Malware Analysis Report

2024-07-28 04:43

Sample ID 240604-jtxpcsab6z
Target http://google.com
Tags
adware discovery evasion execution persistence spyware stealer trojan
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file http://google.com was found to be: Likely malicious.

Malicious Activity Summary

adware discovery evasion execution persistence spyware stealer trojan

Sets file execution options in registry

Downloads MZ/PE file

Modifies Installed Components in the registry

Reads user/profile data of web browsers

Executes dropped EXE

Loads dropped DLL

Registers COM server for autorun

Drops desktop.ini file(s)

Checks whether UAC is enabled

Enumerates connected drives

Legitimate hosting services abused for malware hosting/C2

Adds Run key to start application

Drops Chrome extension

Installs/modifies Browser Helper Object

Checks installed software on the system

Drops file in System32 directory

Checks system information in the registry

Drops file in Program Files directory

Drops file in Windows directory

Enumerates physical storage devices

Command and Scripting Interpreter: PowerShell

Suspicious use of FindShellTrayWindow

Suspicious behavior: AddClipboardFormatListener

Modifies data under HKEY_USERS

Modifies registry class

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

System policy modification

Uses Task Scheduler COM API

Checks SCSI registry key(s)

Uses Volume Shadow Copy service COM API

Runs regedit.exe

NTFS ADS

Suspicious use of SetWindowsHookEx

Checks processor information in registry

Suspicious behavior: GetForegroundWindowSpam

Suspicious behavior: EnumeratesProcesses

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Modifies Internet Explorer settings

MITRE ATT&CK Matrix V13

Initial Access
TA0001
Execution
TA0002
Command and Scripting Interpreter
T1059
PowerShell
T1059.001
Persistence
TA0003
Boot or Logon Autostart Execution
T1547
Registry Run Keys / Startup Folder
T1547.001
Browser Extensions
T1176
Privilege Escalation
TA0004
Boot or Logon Autostart Execution
T1547
Registry Run Keys / Startup Folder
T1547.001
Defense Evasion
TA0005
Modify Registry
T1112
Credential Access
TA0006
Unsecured Credentials
T1552
Credentials In Files
T1552.001
Discovery
TA0007
Query Registry
T1012
System Information Discovery
T1082
Peripheral Device Discovery
T1120
Lateral Movement
TA0008
Collection
TA0009
Data from Local System
T1005
Exfiltration
TA0010
Command and Control
TA0011
Web Service
T1102
Impact
TA0040
Resource Development
TA0042
Reconnaissance
TA0043

Analysis: static1

Detonation Overview

Reported

2024-06-04 07:58

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-04 07:58

Reported

2024-06-04 08:44

Platform

win11-20240508-en

Max time kernel

2692s

Max time network

2701s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.com

Signatures

Downloads MZ/PE file

Modifies Installed Components in the registry

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\Version = "43,0,0,0" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\Localized Name = "Google Chrome" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\StubPath = "\"C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\Installer\\chrmstp.exe\" --configure-user-settings --verbose-logging --system-level --channel=stable" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\IsInstalled = "1" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\ = "Google Chrome" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A

Sets file execution options in registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\ChromeSetup.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Reads user/profile data of web browsers

spyware stealer

Registers COM server for autorun

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\LocalServer32\ServerExecutable = "C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\notification_helper.exe" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\PdfPreview\\PdfPreviewHandler.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\LocalServer32\ = "\"C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\notification_helper.exe\"" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_click_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO\\ie_to_edge_bho_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=FB51C39867C243CA8D3885F2334BDA6E" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3DD93A7B-2240-4155-825F-6300DBEF6F93}\BGAUpdate.exe N/A

Checks installed software on the system

discovery

Checks whether UAC is enabled

evasion trojan
Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A

Drops Chrome extension

Description Indicator Process Target
File created C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai\2.1_0\manifest.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Drops desktop.ini file(s)

Description Indicator Process Target
File opened for modification C:\Users\Admin\Videos\Captures\desktop.ini C:\Windows\system32\svchost.exe N/A

Enumerates connected drives

Description Indicator Process Target
File opened (read-only) \??\G: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\O: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\S: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\I: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\N: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\B: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\M: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\E: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\J: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\K: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\S: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\T: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\E: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\K: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\A: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\G: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\H: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Y: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\B: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\H: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\I: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\J: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\P: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\V: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\W: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\X: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\M: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\U: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\V: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\R: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\T: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\Y: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\Z: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\X: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Z: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\N: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\O: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\P: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\W: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\A: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\L: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\Q: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\U: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\L: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Q: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\R: C:\Windows\system32\msiexec.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A drive.google.com N/A N/A
N/A drive.google.com N/A N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File opened for modification C:\Windows\SysWOW64\debug.log C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtQuick\Controls.2\Universal\SwitchIndicator.qml C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\StudioFonts\SourceSansPro-Black.ttf C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Controls\DesignSystem\Thumbstick2.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Settings\Slider\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\GameIconRodux.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\NotificationsUpsell\Dev\Rhodium.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Flags\FFlagEnableBundlePurchaseChecks.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Flags\GetFFlagVoiceChatUILogging.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\AvatarExperienceDeps.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\TenFootUiTesting\React.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\JestEach-3.5.0\ChalkLua.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\PrettyFormat-3.5.0\RobloxShared.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\Time\Dev\JestGlobals.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtQuick\Controls.2\Universal\MenuItem.qml C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\ApolloClient\GraphQLTag.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\LuaSocialLibrariesDeps\RoduxPresence.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Emotes\TenFoot\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\FileSync\Dark\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Large\GameSettings.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\llama\llama\equalObjects.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-0.3.4\LuauPolyfill\Array\map.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\UIBlox\UIBlox\AppImageAtlas\img_set_2x_20.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\particles\fire_sparks_color.dds C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\StyleEditor\Light\Standard\Size.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Settings\Pages\LeaveGameToHome.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Controls\xboxA.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\DomTestingLibrary\DomTestingLibrary\types\wait-for.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\NetworkingContacts-1.15.0\Util.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\Squads\Dev\Rhodium.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\TenFootUiShell\SharedFlags.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\PluginManagement\allowed.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\StyleEditor\Dark\Standard\Size.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Thunks\retryAfterUpsell.spec.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\TopBar\Actions\SetCanChat.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\Controls\DesignSystem\ButtonSelect.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\JestCore\LuauPolyfill.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-0.4.2\LuauPolyfill\Array\from\fromSet.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\AbuseReporting\ServerUI.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\VrCompatibility\ReactRoblox.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Backpack\Backpack.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Keyboard\mic_icon.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\Clipboard\Light\Standard\Undo.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Flags\GetFFlagEnableLuobuInGameUpsell.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Settings\Flags\GetFFlagRetryMutingNonFriends.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\MessageToast\RoactNavigation.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\VerifiedBadges\Rodux.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\DeveloperTools\DeveloperTools\RoactInspector\Classes\RoactInspectorWorker.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.79\VisualElements\SmallLogoBeta.png C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Locales\it.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Common\InExperienceCapabilities.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\FriendsLandingTestSuite\FriendsLandingTestSuite\default.rbxp C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\PeekView\Style.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtQuick\Controls.2\designer\images\textarea-icon16.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Common\CommonCoreModules.rbxp C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\InspectAndBuy\Reducers\FavoriteAssets.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\2D-Collision-Matchers\2D-Collision-Matchers\above.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File created C:\Windows\SystemTemp\Crashpad\settings.dat C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\124e884a-f302-432f-a61f-e3ae2cd6d904.tmp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\settings.dat C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_177505373\Filtering Rules C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\CHROME.PACKED.7Z C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
File created C:\Windows\Installer\e5f59a2.msi C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\~DF6C720781235E0D90.TMP C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Installer\MSI5BA9.tmp C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\Installer\wix{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46}.SchedServiceConfig.rmi C:\Windows\syswow64\MsiExec.exe N/A
File created C:\Windows\Installer\e5f59a4.msi C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_177505373\manifest.fingerprint C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Installer\MSI660B.tmp C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File created C:\Windows\SystemTemp\chrome_url_fetcher_4932_104068350\-8a69d345-d564-463c-aff1-a69d9e530f96-_125.0.6422.142_all_acutrvkmuh4txcarzlf55gttysyq.crx3 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
File opened for modification C:\Windows\Installer\MSI5B89.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Installer\{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46}\chromoting.ico C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_1989814794\crl-set C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Installer\e5f59a2.msi C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Installer\MSI5B49.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagwrn.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_177505373\_metadata\verified_contents.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Installer\MSI5B38.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_1989814794\manifest.fingerprint C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\~DF70A6376D1E31C1DE.TMP C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\Google4732_488939666\bin\uninstall.cmd C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\manifest.json C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\manifest.fingerprint C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\settings.dat C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File opened for modification C:\Windows\Installer\ C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\_metadata\verified_contents.json C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_1989814794\manifest.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_1989814794\_metadata\verified_contents.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_177505373\manifest.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagerr.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\metadata C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
File created C:\Windows\Installer\inprogressinstallinfo.ipi C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\Installer\SourceHash{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46} C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\Installer\{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46}\chromoting.ico C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe N/A

Command and Scripting Interpreter: PowerShell

execution
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\System32\Taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\System32\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters C:\Windows\system32\vssvc.exe N/A
Key queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters C:\Windows\system32\vssvc.exe N/A
Key created \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr C:\Windows\system32\vssvc.exe N/A
Set value (data) \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr\PartitionTableCache = 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 C:\Windows\system32\vssvc.exe N/A
Set value (data) \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr\SnapshotDataCache = 534e41505041525401000000700000008ec7416a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 C:\Windows\system32\vssvc.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\System32\Taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2457560273-69882387-977367775-1000\Software\Microsoft\Internet Explorer\GPU C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2457560273-69882387-977367775-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Windows\explorer.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2457560273-69882387-977367775-1000\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser C:\Windows\explorer.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2457560273-69882387-977367775-1000\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\ITBar7Layout = 13000000000000000000000020000000100000000000000001000000010700005e01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 C:\Windows\explorer.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2457560273-69882387-977367775-1000\Software\Microsoft\Internet Explorer\Toolbar\Locked = "1" C:\Windows\explorer.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "129" C:\Windows\System32\svchost.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "163" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "105" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Direct3D C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "65" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "20" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "76" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "56" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Direct3D C:\Windows\System32\svchost.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "120" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Network\Location Awareness C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "28" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "88" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\S-1-5-19\SOFTWARE C:\Windows\system32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Direct3D C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "169" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "100" C:\Windows\System32\svchost.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "159" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{B7FD5390-D593-5A8B-9AE2-23CE39822FD4}\1.0\0\win32 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\NumMethods\ = "8" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\.html\OpenWithProgIds\MSEdgeHTM C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\NumMethods\ = "12" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{534F5323-3569-4F42-919D-1E1CF93E5BF6}\ProgID C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{ABC01078-F197-4B0B-ADBC-CFE684B39C82}\LocalServer32 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\GoogleUpdate.Update3WebMachine\CLSID C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{B7FD5390-D593-5A8B-9AE2-23CE39822FD4}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6430040A-5EBD-4E63-A56F-C71D5990F827}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine.1.0\CLSID\ = "{B5977F34-9264-4AC3-9B31-1224827FF6E8}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgePDF\Application\ApplicationCompany = "Microsoft Corporation" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{E9CD91E3-A00C-4B9E-BD63-7F34EB815D98}\1.0\0\win64\ = "C:\\Program Files (x86)\\Google\\GoogleUpdater\\127.0.6490.0\\updater.exe\\6" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{2E1DD7EF-C12D-4F8E-8AD8-CF8CC265BAD0} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{1F1289FD-DD10-4579-81F6-1C59AAF2E1A9} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreClass\ = "Microsoft Edge Update Core Class" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{E3D94CEB-EC11-46BE-8872-7DDCE37FABFA}\InprocHandler32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{EA92A799-267E-4DF5-A6ED-6A7E0684BB8A}\AppID = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{4DC034A8-4BFC-4D43-9250-914163356BB0}\TypeLib\ = "{4DC034A8-4BFC-4D43-9250-914163356BB0}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\.rbxlx C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\NumMethods\ = "10" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgeMHT\DefaultIcon\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3COMClassService\ = "Update3COMClass" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback\CLSID\ = "{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\MicrosoftEdgeUpdate.exe\AppID = "{CECDDD22-2E72-4832-9606-A9B0E5E344B2}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{A6B716CB-028B-404D-B72C-50E153DD68DA}\AppID = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\ProxyStubClsid32\ = "{2B1EC306-3EDE-4012-9BB0-FB836132FF52}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\PdfPreview\\PdfPreviewHandler.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{1588C1A8-27D9-563E-9641-8D20767FB258}\1.0\0\win32\ = "C:\\Program Files (x86)\\Google\\GoogleUpdater\\127.0.6490.0\\updater.exe\\4" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\ChromeRemoteDesktopUrlForwarder\Application\ApplicationDescription = "@C:\\Program Files (x86)\\Google\\Chrome Remote Desktop\\125.0.6422.31\\remoting_core.dll,-120" C:\Windows\system32\msiexec.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{247954F9-9EDC-4E68-8CC3-150C2B89EADF}\1.0\0 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\MicrosoftEdgeUpdateBroker.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\VersionIndependentProgID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{708860E0-F641-4611-8895-7D867DD3675B} C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ProxyStubClsid32\ = "{2B1EC306-3EDE-4012-9BB0-FB836132FF52}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{5F6A18BB-6231-424B-8242-19E5BB94F8ED}\LOCALSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{521FDB42-7130-4806-822A-FC5163FAD983}\ProgID C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\WOW6432Node\Interface\{B7FD5390-D593-5A8B-9AE2-23CE39822FD4}\TypeLib C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{B685B009-DBC4-4F24-9542-A162C3793E77}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\WOW6432Node\Interface\{494B20CF-282E-4BDD-9F5D-B70CB09D351E}\TypeLib C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.ProcessLauncher\CLSID\ = "{08D832B9-D2FD-481F-98CF-904D00DF63CC}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{27634814-8E41-4C35-8577-980134A96544}\1.0\0 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0CD01D1E-4A1C-489D-93B9-9B6672877C57}\TypeLib\Version = "1.0" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{C9C2B807-7731-4F34-81B7-44FF7779522B}\1.0\ = "TypeLib for Interface {C9C2B807-7731-4F34-81B7-44FF7779522B}" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\chromeremotedesktophost.msi:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\RobloxStudioInstaller.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 813614.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\ChromeSetup.exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Webstore Downloads\inomeogfingihgjfjlpeplalcfajhgai_24016.crx:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Users\Admin\AppData\Local\Temp\scoped_dir3492_958692463\inomeogfingihgjfjlpeplalcfajhgai_24016.crx\:Zone.Identifier:$DATA C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Runs regedit.exe

Description Indicator Process Target
N/A N/A C:\Windows\regedit.exe N/A

Suspicious behavior: AddClipboardFormatListener

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Windows\explorer.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe N/A
N/A N/A C:\Windows\system32\msiexec.exe N/A
N/A N/A C:\Windows\system32\msiexec.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\System32\Taskmgr.exe N/A
N/A N/A C:\Windows\regedit.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: 33 N/A C:\Users\Admin\Downloads\ChromeSetup.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Users\Admin\Downloads\ChromeSetup.exe N/A
Token: 33 N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Windows\system32\OpenWith.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3112 wrote to memory of 4788 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 4788 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3308 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3652 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 3652 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3112 wrote to memory of 5032 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A

Uses Task Scheduler COM API

persistence

Uses Volume Shadow Copy service COM API

ransomware

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.com

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffcf4323cb8,0x7ffcf4323cc8,0x7ffcf4323cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1836 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2412 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2684 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3176 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3184 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4856 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5124 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5768 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4872 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=3888 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4800 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2956 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5156 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3416 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6152 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4972 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2116 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5664 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6120 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6416 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6784 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6716 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6860 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6980 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6688 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6228 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6312 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7360 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1880,4410045246406829934,7179231508450635451,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7140 /prefetch:8

C:\Users\Admin\Downloads\ChromeSetup.exe

"C:\Users\Admin\Downloads\ChromeSetup.exe"

C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe

"C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe" --install=appguid={8A69D345-D564-463C-AFF1-A69D9E530F96}&iid={FE712735-9C3A-410A-74D3-357C10807F7D}&lang=en&browser=5&usagestats=1&appname=Google%20Chrome&needsadmin=prefers&ap=x64-statsdef_1&brand=GGRF&installdataindex=empty --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2

C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe

C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x2b4,0x2b8,0x2bc,0x290,0x2c0,0x80758c,0x807598,0x8075a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update-internal

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xcb758c,0xcb7598,0xcb75a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xcb758c,0xcb7598,0xcb75a4

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\125.0.6422.142_chrome_installer.exe" --verbose-logging --do-not-launch-chrome --channel=stable --installerdata="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\124e884a-f302-432f-a61f-e3ae2cd6d904.tmp"

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe" --install-archive="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\CHROME.PACKED.7Z" --verbose-logging --do-not-launch-chrome --channel=stable --installerdata="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\124e884a-f302-432f-a61f-e3ae2cd6d904.tmp"

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff6b1a22698,0x7ff6b1a226a4,0x7ff6b1a226b0

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe" --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff6b1a22698,0x7ff6b1a226a4,0x7ff6b1a226b0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffce1651c70,0x7ffce1651c7c,0x7ffce1651c88

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1868,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=1864 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=2144,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=2164 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2248,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=2220 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3076,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=3272 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3084,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=3296 /prefetch:1

C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4132,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4212 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4660,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4676 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4944,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=3636 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4952,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5008 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --field-trial-handle=4488,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5020 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --from-installer

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x11c,0x120,0x124,0xc4,0x128,0x7ffce1651c70,0x7ffce1651c7c,0x7ffce1651c88

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4600,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4344 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5500,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5512 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5472,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5484 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5348,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4220 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5460,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4692 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4220,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4796 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4204,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5136 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=3632,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5788 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5552,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5584 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5712,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5416 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=5656,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5900 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=5400,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4228 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5100,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5424 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=5396,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5592 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5612,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5544 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=5636,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5568 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5020,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5444 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5836,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5848 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5412,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5180 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=3648,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5308 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --field-trial-handle=5260,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5336 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --field-trial-handle=5716,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=5244 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5192,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4716 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6064,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6088 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=876,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=1244 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5204,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6196 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=6344,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6364 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=6052,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6356 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=5428,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=4688 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=3328,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=3332 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=5600,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6708 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=5920,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6140 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=6816,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6000 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\System32\msiexec.exe

"C:\Windows\System32\msiexec.exe" /i "C:\Users\Admin\Downloads\chromeremotedesktophost.msi"

C:\Windows\system32\msiexec.exe

C:\Windows\system32\msiexec.exe /V

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding 9FCFC0ECF6712AC1D0FA2B97E0513964 C

C:\Windows\system32\vssvc.exe

C:\Windows\system32\vssvc.exe

C:\Windows\system32\srtasks.exe

C:\Windows\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:2

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding 663D4638701393DF333890AC170D6471

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding D25FC1F639298700E982DB03B66988B8 E Global\MSI0000

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe" -NoLogo -NonInteractive -NoProfile -ExecutionPolicy Bypass New-Item -ItemType SymbolicLink -Path 'C:\Program Files (x86)\Google\Chrome Remote Desktop\CurrentVersion' -Target 'C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\' -Force

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /d /s /c ""C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe" chrome-extension://inomeogfingihgjfjlpeplalcfajhgai/ --parent-window=0" < \\.\pipe\chrome.nativeMessaging.in.8b14b78376b559a0 > \\.\pipe\chrome.nativeMessaging.out.8b14b78376b559a0

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe" chrome-extension://inomeogfingihgjfjlpeplalcfajhgai/ --parent-window=0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5752,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6260 /prefetch:8

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=daemon --host-config="C:\ProgramData\Google\Chrome Remote Desktop\host.json"

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=host --mojo-pipe-token=8962383772779503745 --mojo-platform-channel-handle=920

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=evaluate_capability --evaluate-type=d3d-support

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=desktop --elevate="C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --mojo-pipe-token=15504423578459302542 --mojo-named-platform-channel-pipe=6824.6844.10397725082909635692

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --mojo-named-platform-channel-pipe=6824.6844.10397725082909635692 --mojo-pipe-token=15504423578459302542 --type=desktop

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --type=evaluate_capability --evaluate-type=d3d-support

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=url_forwarder_configurator

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004D0 0x00000000000004C8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=5736,i,13378171270452405698,17339141317782070863,262144 --variations-seed-version=20240507-180133.206000 --mojo-platform-channel-handle=6996 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffce1651c70,0x7ffce1651c7c,0x7ffce1651c88

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1972,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=1912 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=1792,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=1808 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2260,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=2216 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3092,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3112 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3120,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3152 /prefetch:1

C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3616,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3624 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4604,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=4616 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4608,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=4600 /prefetch:8

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --field-trial-handle=4588,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=4828 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5020,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5036 /prefetch:1

C:\Windows\System32\oobe\UserOOBEBroker.exe

C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --wake --system

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xcb758c,0xcb7598,0xcb75a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update-internal

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xcb758c,0xcb7598,0xcb75a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xcb758c,0xcb7598,0xcb75a4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5400,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5412 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=3272,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3156 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5456,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3260 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5196,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=3180 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4524,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5216 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1148,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5544 /prefetch:8

C:\Windows\System32\SystemSettingsBroker.exe

C:\Windows\System32\SystemSettingsBroker.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6072,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6100 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6056,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5940 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=5748,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5744 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=5724,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5628 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=6212,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6224 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=5972,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6388 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=5704,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=872 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6080,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5632 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6128,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6436 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6508,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6536 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6316,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5944 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=4516,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6180 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6196,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6300 /prefetch:1

C:\Users\Admin\Downloads\RobloxStudioInstaller.exe

"C:\Users\Admin\Downloads\RobloxStudioInstaller.exe"

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MicrosoftEdgeWebview2Setup.exe /silent /install

C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU5B5A.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QTM3RDU3MEQtQjFGRC00RjQ1LUFCOUUtOTNGQzYxNjJGQzFCfSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCMjI1QkM2My00RkUyLTQwQjMtQjg1RC05NTdDNEYyNEJCODh9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE0My41NyIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzNjczMjg2NjEyIiBpbnN0YWxsX3RpbWVfbXM9IjU5NyIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{A37D570D-B1FD-4F45-AB9E-93FC6162FC1B}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QTM3RDU3MEQtQjFGRC00RjQ1LUFCOUUtOTNGQzYxNjJGQzFCfSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntGREQzNjUzQS1ERDU1LTQ1OEYtQTMyRC1DMzc4Q0E4NjYxODR9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTI1LjAuNjQyMi4xNDIiIG5leHR2ZXJzaW9uPSIxMjUuMC42NDIyLjE0MiIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzNjc3MTE2MzYzIi8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\MicrosoftEdge_X64_125.0.2535.85.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{8329EAF9-EA01-4C42-837A-ADDBF318DBAA}\EDGEMITMP_64BD0.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x244,0x248,0x24c,0x220,0x250,0x7ff79d354b18,0x7ff79d354b24,0x7ff79d354b30

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --field-trial-handle=6900,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6880 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --field-trial-handle=5912,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6864 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QTM3RDU3MEQtQjFGRC00RjQ1LUFCOUUtOTNGQzYxNjJGQzFCfSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins4MDVCNUM0Mi0zNjRBLTRBN0QtQkQ4Qy1CQTdFNkM5NzQyRTl9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtWUFFvUDFGK2ZxMTV3UnpoMWtQTDRQTXBXaDhPUk1CNWl6dnJPQy9jaGpRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGMzAxNzIyNi1GRTJBLTQyOTUtOEJERi0wMEMzQTlBN0U0QzV9IiB2ZXJzaW9uPSIiIG5leHR2ZXJzaW9uPSIxMjUuMC4yNTM1Ljg1IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMzY4Nzc4NDMwNCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzNjg3ODExNjQzIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe" -startEvent www.roblox.com/robloxQTStudioStartedEvent -firstLaunch

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.627.0.6270453_20240604T081624Z_Studio_EE950_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.627.0.6270453_20240604T081624Z_Studio_EE950_last.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=0.627.0.44533 --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=eaa743d2ec5efd1c7cd63375418c0e423354daa2 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.627.0.6270453 --annotation=UniqueId=6411648182897464570 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.627.0.6270453 --annotation=host_arch=x86_64 --initial-client-data=0x5e0,0x5e4,0x5e8,0x538,0x564,0x7ff72cbf8b90,0x7ff72cbf8ba8,0x7ff72cbf8bc0

C:\Windows\System32\GameBarPresenceWriter.exe

"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=3180.1624.12944471988738503801

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=125.0.2535.85 --initial-client-data=0x17c,0x180,0x184,0x158,0x18c,0x7ffcd6a64ef8,0x7ffcd6a64f04,0x7ffcd6a64f10

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=3132,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3128 /prefetch:2

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=1780,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3388 /prefetch:3

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=1964,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3480 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=2996,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3696 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=4016,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=4036 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3140,i,16529830820872561034,16188971897315710404,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3700 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=5152,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5072 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe" roblox-studio:1+launchtime:1717489026309+avatar+browsertrackerid:1717488620031011+robloxLocale:en-US+gameLocale:en-US+channel:+browser:chrome+userId:5868157057+distributorType:Global+launchmode:edit+task:EditPlace+placeId:17440835905+universeId:5968537435

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.627.0.6270453_20240604T081709Z_Studio_F1779_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.627.0.6270453_20240604T081709Z_Studio_F1779_last.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=0.627.0.44533 --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=eaa743d2ec5efd1c7cd63375418c0e423354daa2 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.627.0.6270453 --annotation=UniqueId=3582942281630366403 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.627.0.6270453 --annotation=host_arch=x86_64 --initial-client-data=0x5b0,0x5b4,0x5b8,0x520,0x5c8,0x7ff72cbf8b90,0x7ff72cbf8ba8,0x7ff72cbf8bc0

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Windows\System32\GameBarPresenceWriter.exe

"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=1448,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6200 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5068,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7156 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B2F2F261-9364-4BBB-BD83-0BB099BCD21E}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B2F2F261-9364-4BBB-BD83-0BB099BCD21E}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe" /update /sessionid "{7C8A20DE-405B-4CF5-A584-B184A4ECFBDC}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7N0M4QTIwREUtNDA1Qi00Q0Y1LUE1ODQtQjE4NEE0RUNGQkRDfSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntDRThDQjY1Ni01REY3LTQzOTUtQUFBQy1DMUI4RjIzOUI1OTV9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtyNDUydDErazJUZ3EvSFh6anZGTkJSaG9wQldSOXNialh4cWVVREg5dVgwPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTcxLjM5IiBuZXh0dmVyc2lvbj0iMS4zLjE4Ny4zOSIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjAiPjx1cGRhdGVjaGVjay8-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2NzkzMTkzNTQ2IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2NzkzOTEzNjcxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PC9hcHA-PGFwcCBhcHBpZD0iezU2RUIxOEY4LUIwMDgtNENCRC1CNkQyLThDOTdGRTdFOTA2Mn0iIHZlcnNpb249IjkwLjAuODE4LjY2IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzYxOTYxNTc5NzA5MzI1MCI-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjEiIGE9Ii0xIiByPSItMSIgYWQ9Ii0xIiByZD0iLTEiLz48L2FwcD48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iMTI1LjAuMjUzNS44NSIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiB1cGRhdGVfY291bnQ9IjEiIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzYxOTYyNTg5OTc3NzQ0MCI-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjEiIGE9Ii0xIiByPSItMSIgYWQ9Ii0xIiByZD0iLTEiIHBpbmdfZnJlc2huZXNzPSJ7RDE2MDZFNjMtNTc3NC00MDczLUJBQTQtN0YwNjVBQ0M1OERDfSIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU67D5.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{7C8A20DE-405B-4CF5-A584-B184A4ECFBDC}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe" -ServerName:InputApp.AppXjd5de1g66v206tj52m9d0dtpppx4cgpn.mca

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NzFGNjdERkYtMTk1Mi00QTI5LUJGNjgtRDQ5MkM3M0Y4QzU2fSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ibGltaXRlZCIgcmVxdWVzdGlkPSJ7OEFEODExQkEtMTg1Ny00NENFLTkyOTktOTAwRjlFODREM0EzfSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4yMjAwMC40OTMiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7RDZqeFBlVW1LZmg4eXR5NkYwN1l4TTFlWkRIL1RWNkZRVDJmZkRpWnl3dz0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTI1LjAuNjQyMi4xNDIiIG5leHR2ZXJzaW9uPSIiIGxhbmc9ImVuIiBicmFuZD0iR0dMUyIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjI2IiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTUxODAxNjciIG9vYmVfaW5zdGFsbF90aW1lPSIxMzM1OTY3ODA0MTE3Nzk2MDUiIGZpcnN0X2ZyZV9zZWVuX3RpbWU9IjEzMzYxOTYxODcxMTA5Mjk5MSI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjIzMTA2NzYiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMDM0NDM3MzQzIi8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3DD93A7B-2240-4155-825F-6300DBEF6F93}\BGAUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3DD93A7B-2240-4155-825F-6300DBEF6F93}\BGAUpdate.exe" --edgeupdate-client --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NzFGNjdERkYtMTk1Mi00QTI5LUJGNjgtRDQ5MkM3M0Y4QzU2fSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins2QUYxQTc1NC1CQkFELTQzQTMtQjNGOC0yMDBGMTZCRjRBOTd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-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_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-PGV2ZW50IGV2ZW50dHlwZT0iMSIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMjAxNDIxODMyMTIiIHNvdXJjZV91cmxfaW5kZXg9IjAiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIGRvd25sb2FkZXI9Indpbmh0dHAiIHVybD0iaHR0cDovL21zZWRnZS5iLnRsdS5kbC5kZWxpdmVyeS5tcC5taWNyb3NvZnQuY29tL2ZpbGVzdHJlYW1pbmdzZXJ2aWNlL2ZpbGVzLzVmMTk1NjEyLTM4NGEtNDhlYS04NDA4LWI0ZWRlOWRjNTZiYj9QMT0xNzE4MDk0MzMxJmFtcDtQMj00MDQmYW1wO1AzPTImYW1wO1A0PW5KR2l2TUxzN0taS2wyalAzNUJvZk1Kd2dXU0hYQU16dXZaJTJidjZaOXdlSHo3Y3pWSUVMSGR5dWxaRGo3Y0N0JTJmQlBaT00zVVZ2bWpDV0c5enoyM2lBUSUzZCUzZCIgc2VydmVyX2lwX2hpbnQ9IjE5OS4yMzIuMjEwLjE3MiIgY2RuX2NpZD0iMyIgY2RuX2NjYz0iR0IiIGNkbl9tc2VkZ2VfcmVmPSJSZWYgQTogMkRENzg4NTZGMTA2NDFEQzhGMDNDMkM3QUY3MDkxQzIgUmVmIEI6IExUU0VER0UxNzEwIFJlZiBDOiAyMDI0LTA0LTE1VDIwOjQzOjEzWiIgY2RuX2F6dXJlX3JlZl9vcmlnaW5fc2hpZWxkPSJSZWYgQTogM0U1N0MwMTg2REY0NDI3OUE0MzNCMkI5NzRGRjM5RjQgUmVmIEI6IEFNUzIzMTAyMjAxMTAyNSBSZWYgQzogMjAyNC0wNC0xNVQyMDo0MzoxM1oiIGNkbl9jYWNoZT0iSElULCBISVQiIGNkbl9wM3A9IiIgZG93bmxvYWRlZD0iMTgwNDQ0NDgiIHRvdGFsPSIxODA0NDQ0OCIgZG93bmxvYWRfdGltZV9tcz0iMzE4NyIvPjxldmVudCBldmVudHR5cGU9IjEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMTQyMjEzMjgyIiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iNiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMjAxNDkzNTMyNzgiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiLz48ZXZlbnQgZXZlbnR0eXBlPSIyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIyMDE2NDI1MzE1NiIgc291cmNlX3VybF9pbmRleD0iMCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9IjUyOSIgZG93bmxvYWRfdGltZV9tcz0iOTIzNiIgZG93bmxvYWRlZD0iMTgwNDQ0NDgiIHRvdGFsPSIxODA0NDQ0OCIgcGFja2FnZV9jYWNoZV9yZXN1bHQ9IjAiIGluc3RhbGxfdGltZV9tcz0iMTQ4NiIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\MicrosoftEdge_X64_125.0.2535.79.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\MicrosoftEdge_X64_125.0.2535.79.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\MicrosoftEdge_X64_125.0.2535.79.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.112 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.79 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff767884b18,0x7ff767884b24,0x7ff767884b30

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=5716,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6180 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=6500,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6032 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=6512,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6484 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=5828,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=4528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=7316,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7276 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=7408,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7436 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=7564,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7584 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=7720,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7608 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=7872,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=7892 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=8068,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8028 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=8072,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8180 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=8320,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8340 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=8484,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8500 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Windows\system32\launchtm.exe

launchtm.exe /2

C:\Windows\System32\Taskmgr.exe

"C:\Windows\System32\Taskmgr.exe" /2

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.112 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{D7F747F2-E3A0-4216-9C4C-8DBA46E80280}\EDGEMITMP_FC3BA.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.79 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff767884b18,0x7ff767884b24,0x7ff767884b30

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RjE1QTQxQjQtMzc2NC00MTI1LUE0MjktRTVBOUY3MEEzNzlDfSIgdXNlcmlkPSJ7MDExN0VDQTYtQjgxMC00MjlELTgxMUEtNDkwREM3Q0RGNEE5fSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins2MDVBMjAwOS1ERjE1LTQ0MjItQTYzNy0zNTA5QjBCMjI4NEN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMzkyNDMzMTgxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMzkyNjUzMTM0IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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_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-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjAiIHJkPSI2MzY0IiBwaW5nX2ZyZXNobmVzcz0iezNDMEU5NkUxLUQzQkYtNEY1RS05NTU2LUE5MUQzOENEMkVGMn0iLz48L2FwcD48L3JlcXVlc3Q-

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=5128,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5940 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=4788,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5016 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=8968,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=9044 /prefetch:1

C:\Windows\system32\control.exe

"C:\Windows\system32\control.exe" /name Microsoft.AdministrativeTools

C:\Windows\SysWOW64\DllHost.exe

C:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}

C:\Windows\explorer.exe

C:\Windows\explorer.exe /factory,{5BD95610-9434-43C2-886C-57852CC8A120} -Embedding

C:\Windows\regedit.exe

"C:\Windows\regedit.exe"

