Malware Analysis Report

2024-07-28 05:14

Sample ID 240605-d3xg3adg82
Target http://google.com
Tags
adware discovery evasion execution persistence spyware stealer trojan
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file http://google.com was found to be: Likely malicious.

Malicious Activity Summary

adware discovery evasion execution persistence spyware stealer trojan

Modifies Installed Components in the registry

Sets file execution options in registry

Downloads MZ/PE file

Reads user/profile data of web browsers

Registers COM server for autorun

Executes dropped EXE

Loads dropped DLL

Adds Run key to start application

Checks whether UAC is enabled

Installs/modifies Browser Helper Object

Enumerates connected drives

Legitimate hosting services abused for malware hosting/C2

Drops desktop.ini file(s)

Checks installed software on the system

Checks system information in the registry

Drops file in System32 directory

Drops file in Windows directory

Drops file in Program Files directory

Command and Scripting Interpreter: PowerShell

Enumerates physical storage devices

Uses Volume Shadow Copy service COM API

Uses Task Scheduler COM API

Suspicious behavior: AddClipboardFormatListener

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

Suspicious use of AdjustPrivilegeToken

Modifies registry class

Checks SCSI registry key(s)

Checks processor information in registry

Suspicious behavior: EnumeratesProcesses

Suspicious use of FindShellTrayWindow

Modifies data under HKEY_USERS

Modifies Internet Explorer settings

NTFS ADS

Suspicious behavior: GetForegroundWindowSpam

Suspicious use of SendNotifyMessage

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Enumerates system info in registry

System policy modification

Runs regedit.exe

MITRE ATT&CK Matrix V13

Initial Access
TA0001
Execution
TA0002
Command and Scripting Interpreter
T1059
PowerShell
T1059.001
Persistence
TA0003
Boot or Logon Autostart Execution
T1547
Registry Run Keys / Startup Folder
T1547.001
Browser Extensions
T1176
Privilege Escalation
TA0004
Boot or Logon Autostart Execution
T1547
Registry Run Keys / Startup Folder
T1547.001
Defense Evasion
TA0005
Modify Registry
T1112
Credential Access
TA0006
Unsecured Credentials
T1552
Credentials In Files
T1552.001
Discovery
TA0007
Query Registry
T1012
System Information Discovery
T1082
Peripheral Device Discovery
T1120
Lateral Movement
TA0008
Collection
TA0009
Data from Local System
T1005
Exfiltration
TA0010
Command and Control
TA0011
Web Service
T1102
Impact
TA0040
Resource Development
TA0042
Reconnaissance
TA0043

Analysis: static1

Detonation Overview

Reported

2024-06-05 03:32

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-05 03:32

Reported

2024-06-05 04:18

Platform

win11-20240426-en

Max time kernel

2677s

Max time network

2701s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://google.com

Signatures

Downloads MZ/PE file

Modifies Installed Components in the registry

persistence
Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\ = "Google Chrome" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\Localized Name = "Google Chrome" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\IsInstalled = "1" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\StubPath = "\"C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\Installer\\chrmstp.exe\" --configure-user-settings --verbose-logging --system-level --channel=stable" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}\Version = "43,0,0,0" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A

Sets file execution options in registry

persistence
Description Indicator Process Target
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\ChromeSetup.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
N/A N/A C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Reads user/profile data of web browsers

spyware stealer

Registers COM server for autorun

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\PdfPreview\\PdfPreviewHandler.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\notification_click_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\LocalServer32 C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\BHO\\ie_to_edge_bho_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\LocalServer32\ServerExecutable = "C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\notification_helper.exe" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\notification_helper.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\notification_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ThreadingModel = "Apartment" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\LocalServer32\ = "\"C:\\Program Files\\Google\\Chrome\\Application\\125.0.6422.142\\notification_helper.exe\"" C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=F69711D330E44E85B16FC540B0E26D9D" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{408BC9B6-3398-4A21-B553-842B3210EEC0}\BGAUpdate.exe N/A

Checks installed software on the system

discovery

Checks whether UAC is enabled

evasion trojan
Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A

Drops desktop.ini file(s)

Description Indicator Process Target
File opened for modification C:\Users\Admin\Videos\Captures\desktop.ini C:\Windows\system32\svchost.exe N/A

Enumerates connected drives

Description Indicator Process Target
File opened (read-only) \??\V: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\J: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\L: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\A: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\E: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\J: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\N: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\Q: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\P: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\T: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Q: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\V: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\K: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\L: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\P: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\S: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\B: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Y: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\Z: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\A: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\X: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Z: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\G: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\R: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\X: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\O: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\W: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\B: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\E: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\M: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\S: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\O: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\U: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\G: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\I: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\U: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\I: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\M: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\W: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\R: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\Y: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\H: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\T: C:\Windows\System32\msiexec.exe N/A
File opened (read-only) \??\H: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\K: C:\Windows\system32\msiexec.exe N/A
File opened (read-only) \??\N: C:\Windows\system32\msiexec.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A drive.google.com N/A N/A
N/A drive.google.com N/A N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File opened for modification C:\Windows\SysWOW64\debug.log C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\LuaApp\graphic\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\VoiceChat\Reducers\voiceState.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Settings\Radial\Top.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\Terrain\Dark\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\Terrain\Dark\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\RequestPipeline\HttpServiceMock.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\RoduxUserPermissions\RoduxUserPermissions\Reducers\userSettingsMetadata.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\StreamNotifications\Analytics.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File opened for modification C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\elevation_service.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe N/A
File created C:\Program Files\Google\Chrome\Temp\source4580_418350276\Chrome-bin\125.0.6422.142\Locales\gu.pak C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Light\Large\AvatarPreviewer.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Flags\GetFFlagChatTranslationHoldoutEnabled.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\TopBar\Components\Presentation\MenuIcon.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\roblox_genericpagination\genericpagination\Paginator.spec.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtQuick\Controls.2\Imagine\ScrollBar.qml C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\AvatarCompatibilityPreviewer\Light\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\CoreScriptsRhodiumTest\Tests\LegacyRoact\init.spec.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\ChallengeDialog\RoactServices.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\TenFootUiGlobalNav\TenFootUiCommon.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files\Google\Chrome\Temp\source4580_418350276\Chrome-bin\125.0.6422.142\Locales\es-419.pak C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtQuick\Controls.2\Imagine\CheckDelegate.qml C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\Clipboard\Light\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Settings\Slider\BarRight.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qt5PrintSupport.dll C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Lua\TerrainEditor\Dark\Large\Air.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Standard\StyleEditor.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\EditProfile\Dev\FormFactor.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\AudioDeviceInput.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\TrustAndSafety\Components\GameCell.spec.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\PlayerScripts\StarterPlayerScripts\PlayerModule.module\CommonUtils.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\Qml\QtGraphicalEffects\RadialGradient.qml C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\StudioSharedUI\sort.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\UsageTracker\UsageTracker\trackMemberAccess.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PlayerList\Actions\SetPlayerListVisibility.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\LuaChat\9-slice\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Test\MockExternalSettings.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Large\CallStack.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Dark\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Light\Standard\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Chrome\Flags\GetFFlagEnableChromeAnalytics.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PlayerList\.robloxrc C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\ApolloClient\ApolloClient\luaUtils\Response.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\FriendsLanding\RoactRodux.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\UserSearch\RoactAppExperiment.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\EditProfile\GraphQLServer.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Controls\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\VoiceChat\MicDark\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\LuaApp\graphic\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PlayerList\Components\PresentationMobile\TitleBar.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\AppTabBarRodux.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\JestUtil-3.5.0\JestUtil\convertDescriptorToString.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Workspace\Packages\_Workspace\ContactsToast\Dev\RhodiumHelpers.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\textures\ui\Controls\XboxController\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\content\studio_svg_textures\Shared\WidgetIcons\Light\Large\[email protected] C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\textures\ui\LuaApp\category\ic-featured.png C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\Settings\Pages\ShareGame\Components\LayoutProvider.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\FocusNavigationUtils\FocusNavigationUtils\getAncestors.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Thunks\sendEvent.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\ExtraContent\LuaPackages\Packages\_Index\UIBlox\UIBlox\App\Dialog\Toast\InformativeToast.lua C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagwrn.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_2143749773\LICENSE C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_1641886685\_metadata\verified_contents.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_1641886685\Filtering Rules C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
File opened for modification C:\Windows\Installer\{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46}\chromoting.ico C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping6516_749637733\manifest.fingerprint C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_1641886685\manifest.json C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Installer\MSIB75F.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\settings.dat C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File opened for modification C:\Windows\Installer\e5db51a.msi C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\~DF11F9DC796CC5FFA5.TMP C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\CHROME.PACKED.7Z C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagerr.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_2143749773\manifest.fingerprint C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe N/A
File created C:\Windows\Installer\e5db51c.msi C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe N/A
File opened for modification C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\~DF22D624722D60B61D.TMP C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Installer\MSIB70E.tmp C:\Windows\system32\msiexec.exe N/A
File created C:\Windows\SystemTemp\chrome_url_fetcher_4824_1622367001\-8a69d345-d564-463c-aff1-a69d9e530f96-_125.0.6422.142_all_acutrvkmuh4txcarzlf55gttysyq.crx3 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\manifest.fingerprint C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\30c25332-4bd6-4bee-875e-997d35911775.tmp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File created C:\Windows\SystemTemp\~DF70E77DAA089A4CFF.TMP C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\metadata C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\setuperr.log C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping6516_749637733\crl-set C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
File created C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File opened for modification C:\Windows\Installer\MSIC0D7.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\diagerr.xml C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\SETUP.EX_ C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe N/A
File created C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_1641886685\LICENSE.txt C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Windows\Installer\MSIB73F.tmp C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File created C:\Windows\SystemTemp\Google3488_332732135\updater.7z C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\setuperr.log C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\metadata C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
File created C:\Windows\SystemTemp\~DF7DD6DBB41F561059.TMP C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe N/A
File created C:\Windows\Installer\e5db51a.msi C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Installer\ C:\Windows\system32\msiexec.exe N/A
File opened for modification C:\Windows\Panther\UnattendGC\setupact.log C:\Windows\System32\oobe\UserOOBEBroker.exe N/A
File opened for modification C:\Windows\SystemTemp C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\throttle_store.dat C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\metadata C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\metadata C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe N/A
File created C:\Windows\SystemTemp\Google3488_1131177648\UPDATER.PACKED.7Z C:\Users\Admin\Downloads\ChromeSetup.exe N/A
File opened for modification C:\Windows\SystemTemp\Crashpad\settings.dat C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
File created C:\Windows\Installer\wix{EF2787B1-0F5C-449C-86FF-6F4D28DE3C46}.SchedServiceConfig.rmi C:\Windows\syswow64\MsiExec.exe N/A
File created C:\Windows\SystemTemp\Google3488_332732135\bin\uninstall.cmd C:\Users\Admin\Downloads\ChromeSetup.exe N/A

