
SHA256 320ada5c77f4c8b236bb4281cada9b9db52181b90c1b85ca9781a39e794b7ae6
SHA512 a438b1b59eb331471fb68f7ee8f7f7899ed374ce7cd9e0acb7b01424375086b9d9537eae7ff506936e7825c0220e72f6548de72036b5c04dd1e4f47857adbb8a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 69c5a5aecd49e33fabef9fe06f5b7f2d
SHA1 ee6f67ffc34ea686814f1b42b7eb87371baf02e6
SHA256 1f8d6217ef0a21ec2cd54f37a3c492e865cab8dcd13d96f7406266eab1914290
SHA512 5d11877864a0631648c5b2bf47955b985394a1ac1e41f50c107c90d1fedb50c0167c3efb9cd3ad77d03cf92305ff5401070eb31bd18840cd68bda343e15fb129

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e8e8210ef3a46b101bfa05c46a084e4e
SHA1 c25b3eda2155d7e645a2598efbc7f3a9bee77c46
SHA256 748aff9df614b7bfd2a60623a4667229eb1cf3947f5cfcf09e37a9e5d85b9482
SHA512 b2fe67b4bb6ec80fb883a709d5db9bbc610f3b6165252847b72559fa81a4974e0dcf9b8a78daaa11556ac5ce5de6626dded5a3dffd2d38cd571ef1dd79a32d37

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bcc1121f1c3bb7e04e2efe5a02841109
SHA1 d3292a655a7733a4780545830d16108be15085b6
SHA256 b32479339fcae80892bb58fcc775a839dbdcf955875ff2a1be25962a6eb1896c
SHA512 5933a0c4ce55d2222b5e4e2803b593fccf02284af390556332785279f08d7aa835a7a1d0e09d3d4d9ff8ca6528ee6ec14190eb82fa5af34d1e89cb332d52ddc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1660b2f820bde653298c8dd4dae4340a
SHA1 be889a6e0bd2d73a46a3943b4f83796323ea99b2
SHA256 1f9c99464f2bb1ce26c620dbdcf0efef303ff5bb50023754d377cfd2e7d90de1
SHA512 07aa8cdbb77217d6296dc55e20f32f4ba6a0cb6de9d8635809c3ad9a62fcd3ae2882cd7bd943ba89302144a4f1fd3bd50ab11f02de1ab88ef53e75628d79e1ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 de89e334f4236082459d73b41fa80883
SHA1 5df3c7642a10fc7f9de580e61bd124de1c002264
SHA256 94ee0b6b4dd70aa5353d50b53354b453e13619e151c218023d4496ff10c9b17a
SHA512 4d8152910150e4cfc49d1f2858b88966d30c6c0815843599fae512f9aa84c50d2b46d05e8c9a8af50b0e127959952340007e8778f79c456791fce4851e8dc38e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 93f8a59c1f87979bbfef13c4db3eafd2
SHA1 cb2980df29d56ddedcb0b721566de88c11946673
SHA256 e6f029b97bca2d0cf90c568d1a5f934cd5c731e14497cf5d666040f1c097f53a
SHA512 78f785e3ab631400e3791a00a04141e62606917c066a270b11ef43e6bcc16677c1a5d10272cc73cba4dbfb6f44a5cb804ad4c06a0ba4d17076007a367200de24

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 72c65ceb99fd1255f004af4f422581a9
SHA1 c9a21f5f63be4ed8c4f18d3eb6e61f009bce0141
SHA256 d475e5072c6e88ef16246ef290fd71612fbeec488bcadd7f635f3314cb2a3e24
SHA512 6ef3e28263e483e9af2f009885b1d83e6ed5c144973301f39be2f3bd17ca0a85b78896cfe4b326e31867ac7fb6bf40eb172edd6cbaf1ab20d0ed2fcf6619eb06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9cccf515eb489f41df244855822e6511
SHA1 0b80a2c85eb15ff8915cfd3760a710c4820e4443
SHA256 ad1c599ea63832e1e40d1784aa9efe0fd5d464fccfbbbd18f9a0c468e39c2a5a
SHA512 9bcb28823ba7534e19c554dcff8f3dc02b1aba452fcbe7e3773be14a3cd629fd158c1dd2f3f8167f8e1c96eb548a342f814dcb6970f5a3b4f7435f5515a86153

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 949f10a10ec26e31dff6da10608c9b50
SHA1 38c54987250c30d412804c5ad49519c020247576
SHA256 e498c3aea04085675be6b53e5a25e1ab636f1e2d418f232c47c54e0c9c00c3fe
SHA512 4eee9bcd72561b9854bd6ad19100efe0a6adccf6f0323aac70a6bac4f6e1acba255cbf7af66aec6eeb369ac48b008dae86bb08bd8cabe1643615a9f0ca134077