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=6416,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5300 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=5344,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=6304 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=3168,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8580 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=8464,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=5940 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=7596,i,6552975004961431268,5881329846558498682,262144 --variations-seed-version=20240603-050140.191000 --mojo-platform-channel-handle=8440 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:80 www.youtube.com tcp
GB 142.250.178.14:80 www.youtube.com tcp
GB 142.250.187.196:80 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.238:443 ogs.google.com tcp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 142.250.179.238:443 www.youtube.com tcp
GB 142.250.179.238:443 www.youtube.com udp
N/A 224.0.0.251:5353 udp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.238:443 chrome.google.com udp
US 13.107.246.64:443 devtools.azureedge.net tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 www.youtube.com udp
NL 142.250.27.84:443 accounts.google.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.179.238:443 www.youtube.com udp
NL 142.250.102.94:443 accounts.google.com.vn tcp
NL 142.250.102.94:443 accounts.google.com.vn tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.238:443 chrome.google.com udp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 216.58.213.3:443 id.google.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.16.246:443 i.ytimg.com udp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.187.238:443 chrome.google.com tcp
GB 142.250.187.238:443 chrome.google.com tcp
GB 142.250.187.238:443 chrome.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 216.58.201.110:443 chromewebstore.google.com tcp
GB 216.58.201.110:443 chromewebstore.google.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 142.250.200.14:443 www.youtube.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.46:443 tools.google.com tcp
GB 142.250.180.14:443 www.youtube.com tcp
GB 216.58.212.241:443 csp.withgoogle.com tcp
GB 216.58.212.241:443 csp.withgoogle.com tcp
GB 216.58.212.241:443 csp.withgoogle.com udp
US 8.8.8.8:53 241.212.58.216.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 2542116.fls.doubleclick.net udp
GB 216.58.204.70:443 2542116.fls.doubleclick.net tcp
GB 216.58.204.70:443 2542116.fls.doubleclick.net udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
NL 23.62.61.72:443 www.bing.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
US 13.107.246.64:443 devtools.azureedge.net tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
N/A 127.0.0.1:9229 tcp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
N/A 127.0.0.1:9229 tcp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.46:443 tools.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 216.58.204.70:443 2542116.fls.doubleclick.net udp
GB 216.58.212.241:443 csp.withgoogle.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
NL 142.250.27.84:443 accounts.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.200.14:443 www.youtube.com tcp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 216.58.201.110:443 chromewebstore.google.com udp
GB 142.250.187.238:443 accounts.youtube.com tcp
GB 142.250.187.238:443 accounts.youtube.com tcp
GB 216.58.201.110:443 chromewebstore.google.com tcp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 securitydomain-pa.googleapis.com udp
GB 172.217.169.74:443 securitydomain-pa.googleapis.com tcp
GB 172.217.169.74:443 securitydomain-pa.googleapis.com tcp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
NL 142.250.102.94:443 accounts.google.com.vn tcp
US 8.8.8.8:53 74.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 188.184.233.64.in-addr.arpa udp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 142.250.187.238:443 ogs.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.187.238:443 ogs.google.com tcp
GB 142.250.187.238:443 ogs.google.com udp
GB 216.58.204.67:443 update.googleapis.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
GB 142.250.200.35:443 google.com.vn tcp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
GB 142.250.187.238:443 ogs.google.com udp
GB 142.250.178.10:443 remotedesktop-pa.googleapis.com tcp
NL 108.177.96.94:443 beacons2.gvt2.com tcp
NL 108.177.96.94:443 beacons2.gvt2.com tcp
NL 108.177.96.94:443 beacons2.gvt2.com udp
NL 108.177.96.94:443 beacons2.gvt2.com udp
GB 142.250.178.10:443 remotedesktop-pa.googleapis.com udp
US 74.125.247.128:3478 udp
US 74.125.247.128:3478 tcp
US 8.8.8.8:53 26c11a5b-7730-435f-bc24-ed5b341b87b5.local udp
DE 116.202.162.252:58417 udp
US 8.8.8.8:53 252.162.202.116.in-addr.arpa udp
GB 142.250.200.35:443 id.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 108.177.96.94:443 beacons2.gvt2.com tcp
GB 172.217.169.3:443 beacons.gvt2.com tcp
NL 108.177.96.94:443 beacons2.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com udp
GB 142.250.187.238:443 remotedesktop.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.200.35:443 id.google.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
DE 128.116.123.3:443 locale.roblox.com tcp
DE 128.116.123.3:443 locale.roblox.com tcp
US 8.8.8.8:53 js.rbxcdn.com udp
DE 128.116.123.3:443 auth.roblox.com udp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
GB 108.138.217.67:443 static.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
GB 18.245.253.62:443 js.rbxcdn.com tcp
NL 128.116.21.3:443 roblox.com tcp
US 172.64.154.86:443 roblox-api.arkoselabs.com tcp
US 8.8.8.8:53 62.253.245.18.in-addr.arpa udp
US 8.8.8.8:53 apis.roblox.com udp
DE 128.116.123.3:443 apis.roblox.com tcp
US 172.64.154.86:443 roblox-api.arkoselabs.com udp
BE 88.221.83.162:443 apis.rbxcdn.com tcp
GB 216.137.44.2:443 css.rbxcdn.com tcp
DE 128.116.123.3:443 apis.roblox.com udp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
GB 142.250.187.196:443 www.google.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 216.58.204.67:443 update.googleapis.com udp
GB 142.250.187.238:443 remotedesktop.google.com tcp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
NL 23.62.61.97:443 www.bing.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.200.35:443 id.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 142.250.187.238:443 remotedesktop.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.187.234:443 optimizationguide-pa.googleapis.com tcp
DE 128.116.123.3:443 apis.roblox.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
DE 128.116.123.3:443 apis.roblox.com udp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com tcp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com tcp
DE 128.116.123.3:443 apis.roblox.com udp
BE 88.221.83.162:443 apis.rbxcdn.com tcp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
GB 108.138.217.124:443 static.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 216.137.44.28:443 css.rbxcdn.com tcp
US 8.8.8.8:53 assetgame.roblox.com udp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
GB 142.250.187.206:443 clients4.google.com tcp
GB 142.250.187.238:443 remotedesktop.google.com udp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com udp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
DE 128.116.123.3:443 trades.roblox.com tcp
DE 128.116.123.4:443 lms.roblox.com tcp
US 8.8.8.8:53 thumbnails.roblox.com udp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 privatemessages.roblox.com udp
GB 104.91.71.146:443 tr.rbxcdn.com tcp
GB 216.137.44.8:443 images.rbxcdn.com tcp
US 8.8.8.8:53 chat.roblox.com udp
US 8.8.8.8:53 contacts.roblox.com udp
US 8.8.8.8:53 notifications.roblox.com udp
GB 108.138.217.124:443 static.rbxcdn.com tcp
US 8.8.8.8:53 lax4-128-116-63-3.roblox.com udp
US 8.8.8.8:53 c0ak.rbxcdn.com udp
US 8.8.8.8:53 roblox-poc.global.ssl.fastly.net udp
US 8.8.8.8:53 iad4-128-116-102-3.roblox.com udp
US 8.8.8.8:53 waw1-128-116-124-3.roblox.com udp
US 8.8.8.8:53 sin2-128-116-97-3.roblox.com udp
US 8.8.8.8:53 sea1-128-116-115-3.roblox.com udp
US 8.8.8.8:53 mia2-128-116-127-3.roblox.com udp
PL 128.116.124.3:443 waw1-128-116-124-3.roblox.com tcp
US 128.116.102.3:443 iad4-128-116-102-3.roblox.com tcp
GB 128.116.119.3:443 lhr2-128-116-119-3.roblox.com tcp
US 151.101.1.194:443 roblox-poc.global.ssl.fastly.net tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
BE 2.17.107.152:443 c0ak.rbxcdn.com tcp
US 128.116.63.3:443 lax4-128-116-63-3.roblox.com tcp
US 128.116.127.3:443 mia2-128-116-127-3.roblox.com tcp
US 128.116.115.3:443 sea1-128-116-115-3.roblox.com tcp
DE 52.57.179.204:443 cs.ns1p.net tcp
DE 52.57.179.204:443 cs.ns1p.net tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
GB 216.137.44.28:443 css.rbxcdn.com tcp
US 8.8.8.8:53 3.63.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.127.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.115.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.97.116.128.in-addr.arpa udp
US 128.116.45.3:443 mia4-128-116-45-3.roblox.com tcp
GB 216.58.204.67:443 update.googleapis.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
DE 128.116.123.4:443 lms.roblox.com udp
DE 128.116.123.4:443 lms.roblox.com tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
SG 128.116.97.3:443 sin2-128-116-97-3.roblox.com tcp
GB 18.244.114.69:443 t3.rbxcdn.com tcp
GB 108.138.233.127:443 t6.rbxcdn.com tcp
GB 18.244.114.69:443 t3.rbxcdn.com tcp
NL 23.62.61.97:443 www.bing.com tcp
GB 128.116.119.3:443 lhr2-128-116-119-3.roblox.com tcp
GB 18.244.155.97:443 create.roblox.com tcp
US 34.120.195.249:443 o293668.ingest.sentry.io tcp
DE 128.116.123.3:443 users.roblox.com tcp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
GB 99.84.11.52:443 doy2mn9upadnk.cloudfront.net tcp
GB 99.84.9.116:443 webblox.roblox.com tcp
GB 99.84.9.116:443 webblox.roblox.com tcp
GB 99.84.9.116:443 webblox.roblox.com tcp
GB 99.84.11.52:443 doy2mn9upadnk.cloudfront.net tcp
GB 143.204.194.74:443 t1.rbxcdn.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
GB 13.224.245.39:443 setup.rbxcdn.com tcp
GB 13.224.245.39:443 setup.rbxcdn.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 172.217.169.46:443 play.google.com udp
GB 142.250.187.238:443 ogs.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 216.58.212.194:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.212.194:443 googleads.g.doubleclick.net udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.238:443 ogs.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
US 172.66.42.246:443 www.safetydetectives.com tcp
US 172.66.42.246:443 www.safetydetectives.com tcp
US 172.66.42.246:443 www.safetydetectives.com udp
US 204.79.197.237:443 bat.bing.com tcp
US 45.55.107.35:443 wsknow.net tcp
US 45.55.107.35:443 wsknow.net tcp
US 45.55.107.35:443 wsknow.net tcp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 216.239.36.181:443 analytics.google.com tcp
BE 74.125.71.154:443 stats.g.doubleclick.net tcp
US 216.239.36.181:443 analytics.google.com udp
US 8.8.8.8:53 chromewebstore.google.com udp
GB 216.58.201.110:443 chromewebstore.google.com udp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
GB 13.224.245.39:443 setup.rbxcdn.com tcp
GB 13.224.245.39:443 setup.rbxcdn.com tcp
GB 13.224.245.39:443 setup.rbxcdn.com tcp
N/A 127.0.0.1:54875 tcp
N/A 127.0.0.1:54879 tcp
N/A 127.0.0.1:54882 tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 remotedesktop-pa.googleapis.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
IE 20.166.2.191:443 msedge.api.cdp.microsoft.com tcp
US 199.232.210.172:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
US 216.239.36.181:443 analytics.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 172.66.42.246:443 www.safetydetectives.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
GB 95.101.143.192:443 tcp
GB 95.101.143.192:443 tcp
NL 23.62.61.194:443 r.bing.com tcp
NL 23.62.61.194:443 r.bing.com tcp
NL 23.62.61.194:443 r.bing.com tcp
NL 23.62.61.194:443 r.bing.com tcp
NL 23.62.61.194:443 r.bing.com tcp
NL 23.62.61.194:443 r.bing.com tcp
US 52.123.128.254:443 dual-s-ring.msedge.net tcp
SE 184.31.15.154:443 ow1.res.office365.com tcp
US 8.8.8.8:53 154.15.31.184.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 172.217.169.46:443 support.google.com udp
GB 172.217.169.46:443 support.google.com tcp
GB 172.217.169.46:443 support.google.com tcp
GB 172.217.169.46:443 support.google.com udp
GB 216.58.212.194:443 googleads.g.doubleclick.net udp
GB 172.217.169.46:443 support.google.com tcp
GB 142.250.180.10:443 moltron-pa.clients6.google.com udp
GB 172.217.169.46:443 support.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.200.59:443 storage.googleapis.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.178.10:443 waa-pa.clients6.google.com tcp
GB 142.250.200.10:443 remotedesktop-pa.googleapis.com udp
GB 142.250.200.10:443 remotedesktop-pa.googleapis.com tcp
GB 142.250.178.10:443 waa-pa.clients6.google.com udp
GB 142.250.178.10:443 waa-pa.clients6.google.com udp
GB 142.250.180.10:443 moltron-pa.clients6.google.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.180.10:443 moltron-pa.clients6.google.com udp
IN 142.250.195.227:443 beacons2.gvt2.com udp
US 192.178.49.163:443 beacons.gvt2.com udp
IN 142.250.195.227:443 beacons2.gvt2.com tcp
IN 142.250.195.227:443 beacons2.gvt2.com tcp
GB 142.250.187.238:443 ogs.google.com udp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
DE 128.116.123.3:443 apis.roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 216.137.44.38:443 css.rbxcdn.com tcp
GB 108.138.217.65:443 static.rbxcdn.com tcp
GB 108.138.217.65:443 static.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 18.245.253.103:443 js.rbxcdn.com tcp
GB 216.137.44.44:443 images.rbxcdn.com tcp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
GB 128.116.119.3:443 roblox.com tcp
US 104.18.33.170:443 roblox-api.arkoselabs.com tcp
US 8.8.8.8:53 65.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 metrics.roblox.com udp
US 8.8.8.8:53 metrics.roblox.com udp
GB 216.137.44.38:443 css.rbxcdn.com tcp
DE 128.116.123.3:443 metrics.roblox.com udp
DE 128.116.123.3:443 metrics.roblox.com tcp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
BE 88.221.83.98:443 apis.rbxcdn.com tcp
US 104.18.33.170:443 roblox-api.arkoselabs.com udp
DE 128.116.123.3:443 metrics.roblox.com udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google udp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
GB 216.137.44.8:443 images.rbxcdn.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
GB 108.138.233.44:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 economy.roblox.com udp
DE 128.116.123.3:443 economy.roblox.com tcp
US 8.8.8.8:53 44.233.138.108.in-addr.arpa udp
US 8.8.8.8:53 64.15.31.184.in-addr.arpa udp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
N/A 127.0.0.1:55507 tcp
N/A 127.0.0.1:55517 tcp
N/A 127.0.0.1:55527 tcp
DE 128.116.123.3:443 assetdelivery.roblox.com udp
DE 128.116.123.3:443 assetdelivery.roblox.com udp
N/A 127.0.0.1:55532 tcp
N/A 127.0.0.1:55536 tcp
N/A 127.0.0.1:55539 tcp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
N/A 127.0.0.1:55980 tcp
N/A 127.0.0.1:56172 tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
N/A 127.0.0.1:57399 tcp
N/A 127.0.0.1:57401 tcp
N/A 127.0.0.1:57403 tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
GB 108.138.233.44:443 t6.rbxcdn.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
GB 128.116.33.33:65057 udp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
GB 172.217.169.46:443 support.google.com udp
GB 108.138.233.79:443 c7.rbxcdn.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
US 8.8.8.8:53 79.233.138.108.in-addr.arpa udp
US 8.8.8.8:53 chat.roblox.com udp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
US 8.8.8.8:53 c3.rbxcdn.com udp
GB 216.137.44.113:443 c3.rbxcdn.com tcp
US 8.8.8.8:53 c0.rbxcdn.com udp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
DE 128.116.123.3:443 chat.roblox.com tcp
GB 18.239.236.122:443 c0.rbxcdn.com tcp
GB 216.137.44.113:443 c3.rbxcdn.com tcp
US 8.8.8.8:53 c5.rbxcdn.com udp
US 8.8.8.8:53 c6.rbxcdn.com udp
GB 108.138.217.6:443 c5.rbxcdn.com tcp
GB 108.138.217.6:443 c5.rbxcdn.com tcp
GB 108.138.217.101:443 c6.rbxcdn.com tcp
GB 108.138.217.6:443 c5.rbxcdn.com tcp
US 8.8.8.8:53 t3.rbxcdn.com udp
US 8.8.8.8:53 t4.rbxcdn.com udp
GB 18.154.84.72:443 t7.rbxcdn.com tcp
GB 18.154.84.72:443 t7.rbxcdn.com tcp
GB 18.245.253.21:443 c2.rbxcdn.com tcp
GB 18.244.114.69:443 t3.rbxcdn.com tcp
GB 18.244.114.69:443 t3.rbxcdn.com tcp
US 8.8.8.8:53 6.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 101.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 72.84.154.18.in-addr.arpa udp
US 8.8.8.8:53 21.253.245.18.in-addr.arpa udp
GB 108.138.217.55:443 t4.rbxcdn.com tcp
US 8.8.8.8:53 55.217.138.108.in-addr.arpa udp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
GB 142.250.180.10:443 moltron-pa.clients6.google.com udp
US 8.8.8.8:53 optimizationguide-pa.googleapis.com udp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com tcp
GB 142.250.200.14:443 notifications.google.com tcp
GB 142.250.200.14:443 notifications.google.com tcp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com udp
GB 142.250.180.10:443 optimizationguide-pa.googleapis.com tcp
GB 142.250.187.238:443 drive.google.com tcp
US 8.8.8.8:53 drive.usercontent.google.com udp
GB 142.250.179.225:443 drive.usercontent.google.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 225.179.250.142.in-addr.arpa udp
GB 142.250.179.225:443 drive.usercontent.google.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
N/A 127.0.0.1:57426 tcp
N/A 127.0.0.1:57430 tcp
N/A 127.0.0.1:57511 tcp
N/A 127.0.0.1:57547 tcp
N/A 127.0.0.1:57826 tcp
N/A 127.0.0.1:57828 tcp
N/A 127.0.0.1:57830 tcp
N/A 127.0.0.1:57832 tcp
N/A 127.0.0.1:57834 tcp
N/A 127.0.0.1:57836 tcp
N/A 127.0.0.1:57838 tcp
N/A 127.0.0.1:57840 tcp
N/A 127.0.0.1:57850 tcp
N/A 127.0.0.1:57854 tcp
GB 172.217.16.246:443 i.ytimg.com udp
N/A 127.0.0.1:57867 tcp
N/A 127.0.0.1:57882 tcp
N/A 127.0.0.1:57890 tcp
GB 172.217.16.246:443 i.ytimg.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
N/A 127.0.0.1:57894 tcp
GB 172.217.16.246:443 i.ytimg.com tcp
N/A 127.0.0.1:57899 tcp
GB 216.58.212.194:443 googleads.g.doubleclick.net udp
GB 216.58.212.194:443 googleads.g.doubleclick.net tcp
N/A 127.0.0.1:57904 tcp
N/A 127.0.0.1:57907 tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com udp
GB 216.58.212.234:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 128.116.123.3:443 inventory.roblox.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 216.58.212.234:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 ogs.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.187.238:443 ogs.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.238:443 ogs.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
N/A 127.0.0.1:59152 tcp
N/A 127.0.0.1:59155 tcp
N/A 127.0.0.1:59157 tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
N/A 127.0.0.1:59169 tcp
N/A 127.0.0.1:59172 tcp
N/A 127.0.0.1:59175 tcp
GB 172.217.169.42:443 remotedesktop-pa.googleapis.com udp
N/A 127.0.0.1:59177 tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
N/A 127.0.0.1:59518 tcp
N/A 127.0.0.1:59520 tcp
N/A 127.0.0.1:59522 tcp
IE 20.166.2.191:443 msedge.api.cdp.microsoft.com tcp
N/A 127.0.0.1:59586 tcp
N/A 127.0.0.1:59593 tcp
DE 128.116.123.3:443 ecsv2.roblox.com tcp
US 199.232.210.172:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
N/A 127.0.0.1:59596 tcp
N/A 127.0.0.1:59599 tcp
N/A 127.0.0.1:59605 tcp
N/A 127.0.0.1:59616 tcp
N/A 127.0.0.1:59620 tcp
N/A 127.0.0.1:59645 tcp
N/A 127.0.0.1:59654 tcp
N/A 127.0.0.1:59679 tcp
N/A 127.0.0.1:59681 tcp
N/A 127.0.0.1:59683 tcp
N/A 127.0.0.1:59757 tcp
N/A 127.0.0.1:59759 tcp
N/A 127.0.0.1:59761 tcp
N/A 127.0.0.1:59763 tcp
N/A 127.0.0.1:59811 tcp
N/A 127.0.0.1:59813 tcp
N/A 127.0.0.1:59891 tcp
N/A 127.0.0.1:59915 tcp
N/A 127.0.0.1:59917 tcp
N/A 127.0.0.1:59919 tcp
N/A 127.0.0.1:60084 tcp
N/A 127.0.0.1:60131 tcp
N/A 127.0.0.1:60133 tcp
N/A 127.0.0.1:60135 tcp
N/A 127.0.0.1:60137 tcp
N/A 127.0.0.1:60139 tcp
N/A 127.0.0.1:60141 tcp
N/A 127.0.0.1:60155 tcp
N/A 127.0.0.1:60397 tcp
N/A 127.0.0.1:60458 tcp
GB 172.217.169.46:443 play.google.com udp
GB 216.58.212.234:443 waa-pa.clients6.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 216.58.212.234:443 waa-pa.clients6.google.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:60621 tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:60630 tcp
N/A 127.0.0.1:60633 tcp
N/A 127.0.0.1:60635 tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 create.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 18.244.155.97:443 create.roblox.com tcp
US 8.8.8.8:53 webblox.roblox.com udp
DE 128.116.123.3:443 ecsv2.roblox.com udp
GB 216.58.212.234:443 optimizationguide-pa.googleapis.com udp
US 18.245.175.104:443 webblox.roblox.com tcp
US 8.8.8.8:53 o293668.ingest.sentry.io udp
US 34.120.195.249:443 o293668.ingest.sentry.io udp
US 8.8.8.8:53 104.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 locale.roblox.com udp
US 8.8.8.8:53 users.roblox.com udp
US 18.245.175.104:443 webblox.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
GB 18.244.155.97:443 create.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
GB 216.58.212.202:443 g.tenor.com udp
GB 18.244.155.97:443 create.roblox.com tcp
SE 184.31.15.64:443 tr.rbxcdn.com tcp
DE 128.116.123.3:443 ncs.roblox.com udp
DE 128.116.123.3:443 ncs.roblox.com tcp
GB 18.244.155.97:443 create.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
N/A 127.0.0.1:60994 tcp
DE 128.116.123.3:443 ncs.roblox.com udp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com udp
DE 128.116.123.3:443 ncs.roblox.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
N/A 127.0.0.1:61043 tcp
GB 172.217.169.74:443 media.tenor.com tcp
GB 216.58.212.234:443 media.tenor.com tcp
GB 216.58.212.234:443 media.tenor.com tcp
GB 216.58.212.234:443 media.tenor.com tcp
US 13.107.253.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
US 13.107.253.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
US 13.107.253.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
NL 13.95.26.4:443 msedge.api.cdp.microsoft.com tcp
US 199.232.210.172:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
NL 13.95.26.4:443 msedge.api.cdp.microsoft.com tcp
US 199.232.210.172:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 172.217.16.234:443 realtimesupport.clients6.google.com udp
GB 172.217.16.234:443 realtimesupport.clients6.google.com tcp
N/A 127.0.0.1:62532 tcp
GB 172.217.169.74:443 media.tenor.com tcp
GB 142.250.179.238:443 play.google.com udp
N/A 127.0.0.1:86 tcp
US 13.107.253.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
GB 172.217.169.46:443 support.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 172.217.16.234:443 realtimesupport.clients6.google.com udp
GB 172.217.16.234:443 realtimesupport.clients6.google.com tcp
DE 128.116.123.3:443 ncs.roblox.com udp
DE 128.116.123.3:443 ncs.roblox.com tcp
US 8.8.8.8:53 ogs.google.com udp
GB 142.250.187.238:443 ogs.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.187.234:443 optimizationguide-pa.googleapis.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 172.217.16.246:443 i.ytimg.com udp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
US 104.22.55.209:443 emojipedia.org tcp
US 8.8.8.8:53 static.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 104.22.55.209:443 emojipedia.org tcp
US 104.22.55.209:443 emojipedia.org tcp
US 8.8.8.8:53 b.pub.network udp
US 8.8.8.8:53 a.pub.network udp
US 104.16.124.108:443 em-content.zobj.net tcp
US 104.18.21.206:443 a.pub.network tcp
US 151.101.1.194:443 confiant-integrations.global.ssl.fastly.net tcp
US 130.211.23.194:443 api.btloader.com tcp
US 104.22.74.216:443 btloader.com tcp
US 8.8.8.8:53 secure.quantserve.com udp
DE 91.228.74.159:443 secure.quantserve.com tcp
GB 143.204.68.55:443 cmp.quantcast.com tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
US 34.160.152.31:443 d.pub.network tcp
US 104.18.21.206:443 a.pub.network tcp
US 34.160.152.31:443 d.pub.network tcp
US 34.36.88.89:443 config.content-settings.com tcp
GB 13.224.245.87:443 static.hotjar.com tcp
US 34.160.128.112:443 api.floors.dev tcp
US 34.160.152.31:443 d.pub.network tcp
US 34.111.152.239:443 optimise.net tcp
US 8.8.8.8:53 script.hotjar.com udp
GB 142.250.200.10:443 content-autofill.googleapis.com tcp
FR 18.164.52.95:443 script.hotjar.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 108.124.16.104.in-addr.arpa udp
US 8.8.8.8:53 206.21.18.104.in-addr.arpa udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 216.74.22.104.in-addr.arpa udp
US 8.8.8.8:53 55.68.204.143.in-addr.arpa udp
US 8.8.8.8:53 159.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 31.152.160.34.in-addr.arpa udp
US 8.8.8.8:53 9.223.224.13.in-addr.arpa udp
US 8.8.8.8:53 147.128.46.52.in-addr.arpa udp
US 8.8.8.8:53 89.88.36.34.in-addr.arpa udp
US 8.8.8.8:53 87.245.224.13.in-addr.arpa udp
US 8.8.8.8:53 112.128.160.34.in-addr.arpa udp
US 8.8.8.8:53 239.152.111.34.in-addr.arpa udp
US 8.8.8.8:53 95.52.164.18.in-addr.arpa udp
US 104.18.21.206:443 a.pub.network udp
US 104.18.43.90:443 cdn.confiant-integrations.net tcp
US 104.26.9.50:443 freestar-io.videoplayerhub.com tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
US 104.22.74.216:443 btloader.com tcp
US 104.18.43.90:443 cdn.confiant-integrations.net udp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 172.67.36.110:443 cdn.hadronid.net tcp
DE 162.19.138.119:443 id5-sync.com tcp
US 34.160.152.31:443 d.pub.network udp
US 34.160.46.1:443 fid.agkn.com tcp
GB 18.245.187.42:443 live.primis.tech tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 52.223.40.198:443 match.adsrvr.org tcp
US 104.22.5.69:443 id.hadron.ad.gt tcp
US 104.22.5.69:443 id.hadron.ad.gt tcp
US 104.22.5.69:443 id.hadron.ad.gt tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 108.156.39.35:443 config.aps.amazon-adsystem.com tcp
US 44.199.125.215:443 idx.liadm.com tcp
US 35.155.127.214:443 a.usbrowserspeed.com tcp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 8.8.8.8:53 ads.yieldmo.com udp
GB 18.245.187.42:443 live.primis.tech udp
US 8.8.8.8:53 119.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 110.36.67.172.in-addr.arpa udp
US 8.8.8.8:53 50.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 90.43.18.104.in-addr.arpa udp
GB 23.49.161.153:443 secure.cdn.fastclick.net tcp
US 172.67.38.106:443 cdn.id5-sync.com tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 34.120.63.153:443 prebid.media.net tcp
US 34.120.63.153:443 prebid.media.net tcp
US 34.120.63.153:443 prebid.media.net tcp
US 34.120.63.153:443 prebid.media.net tcp
DE 141.95.98.65:443 id5-sync.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
GB 18.245.187.38:443 rules.quantcount.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
GB 142.250.179.226:443 www.googletagservices.com tcp
US 130.211.23.194:443 api.btloader.com udp
US 34.235.31.45:443 rp.liadm.com tcp
US 34.107.140.113:443 s2s.t13.io udp
US 34.120.63.153:443 prebid.media.net udp
GB 172.217.169.65:443 248b94197f2fa8be3f3a3f2ae57d8920.safeframe.googlesyndication.com tcp
US 35.190.125.54:443 site-config.com tcp
US 172.67.23.234:443 id.hadron.ad.gt tcp
US 35.190.125.54:443 site-config.com udp
GB 18.165.201.45:443 video.primis.tech tcp
US 104.26.2.122:443 a.remarketstats.com tcp
US 8.8.8.8:53 113.140.107.34.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 6.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 153.161.49.23.in-addr.arpa udp
US 8.8.8.8:53 38.187.245.18.in-addr.arpa udp
US 8.8.8.8:53 65.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 29.107.203.18.in-addr.arpa udp
US 8.8.8.8:53 215.125.199.44.in-addr.arpa udp
US 8.8.8.8:53 214.127.155.35.in-addr.arpa udp
US 8.8.8.8:53 45.31.235.34.in-addr.arpa udp
US 8.8.8.8:53 65.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 54.125.190.35.in-addr.arpa udp
US 8.8.8.8:53 234.23.67.172.in-addr.arpa udp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
US 104.18.36.155:443 htlb.casalemedia.com tcp
GB 99.84.9.107:443 rtb.primis.tech tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
BE 88.221.83.160:443 cdn.doubleverify.com tcp
GB 216.58.204.70:443 s0.2mdn.net tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 52.54.152.103:443 i.liadm.com tcp
GB 216.58.204.70:443 s0.2mdn.net udp
US 35.153.86.138:443 thrtle.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
GB 142.250.187.193:443 cdn.ampproject.org tcp
GB 142.250.187.193:443 cdn.ampproject.org tcp
GB 142.250.187.193:443 cdn.ampproject.org tcp
GB 142.250.187.193:443 cdn.ampproject.org tcp
GB 142.250.187.193:443 cdn.ampproject.org tcp
GB 142.250.179.226:443 googleads4.g.doubleclick.net tcp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
US 130.211.44.5:443 tps.doubleverify.com tcp
DE 128.116.123.3:443 ncs.roblox.com tcp
US 104.22.5.69:443 id.hadron.ad.gt tcp
US 8.8.8.8:53 138.86.153.35.in-addr.arpa udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
GB 216.58.204.70:443 s0.2mdn.net tcp
IE 63.33.74.9:443 id.crwdcntrl.net tcp
US 104.18.38.76:443 js-sec.indexww.com tcp
SE 104.73.92.198:443 ads.pubmatic.com tcp
US 8.8.8.8:53 5.44.211.130.in-addr.arpa udp
US 13.248.245.213:443 eb2.3lift.com tcp
BE 23.55.96.24:443 contextual.media.net tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
IE 18.203.107.29:443 ads.yieldmo.com tcp
US 8.8.8.8:53 image6.pubmatic.com udp
US 8.8.8.8:53 csi.gstatic.com udp
BE 23.55.98.169:443 eus.rubiconproject.com tcp
US 8.8.8.8:53 76.38.18.104.in-addr.arpa udp
US 142.251.46.195:443 csi.gstatic.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 8.8.8.8:53 108.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 24.96.55.23.in-addr.arpa udp
US 104.18.36.155:443 dsum-sec.casalemedia.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com udp
US 142.251.46.195:443 csi.gstatic.com tcp
US 52.54.152.103:443 i.liadm.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 18.165.201.45:443 video.primis.tech udp
US 52.54.152.103:443 i.liadm.com tcp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 cms.quantserve.com udp
US 35.186.193.173:443 cm.ctnsnet.com tcp
NL 35.214.224.211:443 csync.loopme.me tcp
US 172.64.149.180:443 cdn.indexww.com tcp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
US 172.64.149.180:443 cdn.indexww.com tcp
IE 108.128.227.12:443 d.adroll.com tcp
DE 91.228.74.200:443 cms.quantserve.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
FR 45.137.176.88:443 sync.adotmob.com tcp
DK 37.157.5.84:443 c1.adform.net tcp
US 35.186.193.173:443 cm.ctnsnet.com udp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 200.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 84.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 token.rubiconproject.com udp
NL 69.173.156.149:443 token.rubiconproject.com tcp
DE 37.252.171.21:443 ib.adnxs.com tcp
US 104.22.55.209:443 emojipedia.org tcp
N/A 127.0.0.1:63508 tcp
GB 142.250.187.196:443 www.google.com tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com udp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 99.84.9.107:443 rtb.primis.tech udp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
GB 143.204.68.41:443 c6.rbxcdn.com tcp
GB 108.138.217.7:443 c5.rbxcdn.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
US 104.21.5.162:443 analytics-api-5968537435-87c606c0de77.superbiz.gg tcp
US 8.8.8.8:53 c7.rbxcdn.com udp
GB 18.245.253.119:443 c7.rbxcdn.com tcp
GB 18.245.253.119:443 c7.rbxcdn.com tcp
US 8.8.8.8:53 7.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 162.5.21.104.in-addr.arpa udp
US 205.234.175.102:443 c0.rbxcdn.com tcp
US 8.8.8.8:53 economy.roblox.com udp
DE 128.116.123.3:443 economy.roblox.com tcp
DE 128.116.123.3:443 economy.roblox.com tcp
DE 128.116.123.3:443 economy.roblox.com tcp
DE 128.116.123.3:443 economy.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-942b100d01ae.superbiz.gg tcp
DE 128.116.123.3:443 economy.roblox.com tcp
DE 128.116.123.3:443 economy.roblox.com tcp
US 8.8.8.8:53 c1.rbxcdn.com udp
US 8.8.8.8:53 c3.rbxcdn.com udp
GB 108.138.217.66:443 c1.rbxcdn.com tcp
GB 143.204.176.17:443 c3.rbxcdn.com tcp
GB 143.204.176.17:443 c3.rbxcdn.com tcp
GB 18.245.253.76:443 c2.rbxcdn.com tcp
GB 143.204.176.17:443 c3.rbxcdn.com tcp
US 8.8.8.8:53 119.253.245.18.in-addr.arpa udp
US 8.8.8.8:53 158.133.67.172.in-addr.arpa udp
US 8.8.8.8:53 66.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 17.176.204.143.in-addr.arpa udp
US 8.8.8.8:53 76.253.245.18.in-addr.arpa udp
US 8.8.8.8:53 102.175.234.205.in-addr.arpa udp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-e18084b459e7.superbiz.gg tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:63703 tcp
N/A 127.0.0.1:63705 tcp
N/A 127.0.0.1:63709 tcp
US 104.21.5.162:443 analytics-api-5968537435-e18084b459e7.superbiz.gg tcp
GB 108.138.217.7:443 c5.rbxcdn.com tcp
GB 18.245.253.76:443 c2.rbxcdn.com tcp
GB 108.138.217.7:443 c5.rbxcdn.com tcp
US 172.67.133.158:443 analytics-api-5968537435-e18084b459e7.superbiz.gg tcp
N/A 127.0.0.1:63715 tcp
GB 18.154.84.22:443 c4.rbxcdn.com tcp
N/A 127.0.0.1:63717 tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
N/A 127.0.0.1:60861 udp
US 172.67.133.158:443 analytics-api-5968537435-e18084b459e7.superbiz.gg tcp
N/A 127.0.0.1:63736 tcp
N/A 127.0.0.1:63738 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 18.244.138.116:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:63744 tcp
N/A 127.0.0.1:63753 tcp
N/A 127.0.0.1:63755 tcp
N/A 127.0.0.1:63757 tcp
US 104.21.5.162:443 analytics-api-5968537435-e18084b459e7.superbiz.gg tcp
DE 128.116.123.3:443 friends.roblox.com tcp
N/A 127.0.0.1:63762 tcp
N/A 127.0.0.1:63772 tcp
N/A 127.0.0.1:63776 tcp
N/A 127.0.0.1:63793 tcp
N/A 127.0.0.1:63804 tcp
N/A 127.0.0.1:63807 tcp
N/A 127.0.0.1:63836 tcp
N/A 127.0.0.1:63838 tcp
N/A 127.0.0.1:63856 tcp
N/A 127.0.0.1:63858 tcp
N/A 127.0.0.1:63896 tcp
N/A 127.0.0.1:63899 tcp
N/A 127.0.0.1:63901 tcp
N/A 127.0.0.1:63905 tcp
N/A 127.0.0.1:63907 tcp
N/A 127.0.0.1:63931 tcp
N/A 127.0.0.1:63933 tcp
N/A 127.0.0.1:63953 tcp
N/A 127.0.0.1:63955 tcp
N/A 127.0.0.1:64038 tcp
N/A 127.0.0.1:64041 tcp
N/A 127.0.0.1:64092 tcp
N/A 127.0.0.1:64099 tcp
N/A 127.0.0.1:64101 tcp
N/A 127.0.0.1:64259 tcp
N/A 127.0.0.1:64280 tcp
N/A 127.0.0.1:64282 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 34.189.245.18.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
GB 142.250.187.206:443 clients2.google.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 52.29.193.33:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.75.47.4:443 btlr.sharethrough.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 64.233.181.94:443 beacons2.gvt2.com tcp
US 64.233.181.94:443 beacons2.gvt2.com udp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
DE 128.116.123.3:443 friends.roblox.com tcp
US 8.8.8.8:53 thumbnails.roblox.com udp
DE 128.116.123.3:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 www.roblox.com udp
DE 128.116.123.3:443 www.roblox.com tcp
US 8.8.8.8:53 users.roblox.com udp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:64521 tcp
N/A 127.0.0.1:64524 tcp
N/A 127.0.0.1:64527 tcp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:64549 tcp
N/A 127.0.0.1:64552 tcp
N/A 127.0.0.1:64558 tcp
DE 3.124.249.222:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
N/A 127.0.0.1:64577 tcp
N/A 127.0.0.1:64579 tcp
N/A 127.0.0.1:64581 tcp
N/A 127.0.0.1:64583 tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
GB 18.245.187.42:443 live.primis.tech udp
GB 99.84.9.107:443 rtb.primis.tech udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
US 8.8.8.8:53 73.239.197.18.in-addr.arpa udp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 173.220.245.18.in-addr.arpa udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:64643 tcp
N/A 127.0.0.1:64645 tcp
N/A 127.0.0.1:64647 tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
DE 18.197.239.73:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 240.169.73.3.in-addr.arpa udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.73.169.240:443 btlr.sharethrough.com tcp
GB 18.172.154.232:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 develop.roblox.com udp
DE 128.116.123.3:443 gameinternationalization.roblox.com tcp
DE 128.116.123.3:443 gameinternationalization.roblox.com tcp
US 8.8.8.8:53 assetdelivery.roblox.com udp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
DE 128.116.123.3:443 assetdelivery.roblox.com tcp
US 8.8.8.8:53 voice.roblox.com udp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
DE 128.116.123.3:443 groups.roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
DE 128.116.123.3:443 apis.roblox.com tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
DE 128.116.123.3:443 apis.roblox.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
GB 143.204.68.72:443 c6.rbxcdn.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
DE 128.116.123.3:443 apis.roblox.com tcp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 analytics-api-5968537435-b3f89a77e799.superbiz.gg udp
DE 128.116.123.3:443 locale.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-91ca2de2075c.superbiz.gg tcp
GB 18.245.253.99:443 c7.rbxcdn.com tcp
US 172.67.133.158:443 analytics-api-5968537435-91ca2de2075c.superbiz.gg tcp
US 8.8.8.8:53 99.253.245.18.in-addr.arpa udp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
DE 128.116.123.3:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-2918abff651a.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-2918abff651a.superbiz.gg tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 148.87.154.18.in-addr.arpa udp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
DE 128.116.123.3:443 inventory.roblox.com tcp
US 188.114.96.2:443 analytics-api-5968537435-1dbe19601db4.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-6eb26bcd8b45.superbiz.gg udp
US 188.114.96.2:443 analytics-api-5968537435-6eb26bcd8b45.superbiz.gg tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 analytics-api-5968537435-7c6b7c43bb6f.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-7c6b7c43bb6f.superbiz.gg tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 analytics-api-5968537435-78cac9401d92.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-60fd0e7dbf25.superbiz.gg tcp
US 104.21.5.162:443 analytics-api-5968537435-60fd0e7dbf25.superbiz.gg tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 128.116.123.3:443 assetgame.roblox.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
SE 184.31.15.65:443 tr.rbxcdn.com tcp
DE 3.68.142.144:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:64870 tcp
N/A 127.0.0.1:64872 tcp
N/A 127.0.0.1:64874 tcp
N/A 127.0.0.1:64877 tcp
N/A 127.0.0.1:64886 tcp
N/A 127.0.0.1:54016 udp
N/A 127.0.0.1:64901 tcp
N/A 127.0.0.1:64910 tcp
N/A 127.0.0.1:64912 tcp
N/A 127.0.0.1:64914 tcp
N/A 127.0.0.1:64929 tcp
N/A 127.0.0.1:64977 tcp
N/A 127.0.0.1:64979 tcp
N/A 127.0.0.1:64981 tcp
N/A 127.0.0.1:65014 tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:65072 tcp
N/A 127.0.0.1:65108 tcp
N/A 127.0.0.1:65146 tcp
N/A 127.0.0.1:65148 tcp
N/A 127.0.0.1:65178 tcp
N/A 127.0.0.1:65180 tcp
N/A 127.0.0.1:65188 tcp
N/A 127.0.0.1:65219 tcp
N/A 127.0.0.1:65222 tcp
N/A 127.0.0.1:65245 tcp
N/A 127.0.0.1:65247 tcp
N/A 127.0.0.1:65249 tcp
N/A 127.0.0.1:65269 tcp
N/A 127.0.0.1:65417 tcp
N/A 127.0.0.1:65474 tcp
DE 128.116.123.3:443 assetgame.roblox.com tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
N/A 127.0.0.1:65495 tcp
N/A 127.0.0.1:65500 tcp
DE 3.121.6.51:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 btlr.sharethrough.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:65516 tcp
N/A 127.0.0.1:65519 tcp
N/A 127.0.0.1:65521 tcp
N/A 127.0.0.1:65523 tcp
N/A 127.0.0.1:65525 tcp
N/A 127.0.0.1:65527 tcp
N/A 127.0.0.1:65529 tcp
N/A 127.0.0.1:65531 tcp
N/A 127.0.0.1:65533 tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:49262 tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:49335 tcp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
GB 18.154.87.148:443 aax.amazon-adsystem.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:49415 tcp
GB 142.250.187.206:443 img.youtube.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
DE 52.58.176.237:443 btlr.sharethrough.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.73.195.53:443 btlr.sharethrough.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
DE 3.73.195.53:443 btlr.sharethrough.com tcp
GB 18.245.220.173:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com udp
GB 142.250.187.202:443 jnn-pa.googleapis.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.179.238:443 www.youtube.com tcp
GB 172.217.169.46:443 support.google.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 142.250.187.238:443 www.youtube.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 172.217.16.246:443 i.ytimg.com udp
GB 172.217.16.246:443 i.ytimg.com tcp
US 8.8.8.8:53 static.doubleclick.net udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 216.58.213.6:443 static.doubleclick.net udp
GB 142.250.179.238:443 www.youtube.com udp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:49733 tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 142.250.180.14:443 encrypted-vtbn0.gstatic.com tcp
GB 142.250.187.202:443 jnn-pa.googleapis.com udp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 142.250.180.14:443 encrypted-vtbn0.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 172.217.169.46:443 support.google.com udp
US 8.8.8.8:53 storage.googleapis.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 216.58.201.123:443 storage.googleapis.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 waa-pa.clients6.google.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
GB 142.250.187.234:443 content-autofill.googleapis.com udp
GB 172.217.16.234:443 content-autofill.googleapis.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 142.250.187.234:443 content-autofill.googleapis.com tcp
GB 172.217.16.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 123.201.58.216.in-addr.arpa udp
GB 142.250.180.10:443 realtimesupport.clients6.google.com udp
GB 142.250.179.238:443 play.google.com udp
SE 184.31.15.154:443 ow1.res.office365.com tcp
GB 95.101.143.192:443 tcp
US 144.2.14.25:443 rum8.perf.linkedin.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 13.107.246.64:443 fp-afd.azurefd.net tcp
GB 20.108.172.194:443 19e93f15ac2c6fd4bc5ae3389472ee53.azr.footprintdns.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
NL 23.62.61.194:443 r.bing.com tcp
DE 128.116.123.3:443 assetgame.roblox.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
CA 34.95.44.106:443 e2c20.gcp.gvt2.com tcp
N/A 127.0.0.1:49997 tcp
US 192.178.49.163:443 beacons.gvt2.com tcp
GB 142.250.179.238:443 play.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
IN 216.58.196.99:443 beacons2.gvt2.com tcp
IN 216.58.196.99:443 beacons2.gvt2.com tcp
IN 216.58.196.99:443 beacons2.gvt2.com udp
GB 142.250.179.238:443 play.google.com udp
DE 128.116.123.3:443 assetgame.roblox.com tcp
N/A 127.0.0.1:50136 tcp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 142.250.187.206:443 clients4.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com udp
GB 172.217.16.246:443 i.ytimg.com tcp
GB 172.217.16.246:443 i.ytimg.com tcp
US 8.8.8.8:53 rr4---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.105:443 rr4---sn-5hne6nzs.googlevideo.com tcp
NL 74.125.8.105:443 rr4---sn-5hne6nzs.googlevideo.com tcp
US 8.8.8.8:53 rr4---sn-5hne6nsd.googlevideo.com udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
NL 172.217.132.9:443 rr4---sn-5hne6nsd.googlevideo.com udp
NL 74.125.8.166:443 rr1---sn-5hne6n6l.googlevideo.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.246:443 i.ytimg.com udp
US 8.8.8.8:53 ade.googlesyndication.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
US 173.194.140.10:443 rr5---sn-q4fzen7l.googlevideo.com udp
GB 142.250.180.1:443 yt3.ggpht.com udp
GB 172.217.16.225:443 lh5.googleusercontent.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.200.46:443 youtube.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.200.46:443 youtube.com tcp
GB 172.217.16.225:443 lh5.googleusercontent.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 172.217.16.225:443 lh5.googleusercontent.com tcp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
GB 142.250.187.238:443 accounts.youtube.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net tcp
NL 172.217.132.9:443 rr4---sn-5hne6nsd.googlevideo.com udp
GB 142.250.187.238:443 accounts.youtube.com tcp
NL 74.125.8.166:443 rr1---sn-5hne6n6l.googlevideo.com udp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
DE 128.116.123.3:443 ephemeralcounters.api.roblox.com tcp
GB 142.250.187.202:443 content-autofill.googleapis.com udp
NL 74.125.100.200:443 rr3---sn-5hne6nz6.googlevideo.com udp
GB 172.217.16.234:443 content-autofill.googleapis.com udp
GB 142.250.179.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 encrypted-tbn2.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn3.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
GB 142.250.180.14:443 www.youtube.com tcp
GB 142.250.180.14:443 www.youtube.com tcp
GB 142.250.180.14:443 www.youtube.com tcp
N/A 127.0.0.1:50795 tcp
N/A 127.0.0.1:50820 tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 www.youtube.com udp
GB 142.250.179.238:443 www.youtube.com tcp
GB 142.250.180.10:443 waa-pa.clients6.google.com udp
GB 142.250.180.10:443 waa-pa.clients6.google.com tcp
NL 172.217.132.198:443 rr1---sn-5hnednss.googlevideo.com udp
US 8.8.8.8:53 rr3---sn-5hne6nzs.googlevideo.com udp
NL 74.125.8.104:443 rr3---sn-5hne6nzs.googlevideo.com udp
US 173.194.24.135:443 rr2---sn-q4flrnsk.googlevideo.com udp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 0c705388d79c00418e5c1751159353e3
SHA1 aaeafebce5483626ef82813d286511c1f353f861
SHA256 697bd270be634688c48210bee7c5111d7897fd71a6af0bbb2141cefd2f8e4a4d
SHA512 c1614e79650ab9822c4e175ba528ea4efadc7a6313204e4e69b4a9bd06327fb92f56fba95f2595885b1604ca8d8f6b282ab542988995c674d89901da2bc4186f

\??\pipe\LOCAL\crashpad_3112_EDLNRKVSNWNFYDYS

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 0d84d1490aa9f725b68407eab8f0030e
SHA1 83964574467b7422e160af34ef024d1821d6d1c3
SHA256 40c09bb0248add089873d1117aadefb46c1b4e23241ba4621f707312de9c829e
SHA512 f84552335ff96b5b4841ec26e222c24af79b6d0271d27ad05a9dfcee254a7b9e9019e7fac0def1245a74754fae81f7126499bf1001615073284052aaa949fa00