Command and Scripting Interpreter: PowerShell

execution
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\System32\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters C:\Windows\system32\vssvc.exe N/A
Key queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters C:\Windows\system32\vssvc.exe N/A
Key created \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr C:\Windows\system32\vssvc.exe N/A
Set value (data) \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr\PartitionTableCache = 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 C:\Windows\system32\vssvc.exe N/A
Set value (data) \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Device Parameters\Partmgr\SnapshotDataCache = 534e41505041525401000000700000008ec7416a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 C:\Windows\system32\vssvc.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\System32\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\System32\Taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\System32\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Windows\System32\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Windows\system32\svchost.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Windows\system32\svchost.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Windows\explorer.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000\Software\Microsoft\Internet Explorer\Toolbar\Locked = "1" C:\Windows\explorer.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.85\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000\Software\Microsoft\Internet Explorer\GPU C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "5" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key deleted \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2a C:\Windows\system32\msiexec.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Direct3D\LastTelemetryChangeStamp = "3" C:\Windows\System32\svchost.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\2b\52C64B7E\@%systemroot%\system32\FirewallControlPanel.dll,-12122 = "Windows Defender Firewall" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Windows NT\CurrentVersion C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Windows NT C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{F4FE76BC-62B9-49FC-972F-C81FC3A926DB} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreClass.1 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebMachineFallback\ = "Microsoft Edge Update Update3Web" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\NumMethods\ = "6" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\NumMethods\ = "24" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{C4622B28-A747-44C7-96AF-319BE5C3B261}\1.0\0\win32 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\AppID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\MSEdgeHTM\shell\open C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreClass\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{85AE4AE3-8530-516B-8BE4-A456BF2637D3}\1.0\0\win64\ = "C:\\Program Files (x86)\\Google\\GoogleUpdater\\127.0.6490.0\\updater.exe\\4" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\ChromeRemoteDesktopUrlForwarder\DefaultIcon\ = "C:\\Program Files (x86)\\Google\\Chrome Remote Desktop\\125.0.6422.31\\remoting_core.dll,-112" C:\Windows\system32\msiexec.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods\ = "41" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{7D49D726-3C21-4F05-99AA-FDC2C9474656}\GroupByKey:PID = "0" C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{60355531-5BFD-45AB-942C-7912628752C7}\ = "IPolicyStatus3" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\Programmable\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\text/html C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{18D0F672-18B4-48E6-AD36-6E6BF01DBBC4}\TypeLib C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6a7699f0-ee43-43e7-aa30-a6738f9bd470}\InprocServer32\ = "C:\\Program Files (x86)\\Google\\Chrome Remote Desktop\\125.0.6422.31\\remoting_core.dll" C:\Windows\system32\msiexec.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{B7FD5390-D593-5A8B-9AE2-23CE39822FD4} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\NumMethods\ = "11" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{F63F6F8B-ACD5-413C-A44B-0409136D26CB}\1.0\0 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\NumMethods\ = "4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{B4168B26-4DAC-5948-8F80-84C2235AD469}\1.0\0\win32 C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgePDF\shell\open\command\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\msedge.exe\" --single-argument %1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\WOW6432Node\Interface\{1F1289FD-DD10-4579-81F6-1C59AAF2E1A9} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Products\1B7872FEC5F0C94468FFF6D482EDC364\Assignment = "1" C:\Windows\system32\msiexec.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\ = "IPolicyStatus4" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgIds\MSEdgeHTM C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ = "IGoogleUpdate" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback.1.0\ = "Microsoft Edge Update Legacy On Demand" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\NumMethods\ = "8" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Typelib\{b6396c45-b0cc-456b-9f49-f12964ee6df4}\1.0\0 C:\Windows\system32\msiexec.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{513BC7DA-6B8D-45F7-90A0-2E9F66CEF962}\1.0\0\win32 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C4622B28-A747-44C7-96AF-319BE5C3B261}\TypeLib\Version = "1.0" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachineFallback.1.0\CLSID\ = "{77857D02-7A25-4B67-9266-3E122A8F39E4}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{B7FD5390-D593-5A8B-9AE2-23CE39822FD4}\ProxyStubClsid32 C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{18D0F672-18B4-48E6-AD36-6E6BF01DBBC4}\TypeLib\ = "{18D0F672-18B4-48E6-AD36-6E6BF01DBBC4}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{52e6fd1a-f16e-49c0-aacb-5436a915448b}\ = "ChromotingRdpDesktopSession" C:\Windows\system32\msiexec.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\Elevation\Enabled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{B685B009-DBC4-4F24-9542-A162C3793E77} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{247954F9-9EDC-4E68-8CC3-150C2B89EADF}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\CLSID\{708860E0-F641-4611-8895-7D867DD3675B} C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4}\PROGID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\CLASSES\MIME C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{1F1289FD-DD10-4579-81F6-1C59AAF2E1A9} C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ = "IGoogleUpdate3Web" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\VersionIndependentProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\ChromeSetup.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Webstore Downloads\inomeogfingihgjfjlpeplalcfajhgai_65451.crx:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created C:\Users\Admin\AppData\Local\Temp\scoped_dir1096_1635656210\inomeogfingihgjfjlpeplalcfajhgai_65451.crx\:Zone.Identifier:$DATA C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\chromeremotedesktophost.msi:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\RobloxStudioInstaller.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Runs regedit.exe

Description Indicator Process Target
N/A N/A C:\Windows\regedit.exe N/A

Suspicious behavior: AddClipboardFormatListener

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Windows\explorer.exe N/A
N/A N/A C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Windows\system32\msiexec.exe N/A
N/A N/A C:\Windows\system32\msiexec.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxStudioInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\regedit.exe N/A
N/A N/A C:\Windows\System32\Taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Windows\system32\osk.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2964 wrote to memory of 3384 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3384 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 1116 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2964 wrote to memory of 4900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe N/A