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7b732325d2001daeeca3250cf52638ad
SHA1 9483ffaf9d3df7ca9ec5604fb2af7925e68170f5
SHA256 970d7dd02dace83570189e24d30bc30e268450788d4cbc0bc0d19b48a0229753
SHA512 09b8d7abbca41dc1b650140950586bff57a165bac8a9ecd07ea2e99dc73c85a6a716a38c0e9d5df46017244322aa0c93ba137972de20b1b9158e4c03a3f62c62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1748e01ef00b4402a2316ac72030eb5b
SHA1 5b5e46b33c7db33f82fef3202542ba71df1077e3
SHA256 8f0df9b21cb9920a0e1f5e3fe1c82f74043b1de558bdce6e6cf2b1ee3e8046e8
SHA512 f515010e6db922f1634d47d6267fa183e5a3c8f81bf302bcd56f0e64eb34cb4d7e904d417267f25f325f79495ad1e62d27c4d28a3d68a9957ab35cd43de171b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c64df202097f6f728885a3c050fe6ceb
SHA1 d239bd1a67326bf88d61b527575e9dff6adf6be3
SHA256 21496879ca7f7aa9d0ac9011129b468d72d4dd37d738a77d44accbfa0e9e46cf
SHA512 aa1b96716663ffef212ff065a5641eef754c2deec09539819f924062159c4aff494b8fafb3f614258c518515c8e9e4f604bbfb585b23a1e880df0f40c4c93038

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1658ff08167f9650bc526a2faee587a4
SHA1 f54834192aaff74eaafe5b96b1301889a9db8896
SHA256 b9829717c5fb81f7092cb389a3a13ab512608bbe5c7d261f1cb590d2e6387ddb
SHA512 8881104a119d75d351aec65ca1be275cb38061566186fde87d5cd7fa3fe96e701864d68fa404bfa3971e47ad8284058a1045a8022949c7dc54636b233a60fd62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 357bc17f0f339e3d0cf556365e6b8a61
SHA1 81149062bd5f63b044a5043f5ebb2faa679b4c05
SHA256 2dba3c73e466da30a3a454a4934c5e360d29c138801251023f9a5de4bc78f0d0
SHA512 1c703f58a55f90c243238164d9bea801211b4ad2c81e82aa37bb655c0ff216f0e1843778941c2975dabaf73e118c0255b8e34d610e12c60111070b57090de053

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fa6e8daa7c29cd49a3a725f07d639b0f
SHA1 01823cc2124e278ccdd10ff85f89a346906b1b00
SHA256 08e8828a29f0cc6507c7a5b47c8dc15f42405ddd894c9c501d8e5c745ecb4086
SHA512 a90de096650bc27a0ca249e97fe11cb4599add0d51a0282a4a9201fb0f87adab8e27c34a338325021ea62560ed1745b0de4353e7c6f4d7112e8ffea0546ce315

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b74a621262f041f15c90c032930b5020
SHA1 813fca62a8c42db7a7c7069cb409ed57206a85c2
SHA256 8f2ea3b20e5be05eabab52881e174eb5322f3b9b7aaea4b5072f74ddec3ffe8e
SHA512 6c5a9e31c18a19ba881b83e874f94a80b3d9defe46247c1e04557bafad1fd95a765bc1b3684b2d0b60b61660694f8d524d0e1708a0542f6adb56fbffaa4619c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7b80712284d22d88961558fcddee34e1
SHA1 2f158ce57730366d8d393fdabb52660862756d2b
SHA256 416f9464bc3c8080b1c8fafde5418f32976c86edd9e30b94914d1c1660f4a295
SHA512 8bf0812b180f58b530675970e1e59e1ba5faa1622730251be2fa8284c9c1251b7b83592c7c99fd34d28f0aaca660264956f6f8eb8a112ac32f5166188bf81849