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 dfd5b4510d992198e8fd10e6bb11b798
SHA1 d5c990d552512b58592482f1269ae83463db2ed8
SHA256 eb8f664584dd863c54a7b88d191c743dae9d8e84ec7d8b91de3341825ada59b3
SHA512 ba191258ef9a1a5991573c5d47e69a21b952764b262ad5d9dd0fd524f41efd1086330ee203823b715f007fba6aab2a371544601e5b8ac3ab25b05bb4aac547ac

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 bcc724748ca3ab85b8555eba114203ce
SHA1 99179fa375b60ed29676095e89a3baa6c076ca65
SHA256 ec7b7864327de1108289f5a5de007285ca3e41d010df41f93b57da6dabc3c441
SHA512 1e29beaf9d455b3a11297a4808f9d3b99ccd268a9a8b735894a3e9ce2908be6c016e8b6aedaeeb54ce1e73c9400afe61a1e4552516691f2544588e768257709a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7605d7c669a00ab3b66641a8691c9bef
SHA1 b727094067d6002ab3aed5cbd4bfe18dfcfbafc1
SHA256 ab2f45e7bee908c0b96317a3d2edf88a8bdaccb600c843c02eb97129194cedb9
SHA512 52ddf89504fdd233b5a8ef5443fd0e1c8add5f494d7da1f2b1563be03277dd1466e8cbf412e9a84e9deaf6d4d85bf433576869fd14141b93bb8496e87363cb0a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b98920a13209b60f8b6a22a91f61993e
SHA1 b5237f10ffbc25149c9e1d8621fe34b26d837f23
SHA256 3ebe38212eb24ce7ff4d57393366ebc074055adb9f32c25549c86d8e09eea628
SHA512 8f6db29c34a0274a4ff5c6723a3029e15ff7e42ba8b464fd04591c02108f08e25508f19d4ceb7e5f1e507148ef3deebc227d9753cb2df1fd12044df67655c31d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 2d8e220f9e8f943a9167a48d8c657b9a
SHA1 a77c23f22fac837c584b9998c64ce6d2d216dcf6
SHA256 9b7962e4270010b91c4f6cb12980e353aed150bb52e9713261817f2002a6796f
SHA512 24cf6c225cf74b9f2c1552ead2524715548ca61b60107a96c43340b6aa279db9f8aae08fdd165c796169b251545cc7634d9b3b67f97714a2be9c684ab0fafc25

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 a5fd70695829488c90ab5f626cd4e89e
SHA1 8ec7a264615e1bf8afb43e5717864ede236e5b63
SHA256 b1ad6135a56951b3b7d204c2172a25797f0d202fa7a2027a1bbd783df492d8a1
SHA512 9d0489d64342faf7938178247b2fc5fbf7e5dd2e1a0aee9c50773e15405e327cdf86da40618776eae70e17453d7b8fe3a82eaf2526228fac031b9e6881a0150a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3a93b2fa24049be1df68dc673649e1cf
SHA1 2df93a17414a4d91d144d42535bf8deb58008489
SHA256 a5172daa565c83aaf134f837960394159b326fae88db664b378facdef5e7e121
SHA512 3e750e73ece3bcf8cb311c238d502cbc545baed7f0410323b2327771e98780966403c818321dc75fb291141d91fba370278275debd431a23a64b80d3822bf9fa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 27ff826561b7a7694f1bfe6dc56d1147
SHA1 f902ec366377251f4405a2332e2382a7d25751cb
SHA256 aaf23c29d67326b77928d3faf8531a5e8deefe5a425c344820b71a9c83bc90ae
SHA512 f26d1c4a83fc7d7a7f54d66bf0377d892b3142fe660ec53f3d66517f0ad4f4d5d4c6c0bab8879fb005277eebced2c4f5880c0fe1051817319854a8704950cc6d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 3e3ea1e07a9bbde3dcd023dba0b08b7c
SHA1 acf2a904c28b919113d72a8d36e863063a170abb
SHA256 dc9188b4260e4fb4aef0deadab59234e1e1f5fa856fac25e997daedde0bc0166
SHA512 cb328da56eff829af8b799add36bf0a9db2ab45262f092d90ec916633b2c5b615cdfa3265bcfe264a9da8d539f54715211c0fe12efaf99e1b22fbe0c08788d70

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5ad727.TMP

MD5 63c89779e3a3d0fdfc2c0289f53c53a1
SHA1 29ed2f233fba48cbe8e5a36584b31accbcda67ff
SHA256 fa61677d9598044dd03706918868cd3d0bd6d11dd52c4bff64cbb7ac1fd17b72
SHA512 7047b58dd9cbc97cee33582b5ace86c4961fec921f9f2d9c43492c24b324201e24b28721ad9b8061280d090f1965c920d510d7351ead959c961604f6d2f494a2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 0643b9287aa41a94f0eac3a9e7844aa0
SHA1 8d4554c85a3a2423b3260a60279f42285fe02b8e
SHA256 248f5f76878c660b130fd3a0a63e8e39bde9a5ab0b6adfee4b02b54515b8feee
SHA512 ca38b33c5ed88248d8d6e43c5c17efd6a1db915e7d567660f394dcbfea98b66e30623037f8f2ae0ae732484ff9e579631fa3c813a6ab16191d6992bd11298bf1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

MD5 f61f0d4d0f968d5bba39a84c76277e1a
SHA1 aa3693ea140eca418b4b2a30f6a68f6f43b4beb2
SHA256 57147f08949ababe7deef611435ae418475a693e3823769a25c2a39b6ead9ccc
SHA512 6c3bd90f709bcf9151c9ed9ffea55c4f6883e7fda2a4e26bf018c83fe1cfbe4f4aa0db080d6d024070d53b2257472c399c8ac44eefd38b9445640efa85d5c487

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000017

MD5 d2df18f45ffe5acc8b33bc57a9b367ef
SHA1 235afec7a50d5eb9b81dcc65e5fa420ae4183807
SHA256 a95f1c92e3b251c3dac8c8893a16ae6e1bd0a179b3a289e100172b1f642e6709
SHA512 87e9c3554538d0a79476f944fea1b0ef304ce626ed32c2276d3191cfd7c5aef8b8de3f864bca85feeca1c363bdb1c0431b80d0e4b5c2936dc6643cefcccb4308

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 25184fcefce1c40231783f5d8ef4ee6a
SHA1 2c7caf59845d6dc2fbdfe4022c30615d641b03c3
SHA256 626b66b6936ba3a17592eeb925e4efb4f5a100cd9f64fdfbf88f50624bb34297
SHA512 86da102b2f259ab2e831c14cc91480180b54d6a7eb4aeaf1e858d2ce9956ebdd21bfea2108eb6ca6d3eee93f7a726c385b57e3418c0e1414045d0a670ffed97e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2b9cc254a05bdaedc1519858f75d6ebd
SHA1 7a31ec15f6417ff3e35e3b690685b6044cb9afbb
SHA256 21046934103e56f54143e54456f31d9e4714f123f5c7c535942c919f2c2effa3
SHA512 0b14ac7da69cb9156799b4a1a2434c4012387568f3e9367e9c839f833657d581d570c921f6f98f2694b1aedf29630c0dbf665e24bd3762ef2e4c266179de0404

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4212af97e8e245f6f0b058d082b6ef4a
SHA1 95f7d21b396cb799c44155442308e5cda0818bf2
SHA256 3c857ba1e71ef7c5fae3b693856eaf86d322623bb537026dd45cc8af5cac3948
SHA512 ea0c7901e28a6e8c9ea1da8a5d820cd0afbac6f6a49066a3e1542262304a568947c929a2f6a2024e96271f3b6030250497a12979bb1af9a0562f18f802b908a0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 a0d3408d88484b5d2692baaef20bc62c
SHA1 a394b451d2104a79b0170e45cec5995765826a56
SHA256 4f449bf502afba59c9f0028f47802378bd6b2d7cf102647ac319df6cf0c1de29
SHA512 f315cfcba68a80a4d05cb0e54095cfef5da8564bcd7c6914b232063d65f8307a639a49e6c729263901b4bd70426a20e09434892e8f734208110bb1915902c60a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 2892eee3e20e19a9ba77be6913508a54
SHA1 7c4ef82faa28393c739c517d706ac6919a8ffc49
SHA256 4f110831bb434c728a6895190323d159df6d531be8c4bb7109864eeb7c989ff2
SHA512 b13a336db33299ab3405e13811e3ed9e5a18542e5d835f2b7130a6ff4c22f74272002fc43e7d9f94ac3aa6a4d53518f87f25d90c29e0d286b6470667ea9336ae

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 1f215af60cbe2d546a5e3bf87035ead5
SHA1 3d88a8f390c8ffbc4a321eb7fe0be0dcc9bb53b2
SHA256 3d265fc81e897f2567cbe00995889abc339aff37fa7669110c0ce528f911e68e
SHA512 82634e28bfd1810448b5f4c09a16f8329fa6cbbeeaf5d7be34ab57d516809f0e9c0e9ba512b925cd5d9296bae50f11a7a4c88d55d9d0ddcb58bab35899b32e60

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

MD5 aa12ea792026e66caab5841d4d0b9bab
SHA1 47beeba1239050999e8c98ded40f02ce82a78d3f
SHA256 65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1
SHA512 0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000029

MD5 eb11bfb369775ff0739dabb3a5f379cc
SHA1 2eebaea2f7080c0b256fbfc70ab91473243af0f8
SHA256 2e0bdc192134bb3950a1ba4c1148901e39ebd8d2d01f64ef23106e90a9f771b0
SHA512 59e89752e932aade54d5b2b940e09f3c8b12a836f1c5eb515e82036a97492f42e12a4fb3dc156cb8d969d6cb4e8fd8f18b358715f972e12d4596ad390430cb21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 c51b2bc1dabc92b5d03feb5660c2d45a
SHA1 53dce54719df3c7d1850195cad0ef594080edba8
SHA256 4e25d8f1a4848370b5a3ba471edc279942c1f508b3e7ebf16e56c9b4a84873f6
SHA512 6d5b192c870bfd90799bc5d5a9aad67598c12bf9b4974961e57111544a8d10a73a897ebc8ef505361231c8f61803cb8b26c623f39606326c84f85a0f9d60a82a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 24f575ae8c9ebb33421b3ca6808e9012
SHA1 71bd25113aa4f4942b103ef09a9c196f407e3acc
SHA256 b162134f882e1b8640b272edad2e30f997f0fa9beac7e7d06f4ff33d0a5ff4c0
SHA512 8858d60135d68f1a82ba4a253c319efa41a75bcac8ca0ede153babda2fed17d053ce930afca528a6c677eceaa7d5b972838602bf04df0c3fabc61870bd8f1f5d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036

MD5 b70b0968b79d8141e41c0eb2f2a0912f
SHA1 804914ecf70c3c5b857eab50452645811a1be9ca
SHA256 4ac41ee1bda10e39dc08e6b7befebb47fb6d433e7fadfdc2d9348c9e2299423a
SHA512 7a5281d2a8e815929c7db5fc73f346cbcc5f21dce1af197de2e5a81945891b788c0621a154c609ccc7531c94db82cce91593c235aea650ce2b7fcd1b1cc126ab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 cf5d065b2e7b2a5456a3964dce41bd9f
SHA1 d1779a50e9ad47810303d3541b5ced4601a3f9d5
SHA256 00d9fa353fbceed2b192292b5428cb63a331478fee981a2bdbc5363bdc55bf13
SHA512 03462b6cf2ef19397a4330c03e7e9c40cd0e60506010f68980e0d6c4b04f7597fa3f4d08ab149799f91ac72c63dfc5fbb66ffc9abd33cd2146941ad27e3d2e70

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000019

MD5 387ed93f42803b1ec6697e3b57fbcef0
SHA1 2ea8a5bfbf99144bd0ebaebe60ac35406a8b613e
SHA256 982aac952e2c938bd55550d0409ece5f4430d38f370161d8318678fa25316587
SHA512 7c90f69a53e49bad03c4cefd9868b4c4ba145e5738218e8c445ff6ae5347153e3a2f2b918cbe184b0366afd53b984634d2894fea6f31a4603e58ccb6bfa5c625

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018

MD5 16537d4f87adf593cf2845c3e77941ff
SHA1 377c92c37ae40bff8607590a9c4e2beab99fb601
SHA256 6363e07de8bab00273d415a8d24b3b9c84a6022f1b2ca55a5218174570e6f4c4
SHA512 ecaf3ddf4b5faa9fb93a376102462a3ff710b93d2c9f6370e24078b0636960703d56a11b2ef2c211dca79775543488841979704f59ca40c40ce2ba617cd714f3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5c3cc2.TMP

MD5 4f87e68ddc460d1b97d93ee19965200a
SHA1 f41fc75059e2f4716a76c38e56735dc40b8eb5f5
SHA256 9850de5607f334f9a3675b435023e767ef53e992f99063fd23d055a32b00fce8
SHA512 d174a875e6b0b69060f8f6ff3ccbcd24bbeb1647f479fc7e31b5f0f2fd9482d23c1d63536706c98a4ade5d53c1faaf1df5d3a2affed21f61b9b741959e87d67c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 35471aa33c5cccfa6dfb2bd87b2583e1
SHA1 a6044a367368995cd7bd9c5a77b1a15a9c7af806
SHA256 d97ab6c298f0e071d2eea1ce05484b70631aa3a6368b097a4ad9c7c295a15287
SHA512 86b1c051d35aa5b0cd3781429a36f0e2fda8f614b3856f4d8d7f3995043a6857e883e80d4aaec12f49c9cfa7c167108d5bfc95cef0f1bdca92e8d35c852c5a91

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\ec76f871-26c7-4194-b018-ee957fce35f6\index-dir\the-real-index~RFe5c3e0a.TMP

MD5 5895438b5012fbaa825eece27b147554
SHA1 70ea85f1cee410d7b27e544313439568f9f4de17
SHA256 5f601bcfdb6c798446956df0636965dcf5989e81d96c6dabfe5ba47f54ab5205
SHA512 29cced788a71e7034d6ead8967402d9a6afdffafa49151d1022ff1d34f71dd819bba79fcad785a713f74e316ea6592b8296d19a35f5768cbe96b897913359003

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\ec76f871-26c7-4194-b018-ee957fce35f6\index-dir\the-real-index

MD5 679b062c8034ffa988a1b22aabd68d0b
SHA1 f06c7372f6659eaf8fa5811e1932b6633f3a86bc
SHA256 c90bff78dbe16ff26d3762d5116c6402908df24a9d441bccb708255657a6301b
SHA512 9625195ed2333f98c9a1149f584329ec4eb1e29a30281f36b7775a658bde02e08f0d79fba0bdb979f3f16471a034d8bf8c9260b23367ad26c6e858fdd34bc9b2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 6e9de08ceff330ba65b12983a5b036fb
SHA1 e90f5f33815af0aaf31139c39eeb5a182b85ed80
SHA256 8c46773d19a155b994e8c78ec46885db311c27e284e9115ad3e9cce2df3aa6c8
SHA512 2c6b2b88f3db3140eaf24f3f65d74db5d84ffc1c1bb58dd04cc2f3383e150a74d8e33bc268a482e8da1b8e0c40f871a2b74536cf6ccb92491885ae8dcffe0862

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 4e4e77f49a64b6a5b9a51c34e8a4d82e
SHA1 d0afc4fd8484083f57f3b062802b51b03ff89fcf
SHA256 525a5c07770d620e4eb5b237daa3f0e4bd0a7c29fcffc7574838c524c2b8381f
SHA512 93dfbd5cbbee1b534a6b5f1431b2d58c3de2340dd1ecc27fa1e848b6eb4289a10a2572e2d1b4d2235e2b7da67a385e803bdc1c7bf3e77098128dd2fcbc80a27a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b10c3b734acabaa0be3cf0af9373272d
SHA1 7154d440ccd75f28afebd0747f753e257246d2a4
SHA256 1f7b2d4dc4974aa40635e9f79679815f9a166255f6b4edfe4c1291dbb2b38f62
SHA512 e8aa0fce35e4cfd374e63077b96fddf848527e3120b8ca0d53d66d9be5b4b147be5f3eabbecd22ca050531a524cb286ab32b29baa99b070b6e26c30c9b01abaa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 8a28f68486cd418ec9bfcb476ceb4763
SHA1 e47ffacd8ce938b03ee28f1329b6abb6ea8f522d
SHA256 1caf6176dc36cd1f5300f611a0455337b89f52b436dac12ad9eae96edad9fe20
SHA512 83d87a524817e261f15bd9fe5ea7abc305db8bc5dc4cae7eccae63f9b1a77ee4606df9d987d2b2aa2af9de66cb9f3dcc5037894a6ec121a06cfc2530ebdef212

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b5b15b51b3d812602c580938ae90fa82
SHA1 da96658b235c82486962539fd0e9f2b1e0b3b239
SHA256 45634c80aff3012c6699783c22fdb7f541aed8070172ff5c7232e0213e679425
SHA512 c783d47e2109655aba8fca3738e5b115fa461a1435d41dabeb40ab26437712645137794d40e9b3ff10e8fc0ccdb73c9e100da60e3052810d33ec3b6199e88023

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 cb71c9716d7c5879092c0fb31c2c4ea6
SHA1 8d9d1fdedc2e315de8cd8a177f24642122e91b7a
SHA256 aeec31cb490e988b4a2698d516f5021f9cf62405ce37a59a8958009e70399532
SHA512 8ab65c23360de522c3190f7981fb40c98899dcaecfe2f9df0af94e489a8764bb22be8f9694866c2f94bde0372b57b5500b2bfef8aca86e298e4648114be0c4e3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6866b88e53a4d2fd_0

MD5 236bb3d58852bcbfc0065c3882524b54
SHA1 4415967868d3dc6985290d1d084b5ced2f98b16c
SHA256 3a4099ce202a78f3418eac742e4f63742a3163d86cbf1d83b25b3fc7cd488e88
SHA512 b9c95ce1a54efc818eb2921ae9b318a600a8da79867c9d2256dd43fd29072b53838029b1572b217eb5a5b44c2b56822fe2d3554f3cb95f778c48c755c41e775d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2302c7abe609f17d_0

MD5 23b1925fc46b4b00c6accf9be8ac6693
SHA1 8eb0ba4ab3aa53935c5dea16ccc9eb78e07da4b6
SHA256 b822b5873219ebd5853792beb3f4dcf5a66041f62e02a6c33a8d150688da8cd6
SHA512 d5a6ac1365be7bea90ef38f566298711a12d54868fccb83e49c0cf7fb7e1f9287a004e490c3f50d9b439605df0dc1b296ce028493045f1ee3631b5daa3764615

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000030

MD5 b2bb4e8cb48bbe6d4563706dd7cae4de
SHA1 69e135da2dabef2c31eeea2c8f358523d870b993
SHA256 86665e86c6d1a9a637cc32cf653451ddc85df2c493cceb56b687c08addb06738
SHA512 c8e7b29e0830ea30a20b50f25382e435b0381978eadf2655053a8c167a186938dc723a375cdf2cd9e0ab487327bfdb29de7010bb54a4d6f28703ea82a2a41bb5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06a73556bece0867_0

MD5 60c9009961318b0cfbe39104afde8121
SHA1 e6f31ea80ca9d258c6e58008dff33bfb240ab1a0
SHA256 e369780a4b81db139939351bdd6c028ad36d5f9425bb3d4184cce7967dd1c14c
SHA512 a182078d4e08b34cb45ab2962d014029ae4f54d85141b626aa9ba0ff45d9c140dfa8cb6fe20ac98cbb8ac5cf13304d60454398c6e5425dc07eb689d643f1e028

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 69073ab9c2208c4c209834e3a36e3e40
SHA1 19161100ad88f2c948745234056861fa13491e17
SHA256 78c69e080f445b1741108103541312268dcbe57205516633e4baf6fe0132e4ef
SHA512 7791bce90bb02887e5f17df437f78d66eef30c93311d0c2a3b495558fe1b3cebee38f280c2808aa1c2657705d8a398ca6ff44c48385626bfd0e88c04d7d55680

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f882180cb4730f934b176d026498c90a
SHA1 ae9d3e303144df804d2ed79fd4a447d68f52be60
SHA256 1ae3b007af0adabc6d0fb8656c58b0c1b190abaad1d7a1c0cee9bfe51e7b174b
SHA512 144f6386f12ee308494f647bf06abe00cd0e1b85de8f86e5c08d69abdc44aef53e3a7d5a16cef272a1f2f6b5ef705c6a779a9b4faa04d653d221f3979ab8267f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4ac1485e8a3dfdc99b54ab895eecee1f
SHA1 6d2c0f0c0138ea8a852d3431d3030e2fe50e7faf
SHA256 078c7a3e6a3bcdebe1dfb08b9712dfca47de3eb6ffd35130d07c4b054416ed31
SHA512 657b3daa596e5186197dbe8908cc2159dde1f37b22158160ce2b6181b90678f5f225145c74ea4f702b59a825bb00e0f1b678c9d29463d26a6b4bbd30e197b461

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f1acbd73d5a00eb306f70ef72da03832
SHA1 ad8cb2b7c663ccef9fbcdb4bf0892ec162d1ee4d
SHA256 57c89f376af85c623faf88635570e3cc0864b3fe18326be2187aba0668518803
SHA512 ef4487c6547040d981d5d9eefd26f18b1374e06d5fa3b85a93ae83a9cca4c295c80f89596b6d2615050a385f306c90493733aadc2adef007fc074b5770eb9da5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9e713fa1843c1528da94dcf70e063f67
SHA1 3f8e7e1c2b501e58fe5c3eac101379345230cca9
SHA256 26db65c240f42f3c21a6008f87b6975fc380fea8c177dcd6def4c2cf7b29af9e
SHA512 658f88d05a1b6437f4d34196f9336f779b0f9b46c91fff7f798d75f4849044db116488a57c6cb059f6782c8ec6814487d9adbab6729862dde5f54a103361c85a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000062

MD5 2e582285f775304a48f7094cad890f57
SHA1 47a967dfa0c4dba4adb12003538bfe644de8cdfe
SHA256 3d38282c8866a3fe09f01a0764c82c124bb89691e7379baa3b659f169e676fc4
SHA512 7e06483ede044a87db8df922b4b1ce3c37a0c74dc07335213fb2d591454f0ed7cc3d9fb0bb05d46757137940c41aaba3aa2f254ed5b6bfc2b0cbecf3cc37410d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000048

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005b

MD5 a5698d7ba3761752eeea1f12c512ee4e
SHA1 e9d5f4e4261d6e008c16a9525a0bc0fc90d5137a
SHA256 b465be87b22dc08a029b6fa775d4f6c64e5005dab7d33157ffeeb81489cf5891
SHA512 e5edf705c026a109cb29d49f177983d9f6c68b6b83d4ec895ab0f6682708473f20e3d2a09419094be68413888e79333df8f1921c659671646aee4b942b158bd1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005c

MD5 a638b8801616f67e37fe17bbaad3720e
SHA1 9e83da3dd2a946e7f789beaea8513f895f5baf40
SHA256 21dc9b0138f9f100de8bc0af741c17b7bcaae858fbecdaa0dd57b3c8734a8335
SHA512 c06f9525dca97ab376bd34e30867136d835e5f5d4c8250f66bacf8594db73aed4d6bc61947f2e29bcdb8185b420399bc3f058558d4c43f4a597a0cea58ab0129

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005f

MD5 7e2a07c947201c649f58decade348374
SHA1 2405557cd26c1df9907a46d6706893df331e5969
SHA256 36f7e1bc2436e86e405fd79dca8952d0989cc3c6a4c083b2f37560d75a251f3b
SHA512 d0f11ab349e38c89b5e2787ed66388e09b7056d63836be4bf8449d8a0fe16444feb2715ef93a40e58a4c70e29a04a56dca001e152b8ff8132839e483815ec4b4

C:\Users\Admin\Downloads\Unconfirmed 813614.crdownload

MD5 1414a860dd38540bed2fa971459e48b0
SHA1 3b114099a4559809f1c88ee42e8fa3b68d903714
SHA256 5f9516de19f2cdf92a72bf79ac9aaa9f00b5c6e1de385c2c7a8e0afd21b3a10e
SHA512 7228e47a28f2a6fa302a227bba2416f76c679c231e44ebf129e1c3dc8b1cd783b6607010799ff19dba5c8dd689a17d36c88bd26e5c9f9bbda3bf7723655ea413

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 cb2500e3e7ead77af124597fb5fb84ee
SHA1 17745e6daddd86cbcbe1a1eeaf386d8fbfa7078a
SHA256 f3d64e13ae08fe17e9400d768414b6d42a32eec3d5de9e9ae4ae61b38e4226b7
SHA512 48f5b8142e840baa513cd9407ae5d8e147da065110bbab591aacc1edf6c43da5405c4b7a7950921026647e8bb172274463736e595ea2931d7b74b4da8cdd3b94

C:\Users\Admin\Downloads\ChromeSetup.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Windows\SystemTemp\Google4732_488939666\bin\updater.exe

MD5 675c9a53a09d5385bbdb3a43a88f2493
SHA1 71d1c311eadd4d5949c0b48def8ad0f2186bc243
SHA256 ebb428a4c1e29192617e7699513ec78512735110bba68bbee54dee34807094ae
SHA512 e3b1d8351b6d208678673e4c69aea745de5b2576a43d2cf9e06c1ea0780dcbc2ca56d5d5fc712b80309ba7950b90130ca2780185b71c990ea6c6062bd29f5136

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 99dc505f7e6594bb97605979028c8a7a
SHA1 c46d84be4c7af564e3ea8f788c38ee1f5f9611ce
SHA256 12457452cc1617366fec55938e15d4a985305359252f0a06c3961226ed253d87
SHA512 1d59b2bf2a8ff5e752a4dc918fe2c28630d92bcf30ace2197d7bc2b50a0e9997a1bae3d8250963b83613a4d70c6530a3ddc42d10337e3fa7c951b247b2e6881f

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 04aa6399c0806dc67f652a2c723ee3e7
SHA1 fb7aaabedd350b11e339c8885cf568dcc100bf54
SHA256 5f03d041cde6216d109af84f38dbe675e35e6374888cc44935a0b7ead0128871
SHA512 f17a40e282a12f19a35009e37ea859260e9b1f6eac1215ce7c374457171af94f735829ffbf4e61af6d3209106437bba2fd187817fe6e7cdbcebca1ebcf19c372

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 3834c6bdf46ace77ca43bfdbaee2955c
SHA1 423bbbfda152d2d7109822524fac860c1b8ffdc4
SHA256 d707ce6e4d5f7bbe166e5130e5d967e5f180690b9f3d6af661817879bc994cfe
SHA512 59694fe4d78b7509cf6eef23ded3d2683322c63beeac9ea2d770013a048d1168924af227f3e617fd2d3a57afedb89e645fea30603eddb1159913b174dbcda0aa

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad\settings.dat

MD5 808d5cc4cbb3ecc55ba4aea5e218f35b
SHA1 bd0aaedfa1d278503e21641a6fda17d82553c5ca
SHA256 4be5bff911bc7fe293f42eb33dada747f0ccb8784802d8b1ec9feeff2d27a77e
SHA512 f921828b10549fa76a7e39fa79bb9e21901c38f185eb7ca90730178a5851e29daf3e26add2e37230c0ba42cda09793668894e55a45a5bee1069682317a202f6d

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 bdce395b453a0a3ffcf742feb2a210ae
SHA1 8bfc909ac17238d49d93a3668256b92766391452
SHA256 82f7226a5b6be7356507c368ca2468c5d9b7d4a4036fa18d85c6a99e2f0eae41
SHA512 cf4d12cecd6d749990265779d1f9ec5e505b54cf283580f611cd346aaca17816b4c58547bb61c451190c07b651d967f2d03c13b74e2210195514f8087b92288e

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 7136b45ffcac6b52d6873f2864471ea9
SHA1 7afb956fccbfa48ec7fcac07cde0f6059a51a534
SHA256 78f60448736dd9d298a2bc503571a91a8f0c342e95ff8cc589d546e84e7384c2
SHA512 66755a95e16371a527df8b702ba8d686a08678aa0d3257ec4775c5fef8c81d422d7a6ce8aa1fa1c150ebe02f14a0df23776dabc42b6da5ed83b79be956fc2ac7

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 e539227a51b70b538577b73b944cd433
SHA1 1ea40d5857b6f9fdae78f4c8cfdf0fa6c515b624
SHA256 a72298df7c19c4e86b2fd87848fe5c12cdc6960ff4ac25bb8f7cb3d20f2bd8a4
SHA512 03f419fcf55e2cc7a1ace8fb2c8b8391c7098d4fc103c68cecc8b502417e7910fd24267f912f1bd823d80c5d22ab937a485e54bb815887f48029dfdc9351501d

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 41346effbcf2c9955eacbdc96b86d103
SHA1 5aaa173e6246d3ae69aab4ffade84857d075ad90
SHA256 468948fe2015378268f56f3823e7b13dd90a64bb73e1c2c3fa95dfa4248f14b4
SHA512 bcebc12589f1a353a4a771304e7eb5be4bdc7e4f2a5ef2e2c0a3618ab9302b61f9c65baaae72d71ab92eca524994ee97f1c7cfe8c8fc4e844cb034f8c639a8fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 5b901c04d6eceb3a145879656ebc73d5
SHA1 70baa37cb93cc9f7e45aca0b209d1bf86544a2b4
SHA256 3e53a8ecad961f61ee2bdecd12ede131dbd12dddddc6cf0ab0a7ac9e2406a2b2
SHA512 4c2279d4e637558eb47c1d766722a9b6e492b73404f48c9e7a84d8d987d340c492e301fb0a37cf9a1e27e69198358b6fcc9795fcce569a50c1ad86783de883de

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b05c42b6a679a3a9f72441ce2229ac82
SHA1 0154a27d77897ddcdcb169d49b97c99732d2e73d
SHA256 bfeaf7113021cc4ca7fce88db8f9570b6c09ff0247c157793b64c10ed3bc0a69
SHA512 d9503978f88c58e1e000356f934feb948558e41bc698ec9334af97046a24d508bd55869d76b45a22169e77b43a0674dd4ecafb5dbbe670699cc7b20b6d93917f

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 ea8a466b08e6b57ec634d25421e8df42
SHA1 8da372c9081795cfa13373968126b5eba97f009c
SHA256 d3df51814e9e0f455636db24be2628b1af3a8d678aed809410ee0a514091a5e5
SHA512 3e5db69808f643d9c41cbac180503aa06b56e053969d08328b5450eba146e9c4e889580d8ef07e4316c6d158c40918e9a0d7e2fc9a395ba384e9c8d943c64180

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\CR_9E623.tmp\setup.exe

MD5 782b0870300882f2977bed8dd60130dc
SHA1 7d081e093c8b1ab6a35e0afdf7fa265dccd7bd3c
SHA256 997e3f4f45950f00532b7cb8b3d9f4a5305a4dfee3bbc426de7b5ebf82774be8
SHA512 149d4fab0e8d110e477f38995d792f401ea4c66894d33488d6249a7b83137b9f08341ed77a3e1f755be034448c0caa8018e6d19572085d0a648c0e538664440d

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4932_572605725\124e884a-f302-432f-a61f-e3ae2cd6d904.tmp

MD5 7590be4d7513f0751fb7b7a138b920d2
SHA1 b19cd30e3bb7e49e08fd7b00e3e0ff76cbadae82
SHA256 b748224a19d2bb36bf083aeee81d9bc1b31ed60d0394b9335b685bc5e83e51ec
SHA512 ca8b28ada4160798ea8db64ab1367bdc59931e07e56c9fa6e2225689aa1f7156531d043183198d09e35c7d0eb53801106915ca765e96bb8460d03d57647fcd98

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 c73aca188729e0ad7072251c5e4c48c8
SHA1 02968b9d7182fa650e3873ef584d7e2bcaa5e3e2
SHA256 c329586fbef33fe5034d6a62ae6aa389d14e2cbe7eeb46f76dce5c155baac40d
SHA512 6e7d74b56cd3dfe3f204cfd4959df44c326b0df5ba383bc132014c551b55499fb3e96fbe89a1b55bdcd74ee63cb3d631feaef6cb1e21072938feb9803e7f8ca1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 199d4c39166923ac083f6bd67654fdcb
SHA1 7e645105a29613128c5208b34b52a239a617ecc5
SHA256 f161c2fc5d8337f302defd8f0733f70d650dbb6877626d470ef88341a12fae64
SHA512 05df4f9949bf94ea21ba4990fece0e1ba0939b022affc0ca801c24c11eb4cb038df24f302a99f8f2c67440263735b139e4bf6bdac5d65bbf703ba1009983e2c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico

MD5 505a174e740b3c0e7065c45a78b5cf42
SHA1 38911944f14a8b5717245c8e6bd1d48e58c7df12
SHA256 024ae694ba44ccd2e0914c5e8ee140e6cc7d25b3428d6380102ba09254b0857d
SHA512 7891e12c5ec14b16979f94da0c27ac4629bae45e31d9d1f58be300c4b2bbaee6c77585e534be531367f16826ecbaf8ec70fc13a02beaf36473c448248e4eb911

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 93373a929dad62616871158ab8b80d51
SHA1 4d2822f9e6966722308acfda634df2e0b83354c1
SHA256 1c52607bd5ddbde7d255de4cc5bc473edf0294de8dd2ad48b81c49c751921ca0
SHA512 c39b329b5ab9c660265147eb4bb2ae39712a19e59e8019fe914d7e7493c8eac2bff85b3a8ba198d428ca4c94421f0b89cbeedc581d301a2aa671a3e48dfd80a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 3433ccf3e03fc35b634cd0627833b0ad
SHA1 789a43382e88905d6eb739ada3a8ba8c479ede02
SHA256 f7d5893372edaa08377cb270a99842a9c758b447b7b57c52a7b1158c0c202e6d
SHA512 21a29f0ef89fec310701dcad191ea4ab670edc0fc161496f7542f707b5b9ce619eb8b709a52073052b0f705d657e03a45be7560c80909e92ae7d5939ce688e9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 20c0d5b6916e97c81297a399d9bf4584
SHA1 2803b65a53706d3f07db7c9cc2b6aa32a4caf245
SHA256 cde91b613a5a4e3322744ce3a648c2753d1249448111a06dbc5950eb7f35a001
SHA512 b1372028ba2a3f66433e114d246e9bc5ec909db00149ad59aac2aaf8af432b919ba1410eef766f2dc70f25383a3d13177fbeaae316afb91048c722590837a814

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 7a924cbf0412e1de06b0e38590ecb6a6
SHA1 db32fdf7c23f28a2fd3350dbd94ee25ce78b615c
SHA256 6ae5ffbda60d117944970cb446612309126b1f131f52f904847281ed4fcb8e54
SHA512 7feef2199bf9003eed113aefd0d28f0cd359e26daf9bde23d918a39af0a9815c641c3befb1650b86cd121bf98d3b899c852cf81a89dc1e416ee3f7a423fc86c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 cc9f300ccf57daf0e4710f19ab058578
SHA1 9a26514f7fd2a24dbf05d0e8eaebab2ae5f3282e
SHA256 f2986a97e1fabf7b7e55b42f3bb10ef3cea07653b144ebf60ae863b1b3f467d2
SHA512 ca378a88c9301ef490abd62c5bafd3c995944dd31cc6fa3fb92e02d2f51b18613cd3291cc18356f00ed29ea16be42665b0d19edbaae729e75d506b8bec28abcf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState~RFe5dfcf1.TMP

MD5 c8ed072c2f45eb85d395fe37fa4c59f3
SHA1 055568245422b38690a7e3ed9df0f5dbff8b15b3
SHA256 121b1a9f3b252ef7ee6dffdba1a183f0bab6e450160ed21a353c6f17c8182e65
SHA512 a86901762c3093656a6471fe54ff9de7170cbda4ddc2d84d649809599a3e659ce23b3b8f1bf9c6006a99f8390151188a86842de04644836d2b1bb194b96f7a42

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b5da5ee7c340cfe7c93ffe9a73b912e2
SHA1 43f875cb5947bb1e73249e9b42197864400915da
SHA256 add982d044fbb1481da28ffae0600d5155e0435b84d59bc733dfe0f73b394a71
SHA512 ece66e4ba44181f638b00df0343094aedf09e6133d09ec4774b0954a2f62165bf3396f7943c52d79fffe42d0c77f0edf5c173e7567b3e94d3ee03c58e2e6ed5b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 42ae518143ed416ee732fea51d51ef66
SHA1 884c89b742fba33a9d295cde69d655d48645eab5
SHA256 64042c82fcb70553ab99294ed5905969aad83635fad1d2ed3fb881e82d9be9ae
SHA512 0e8f8d0eea6114593f54ea3a3432ac5955f0e04967e89e6cf2e10d6aebc99218b881485a09588a034bac0867c238ef86deede09461be7ccba4bbfa81482868fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 d84eac58824e6ff660da8e4e4c49ecd3
SHA1 67aead58c25facd0efc4ecb1eab7b5cc0a0719e6
SHA256 41789e672abc67b2dc2fd9a62d4ed7ae3a3588d6f25245234e57e98eff29662c
SHA512 c5cf611fbe1505d8b6f477389547c1b5861d66d915ff5954e16a26e7a6bdcfaebaf55f0db7f28b628d17d27bf7246b781cfe47fc780d3966824ef59513c4f771

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2414a2cc573db206c1380a1fbe72cd2d
SHA1 f6b748daf05b0aff6af7b93cf07b141d1b2bcba1
SHA256 05874cb799cc15e56aacc413eefd0bcfa8ac93ce2eb786b96896d2787b00f4af
SHA512 5b541dc4a3a96abd0d36372627c8e018fea372ed9bd677090c0771816cd929a0ee6ebaa151aa872c070c56ce00469e4aace9fea877762dc96dd8adb41b884e2a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 6d7a334b7780b4d227e4bc2776183bbf
SHA1 7144b7b944dcbc4aa420e80d77d06609a7e1e39c
SHA256 49068dbe37074438888f6c7c1384760e6f24343d7decb1bd22991e10bf1a9f5c
SHA512 fec7dba838e920ab9af505a197d0aae896661088fa1ce67912bb14db72037eb5e158d3c82311f8f203d80fd3255ca6c0d8b9423f6673bde0a80b4098e687be6e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030

MD5 cbe9d9ba55430c9ceb7fd0ec8d1f0799
SHA1 4b2af7dbc78a5f1f4d383894de580c37786929ea
SHA256 be1750880c3d751a2a3fff9560327c9096658a5a5a57ad276eb39a0490c8c3ee
SHA512 83d278f5323707ba8dc0bd0448acc58f489897fabc7a5702517dc3c4979860d928d5a9533849922f539d131e494696e132fe228a9ecfde99a9514fb02bf59cb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 caa9e32417d894c059ce0d222355b981
SHA1 591a1898827c902528d4fea126976bc811f8bed4
SHA256 57b0a35b4f4288a429effc583e11500a64920c2a81cd8a950fde37705c039ace
SHA512 0104d18dae6c552010dc10282d29344ca4007eb537b1fb10ab077e41dbcbeaa27d04a1d73d64d2f39a57a9c8216458aec8008a5f18afabee9040e24ac80a4977

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d34483fcb348f1366167d6617c41a7a3
SHA1 b17a7b64f52e2ef6a592b2e0342c945ad9d4e23d
SHA256 dcd65de362be7db2ed7149da614f7faa11bc40b35f7302687ac8559f6346b904
SHA512 bccbe540165409eba821708bb27652921d417fce953bd4cf875798220089c90cf603da0314b0160b876259e1fca6c5d27632bd3163f7d25987a62db1d0b6c27c

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 067b7e78b2d8e480e50bd60ff344c53a
SHA1 5eae2969dd047516587360cdfcb831a5b732eaf4
SHA256 69f2e3aef566318c63299b0c0a821262917996f9b0cc9a144e5b2c4fddc39385
SHA512 89ce17893853a630dc809c91024d1c86e60b0806c6346cbd8d3276487a49baecfdfaf0d1deec9180d5cb078add5d1e410cd0dece1ece11bc3c12dfe21c04daa3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037

MD5 d33fe49f7a3b9850789f8bec0c20985a
SHA1 432af4f97cb772cbf2909c8dbf33aa288156ca56
SHA256 dc9becd561d57eb70ef0b53643f9cad16a969cc3184acff900f4b8f70f5fefdc
SHA512 db96b9edff805acb537226edd8c4b33af8d1f910db92e5abe1c9caa9e832a376123376298e1baec0b587d446a1af27483463a922d9a27cd0f8e833f5d2f3024f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000038

MD5 e4a28f00f26131a0ff2dfc6ffbe365c8
SHA1 fe95b0047e21f2153672730bf68956bd6291d272
SHA256 39ea4b0f155d6ed652fda528d1dce189057188592227a58072b5f2c91fac9c01
SHA512 8c094c3c01f10d26ef6c8265de7b48325965e286914d7a13613fe1a3aaafb9f32fe77154eb5371355642f373624ac5ee021611ba71058061271925f6a8fc9636

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003d

MD5 587ff385ba3a174ab13e2c4095bc2194
SHA1 f3591f045d52a081927f1b991b42792e95e6e7e8
SHA256 b0431ef6b1612466d91438d478ed14b57343dbabde19d0e87bddbc1a673a2874
SHA512 fd4e73d09fdacc88fb13ecad4f351d9e85ea2f3ca3579da5f1d37767b66fcdf8ef92e301fd13b43b01d6dd40565bddc407ee7b055e7806514e7f431ce4d18bbc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003c

MD5 e5d4ce601ac94661635a03c04b4467b8
SHA1 669a06647bf2220ed425b7e78e92ef4f810fef49
SHA256 0432777221208658630f1c9bc42e00cb72e57e6f890930871d069e9a8e4b3e88
SHA512 b406fdb0cc8e8a0fff224d06b9c227abc4683f27f582bf93a5e2d7e062f09a6a5e44c98d9bd704aab192add80bc5b8dedd69368c2b8cca4f2b23b8d712150e8d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b