Uses Task Scheduler COM API

persistence

Uses Volume Shadow Copy service COM API

ransomware

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://google.com

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffae000ab58,0x7ffae000ab68,0x7ffae000ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1596 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1824 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2140 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2916 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2924 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4172 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4364 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4512 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Windows\system32\osk.exe

"C:\Windows\system32\osk.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4696 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004C0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4708 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3308 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=2304 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5012 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4592 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5128 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4508 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=740 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5008 --field-trial-handle=1804,i,3278100513827215107,10117444180287084597,131072 /prefetch:8

C:\Users\Admin\Downloads\ChromeSetup.exe

"C:\Users\Admin\Downloads\ChromeSetup.exe"

C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe

"C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe" --install=appguid={8A69D345-D564-463C-AFF1-A69D9E530F96}&iid={27CCA436-5BA0-158D-3CB9-FE0A0C10CC57}&lang=en&browser=4&usagestats=1&appname=Google%20Chrome&needsadmin=prefers&ap=x64-statsdef_1&installdataindex=empty --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2

C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe

C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x2b4,0x2b8,0x2bc,0x290,0x2c0,0x13a758c,0x13a7598,0x13a75a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update-internal

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Windows\SysWOW64\DllHost.exe

C:\Windows\SysWOW64\DllHost.exe /Processid:{60A90A2F-858D-42AF-8929-82BE9D99E8A1}

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\125.0.6422.142_chrome_installer.exe" --verbose-logging --do-not-launch-chrome --channel=stable --installerdata="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\30c25332-4bd6-4bee-875e-997d35911775.tmp"

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Windows\System32\oobe\UserOOBEBroker.exe

C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe" --install-archive="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\CHROME.PACKED.7Z" --verbose-logging --do-not-launch-chrome --channel=stable --installerdata="C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\30c25332-4bd6-4bee-875e-997d35911775.tmp"

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff78ea22698,0x7ff78ea226a4,0x7ff78ea226b0

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe

"C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe" --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff78ea22698,0x7ff78ea226a4,0x7ff78ea226b0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffae000ab58,0x7ffae000ab68,0x7ffae000ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1744 --field-trial-handle=1792,i,18252055279333024513,10468765227010345267,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1992 --field-trial-handle=1792,i,18252055279333024513,10468765227010345267,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe" --rename-chrome-exe --system-level --verbose-logging --channel=stable

C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff63a682698,0x7ff63a6826a4,0x7ff63a6826b0

C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe" --channel=stable --delete-old-versions --system-level --verbose-logging

C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff63a682698,0x7ff63a6826a4,0x7ff63a6826b0

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --flag-switches-begin --flag-switches-end

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=125.0.6422.142 --initial-client-data=0xfc,0x100,0x104,0xdc,0x108,0x7ffadadb1c70,0x7ffadadb1c7c,0x7ffadadb1c88

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1892,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=1788 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=1808,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=2116 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2160,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=2176 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3104,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3112,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3200 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4484,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4552 /prefetch:1

C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\125.0.6422.142\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4796,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4804 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=3656,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3416 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5080,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5100 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --field-trial-handle=4708,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4764 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=3180,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3248 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --field-trial-handle=5344,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4440 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=4540,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3156 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5652,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5676 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5604,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3388 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --field-trial-handle=3376,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3332 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --field-trial-handle=3360,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5748 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=3288,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3344 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1036,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4792 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=4816,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5868 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4896,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4888 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=4844,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6120 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=5616,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5624 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6060,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4692 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5612,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3324 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5596,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4548 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4424,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5732 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=5884,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5304 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=3324,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5856 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=6020,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6124 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4800,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5336 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --field-trial-handle=6000,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5712 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4804,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5880 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=1480,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6140 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4864,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4504 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=4696,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6168 /prefetch:8

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --wake --system

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update-internal

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=6064,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6244 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=6152,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5588 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Windows\System32\msiexec.exe

"C:\Windows\System32\msiexec.exe" /i "C:\Users\Admin\Downloads\chromeremotedesktophost.msi"

C:\Windows\system32\msiexec.exe

C:\Windows\system32\msiexec.exe /V

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding FBCB5B668321E856D1E066175631B8D3 C

C:\Windows\system32\vssvc.exe

C:\Windows\system32\vssvc.exe

C:\Windows\system32\srtasks.exe

C:\Windows\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:2

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding 61A2417F389FB8C990A3FCB211411F91

C:\Windows\syswow64\MsiExec.exe

C:\Windows\syswow64\MsiExec.exe -Embedding 6B89CA98C496702F2FD6E1B23491988E E Global\MSI0000

C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe

"C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe" -NoLogo -NonInteractive -NoProfile -ExecutionPolicy Bypass New-Item -ItemType SymbolicLink -Path 'C:\Program Files (x86)\Google\Chrome Remote Desktop\CurrentVersion' -Target 'C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\' -Force

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /d /s /c ""C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe" chrome-extension://inomeogfingihgjfjlpeplalcfajhgai/ --parent-window=0" < \\.\pipe\chrome.nativeMessaging.in.fa1cad8e8faa079d > \\.\pipe\chrome.nativeMessaging.out.fa1cad8e8faa079d

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_native_messaging_host.exe" chrome-extension://inomeogfingihgjfjlpeplalcfajhgai/ --parent-window=0

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=daemon --host-config="C:\ProgramData\Google\Chrome Remote Desktop\host.json"

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=host --mojo-pipe-token=7528328113541225602 --mojo-platform-channel-handle=916

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=evaluate_capability --evaluate-type=d3d-support

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=desktop --elevate="C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --mojo-pipe-token=2844746028250014419 --mojo-named-platform-channel-pipe=4552.1504.11292010073709643673

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --mojo-named-platform-channel-pipe=4552.1504.11292010073709643673 --mojo-pipe-token=2844746028250014419 --type=desktop

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_desktop.exe" --type=evaluate_capability --evaluate-type=d3d-support

C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe

"C:\Program Files (x86)\Google\Chrome Remote Desktop\125.0.6422.31\remoting_host.exe" --type=url_forwarder_configurator

C:\Windows\System32\oobe\UserOOBEBroker.exe

C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe

C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=5880,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6184 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=4872,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=4548 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6772,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6760 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6896,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6908 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=6916,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5524 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=4964,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6432 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=6532,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5508 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=4464,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6480 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=6612,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6752 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=5692,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6552 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --field-trial-handle=7060,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6924 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --field-trial-handle=5268,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5508 /prefetch:8

C:\Users\Admin\Downloads\RobloxStudioInstaller.exe

"C:\Users\Admin\Downloads\RobloxStudioInstaller.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=6776,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7488 /prefetch:1

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --system --windows-service --service=update

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe

"C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\updater.exe" --crash-handler --system "--database=C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad" --url=https://clients2.google.com/cr/report --annotation=prod=Update4 --annotation=ver=127.0.6490.0 "--attachment=C:\Program Files (x86)\Google\GoogleUpdater\updater.log" --initial-client-data=0x298,0x29c,0x2a0,0x274,0x2a4,0xc3758c,0xc37598,0xc375a4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=6536,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7564 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7592,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7620 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7860,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7832 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=6040,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7996 /prefetch:8

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MicrosoftEdgeWebview2Setup.exe /silent /install

C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU7CCC.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NEIyNDE3NTQtMTg5OC00RjU2LUEzRUItNTZGOEVGNzE0RERGfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntEMURGQTFFNC01OEVELTQwNTctODgyRS1BRjVCN0Y3NTAwRTR9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE0My41NyIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExODkzNzA0NTE5IiBpbnN0YWxsX3RpbWVfbXM9IjYxNiIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{4B241754-1898-4F56-A3EB-56F8EF714DDF}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NEIyNDE3NTQtMTg5OC00RjU2LUEzRUItNTZGOEVGNzE0RERGfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InsyMDIzNkFGMS0zNjkwLTQ5NzUtOTNGMC05NjVGNDE5MkEwNkF9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTI1LjAuNjQyMi4xNDIiIG5leHR2ZXJzaW9uPSIxMjUuMC42NDIyLjE0MiIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExODk3OTU3Nzc5Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=8032,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8036 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=7680,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7684 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=7376,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8068 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=7204,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7648 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=7056,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7664 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=8200,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8340 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=8352,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8304 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=7268,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7232 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=8712,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8792 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\MicrosoftEdge_X64_125.0.2535.85.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD6EBBC3-CF8A-4356-A654-E827785E9115}\EDGEMITMP_3EDB6.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x244,0x248,0x24c,0x220,0x250,0x7ff784554b18,0x7ff784554b24,0x7ff784554b30