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 89590cfaa9e500e85b177785191f1dc5
SHA1 82f932b091f45192beff9d8b2f2dd4a9c9b294b4
SHA256 0cc6229bfd73a5a46f0dbba4f7ce9923ae276f8d4b06f1900d23edc338ffdfc6
SHA512 4b6c15db9ddc7719fd66d9ce882568785acf45f37bdeeee6ab7c69120b81932cbebd510717a02380ccae85b291c04d62012b43b8554ce595bffe4a3ed56b6c8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4f469be51a026f3b587ee1698670ec5f
SHA1 31959384d3c8fae4f87094171809617a6db4e420
SHA256 73cdcfcf5ade0ab8c0cd62df0f75797d915be54768bdd0df635476d4119d449d
SHA512 ee54670789c0179188f1bfff51125b4d3b71040661bb6d6e17635db1968f5255a8974fa623f67d09b4f7e449852e4a3a552f71c35f5649f88fe92c9a6dbd62ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5e8ed4df193692636b5b4fae31d47215
SHA1 acf93bbf8a979bc558af20b47dfb00075442d00a
SHA256 9de0ab6fed62e814d9eb182e2a2e004c968292ec94a87531a90340e5b8536ccc
SHA512 7d6bc0539658116d791a99341516642826d3e5bfab28c7418775efc34f21a636408f6385ea80c664cff972b181c5d25b8777ff450ad3b256b402cac14aef15ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 205eb290b837e1f95384cba3b498d457
SHA1 333f27b142d5e7b45de286af2479b36b6279a84b
SHA256 d08f06409737df8204ac3bab44045d0ff0b9a339442f9fef57e3ea7a2b7b52f0
SHA512 292fef53ac9bbe4976832b0c20d55f74d7124332f5e38e03b78b948189f164dae22f908c32fc2a88fc27835d19080f1710b7f5bac0ea65ba6648c868512412fd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 186e3680b99d8ec98ed7e5ec878d0f67
SHA1 f24f582c2fa32eb1954edc504baad8caca1288c1
SHA256 1efee2f383671134a2fba095dcf4064c62fa34a5b67b68b1e9e44a3c156ec52a
SHA512 3f0117e621c078ed479e74e2346044cfe5bd11124af73c8996194c5dc237e6d11a35baf56fc45e03d52a9f66005373f1ab798a306237ea3ce54447e0b9a0de2f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b25406a474fe54d60feb41727c93bd5c
SHA1 66cdf79f3afa8e7f4930cad7678ad75fee3c3abf
SHA256 7bf3bd72f588fbe97199af57c85d372af44f9099065d1cd67ac6bbd1ebf45cb0
SHA512 24c39cc24d58bf8d11e5c03a992b5707267eb9fc9e77eed1c2797f9cb1899065c0aeed7a9fdf958f8cf672d796f11421e084a139287fbba2b1d765cff8d4184b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 40a6f28f75e16944e8ab88a70dec0fde
SHA1 240aaf4c988e8203de0fcc136fc2e771ef147f5f
SHA256 aa625aa78447d12a431da5e1933974e446215f401ff5b8f8215bd137be215929
SHA512 ffec3d46ea2a7a7f85f4ed0fbe2efe1bfa96660129c56c26cafef1377f8ab664065a2eaa48462892e694c14202dfefc5006ad68795243a7980dc450eb391fb66

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 28f041ffffc195df8bb7fe85de7e52c0
SHA1 c9e90f919a1cc6b4b44b4c417f2dbe8cc9b0dce1
SHA256 f236bcff4c695b5b6ef45a08dcd43bed3e6b4ebf9409365bca5c76c15847c02e
SHA512 689b3a8ac6cb8beaaf66f500960276c669431f0a729197feb79a729e692154796ff0d92071058be00d55e97eb276b445bc057c3d3501ae911e91c1d9aa0997bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b99c4873f9edbabe921ec9eaa8c3eb43
SHA1 0b11edd9c66f723a356faa9bc949a54582531ce8
SHA256 f182dbf5693e4ae44100b7031365672ced31fb9c50a0a3703f7dffe30706a7df
SHA512 d981824c9b5dc2b7abc3780bbb750f6d26f88661108af07f3c01ff91b1d7af8f0b361ca6d3700ef43ee3d95b075cfc03367d7ab70d9987226de5eb3b74b2b7ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 96061584e522258508aea65ad8f64e98
SHA1 65442e13ca04e421096bb66403f0d88fc112ffea
SHA256 b1e4f83ae8d41f2f010bf59f95bb50581295c477871bb4a07d5bb986779cf9d7
SHA512 a797b7871ccb3fb775e3a9732eb59081b359b52e5f70fcfb7756a2e5088e0849b4c5e7aef911e25257e60d4c219f9add1a2f895c6d87a7d26e92288c36d47121

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f82200420038f14925c1cfa99f9eae99
SHA1 d10961986bd0b711bf14288836f486316493a192
SHA256 5942087b19bf940eb4cbe90840d5a54ea60b3ebbceb258534e3c1f67753b991c
SHA512 60d7382675e00e9c1fc6219e5fa98031c833cdbecdad6c6be31eea0f58a624d8350b809eeee4ab30786066aa4943225e927eb04aa63da2b447acd3b7b233b4ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c2314a46cd4ac4694b959a8790d8955f
SHA1 8252483fddce66f6552aab867cd473cd2aa298ad
SHA256 2c2b5b77038d12a299f4a809fe53a2c802084aba90d954ca358fb551d21ec30b
SHA512 bee75f80a9e293d7918342bf3288251e09b63caed6ba204074eeb1fc6b2a85ba44a0ba967cd22374ac521df7f7a0c1fad7cea046c7482dff115eee2444e0f94a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 760c4dfc7c045134a0dad2a9836b2844
SHA1 018dc135ba1421d095ccc6e23049d82153791c1c
SHA256 f4347e7f48af73942bf9c32f0befaa2606d59efd57aea62e805a00d518677d55
SHA512 6791559c32fb410c7924ce7ba86b96c0d925b0045829766830b5141dc7db35c37c2b1c5ee5152531fa2a10e215571ac35b3ed938a80061148f902cc4209ebafc