MD5 92d4ff9829659309ca3ca69ed0270feb
SHA1 23c32856a920b337cb1ee0754de318fe92ab5cc3
SHA256 a02d0a7dabe190c3f7c357190b45ac6eb555f85283f4e269fd432a86bae6c877
SHA512 1bda7de2080692399a260ecca7f9d95fd173e045da69bb4bdd8a1c704fb6d4e25f14eb3ba4ba19a654ef43fd18a103702d9d4bda9f2ef110048067c94c8b8d00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003a

MD5 cd390d58a2574eaae8d4a45ef71b60f3
SHA1 e425b679e198b9be080d3244d06f363586319a09
SHA256 d097d798725887d47a4f92908e673c3322069d3984140431e40a857a18380c0d
SHA512 e9ae2c41af5f5a6c73fe886bce663e76feae53b010cbb56331b8ff95746c9043cc219edada305ad92b9eca1a5705871ea3e5ed4339d0e4d0fd0c81c8f22d9962

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039

MD5 8af5a9dc562b449e35687c3bf83ba349
SHA1 92ccf2662fe97822e2de827337f39f9b217bf876
SHA256 09f9aa283ef4fd3658ba9c4dca0a4ea6b00deb111171b6c0632b692be1f263e1
SHA512 2460d4d6e233c4d49a5b4770dea465fd5415d2d7305715fbd2c72e3f6f375ab77412afb64b0f7e8a8d4ea38cd5a2d5b497e7acee371a370e20062a900d070097

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 04e9a9c4f48ed6ac5c1241f7ad7fc78e
SHA1 49efc7fbe48e06aa7fa9214903ec43634bccd615
SHA256 c4857e040513fcf4beec39d62b1b00ce6c415e1443d38a8a5be1e4637a1950d1
SHA512 b608f6ce2dc08392d70d2d551bc557df89b0c669ee1515de31dc9a972bae48021a0fbd659d2e98e9e566126dc9b0dcd45f02d90e102d1a715b443cd081a009af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003e

MD5 7fb76fa4ec703b728ce7a74c504f6d07
SHA1 44b77650956cfc3165be1eaf5f64381e29eb3a02
SHA256 4750f8c78ddb467fa8cda2cab107f8c3db22aad8864c072212937ccfe13bd05b
SHA512 35459734ae0fb70933c35f85750c0ecf699e128dff2f5c4b48739f7c581beded215dc27552dc184a114fd55d1e63f83172bfb7f35beaac623357f7e45a524e50

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003f

MD5 52fa582c10c108da6193b59c1f6450e2
SHA1 4a96bd75479e637055d9dee11f26363f52c6ac74
SHA256 b04675eb014ff7bfeea28798296c06e40671734de46928a45122686ebdd47dd8
SHA512 b77828e66eda886b590f2c8ed9d6a0a3eaf1d18f44caf2ce85dc58cabe8188904627d901cafb326d46e3baf47ef055b6af6cdf281d1d7b575a021bf206955878

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040

MD5 a64961e33175cb4a60f20139e2567100
SHA1 14bb67a5bc4fc0b98d50da181f7165ee6737c6a8
SHA256 dd7302bca2098ddfff567be1a36d072aaeac1abded7d33505c4de790238b4d8e
SHA512 bda99618d34125914f51220b43a5df9092befe971534ab3936273236f14cdb30162f4e35f25133251b09b8d887b82b707adf6895b041fe89464424294ed07cad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041

MD5 e3ac427cae2e698deba10f723303877a
SHA1 62082db93365f89c82a892772adf8c386f89153f
SHA256 8917bc2373d55a780d10bf738aa3f88f95472627b2da12455ad1ba1ee2d084b3
SHA512 e9529c76a0d847c7f5e75e53e607597602015e144bf4a8be0922f6daad8da67564055ffaeb699a8591ef75842c241c14ef4940987a1eb7416469114fc11eea82

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 703c405bbd04f315f08c12e776967a5c
SHA1 2a7e13e7f7c10bd4541d230fe1218117f67d4450
SHA256 8472d74cd1c5eed2337f01fe009f54bdc3381fbd4085600043250495b4f3f81f
SHA512 9a1f9239098b584b2c53d8bdb5e3846e439616cdd340983590a545937f85abd61e0238aed695f0ad3defd6036a14c6de4eb87e512aa19b4b8df496e8c9567499

C:\Users\Admin\AppData\Local\Temp\f15ec04a-22d4-4a0a-bf50-8fd21febf22c.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Temp\scoped_dir3492_958692463\inomeogfingihgjfjlpeplalcfajhgai_24016.crx

MD5 3c057c581bd63666398158551a1146f4
SHA1 43f414ab0ce7313028d70712191e91a830f4148c
SHA256 389981305efeff65a5e2dbe3b2c91cd89a68f29260e70b1c8a5a315864fe8da2
SHA512 edb8316624beecf1f547ac2e74323ed4ca9a3345fa4614d53f9aa2e7d31f67be5daff27a869fc5e78f4589d8d3e6df756ac9b92f9a196ba9257ecddcc12ef396

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir3492_2100992598\CRX_INSTALL\event_page_binary.js

MD5 790b3f7e0ba1f47d289ac3ce0ebf1535
SHA1 f2b780d645470686519e46238b6a01ed4db5b18f
SHA256 e705ba164f89c91e21aca12a4be19c14e1245a2fc3d680eac76420ba7439bc06
SHA512 2637ff00bba7a9f9e6dacd7131a21f614b6b1aca2da562b15adfd9e1f0e6c65f01c9ad6ddff0328b190fa6417a9eb1144a216cedf0e45d2175b28548213dc878

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir3492_2100992598\CRX_INSTALL\chromoting48.png

MD5 c90738a40eb2a794dcf96e393c64b36d
SHA1 7d30113328a05711db84a56448bda091b7e14e81
SHA256 1707fc13f6bb739c891340b10bb57b91d6496641c2cdf70f38830cc1c4066cad
SHA512 303365e538bb9d278e7dd0deb882c4298f92a17dd5a3caa519cc60a911d26d3bb5f401e2a7712bc7b1aad5fa9db389c6bbfd334db417303b16a94de470aa5288

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir3492_2100992598\CRX_INSTALL\_metadata\verified_contents.json

MD5 d947f5d33fd5c4998d21320a39413d0a
SHA1 726ffd95bc36725edc9f4b1ac31859c27f5cb743
SHA256 a400c4b6b2a7155975d2b21198014b6ae22f5a39a496506e5f5df79c655392f7
SHA512 1986dcb5a991d5cfb8a88aefe239f2761eb3e25efd90f8cf48c321b93ea9fc311030ebe307c51d161fbc922069087a6f4f45000242f0ac21230c3ee483162c7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir3492_2100992598\CRX_INSTALL\manifest.json

MD5 debad88e7b4a9e428a5050bd7e095488
SHA1 5261d6ceb92fbdb559b9893c0d0d02493313f10c
SHA256 950ada636717249f67dcc048d620e2a5b562561eeedc15344d0e00223ec778e2
SHA512 d7b625e5ceb2c0462bcf8eaec8ea39f5138d5d4150823a61d87e4c2fe07aa6e65ca0aa5cbbd643b7e867f4d606f67605d99c30bb0a8ea703131c106bc3e53a91

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\Temp\scoped_dir3492_2100992598\CRX_INSTALL\chromoting128.png

MD5 7033f1668f7bb3b9170a1e5979208231
SHA1 471bc2f4e8d00ef5e897c4174806a94cfc78adec
SHA256 f731dddb42e345244b5af8ca63d5ab3598af9a7c364939c8af93cdc5a1a03e10
SHA512 e3198fc90124b5f7155332b0d04fcacef79cc9329e966c2bbe718db15e3a5c37711b25332f032e8ef8ba78d4868de8c6097a3deed4639130c3b76a9381edbed1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 810e84322f244705cb6c36d58e6c0b6b
SHA1 c0f1ba3753916e3f81c5245f6c8d7b11e89c12dd
SHA256 8eb0e5ae9f893bd827a14da95b9589ddb466a32d160e21730079f280a98160a5
SHA512 f764e15670758b7c0c6765b62fb4d2cd967533a5071a348fccfddfa72ce434044eead79ba8523ec6aca0549c691c53227e694549d3665dd0b4ea311bcf29ec3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 79211c1e627c13c6b31d6734f7541fba
SHA1 18a8282649b58746017c2eb8456989187f5a8de9
SHA256 0b18b839556c0ce5702df6285a47c882fb48a85dad735c0085ee8019609390c8
SHA512 fa4e55755cc87b12869075a21f8dbed7cc2e3f48d4652ce0cac48c2404c7f6b09a1d87ac85ca79d82ed14de6e9e32838e3960afc8a45eaa765e9d7d82fc88851

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 1548aa5ab0b22648bf82035df8bae033
SHA1 6483587eab89107a718362b30b0c2e3c54084821
SHA256 08868fb492bc2f74fef4e786b79f72f242ffb000c80a9cea68118e4578e00553
SHA512 54cbe097d61fe27ff3e9fd55752721f60d039d3acba133a3fef2a17a4256ec0dc6a26375ef148b7535226c43e4e2118f88d2d249bf151b04731c0af42e91863e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 745dcaa1ff5c307ac0fde23d692d69a8
SHA1 13adb85d67874a7f937896ac9545cf5c1ddc93b3
SHA256 609b6de89dc7a697accd32b4e5a1c8d0926a9bb5819bb2d9163518994cb0b2d6
SHA512 090993afbcfa791c7f3ccb69d7d47637e2f6ba543922ba4df2ca669d96db7316b423c616d77b8e5f375fb3428b5f9f372d014fb601eb3e787f3dbf8b349b1f1e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5eb5d1.TMP

MD5 f3957e59624211097e8078611231ee8a
SHA1 788218f1b097a8eb587792f3211d64d7fc9f9ef3
SHA256 d0c3798f47f7381a001f4fc7c66a06b26fca864a6ec71f92e994139f66780035
SHA512 0d5b2b76f0a615945ef8cd3b96e5d95b5e04823ced08ef2199e4eabe20701e8129fcbfd142e3d39010fb9cccf0e80db25ccea4f53a7c7ddf0b851992aba8f03b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ea1e16dca7d5a24894f3ccf68bade071
SHA1 da9507cef97ab26d5f0aa8af4f91a24285e1321d
SHA256 5429082e2a194378a0cc137c24a04d1955ec01eb283ade44eed212143bf073fe
SHA512 db8772fb260417a84ebc8d87c4b619838fe43cf7bcb41a3eecc096a988b32e90a313111b59066a9e8d59d86f123e1dbd30cb66e85dea1527fe1b636136f91884

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 4f979b3c9176cbe3a3c76948fca487be
SHA1 80fe47e189069919d0e6c6316ddae0b4bf5a56e9
SHA256 6fb1216b22d27a7a3e49ac5fa43e24684d3f8325bb10a6cf20d67f3ff2ea403b
SHA512 5645bc750001c52fdf630c8dbc3760f3367a70ca47dd4e6670f9ef3e59d5a1b93a45154cbd1ef6389d2619849db9a921a099fb239c8e4030147e8e8f03f474c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 38ea05a29f6bcbad7eb7893daf1e7f44
SHA1 d3c7a2004c3cc9b7b4318b3f24d77f987d77238a
SHA256 421992f0df7687dba788f90547e77f68c2d37d9041692543efa619f01b5d82f9
SHA512 67aeed0cac08a7010b08191660305f50d82bdcb01d69bc91c731b1576b03d2c803e3fd3969d3f41b0d7c0f3677cb7b0aa6a0fb05b06b01cf946b6061a369564f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 4f59af9469870a6d1a91fefa42ba7cbe
SHA1 c77999dd3202d43a87e4b36809e912668baca7cf
SHA256 233b3b6e8406c79a1226eab77729d7f744d7dc70b12d86a14c3ea7787a02cc02
SHA512 e0516eed17e1ca9f832913063fa6938dea0080206ec99e31798c816941cc0faa30ef5da1ed82f206d1323f878e178fa412267b37a5a817b03283076a7d3b88a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 11024be42c17a4b5f8091789283087bd
SHA1 64d19d2b034f327999126d85045de457bb8cc061
SHA256 d2e5c8060b57cbffde89c1a78cc17a455508a8e317667be7bfeb0de80d40b2de
SHA512 cade40757e28fa9b1907ca3147b132875be3def945c2aadc4d1ff53c6abd76fccb72e9c4a5e3190010c4a3bddde882a89818a3ec9336454a25c9ce718871f042

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0

MD5 628c9cf52ae4bc8dcc3c8da50ef30b68
SHA1 1abbe73934be1dbe2dd47aaabdf23257071b7def
SHA256 ca50ecef5bcf665540acfde0539bb9b8da4e648f87de43af24e3347490531946
SHA512 3a58b2306ae6a7edda2c1cd32d1106147230369cc9f33897251256e306267b4f04393911cb6324eba1e1fe2caa327e1c975dfa8fa3678bc71de653ddff50b1dc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000050

MD5 d24434cd760b5dbd109b9df52d1e89e8
SHA1 12b8490973c2152dedb37c35fb45f17ad3e6a22c
SHA256 d8746767e40e875117f9f0136f8fb71b73ac3f7f94c260b374ee749c3b4af754
SHA512 5f0e751edd0c4b597ac8101624dba83b1be9c7cb310a8b3e6174df7a32d63fe451488c6db3d4a91d7c6853e148e5b1abf9af253af97fe594d262a820692d6a37

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000051

MD5 b8e62f3fe1294f672cc6337d2303a395
SHA1 ec57e27e9cb17a5030d43ea1ea0087e973c34139
SHA256 3c12616dd137088ca5c1397c6df1b97c15e4703a9ffb0492480b8879451097ae
SHA512 490e8f764a98ae4e08e6a582c9bd74f62b80e1334efd43809dc98eafc3a4faca76eeba84481fed5d3d6aabc94d95179f6dbb768a3ab0b525f167a20a597c3733

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053

MD5 7f2e1b48b71ec58fda4539018a2f56cc
SHA1 507bf81f52fa8c99bf2c5c8bd59a981899ca9995
SHA256 7f80c4c91054b3d6c80721939242c2d4f68f15e41f251e12641f695d78eb2f35
SHA512 dd7b52119d1179332147984f6c7d8cdcb3388aeb1e8af708ef9036acdde6e7b3900acc965221f4e4864dad89797072e19e5b308cf065a65dda7656be884cdd77

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9ddbfcc60483256a9c2dc1c8b4bde1db
SHA1 7ef7c3cc84eabc1c94c6fb0631324df181845d94
SHA256 17d6945cb75c67e1fa6b78990f85dc25cc606cc889629c59f0714ecf21e3f7ac
SHA512 239ca743c2aea821ddeec607b78413575df4923ccfef6f35501f6693b803e27032d2f67bd0a4a6e11e3348a10314732d2655c52809b91690df53f7943140fcaf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a954cd56ff51e8166c36b7193ce82838
SHA1 c6c2557e625804e8e94b854ed27d3f22c1ff2593
SHA256 7ff8af8df19a97c05e533d1966ed4360726fd6f045ace588c2385a3ee649a9da
SHA512 1f1a0beeccd154a87b32ead3b1783f7d085ac88d29ce2da10ed02fa7f138aef769e133c183e1c82a3ac9f36bc7c339749bf61240c67640451ee436b7082b584c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 027e374db66fb9129194b79c2a7cf923
SHA1 a096565eb05fcf398bb3393e6871b81c9d5a4a5c
SHA256 59e8caa63901bfb933e2ffb824777d33aa7b801df633eb339257f6a3560da904
SHA512 d5216dd4dd96ef1d9ad2f240f9811d7ffad5a1521c712b586d5c32c6a10d22cbbf6962cf54624ba3d866865d62f487549126160e69e9e0ff6afbe0a01368469c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 7bfcbd8f238d4862829beaa9e2c7f204
SHA1 0cd990813ad3bdc42170c5be9f81a977be5d53a4
SHA256 02cb0077dc9d5583e4d352395ef24b71640834052d3f1a579091884dd7a1b9e5
SHA512 6c653f6f64c4b5cc99441a3943123135b6eef8b98e3aeb4ef04220000b2d634b034bda5a145c93f0f7590379a241b81349fd00c4af50a1aee010b7bae3b9e4a8

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_1989814794\manifest.json

MD5 8b543f50c4d67cb5956e085afab36b6e
SHA1 ad28c78fa7d26c90debb4d16dbb36074c00e0b1f
SHA256 b6f6a4462fb1b0cd3b395243096a2e8d7a13dfb6de0707db26d2a52892350547
SHA512 bc47c75b71feffbc588a0cdd1103470a6168abeac240153e5fb12d4d1bc62c2d3551e17d6305f64d437bb76745e5c7fb9c161f05c1162545c492457438418cf1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\CertificateRevocation\8815\crl-set

MD5 90120ac63fbcde0dc0dbc18afe9565d6
SHA1 1ed71edf748ed83470fa5de53d2bc9a81db03b0b
SHA256 5ff2f4fa3cda90c7f80662b8a85121d5fae6c4ae464f082eedcce60c9f548f20
SHA512 2eb9b60bbcc765ddeb9270e787aef76532e5b37ea7bc11f094b4ba02fcf083091c700a0f0826d3a5b56494e39b521c578fec90ba13c4e1a5db1e85a9c12e75ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 81778dbb7875d40c632aad19b79d602b
SHA1 6825c3456a3785b9abe9bf905ba7824355973526
SHA256 8d6d8417c34d5c0c8301f4ca063272992abf6c324cdd30df08bfbaae6d46d443
SHA512 02487e8dd4e3b656766048838b20af9a6982f0647d604759ed72de34b9aa46b9467411c55f9b58be622d0a049b1319a415f5707fde4cef9ea25bdc81f0aa4e45

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping3492_177505373\manifest.json

MD5 4c30f6704085b87b66dce75a22809259
SHA1 8953ee0f49416c23caa82cdd0acdacc750d1d713
SHA256 0152e17e94788e5c3ff124f2906d1d95dc6f8b894cc27ec114b0e73bf6da54f9
SHA512 51e2101bcad1cb1820c98b93a0fb860e4c46172ca2f4e6627520eb066692b3957c0d979894e6e0190877b8ae3c97cb041782bf5d8d0bb0bf2814d8c9bb7c37f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.49.1\Filtering Rules

MD5 6274a7426421914c19502cbe0fe28ca0
SHA1 e4d1c702ca1b5497a3abcdd9495a5d0758f19ffc
SHA256 ae2fd01d2908591e0f39343a5b4a78baa8e7d6cac9d78ba79c502fe0a15ce3ee
SHA512 bf1287f502013308cdd906f6e42998c422ef1e272b348e66122dc4a4e471d01333b418f48d1bb2198c72845bdc950612597e179e612aaa1ba6cf8d48fb8f0cf5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f3fc40cd739f6e19091ba494102e30b4
SHA1 31070c5f3a837bf88ca7afe429537e1a936cc6ee
SHA256 794a9d43d835dd341234fa2d44ce4a4849ad5fe437a60caf15fd9455525875c3
SHA512 10bbd2818d6d6cc7d3ecfb41ad7528a1b97e17ba7d6524bca24e5bef5378f223e3c9b067ebec1df3356d57e9c2f14e6db5ff2c9c89663e93c5f457143fadae7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 f1e34e58b3aa38a59d755c51d91fdde7
SHA1 e6c7644d7ab1cb78b37817ccc56bd8970a2bb165
SHA256 1b5e484d57f8bc6bccdc2babba26b5ad9588963087de9e697a76310e79e41092
SHA512 f31f98c7c8f985e1f6d8fc29486c10fc57df1da77f2b5676196bd8b9b2ae0ea06e0968397aa0dfeb235d213dbc32edab4eebca395cb794e85f8c57ff52132199

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 9317103c9bd1ea8f0daf7e491fd65dfa
SHA1 dbd3844d01c6ce7808faf539ea7ebd51a9ad8998
SHA256 06c02b23cb65dad32ae8de9a429beb4a895cad13db07f6a5421ea24460495ab5
SHA512 adcaaa38d89d3fdbdea5794a7f4fe8ca8b57d25d87d3f4e74ee81bdf64bee72ad7b4c653bb1b63231c4841db8957f334f3290a97aa369d27e032d01743beb885

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\eb1b73b8-fecf-49b6-8141-84c912c38f72\index-dir\the-real-index~RFe5f2ed9.TMP

MD5 b96197df8e20b52c55a917be73130908
SHA1 47786f3153aa0705859db1ead11a2c102ff53a52
SHA256 a05906bec7d791ffc00f6f7d046896d1489a0f254c1981df23bc94158d4e338c
SHA512 4d0ac520c5f68030e72c41f27adfafc23ec7d72dbb9c0d07ebdab94da6f2a4db172ce00b3cc344b3a4e92d75e7d5a409029ba1bc92b37a15e7c5ab3992ee37b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\eb1b73b8-fecf-49b6-8141-84c912c38f72\index-dir\the-real-index

MD5 26685cebfc5d88adc8f291aa45fa409d
SHA1 1aecdc79d7f2a70177f60e69762196c35f0799da
SHA256 dee538cecc5293039cfa50386272d084f5c870cfbd9327963dd0a00356c170fa
SHA512 e19b8d293d2d161bae97e91d835b911125d8500b34c5a8965bba217e029469a016adf4d9f5f5019f694dd7a030747713798a246df39781967f0fab1ac2483708

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt~RFe5f2f18.TMP

MD5 5069431d7c7622d1ceb2be9025e0431f
SHA1 79996e06f9435f56a28890c3579d8997f9894108
SHA256 24f6a96076dbf1a0cd64ed12e76c7d0956624a085fc73b70e1d28be4dbc8e3ff
SHA512 86cc1737ed2a303109a3a44d58663c7c1cf0472b68dcf18f4fd79259fe984b58d03510dd25f1dbd041eaa94ec73829f03e49f41e2a00e636cfe30a4224381730

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 f8aa92580b5929aa521a48d4be2f8c10
SHA1 8bcda8dc60ec6aab519e0ff29069173887e21a7f
SHA256 7ccd9aeca6ee575898a70657fa8a5d342150091065a0d2270f610b785b9976a5
SHA512 5f71ac0f14d9f6dc4e5dedfed32718739f1783542ee4eedb0f88013a7704ca07ba3c21f95efde2cf5a41c7245420763b8f6d6de17b4f09ba7edc2dcfcbf0c17a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 54db59faf75f47f9a3ef1fc691261efa
SHA1 bdcb28565b4d2bbd6704e05ebd986e2bb015a727
SHA256 e7146a59d80ad999e74a17dff68e59d455e8fae35b74cb746833e613a538fd23
SHA512 d4351a2c9c1e534fb2f11a834f7c21e9e620c1d9567573d8f3162720b05602d7bfd1858f3632fcc923690ed69201755a58a2f52129982d8812d5870990ee50cc

C:\Windows\Installer\MSI5DBD.tmp

MD5 a0962dd193b82c1946dc67e140ddf895
SHA1 7f36c38d80b7c32e750e22907ac7e1f0df76e966
SHA256 b9e73e5ab78d033e0328fc74a9e4ebbd1af614bc4a7c894beb8c59d24ee3ede9
SHA512 118b0bd2941d48479446ed16ab23861073d23f9cc815f5f1d380f9977f18c34a71f61496c78b77b9a70f8b0a6cd08fe1edc1adb376dad5762ad0dd2068c64751

memory/6152-2565-0x0000000002FD0000-0x0000000003006000-memory.dmp

memory/6152-2566-0x00000000056B0000-0x0000000005CDA000-memory.dmp

memory/6152-2567-0x0000000005E20000-0x0000000005E42000-memory.dmp

memory/6152-2568-0x0000000005EC0000-0x0000000005F26000-memory.dmp

memory/6152-2569-0x0000000005F30000-0x0000000005F96000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_toikbd0t.igq.ps1

MD5 d17fe0a3f47be24a6453e9ef58c94641
SHA1 6ab83620379fc69f80c0242105ddffd7d98d5d9d
SHA256 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7
SHA512 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

memory/6152-2578-0x0000000005FA0000-0x00000000062F7000-memory.dmp

memory/6152-2579-0x0000000006490000-0x00000000064AE000-memory.dmp

memory/6152-2580-0x00000000064D0000-0x000000000651C000-memory.dmp

memory/6152-2581-0x0000000007660000-0x00000000076F6000-memory.dmp

memory/6152-2582-0x0000000006990000-0x00000000069AA000-memory.dmp

memory/6152-2583-0x00000000069E0000-0x0000000006A02000-memory.dmp

memory/6152-2584-0x0000000007CB0000-0x0000000008256000-memory.dmp

C:\Windows\Installer\MSI660B.tmp

MD5 85fcf7b457b7194bbeb46db22fae05c3
SHA1 5eca64d0d4ab4599852a475a7dd25beb88ae1c27
SHA256 e24376a9346c2d486ce7426ca3ddc73cd020bb7216f8e5a0b9b2cb23caddcf31
SHA512 12d46c2d63d221adb288a89b2fe0b423d4ae7579c24c36d651a6ce9488bfdc669a1e8378309c28f7019c7cfc43fa87e99b4829cace97715c0b94ac9e2a758339

C:\Windows\Installer\e5f59a2.msi

MD5 5f259c755b3dcbbbbc27f9513cddac61
SHA1 0e672bad7b67cc1f234b265f3af21976935c4903
SHA256 9cdd681fc86c1e816e652b0b5590d2e986b08bc26204e8048918a59c291051ce
SHA512 4c7f66962cecba4e753f3c996cc45bd102c6b7c6ab97bf85197091cfdb05ca82dd400f0888ead82927c61e3f45ea33e919a3a51da63cb5af1141a980f779fcb3

C:\Config.Msi\e5f59a3.rbs

MD5 1d54cda98a3427ceedd59e1ea304d242
SHA1 7078823315deaed5b8472e4c2c75bb36fdd84fa9
SHA256 ce841c2a6def82ee68873b27ed935575be99ce646490212dd41326f6c3bcd336
SHA512 9ecee55150d57275a6207492fc744dd3041eefbbf8fb977a4566ccd3d6a0b1695e4960eeb91c78a95fb225266efd15df7973be33dbb39cc648cee69f4308b297

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 8ac79913cd1ca79764c752ac4cc7d3bb
SHA1 f42f6f61654a5650861a62fcea6897cdcef0932a
SHA256 6682cd35ec6ae1c74cc37ceaf0aa39629ed2406ebf94f5062755e94ea059479b
SHA512 ed2a01b00d328b193f2f3bbca127c57b5fcf09f8412a877f4ccb9b0c7cc84f5eeb58b07893ed29585d8480f2a370a9e87dfe14c684e4a99b3bf511ee69154538

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2cb75c6800ff8c3e74fa92c7ac9633b1
SHA1 08e39c663635e0dafdfa3262530a4caadb33192a
SHA256 906748fcc8be3a3136eccbd94403de34edbcf3d7dbdcc16f2ba23ee702c9be41
SHA512 09a3377a23187a1fb0ef1cd46d78f1fbe31913facd41871d9b614fa6e3e78b7910c376a964bf010cde2854617248eaee42cbabdc854c92a45c2e1f3623f343a0

C:\ProgramData\Google\Chrome Remote Desktop\host_unprivileged.json

MD5 dd4c49ca5e9621ead85ff9d91233cefb
SHA1 b638774e22fd9845132c8c63f793d3c0a411802d
SHA256 4296b104601082c594e810ea256afd21aedabb1485b1a855e04b42f3fe560180
SHA512 d5bb7d7529ecf4ec451a1cc7cda60241a9f2ba60f18d6c455628511d0fecf13cdf4bce156a43ab9b03504d45fcf7006e7fabfd891db6d4d8d4bf02c06604d96c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 6debcd41f6fd9ff618277b966b5d55cd
SHA1 e30f93bde940920158d8717b6e6cc625ea3c3d65
SHA256 0d1f49fa78f33a8c403a90b17c70035d8664339fb7963440d4737b5114b28d8d
SHA512 262cb36a936b66b094b016390f50d840b427c35d0e109e39b6e0e8a05ef0f433323b3e3134a1a7d0a5f711a86962a2af7daaa88f18fd7921ec87a38fe5034327

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6de9b902aff86ea269ad90ff168d27ee
SHA1 62847ddefa52364ff6bb3604078dd27b07d42544
SHA256 ea10c0c65bcdc1a09f30b645734aa33c85def5b3589efe9495d996145ab66716
SHA512 864fa6b218321ed714eb55eadf955dfa350af688d8fee54b641f274cd0a626cdd9edf45c1fc0be21659bb195aa5b10e7ddce0ace458252ff70c9e8764ec739c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 2438173ab8f7fa830af90b7a32962530
SHA1 bc27ddde1121c75a28cd6bfed48bc410c5eb5466
SHA256 037d6c570128c516540f8229a09eeeea95e89dd042870266d74a601f0feb494b
SHA512 ec6ef5f2012735d405e7d95cc7d5ce19e5f6692874133543b3a30f8d5a6594f9e24a83fa6f33648b458a12495aa07f01a7e6b831430a3d99016ef89330dbfbdc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0d617735b720d31e896fe8ccdf0e48c4
SHA1 97d81518beeb5fa57623a1b74f08ca213c0869a9
SHA256 f4e96400f689fc91026ca61a8b7e9e2899bdefb705c329967c3eaa783ff7a34d
SHA512 605d52a3b0c46528c2a866a7197fdc43b9fb466c54ede946b7b8ef0a005e60f1dd8f660f96b1a6ffc5ec677d9f6181cd525a1d717dea7c2d93972c7ef6662b2e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 18316bfaa09147607b63f89aaa0f43b8
SHA1 a53f91666d9a8e4f4e262b9a3f8f1213f78c348e
SHA256 37dcd229115275ee8b53a6b97d77e7a16f6990726badb5eca53c95d25e081743
SHA512 fd0c92b2b9280ab4cd92cdd8ccf1125a9a1515825a04de7124ad8d9d0160ab946c21b13998a5570880534d6974268c3dd33b5d09622c473b883582ea42706a7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b9aa2c29d3399a3a84c28ed3703ffad1
SHA1 ee8ea514a194a363a16011ec3ee4fb3b455166fa
SHA256 38675d08218efaa82b6fcc8e3a21dab831d8d1bcf24d65881f3c2153b75ab9a0
SHA512 185c7a53ead90716f3df235722737f459f76b9c96d30b5cfb65c3837e849f41b3d8fbbc36adb54c1f92e000004bfd57863aa9688b4b9c2ce233979eeaec62846

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bb2cd179c91a003605d37a1e7557dee9
SHA1 2bb20aecc3fcd1525bb86a1ca23220d19199f635
SHA256 bcd0d43cde4eed20183a736a348fa69be55143f5ccfda7596762f28e2ffde05a
SHA512 5afbc025d97a131329c4242e8fa33fa320d7980a83147632b13f75d172cb5cd6fe8ef6822fc4b32a6240f9f12eb5cb8f70cdde6c969941bc87a46e9614167275

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af96f3517dfa944ea6953144fa0d2657
SHA1 518cd4f2c7f61ec1212bdaf82d7dcc9a82c5f896
SHA256 80d57a4cccc1e09d37dc7b5db8cc7e5f6f8edd6e55118fc0c7bb6960d012da34
SHA512 f6108bc885b83f9e8371595bcde5779c0452ce571b5c69978c5c3d4a054ce53b5b1db56f8b3cf762c98e4bc55c369825538dadc19f8472aceac1aa712fc04102

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 706243dcd836bfc7d5bb68542c5f1e79
SHA1 2cf9f362c8e03c3725ab551dce402108d3fcea85
SHA256 1f67df6cb1359e88d331a1088e59c431c821dbf33d2668a3ce6fe9c67bb3cd53
SHA512 27d0f4c52b949dacf8e7b94a9ffaa9fa4ea65441d3f48ea080b28e85dbc8dcbfb8ce42c211dc9a449ee764a9176b8ba9a1c11ae7f8f94613c14386481c539c5a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 79417e8216cb6f5a083b16ef071fbf32
SHA1 5fed48397f8426aee02faf065bfdc8ce6c131490
SHA256 a677ece27c4043e111442aa3a2204369f3cc858e3fdd0cdbefc1b26495b79de9
SHA512 a2e2b0641da831af00f32bce86f44de1aaf86d1a6276ff3f64974f6111ed06140c566d58908a0daf0ea802d7fa77295fe3e5b031ab895fe53f5acd2996a75fbc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 357a48db8f23a2e4f91e845a0221e9ac
SHA1 c162cd622a5cb7dd382fdd49e4b342eabbf72d62
SHA256 bf01530a39ba0028411bccbf700345a10905978fbbba22f23051af2ce69598b3
SHA512 67f3955b2db64b094ff7dcdd2e0cd3d4b424d7fff995728fbd74448a997127bad530e535b75510143bcd6e9eb50aba807365a9b47db64a3af07adcbf3517db6f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fd4d7dbc6d3b3169844361a33b8c7e3d
SHA1 185cd7f0c533f3cd5cc077d3e552aa0941bd068b
SHA256 a7d4661f35f9542222f5807ec5ffd46f77c72920d945bdf6038cbc2123b6357e
SHA512 e765eff1b8620ef74cdf3373e6a1ce7eb3db41a4de88b66b87323a5b90f513a1a1a63cbde7aaec50e854e95d1c6cfe1afc2a73a2507e4bcdc62773f2d240d733

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_0

MD5 cf89d16bb9107c631daabf0c0ee58efb
SHA1 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256 d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA512 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_1

MD5 3c1c9810ff91a151428d77de74031a57
SHA1 7ed11a7c856d1e0d6a6b4d7f46f3306270bf7b51
SHA256 f8d341282d7d4be38a09e615324ea5ecc154a79bfae9579d74d04c8830cebd8e
SHA512 0bf4585301a18870bf70910205a2a0d6ac8c8c767c9f6f31e4c46f7524ebb0dcd59715582fda2943e19ced801ff46eab6a950bfa20dc0588ac2ff019783a4592

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_2

MD5 0962291d6d367570bee5454721c17e11
SHA1 59d10a893ef321a706a9255176761366115bedcb
SHA256 ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512 f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GraphiteDawnCache\data_3

MD5 41876349cb12d6db992f1309f22df3f0
SHA1 5cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256 e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512 e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

MD5 a71ab244d565671f741686cb2c5ed11b
SHA1 b6e766a85f1f878d512f752df2dd4873971755e2
SHA256 06a5716962f3b50a8aa3acd30e33d6c75664465c3d795196ad6dce5e33a80faa
SHA512 0826c8e52b0f5dbcbda745f06390fd59ce9eee8e0e845cdb007f4a97b19065f2544ca63226b34d361adf9e1cf26644672abfe5dcfd75651cd2aeb1ae27f16f84

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

MD5 44408d8bcd8c4ffe97a60ddf16281885
SHA1 ab8773e27c92a24e12969dd4dc6bb8422f15d589
SHA256 a6047cddc1126bc128da907db3550e725647640752e6a5c71ce9445735a9e83a
SHA512 ff4e382bd3d00515f57bb735c6ffce35afd9f63a8def25ba18f722e618ac9f107e31e0ab44ff7758394e9ca7f52bc67b0ba70710c4dfd6afdb470a34093a35c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 51db86b0c9852c4390f129aa3954ddda
SHA1 3f68db1d72f5245a6fdfd21fb508c37bd199d2ea
SHA256 9acfc09d1dde2dd63384bdc2375e6e541a0c268480c8847118758ac566914d58
SHA512 3a5df511760d7429879efa36aa67d6bfc47f9d6031c226a6d728c2530e84b7e4521ccccabd0008bd7e8b9d910f1ebcea1413393deb27667f1cbd77718cf771c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2de06b2fa4e4155645c9b56ebc85d90b
SHA1 0f487247240ca7a922ddd5a93eca3e42382d156d
SHA256 214054929dd40af82f9cd5a2a85e85f4287248c99d3db387dab92309048ddc48
SHA512 0fd2815e26536f6ee22f1106d39f202580550c05226460d8e07d65b233946f25cefd7cb6f48f6b6316db73e42eb76fc5f80b5d3020073c2c029ae33685902462

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 38e3331dedf3b85634689b4c94555be2
SHA1 b87c5cf8d6c24410f39ae47cb6fc7efbcd5d540d
SHA256 04e0d55850f2ae6d16afd0033c4da27ffb53b064b5fff983ad5d0c5023be2fd8
SHA512 9c46871dbc42141def0b735bea8c434cdf012559a441d63f7291e58c024fd19f936b6b8e03e846a9d0cfd1c0a153bdd537efdad402edf57057d2f32743d8c53a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1c3e310a284b138376d838a1e5aae90f
SHA1 04df9d4b7fcb9c8b5c178567c7e42b5e7efb5872
SHA256 3c2e04c45871d65dab9002f37165187a0e262b2a206a2125f8a8b66767cf28fa
SHA512 abdb9930ba791f59844302a27f2cb8354d6e2a0039a954bf8189b31acef9075941eebb1755a3252a4bdca6de1558cec4d6bb57b7a68cfad282bf15cdfec12774

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2c27cc26fae2497fc37c8e26e1dbdb24
SHA1 6f0a6d7cceb3d9073105cf54fa18aaa74f8c78cf
SHA256 273753a6ce2ba38987ba82a09dac0e027679fb63e2cb96ef48c03ffb6be73782
SHA512 598e5c70972a62ae4faaaee2cc1ec59eb471db616e8bdf68571c0c3e987fee7c84a824d6830ec85c29c6e44daae260319d02749bb0b73fda2d617e724162d9b0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ea5801919de2f4faa70c3c58abbbadd5
SHA1 7eeed853dc7ebef415c9762e0d5682f9127d6a71
SHA256 a15cf2a45f11f4f9c7aaa689b230daae8ff5ab608914655444c926919396882e
SHA512 944b31735e178fb5268ea1488f43e068adc005b7f1d09870492ba2426baf7a69ffc9e15f3d22b786cb0dbddcf5d8a15a367060a3cd5e8a66f463e9ac0cfab992

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000090

MD5 0decee14b0bace4fb687a35a42bb9c15
SHA1 7b9584990c69794ab90c213b267e355e69e5adb8
SHA256 a117fcd83d4fb82da057c647da05edf5c6d08cedbb36cdd924ab7ec5cd02cbd4
SHA512 a309216bcbe9c0f098bca550fe32c04634ee492bb468381bbfd66a27c33276fe6b88077f11828d3403bd7a79aed61e3c0e49c39e389d1afcce4a96a10dcc0e70

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 cecee1e5f41caec0cba9583c823b95bc
SHA1 13155590f949674cce80f034ecd6901f6acb142c
SHA256 3b849b8589572f9e1c5b6b43cbaa7cee9e40998482677a47fac865d23c1ba38b
SHA512 d3b2ccaf24b6439e354dbcd419552d5557383fe64030ae707601d7d5e4bb123e585631de2902c783ca101bac3e5b82b26b876980ce61e483650aa603ee671638

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a38bb1881c19be1ab03fe57fbc860680
SHA1 5c37fdcb40d891b21562a4835e02947c5db3aa3f
SHA256 3380c49fc5fc4054dfcfa62218b30bf64a4d7b027eff86ac5aadfc764e27c1d8
SHA512 dccd4c0075b8f365e529fa348d1403b3758634a508afa14fcfdcfdfc0e23abacd254fb2c6792721e5c3638fbcb4512b4da36f2e6456c01bf4ec8b4ddcbdebf1c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\bfa149cd-6709-4339-bfec-3a2d6e886721.tmp

MD5 68836bbf56a80a6472e36f6619358a75
SHA1 b19e9b164dd278aab831d66ed0bbd5549c52bfa6
SHA256 dc0bbe82f6e1ca95bad41fdb30f536705c9882b4699c0a41d42e16a4fd355425
SHA512 0db614ac0914eae8a0ebe8ca40d4ed4558a4879691f4946879965dbde8a1d449b5a18e5cbc6d07cab486f239ed698b89027335b53b65a9c9f61a1bacb03c7dac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ee92bb9f00f01efe780a889bfdf82ce6
SHA1 e2d9e886a281660edeeb87ea2f79ba767eec8907
SHA256 92c67eb44e4b8ecb790de720db3387a988a69233d42b47e2372811222b5499b7
SHA512 ca215147ebf43175fb58baf2016e8bca21678ce79c5a528f0744a82d3e1eb2e185ad1a5ea16dc92d2a2b39c69d1c4a308a46ed4c3211a473e74b3dbbe25ca37d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3ff966318b1eb21e2260679ebcd65f69
SHA1 da47e80ef02940f85929e78dc1af88a58325017f
SHA256 9c9218cd7c4b571e7f3edd681da59f166a21427167c8adea5b8875c54936acde
SHA512 cffc9bfd0f40f256d989ecec85eae2a2f285588ab433e665c456751e0b4180c2dfb5cf3e39f8a445f681af5f13cb792e04db266eb2f5c94f96c7cb4828ad1e4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9a2e16955e95badba191a3b6f7353844
SHA1 e005444dff430a2cb82e9f099679735927042b15
SHA256 97e158debcd30d7f67d558d498dd66d57b9e181b91467a853a86a770a7b1bd5d
SHA512 c527e691cc9e615a8e7a9babe95b14b1e29528cfc4ca426593ca8ec9b00199da6bcd7e859962dd70a5fcc39c091975ee73e4e4ba3e8334a97443028dd84f7768

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 065844ef94f4dfd8819a153dd447dd82
SHA1 fb0eb91f7a468adaaefd677eed3d7898762c3d83
SHA256 8f1f9fa1973c38c7eccd26b0259a09b0506973954a306cacffcca952a18de402
SHA512 39498dd7c25ef025129ad23e5b32b03356f6dfda489e1def403795658a45f902b97225eeda0bf46cd25e4ef785c23eaa10ba933b4b76a5a900b873ae843af074