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=8536,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7840 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7988,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7688 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7716,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7668 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7672,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7984 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=8136,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7700 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7908,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6440 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7724,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7668 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NEIyNDE3NTQtMTg5OC00RjU2LUEzRUItNTZGOEVGNzE0RERGfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntDRjgzOUM3Qy1ERTAxLTRGNDMtODlBMS1EOUVDMkQ4MTYzNDh9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtWUFFvUDFGK2ZxMTV3UnpoMWtQTDRQTXBXaDhPUk1CNWl6dnJPQy9jaGpRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGMzAxNzIyNi1GRTJBLTQyOTUtOEJERi0wMEMzQTlBN0U0QzV9IiB2ZXJzaW9uPSIiIG5leHR2ZXJzaW9uPSIxMjUuMC4yNTM1Ljg1IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTkxMTEwODAwNCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExOTExMjY5ODQxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMTk2NzU3IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMjczMzgxMzM3OCIgc291cmNlX3VybF9pbmRleD0iMCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9Ijg4OSIgZG93bmxvYWRfdGltZV9tcz0iMzQyOTgiIGRvd25sb2FkZWQ9IjE3MzY3NTU3NiIgdG90YWw9IjE3MzY3NTU3NiIgcGFja2FnZV9jYWNoZV9yZXN1bHQ9IjAiIGluc3RhbGxfdGltZV9tcz0iNDYyOTQiLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe" -startEvent www.roblox.com/robloxQTStudioStartedEvent -firstLaunch

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.627.0.6270453_20240605T034706Z_Studio_6F1BD_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.627.0.6270453_20240605T034706Z_Studio_6F1BD_last.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=Unknown --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=eaa743d2ec5efd1c7cd63375418c0e423354daa2 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.627.0.6270453 --annotation=UniqueId=3960389758198118681 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.627.0.6270453 --annotation=host_arch=x86_64 --initial-client-data=0x590,0x584,0x58c,0x4f8,0x518,0x7ff74a778b90,0x7ff74a778ba8,0x7ff74a778bc0

C:\Windows\System32\GameBarPresenceWriter.exe

"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --enable-features=MojoIpcz --mojo-named-platform-channel-pipe=960.6760.9560934183629470984

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=125.0.2535.85 --initial-client-data=0x184,0x188,0x18c,0x160,0x124,0x7ffac29d4ef8,0x7ffac29d4f04,0x7ffac29d4f10

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=gpu-process --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1776,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=1760 /prefetch:2

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=1884,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=2036 /prefetch:3

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=2204,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=2220 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3512,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3536 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=4076,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3772 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=renderer --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --lang=en-US --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3560,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=3760 /prefetch:1

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=5088,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5684 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=5500,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=3256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=7676,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8436 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --field-trial-handle=8132,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7432 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=8384,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7660 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=4736,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8120 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe

"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 627, 0, 6270453" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=4932,i,17305354725334146460,5315458316204394327,262144 --enable-features=MojoIpcz --variations-seed-version --mojo-platform-channel-handle=4856 /prefetch:8

C:\Windows\system32\control.exe

"C:\Windows\system32\control.exe" /name Microsoft.AdministrativeTools

C:\Windows\SysWOW64\DllHost.exe

C:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}

C:\Windows\explorer.exe

C:\Windows\explorer.exe /factory,{5BD95610-9434-43C2-886C-57852CC8A120} -Embedding

C:\Windows\system32\launchtm.exe

launchtm.exe /2

C:\Windows\System32\Taskmgr.exe

"C:\Windows\System32\Taskmgr.exe" /2

C:\Windows\regedit.exe

"C:\Windows\regedit.exe"

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0E5D1048-28F7-48A6-915F-8BC05C09A31F}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0E5D1048-28F7-48A6-915F-8BC05C09A31F}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe" /update /sessionid "{B801EAA2-21D0-4F60-8884-E1D70FF18B7A}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QjgwMUVBQTItMjFEMC00RjYwLTg4ODQtRTFENzBGRjE4QjdBfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntBRkI5ODBDMi0xODJCLTRFNTktQjhENS03RDY5NEI0RTYyQTZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtyNDUydDErazJUZ3EvSFh6anZGTkJSaG9wQldSOXNialh4cWVVREg5dVgwPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTcxLjM5IiBuZXh0dmVyc2lvbj0iMS4zLjE4Ny4zOSIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjAiPjx1cGRhdGVjaGVjay8-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE1Mzg0NTgxODgxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE1Mzg4MzExOTA3IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU4D52.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{B801EAA2-21D0-4F60-8884-E1D70FF18B7A}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QjgwMUVBQTItMjFEMC00RjYwLTg4ODQtRTFENzBGRjE4QjdBfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ic2VsZnVwZGF0ZSIgcmVxdWVzdGlkPSJ7NTJEMkZDQzItN0VFMi00M0QzLTkyQjgtNzFFNThGRTYxMDY5fSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4yMjAwMC40OTMiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=7224,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7088 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=8796,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8656 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=7484,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=4820,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7776 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=8232,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7492 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=4836,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8120 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=5996,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=2640 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-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

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{408BC9B6-3398-4A21-B553-842B3210EEC0}\BGAUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{408BC9B6-3398-4A21-B553-842B3210EEC0}\BGAUpdate.exe" --edgeupdate-client --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MjcxQTNENDUtRkM5NC00N0IyLTk3NkYtMUI1QURDQURDQ0QwfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins4NDQ5QTI3Ri0yRkI1LTREREItQTVDQi1DQjgxNjZCQ0MyODB9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-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_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-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-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\MicrosoftEdge_X64_125.0.2535.85.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff760c84b18,0x7ff760c84b24,0x7ff760c84b30

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff760c84b18,0x7ff760c84b24,0x7ff760c84b30

C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.85\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff65fc24b18,0x7ff65fc24b24,0x7ff65fc24b30

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7OTAzRDg5QzQtRjBEOC00RkM5LUE4QjItNzlDQTlCQkE4MTBCfSIgdXNlcmlkPSJ7MzBEMjU3OUEtNjBCNC00QzIyLUExQkEtRkQ5NTlFQkQxMjhFfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntFNkQ1MDhGQi1DRThFLTRBOUItODMzMi0wNzE2MjdEOEJEMDZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMjM0OTI1NTcxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMjM0OTU1NjM3IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMjk2OTE5MTUxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjIwMzE4MTU5Mjk0IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMyIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMTk2NzU3IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIyMDkzODU4NTMxNSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9IjkyMCIgZG93bmxvYWRlZD0iMTczNjc1NTc2IiB0b3RhbD0iMTczNjc1NTc2IiBwYWNrYWdlX2NhY2hlX3Jlc3VsdD0iMiIgaW5zdGFsbF90aW1lX21zPSI2MjAzMiIvPjxwaW5nIGFjdGl2ZT0iMCIgcmQ9IjYzNjUiIHBpbmdfZnJlc2huZXNzPSJ7QUM2OUFFNjYtRDkzRS00ODc1LUI0MkItNDQ3QTgyOTBEMkFEfSIvPjwvYXBwPjxhcHAgYXBwaWQ9IntGMzAxNzIyNi1GRTJBLTQyOTUtOEJERi0wMEMzQTlBN0U0QzV9IiB2ZXJzaW9uPSIxMjUuMC4yNTM1Ljg1IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGNvaG9ydD0icnJmQDAuMjYiIHVwZGF0ZV9jb3VudD0iMSIgbGFzdF9sYXVuY2hfY291bnQ9IjEiIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzYyMDMyODMxOTE4OTY1MCI-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjAiIHJkPSI2MzY1IiBwaW5nX2ZyZXNobmVzcz0ie0JBRkRENDczLUI2MkUtNENFRi1BRjgyLTVDQTQ2NDNCMzg5Qn0iLz48L2FwcD48L3JlcXVlc3Q-

C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe

"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe" -ServerName:InputApp.AppXjd5de1g66v206tj52m9d0dtpppx4cgpn.mca

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=8844,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8692 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=8848,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8660 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=6704,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5876 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=5916,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5460 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=8096,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6628 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=7344,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7332 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=7564,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8672 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=7180,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=7372,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=6668 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=7828,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8496 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=5688,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7880 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=7836,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7364 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=7912,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=5380 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=7176,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7704 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=8684,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=7760 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=8952,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=8960 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=9108,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=9088 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=9448,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=9424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=9480,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=9496 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=9556,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=9568 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=9688,i,15044881274719219594,16213075346265999013,262144 --variations-seed-version --mojo-platform-channel-handle=9716 /prefetch:1

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxStudioBeta.exe

"C:/Program Files (x86)/Roblox/Versions/version-c46f37833a234ebf/RobloxStudioBeta.exe" -task EditPlace -placeId 17440835905 -universeId 5968537435 -userid 5868157057 -parentPid 960 -parentSessionGuid BFF25469-7929-49E6-AA03-5928754346C8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService

C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe

"C:\Program Files (x86)\Roblox\Versions\version-c46f37833a234ebf\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.627.0.6270453_20240605T041436Z_Studio_14976_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.627.0.6270453_20240605T041436Z_Studio_14976_last.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=0.627.0.44533 --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=eaa743d2ec5efd1c7cd63375418c0e423354daa2 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.627.0.6270453 --annotation=UniqueId=4137741231230516974 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.627.0.6270453 --annotation=host_arch=x86_64 --initial-client-data=0x5c4,0x5c8,0x5cc,0x5c0,0x5f8,0x7ff74a778b90,0x7ff74a778ba8,0x7ff74a778bc0

C:\Windows\System32\GameBarPresenceWriter.exe

"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer

C:\Windows\system32\OpenWith.exe

C:\Windows\system32\OpenWith.exe -Embedding

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe -k GraphicsPerfSvcGroup -s GraphicsPerfSvc