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5938e004622b12f372dd24a7c2fa68d2
SHA1 42b8235e16882595acd2a30ad9c72b8c29f1c1bf
SHA256 a06e32a102ce39bd3a894cc843c3e0f41282607856531c8e6615c5be7817ced4
SHA512 d52e3d5ee8848a2bec6e066a09221ccd2d1cb08238ca5f4087f49ee6d6eba58a9b0c78b24d023b238c3e7ec936b8b9b01e443fbca5753f90a1f9ec3ef37ab64a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8814ce1cb759e71aa83ec2a6f9819716
SHA1 b36becbfb8d203d1ab30226437d3d9993fa43fe3
SHA256 dea616962c56c8f0a08a9d14abaa1f02daf365934f93712d55a01bc1c7208d12
SHA512 ebc39b8cdfd95223c54dbb431ceda0e06eaaaa5b0f7c1961be7a651e0eebc1925415a290eb25ac4e5ce644a5ace9a19623536c59b2a90311acb9b626f426eaa0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f3eea50276c61f2b90f1b195365f7180
SHA1 c05bee182a92881403942f62f9745b91832ee187
SHA256 c3eca6694ebe00117b5d02503f902c27882390a91add9ce8574573b068ab0e76
SHA512 e609118ea24cc812096f700b01d917dbebe1495b43f3c9cbfce9407c22876e7a6794a0ecb0bdeda285c64c585b8329286a6e11131884b3b8b94516e9c65cbb40

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 453b65b5e0bfaa8669da9fcb7c6e1fe7
SHA1 64a3c8e5222067057c0c93569ee1ea9c3df74e7f
SHA256 766ef1109e91616b541a98a38655ddcdbfcee673e487b0fc8d9b8e9a7011ee4d
SHA512 324548181601bc08b7acfe7d3735dd06dd339724ed2c6aeed8f04a8fcc7ddfd790c7828c2d6504c2ef5a5dafa5d7c7659d863e2775f28cd50756ec76ae878696

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 13557d5ec8b1e7e9895a7cfbe7a9ed99
SHA1 d0515f2328ad5e686251c6aba979950b47caacd4
SHA256 28a336efda8c7d382cc75b52f8a174ad7458f141aae907772ea4dcb73299ba12
SHA512 6f33a7f8ccd8989462228a5e2568369ff62b24a1f34badb5fd29e20b03a84be25383d1bd052fd53ae101740375128086b559e7bfe4221402de4b8f5654b20937

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6f680ba011e0e2faddd407f859d6acd3
SHA1 aa11e34a94b8c7e1df628513762118c0ad2cd1d8
SHA256 2afa8a0ec712a8afa5f4aa7b5d31415a279c9c3ec1257becba1ccd890606161f
SHA512 d249c71b0c276ef29542d42c9fafee24946afa42b8d732ab727257eac2905dfd4faff04358aec57ed8ff83cb6df0cb2db90dd55b93ef1db435204a90d1ad93ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a3bdda2c5f9155288420da9ab55494a
SHA1 171030dcb78dca23aa2448849ba6c7686f2a5150
SHA256 0487ac7210858ed3af08451e891af1e88db94d08042e75ebd3f7f5c6b0cc04df
SHA512 c21c01f2fc0d697e0ec1134c334ac355d73c488a4833de94f340e249bcdabb144c7d5220fdf168d3db8cb83b61760858b396dab00724c766133412f31f48936a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e736ef78c3bfe1d5dca4075e01c73635
SHA1 485f8946c5d0bd046d2b0497e9da2a95d4ae25f2
SHA256 0bda1397103ec649b423309a69bc9892af87a5f455de364ab83dbc15ae6a6232
SHA512 ef9c47fbb3c5bee32dcf08631a41ab28ac3248b5beba9c93c42dd1096c568e25f69d392c815453ecc7e8fe142cd98fdd058a0a563eaec2cfb85b1a5d12655864

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c3c538942dec04e0eada2d710313e264
SHA1 cd09f5b754ac9e9ff1b4fb0f8a2fb5833729b2ef
SHA256 5ae5e844351747c11033aa42c93ac88a0b6485b07fe9e9784163aec34ea559b0
SHA512 6514d673c4210cfb696dd548014617fbe5bd4bbb7c9307eada1ce0b2cd6c59e956ca1fda7069c0cc78d5d43ea4c3d0d58d1a088dc829cbf1ff87e55d2bae44ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6b2da53849324699eb1344460ea8dc77
SHA1 c580912139e42ef84df7589ad9dbd5258017413e
SHA256 01a89e40a19704120a6b480501ed6f8404fcfdc185c255a4a29b52da8a635324
SHA512 857a3737935a60a91083c18347d2f2a0c583cb1313255c2cb52cdd58d1e702da339735370bc95e8f0e18778b906902b7c2b37841a3d1ca824592a636d3a3ece6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2cc80dabc69f58b6_0

MD5 d23734f83edf4603c0721f3de6711569
SHA1 cf00cd364c903175ef91a18eea7faa9059de5ab3
SHA256 574c8e685746ed65f8ec36cc0e4a693d3c35ed3ae8321de1642f553c7af5ba86
SHA512 1f1aad263efb1bc85b23e99a29afa5863a78b87eec4f84c38b52a736159c4db9d75b26f5f7bf07aa2eda173e4613c534cc87dd6665162b4435ed6119b83b8b70

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_1

MD5 c9e1df3697c1497df1ea0b586afe662d
SHA1 6ed6a7c5d32a1cc492596eb950671afeebd501ce
SHA256 e15a09e11efe31e65807f4f87502f80cdc1346756ce1e38e25927fb907b53b7a
SHA512 9e5181cb1ef3bccea4a9468c55de85f63fcd6ea2f260878463735838325caa4be6a095fb1d91eb92053d28145d8dfba4f566912163f13227ab7fb49c54ea280f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG.old

MD5 6d61db439137f8adde4bcc452a68c037
SHA1 0b19a7d1b089373e36063eeeafee69b094cc9f7f
SHA256 079ee83784dd12d84cba4e0394fa85d7606bd5ce86ff14932c42bc955fd6558b
SHA512 57b9117b4eac1bf7cd9841a4d1b90cc54f16e649cf4e40b44b0df952757fcfba7f81000e5b3d83923a50649441a7b655885efd5aebc7beb2cb87664121275efb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG.old~RFe632abf.TMP

MD5 c4f82fcc7e8af8d5a43b9d64d0166da5
SHA1 3bb7aab1def52f1da0c475419ce3103d88065152
SHA256 ab4207a46e7c7dfed4efb8593fa6d70d9dc7064dec0078614d2329fd5f74ecf1
SHA512 a1d2dd5bf3f84f9e11ddd8aa6ba5f1b3582f9a35e499fd3d3406d91a79eef8cdfa15ef41139bc1dda0071902faa8dd53226214b87827c4f68ae571e7c0838992

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0a28896da5b81c06e0fad40cf22677a3
SHA1 ca465cb180baeac7d5794512911ccc5747169534
SHA256 3e4e5413c37f1752409c9f9d708e49df0175f0e246e692549cde686066ee9246
SHA512 37d359ed8a8c6f0638254c3fe145958e6696165db7b9f31f56f2aa8c7e230e5ab4e1a447e137012fed4166f72e7d30090fe06e4f7710c2602150eaea0da152d8

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 32c1ce114a31ab50e1bb8d20f6f38af8
SHA1 9059773a2381512c13c0ae88185184eef0a145b0
SHA256 6b0d5a556b5dc48e110fba5fe76ecfcf43bc59f7d1fcd2bbdc8056334181abca
SHA512 c7fa7d05b139594284b5fa40219acec911313be4b130e557ada88696d29353f42fd8d5b82598c6af3a41aa2bdebf7dfd257ba4ba9c03685079011d73beb7ee16

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a7b9949b7e55fce80fc9fee7148b2cdf
SHA1 4b091a1240f0ee8f5e010777463e5a1d05631f28
SHA256 d8a5ae96caaa880d890813ce361daeffa1b782370af5f0d56d2c614954884259
SHA512 c566c0913933148c129e6d5eabe5ec3c5713a04523e0bcc5ddc85ed943b371618c6ec6d482a73b5875f497593774c6d980886af11a66aed5bac884b81ad3c00e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b0e03bb8a7f67431e133821a2cccb9f1
SHA1 1d87b498aed52789c397ff1bd3bfa2dcd87e32db
SHA256 56f1fa6225d2290f16e61f7d49f41f4e554a2defc24463741547d47b7d1bf0ea
SHA512 57f0f06cc043b1f2cc57d4fb383378f4a025969efd0083c3ab5da3b66c61309044afa4225c901739373a05405173bb20e5c8e78a12b963af670368d5dcfea8c6

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 0b1085927277cb1286a2ba669b47c3bf
SHA1 b77a5013a507ab7a7350088fce805e2a883067bf
SHA256 371c2cd9192b4a2a38948cabe765ddc82fa12a25f7b0479a340c67f38b3dc782
SHA512 618cd71f36cdd20846fbea29ca89d68daf9f90ffa6771805323a489f1f9ce37a2d5bfed0e662e9f8d4be7022c351d8a1ac18ec09190448271b5f84de48a11480

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2c733bcf68196a1842e3046d2f7e240b
SHA1 f7f7cacab642b9f03f36ed50e32d41f399642a35
SHA256 9b6f6c773a9ae294b64a75bf3a9984679464d3eb476936dcb7325f6b6657ae6c
SHA512 da837956415e2c2ce2a8be089d89bf4679f1d316b508e3cd735d1ab02b417a52c4c5f1ec3424ba2579214960a900ccdfd0c57c94e8bd1d2e621282c2e9a37f27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ba57fe6edf2c9e6afaf170ff3a502675
SHA1 c57ecd8c200abbe8a2f33a8f3df9376c621c1ac5
SHA256 db8ed430785b9560350456bc993908b259d1aab6fee4529c00c74c4be9b57084
SHA512 a3b482f2de599115bf5be3a1a2868522fa2237c1c3c803e5822dc330b6f7048f8dd8f725e7f705190a125dcbfe8bd43945b1b803da09995efc7f21f410480cc6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e8b045f983c47e33da79647534e73c01
SHA1 522278ee9ee5076d035d245cbdeeaac6acbf4d43
SHA256 e5ca482fe49140ca56cda4f2e9e00f71fec9167206a054c25d9037079243f18c
SHA512 63a87258c406c410e948e89b005a92d6f6e995b5df523ed4279396048228ce2fd1f5872b3fb0d011a03106eb8f83f2a50e23771d0b56a309ea4dd0eece97e99d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000025

MD5 dad7cc9d106080134ce02faec43519eb
SHA1 d101bf73025dbfca25b61946c211190c6b4ad47f
SHA256 09b9a998faf0b41c430c179e4d853f184393b4cf2e58e71fcce0e880c3635a07
SHA512 72b3960028779f64a27186704bb01dd9997401fb536d40f3dd465cc5b2a716ca096b616c41a7cf0a1559713672a5cb1908389e5bb6ac5f6ff5256e464b324421

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e36eb059b65bc4789a7772a09193da11
SHA1 794a76726c302a69b48dd3d15f4e403b1bdab5b1
SHA256 55e7eaca5a245116b35d56b957352e0ee420ef62bb9f544b5b39fe1eddd1f4f6
SHA512 0efa8b1294b7b6e47400691bd70e452984e8c215f381e9d2369b5fd2dc82e6865308276f6d5e147ba32fa7d885a5048f8afc1aeee1c0f0766e909fdff38ab169

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\3cae4a84-c2e7-4117-a359-18a5b2aab62f.tmp

MD5 fa69408da0b5df5187f128621e07f74a
SHA1 18d633010ba9789d75536a0bab900bb24ab4dd73
SHA256 9d45f9240243ebdebd5344cfb9b947c1a957a1efbf78bacf64ab0749bc3a95f1
SHA512 3e9535834887910b9d338dbb74892bb089694a3f841878afb1338e014ad318f8a2fcd0eae7905e948ed8cbd09900b1a6a276096ad0a8aa772fd80beadb030949

C:\Users\Admin\Downloads\Unconfirmed 899626.crdownload

MD5 529ac613c7ac1ddbaebe9e7d9f82eca4
SHA1 fc8cb991735a98a9663776a61cb9c185a3335f94
SHA256 cd6a5d746b5c36525d781e6d40368f87a3edc3ea157bf63fb55baacc51337f0d
SHA512 e2378819587ed7eb417d0375d49a55ef9292b9e8d22718a52688e3fad59d68a711281f25d1045a9da5442f2d805b9d98aedbf4278c9188208bb2edd917751e04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7bef8f6c91c0f49c6324c678f9eac625
SHA1 e2eeeaf1359688bcdd3a469d9a1ab8ae4d5a406a
SHA256 1996ad88425de0bad905f894ddcdea079bbf8fde0879ab1ed2f79978bf9510a4
SHA512 24e6c72e9d3dfc0c039ecb27e60244302beb286c8fa7d0e1785d5aa2bd6b671ed45d441743b088c2e10eb9e63b3da69303941219ec08d94a1e0606ae8f58e61d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 6e17deebcf23664950b597208f20ccd4
SHA1 2120f9d58e31b731bb9dc83b5366008381c03882
SHA256 fb0e6c3178280c6acb80b616fa1a26731472b6eeafee480f7bd4011d0eb6a7d1
SHA512 f566077e07e5c092b178cff632f24e72a56d91c44a84664ec22dcaaae7ec547a97bd2cf63565d87018084ddb846d702130b20c6fb07390ce3e00d1750177d8e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b2f05447e75f536480b085e4f07f84f1
SHA1 649349b9e0fd8ef1e65e9570a183dfc8a598fa9c
SHA256 c0921601fa23fff1373c84b126ca9c73d13bc88825684e965e9b5137875e675d
SHA512 00b081b67686bfdfcbd9f08e88693b8f86bec113034fd0d02c97784000ca051ef2e42625371533a1b916a272b91a29c41e21774a4bbd42047f35c06230352507

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9cd9abfea4276cfd25a1c5c2ec6718c4
SHA1 f7592764c625d1aa553f099fc3fb0de06b9b75aa
SHA256 ebf4ea8681c5039703ffcfc75df94163c99ca076167fc13cb4e4fe9067856244
SHA512 1dcb3733a0ebbdee2cb66f0f7cae36842bc34aa3d5d1a8963657beb1dcc2c69fae6bf04cff1f66ff8f0091bc9195db71365a1df4910355f05fb301ee72ab90a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1380177c78a855469148d7d9c4a1cf82
SHA1 9f8b5abbd5273f1c93e446140253638a1556da7a
SHA256 c41905e007c804eda11f8f32407ee403d1919840279304ee75d433f6a38a49fa
SHA512 f414a14b8d88c6c23fb8fe35aa927a61458380597fd982be8f59379ae109bd65cc212f3b57fda4afb37f8fda801b960e2be1b7ee908a7e8ff2a15a24d90b879c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 08349f0b3a4a59b3dedb83b2cbbb3cb6
SHA1 04762002ab96491a155a62d5fc302e81ff8f139a
SHA256 34084f6214eb35f25eb531f44919d36cbfe986c5592850cec7d0de2a5809eb6f
SHA512 8f2bcfcd24498c14c46b175a0c57c14ff84cf2462fb958f9f3d9df761139e37355f9825de67633d788bcac8032cfc9880a9065fde55ebaa06e535ded813d57d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00017a

MD5 84967109489c44ca207b1dba36ca11db
SHA1 ad2d46aa21b215893254389eca5289af46119e4a
SHA256 79647c8f92d7927d8a6ba9c4cbcb39537af265fb7c169d2860a22cdf22a7bb9e
SHA512 f44b5985b6386132436856699c5688902ecb5999092e47caccddcb765ef1f25a4873291ef2932b672be865b98d6c21526ef62a3ce89e764ebd591ed12b7c1692

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 568e7e61523398473af556dae2918fb7
SHA1 4091b1e52408b3ab3d34683f0b442fa35e661f9c
SHA256 5a4c156e40caf101ec0a0cc726e631af8baee8c05a74c2822d16a4d9d824f541
SHA512 e58b30b6b81c7992eb7754974941b789b465e9caced2cb4fc27709c77da9eb0ec6375f1f4294ed2d3419abb7d13224dbb96bb93008ef94308670f2daa580cbb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt~RFe647976.TMP

MD5 c7daea69fe4126e760f9ed5fceee66d7
SHA1 3375777ece63d4d90ecd2dca3b09936db0c1f675
SHA256 df819701a2d6b1b24e6b79e77fadd448818be07a74c1b30c9484ff721d5f2740
SHA512 da2c414d4c1dd2745b23385eac571d920cef69e45a152ecca875cd03d69669f91b661dbec154b26414ec47012d185348d0ad4cf66af55310410d5b17cbde74df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 69982d7d59ae1aa6ced6efab810da9a0
SHA1 c81d52c6435f1afceafc3dfa290008f16819138c
SHA256 bc80b40689bbd518ecd0cc756759fb241e98538601ec04a695706fc0e69a8120
SHA512 15915eeda96207834a558410b63c328ad8b6a4c3a7c840b75d031992ebe9ce130c7fee66598e012b6cd357804cadd0a154680303f30d12aff3e51c2e7721aa41

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 e3025cf28cafdd81a2ff375a60a24d14
SHA1 1c39a51602a21cca58f61c569e425206ec2abe17
SHA256 0942b984feb2361e1e7bb3676ff794ee592d13776dc25f6c464c83e65b000253
SHA512 0fb240020ef4d86db0329d5d8920ad21476e226bd4dcb8b5df02d83e9637ae842650440568002ce4da5cd87a1a1ef2906f8de997842c5479d18f12354ad53552

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 af7c9fa436f023daaf17e54939532ce2
SHA1 6e8ccc5c179862e4631c77035364d93338b38c57
SHA256 f8f3ad1924813baa511adda0391efb9a814e8d81ae3c4c53aad6f21868abc046
SHA512 1da5ed9a6969ac5671bdde7c6317fc130fdb17da2a5cfba992202772ba13af91d3e07981fdeac87d0f851322d029ad3d00e824c73ae06d6c78f69685dd61a7a3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 37705b97ac314d186d90d7ce1c69519c
SHA1 c50b81d27882c3470943e644a006ea2b1f6632c0
SHA256 262daddcfd8d553bd87e7bc53f08719c77a504c15b1cc0d04cd4417a77d35c2b
SHA512 9e14238729411fd58f48645f8cc37d7d9b24464c03b7ca61ae9cbd6a70463a2d72d323e79197a4a876a2c480251e62dc6931cc8d9233ee8907c7488301f4deb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 1f0e1de9ad348e4fcb881b538ffb4cde
SHA1 b161a17b52aea841328ed8379230662284cad08c
SHA256 45944461239b265930bb202a78e9968336a369325512934641f0fc31f97efd37
SHA512 d8483bc46406aabe7053f6f766e4db59d020d9b642b966b53e5bed3319f73bb23a3eb079afbfaf27d88e9877a66f9b9d9fdb24b648151dd0048fb557d8369146

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 8fbef3868a16b59592f58eaf07824882
SHA1 870c3cab1023416a94fd213e9de7739b55758651
SHA256 9cf7949377fb10cf0ef9fe0f3f614580582eb86bb07aa823beb2e07c35759baa
SHA512 dc24130a4657aca6ba1a7ba3761ff40f760449d114b281b3ab3a6f227014ef9fcf012d1b7383214db1e82c88937a8f69a129089b40c7a2a24240cd736354c9de

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d5b22e28cc8efd226be30d356c13ac7d
SHA1 44c66242c07955908331dad8264a9edf3d73ed27
SHA256 b150b09bac0c3368692caa37af17b18b64fcf3ee6e38d90765327cb41111f23e
SHA512 15f1344c8a52c833524e59448e11160540b145b9216a4f39a0a9827acbccfc84de1a4362297274301cb961239fce5be4ae018136e4badecc4b672e210214db21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 eb6ff8ffb5e9f2b7c6884a674d7c321c
SHA1 c18abd020ce9a866df4656c6d6566eea489cb197
SHA256 93d89f0202c9d2d2683d2947d09351799bcefccf1b8bdae74c9763d6ed1e1d9e
SHA512 6fe602c3c7feae810dd5ca2191933a7281a18bf0da040b2943ea8affe7aaf73e5f5c7f3152485a962be9e1e879e6a39b16bde807dfd5c15adc5269bbaadacd85

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c424705a5de5c56eeef79c18ff9a7584
SHA1 25adb75c5ec81855299f81a2cbd2bff0c432b942
SHA256 3b30eb0dcaf7286f7dfa9b2a649177fc90adef264d8154bc04d5c92e8fb1a6da
SHA512 13041aef5e1809d73dcfe12c1245a941a9ce1971d44f08c23e42cf084d8cd6fd45c8cb9ba4928c32ed96197c3828a4fd80c716177d4bd935b5c703c1bc6b700d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ffc577c7969115c49e2a2c4be93b41e0
SHA1 59e2242f7aa7520049b8f2ce4af8886792f571eb
SHA256 9a16ff3a999843f2b3453c9aa47538589f2788a4bb35b7985e93d8f2e197577e
SHA512 d78351cd31c09743d28190e9822219edba80cfd72f76c9039c59b615abc522af087e19d4300a8ad6a308f68507b871e761730f09f641cdbca5d7c611c77a9f41

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 ce100c9766d06c96452d139b3594ee89
SHA1 e99f03701b41c60ad1c1b8054e80f3f67f9fe7b1
SHA256 3bd8c97f619f6b64d7c1d7f5481cdc481a75f4e234e591aee24f157909bb8141
SHA512 c748419bcc38a90a65c19654724584099976c5f579491b33c31a2d6c3041b47a58c7e5c7266a153ed079f1eb76072ff9e3dc4023d31918971296d8f03aa78ae3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 321017c98fdf995937c0e0c264b1bfa9
SHA1 8c49818521d55cf1269eed7c53f957ad154d6cbe
SHA256 3bf22295cf0f54983a0aaeddc0bfaa23a6b94e820da920af687c0f21c7d0967c
SHA512 3245fc42f38ce92eac9eae7953b942441b805fcd0248de15aaab668fafa83381b40ba434d0839b18c7003dbe6bb9d6a2deb973d04726b10fdba9858342ca3539

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d2db90c78e38af25ecd26a580993ea7d
SHA1 9b3e1fcd0471af441ef1cf7a3f29db2b71035aa3
SHA256 24757a88c7c48988dbf6c6bcaa76d7e20ffd706f356b6b878163028bda3c0877
SHA512 3e4c7d58170de4aa4c85c56820b51a8222874828e4f33e4c995d38c977432adede05616a33421d3d31812382c8ddb33c9039fec7a236edff888980ba4a80ab38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b741b46d3ab9f57ebf185e1eef691b26
SHA1 5c342912d15f68f0641acbfbfa93e0b7dce1f9ea
SHA256 ca0d1307201a3f95988b0f2a857f5beb15c41f583d6f20f8bb76811770787f63
SHA512 6f1b4b1dc5605867654f6d9df0bf9845aa18a4bee138141a3ec9f2d5d6236e7afd995a89e5a3f830a75b2bc5a6c0d3ed99e89095d008629f3dc4d080eb60f3c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 92cc9d6bca8b13c15865e4987583730d
SHA1 6a069607bcce817d2580347d1ecde7ab67ead987
SHA256 d6eb3f676356a1e0d165785c4e8cdbe9d07a1af30240fdf7e7b1b8df9c1b6364
SHA512 d5bc22636938c9aa3972cf11d7fd2224628cad9072640c8632bd1c337533ee07954c0d9fdb6a665488339597d3eee7d2025fbc1586de9025bc7df978d4d0cd5d

C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat

MD5 7aee2622c3c4ba9f2c92c94dd35d190c
SHA1 0437f11268339b755fcb68389784288cd5fc4b06
SHA256 8dd0c98dbb2a2bf84cd71c769ce4553af8dd66195de047d2d8f6a7ca7b785db2
SHA512 149b82f3cdc76ce480fe104a5f18a6a0e73936fd9bfbf4d32d97144e3c8a59f2791927bb66e05a201c3ebb35f302b7ef33d534cbd99bf6a12961016a23fb7cc6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2dba9018e961ba115dc1dbc143cc4174
SHA1 df257724ea42507edb5db0c27bf2efb3a4199646
SHA256 7e8aac6f22306cd1f79a8a3e45fb793bce59e45a36889a7322c5e28dc5af0481
SHA512 09fa0b64e12c97f74fd49498b2ddd80def711566e64f998c340014cb213f226f5a7ba2cef7ae9bb6a6abb2727b94c1134d35721d7cea3ee23424c2e84a3270d3

C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Installer\setup.exe

MD5 776d096934ab49e06d98f228f2f09578
SHA1 85843747c6b28fbfa094ffd37306260a0b80665c
SHA256 4454ee06716329235c9395b1bc3c5498565074bd43fffd70123935ed68096796
SHA512 cada5800ea29613e4cebc370a77b0fa589656ed27cf52eb3f6ae0321d951a98afaa192ae1e06c3a4662726b64a9f84903cc3ec633f7170d1bf25cc66c8ad4354

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db3c1dd3c1d8a417721c0d9be152e370
SHA1 ee33fc05eee1d0428f0dbd761d7bbdba66773dc0
SHA256 f52ebe51983a6a50b52775992d127bc58e5b8a792258ea77ae9c493b6a7f3a74
SHA512 d249de05decebe544f9ea41b02610ebc66aa25857fe154bf33433ece38c73fae308877b1f73698dcfd5601572cade812d9edcc60a84f52d97a057189da057705

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4675e60d008c231d2b385121105ee1a9
SHA1 571fef2b75841a796daaf181f3184a7931de5831
SHA256 fd7e51c4bd576a8560deffaab7fa5ee6cb8e589a9c29b4037a33ccea426d54c0
SHA512 dce3de24c5482273d6cb04d3f3792e309d3d7e3fb320c1938198061598554b55d5e5caec6c332ed456a48cb10e4e9073978cd09636db13d6d1948a61b68e3dda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c23fbcc7de6344e4be33a1ebe0395ed0
SHA1 a3c190d647ce890ca69c76ced5c306ee39d814c8
SHA256 a8fd2f038631c45e08989701e24cc8dc40a58491eab62c33027ebfbf92432708
SHA512 6d6a273fc8d1654a413ba63890531d667de52207d14f3571b4ca51af8951d636ac8d09008db0118c40bd6f185dcd481f425cfebd987024d770ad0971ab41b38f

memory/5304-5408-0x0000000000C30000-0x0000000000C65000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 67cb83e65e5a73b1879f3d49558897e4
SHA1 d5cdce634190350976dd4d9d867798a427994dc6
SHA256 8ecf8d174de8609766d5e927ff42dbe238e97ac5e6e84998e8790935480868b8
SHA512 bfc21c36bc1fb6272c9c5f45e3d651a70c84f916c2639f77aee99ad9208b504d27a0bdd69a60b8e98196d3c45a4bda07ae1fe02911de2f878f6ed62be10e642f

memory/3180-5422-0x00007FFCD8C20000-0x00007FFCD916C000-memory.dmp

memory/3180-5423-0x00007FFCE19D0000-0x00007FFCE1DD2000-memory.dmp

memory/3180-5425-0x00007FFCE19D0000-0x00007FFCE1DD2000-memory.dmp

memory/3180-5424-0x00007FF724920000-0x00007FF725920000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State~RFe66dbff.TMP

MD5 d3934bc8dcd963720e4689549e2b591e
SHA1 c8ef018b144288c0b79d1185724b8c165e813ac0
SHA256 68ca62874944ab5015ca419687b5fbef7bbb9b9e3d6c8b2a5e6ec24b45c9bed6
SHA512 33d8b987d48e845bebef7ff40178480ee797abb8195b5be2cbc7289f720a8dc9248b613f6648298f06941ef9486d549b1b7066c404323c3945996e078fbaffeb

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 41dc8c7545dff781b3dd94a99ed9d0b6
SHA1 2bcfd5969ebe08c2164c55b78aaae9b328d8165d
SHA256 6837d76592e713407a2ea5b68c3d088c2c26a8d2346b2065e0afafb60929d13d
SHA512 80d040c76aefb4bbfbd4ca269372d12effca49132e7c298be33543b0d874e7d16036f0adcd49f2eb302f19051e0534196af1815d64748ca22c15b4e9218445b8

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 bf49909738c668f361e958356bf8ee71
SHA1 f4dc94e8b05ba808c6dfb15ec0346483ad75393c
SHA256 2e68ff0971dcc2314a363923faaea96d6cb84dd48497b8d822a339a63ea61bcf
SHA512 509885d4b61dd6d8c55a97a9f835fcb51b63106d268c40edd319223762f46c324bd502d334b01e638e3be0def75fd3b6acc94acc84f55ebc8012e5078b905c35

memory/5080-5554-0x00007FFD02F80000-0x00007FFD02F81000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat

MD5 3aa74c1b3ecf4681aa78cb349a9ce873
SHA1 e54d82aa1122383e1db0baf2fb1eba6b3f86c652
SHA256 e8ba8c7b6c59d2c6de86c4e309fbdd91aa2fdaf45cdf97467824fcf2f9bff33c
SHA512 40838de334e5ff420ee249c634c3ae077449e8c1a6cc50af16f34af96faf148f581d2f72316fb23aec48abaf42ed8a2c4f228e851a08124160b8a666ed5473d8

memory/4596-5555-0x00007FFD02F80000-0x00007FFD02F81000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 9bcc4b9401a897bb2ceb236cbabf6531
SHA1 f6f49b4308f10e376748a49b09c1e2af7bdf7753
SHA256 4b24b197dc69dbc90d73ef48dcfd063ec96d83f1473bfcd7b7bf046eeeb6c3f1
SHA512 48b1299da0e280aa430948b6f9d6ba96b2225c2fdff97f9ad1363bfccc5d79580c277bee7d6464743b2c0f8ea0c9ace07f23044fb1d10072779bd35be6ee8b2e

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Cache\Cache_Data\f_000001

MD5 3f0ee90044790a34bddae90437105ce4
SHA1 48840ed9ec62342966b95d48cb209f460829defe
SHA256 b6009659920315de9133b093221289f848c3775bd92ca85e0feb38c8f2983a46
SHA512 6fd856db8f3848fa22af133365e75a8ee08b2c466d44f2231d3809fa8478862b8d628dc7df7740efd0146de7be231a9bcff353352096834e54b66ef07c13d0a2

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Cache\Cache_Data\f_000016

MD5 0c4880fb1de7d2ef097042adee0d2d31
SHA1 ea7b12eae99f8f044352f1dd1bc4f7ea3786eecb
SHA256 506fd688cabceb56eed3a3ffaed6afe80f124c61b223b3c8cc231c74ceb5c73d
SHA512 74d5d2148505142bcfee0f99d3879a4c5baca87575026df3eac7d504b56c849f827645b83fa7fe2d64bc6bc3b53ee35ad458ba56b846b2d4a5e03996e2ddd80c

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Cache\Cache_Data\f_000017

MD5 20980bab135f476d48a3f69148762f28
SHA1 75394cf4059ccf01a554278c554a5610dcb9b73e
SHA256 e4219e58333dbb133997b1fa9b51e906b464190beb8d206f0f39f1db909f95f4
SHA512 ab291427fb1da8b8e6b47018d18de6b9267bceec59fea507cae5c43203e4099530e3a17a12d6840a231f9f5b3539dcf5a480573d61ddea14450dd48ba4caaf6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2cc807649ee6adeb4f780ccbda6f2cec
SHA1 d8c2dcd5bc6f1d08c7522b1accfc4b679e76d486
SHA256 2268145d9ad3c1dd578da0f9bff84a29f4190b086a726c453701fafefa94784f
SHA512 3c14bb92d671c31539dc04e7a246621080d0e0c698944198e2e5f75cb44a6127cd1f3a4ef1bcb10d9931213fa7d09924314d1517fad6031b3798fc3d0c277064

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bb17a76af1bcb3e512347b3b0c02a1ba
SHA1 e2a0576e92ebd9e386e525dd03f2d53db9874e5d
SHA256 343b7e3b800e11016608df420c5a6b7ce0c721dfddf8df0c94371cf0c8922690
SHA512 789cff0783be2f9b6e071b678d08eca38dce55790ef3db91399af45560ba8b373048aeef03aafe8ef58dec758b92ef3d52398a69a7d252e807848b9980aa0730

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 7776c97391f04028a03c90f89077f261
SHA1 07959b5ea520f3120bdcacce86dee3562dd5801b
SHA256 4fccd5dcb5171a01685b8597e2770ada0e5fa7587c965b6cb0ffc2d7d5484efe
SHA512 89eb515db20cdfa143fcae0d20f8ccaedcbc1eaa5d5133163a3fc1f767f0a18b3cc0b1f3114489c3f9cb0c9db302aa25b81fcaef56299487c37b4dce2731839f

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

MD5 ddd8b4c04495168d3dc3b3d2aac572a4
SHA1 1d2e52e05d8eef304f025dc82cce04c21343e4dd
SHA256 f3dcefecb2a87a778d03e5c7ef326c878f07da9c6f592ddd1dfa7a7a1390121d
SHA512 d958e425c7fd5fbfc27e7cdba9b8706e205924c82fef151709dcc7dcca96841fa708af934a4561a69ed3569f3c4fb5ed626aaa9890dd7dc831124035eca1e52c

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity~RFe672fdc.TMP

MD5 296b4885804d86aeff4ab152825b4f3f
SHA1 d8c4a2cb1db26f36bbfec462b91d4f651cc2b61f
SHA256 f1f1a046f440ecdb651fcfc7095dcd83fa6290ef7244a81247ed5fd3c29b21a3
SHA512 743592fc6d0af9a64cf1f3e9cda6a8e208c9c4fc2ff338d7b4862eb2272b4dd176588b40d46dc8a56a3255211216bafa999b0a0466e269a65e7265dfb5852d0e

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index

MD5 f7b55f0b4f005b8baaf0b045721cfa8f
SHA1 59d4a44bdb1750bb0bf816038a3df85dae6fe2b5
SHA256 2351deebf1ae2b5dad3deeb40086fadc18949507887d2c5eef20b0fa2b0a6cfc
SHA512 4f449f3a0ca5a0604c88b4ccfa3aa0da3db40bad989d2458d4dc24af2a6aefcc5d6dbe4b8deca4cec24900b32a2b63f5494d9d192dfe84ad19a2518c298f197c

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index

MD5 32b1171d3cd4f4ad35e3192942c723a7
SHA1 241755891b4579a4e44862616ab22d2ac4ad1711
SHA256 a9f5839dba73c473848cf61dba396dca0fbc5e618ed86246eb5596eb0bc2ce0d
SHA512 2cdae6afb8e04b7fdb31abb71aa054e8d48d0dc3ce0152789393f12753687b70f92c81baccab721f9e2ccc1db5162f6d6b53c191926d23b213ebf21cb27ffbe3

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 322dd8e581169c42a16d12627a4b5dc5
SHA1 703356432270668c4e899c0af4f9768f96c0805c
SHA256 6cee129339c93e3ca36649eb533b6f5726f16049b15d86194d9ee6e455196829
SHA512 91bea5ab59a62cd9183698f7c0a885c252c5ccec953c9ce9ae38063660d8bd7fc430329b3ef67c6789ac2543d120cfc857bbfce0543a0acd43052dc2544b29a6

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences

MD5 082ac3cc0dfa531c5c00fc4f600c71ff
SHA1 685e7877af74d47b239ad9efd74ec05a2d976fd2
SHA256 86460b08c06ff8f516cfb6ef3afd2d40827eb46d2e82ca2f4b936a20f4ab8885
SHA512 7b7b9c1ab0a4938fa053fab185236f27b06f15c3f54c612fbf86eab1e788f210de00b084a8f87fd720431b161537aa194325274afdc2154142442aaeb44675dd

memory/5080-6030-0x0000019D53F00000-0x0000019D53F31000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

MD5 75d735dd753b9c06859010bbbe00ba8d
SHA1 f5bbe01a72412a1b879af738fa83671e2b0665b9
SHA256 766f91f9a63051f00a80193ddda0c2d76bf4f3df3fbbe3d83bb81efc93e78c07
SHA512 245878128e0e8e4bc1abac020006041c8543d98f069ec4da1cb8400a12628cf7f6e2df951a8602df2a3aacb3530908ff5f941c332164dd95df9823af931969a1

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State~RFe67350c.TMP

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

MD5 664e87b87221e8fd67a704cc8196fdb2
SHA1 067dae96b4476b9516b886e1a94954deea4acda9
SHA256 15e904e861c0c2a10723cd8996a4716526828ac7a8cda662336c821059d24fb0
SHA512 93d3db91cb78272a3ce3d62d1c16067390fda01e1532d6fb20edc050386144fb6ef5730324b294ee69cce456353b5b29d63fad8e5e3be61010a45068b560ac47

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences~RFe6734ed.TMP

MD5 c8f5aa8508431a74a10da1e5106fd9cc
SHA1 72b79be72d5faea75d5a43513b6ef98b27915094
SHA256 76c2b7faea2237f0a3b6ae3b17843e42c47a56f713ff995b6fce4ab10d72e200
SHA512 62835d1c1f41ec73b7a84bf4b1a0bda044ab10b24c836b7cad9d8b4e07e28e323aaa29dcaf0344d158df3ee7e90d2022e38ea72cc39c194a5492ef69200667e1

memory/3180-6035-0x0000024559A00000-0x0000024559E40000-memory.dmp

memory/3180-6037-0x0000024559E40000-0x000002455A040000-memory.dmp

memory/3180-6044-0x0000024556250000-0x0000024556251000-memory.dmp

memory/3180-6087-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6086-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6084-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6083-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6082-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6081-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6080-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6079-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6078-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6077-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6076-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6075-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6074-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6073-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6072-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6071-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6069-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6068-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6067-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6066-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6065-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6064-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6063-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6062-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6061-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6060-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6059-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6058-0x000002455A050000-0x000002455A051000-memory.dmp

memory/3180-6056-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6085-0x000002455A060000-0x000002455A061000-memory.dmp

memory/3180-6052-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6051-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6055-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6054-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6053-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6050-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6049-0x0000024556250000-0x0000024556251000-memory.dmp

memory/3180-6048-0x000002455A040000-0x000002455A041000-memory.dmp

memory/3180-6046-0x0000024556250000-0x0000024556251000-memory.dmp

memory/3180-6045-0x0000024556250000-0x0000024556251000-memory.dmp

memory/3180-6043-0x0000024556240000-0x0000024556241000-memory.dmp

memory/3180-6042-0x0000024556250000-0x0000024556251000-memory.dmp

memory/3180-6040-0x0000024556240000-0x0000024556241000-memory.dmp

memory/3180-6039-0x0000024556240000-0x0000024556241000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 30c7b2bdc35c650d2b65150241646816
SHA1 94d466a5f5159784155b6adcc9555bfdae4710c6
SHA256 0784d39379f0a4f971777844ba07550aff31a3d5e32ce1d1eff6f4c7d49b90b1
SHA512 8d51ef924b6c8f46a7ced69f188f2ea583ef3feb7fd84f51a8af8810c51e5099052e2c1513f15ac6fb83fecbef8c984fb4e124ff524c2b20a437943dc127465d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 46cf592fad7c40453253a89682e2aebf
SHA1 1c559f3a47481dc927105f75f701ee971e14eba8
SHA256 7a0057d553ebc8e3d50b485f857b147380569ee9cc44359bd8ca884ac0dff8d8
SHA512 e02ece4a7c7cead7b1d94ed4a4172a0da99aee6092f9b8820fe19ae1042e7759c75af9b93b6510f665028eb30074bc6101358d59bd41536310d501b3e1ef2113

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 74600301234aa9fa26eb7e827ea7c442
SHA1 75b46c824df65c01f88506bee8c19e9ac4c82d84
SHA256 14cc713fe327082c7bfd0b261ce146e50052f98441afc8d1c46ca1f08c06dd07
SHA512 e416aa493300792cb2a258f1e2e048a74c5d98682c324919b87e5f5ab045c13de07db86d576b69fede85666408953409d44acc3290f8d660d4b13e178e2950a5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\77df496edf70a1389e5e37b9ac2e66fc

MD5 549d5baa6aca378dc9b13d75f597273b
SHA1 332b27fedba2c357bb26a672da53161a8bba9940
SHA256 93fb04e550ae786f03823954656a62743557b1f00de2848df90e44ed3b4ea188
SHA512 c9b69816ba575fd79706f4de6b2b4fb4afd66e7f7e6aaeec0a32684d5592ea6158ee9c05040a08733f63c7ce575b941c96bc3c452c8eafcfb9ea869739a00399

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c43638a34a06b1130a62cfe61bb5dc11
SHA1 89200aebd2fbb58600c0cf6308818827bf882770
SHA256 dbf094eeed74642c6c4f11fa9cd0ab0b777a04cd5546c2b6a3cef9f3121dffaf
SHA512 a7393e5605a34520d65a0f0dade4dfa52db23d86df759fa8d53f114744a41223b84de7f86f65a4aaf975ea3e48dbe9f4c630f29460283f87ebad59b717abf0e2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f47a9d5415245dd05d023078d1d460f1

MD5 a33b1a5b82d26125efab352c2d167a7e
SHA1 0460ab7b59691e0f18d93a5c5750bc057a177bf0
SHA256 c9b5a3b2ad180ab625c044b8da07678221c9300654139c3d3040dfd1fb43fd21
SHA512 3b1fa3b952438592718d46df3f1a84f4183384092ac05cab882df00df393e0a7e1041475c90f127a21f9a981460f125802351c006d524073b976e84306b05394