Network

Country Destination Domain Proto
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:80 google.com tcp
GB 142.250.178.14:80 google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 234.187.250.142.in-addr.arpa udp
GB 142.250.200.14:443 apis.google.com tcp
GB 216.58.213.3:443 ssl.gstatic.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
GB 95.101.143.201:443 tcp
US 52.168.112.66:443 browser.pipe.aria.microsoft.com tcp
BE 88.221.83.187:443 r.bing.com tcp
BE 88.221.83.187:443 r.bing.com tcp
BE 88.221.83.187:443 r.bing.com tcp
BE 88.221.83.187:443 r.bing.com tcp
BE 88.221.83.187:443 r.bing.com tcp
BE 88.221.83.187:443 r.bing.com tcp
US 216.239.32.27:443 chrome.com tcp
US 216.239.32.27:443 chrome.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
GB 172.217.169.46:443 tools.google.com tcp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 216.58.204.70:443 2542116.fls.doubleclick.net tcp
GB 216.58.204.70:443 2542116.fls.doubleclick.net udp
GB 172.217.169.46:443 tools.google.com udp
US 216.239.32.27:443 chrome.com udp
GB 172.217.169.81:443 csp.withgoogle.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
GB 142.250.178.14:443 google.com tcp
US 192.178.49.163:443 beacons.gvt2.com tcp
GB 216.58.204.67:443 update.googleapis.com tcp
US 192.178.49.163:443 beacons.gvt2.com udp
US 8.8.8.8:53 35.169.217.172.in-addr.arpa udp
US 13.107.253.254:443 t-ring-fallback.msedge.net tcp
US 152.199.19.161:443 fp-vs-nocache.azureedge.net tcp
SE 184.31.15.242:443 ow1.res.office365.com tcp
US 52.111.229.19:443 tcp
BE 88.221.83.187:443 www.bing.com tcp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
GB 142.250.200.14:443 apis.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 216.58.204.67:443 update.googleapis.com udp
GB 142.250.200.14:443 apis.google.com tcp
GB 216.58.213.3:443 ssl.gstatic.com tcp
GB 142.250.179.238:443 play.google.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.178.14:443 google.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 accountcapabilities-pa.googleapis.com udp
US 8.8.8.8:53 securitydomain-pa.googleapis.com udp
GB 142.250.180.10:443 securitydomain-pa.googleapis.com tcp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 accounts.google.com.vn udp
NL 142.250.102.94:443 accounts.google.com.vn tcp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 188.5.251.142.in-addr.arpa udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 216.58.213.3:443 ssl.gstatic.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 216.58.201.110:443 chromewebstore.google.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 216.58.201.110:443 chromewebstore.google.com udp
GB 216.58.213.3:443 ssl.gstatic.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 scone-pa.clients6.google.com udp
GB 142.250.187.202:443 scone-pa.clients6.google.com tcp
GB 142.250.187.202:443 scone-pa.clients6.google.com udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
NL 142.250.27.84:443 accounts.google.com udp
US 8.8.8.8:53 e2c18.gcp.gvt2.com udp
DE 34.98.33.162:443 e2c18.gcp.gvt2.com tcp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 162.33.98.34.in-addr.arpa udp
US 192.178.49.163:443 beacons.gvt2.com tcp
US 8.8.8.8:53 clients2.google.com udp
US 8.8.8.8:53 clients2.googleusercontent.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
US 8.8.8.8:53 1.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 google.com.vn udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
GB 142.250.200.35:443 google.com.vn tcp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 e2c73.gcp.gvt2.com udp
PL 34.0.245.166:443 e2c73.gcp.gvt2.com tcp
US 8.8.8.8:53 166.245.0.34.in-addr.arpa udp
US 8.8.8.8:53 ogs.google.com udp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
GB 172.217.169.3:443 ssl.gstatic.com udp
US 192.178.49.163:443 beacons.gvt2.com udp
US 8.8.8.8:53 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
GB 172.217.16.225:443 clients2.googleusercontent.com udp
GB 172.217.16.225:443 clients2.googleusercontent.com tcp
GB 142.250.200.35:443 google.com.vn udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 update.googleapis.com udp
GB 216.58.204.67:443 update.googleapis.com tcp
NL 142.250.27.84:443 accounts.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 remotedesktop.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 10.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 remotedesktop-pa.googleapis.com udp
GB 216.58.212.202:443 remotedesktop-pa.googleapis.com tcp
US 8.8.8.8:53 202.212.58.216.in-addr.arpa udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 chromewebstore.googleapis.com udp
GB 216.58.212.202:443 chromewebstore.googleapis.com udp
US 74.125.247.128:3478 udp
US 74.125.247.128:3478 tcp
US 8.8.8.8:53 128.247.125.74.in-addr.arpa udp
US 8.8.8.8:53 286401df-8737-4ee4-bf9b-23984f30aa79.local udp
DE 116.202.162.252:48871 udp
US 8.8.8.8:53 286401df-8737-4ee4-bf9b-23984f30aa79.local udp
US 8.8.8.8:53 57.169.31.20.in-addr.arpa udp
BE 2.17.107.123:443 www.bing.com tcp
BE 104.68.66.114:443 cxcs.microsoft.net tcp
US 8.8.8.8:53 123.107.17.2.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 ogs.google.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 roblox.com udp
GB 128.116.119.4:443 roblox.com tcp
GB 128.116.119.4:443 roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
NL 128.116.21.4:443 www.roblox.com tcp
NL 128.116.21.4:443 www.roblox.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
FR 3.162.38.18:443 static.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 8.8.8.8:53 4.21.116.128.in-addr.arpa udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 8.8.8.8:53 metrics.roblox.com udp
US 172.64.154.86:443 roblox-api.arkoselabs.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 172.64.154.86:443 roblox-api.arkoselabs.com udp
BE 2.17.107.249:443 apis.rbxcdn.com tcp
US 8.8.8.8:53 locale.roblox.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
US 8.8.8.8:53 auth.roblox.com udp
US 18.245.175.119:443 images.rbxcdn.com tcp
US 18.245.175.119:443 images.rbxcdn.com tcp
US 18.245.175.119:443 images.rbxcdn.com tcp
US 18.245.175.119:443 images.rbxcdn.com tcp
US 18.245.175.119:443 images.rbxcdn.com tcp
US 18.245.175.119:443 images.rbxcdn.com tcp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com udp
US 8.8.8.8:53 38.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 18.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 86.154.64.172.in-addr.arpa udp
US 8.8.8.8:53 249.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 119.175.245.18.in-addr.arpa udp
GB 142.250.187.202:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 tr.rbxcdn.com udp
US 8.8.8.8:53 thumbnails.roblox.com udp
US 2.17.251.47:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 friends.roblox.com udp
US 8.8.8.8:53 privatemessages.roblox.com udp
US 8.8.8.8:53 trades.roblox.com udp
US 2.17.251.47:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 chat.roblox.com udp
FR 3.162.38.18:443 static.rbxcdn.com tcp
US 8.8.8.8:53 atl1-128-116-99-3.roblox.com udp
US 8.8.8.8:53 cdg1-128-116-122-3.roblox.com udp
US 8.8.8.8:53 syd1-128-116-51-3.roblox.com udp
US 8.8.8.8:53 aws-eu-west-2a-lms.rbx.com udp
US 8.8.8.8:53 roblox-poc.global.ssl.fastly.net udp
US 8.8.8.8:53 waw1-128-116-124-3.roblox.com udp
US 8.8.8.8:53 lax4-128-116-63-3.roblox.com udp
DE 128.116.123.3:443 fra2-128-116-123-3.roblox.com tcp
FR 128.116.122.3:443 cdg1-128-116-122-3.roblox.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
US 151.101.1.194:443 roblox-poc.global.ssl.fastly.net tcp
US 128.116.63.3:443 lax4-128-116-63-3.roblox.com tcp
PL 128.116.124.3:443 waw1-128-116-124-3.roblox.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
US 128.116.32.3:443 lga2-128-116-32-3.roblox.com tcp
US 128.116.99.3:443 atl1-128-116-99-3.roblox.com tcp
GB 13.42.116.35:443 aws-eu-west-2a-lms.rbx.com tcp
DE 52.57.179.204:443 cs.ns1p.net tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
JP 128.116.120.3:443 nrt1-128-116-120-3.roblox.com tcp
DE 52.29.33.253:443 cs.ns1p.net tcp
US 205.234.175.102:443 c0cfly.rbxcdn.com tcp
US 8.8.8.8:53 3.32.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.99.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.63.116.128.in-addr.arpa udp
US 8.8.8.8:53 204.179.57.52.in-addr.arpa udp
US 8.8.8.8:53 3.120.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.51.116.128.in-addr.arpa udp
US 8.8.8.8:53 253.33.29.52.in-addr.arpa udp
US 8.8.8.8:53 102.175.234.205.in-addr.arpa udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 t6.rbxcdn.com udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
US 8.8.8.8:53 t3.rbxcdn.com udp
FR 18.155.129.6:443 t6.rbxcdn.com tcp
FR 18.164.52.113:443 t3.rbxcdn.com tcp
US 8.8.8.8:53 3.50.116.128.in-addr.arpa udp
US 8.8.8.8:53 6.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 113.52.164.18.in-addr.arpa udp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
US 128.116.115.3:443 sea1-128-116-115-3.roblox.com tcp
US 8.8.8.8:53 b.ns1p.net udp
US 18.245.199.55:443 create.roblox.com tcp
US 8.8.8.8:53 webblox.roblox.com udp
US 18.245.175.104:443 webblox.roblox.com tcp
US 8.8.8.8:53 o293668.ingest.sentry.io udp
US 34.120.195.249:443 o293668.ingest.sentry.io tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
US 8.8.8.8:53 users.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 55.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 104.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 249.195.120.34.in-addr.arpa udp
US 8.8.8.8:53 233.69.68.104.in-addr.arpa udp
GB 142.250.187.206:443 www.youtube.com tcp
US 3.165.112.189:443 doy2mn9upadnk.cloudfront.net tcp
GB 142.250.187.206:443 www.youtube.com udp
US 3.165.112.189:443 doy2mn9upadnk.cloudfront.net tcp
US 8.8.8.8:53 games.roblox.com udp
GB 142.250.187.206:443 www.youtube.com tcp
US 8.8.8.8:53 t1.rbxcdn.com udp
US 8.8.8.8:53 i.ytimg.com udp
BE 2.17.107.195:443 t1.rbxcdn.com tcp
GB 142.250.187.206:443 www.youtube.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 195.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 118.201.58.216.in-addr.arpa udp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 i1.ytimg.com udp
GB 172.217.16.238:443 i1.ytimg.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 clientsettings.roblox.com udp
US 8.8.8.8:53 setup.rbxcdn.com udp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 49.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com tcp
US 8.8.8.8:53 client-telemetry.roblox.com udp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 3.21.116.128.in-addr.arpa udp
US 8.8.8.8:53 setup.rbxcdn.com udp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 translate.googleapis.com udp
GB 142.250.187.234:443 passwordsleakcheck-pa.googleapis.com tcp
GB 216.58.204.67:443 update.googleapis.com tcp
GB 142.250.187.234:443 passwordsleakcheck-pa.googleapis.com tcp
N/A 127.0.0.1:53618 tcp
N/A 127.0.0.1:53622 tcp
N/A 127.0.0.1:53625 tcp
N/A 127.0.0.1:53628 tcp
US 8.8.8.8:53 chromewebstore.google.com udp
GB 216.58.201.110:443 chromewebstore.google.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 23.102.129.60:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 60.129.102.23.in-addr.arpa udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.200.35:443 id.google.com tcp
GB 216.58.201.118:443 i.ytimg.com tcp
GB 216.58.201.118:443 i.ytimg.com tcp
US 8.8.8.8:53 msedge.f.tlu.dl.delivery.mp.microsoft.com udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 199.232.210.172:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
GB 142.250.187.206:443 www.youtube.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 142.250.200.34:443 tcp
GB 142.250.178.10:443 passwordsleakcheck-pa.googleapis.com tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 142.250.178.10:443 passwordsleakcheck-pa.googleapis.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 216.58.201.118:443 i.ytimg.com tcp
US 8.8.8.8:53 accounts.google.com udp
GB 142.250.179.238:443 play.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
US 8.8.8.8:53 www.stefanvd.net udp
US 104.21.5.171:443 tcp
US 104.21.5.171:443 tcp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 171.5.21.104.in-addr.arpa udp
GB 142.250.200.34:443 tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.googletagservices.com udp
US 104.21.5.171:443 udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 assets.pinterest.com udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
BE 23.55.96.209:443 tcp
US 13.107.246.64:443 tcp
GB 163.70.151.21:443 tcp
US 8.8.8.8:53 platform.twitter.com udp
US 151.101.188.157:443 tcp
GB 142.250.187.202:443 passwordsleakcheck-pa.googleapis.com tcp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 157.188.101.151.in-addr.arpa udp
GB 163.70.151.21:443 udp
BE 23.55.96.209:443 udp
US 8.8.8.8:53 udp
US 151.101.188.157:443 tcp
US 216.239.34.181:443 analytics.google.com tcp
BE 74.125.71.155:443 stats.g.doubleclick.net tcp
US 20.114.190.119:443 x.clarity.ms tcp
GB 142.250.200.34:443 tcp
GB 142.250.200.34:443 tcp
US 104.244.42.136:443 syndication.twitter.com tcp
US 104.21.5.171:443 udp
US 8.8.8.8:53 155.71.125.74.in-addr.arpa udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 136.42.244.104.in-addr.arpa udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 d.agkn.com udp
US 8.8.8.8:53 um.simpli.fi udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 log.pinterest.com udp
US 104.244.42.136:443 syndication.twitter.com tcp
GB 142.250.200.34:443 udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 8.8.8.8:53 dsp.adfarm1.adition.com udp
IE 54.220.25.0:443 d.agkn.com tcp
NL 34.91.62.186:443 um.simpli.fi tcp
US 104.244.42.136:443 syndication.twitter.com tcp
IE 54.220.25.0:443 d.agkn.com tcp
NL 34.91.62.186:443 um.simpli.fi tcp
US 8.8.8.8:53 0.25.220.54.in-addr.arpa udp
US 8.8.8.8:53 186.62.91.34.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
GB 142.250.187.194:443 cm.g.doubleclick.net tcp
GB 142.250.187.194:443 cm.g.doubleclick.net tcp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 creativecdn.com udp
US 8.8.8.8:53 s.uuidksinc.net udp
US 8.8.8.8:53 analytics.pangle-ads.com udp
NL 185.184.8.90:443 tcp
NL 185.184.8.90:443 tcp
NL 31.220.27.135:443 tcp
NL 35.214.168.80:443 tcp
DK 37.157.5.132:443 tcp
US 174.137.133.49:443 tcp
SE 213.155.156.184:443 tcp
US 184.25.127.146:443 tcp
GB 142.250.187.194:443 cm.g.doubleclick.net udp
NL 35.214.149.91:443 tcp
DE 85.114.159.118:443 tcp
DE 85.114.159.118:443 tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 151.101.0.84:443 log.pinterest.com tcp
US 104.18.25.173:443 a.tribalfusion.com tcp
NL 193.0.160.130:443 tcp
NL 178.250.1.9:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 c.clarity.ms udp
GB 163.70.151.35:443 www.facebook.com tcp
IE 68.219.88.97:443 c.clarity.ms tcp
GB 172.217.169.27:443 tcp
GB 172.217.169.27:443 udp
US 8.8.8.8:53 62.64.227.64.in-addr.arpa udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 udp
US 204.79.197.237:443 c.bing.com tcp
US 8.8.8.8:53 udp
NL 64.227.64.62:443 tcp
US 216.239.34.181:443 analytics.google.com udp
GB 142.250.178.14:443 google.com udp
GB 142.250.200.34:443 udp
US 8.8.8.8:53 adsdk.microsoft.com udp
US 8.8.8.8:53 cdn.adnxs.com udp
US 151.101.1.108:443 cdn.adnxs.com tcp
US 13.107.246.64:443 adsdk.microsoft.com tcp
BE 88.221.83.187:443 www.bing.com tcp
BE 88.221.83.187:443 www.bing.com tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
NL 185.89.210.122:443 ams3-ib.adnxs.com tcp
BE 88.221.83.187:443 www.bing.com udp
US 8.8.8.8:53 122.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 108.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 drive.google.com udp
US 8.8.8.8:53 udp
GB 142.250.179.225:443 drive.usercontent.google.com tcp
DE 85.114.159.118:443 tcp
US 8.8.8.8:53 udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.179.225:443 drive.usercontent.google.com tcp
US 174.137.133.49:443 tcp
GB 142.250.200.34:443 tcp
IE 34.251.19.157:443 pm.w55c.net tcp
DE 51.89.9.253:443 tcp
NL 185.89.210.122:443 ams3-ib.adnxs.com tcp
US 20.114.190.119:443 x.clarity.ms tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 www.reddit.com udp
US 151.101.1.140:443 www.reddit.com tcp
US 151.101.1.140:443 www.reddit.com tcp
US 8.8.8.8:53 140.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 www.redditstatic.com udp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 151.101.1.140:443 www.redditstatic.com tcp
US 8.8.8.8:53 w3-reporting.reddit.com udp
US 151.101.1.140:443 preview.redd.it tcp
US 8.8.8.8:53 styles.redditmedia.com udp
US 8.8.8.8:53 ad-delivery.net udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 151.101.1.140:443 external-preview.redd.it tcp
US 151.101.1.140:443 external-preview.redd.it tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.202:443 passwordsleakcheck-pa.googleapis.com tcp
ZA 34.35.20.64:443 e2c68.gcp.gvt2.com tcp
US 8.8.8.8:53 64.20.35.34.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com tcp
GB 142.250.187.202:443 passwordsleakcheck-pa.googleapis.com udp
NL 142.250.27.84:443 accounts.google.com tcp
US 8.8.8.8:53 alb.reddit.com udp
US 151.101.1.140:443 alb.reddit.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.178.14:443 google.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 beacons3.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 w3-reporting-nel.reddit.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
FR 172.217.18.227:443 beacons2.gvt2.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
FR 172.217.18.227:443 beacons2.gvt2.com udp
GB 142.250.178.14:443 google.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
US 8.8.8.8:53 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
GB 216.58.201.110:443 chromewebstore.google.com udp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
US 18.245.199.38:443 css.rbxcdn.com tcp
BE 2.17.107.241:443 images.rbxcdn.com tcp
FR 3.162.38.66:443 static.rbxcdn.com tcp
FR 3.162.38.66:443 static.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
FR 18.244.28.113:443 js.rbxcdn.com tcp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
US 18.245.199.38:443 css.rbxcdn.com tcp
GB 128.116.119.4:443 roblox.com tcp
US 8.8.8.8:53 metrics.roblox.com udp
US 8.8.8.8:53 metrics.roblox.com udp
US 172.64.154.86:443 roblox-api.arkoselabs.com tcp
NL 128.116.21.4:443 metrics.roblox.com udp
NL 128.116.21.4:443 metrics.roblox.com tcp
US 8.8.8.8:53 66.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 241.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 113.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
BE 2.17.107.249:443 apis.rbxcdn.com tcp
US 172.64.154.86:443 roblox-api.arkoselabs.com udp
NL 128.116.21.4:443 metrics.roblox.com udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 auth.roblox.com udp
NL 128.116.21.4:443 auth.roblox.com tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 216.58.212.202:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 151.101.1.140:443 w3-reporting-nel.reddit.com tcp
GB 142.250.187.206:443 www.youtube.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:443 dns.google udp
US 18.245.175.61:443 images.rbxcdn.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
GB 142.250.179.238:443 udp
US 8.8.8.8:53 udp
GB 142.250.200.34:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
NL 35.214.168.80:443 udp
NL 178.250.1.9:443 tcp
DE 51.89.9.253:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
N/A 127.0.0.1:54733 tcp
N/A 127.0.0.1:54744 tcp