C:\Users\Admin\AppData\Local\Temp\Roblox\http\d97695587f3d51b2a716d9775b82477b

MD5 1ce5826e55fb1b8fde85ae58ebac4b99
SHA1 84f1bed8443a656264f83a6b3ee2452ed328e81e
SHA256 b2991befd92dd77836900cd1ae85b2c426d9796009965bf16e243aa665a06f25
SHA512 86a7f84143fc3b03e0308e04e748f5181570df6b7609f56357c9e32d57e2c47e5f5a25a897b3dd717dd614d8cc97f1f74af1a4c0254ab5295492559abfa65d45

C:\Users\Admin\AppData\Local\Temp\Roblox\http\228f383d708e8556dd5a633706f5172c

MD5 fe7d917b2e5d524e0419fe17a77c3d41
SHA1 3617c58767a99567d29b2fd0326111dff44bd0b7
SHA256 b908f62d8c94f9ef1ea454c7fbe6a1f2ae71480864fdd28dde13b6a95d0fb7d6
SHA512 647c23ac035ea50a3329ee8271d330b3bc34d2ee9df485b3509d601b203cf6a7cb344c882f8e61b21ddbd1812e1bcd40c71cbff07725410a9912f72a54952661

C:\Users\Admin\AppData\Local\Temp\Roblox\http\66dddf2a734a4efbc883a85eafc1b90b

MD5 36d8d4700055f9b24cc3b47fd305ae0f
SHA1 04712338538712300bfd8983403bb555c628628e
SHA256 8421c33d999c6214a4f21df84518b83fa563d4a9b0a889bde888afba72046231
SHA512 948359b49eb78f06ba4f086d433e2f71d940d4d593b013fdaf43223946034eefce8999bb3faa72527de0a74665e30f61fdf25d85650b728102d4a45e5b7e7ad1

C:\Users\Admin\AppData\Local\Temp\Roblox\http\8f3f01e20d650f3f69a04402c167cf37

MD5 57d5b944f819a150ec24a0e56bd9dcaa
SHA1 786cd6f3c764376823039606c7adf3341afd222b
SHA256 9ddf74a1f875b2a4fb4e98a8137dcaf127e77abc30d86f2b9397b35735e6ea25
SHA512 aeb60dd88335e36b8ac28677bcbd8d3087067d882c1a406b11fbf554bf5c52addf5916bc4e15ff31c5454a2a49a22f973a37831d9c0c9e817573efd83c9b7f8a

C:\Users\Admin\AppData\Local\Temp\Roblox\http\102bf581734d85dde3587fd50f490091

MD5 fa3f0b17c6256ce6f5e63be483b0ac9f
SHA1 173a417e1da31d1416e1811e81b1910974ec917a
SHA256 3e7eb7f5ea678e81557df95a5f8a6cac67886bf08e87598cb2cb1d637656a6dd
SHA512 b683db9353b29e43e0294f47783a87f9129cbf40b539e03e146ea34cd5596a8c3ad6c7f3160a62b72d3bc03cc2bd0a9e58b24519b832b55a75399a2e424dd61d

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c26a1fb954d71303d656a1986c7186de

MD5 73f5ca774758f57c29df95e7646787dd
SHA1 9d4510e3cd917ab64e17b47792b6e9d3b4526952
SHA256 8fdc27df2ae86333c0275be4e25f3ca7ea7e78b020df1dbf6ffd7a2b085d7d77
SHA512 b2160159c6ed7acb681be30d390be46c3bb7669f5347b536b8341b758506ae14e852be7b8bf3df2df41999cf11bcb482f4001cff3a14896464e6762e760384c4

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 7435e0e40e0c368a413e2da84acc4091
SHA1 88ca15c10cfdcc12e112cf8d233d53aa549cc45b
SHA256 d1bbc6f6d5c5b48415ce26f23f387d0e1c18bc4f228e408be84da87461067b1c
SHA512 6bf504cd2a065a5074b5212b72c8243eaba820f08b4d9232a9614ea8430eef2bb576d34b6cbbf782ae58100d27677ac030890c034f18537c9e4af74d96e7dad6

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a1aac6bdbb2642f3f23fbed64d042c3f

MD5 2c65a49f36fbe81aed88d7626a0112e3
SHA1 832fc429cd021f288f5ef9531e7dad6c9c6507fc
SHA256 eb8f138e67962a5c7db64722b78454da2e3c3d656ec8d72c9bec566f10a942de
SHA512 4fe7c7a7e439f6b43bc13af9291994ff913fa65ab1d77f162c97b18ae505b1c46ffb2c9236b7c9010580b095526a58204bf182aa5d476e3d0a006b2ca450d181

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c53416998a218bbaf03f4875fed8f962

MD5 161f70779b52fe8cc990043fc1d38682
SHA1 2caa927bbdf5f67fb2d4c9ebba6a0308d8f46c53
SHA256 a0ddd1e9d9fb123e15629f1059de0c121cb8858f2534918d5463636b45aa7e1c
SHA512 ce78bb57332491bf52bced15af8e2794bc34cca0d665959ff63d8aa266d85be6458652a9d3929116b1ba53a9ea20372a39a947e74ccee002e6088371f5a4814f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3acc8af1251b7ed321f9b36da661d9ed

MD5 808cb55c51b6fc55fa6cdb17892dc876
SHA1 4487b86a3a42ff05e109800b1827c100390245c0
SHA256 eed0725bdeac66a2e53e7daaa033f06c360314d751df70176a0af3f23eb08c7d
SHA512 0d2e6534792e7d417a6fa8403f22397f406352a38bfe1019d87e0308d041b3e69d7defae77e2bf6b87adb3b7d59718efea7d5fad340847c681eeb293beb0f24e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ceea000e430b7c9714bd62a61ef5eb0d

MD5 e6bf3b994b7bd85aa47c17406d367d2b
SHA1 b18be2803acd9576aaa72bb19116b09680f0cbd0
SHA256 92638ea5cef2b20242923fd21757df86c8c434ff12243d480250364b8480f2fa
SHA512 3e207bfe1b30c981fb533971769a4051c0c87ffbfcabc012606ec939c5b66f2bf59cefeb85c2b903856d6396584b2c96472965c11d90d6a1ac9f59b29cf3d664

C:\Users\Admin\AppData\Local\Temp\Roblox\http\720f83cb75ec958d0454d2681d140b01

MD5 283a3dffdcae5ca362b39513609877a0
SHA1 0f7caac8906ce10530dfd2602b299855fd1aeb16
SHA256 e97545156ff15e14934b366d39dfb9cf1daa8d7953d814ad5b26fa4fefdc909e
SHA512 9a64309b3d7d1111729eec356f567eaad119715bdf35b4b0009ab6c539717cbb56835109238386b950d234660d1c6fc744fb0ff2c2ac1d834f18ccf8c3bd3a77

C:\Users\Admin\AppData\Local\Temp\Roblox\http\95d98e1cfee595f720d12856399cbd72

MD5 39be6457e3ff988375205765c4660895
SHA1 8e946b84ba320df9c28aaa6e759e24719ec38aba
SHA256 1194e8aa1e2ff45887bca03f3ddee55de61436c660e162ae343ee64e7d146da1
SHA512 80f75601d5887291d0f2884945dd2ca197090431fb30dab6e6ee9ef601076950922a75f23a577dc58824a8ea7f57c48c1a742cdbc13a28215bead6b2b0b47033

C:\Users\Admin\AppData\Local\Temp\Roblox\http\5d34a1f5416fdc978c6e0c7edc7d67a2

MD5 c76ac26f80988d0fcf03874d625b86af
SHA1 b04a5e95018f8eca571daa4077e66626b9ba0de6
SHA256 3dca66141315cdee30f7604013deab2fcc1dd74af93f9630fb700b7606f531ab
SHA512 23ba1357212eb135ad87fcbb81bf73fcf2e189da34f08ca1cccd40d763a856e9ca8ce5514af395caeefca2b0dd3a6fe3b8d43e060c5baf5139fb357fedb90a59

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0cbacc9a3c6aa07deb13db83f658936d

MD5 e3690a37568ee9fe7f191a17a47e2146
SHA1 476c939e0ca065001820946509e36ac2842fb1fa
SHA256 b8da756d34febd98745815e7ee643c49dfdf1adeece7fbdeda22487c06472f28
SHA512 c7b777cb3616fbe210b58c1e2395ffb378ffb36c2fed3af8c634e7d39667b9b433386d1a284f936a1d4e10e76c7a678e97216fe801cf95a0fc3fb313fc4514a3

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0f10b6865c21c904e29f52a54a31f37a

MD5 38b25c1089062288a7a9a8876138e465
SHA1 d7dc1955cdabe9a50ef4f6b345c9012e3efeb56c
SHA256 e39aceee4952e730f1a101894520b046ff21156ebc79c0f8e070e87af20fdd29
SHA512 198469bc9aa03de2c29b322cee7714a67b1b421a8fb0b6ade7148f54fb5ea0a37f6afe5e80f052f41815174363ca2b2dc8395534c624f0f87d2f7a0e9d773dd5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a9cc46002a4af86d3ea38943fb0ceaa6

MD5 954fee2cdb85a19010953a2e94be0669
SHA1 9cfc174656d1344512118b5f437ef767eccf49ca
SHA256 ec8f7150c89fcbd628a533ee54542f431c3835cf93d43691895cf8cd3831e183
SHA512 ae4a50efbeea009f66323f29135ac5593bf58dd046ea7301d7cc8e43234763d6f75dd9e1d93b01b8e09b824280a849aa82e40194723db38024a455158e7e86ce

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 29fb1e363229e22758ce5c9a86a8608f
SHA1 ba355ade5e80281162f038139ed23558406b4835
SHA256 43572a69048d664614a898b6688e1d0de116b693aca2a3add8fbcbf0e339e5ba
SHA512 6535bf7fd001ba524c6ebd498dd26ea5ce529bab0d696a300d76db9dc41994220082dfdfcd1267ed5a58dbb8d8606ef7d621879ae0b1277f4c254ee7ec559c38

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ebf23c45762d6add5c9d1c8377240f00

MD5 7a7b02029fb88d1fce1162fc174bc94c
SHA1 34d009c9b10ee73e94a37c026031c5465ce84e20
SHA256 9b1792cfa537316e12514d5271013d94b24b0ae8ee1f4529b2bb8986ed4ad16a
SHA512 3b9f619a6581036d681fcbfdbd1396e901735b73fb2c8d7514bdd52ba3f566fedd7e7d88c11d97e8204972ad812fbd1a82a469ca6ec8d99565d5289e82514442

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ab71aacaeb26a7fc55159426deb3ac1e
SHA1 ab6aad566121eaf3862a6c260afdf9a34b5783ad
SHA256 3e1c877227f86a6070f9da3bf539decf461a80836cc8c3728d19631b839b11fe
SHA512 56532b7b3fb8f9442627fe21997631cb2335c5142bd61c1f9c7208456a1167b1fddda12167d51ab84900a5da19bb8d1a5c03c048d92e9c7ab684302b36235bec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a7b0e3a1d73d3dbd098dd2ccf95afbc6
SHA1 f2bc781a9c0cd47f4934f892fa3f413c9b47cde3
SHA256 d0dc906532d82586f6e3e31389025d1d0ca10a64a4cb6d48a33307f632e768b5
SHA512 1460f32641ae645612f2c1c39b8049367ee648c01a2c6cbeab840d47c66d67beb588a2b4af7cd2874830e89c76086a1323a1a4abb5edd6fb8257b8640b35df1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5ed3bd47dc386561b3df28c0334ecba5
SHA1 9b08ccc65aabcb4a191fd800cc8ec2fb364dc209
SHA256 50e5a44300093d3e4f8168f48e3e699b47dc0fc5ba51127bae08c189b22d6bce
SHA512 40467b5e060ad2e020ed0e5aa5880041b455911b4865f4258651e14246f97d7364b3b37b3a3ed9900d604fa6a63ea2dfaca870f5fe43a2b79a0c5feb7dc21e5d

C:\Users\Admin\Videos\Captures\desktop.ini

MD5 b0d27eaec71f1cd73b015f5ceeb15f9d
SHA1 62264f8b5c2f5034a1e4143df6e8c787165fbc2f
SHA256 86d9f822aeb989755fac82929e8db369b3f5f04117ef96fd76e3d5f920a501d2
SHA512 7b5c9783a0a14b600b156825639d24cbbc000f5066c48ce9fecc195255603fc55129aaaca336d7ce6ad4e941d5492b756562f2c7a1d151fcfc2dabac76f3946c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000180

MD5 8020829282f8d6133736f8079e5665a1
SHA1 64ee9e05894d5f726b5719c7c35c10dfa8f863d3
SHA256 4035124285f7d7e8588e4fe69bc1bfe663090e68ca6b1a6438c0cc9de22b6540
SHA512 68a01229ceb0d09a76b646db8a7641c41b98cb89e8632d6a0261437fba750b01f8b8ff29c1f70242bb3cdba1850d9e8c31c5b7ef69ce5ad2323801b4f3e0503c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000181

MD5 0a7b330d35d1f90a931ba5a5841128d4
SHA1 09bdf4c09b15a13ab725e036cf5b77bbcdb413f0
SHA256 88b3bb0764ee6edc9a3142807bf0cf44ed88ad7de857bd213102319e106701a3
SHA512 e71bce3e697d9166369751ebdaf24fc7f215b94c2ffd3448b0364bbf34de00305318a45dc042e11e0cb0dbecfc4f59db532d4a9796e54f84a5e2e1e020c939a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00017f

MD5 f6e79e8c666ef12e078f4993ae35fc22
SHA1 1000f2c61f9aa7565dde57e5aec1f8cb72df95fc
SHA256 e6462ce39a8c2270f539dd16489608626eec2f0d6e7bb3808e58894aae8827c3
SHA512 3afb0faa2b9e8d2b024424d7a13a153b391bd04cfc4e0e1a2501643e440b61ffebdaeaba431ce14551c0876e9ab8f7af26994a3efb1e2e8fe0a74fa0cb11b960

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3da7e86dab9b74b2601bf4570b2c56ff
SHA1 05713c34d4e54e394647badda5f60cad1122fd23
SHA256 d5003bfebec78aa7bc09c728eb35b16601e15c1721d07462a005d28d77cd3b0b
SHA512 ece42c2fcb82025c2aa22edbf01620ed58fffde1bf897474d21e726cf372f3854893886731cfafe3aea0e4863af04445ae03d6afb5518f176254b75b5e162f14

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 f3dae5f7ae36f15a39627b2c65cee4f7
SHA1 71b6ae579b096bf5ec38cb29274a357659d10fec
SHA256 160ebb149a5e01de2d8752d669dacc52e2214f9f4ab596ee13f8a84c958c18a7
SHA512 91a23d93e78a8cdd49581cd36cf992b77ca0243d310af5a6971c2b742d35758394544f47b41aecdc7991d20a815a02f324e01ebb7228d4b324d0851bccf7c461

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000182

MD5 d25a202898df9f5c7d82d63c7b08e71d
SHA1 422587b364bdebf17256de63d90cd1eda62aee84
SHA256 f2521f427c1bf65d8fcb714c4004cfc089c2737d4e4d483ce7c8a2958a41bbdd
SHA512 d13445545f35549caa6e207b035cd2b0faa54b5e2f22b3887ea7677cd49dfb242425a46d809b3002c86367f1bab98aaeea755e0da24b2e1eeadaa7cf92becaf2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 05866512d2f8f9ec11d04e10bdf0d9b2
SHA1 fce3489cb80c91a2745bb055eb07a0989aa868b2
SHA256 ff9db0a74a3c30223fa0dea0a10fc7f655b426eeab7274aee7958fcb82a2917c
SHA512 d642ba6128baef33847cf7e73af003163ab05d004d778bc1913786eb71455d1a1c1ddbed380553546dfd2ae9db0442047ff8b60b5880b200dab4fd33425889f5

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 dbf7b4446620f21a24d0cf388d8e9f3a
SHA1 18fea9b43b375a9d9198671024ff2bd6df79d45c
SHA256 aa3582d1b96dc5e4f71a636b76ab8f008a59e18230696485f49d64518e01ee9a
SHA512 cf25e2eace7513fa224f64bbea88a9eff838f1211ec5bd7da44f9cd0f9170c7654a9a51591de5c3c2a88cb1951b92e043b30595fd9edc727cf8b5076ed5f97e8

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 12075420fece253a8e65defa92974e64
SHA1 b61ca3ed581e61f8a6dfb5297a4c50a0c49130a7
SHA256 084b67e04801c15cecad52fde7b87025de67511fe6d004976fe791e877be5436
SHA512 c95d22a272b26c20d00a8efac1ae589294a1a62eb7a328df114af02be2e810a92502872fb88706f30b46dc25f7911087876765cd91e15ea3f764e8fc8711e0cc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fb92b8d9040e3cacda7ee4b4f9673185
SHA1 7b6f11fcdf289ae59fa93e0f30805b334627d37e
SHA256 678233404d44b452bf132cf1087e4b1dde7ee03dd841beeebc60cbdfa01c37a8
SHA512 901d552b05f29bc09bf0da2464cb8067a22e6f0a17d03af1a6c75b605afbbb930004bdc503981bc04f25bd9f957522ca16c7ecdadc6a70ac9a88c0b527ed796c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000183

MD5 a7418ed14731cb6dde4bb4d4d1db0aa8
SHA1 323db7b4e6fc6b75d6ce69aa2ac60515bbb97906
SHA256 cbb4c6cbc5033c23aeb6ef9980c5096dd214245857639a2ddd8d7a732415b37b
SHA512 f4ecf0118ef46df8acf143d5196115495a273240557a77cf981a4b60996c4eebba1bc1aa567e1f1c685ee9af6da83a9b17c2a78b67f843bef74cb7e0f9440ebd

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 9415f8102fb1480fb736a36b486392cd
SHA1 22bd4fe17300ec12a286c1b4fc37746c2c4da70f
SHA256 05f5b33d3b70cd97164eb3e66b230c512614dfc7dc2d12ab208b512fdf6f35b4
SHA512 ceab600cba869b006552e2aef83b67aa04a9bf5def4f272bd985bb5fc41b828a9f64d3600adec3ec5dc02b3777a959badbbfff447437faf7b2971cf412df5dcd

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ac23ff86d4783a8a40ed7a0590497a9c

MD5 1580e255170ff4eb5f96d592f3521c99
SHA1 9ba1f4b08a5a1e88c4cb6ee050fc171d955d3a0b
SHA256 5f1f82120566850e51e7cd56158cd15d4d16fd362d4fbaa4e59148eb273cd448
SHA512 35d1bfd814b255cf32ee71f7e42a57ca2404a47647cce1b136f36f1a2c3ad1adb342c198b377be45bf6b7969cdde2579d20ad46ec4daf0dcb14966710f9bb919

C:\Users\Admin\AppData\Local\Temp\Roblox\http\53d827d30453e92ea03c8733cb48667c

MD5 886d9780e0b4c93e58bd43a3bd4138b6
SHA1 8338fcb9b811a8483836fd4f81e06cf1459756d5
SHA256 745de3e829df731ba50b2c4b8d09e11afb13803933c444939a2fe5f2f7d35298
SHA512 e48450911822271c03d807edee7b15c5a9a43d69194d80eecce7468cf2dddd9e55c53cea239bc917c709d009c4068c68494ca01e587cd53f991af772a34fcec4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\2de8b71e249ec9f3feb3c539d524775e

MD5 32d09a4d1640999c42e2351eef53c040
SHA1 13553355099640ff18c312eccf8c48a1d278a2d9
SHA256 848aa3cd7a5611ee2a6f784fe56589ccef012a344bac896af5af68976893afb1
SHA512 084ff1c0ca17e2840279dff4b39a8abc8c2611cd069628650673f3a9237796cd905378b067eecb24fedbda8e722e16694bdea9b58930cebca076eb0b65be438b

C:\Users\Admin\AppData\Local\Temp\Roblox\http\017b3de9988fc8ea01060584b5f2a667

MD5 8e474c211bfa1b969d54fee02ef761b1
SHA1 5c591c3285fd6101869ab909046184562640922d
SHA256 e743c71e2425cb89a2102f39eee84710ea2b8eda1163ac10ce726f3f1ac7b195
SHA512 bb788752c10d84ea3cd208a536ac16489913b7663c53d8dad7daabbafc1648336d2288f19c31005500e5c854e0d837b62df704bd74dcd80671c73dd6934de713

C:\Users\Admin\AppData\Local\Temp\Roblox\http\9081687e7cf992c195ad8b48756eb5d6

MD5 e84dbbb2dae353a513773fc4f55579c0
SHA1 cb8232db352312f1336b441e4601fd03d1a603dc
SHA256 413a3286761d22f309ed7f46e9595e91ee39737e403a1e0c87a61feea47214d9
SHA512 25d12a9959bcb98019e69cd02a6b7942ed6e78650f81840784ce4ff8ecdba2b170f0085d9bb00e38f75c70228ea9b20cce5cb53970e526185c1b60ae3492ecd0

C:\Users\Admin\AppData\Local\Temp\Roblox\http\04746a38b138da33acecee6b891097d4

MD5 9ec8e219a4d633ae30d00be3c31fa517
SHA1 c3c9ddc7484c709ecb6366b6439a0a4fa360f2b3
SHA256 8b9a6cf95a06d7722953c6384dc84d9060b7c87940fa2a52a98bfa0da4e9d9ff
SHA512 bc3a9281537e1c24ed62bfdcd288ffc447959b0a1d18182431dc76a8a9f2aefb31e08e3131de7734b95c3155d22b98fc09468613ac29f2d12060ff9daa739611

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 6c21dcdd8270704b17c1c09c4334babd
SHA1 c48849a7b2a464b18577a4046e610f236f9227d0
SHA256 b6c89ebe39d9e45c9891c7db48338e270d316980058792d0972f1ed6c00de916
SHA512 5b39f83b186943b625ae62718437fddabda6fa31916afde7235f5c95e5f13fb7a457e055855ec6ee093eaef1a9f4d8f20c27d2d228b812f4215cb169d882fbdb

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ae6b1dd7dc00e70b2414254fa8c4d9a6

MD5 3ba232a124658a23f5e550ef200569c7
SHA1 e0e71f19c266edfe6a7608cbd7c0aa07a3591a19
SHA256 9b8f0eca6513f70e23847b39a56e106af78b9138161d9b9a7725b8a4e643b4ca
SHA512 9d9e63495681d6c32b027f0134b943a0983a12e1ac13a32ec150b10a8b6eb58c6689e7ba8a4a794f3c17b48fc07b8bd89ae659e8c67e31d10a713aac358fe38c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 220d80f7e836abf2e9ce3b28c30d294c
SHA1 b8b9c440afc5d199b45ad93514dc5a5baaf93ffb
SHA256 5006269c119d86a522b860a8e285d535529ff20c189450cc9f720821f5562bd0
SHA512 f8c87d860f386f2a93b17fc9fef0a002d5adf8b480f71ba90719ac63c8df580781ec57d87a6b92c60d8e090fec74f81f7ed6ad7a4ba6c9bd9ba503bc8101c254

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ea4159f2ba2459b9076948a8b162224e
SHA1 a46269b5171d20053ef34473ef005cf00954d123
SHA256 21dc732ec6b53bbd5366793d6b3dc235ecf80b0bcc0a8357290ebff54e3c83dc
SHA512 38d22e88196e3823ba29bc391f9c3ab527b4a11c75a5c1fb255aecfbebb187fef7b5520dabe248238ae5c0e39799b4ac8f506fd20957e8ec8b00ef8a694d3984

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 1e9781d26db7fe948f1769203617055c
SHA1 7f82f2dfb0d3e7025318e8df1da6ce6ad94ce73f
SHA256 aa5d30a4dfc1abb3f9409e6c74437358b06ec2a0db8e900508fc81be64ece107
SHA512 d1a8db5ac3b5db5e3a1b3f1290fb6e27941c94bb86dd082190536da1afef975803723f658436a4683fa287a2ff0718f2d78198c49b3282951c6a1113bae20a5e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 df4193a3a72d6190f451e7184d95d935
SHA1 b7f4a4cd3d4f2d4e30637f971f5583a0fe8ffddb
SHA256 e30f17eaa377f8fc5dc98518ab9a9f27efa936e805c7090240c9ca894925db14
SHA512 bff377eec9a7657b55ad8ae68700f6e4a73cd02720ebdb5cc7c74c0f163ea2e9d79a4f728f25b152b9484cbdb8487d8ea62ce3021c38b2573491ded8198bd4c0

C:\Users\Admin\AppData\Local\Temp\{D071258E-9595-400E-ACB9-CD10DF1A6926}-MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe

MD5 1f744e1c802560affe8b308640b6ab67
SHA1 bbfecefdf891c11d573760d4dabdf86091463421
SHA256 fa7d8a8cae60ab620d2aa887de62039d2647e4f5c1c649d75f0f52e14ec11a99
SHA512 780440aa518397e52bb429b5a8e7697bf0096db0fe343cd40a541b60f34ad4976ef7fc2204737d296a8c1fbed2951496503dc50158d6455617c67483f87f3015

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d700193ddbf9c3187ef6d94b76271aab
SHA1 389eb4404b422dde9e06d21b61337df3a19f7c97
SHA256 fc5999a2dafd3da76c7f2b42f5a17d0775002e4ea86788c63e7f9ba785f14789
SHA512 c10aafaa2e2fa6053f36cf3965c8888d4b20472bd04deb8b037f8dbfa4446363117e61fa6b2c6e4e01e60d3a49a7b560d9716423e14aaed9464d5aee59bd56d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\IndexedDB\indexeddb.leveldb\000003.log

MD5 6451408264ff711dcea90fdb1855113a
SHA1 3334647d2d21eec3191f61d22005263ea232093e
SHA256 f58172ad6503589c1e94890c5d2be6c1e9b9f80c6d7b3a2db01d016764fd770a
SHA512 c178d6b892f1cfe217e9c829e0a9d14be47531f72b8a3827b6de802fbefaa21989c4e3880443ec56f35ff445dbb4c7bd17b087e9261f926ceb6548f74772a27b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\IndexedDB\indexeddb.leveldb\LOG.old

MD5 f19c4045d08822525626224d138e385e
SHA1 f50fe885e9be7dc2f9b9236a4edb139ab7e90fdb
SHA256 1476cef92ef485560babc7d22f2215e9cfeea9db666e9ca507829fe635cd029d
SHA512 a282441cdcf85efec03a4099c799d5c4c435d978a873f7e8603dfed5a007beb0d1ec7acf1063601ce8484b942fc32b833a2544b690132c578ede371e69cc3e8a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00016d

MD5 04852f0725cd93d4927c3dd43523798a
SHA1 a1cc793fb1239722125ff4ce8fcb5a825483ad10
SHA256 b86c2fa82ae7d8711595297ea5b70b5c44cf9286ee8b9fc39e1ca76ffc38ff2a
SHA512 ffa0f593f4870893ccd8a9499c600e07286e20eec2762d77eea42bd119d8ceb45b236f0f877def967e998e5d2434f6649c47e8f53c4b4edc374faa841b0c0f4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000171

MD5 f1b2c8671ae6c5045834f6eaae9eaa8e
SHA1 10dd945d1540c668eb07cecb66a08e075b8001e1
SHA256 4bf758110c172d878382df517a8c7db0c907fb005be2e89a2670e46db8e93dd0
SHA512 cc24c034be517557eb66425cf96cd954cc759e0cc013ed1324b560aeb968c5e6d4307ba82c1d576072613a7637a14b80206acc51efd6b669d47618ce135995ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000170

MD5 284d04eb5b14389e99c8fc9336ca288a
SHA1 c735d04fd3e4f9e91b992d366ac342254bfdca9f
SHA256 0351f279d2b5a5f1ef732ef8ef203ad0235ca757cd08664a9c8e352b46407a08
SHA512 166e8f976061958dd588598c5bb16d07eef5ac7b2b6fdfd68706118d1e346220fc10cf45c97a7f9e14b21642907fc79afc1cf5034d62833b7d74207a9031d6d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000172

MD5 7a699de715589ce5531b2e80a4dfb6a6
SHA1 6c72420be238aa5c2ccb4cb5385f69d0c94506e1
SHA256 b9f9d13230b29f4680639c90a7f7d575ca7eaaaeeb156323e44bfe5c2a972962
SHA512 3af322c94d6eac82e1f46fdd606f40ce7c92bd24a76ac2feddca6b92c4b478988aef6f4bc7f3816099e4e2d35b610b7fb860480ad9b4860f6f9f908d26818e31

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000173

MD5 949f0d05630322826eee9a780551027c
SHA1 0aae450bd0f7399c834d45fa9befa308811455f3
SHA256 e82a99c0bffc6ee26ff00ba6c54523d48513a03a0ba7bd1ce3cb0a33f7069e34
SHA512 ec7e0d092815488eba41a672d49bce60f88197e3a681221c827cfb6a9028e8040276ee648914c7a8ea7b198bcca3b512bec241fe69e4705dc4166fa9ac1959b9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00016f

MD5 b1aa21bd7cd97349585c25406701369a
SHA1 7ff1c0aed1027d055769b58e24e244fd35b85493
SHA256 6d71c1da327aa535bbc1a26f0130cf6ecc49417e762676f8222624ae1078fde5
SHA512 02b9bc468c60cbd56de20686fa36fb0401d23cf0b9b75404410bde6c839c20a48e48d2641ac8f6591ec8882df978a3eb951307fa638c096d8f37b06033ed4bbd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000162

MD5 35e6cb2f14a764d6e093b5ac51ece833
SHA1 e3ef059e474ca433958a68ed9e2d3671a1e36013
SHA256 9a79e741ef5664e1d268d470d7b17aa7474f172a876d8a64aed8ff27051bb781
SHA512 cf79fecc10d77e06a28908d97c5c9af73c60f2d731419be0eec178ec43ca04852894bffa78ada3a3de4a2840d45279bdd53d9443c28e23fbb51036becb60019c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00016e

MD5 b39a1c0d3525c08f7c2da14051c29a4c
SHA1 edd10ce9570f96a60f1844b555f62caf5b482f36
SHA256 872ba14c84186c10864264d19cb746e374475092755669a6a7c545bda757eb53
SHA512 4beca5b448080dfe32404b4c3f7499379405e2dd7ab16ceb93bdc6bb0a8d38403167a007d6cec5083cb2a58a86158c4f5dcf26c89c7cfaf0c920874ab9cb9d53

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 23b34cd6d512ed3d7a5f30f4196fcc58
SHA1 cc83ecacfbffb8ae0fca61c35b8044d6258a57f8
SHA256 1cf0dcc0fdf0e70d9307b770170eaf140c41f2db40c2ff3bf2c1c0cf5dd0b936
SHA512 1f42466bd96c5e360c4d142288a574219bbf9c07da272ca8cecc4ef3f79297486ccacbe976e5a9e110daa179a6ede17862d7dae4cee1ccb436568a71f0fb0665

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 be1b9561739cc4cdc82d9e3e957b560f
SHA1 94eae384f4d6fb5395aafe66ff24162706036b8b
SHA256 fb70c78a8bdfe6ff2b870170c7ef1025deb2974bf6877667d455dacfc1f0a418
SHA512 a1594a9fc6f54143f96e699cfcdca34650a5729e46c8e5938c8aa3b397dc1dc6101c8244331474540b7f0e60b40892a5b7c901a883f5208a5b3bc298058eef82

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 2b9ae24b0c8d7805043894855671ccd2
SHA1 eae496f49a32689756cceaa1043866327411e11d
SHA256 7a1e1906cfd71cdad83b4c50f32bd561ed064855dd3a4a5ae01889f5abece320
SHA512 27a4a82804067432cfbae2842f4377e48e716a2738f2e7bec21828fd9df55b5a23f4078bdbf9f81e9d49b78b4a97a60964ea6ae8dcd38d000c68690bffffdaf3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c78acd51fb59f7293e832d4f2d48870a
SHA1 598ffd29ff5f519e1783cc0b0e3fcfd6f3124860
SHA256 732e05a89f45cae8c636e4cb1b8272ebabe2aa7e84e695e229e79e14de5508a9
SHA512 73a9514dcec1389e364957370cc152e326026fd36fa70f4d8feca58648cab8cd931101873c0cc35ccfd163400ed817c0336b90dc8373fe4545005110cd5e2792

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.a6el6vxjj5yy1j3cwbrieewjh.tmp

MD5 4085b7b25606706f1a1ad9a88211a9b7
SHA1 31019f39a5e0bf2b1aa9fe5dda31856b30e963cc
SHA256 b64efcb638291c1e1c132ed5636afbb198031cee44384f3ecf67d82b73accecc
SHA512 9537559523839e3e708feabe8c04f40236add7d200ec36bad00c10a69337a15001103c17093dcc0d8cadb4713d911f39a6411624c1db4cbf1ea1af272a716168

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.dyw0d13pur89woes4ndogxd0.tmp

MD5 530f1945913c81b38450c5a468428ee6
SHA1 0c6d47f5376342002ffdbc9a26ebec22c48dca37
SHA256 4112d529734d33abda74478c199f6ddc5098767e69214a00d80f23d2ea7291ff
SHA512 3906427ffb8f2dfea76ba9bb8cac6bd7dece3ebee7e94ea92da5bbdb55d8859c41260a2bda4e84fab7e1fb857ad12a2e286694ea64d00d0aa6cab200fbbf64f0

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.p5y0dvzr_pab998lbl9ttof2h.tmp

MD5 24ebdb1228a1818eee374bc8794869b7
SHA1 79fc3adb42a5d7ee12ff6729ef5f7a81e563cd2d
SHA256 92a7d7d3b0bfac458ddcef07afcdad3646653ba7f4ad048fdd7a5ec673235923
SHA512 63764d99a0118fac409327d5bf70f2aa9b31caf5277c4bc1e595016a50c524cd6c3d67924321b0fcad12cd968de1a62bd292151e35fd907034efd0f40b743d6a

C:\Users\Admin\AppData\Local\Temp\{18785ABB-A474-42D9-9A62-F84A3887A2DE}-BGAUpdate.exe

MD5 3f208f4e0dacb8661d7659d2a030f36e
SHA1 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff
SHA256 d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b
SHA512 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6a6e2265f9e6301bce188f72c53398e6
SHA1 13de9228826496abce497a1f6c595f5bd0565a25
SHA256 082680015019da1c68a72f7ab82123a866d06be16a4ec5c107376aede4dba3c2
SHA512 1fe4bbe35243fb30c53dfc6a70dd1d22090f017aa5e5f931aca024292847d4d426ac9d19733d69b50289f30605d572d9fc29fc920acaa3b51a330e7375af9e46

C:\Users\Admin\Documents\ROBLOX\AutoSaves\Place_AutoRecovery_0_AutoRecovery_ztXVJn.rbxl

MD5 f25cdaa33166b1aba0894f8d55f40cb6
SHA1 b38c1c29879b7e560dfc1a25053c53df8d4c3b00
SHA256 06aeea5ca8d64b889518533729b8b64ff5e7e9bf613826afb1f1ea14154723c9
SHA512 a63219fc94044516f00c6a29208b18b0d9126dac3967f6b0cc92a84d3d014f793e1161ecf1d96113bc6308a6ec584e5334efae8463b150ffa10b970f71b68c76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000199

MD5 856a3daa268de8801e7cfd5b727b6de2
SHA1 8e099b433518980e657c7541c49b498e6b83430d
SHA256 b870ae3c5216311e1dd7b8662e01d1fa3326edc85a98a58247cd37b8cfca0be5
SHA512 2f191ea906a3551576ab14e607fdde9930fcb15f15ffb40a8c5999ba07224bbb8ea69918db11d1cd719a3d57510edd466ad2b9199c6a45a48463b0020a2e6eba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e26df75bc5dee0c4bad0aa7d91e282c7
SHA1 7083f44ea382a123e564b672b67e23a70a4ce642
SHA256 9d6c7af6f80abf85b4c141c2a27f65b263b7776acc4f2d928a643324f87e73e3
SHA512 5765310b69e08eb23c14a69e966aa02e830db8a788141c0c75d1d87dacaadcbf16d7fe6b0cf21dabf7cdff7f65b7107715250da0e3f780e4320d645b099d109c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 77732ef435734e611401271518607944
SHA1 b2a08a3cc8743d4a90bb5634fecc2c77d79b755a
SHA256 9a821a003ca1061e2df0f6d12b58b590a51c1e3ece2868bfe6944b4060ed59b9
SHA512 824f3b5fb2dcfcd9a460c55f72789d6797f8ef27c4fc05392c637ba5e8e970822860a503d6c76b0a631b3fac3dedac351e97016b5cb4953a14e1f226c5e68520

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d692cb3ae7e7e5cca72b09578d69e9fb
SHA1 ecd542b2620cfa1172f7719de8946164a7d1bbba
SHA256 c86eb0838240251b07b7c8e813e39c4829a7c7c07aec065f3b704c5bf0a34600
SHA512 8dc03205bd316b0e75e0d5fd4c3d1c7f1e1077d56d7af1827ceeb04680b66fa2aab50e5d3df5bf19ef011e019059f9dcdb39277544f45d1957f389c6a5eb881d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 75deb22f8cdc8c695a73f546bc38fe3d
SHA1 740855a6d4f8243ff3ae56afc0ded1051dda828c
SHA256 e6f074c75e88523d7dbb2662b3cdcbb71d6b84cb1e496411fefffa87923b545d
SHA512 3a2bb4b47285c7e689ea0ec114baea0ceec0437dfa56b7a1ff5ab8c8389129a8406d0f66fbe6654a0e24a4e56f478f5abfb911204aa8a17d11bd1a3085c4718f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cfb584445923dc70c55571b7958260a0
SHA1 4441c00a66c2a04ec089ee2b56d0f5fe52c769b2
SHA256 171176d083d2a5137019bd9cd5a815e0e232704a46a8707f9f3d24817ba01086
SHA512 f0adc577c007d7e64c537e2b400a825c85ccae4b0307a0f858ea9f17e25d7cf37670691cc66470efbbff190f634e24e3d5dfe0e1feeb932558ed03bc1af7a45a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f919575c3bedafec2b7f58f3dc3d96c4
SHA1 5d0e62354207499c1fbfe294ce7fa560e06015b5
SHA256 51e277e6765e9dcccb317a51f054a5833815079fad6b7ae4302940de4848c8bd
SHA512 5cdcfae161259487e355afecdde75c2e15f8e2344d2968c3dc95bcda13a6b1b48b1e359c791237ddf6ee666190560bc909eaef3e705ea9f80d2614353f0ff20f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95b88e4fe988cafd4a1531df3bd67b2d
SHA1 b76adaed3f71e964dc13512c24249db1ebc22ac7
SHA256 8805e554f2d14e3980c22d477d5b3c52e90d7f72d700a9adedcc021e60aa8962
SHA512 f4f2758f7c8b0e26053eb68851cc6ff6d761a97a083583bc47db20518270f4071fc0aa1186dd9b5419deb129d28de0ff2723e35a46ca7cb8d9c698dfa711a469

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\6963317097\17509267544\Plugin.rbxm

MD5 fe4b853d8b5c8abee688705094c1ce4c
SHA1 5946974cbda00d0897572b3964fc7aae6012834e
SHA256 3115d650704363a6f3257ac287a6488a620e0102e0e68322ddd9eedf50110f05
SHA512 8a6b22073b1917d5fc60a3a262f196a6c864afb0b1c15bdfef95c0504a6b307fb9311a8a816bdaf073d2aa01ee83317a3314ffb8ae609c66c5184c33813768b4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3d98b47fa16f2c1ce288045a3ce99466

MD5 47a1bdde819dfdfcaf298199cd81e7aa
SHA1 d8e88906fae1f4739a30345fffb50d7123c0a700
SHA256 5f29c32964f91da344e4e4917c9f40d7fa6700260c4e2f0e11104c56c1e496fb
SHA512 49da18236bd820aa6527488d2e50dc6fd3aedb171ae2f50bbed1254d08132874bbc2b7dd64501ccfecf69f50357df0a2657ab590d70568a234d9f559bf76c716

C:\Users\Admin\AppData\Local\Temp\Roblox\http\eb979393184ee611a626f558e7a1c257

MD5 37799a5917de150a3ecbe4907d22859d
SHA1 717f925497ccf94ca29a5976dbc63295e98108ca
SHA256 fed0a3bdcffe8b1693ff4b4026c7c5a897797147c97c3ece73fa02cb5d59378e
SHA512 818b4da2486a26e37d9ee08966361280831db202c8bf65dd1625ff7a8ae1b82629934b87614ace43870e0250c87f4e4af2aa95e20168c3fe7645933dd96eca3c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c264a57aadab3dfcdaebbe146021e18b

MD5 fabdeab26eb27b8be390ee0d71559b25
SHA1 0bad11090445b7235f9b79fa31546f4e330141b9
SHA256 142345bff7986ec02f6ab9860418c25155382d615261e7bb1994eb17f5f6fd57
SHA512 c911cdc33e96eff419d7f47eca3fa8a08501d05da513db57a42137931917a5854a91d15df89994a5a90cc83b637e0c145bca12ff98fb1dda221978db8550b49f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\26fc3c9b281eea6517d75c014ecb39cf

MD5 9e82347863246931e6b424ca0fabf432
SHA1 ff566c4f997fe7cb25b768f2074bf8c4deedfb86
SHA256 2551d682f111489e5a67cdd6f5f45d75955a0180d5182a33d8ab9a5f5a4a944e
SHA512 f2cd455c2f7664b8568892d45234993072a3c46c15ada0075d4a923425416c34d7acf551b1cce5a7330bff2c43a0813b0dd6a73595f58e8b1274fdf5fa4c34a4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\14f71a9a6b0683020c7dd6809dc74532

MD5 6e290823c054cfea6911a028759716ec
SHA1 dd2d128bad8de4bcb8df6b7dc6150da3c98b4d16
SHA256 378ce3d78d3e53ae9a29ee877d8b3800176fbb1a56540f95be71604c7266728f
SHA512 0193d729d03c1d57d0335bd0ec26a51f52573a7919bf51a2914995b1a2c86c249c3b91c85cd44b034b4aa2c0836035eca7567b99400da3d5efb6adb7892cc268

C:\Users\Admin\AppData\Local\Temp\Roblox\http\19667f23eb63ee866d1f21c766f8d771

MD5 ac28f3a5de243fe643caa5acde34839a
SHA1 1a8442740f0b24949340dbd2126a4609ab4950c9
SHA256 1d7fdb0101be387304cb7b405c54183cfbdccfcbb0b388398a24a3423d0709df
SHA512 f4c4e7ebe546b8a8aee3b1cbd90e568106cc779acf6e5775b4c286a2c2fb2668aaf6741db0b46b78862dfacd9a17f0b0a5257d80c129d7453d56c7d32de2fdb7

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f235271f27c6d32f0ced0e92dc895d7a

MD5 14d84efcde33eee11fa83cff389852ad
SHA1 323b015e02ad1ed8e40285e92c14a471faab113f
SHA256 bf46a4e4d6ea2a0092e826b3a5a29e288d2e4f98ee912816523b0ef4c27b0134
SHA512 dc2f03024fa93ad174c290e4091071c4190e8b7dc593a70d870bcd8efe672a1b7c5367902c32d0d7a335ffe07fc804f9f11d9ebb53d38d065f6d9ebdcd6e2877

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a807ee778648df766d3571a7c8904de4

MD5 7fb8c13426babb3a991a83511a228079
SHA1 4e38fbb2a2788edfae61d10688c3175c540b7031
SHA256 66f5f06a72c4e250275915e349af59a3ec5ea50b7e09090ca7893220258300bc
SHA512 fba46c89d041281cd9e629dc725dd5e4f3d000f9de39b3c3c521a08d38646abb0051d8c5b9b13d145ae509ddc94ef0e1fd5a2e1b80d411f63691238ae5bda632

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f70b912552093e7b290b3bf9258612b4

MD5 933c14a3fd3ddf5363bd8c17c3287701
SHA1 c610f1c34ff1509897c83ef86035cc45491ece3a
SHA256 48645d3b40d86f5d8d5fae5a3246a48a7a7032c3e85cdc0a8e0ec3b96091d3e9
SHA512 bd8b87e56196fd63b6628f0d4825caa6136c7d316b89a7ca85bd3c51d42e7ea8e0b18f563704f024f12567b12ae6294fa5b313175aa1dbef11e758fc7a40415a

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3bdad4d24da443a16cf9181d5a15df51

MD5 7d749cb3ebefa0502301528f8f57f769
SHA1 e364cb59693b12d6eb53c58749fe06c102856bd6
SHA256 47e9fb01aa55f01ec49920cb18868e48886807e40a3b3200d69ca72fce4762d1
SHA512 722fb2c1d4e9a9c4a3ca6f4b0c3d915859b437b1cf44ca5c1a1f6b36e57b25c0dd14d06705cc280340a12727662671259bd28b533700c0861b3883f5a9c14525

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7f0b05faa1f62c09f138894a69484bd6

MD5 3aed78d1f11463c573eef82177ea4eb5
SHA1 8413546ce4173586cc3c527010072ecddf0f3759
SHA256 0defae2206bd172618ed8f5abe4bf960df619d7e3983da4d429edfbda058b492
SHA512 ae19a01e8347bcb1492db7c82d2e301a7a9cf2d049a17fd4628970c881ac4e9f4407b0aa1e259a33e985068e004690989382a7fcead992d45118741209255f06

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4f81d51cc739e48584c254d16d348af4

MD5 b65856b94950f8556b40c13449ab3093
SHA1 71902a51e74a25527dfbda40c8510ec760d08b8a
SHA256 c319dc5bf6532ad9342cddf055daec35de8c2bc49fe354187744a25450a7eb3c
SHA512 49429e835a32b720a57ddb35bbe5c64d9d23b396912516dd3d6d38c34fe450a06ed679981ed299a7e7aa26d825e3a927d2f15c8b6ea51b4a3c2450335df410d0

C:\Users\Admin\AppData\Local\Temp\Roblox\http\32f549e0d0881fad13ba2dac6703e862

MD5 f8a3007c3673a84ba2287c9da1d7ed70
SHA1 33e6d63fcb47b33ae3084ee29862fa9a07fbacc5
SHA256 b0ce5d9f6695f5f6e607f29d058f857bc20b80fe8f6b7454198a804c73306393
SHA512 78d92eaaaa7b5e490f53581e100fcf51ea982c9b2216caf7d4374f70314a1210797c6a6fe910151c4494c2603c0201d615e40d6a666e642e308b6eeff42c65dc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7e983174527d066f342cbd5253370641

MD5 abf7dfa816289c944e9d019195c857da
SHA1 845b96141f770af5eff4b1b53e8e8ef71e18cbd6
SHA256 22c64d598bf68fd003caf89d2be1417dee940c3a607da66393b43d52be083730
SHA512 cde23ee869f8ba74b8888b551f97d611d4b8dd97ccd0a485f4489e0d3f24359c883a8fb26be9d305fa129d1f783bfe881c71a8635e9994da670f7565861b2936

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1f98867489bc6360951b208738ad6447

MD5 c9d7a5449c2416cea3dc4b8697273ad2
SHA1 452f66798b4f15ae1c77aa6c20247d202fc09fa1
SHA256 2b94005f0e346190d6ba38deb3763858acbdae197a6a200f0c7c1220f5f5644a
SHA512 dd637977954052362cf59ab76b8d707243d519398fc51e188ebbd882d4b82abd3cb18f80d0faced0fcd37d06373748ebe493faa0b45b12d41f0af1700c6ece89

C:\Users\Admin\AppData\Local\Temp\Roblox\http\6513a3dc2c6dd7f5eec3028c11586d24

MD5 faeb085f5637b32b39458c89ff68538b
SHA1 f057e675c657f1980508cd245204b75775627957
SHA256 2ba539509be43398449dd5073d34c4e5eee06bbd03adabaa5310acd8730539e2
SHA512 36ca1e996d186a41a5623401b14559d9baa7ad32069e18d045aa03b475029428f1d49870191b4a676d1042bd9b0a0be9146d08dfdf2eee5e5cf2c78e3ba038fc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\62df5184ae1f060c81401754ada047ae

MD5 80696c7595540638b24e76d1557af8ba
SHA1 8d58e475d0a3c629e5e4781eac657faf6d9ca22b
SHA256 7bbb75c1d5624f35dbfc6f31ef170d3aeb92d1058ddc0784ad3f3b560412378e
SHA512 951013b48cdf1d5d071f161e100359022c300c41d9d32c5f96bea7613d94cc45fa609f7a9187214333611fefd0376bcb401d77ed9cde07ba4a5cb0211ef16d95

C:\Users\Admin\AppData\Local\Temp\Roblox\http\fcf6edc6daa9beb8408435b9fb5750a8

MD5 927431ddef2ef4974d38fa57a3892683
SHA1 f20fe6a7c36f07d1add4523f1b27f4d349889f53
SHA256 9919af53241273077511c550a1290042f11583113c0b6b2914797eb335aa7dc4
SHA512 4f3add7576b689c7dc88b3cc36d6512ab1cb7bc46d2476f7959153be1d349257299a13f446a262867f4d50f28c7b9d2dab6675325a4ed17abc344f87336e055e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 7a2227ba59a764456c5f90239cf51978
SHA1 44f5532e23d523faa64d45d69990297c13b669fd
SHA256 edd58707224b99e60c9075c933da759fa7dcc02e02cbf37118157389fc144bca
SHA512 f19b902e00f23ccdea2f70e60991a93ed8612cf23dbfb4dc3d1405c0121b44264751f3a6a1d04897915a13ba97bbdd01b34d9162dfd8404c695b113256655015

C:\Users\Admin\AppData\Local\Temp\Roblox\http\440bcb762a22e49ca4c7c6fec2b1eecd

MD5 06ccd73a943d3548bb6a7ad4c15f662a
SHA1 d6106707b71461a099ab7bce4bbd66191b938366
SHA256 7aad0a8789b6cff666eaf202435ae5a1802b67836d8cd116ac255c03f91e17be
SHA512 a60ebe45bc07db4d1a5801ce55b501f1c8d605e480ffc201c9fbc97598a607eac0d8cd944c3dd801e4fff88d082313dfaa96f5c1737acf165ce7dafec452426b

C:\Users\Admin\AppData\Local\Temp\Roblox\http\9d832c96a654de99475609b25d593c69

MD5 ec5ded319150e95fb788a914f4765d47
SHA1 889086465857ed81af2c8d00c350ea967537e06f
SHA256 54f475d73cc6524dfd2f020491b20b2e7b14cfe2550b6480b03d5ad697ca1f96
SHA512 a1f0639bed3b6578a1cccf00faaf28117179939d50d166de984161d7c5cdda3041eeac953d0ee51e2a8bd7c89ac1875c37350485d89720df8c1d9f1858041cae

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3ad02fdca06d8652544ed34b83390732

MD5 a9b5a4b015cf9eb95071e79e966f9fa0
SHA1 a1d05b52cf8576d22d81087eed2bee887b97399e
SHA256 38b8774e1ff78cc5b90feab620acce79ff2e5703bd8a8a41e84ef4c50a9b80b1
SHA512 3059f5d55440a74c96f919e8db7e6adc1ce8c1dd1ac425bcb8d86dcc6d8af2c075eaa134e548519fa034cb8c0ac1fb399f9d66e75daad8891976deb2ab6eea49

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f4b59b712342970d8029e3abfddf1523

MD5 0b3543da5ed78b2fb45f4aa229038d3e
SHA1 004c841a85e7a467d1e481775c6f278acedd9cbe
SHA256 a533c17340d0b4006cba8d579114435556019c0a8325c1fe01ca00d5f248102e
SHA512 41f647a654e41fd2d113f50e251f2d030595203987609e3b8f259066aab85d8f487c4c5700a27fa31309097a140543cd050092a897bf5ddd4e55ed37feac3b2e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1b3a9ad8a8b17c8a3504f2a1f794fe34

MD5 044dc955ec5f40bb0302efe97ba485c2
SHA1 b60956c032d0f5c2f3c11760e0b1d3d938039e66
SHA256 14833c4961c4b08f0cca5bc40e93dd2a1469df5b6e2fae53ce551ea787c67657
SHA512 4c3f46750f376820f90a93a6778cfe607968d43abe9821c35414225808618a0ea7524cf5ef355ecd086d53b7fad7a735fcae656ecf9cc4f2ff8b9642239fc4f5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c2f029617fcada6f55fc51db2408130b

MD5 93854b9b0edcbd12b6b0da3e75ba8eed
SHA1 3d0a999f1093ba9aa763ed4bd40bd92abb8fdeef
SHA256 dc7382a3bd5a4f56cbdaeb877988a80a7681317291c40f752c1c1532a617b5e6
SHA512 70e52d5b518eabb582310d046970079a504b85658e2e1e0f9cb4f13e44893b1c2aa643b02600acf0040b6ee9e60413673cacd69d9fe3237c9cf497d7414f80e7

C:\Users\Admin\AppData\Local\Temp\Roblox\http\717d70c8a0bb6a97c373cbdaceabf9da

MD5 3455364b72d42d2a33fa88491ac1bb1a
SHA1 91f60fe2f5ce9ff73120374782fd2e5ed47bb335
SHA256 2c40b304aa11aa8596fd92652fb020f7d1ff00d5f58566bfeab6a994fd7874ab
SHA512 3e782c9c5e51e99cf4196ea1a6913147b9e1988d45426fcdf9b2333869c03146996b42b660f22a39998e27ad870ba8ee20afaf16a3b1c5172da4a41d83c320b9

C:\Users\Admin\AppData\Local\Temp\Roblox\http\561082bbf91c7be9f9bc41c4bdbbd673

MD5 920c27ba2e394fe983c8addd7ad1d0b6
SHA1 f75300d361f5efe9a8cff8ef9b1e93aa28f2329d
SHA256 92e6e15c419ae36911812ea6924557c81facee61b266378c3e368adac7be772e
SHA512 c1ca7d708a473697fd495d05cb3b2fd6088aa7b6414154efb531e1a001d90ed6e9beb59adf44e9460189f247a35c52837dbb4204473a8da699f583c359f8e071

C:\Users\Admin\AppData\Local\Temp\Roblox\http\68f4d9224b2a3aae5d16d878af6029ce

MD5 782abbe2630c8271f0f4cdec9f1f6737
SHA1 6d7a6350eb6fadec61da09c43ebe11cbc8753a30
SHA256 ac70a287096de86a3f271a5c47e8e2425958184decb300f64d42e25ac2b27e89
SHA512 e1ff24e27cd243fc9a864909ff06de23dfebe0ec7d33a0d1952b5ad506dff97dc8837783c21a56dcfa0544b936c2f7474fa2c7d1d21dca18f53348b4d32336ef

C:\Users\Admin\AppData\Local\Temp\Roblox\http\89312e5dcf4179aee2640b253db4887c

MD5 b7d3d8f587ce47b28d14d8f7c3b264e3
SHA1 6e82f44e263aeeb59686c681ebc8418ae23d77c6
SHA256 6b7a150c8c8bb76c35911a3d1e1489ddbaa8978de26cf8b475849b9891da7e01
SHA512 10758d02d69b9860f24414cb27bbba5b84bb5fb6b5074006892602c9806929b59f94af29fca9f1344fee753b865c1c9cf6b708c07a46b165928b5cabd29bc3ca

C:\Users\Admin\AppData\Local\Temp\Roblox\http\87051b50ff747e8c55aa54f3894e85c4

MD5 947fbf9d20fd9b4eb167a2ce28a1cd47
SHA1 a593d80ad91dca300f93986ce9709432645b9687
SHA256 5019ce111dec5458d4a84560d3f31e494737426de9b1f77cc70611f71c3bf467
SHA512 e8802cbf905497be08727024e60e3540184f8ff431537d1e02e87840fd6e95125ee4f916ff2c020d59179452cbd312a400a9387bf7db0cc1dce1c2c89261948c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\2fd5b95ccb896323a6c877d623ba6a4b

MD5 8fdfc24c207db17312385b6a553c93cf
SHA1 ac3952a2f0e293e67edad48965a796612f391ad4
SHA256 9632107910f4abffe021366b74c4980ba5d7cc5a855560f8ec675f2e62fdcd8f
SHA512 567908b0ca9614650e1bf0d959264d3dd7c5a2888c374c0804d87a3ebcd1b1a274db49dcbc37cafc653b27cc0bc405f55f5c66408244942545e843624cf18dd2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a25d8e41a6fb03b5e98bbec38dcff01f

MD5 f7247c5d7d54f314f8c207fb2fc44b1f
SHA1 637a11985dd6f18c96837e54674348512acb162d
SHA256 0baa6a0762650e1d71cbb6726776f39b581917a1aa49cde407cb1e8cabb16cef
SHA512 253d26a07bd5b64048d9a89a3ec723ae46a9169361e1ec3efe8a302366ddf513bf43edab63eafb0707354f1427b2bda89ce245839cfa857fd5a51a6f45ef20a2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\b67ab46b586b3012af07d37f51d11582

MD5 d7672b636233fa56a33a3639763c00d4
SHA1 448182f9a9af2e9bc05ffa0c24e9c7e6b182d039
SHA256 a14ebc9dc017a8c5af34004e76f6c76bbc8ad547b642062b6d1c79540e3e9d06
SHA512 2f727045a22ae14c759608b8a8e5a774b58898b947d5f6485121bd7f26a14795ee2a48442e4e32c5bc8577cf331a7e13f8fe2e8a14e37c3636a6b9faabc19e60

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4897d7279d69d566e358fa616825eace

MD5 6525400e97004e778409bd457741a5a3
SHA1 dcb9f40c5ec195f12411f297cba86a377edf061f
SHA256 383190134b5c375326909e6a12dcf0ef469402f754686a9d0249afcc9e575fef
SHA512 21e46ad6d8a448e3c22c24d0e78182479bf3e369d873fe29ce9897a2d754a0e29d43b9bc3cb3b6cc2fe300e3bcd387deb6744926fe0c9fc4c13019cecdcbe7c5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\20219f10437672c6ce774c88e971f965

MD5 7551ed24ee58d02e10120cfeaadbc239
SHA1 650a48ee1c55c6c615df3841744f061ff48d263b
SHA256 e42417d0d435488ee36eefea5e5e182a1468b5b370ca9ff6627b9367b9374efa
SHA512 73b254a3bca52129633d6c96e1213fc4365b6b712b3a1e2b99dc158a516442f346a2a1153cf4734e69fa5de78943cc9b2538ee2ea0d7810bbe3c93bef9b5510c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7ad308ae630099ec35a07aca755e550a

MD5 34b230e9645b5b5cfc57dff36b382521
SHA1 3e89693a5446e59942e362ec3a6045e3d73c270e
SHA256 e96270e4beccbb8d0f5b53e550ea41d677e7ca2affcce0f80473bf9ff372628d
SHA512 9c48f7ed57bf4e98f64972161f0c2effb3cf780c5f3a95e7e7ca698df4160a41da49c10a406a999f1884aca44eef5ae5a36d8da5bdcbe5c1e2e7ca4f68d9a38c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\e754c5a7690200d756ee57d436f547f9

MD5 94fafdf0722aaae9e49c0b0b10ce1f0a
SHA1 8c120e9281f312b4b044e8d05ccaf5d6cce46dd4
SHA256 675269c990d3a4a8788c14976e51e4d2a4ae7cf8ed62ce0b8cdb3b65a7678094
SHA512 af9c47cdc59e93619c392bb6a17c6afb41a16daae45e62158a0a5140d61ade9517ae23c5cb130fefd696e57a487a10d4fff78e2e3eb9dbcfbe2f97eebddad0ad

C:\Users\Admin\AppData\Local\Temp\Roblox\http\85cf7c0f1044b3c2e96e348430bb4831

MD5 f11700f0ae144449148d51d04d8872c2
SHA1 91a4c1fe6398916bd4775840f71d63582be8619a
SHA256 e5f7c9f67dc2b5747dd4310a414c08fe7914b7da8ae68fdbe0e0c010fe7b50c4
SHA512 349f939a7666a911234c836a088fdac22c78222feb55cd219a36fa4694ce23e0105573a443e8737689d159b7be6aa12f1de6cd1d0306f917ee4b6ea251212854

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e2155b242e1aebd5c031303942f205d7
SHA1 6366b8b0bea346c8a72560b1d56091c85fc044d8
SHA256 d32b1daded0646dc4bd1368a197f560fa84e51a7881145dfff05bda901a8f001
SHA512 bfc39cc78d54e24e4457a22df69920bda6c3281e646fc6f98525ba3bcb9269f3c988a703c8f4d75665553789a0712bf3e7a9a7f06cfb5f35cf04e0cce3f02586

C:\Users\Admin\Documents\ROBLOX\AutoSaves\Place_AutoRecovery_0.rbxl.lock

MD5 e9264d698e7b2111c8a3d67bb85f7381
SHA1 3f553ee484efc9c01f88984ae118a2f47735ea7d
SHA256 9e7cb32c2709fa7bfbbefca81aab03832e1183736144bd3ccb81428a817cc078
SHA512 624a67a931f96d0ec4113ad73269049d56609ef6dd5c52082059c3e23eb146d279cc805d66a80a654f485a70deb305a23538cea6875251a0297e5db8977630fa

C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.79\Installer\setup.exe

MD5 365eb1aab5e477760126569b7f72f85a
SHA1 06aa9c213c163b7716644314ea6d3997f882ab06
SHA256 19dc1f8c7901ec057bfaf763d8354a07880ce6fa3093185c64b95d082f8055af
SHA512 0d34bc14ed5328f2ded1c48acc29872a2154db0c4c9072a098266a08c0d0b235705223f988e64e3fd418e9c62338560e33d7f3d9ae933f43da77763e88938888

C:\Users\Admin\AppData\Local\Roblox\placeIDEState\placeIDEState_17440835905_DebuggerData.xml

MD5 cd0f3ddac5434868dd098599ac017cc5
SHA1 33c095040b0528b3d59e2ebf69f1f0dbd9e6db50
SHA256 0f509d82cdaad6c918a7c0d346c604e11eb96ec28be4ea38fa7fa67b9d50e32f
SHA512 ef1a4d870a322afb2dfe19eb6c1c3bfbde17737d809d3f29d7a2b06084d6e12679a0c4e91385ed47b2dd396a8782666480eee905d5dcbfdd42f5c4338ce0841b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\IndexedDB\indexeddb.leveldb\LOG

MD5 e9d0e112ba9422d65ed03271b815cc42
SHA1 1d38d78f59ffa2949884dad77ca283ab8ed9137f
SHA256 64810cb0d28f542dc417cce9011a8697195ac01762271dab5718f2351bd1c4db
SHA512 508d5fb7470191d73e78a5a3fb3bd3e0b090d494899e0390ce0bef8e6e10bb8b06e93e50b98c2af6fad79c425cb89c1120a0ef6f485d875f0fe8197551989774

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ea

MD5 8f4daa431e0c7c461beb296ed21f0eb6
SHA1 feb52ae17672166894f229f1ba6adb6190558b7e
SHA256 eaedef62887c3ffab3f049edf8a59b2b712601c79a2457e0d7a07e2389ffdc97
SHA512 1bab86fbadbf5c9a60b1b7da5204dcc920a5d65b345b2f58c05de7d31497c22a375882b0d160d378a07165a32e4530ff4bb43a57019149f76613297ab045fe5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ef

MD5 5985954954ef53b13b0fd21731548f35
SHA1 54ab8319fa1ba649afb5548d6e47c0de58e9158d
SHA256 85fb8c885e6ad4b58236e0007eab905c131b392176873dbbdafb42fa94877d20
SHA512 bcb34bf4375c0c271b188787a59b23fb25cfe8c8a6eb62d4d725f1f901d60ce8b0a33683dedd7f19e9c4222b73f37dc7e1ea6cff3396e2f5bb28cd8f682a8ec8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ee

MD5 2b32ca23f52829902360062055648771
SHA1 9b720f0cae741250e55c249f641f923ec314d993
SHA256 a54cb229a3f5c9c5f0f0ba1fd0a3773084584e74334e59c1044c826ea56ba118
SHA512 a251dff323d2cc2554d8b30a845202bae5562f0805c89987b55fe957c7581a34936ab2e099beccd349e1a16293c5a3c6afdb8f6a932a1657d8a76915ae49288d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ed

MD5 af2f312af56e77d1f9f7d6f0a4a050ac
SHA1 cd5526ef477c2434dae8f1ea9b2e656739208432
SHA256 3d60f38588c953763e18f4f93e253ef6b25f756db65feb38831193130ef06d56
SHA512 b9a5efb2ce07cdf88c188f414666d34d807ecee05a9657e35a44972866c73e726eb27a468c72d4cc53bb0c0d066d5da2e75427647082ce7c0c69f627fd380b38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ec

MD5 8335a78475b3a9e235c48edc278a9abf
SHA1 5b7baed4326d79dd4f4ae765c4b544e13a2fc42b
SHA256 172ea71ab098ca5633a8fca73feee1879968a5f6e006dadef91dd0dcbe042911
SHA512 4105bf19fe180c1c9f1952fae04f2306a3c6f478b0d5c02f9fdd035f7dc5ae32acb375be54946bc0df6c86ffd8d000f205c0be477e4984d2c6822e87f9fc86ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001eb

MD5 945188750131d8d9d053ca7373e9c67b
SHA1 65b39c067b2f439fbbcc69d1eba6de31009000bd
SHA256 010a47e64cf1007d34139a1528deb315dad866775dc8544ee6534ac9de2c7485
SHA512 e1806c21b244f39567671aaa2f77e1799eba67aaddc0f3e73aa053c92ca30ab3484d47807dfb53dbf800825821dcbaaabd688d32066dc2ce6be03ad702d18276

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 565ff5880a7c12ffc7d85a31f0c59b0c
SHA1 fae1542a2b3cca94dc5c339d3cd45aefdc7c41b3
SHA256 2778197481cae91f0c0c7993f54c3217bcac1c087cdfd38acc509222a45bdd37
SHA512 f17444cbb176662fffac0d3b72a2e7ddbe6f660de9c376ebaa5d3e3495e5333bc9b77cb8f9b00634a9549be661e833f4903cede2ceeca20b30ccdd7cd320fdc3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f0

MD5 96f1e10df04bdfd84827959bf618f79e
SHA1 386059b2bc888d3b2b5b1c49790e227ba5040449
SHA256 d6ffe81f9489f7529751a911dfe48a20ecd540ebc959039af1f508b9cd38c6f9
SHA512 b4bef7f0d56daf42c5f1d5519358ab18def72b71473bfdafc44da9e44d3259330e1a310c3c46ecba30f943fa30199a622b13069a6b66b14b68d865634ddaa909

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f1

MD5 35ca5992927ba887681d78d9714d00f7
SHA1 ad9eacd3e506d5696f85944014f1d0b419fd653c
SHA256 599539d4e9f09bad4a36e2267c2658b511f1334555726887b00a9febcfb90700
SHA512 b98baf6b080bdb357d07d6c621152812af0596c4fdc4b06d71f4bfc8dd8e49525e777d3231ffa6f11e2834783c5d7eff08ed0f9c0b28c1a14792a7ddf14235bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f2

MD5 185aef8488e86633d3ab407db31378f3
SHA1 125bb265ca4550c4092566228bf81c0a745216a2
SHA256 33e174ddad43b02d02be408cebfb3d00eabc507faa7cb1e51ed99539106eb10d
SHA512 5892b281663c1d804f2a6da82532e5b1d0465ea046427c01f7e0e5494c0daaf4eb1e172dcbed3ef23af21ae08226e865e92bb41d7587ec7dd9cac67047436d81

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f3

MD5 7a7fa38cf4717e119ff559db960a7283
SHA1 9f1b45f494a45c2b85ad0c5303651e7b184210e7
SHA256 a06247b005c4b16b472456d5921f5422aa7da650b3a5d998fd38fe3464d88782
SHA512 f195a9b28d302f296298822a4ca3a7d70bbb3a8d7978fc18f83ed9bb72fe00ab27b17bd595c9a2e71c5fd5fb64ecfa2e484684da922fe680fc36573e8b5bbbee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f8

MD5 0a3b7221535f5e1f2eeca8e23cc39f47
SHA1 dd774e6ef5ef45429f2a945c05be21a186ae7dbc
SHA256 5dfb59d448bd623eef3dc97cb5741eab84b4ed1d9f1e4fbe1cb2f4d6f667931a
SHA512 aea414c71f90fb28cf7ad4ac3352270ddc68eac1e27a8d724893a5f85a75b1963e28504f54f6a0f5c74b62ee833476e6c62c6167674fbc747c7b3e2955a09b55

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f7

MD5 210026b6337d0c71b6aac9612a2bdaef
SHA1 786cfc809e6c00d214356f9fd37b14e8ab76bffe
SHA256 15e2c8c243bd6039c4624932b1e28d27a68db8fc8ad99a8f6bdfbb2212ea31ba
SHA512 f00f667db20a49a185b410e45eb39fd2fd8c4077c5eae3479894fb228ed918d403459fa238f11940686165f460574db38c5b386d27238c0fff2cb74bc76ebf07

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f6

MD5 99a93adc0a73f39f8998e481626790ac
SHA1 a40e7f9ba73ef981a2dc591a1a172978a409f295
SHA256 462a3925330084b81170796e85481696fc2423c2f3269d6968ba0a3eead0e774
SHA512 bae355ee8eb0f69bf602e4f442f7e88ec99985a16c54404b3f1a83ac0dd96bc0277e9d463bb09974eb4fc2db0d5fde7f6113129f89cb4a20f8d4d4e9d4f4effc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f5

MD5 8764fb4517d4adbfe1ad746d87feecb5
SHA1 8485daa0f9f500870270775b32f052431a308956
SHA256 947279d14dcb18a7d6f9342f941343a2a4f061a3db95f1e2bb68e5aee9b6f794
SHA512 ddb2ef3b781bae1b3d0cd625c0ad375d712b7cbc7bf7a17180354a37e470f7a81b9fb821e16f20ee580a0116a654132dacac34a2abc3503b2ad345d1f6a17d0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f4

MD5 bcaa16b3813fcae6e8eadb6217188c7c
SHA1 584b829542ad1fab63ea5b260a1220434761df98
SHA256 ca1991b4168d5e4d7d6aeb80ded6f3a70ea63c3a14c8168bd57f3b0905c8fc9a
SHA512 599ea34556085cee06859944d8193af5421f7ef9a267d0b18e92572becc78f874c1c9711d54348a6828f54c2cfa4624e01964f963ee85a069816bf2539024a03

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f9

MD5 63844dc0000d6c7b70d2c8c1d239e5f0
SHA1 9b2d567b9ecb56251b75ea524b7a4b2fa476555a
SHA256 cfa2bfb8d71528cec336b7d668540947a09aae3066d99bc54b18de2a3b9029fc
SHA512 2dd81312fa65e3829de7a405c551ef24482e242abec95b97b2f5299ab8e259519e87e9683c46a94a0cc62a3082f2627e8621e820e4f159d681682f78022d1a52

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001fa

MD5 56cd0bde6dcb67af0a1089246765e9f5
SHA1 89c4461a6ea9ae9cc1d0cf28749420df6eb141b6
SHA256 58c224d263f20071efe85094f6e44feb9ec05545347caa5dfb56fe943aa27b1b
SHA512 ab415aabfec765c566520cc5e28faa117378797b3d77a5b0bbbcdd590091098a923b525adcfb0193eb2373b0e31a518bdf73022042afa609c24d9615e29cbb8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001fb

MD5 30ec6fa6308c0b7aebf441c36fe6b08c
SHA1 2840c56789553bae9ee3c5bacc9ee6a7d0e61852
SHA256 6de1d3a636c56cfc404fa8df21d3a8aa33ae64a538dc0a9e196a36ea79445af9
SHA512 4c8aa2c732682cfc9165bba1d45f32a96782012a649c0df7c35f0064748e5a62ad3893f3451d94cc505c27d962d9a9bd9919d2ec7494223d472977915949609a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001fc

MD5 4178d765ca3bd92c00e737cace3434bf
SHA1 50fa3dc05f1febd22774799b04a9e7c2fc1666e8
SHA256 2ebc65b398d4e2a9ad0c119f7a6c02670cfa59b34919b5875b6bd0017acb1590
SHA512 ff68c45b8ca6997cf31e74c9a138e7ea52d8e63c3fa76668df014ab8eeaff1830df8e045dc813288d98cca3f4f591c1427746755a59010aee1ec19a035201fe0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ff

MD5 d270eeccae88a925f31a277bf7623253
SHA1 923de99b723648381d02d1b98f017951b7d237a2
SHA256 72f305db492f218cced6b57d8c52187ac0a5edb6632dde81277fce248c57fcfa
SHA512 3ffacba99d0bfd3ef33868d75a6742a1473d7c558f91c9d8d4f4b1d87ea13c71fe56a771c620bf3c697558ea6623c379d46de1322e559f49e50ba98304de088c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001fe

MD5 958e8b1b0acb5e77c8bc69be368f0188
SHA1 1a4809ac2275ced76e2fe1171118d604a57d1efc
SHA256 ecf3d9e27cad3bb6e190078a726d728849e213246f63ae63ef37ae039e5ad610
SHA512 12ea4898f246ae8b163491545236e8a2399ffbe78c82775f5ddff427756e8d85db8bf5360e07cd23ca596d23a01ce69d7aaca910880944f29a522915d9077f82

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001fd

MD5 4dfcf9cc7cca8b3d9e41691ae95469b6
SHA1 f7abc69024242e75fb80c794964b8f34e384bcc7
SHA256 c37b2a181c1d17ef3fe551aeaa419fa24f52426234dcfffd00c6515c2305a82f
SHA512 832ac87c66f793042efb63cf14e7dcbde00bae76b6a9a03085d8839567fccc3d31980149f668325f1e92ad2afaddb1d84538d88768b2c2eea5972bf872590aa6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000200

MD5 a117b5b831a66004897c928e2ce13b40
SHA1 6918d4f1baf9cc24ba1a50d889d0baf4183eca60
SHA256 a6e5271b3bb8867594131ae7513f24900f38d06950783c4523c2e1230fb65e70
SHA512 125e92619bf729a8d9d3d086c2727297d1ae7bd34db7a38a701ed2626acde78313046b2484d26c155dfcd1657e0fa5138a1754b9b9170f294e0513c079a44f8b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000201

MD5 e5ffeed873f2acd4855e6e2eeba4b9d3
SHA1 26752f2070961c806501f85b647b96c216cb4531
SHA256 1001ec10546217495146dc7af435b8aee8cedac352c1e5cd6a546a6fb71eba2d
SHA512 05104be994f6a5c946da1b2e0cb2c080ffafcb1c7c91e65e6751d41e2b12c92d810757e7c6f910837ec7728e13acc5738d468df148261b3a093ec3d728bff3c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000202

MD5 528d135ba5cde5faf2a5134480ed8977
SHA1 ad21d1d414ff1e7bd78958d57fbd90810f3250c8
SHA256 77eed73c6b96269fa7a1d3d372a7c90bc004b3b9e1450da55c2ce8250e46cb23
SHA512 bb0b606b840b09edb9410976b0c7bd85255f00ce5e80128bb1fc6ddfda9e54443e6c5bd8771d54a65d79cbdc6264b761849e52ded0cf69f8afc359ba6bd10548

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000203

MD5 15c0b73f51484457c1aea52065475a6d
SHA1 93765b128bbae09122215e432d839cca56422d7e
SHA256 79c1f17189dc5a139b4e9a4501fbed7285c9c3e35b06916735b10959dd46f4cc
SHA512 5d08f03f9ff67d22f33d159410304839e1308c8e64a3df4b7ba3807b1f999d51966564de176e5d7dbb918468cf8b578cb2c852da882a614a14118c90efefe840

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000205

MD5 d33aefb9099150f8e8fcb190b77afb57
SHA1 60799134cffd6ac9476db8f9f38432fdc389bf8f
SHA256 096fbffc13861647808306b1c4dc41b29776a0561afcc6289ea42b76f9c294b1
SHA512 9baf43f7197bc78d8256db3fa96f30363f05824267e3e66d9f7ced81ea46408835cd89d1679355d9017ab23e603bcbe07887e1fc78d199aac95175d7f9ed1239

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000204

MD5 258e30dd4adf4d27434598669fb39390
SHA1 b9ac31370ae7eaf563cefabe024f8b667223a7e1
SHA256 93f740e4f78b3c837259289af31cbce577e99f134e76fed8ed3ac941e1ef098c
SHA512 b22c32d4b72e9b24a67fbed9a47dc0966301f18660467b4a232ea612ea5efb3a2867f7deb53fae134a3048382661950325cf5f823c05f08e6e45028a183ba7c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000206

MD5 99ff5389b166f41b1d805fda14b95f51
SHA1 76d41ab9dce4a1810b578d9cb86678158889fa9e
SHA256 80cdd3cf6a54c26b512c608f4f5d10678728d682d3bdbf391ebf9e95266fc721
SHA512 fdd54cc32dc408e39a39f0994b58954e7f0c4b18949bb2e823c163bce4b83a6eb10a1c7345fec89f6b17cbb8ec1913d4aee936e50703fd78cbfd9d865992510d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000208

MD5 70338ffbf57b36e4b2496c5cff5384bd
SHA1 ba6d4c0563a8f5f99e6baf056f88cfd7859716dd
SHA256 c5141f4ca635ac56697cbf5eba5fe7f663bcef8ba924e5f8670f71339d7f17f5
SHA512 3ae62472e3f2a0d3fbc4c7e48aacc37e74e20a9da17e50280bca48e8f299abd14f70594a5006329c0cbab1616e065c905889602307aa0a27c08befda9fcf9858

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000207

MD5 29d33e51f0c68fc0ebf5d3bd75b37fea
SHA1 67efdbade4ca9df216a9e0642a4238eb40e6a7f6
SHA256 b22406a13132ca5cb05439452418d98608b733def411b5f99b64e4f7879b4d4f
SHA512 12cd7be7718cfa6aa796a94f4f646516e6f72d5b041ed959e3d430c381484f491851af9dfea466fb76931e88f366709dac8bdeb0759ef3c40da69684edea8005

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000209

MD5 73267688a5fb79fa16620f223d8099b4
SHA1 fafc45389f68f8a2a932771a5d0c47da74e323dd
SHA256 8ad353c61dba718ec5d4d67739da6af35d5e3ea2f10267d3721f5cd763d5a589
SHA512 2b8ac4294995966d241404ab06d903021e1ee2a85e181bd61ca4eae339e9beb306666e53d46899208ddb05405ee5cf0e8e39583d745a4a6557f07e56787a97af

C:\Users\Admin\AppData\Local\Temp\Roblox\http\RBX8D7320E336314A40B367E1CFA53F738C

MD5 b22d848a03f617284581938c74c1dd71
SHA1 d3f40d3a7d894e18bccf7a47ab9f41e6fcd1864e
SHA256 39b63ea4a59ce2ee74318960b5676208d1956447a6f72a9ca721711d750b25f8
SHA512 ebd1ad02736ab5eb5a934b7c200e7ea577ca13557e78441a17f888a06d67594aa354c776436c86d559cc1f8b2b57cd239258c86bdb126db70af0077969c37e17

C:\Users\Admin\AppData\Local\Temp\Roblox\http\086b414f7f02414d8d7df46858d24c94

MD5 3761a9c114303b4e2f7181f15329c369
SHA1 056026de1a849861200527ab555dfd64e26e4efd
SHA256 69547fc35a4b14ac1c9f804f51bcbba3b24c0be2d76fb07a469fd15e222949ce
SHA512 cdab26d888b5fc5d978dca725f8bd33bfce32d58b97133c2e8c6ead9a541c27eb73ad9a816ec1dcf40bd354e71cd7b939c2b0ddfed75e04471671c8b61e60dd2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\640ab0e340dbb9f163ef2b2b77fc1799

MD5 e12c823c3d37e45505f4b37b070ec189
SHA1 3eb647d964198868d3f568a9839ccb3cddcc51b8
SHA256 6cf05a84014feee1c1937ec2f8e916e30aa0cd26271e3cbd4c858257f0490a65
SHA512 cfd54709676e8e9bc7d11509fcb8030e0613cef7df13c7bb3190844fea2dea31e45bf2f27aa6e29cd2fee5f08433edda35799752479aabe8902c7e2ea4ebea29

C:\Users\Admin\AppData\Local\Temp\Roblox\http\30a53e7d91730b31358134cd9e362012

MD5 9cc60eedb96dc8440259c84d47f6d0cf
SHA1 490aee2db4f368150065d7491e2798ccd9c2c2f7
SHA256 6cfab00edac33a75675ca194a8bfa7c262941a84b164ec7671beff56a7b6a328
SHA512 a09274dd5a603ee9314389ac12b6437fc48eafa54437c47c6df3d4ab653eb08b16dbc5436ca63a47b7336325313c3f98e6120b92e5db6962e491ae37c3553412

C:\Users\Admin\AppData\Local\Temp\Roblox\http\525c2c2ab32fa495480ab65027bba4e4

MD5 f63ad479861b21d544e69ffdad74a05f
SHA1 3f21448e418162d19fb71eab3021db8a08194bc2
SHA256 4a1e719bf9a0330b243529c8c974f7d22c79f5b7948501586fee46c9011ee6d1
SHA512 6b5d18ec92b2ad9e2f102e20dbaedd57c705eaa6236546bc993e6d232638f7352224c1b8d7a278105e67952e29233dc967758a35682a6f9d27b63daa521847bf

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7de699762fce90d036e2586e7388ba0e

MD5 14a87d1d4d073558bc457bdd9472fd26
SHA1 0d0706f85bc7cf741f047858affdc977faf3a5d7
SHA256 207e4c1bbdd443718d79b6dd53359ab3d4ceb6084a574068b5661dfd1fee72f0
SHA512 2c24266302263151fbc172cdcfaf61f5615f6394d307421c23badc4ca46c904c228a4ec02c0a612dfb0441389b60b65866e61920d6fe8c7db895512193311899

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3ad8869dcb7882edadbcea1ef5aaa2bb

MD5 25d826dd1091cf169f41a6a5f991b61b
SHA1 99454423532e99695d8513eb43eeba87bd30a364
SHA256 eb7cf875b3f4e5000f31390839a78452fec089c5955ac926401e179cbb928947
SHA512 ce244a453ff987cb1c3db8d18593f4006dc9d42ed5f8824b3a5d1ba33965c034f4ade6099f89d7950681bca00f8c5fda6b3bdae55674200a2c8b1b675889cb73

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020a

MD5 46d50d851d5af6e2e424c4bafb6acdba
SHA1 87fcdce04855cb2d7b2dd276dc147604ae015ba5
SHA256 fe573576514489755513cd5664820848a74c2176dcacf93cf2f07520db79763e
SHA512 0e43ca18672a31c4767959fea326e1e937fd96bede0db924d863d8d79a1d7110a25f089312b32ad916f2bf429695e19006c56cac1900ea4fd8b73ed28fd6dd98

C:\Users\Admin\AppData\Local\Temp\Roblox\http\22a87dc2fcc1d7f2d4eebec174141c11

MD5 138a473b82a0875d016923ce129ebcd4
SHA1 478f9ac35120e069348cc89b4dee7c2d463365a2
SHA256 f4d2bbfaa8f2c6da55c836678a86c9479c8fe29a9277d7bfd4491c0a9df1e03b
SHA512 4faede00956fa70570ce479c0bc62400f7a597610f0442f772d398a0d76e79751eae93083e0339988bd7d03f0312d1cba35736e98acb6a9e32697e0acbbf16ac

C:\Users\Admin\AppData\Local\Temp\Roblox\http\RBX14F6FBB32E2949798B28A51CC178A49D

MD5 d1e44be596290997cd26fe1feec50cbf
SHA1 745c45f80e039e97a60e639efe9b60e63039b91c
SHA256 4dae9e7ea6319a043e95f13f9572dc2945e60e3ab6a3c6652b0ecb198448dcd6
SHA512 3b0d7dfd952142f197abb17ef1d1b0949ee336d380ff3ce7c6d5c717edae6c2d00b338865e1711a95cc55a7410e49dad7d3acfd05191561644d5342d7683136b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020b

MD5 e85cbf0835f753b6b219418a66dce871
SHA1 e307e282fd6642d4654db5524622e34519cb6bc9
SHA256 8c8d899df075074004cc377d8b8d07cbf6ab2252be2a856d5a9243d1b941422b
SHA512 653a75523ad6435d904ea257d067c11a1e1d3f009787a3fa1ea0f376bf5e667ccee4fc9b7bb95011487d46820f3db3a6643a3d21ce232be394a190ba23a7b629

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020c

MD5 ca01e51b4db32614ec57af862b90d45a
SHA1 5bdabbdd3dba94cd5348171b4ed270faa8854a6d
SHA256 fb01a3f2616000fc965bb454fc76e31b59f141378a715ebbdb7598551c5fe032
SHA512 be6bf58b8f77e9a0baefc29e023cf1c91a3b710068e9452645911730c588dba6caf2876998fe44ee6d3d797348d6326f6d4d3ab3ea5d9568f42b06cb3cc39ea1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020e

MD5 35307775b89d3f3b672879260eb4fe65
SHA1 86ed8e8eae6b1e1707cbe1a8f6f1ce51169ea223
SHA256 5467db218662f44c72d35838f94016222c9f7e413cf735e7bbea23cc295f3132
SHA512 99767c75f6bc357421541e24a99b50a14490f7025b7666524aebaf4cc1c93295ed3a3de4c35ed78f54a1f110e313bd92398e7e739caee3f5b84502d459cf7199

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000211

MD5 471b9fbba35a5a06a4501d09d3d7d3cb
SHA1 efa6ce216796b09534d20aa3462c4c2d62a132ab
SHA256 fb6dbcd36a5706181979646ce9e9f3ceb6f1c0b8bc81edcefbf4638f0d6e5698
SHA512 dd9834c6ab2f1d2cc49c2e6fa5478e0b1b57719cd684b5e109771482d36f814863cd39593b4c68bd8f86713350da60aa2afd45136e9a4def651c7fb9f7a53a98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000210

MD5 777b3c4e55ff453dc69e52ca24d59dc0
SHA1 2ace4e799b81320089ee3d8c50c6cf70ef13ca09
SHA256 9c00eb6ad4233bc98d3b7fe196e731747a5dce4527efdc7263b7957678a89312
SHA512 c167fe968bdf288d5093b5b6356afc5ada0f87b728522aa16cdb53f6803bafa771975a20398598c17a77aa71fb06fa19713bd52ce5271c9797f04ba04dbab9e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020f

MD5 e9badbdda382678e470072cc65c9678d
SHA1 e482956e47d7326eb773fb1ad641e4400b818c04
SHA256 5762f5568f14ff4fc590173a1171cfde5b8041a25416607b0cf041d705d2a6c1
SHA512 8ce833db58fdbd00510cac2d9effcdcdd05b3fb42e726fc3f6edb866adc091fcc56c6dfbe0cd6c7503febe83b9593f6f7c667fb0a3c1bf4eff7ddf7fbd8873eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00020d

MD5 72ff5fe191db47af02b02c7668be089d
SHA1 75871eafb4eac4f795b4a1e28a77de78b91eafde
SHA256 420b651310c79fe96d6ca2ee4e861752f32cdb302649bc76f7ae4428ed987034
SHA512 c193a92c0283f4671848fdaa83c7f008fabff885ab3cd7249e288cbf1ab9daf734488455b1142a9c60a634d8e5cdfcc2b3737be629595b9c6c7a4fa5784bb452

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000212

MD5 cb2d7bad97645b285536299d4a9c59e3
SHA1 44be2b1ac53f7a2980a7fffac4e79a76100080d3
SHA256 55be6585102888f44b041c165161651a013058d227be8b6d3d366c036c7cf178
SHA512 83096e99b987359b9960a08ea04938bca929587e5b1c071dc39413467500a1f51a9fe23796e7d4d1bb2a3033b163e925eade6ab747719b13871b007718183836

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000213

MD5 96f76b22922d7c8b9b74d6fb78e8fbeb
SHA1 d2e27f18018be0003a7cad294252774a92d066ab
SHA256 839871d44bca98c0dd6d1ce684a238642be3eb622e647bd043685712dc47835f
SHA512 7c0920430ff81e2ce0bfbdae2f0b686a683fb33c27abef819613a8c562903fcf7963d83cdda3927824f899da34c42e0aedb1c6b57f61f5b8f3be5add98b0ad6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000214

MD5 543d7ca89ec3ff7f725ee666741ca7f2
SHA1 17a96b8df9280f9dd9f9cf88a19fe7b0832dedb9
SHA256 b71d1457efc5f847dc18eee311e47570de80e699636b4ecb95124b51e39685ef
SHA512 77ab5ec2f3a5b2818e1c4164a21c88cbeb29743da8f71447d49882fe0bf78c20a673f7f9cb460ea7c36d3fa56fcc066a55696affa2555d5cc0a2ebcad36821d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000215

MD5 e5d9605763239fd322895934d8695ef8
SHA1 87704c54d39c8ee36b8bc348921b16c5af02cf6c
SHA256 9366be17b86d393d248de515ea77d90c8a250f8bd83d025d25007e03add8e2d0
SHA512 3e2cd1c1034d0ad5bd00a9f2fde64f21d9298919ddfbcbfdc1fe84006d4b0e06b2ae37a9591b8a0723b668cc680bc06dde41f4653db707e6ad5e7560d4bb0719

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000216

MD5 188d564800934331e3ed62bb87bec412
SHA1 0a9f4a94bd974bb7ca4f6ef2d04bf40e272589d8
SHA256 8f671ebd5eeb83e029bb39ae040eda31080706f3d7b0a8c042e8dd9f51427b2c
SHA512 debe93cbc40da0aa196e399b05c0b802fa5ed29a2155de231f99fcf18589e84fca791225521a8e85281a5edae34f9d998f2d903feb67e5a13c59add2af1a115a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000217

MD5 ed32a985445b48c23f44e8198257bb04
SHA1 3ce6bbd647be213be31454f64c4d52487d03f5a6
SHA256 5c4e803d2ea0c1ed8e955edb6672b1c12e4cdddb44736e347b1e7efb327a2154
SHA512 3b69a061d68f9644fb828d4ddd95b3f8180e02537ef231179c894ddb728fd3c219e0863391d73b2a6d57a5c597060007f079e0f951c5d1a48a6684856e642126

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000218

MD5 3db311058b049a86a639aa5b77edf39d
SHA1 987ffa0d56b64447fba395243173f77344491c7f
SHA256 75b280ae342b98a8f82ce77a027dda995ef1be89e3d2ab46040b6805b919d1c6
SHA512 185ff3bde842860339a48a581477d6c04dd5d2888bfef4897ddebf589f5ca4c9d9c819c49f47139988866220a395d54f9f88071627a7d840594963028ae960ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021a

MD5 03c98db1699014bc29858059b7da9c6f
SHA1 717241d3d98a2951ed0bc72f3a2fa6ea31eea946
SHA256 a896b5048f1dae5544659543c09ff1f85af13380eb49a2bf20549464d47d33e6
SHA512 9f5b3ba392aabc9d08a30d0c6b45fe20e890792b6046280f2b0d7ce831706c2863107833a32968151005b27d7aac04c2f2959da7c38b2330fb2faf29c66b1547

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000219

MD5 6867db3ea4b1ad0d0e569e71b5fd1d59
SHA1 77d02d5d8594b2876f917035128f9a4bdb429d30
SHA256 aa39d1afd7e0417a8e099c78acea2ea9f6594faa40c6aa29920090a817c9a481
SHA512 ebc892ab15bbd7efb54b8063c7f9dfdc8aeda0080ea8af2fd8cc5159789d47135514d2368c3580fa736d4156b0e85bae2e62330837e7df96c662f0c77fe9a90d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021b

MD5 00cede3ad9038f43dbcca85905477aa5
SHA1 ae9c6edb82fa9260c74b8de01f5a1181291a08f0
SHA256 ce70379ae2e108fb02fba3f2ebeda1b6af62896efe27aec1f71cff706f7863e1
SHA512 085894d5bbfe94a25ad2b4b49cd6f00389abfa451f45c69670919a2e6b57e3e7a29ac1f1e49a3461a6d287809ed89670bf01e179dc6263c596a67a365fde9610

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021c

MD5 292d3411760eaa4b3e7c5688c2a02894
SHA1 d68791b5e72a8292f715e96b7814948cbabd9285
SHA256 b3f287c4251db01e9f6d6c00051bc36b87762017c91b976e562b34d923303621
SHA512 b2d1f7d9069264ee6e2fd3f5f0943ff7155be640ab05c9683665b75bb019906cb83f4899dc09b3e31a136b88a4046e44dff7c23c00b2af7ff2167782784b3904

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021d

MD5 c2f9fedfb00ed0fd71d017f04e6de568
SHA1 22acf1cae6c4576dfc88d1e2f716b49577fb0b3b
SHA256 d77368d7b59920828a41f3b0f1505dcdc59506fde72c9484316d1a065aef4f43
SHA512 b6c73dcd9ff82b4c010bca96c457f56bdf0b98ebc83cd07e110229784a6ac7adac1cdbba8c252af8fcccf24f131de866db99dd98654a3cdc8b1283cde03257af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021e

MD5 46a7744488f5d3bc9197d7233afa13ae
SHA1 f5526ca6537eca605d10ca854379a54bd2347440
SHA256 7439fbff5fa4376548c2a2ef1adab15d949a124b679154d33b14dcb6488272ca
SHA512 47d645b84f815c40f2122029a9d1dcd92913183fe1ae59f338c651ca3844a7161d35c7d254d59062f32254b4118ebada414f37beeee81b2cf35924f257e5819b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000221

MD5 c13816dbe943f771656ee921459b214d
SHA1 cf6df0b179b8bbb3dcb2d7d0a2eeb98b4299cf55
SHA256 02f2e807d842047e0970a1159dacdf82a9169c9c2cb2b1e5829d223ad6a9e455
SHA512 fdac0631de641ce300957737f2d84a4f280ae5a01812d059015334634f231b71eb4b597b70de66eae3d3bc385c763997e957b4c6e8edf820bd9fd656b26779e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000222

MD5 5ca5d4bd98149ae6194cfb0cec5cb934
SHA1 47a4380229dc5077b5d42c63a78c7179bd452c33
SHA256 426981b63a6eac5b32d4223b2d3677d1c71cdf9d071cc8fef7b8f6525d0d4643
SHA512 fa5e7b4d42fcc6be845b558de26f392329d3dafe84560c48ca745e66c3cf254c551416e0eb56deb142667d0ccd34a808e8d80725149be79076e318004198d23b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000220

MD5 d52dd25bcbf1cea60e3a9ff6e7017448
SHA1 4551954cc6da51c20f9b106704c9b52865536619
SHA256 01c0e5b90d9f0fbeb19f6f501817d05ac832486f3fabec22f5ae91a338c08cad
SHA512 39581ddb468cf60f5c140568adc03e1d1910e9ea11798b50fe3abae29ed788c57816fb5121052a92c863008efb6012a6c4fd81d29c862fa910595b59f31abc7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000223

MD5 7f6acb2f69c0e1247c60a3c2315c4df3
SHA1 415b20a25848383c0374fab91d49a66690e6551b
SHA256 b2e40d0b909df5edf408a88675412e55e16fbed2498142fa4717cfdff01c3bb7
SHA512 06f74dfdc92dae00ea071d0e1bf68e2dea7a1befcf7afd57b513ab61701eae128cb5608471175abf7337512796b58c19a743ef1fdf97dd460bcfa6ee0678837b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00021f

MD5 9d6faad9f1bdc92f07d4c3afa98e4551
SHA1 dcd0eea22bb7a8ae71499f9739960e55fe42bbcb
SHA256 55f4ed7294cf20432d1646be4aff3c3a7aaad86a2f8eb000236616d15c942f1d
SHA512 fb614c0d7854efc3fd8ead2e6b76bcb4c87b9442bbeb3de4a1a70c0ff82a2abf161602f97510d2aeafb8e6758cdefbcfe1be8c97ab049c92d16974b4fd56b306

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000224

MD5 59f95d575111348c7dfd7024a6eb1e6f
SHA1 f87f2cc9d4160520f74645b571da27f3ed7dfb21
SHA256 b70fd2bed156b36cbdfad606b7432721e7a623d5e6a2462d797f140285f250af
SHA512 549749636f5f06cd51503a458240858e26aef4feb8c08a5a13cb5e41dae78f0c52ca9e092887d8bb1ccc562a0c173f6b884ba6dc1ec3f524b9878d50aa89bcd2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000225

MD5 3be44d3b4c0a28f8ec4619dbed2ae042
SHA1 b9f3b84b760e36d085b5574be5420b4117df7013
SHA256 03124763e5aae6313037df5836123d2fcbf248383ce096e01ba0f9d2fab5c597
SHA512 d9ceca65f10d77f3810ea20551b2b3b1e825ac56a3e72c002f0caaebe82fb6ca06186f469398915693879bf04e18c0e934608f7cda669cbac2fd2c5d4e7f0e20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000226

MD5 10b717c98620d705be23c224c7ea8db0
SHA1 6c9421f60d31020d799e3988bcdce1e9f1c121ab
SHA256 d0a83a547452404f147676c7b7c952633782a0a37825c9e5ce2dd9a9be3f2dd1
SHA512 5695df89d70c613a6eef204c81b10c2482d04e50613f512778a1e97e24cf97bde4be35d030016a9172628355bb339c0f34e98155ac789f11211208c54caea486

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\ce88adc4-dbad-41cf-a2ce-e933e4199d64.tmp

MD5 a5abe305115bb185f8e6bf51861164c3
SHA1 11a9bca3c3efd0a4382acb080cf987ecdb4fcc3c
SHA256 5c0f2801289f16fe4a76970985e66bada58f9f2308872cf8a1d4437c15d6f918
SHA512 62f18111e7939bb9c52d841bba08b96170121d6ae5339d766691e40ee8ef22797d99b7a503e2923087d735b7ce717ccffd3ddec9fde8351c64811d79ba7cea1a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7148027085fb3729_0

MD5 276fa834e3568419577fe46a7a915ff7
SHA1 7186ffb672dca99a60fed40b01ea4c80a1febc53
SHA256 d8e1e1960d2d1d376876bf2570bd9506e53d56e27f97aefdb544ec2eb70dd717
SHA512 b8a01e93f713b3e48f88d2a4d9e0931fde6f24cd93c303ec3cd1f1fb305f0bb3c23f187dc2e4ff359850827a18fe39dbeaa5d491f0a3ec7737b95ef57c2671bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f3bf5ab0386310f6_0

MD5 5e590982c61d55e8619b0bf7e93f0c28
SHA1 6cc71287eabbb8bcc3f551cd00b1675982dccdb1
SHA256 2602711fe3ebde68e26d0a2e35d446b17ad98bccb8df44ac4a20c527c8b46f54
SHA512 d4f7fd9c79dc3ed4da65a05a4d1d419e27364ef9705f1d6b1bf1eec227d95c9b88a65417b9a35a9ea029ae00312e9cee80e523e22288e4ba4196379049779838

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00019c

MD5 80c1914e828659dce531d53c2e7a02fa
SHA1 031d0d471624a641c09180c012ab0ec0e7ecb7cc
SHA256 fa45d4e9dbb6cacaea9602a083627da65c2df7a7118c3782fc895946f40e2f74
SHA512 7eb60e941bc7c08b18a178b236530fd7fd5ce3e6261dd11a9e1bc2abaa82c36513033dfb9b3c7fe260c8cb5ab6e773bcdd9c29201f36e236e175a42ff2384a56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\456739d1904dd387_0

MD5 184908aa4e299c3924975e1dd55cf46d
SHA1 0d7186c75356bb1da8e2cd834a0728bc3c24a027
SHA256 9cedb2b64d847de2e4ec875162874f0ba1bb7ead725c5a87119ea4b622d669a8
SHA512 9287e10c8a0f3a899c33fc2d96b3ad3273dce3cdd79fc8d5f02fa249e94e9c3c341cadb0b6772a2b86aa99e5b231a59dcba904663c5405e32b459bd28841941d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5bddc233d2ff0135_0

MD5 a0b1fa9fd5020ca4a1b8823df42c40cf
SHA1 a119bf592137a3f55a24b822a0fb558ae592f36c
SHA256 727dcf59a8c971124b7c55d697f09021ec18127e2bd2a5f81046c4746d723ee9
SHA512 d6f86d5a5d01e8608b2ae0a4d433c4834147bd112daac8ba6c8aaae8a478d0d6bc7bafc6a1b230705897ffd0e7bef0649dd36a144a41cbd9aadfe292d8e71116

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4496ebb01a94f904_0

MD5 8b12024146aefae717a7900db306e172
SHA1 20718ab2a6058a9b2561ab381f698f04ac675ce0
SHA256 999a79a1977ee5b272e9760c75512cb47fda90e5e9315f138be10fd71c9e5b89
SHA512 e1c6dd293b32d064de4c09a8c3580c6538d05265d60e7183f7e4147d624d6ea4ade4ab0deecfbcba5cd1b753d3d1fc09d79ec234a4380f89940742d4c395ee97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f618ceb5eccb3b58_0

MD5 a905133d259518d7dc65b5c524785e82
SHA1 7e6300d158f48fc6fdbd1648a5564db9f5c7d968
SHA256 3631e1b9afd3c082ddaa6921e91578d10e00f25ac0ab7581fdc28c3810cfeb54
SHA512 8ef0e6f985c07488fef46257cf457e6c077d8be0219c180fbf1ec55caef172628b4b80e326b87b88b330c4477bb30cc8dcd44b13ea0154044285ac257a53876b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\397cbdc3bb544b0d_0

MD5 ee07597ca1b41d3b17c5b855507422f6
SHA1 3eab591d47b1b45666233c47d3028120329db243
SHA256 551fef5721556c675c659c9d2fdefdc21ec92b815dafbbaad0f89d6535254c56
SHA512 6ff7f7e220885b4a10acd8195d23c265fa54b87fc2cbfdedc083e36fae8a3765fc8fb8683bdb8960f0d5db71bb88baf1f2913cb81523d13bc83b4f6bb67aea44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d7c1f737593a3512_0

MD5 dce73b432963ff117d00cda7157726c2
SHA1 42777edf68cb620d894d36f617644cea50d1046a
SHA256 5fcd12d28481800da8495271fea9fa7b5541cdf2f7dbdd20289f32d5c6937ce4
SHA512 76ab6200d489ef4f653823f87e120ca119e2ef22c0fadea1137497b137245046a8d9989c78676bee6132fc8b5c964b8b9fb8dffe7da729ed20f7500177db2f87

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\29af097f1a325906_0

MD5 a9e61e95c09b8d9694ea2ccf56c2006b
SHA1 fed9a64b83889ea9b73f8d923f444ba2016e5f11
SHA256 4e1aca2cfad48add97020c4009b1e4f185a54a5c76973793775f4baa1f1e7df6
SHA512 bfa86cdc5fb79b727fc9389daba21df87672068fc79a2ac1f1850d366775249ab6873544a51e70e875026a9e17caaba9bf4002f2b6a34fa2167e616b6fc5a132

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a87a1c6e04aaf361_0

MD5 d8b11db2b93af775d2d7801b920ceaab
SHA1 032ca31622a145e1424ec416972f8c5a41d971ff
SHA256 afdc8138ff705c48375cf20d6fc4def24b7688a353387b165ae82db7da10067a
SHA512 2a8c6e823c3466f57be5ebde2ea6870ce034881ac2909e337ea6b1d7ba0c47428946d72e3cbcf8ded5dffa5c3a3623f78be7fb6a773e6dfae5081814d2ea01ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\49b9abb60bc16a77_0

MD5 ca368e987e3885febe2423b3d84ce3ce
SHA1 7544909ddebfc8ca1bb6cd2e7772217d8659779b
SHA256 49bcb3f1901bfd6c96260a113a74fee14ed83e3ddbe43c221d712e65b2b7adbf
SHA512 817c7505069c076e9b068ae1c7ef1af1415b046440a9b3848643ad3baf4f79cdf6acc184d9ae8e912cd5649648cbf436724dcd80ed7e062e47081811249993a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\28879ac34f47e8d9_0

MD5 b8574781e64a2c842b9a8b5e6b43a3d6
SHA1 d587e10f593b72df90d9c52aa6b8e08ea30e1f13
SHA256 482311db3790b7bddc966530f8963d14c2bac1b756ffb6a16e3d4008a7c17c69
SHA512 c588c0f3281b7880602c2d84ceb7a3273323d65f85044027ffd3828054712dc9fe94258b99bfe7670f25ec7a1ea62bc7ce881691800cede0198f50056cd5bede

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 b0beacc30fe8546a707894fca309b261
SHA1 ebc62ac0ada8b75c57b62a9ef88e7476357130bc
SHA256 10f3fa90da7f5b01de29f7e8179032e2cdc3e41572d31153f880dac07329f34a
SHA512 637dd8ea805aa5a340735aadf72ac6e940210b92db81ebae5c7e7d451bb50f704835f8f2239ddd17df782e53030360c34aa9d38c671d3bc13f03dabce8264dcc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 2b79915c92d3821dd1a8fd9de3769ec9
SHA1 1517c4c407034eab43be7b7496e21ab9148ad3e6
SHA256 6eae7a937126dc98e7ac1224aaa864fb0fd5f24a2b960852ae7465f76f2d156b
SHA512 38cc4c92f2882f0db61122fb67a950780f3e3e9862fd4f61b3cab6d3d1b978d767707e3256c695c2195b8bce7e5a47c7e03451c8b0cf0492964389651dc02566

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b46b724cc8fabdcc_0

MD5 d13243f7654465ed9e65ec068257e8c6
SHA1 eb49630aea769f55136f881482b98dca4db76024
SHA256 ad9bde046a66ecceea40b2180ed49c5ca145be468ebf9aca3c23d5e13f8d5df4
SHA512 b98691f7accece89b851a2619cf91dbd1a549af483266de17fef772acc6f08736a49e0573fc1c4ba7797359224ae79a11e097497736e49a887ec4753258586a3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1b865a9c4810a38a29d903f79aca9b3d
SHA1 9c56e736fc079f4a75530c96b81cb0c14ef4335b
SHA256 a563ede147efd3586b24eda51ec2717a9a5f7e145929d333f69f03eeca6b7383
SHA512 0098795fd7fab6fa143bd85fc9d7d5651386b31a3cc77cdb48435e1b721d6600f8605eb43de19f8da7e24b8d59fdc71b8e7e36937f4e80028a05d9f2126500a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4573080d3c6600503cd7fe9179f4a803
SHA1 ce697cec306ed0ab760d28b1076fa507b9b7ada4
SHA256 2420878dcf4fed80ea8f600c5b70938cff8ec2a42cbc19e6b4e576bd60276acb
SHA512 b54c23252e0c4633fc761bdaaa35ee1613f7b5ad2a0b356514f8339ac60b97cd92d569b8e9202b2328945d8c3f8f199883da66d73c3e6d1523ae21579d71f87c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 aff7a8f207cd6077a7fa1a88febc2674
SHA1 fceb6088dca4b889140389113ae6c5ba726c002c
SHA256 169e7ee9cfe76a2916c9c272fe3a6395ce9adad5fc2ce89ddf42bcbd8c88550a
SHA512 9554717bbe079032463fa7080388d8df25088f900327e7193919388b1e7e735a682e77e491da86b4e6bc8f37e85064b631c0b143f01e5c666eb559dea12f9b5b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0c2bfcba59bc9606_0

MD5 49f348a5d68015889f5b83b8d1f0849d
SHA1 456241b7bca8b6f8ebf8362d08f52e5aa241764a
SHA256 304c8e2346504c518982da68844235315d2e4bb530976424dac29032bb80cc43
SHA512 b24db7e61a2b70c38db5da6a3fecbab0b1c9567ccabb3686d3a4e17d49a25ba2a306f8fc3696ffd747e7172dc5f3c2f42b10fcb696acf8dfad1059cc13d915ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\4\CacheStorage\index.txt

MD5 9bf1c3da60682647496c10828ff7ecb5
SHA1 dd03d2c3df9583a776c4787de6e4af941443ce48
SHA256 13e6ecb87923928e4794a09c3d47f9e3091e92a1518d3bf1fefd1d8e5eaed5da
SHA512 93d957b2fc295253264266b4de9c9525d62e5d83c1a7e450f8c89ebac1cac4cf7d5caace3893b63c930a357712d63456d6e5084f520cc815d5bc228c1eba602b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\335e69ddec2b9ac6_0

MD5 b83ff5a70729ca94f6df68c877279d22
SHA1 4f8a01b524ac4acbe618181c23e0cb21038b7d04
SHA256 24ef9dfd18bcae5150a114687eed90ed11aaa14f02bd458c0e57c3c82a004a1c
SHA512 c135a610a02fcabe5b277dc3083697d40630e9efd81948f76535738c798a7bcb2401cf39029802b7dc96e411236ad62062208b6ed90dbd3aed0bc0478b1c94cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\736e2ad4d4dd50a3_0

MD5 0b1cdce576a1bf330ecbdcbccb52d389
SHA1 6bb04bd97bc785c9833c460b2b7b327973fa2402
SHA256 85639f547bc46a65f5b4829b868c7e6532ddb0cf56a1d2aa9191f294fded5a3a
SHA512 8cb9f1196cf1b86fae5b54a71aa1a8b054e77e8b7de0088b48c23ffc300b2906a9774f16de7e16102480cd1fbf25a00ce05c2ba19dfc17f3687e381cbc140d4f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000192

MD5 ea2c3cf1be388bd3fbe9d0cd8afee11c
SHA1 6647cbaf7bfedd842f806549f5c3433a19eab1ab
SHA256 1cf04407e728ea1ebf82dc1c6b45d12632cb3202ff8f4556f380b16e57484f27
SHA512 2b260f63cd6bd0c75a3e6ee9eb5fa5b477f1ab2e107f682165c8a4bdcb9a6cfbfd21ab172ce165a3c2ebf451ab91d27070ef5e4d985ef3105ebcae964c6d8870

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000196

MD5 d4ff90db5da894c833f356f47a16e408
SHA1 30606044507d81b996c992895ab16b8a8d68be97
SHA256 f2c761ee3ce27469f940a05b64e38a829a400427727cd0bdbb4e36f1d572afd7
SHA512 85c6305ee6973ebf449efcfc95bb10a66e5cba92d026a2ec4f1072dc8ccbc5b4a4a384fe425e53e2dade2180f37cca56243ed354033cfca5821cbb77fb8b0fa1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 531630dba40f9d641cbf255cf45fe7e9
SHA1 41af6fa92a0917e1118385b5cd5d59cd174c3c75
SHA256 b1bfabd95e33c8101d6c4beb69eeb924376e7aa11cb48200fb52af1b15ff7610
SHA512 e81b0cca1d811501b44f0fe78d20854baf733b3e0283b3de9a2b4f0dff741168d52da8b9505aeb06f850df75bb59bc91ff2d9c15dd9b595ba6c6c0b5cf3085a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000197

MD5 cb3c4163eef257e920faa369fcc271ab
SHA1 d1b71e1347e107070a58ee37d6e637847b45ac6c
SHA256 f50cbe6be03b60d2fcd76645f2d793f13a3588ca5d305bda201b18e104a05b28
SHA512 a41df730c0756065c131bcb6f89dc6c4862d7023377624e8ffeb805b444aa5a82155040ae901847a5ac4f7d5ec9a686def398650cf70d75dda0f226fe312db11

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000198

MD5 48a0f4f33a52484f85c7a3642a358111
SHA1 1cc19c6df2f714f3d0ddd1819a3cf340ec732877
SHA256 736791e2f1faa30aa0bc5c085e585be0ece38e0fee3f4df5fd8e9684f6343702
SHA512 2d474eb7cc902c2f5f7cce14e6111cadc0e763a5deb745bf96c4282c828884a85bb212b0ec0a18443067b0f8d8d4011aa7e783e10c3d3afb889d1583b0494b95

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dec5e4a2c52ce4501662dc0a68ffae90
SHA1 f5acc301be87dcc6bac55b408ff7313467de351c
SHA256 5042aee27120a00540e45615b16f432af51cd0f2dd9cd80f3f87542536cd0a0e
SHA512 aae6bb2a624ec5e19015f6ec4da5caa0ce08412fbaae761353d5636a87c0d1da306b8eb4da5b5327be627bb53bcfa00df68b023996f1ef4ea3e1a43ce0dd9d62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 aee727c46ed67e1df9f78396cb02bbc7
SHA1 46f6dd0142eebb2a6487afb2503211c520c9542c
SHA256 5d6b7de709bdc4a4febea6ac12a6fabe647251ca5d69c85aaad3d58e3c2eb349
SHA512 a9ad5ed4610c670aef031b7885161642db1b8193e2f2c6d89317b8f312bc7fb632cac1b9a057a29855fbed6f941247dc18f32a54fa08671a669e96fb71365336

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 64fb188eb19795b52a859f061e378a3c
SHA1 ddf8ecefd454981e103f73ea5aae7914b7e8d9ac
SHA256 77c5e22003bf708e9271f6a730414c76039193b351a81b6fa7913921fad76ce4
SHA512 dee669057e12610e0b1eb1c57f750bb85b14f08f1c3c7897691cc03197b0d27e54c6fccd7d938802486271b8b137fefe156b408890e78ab8df9f0b65577396d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3954e2f36436dda531fbee055639ba11
SHA1 eb6ebb672b4bad88969f41d38406e85d1192eb2a
SHA256 d80f43ca17aca6e6c99386f0c5b407c72f38ac579622fec929ec084877fa7c4d
SHA512 b8a0468c77033389dd05eee414eb2def8eb0071dccfff9654e4317fa976a48f5f2902b5f95cd97b89257ac470eb1a1b75aa3a88a0b093fb36f2230d370c47d21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8601d5c8ed910cb1_0

MD5 b09a61992909a3f659b7856c38c94af8
SHA1 8f7ee84c522bf0cbdbe855feed71f31c72936216
SHA256 5402b54af033424deca4a4f677a69d48dc7e00f42b35faa1934ba3425774058d
SHA512 ff3a8cc898e1ec72bdb273f808efc51f166ea8354480e84a05cd4c351df565580aac57fc8c738e721f8c7f3eb641ddb6829d5677728129d5d421a3070f570656

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8459d9aa360b7e1c_0

MD5 9d28f0912f0d6bb4c902d942f27aa488
SHA1 9974a6ad6a9e6adcfecb36b10d524f7a83306a4a
SHA256 0ec925d3ceed9eb64e6015c566d37055edcf835ff9d49d4daf6f6451fdcc266a
SHA512 3a6ac4dc4cde9a21df05db08660c7a986610c56d3446400773cc4a387f44f8636d9a7b09cf40e0a9fb548735f443793f6fec35df2dcca732ab44687951956dfb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 19adc0b875f5b8b024c32e8ea658ed07
SHA1 2a42df3549b8464828a2e946e4aabd9d7ab32428
SHA256 7d9b45d7004a367f98b41ec8eec06e730fa68d38ecdb945b9fd6bb46ed67e8bc
SHA512 028e703fbbe70947f1a3f47cb8ca0329a965ba96cdb6afb72b3be406b535cad782207d3df62087973584b2009f6e0a8654ecc9a6d4d77b00781eec65fcd273dc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 98993a0c67a5b6936d680320c9044584
SHA1 ec5a78a95bdd54cb89718e0b7b96ab03e5fc6aad
SHA256 b65bc558b9fcef207f5336dd10bde24e9b89e25b806ddc6e40552652e25cb0dc
SHA512 7b409a83e322d395ff258aac966afb0f669f5c37cb6fd1d8fa4fc0a5a60d8945d3b75777595b0701862660f5f13fc1522f0a53747085edf7a11d45564c1773ca

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe7fd5db.TMP

MD5 e153a69320182c02547c74817bc7b199
SHA1 1b007c025dd35382d5ced880490d294bee746e77
SHA256 ac02d20e5102d5049ec1f1c199ecd8d7fdb5611ae9aa775e900521d0c82b6cfb
SHA512 85d91077875428478a291508ace5d0b70b4c6c4db67492f8de7fbd33e7ed235915597c288f0137712210fbe05cb297c85071bd9fbece19d85a5581244975a95f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 5417ac7c0dfe7cf92c6e24b9180ee5ec
SHA1 cc4b2d21122276ce302517abac761feeb84cb4fa
SHA256 696dad0840fc2d6ee85b7bf232465def87f681fb73b1001ce56d38c90559111e
SHA512 9e5efa0a5913e4711351942e81c163ee6bff225a932916534ffe1211efb45abce3cbeed518832529995e7271d31961588a97438296b15c249ef0b7f804e8a478

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 35918defa3ecdf763b89954d2c92983f
SHA1 7619f3fd882c1a2735627d7d853e86c697fe8d58
SHA256 dded300e2ef4d4d4f91db97029f74bb3a8078a3875f14a555f3d02f7c2701dac
SHA512 a4fd5a5da70888b1f4f23caef4a712f7d524a4c548db273f4691c4b86ca73fb37fc72922cf7609aee62a420f76b14ae151908682cff8ac829b8c26511be75d4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG

MD5 276b7ac7781840bb0fc6c82a03e9c553
SHA1 af07f27349c6bd25f1f93dccd4a2b651c1d1d076
SHA256 b7391c8fa95671518df40ba01f57d687f5db83af90e626da867051abc95b9f26
SHA512 2508f6eba279b51943c7ae8aa64e91275103e27b84b1afe3e3142de3bb131a69f9c8a7de2ab1c7b7465f117652214edf18a3e6895dd5a824df3c1074c7c2d9dc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\000003.log

MD5 096232b6236d3133b0209d6154065a0d
SHA1 101c68572b53b8113832fff8152de752ab7836ea
SHA256 5ba8fe6a86b53fe665863a841e20dc535ac71af4bd2dfc8ddf8554b312e63965
SHA512 edb10604491858a73f99f88f64384cc8ef65a323637012a4783ff955152eb117dba73ba06b5a5c350b7e28d8886960cd3af75fae20849681f1bd493eeaa0313a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 19fa960c5ccd818d22c2e62d69dd00b5
SHA1 5801fc67f413ab95dadc6f03c33dca3bf6be1c28
SHA256 dbe21293b55df6d83f22aa03b5d42b1fad58a0d771657aa51b54d3bd6ec44883
SHA512 344912d627944571f0f9d882066075df6e31e9741d1f6984a5efc6150a52956aeb1f452bea9cb0a092cbdbea7c4cc2f0065650b6e5c190bfccd081dca9f93004

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir5184_272457926\Icons Monochrome\16.png

MD5 1b3a4d1adc56ac66cd8b46c98f33e41b
SHA1 de87dc114f12e1865922f89ebc127966b0b9a1b7
SHA256 0fb35eacb91ab06f09431370f330ba290725119417f166facaf5f134499978bd
SHA512 ce89a67b088bae8dcd763f9a9b3655ed90485b24646d93de44533744dfcf947c96571e252d1ad80bdec1530ff2b72b012e8fff7178f1b4e957090f0f4c959e0d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir5184_1788432972\Shortcuts Menu Icons\Monochrome\0\512.png

MD5 206fd9669027c437a36fbf7d73657db7
SHA1 8dee68de4deac72e86bbb28b8e5a915df3b5f3a5
SHA256 0d17a989f42bc129aca8e755871a7025acb6292ce06ca2437e95bedbc328fa18
SHA512 2c89878ec8466edf1f214d918aefc6a9b3de46d06ffacff4fdb85566560e94068601b1e4377d9d2eabefdc1c7f09eb46b00cf4545e377cc84a69edf8e57e48b2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir5184_1788432972\Shortcuts Menu Icons\Monochrome\1\512.png

MD5 529a0ad2f85dff6370e98e206ecb6ef9
SHA1 7a4ff97f02962afeca94f1815168f41ba54b0691
SHA256 31db550eb9c0d9afd316dc85cdfd832510e2c48e7d37d4a610c175667a4599c6
SHA512 d00e2d741a0a6321c92a4aab632f8f3bafd33c0e2875f37868e195ed5e7200a647b4c83358edcef5fc7acbc5c57f70410903f39eac76e23e88a342ac5c9c21cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 9024f363254fd1d352ad2e146216654e
SHA1 f6fb5c454016dad5f932c03ae483053dab0d690d
SHA256 8c59f86522dd77fcd13fa5b3841079512234e5626c38e4adfa28ecf38832b329
SHA512 e9bcf71020b6db1cb53f7f9ff11c09822062861eb01dbd01ac1edfbe778c304e25737482aa56ebed0fdd90ef5f548d651604e3470097f5838c2fe9c985a9ac7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\c9e22c2c-4bb2-47ff-85b8-502704143642\index-dir\the-real-index

MD5 71a4537a561e5dccc192c93dc1f2d39f
SHA1 de35b29b3608d9d20960461da01b1b6d54a2dcc4
SHA256 2036095e096c5c7ad5560b4c2c3b60c7811e02978a1effa32d85c5b658cd825f
SHA512 9331f77efb95bda70a41db13f798f36a07399be0c0286cb252db09a45a3bf2caa96fa696417a3c2b67f900834aa4afebfa9d4ad556eaf75b0149680c4c792073

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\c9e22c2c-4bb2-47ff-85b8-502704143642\index-dir\the-real-index~RFe805ffb.TMP

MD5 2defc4e125327b193dc18635464b1028
SHA1 13bc487027fec79a0d1a997551fa9484d29faebf
SHA256 d49054b0653c4ba684d3f67a27fe7e9d846b1926616a7afcdb309eef300ab894
SHA512 26295fbd3dcdb64597f9c73805c18b9c54d6ef02c4ec4a700ed2b6aaa29bde4d630d5435d0dc7bb0fc22d8954c887579dc79f3726995e028219920f5896af8e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 34a9bbfb795643f9ab09d5dbb3a2534c
SHA1 a33f73dc4e8a8289d608a6efe032ac13fa590b4b
SHA256 f0beac1633519fb4e3f911008d74cc22415716174a2209cf187170031ad7a641
SHA512 04516c434e7e8810bf1f73d2f6103a3247fbfd6d9950851ae64d7c78e9bdabfb9bee1347ba2457208ad342381ca78ee8a4b50bed04f243be0974402ef3b11f4a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e09270109a8648f36f743987d43b9fac
SHA1 0b91cb9d5befff780526a108ebc41446b047fee7
SHA256 7cf21a5c17f0335987216d50eba66bd8fcbdc13f10c2569ebe16c262d746d84a
SHA512 fb4c1374c9fbac7ef6e598178507d46ccf067a9ee16ce8793ee15dcdf78554559a8b65b5ad5cd6466efbbde70fa09d65353ecd8c03ae32110d61713122220b14

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8ba05bcd98d6e2fd_0

MD5 1b9dd47a3a4fd9f09091d730949938fb
SHA1 1c5ea076b6d4af896a1cf7d1173dfed4f83b6f2e
SHA256 03ed1e728cde571b4e355ff561db4a689330fe8a9c17efcd611f17792c8b0599
SHA512 67baaae3185372d0c0bd8914e6f61bdeab4d05963a8f1e65f8b4fc2349dd71201772ea8a9592799fbd37d36394ade31c319fcc9b29125f192fa6d5026523d18e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ed5815d8397a0940_0

MD5 a2699eb88699f91d214bf124c81485f7
SHA1 813353218cc0a01feff9d850877ffc7f9ea869eb
SHA256 f50053c5a9b5bd060a3bcd413f3fba4f20132ee8c7fa81fd7a56512e5a1ec9f3
SHA512 5a1725e56d1d8b46fc7f003555ccf7e0cde62215cbe2e79a9a354099c38be1dfd84504d53c2d4c7627ef0b3dc08ed2365aa591c72be5380a284506afb4c9665f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f0b57572798b59f92ce248991ac8ee54
SHA1 152e21367ec7d357eddbb853beba4329850c43b3
SHA256 f69fad64d1c43dad56db592c53909460eb60597d698a8d13d567503da90ee5a8
SHA512 6cc4284df064f8614581627d12c65beef8611d7bf4a465aeacb565bc33b78db2a79bb07f7f1f63eb9d2e0bc5f1aea8dc190a0dbd3ed2d0d407b9032b5a76fdae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ac8982b1-4390-4224-b28a-c63cc89dad59\index-dir\the-real-index

MD5 f2887f69958bc617f852ed6a14deda41
SHA1 2de6104a0f373349938d32089caab9896372acb9
SHA256 b5cb5981bef6c372d9242e627dec0d062eb67d548ea90bf6b285fdc1eccc34ad
SHA512 53a6b3d81150553404061a71c2f879a20818ce3ae1ab703ed6c4a1f7e6343eee9fec993fc636033555507c960a78c3b8cb96360117f8c29cb4786be92a75dc9a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\ac8982b1-4390-4224-b28a-c63cc89dad59\index-dir\the-real-index~RFe809f75.TMP

MD5 314d6fdd5827b7a795502ae3c6779a7c
SHA1 7daf5062c8cb94ab3f4147b219b6271ea5f4e2ae
SHA256 c7c46db82866d212580cae6ba763fb6af68d0ca394d33ed1be2611349da180b4
SHA512 2f1bce4765d603975ebc234d1c6e7ce28b6460952b0a4976c235f812197af7be1a52448fb38795aceb2aa019c7c0fa3892aa3fae7e57098ea657a31bfeb481fd