N/A 127.0.0.1:54755 tcp
N/A 127.0.0.1:54759 tcp
N/A 127.0.0.1:54763 tcp
N/A 127.0.0.1:54766 tcp
US 151.101.1.140:443 w3-reporting-nel.reddit.com tcp
US 151.101.1.140:443 w3-reporting-nel.reddit.com tcp
GB 172.217.169.3:443 beacons.gvt2.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
NL 142.250.27.84:443 accounts.google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 chromeenterprise.google udp
US 216.239.32.27:443 chromeenterprise.google tcp
NL 142.250.27.84:443 accounts.google.com tcp
US 216.239.32.27:443 chromeenterprise.google tcp
US 8.8.8.8:53 www.reddit.com udp
US 151.101.1.140:443 www.reddit.com tcp
US 151.101.1.140:443 www.reddit.com tcp
US 8.8.8.8:53 versionhistory.appspot.com udp
US 216.239.32.27:443 chromeenterprise.google udp
US 151.101.1.140:443 www.reddit.com tcp
GB 142.250.200.20:443 versionhistory.appspot.com tcp
US 8.8.8.8:53 20.200.250.142.in-addr.arpa udp
GB 172.217.169.27:443 tcp
GB 142.250.180.10:443 versionhistory.googleapis.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com udp
BE 74.125.71.155:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 csp.withgoogle.com udp
GB 172.217.169.81:443 csp.withgoogle.com tcp
GB 172.217.169.81:443 csp.withgoogle.com tcp
GB 142.250.187.196:443 www.google.com udp
N/A 127.0.0.1:55394 tcp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
N/A 127.0.0.1:55397 tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 8.8.4.4:443 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 204.79.197.239:443 tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
US 199.232.210.172:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 239.197.79.204.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 172.217.169.3:443 beacons.gvt2.com tcp
US 8.8.8.8:53 encrypted-tbn2.gstatic.com udp
GB 142.250.200.35:443 id.google.com udp
GB 142.250.187.206:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 vpngate.net udp
JP 130.158.75.35:443 vpngate.net tcp
JP 130.158.75.35:443 vpngate.net tcp
JP 130.158.75.35:443 vpngate.net tcp
US 8.8.8.8:53 35.75.158.130.in-addr.arpa udp
US 204.79.197.239:443 tcp
US 204.79.197.239:443 tcp
US 8.8.8.8:53 www.vpngate.net udp
JP 130.158.75.42:443 www.vpngate.net tcp
JP 130.158.75.42:443 www.vpngate.net tcp
US 8.8.8.8:53 42.75.158.130.in-addr.arpa udp
US 8.8.8.8:443 dns.google udp
NL 128.116.21.4:443 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
JP 130.158.75.42:443 www.vpngate.net tcp
JP 130.158.75.42:443 www.vpngate.net tcp
JP 130.158.75.42:443 www.vpngate.net tcp
JP 130.158.75.42:443 www.vpngate.net tcp
GB 142.250.187.200:443 ssl.google-analytics.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com udp
GB 142.250.187.200:443 ssl.google-analytics.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
BE 74.125.71.155:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 200.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 users.roblox.com udp
NL 128.116.21.4:443 users.roblox.com tcp
N/A 127.0.0.1:55604 tcp
N/A 127.0.0.1:55799 tcp
N/A 127.0.0.1:55801 tcp
N/A 127.0.0.1:55803 tcp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
US 8.8.8.8:53 develop.roblox.com udp
NL 128.116.21.4:443 develop.roblox.com tcp
NL 128.116.21.4:443 develop.roblox.com tcp
NL 128.116.21.4:443 develop.roblox.com tcp
N/A 127.0.0.1:57033 tcp
N/A 127.0.0.1:57035 tcp
N/A 127.0.0.1:57040 tcp
US 8.8.8.8:53 assetgame.roblox.com udp
NL 128.116.21.4:443 assetgame.roblox.com tcp
US 8.8.8.8:53 clientsettings.roblox.com udp
NL 128.116.21.4:443 clientsettings.roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
NL 128.116.21.4:443 www.roblox.com tcp
US 8.8.8.8:53 thumbnails.roblox.com udp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 t6.rbxcdn.com udp
NL 128.116.21.4:443 economy.roblox.com tcp
FR 18.155.129.6:443 t6.rbxcdn.com tcp
N/A 127.0.0.1:57057 tcp
N/A 127.0.0.1:57061 tcp
N/A 127.0.0.1:57175 tcp
N/A 127.0.0.1:57217 tcp
N/A 127.0.0.1:57219 tcp
N/A 127.0.0.1:57293 tcp
N/A 127.0.0.1:57467 tcp
N/A 127.0.0.1:57469 tcp
US 8.8.8.8:53 18.121.18.2.in-addr.arpa udp
GB 95.101.143.201:443 tcp
US 8.8.8.8:53 static-ecst.licdn.com udp
FR 152.199.21.118:443 static-ecst.licdn.com tcp
SE 184.31.15.242:443 ow1.res.office365.com tcp
US 52.168.112.66:443 browser.pipe.aria.microsoft.com tcp
US 8.8.8.8:53 138.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 118.21.199.152.in-addr.arpa udp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 dual-s-ring.msedge.net udp
US 52.123.128.254:443 dual-s-ring.msedge.net tcp
BE 88.221.83.187:443 www.bing.com tcp
BE 88.221.83.187:443 www.bing.com tcp
US 151.101.1.140:443 www.reddit.com tcp
US 8.8.8.8:53 clients2.google.com udp
GB 172.217.169.3:443 beacons.gvt2.com udp
FR 172.217.18.227:443 beacons2.gvt2.com tcp
FR 172.217.18.227:443 beacons2.gvt2.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
US 8.8.8.8:53 beacons4.gvt2.com udp
FR 172.217.18.227:443 beacons2.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 google.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
FR 172.217.18.227:443 beacons2.gvt2.com udp
GB 142.250.178.14:443 google.com udp
GB 142.250.178.14:443 google.com tcp
ID 34.101.114.154:443 e2c9.gcp.gvt2.com tcp
ID 34.101.114.154:443 e2c9.gcp.gvt2.com tcp
US 8.8.8.8:53 154.114.101.34.in-addr.arpa udp
NL 128.116.21.4:443 economy.roblox.com tcp
N/A 127.0.0.1:57624 tcp
US 8.8.8.8:53 avatar.roblox.com udp
NL 128.116.21.4:443 avatar.roblox.com tcp
GB 128.116.33.33:56832 udp
NL 128.116.21.4:443 avatar.roblox.com tcp
N/A 127.0.0.1:57637 tcp
N/A 127.0.0.1:57639 tcp
US 8.8.8.8:53 33.33.116.128.in-addr.arpa udp
US 8.8.8.8:53 assetdelivery.roblox.com udp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
N/A 127.0.0.1:57643 tcp
US 8.8.8.8:53 chat.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 c7.rbxcdn.com udp
FR 3.162.38.69:443 c7.rbxcdn.com tcp
FR 3.162.38.69:443 c7.rbxcdn.com tcp
US 8.8.8.8:53 69.38.162.3.in-addr.arpa udp
NL 128.116.21.4:443 economy.roblox.com tcp
N/A 127.0.0.1:57646 tcp
N/A 127.0.0.1:57651 tcp
N/A 127.0.0.1:57653 tcp
N/A 127.0.0.1:57657 tcp
N/A 127.0.0.1:57667 tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 c5.rbxcdn.com udp
FR 3.162.38.3:443 c5.rbxcdn.com tcp
FR 3.162.38.3:443 c5.rbxcdn.com tcp
FR 3.162.38.3:443 c5.rbxcdn.com tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
BE 2.17.107.192:443 c6.rbxcdn.com tcp
US 8.8.8.8:53 c2.rbxcdn.com udp
US 18.245.175.34:443 c2.rbxcdn.com tcp
FR 3.162.38.126:443 c0.rbxcdn.com tcp
FR 3.162.38.39:443 c3.rbxcdn.com tcp
FR 3.162.38.39:443 c3.rbxcdn.com tcp
US 8.8.8.8:53 3.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 192.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 34.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 126.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 39.38.162.3.in-addr.arpa udp
FR 18.155.129.34:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 t7.rbxcdn.com udp
US 8.8.8.8:53 t4.rbxcdn.com udp
FR 18.164.52.3:443 t3.rbxcdn.com tcp
FR 18.164.52.3:443 t3.rbxcdn.com tcp
US 3.165.113.66:443 t7.rbxcdn.com tcp
FR 13.249.9.31:443 t4.rbxcdn.com tcp
US 3.165.113.66:443 t7.rbxcdn.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 3.52.164.18.in-addr.arpa udp
US 8.8.8.8:53 34.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 31.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
N/A 127.0.0.1:57692 tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
N/A 127.0.0.1:57719 tcp
N/A 127.0.0.1:57721 tcp
N/A 127.0.0.1:57725 tcp
N/A 127.0.0.1:57727 tcp
NL 128.116.21.4:443 itemconfiguration.roblox.com tcp
N/A 127.0.0.1:57777 tcp
N/A 127.0.0.1:57779 tcp
N/A 127.0.0.1:57781 tcp
N/A 127.0.0.1:57783 tcp
N/A 127.0.0.1:57785 tcp
N/A 127.0.0.1:57798 tcp
N/A 127.0.0.1:57800 tcp
US 8.8.8.8:53 games.roblox.com udp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
US 8.8.8.8:53 inventory.roblox.com udp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 c4.rbxcdn.com udp
FR 3.162.38.78:443 c4.rbxcdn.com tcp
FR 172.217.18.227:443 beacons2.gvt2.com udp
FR 172.217.18.227:443 beacons2.gvt2.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 78.38.162.3.in-addr.arpa udp
N/A 127.0.0.1:57820 tcp
N/A 127.0.0.1:57822 tcp
US 8.8.8.8:53 voice.roblox.com udp
NL 128.116.21.4:443 friends.roblox.com tcp
NL 128.116.21.4:443 friends.roblox.com tcp
NL 128.116.21.4:443 friends.roblox.com tcp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 badges.roblox.com udp
NL 128.116.21.4:443 badges.roblox.com tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
NL 2.18.121.16:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 locale.roblox.com udp
US 8.8.8.8:53 gameinternationalization.roblox.com udp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
US 8.8.8.8:53 16.121.18.2.in-addr.arpa udp
US 8.8.8.8:53 avatar.roblox.com udp
NL 128.116.21.4:443 avatar.roblox.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
US 192.178.49.163:443 beacons.gvt2.com tcp
US 192.178.49.163:443 beacons.gvt2.com tcp
US 192.178.49.163:443 beacons.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
N/A 127.0.0.1:57909 tcp
NL 128.116.21.4:443 assetgame.roblox.com tcp
US 8.8.8.8:53 remotedesktop-pa.googleapis.com udp
GB 216.58.212.202:443 remotedesktop-pa.googleapis.com udp
N/A 127.0.0.1:57916 tcp
N/A 127.0.0.1:57920 tcp
N/A 127.0.0.1:57922 tcp
N/A 127.0.0.1:57924 tcp
N/A 127.0.0.1:57931 tcp
N/A 127.0.0.1:57933 tcp
N/A 127.0.0.1:57947 tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 216.58.201.118:443 i.ytimg.com udp
US 8.8.8.8:53 img.youtube.com udp
GB 142.250.200.14:443 img.youtube.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.187.206:443 www.youtube.com tcp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
US 104.16.51.111:443 en.help.roblox.com tcp
US 104.16.51.111:443 en.help.roblox.com tcp
US 8.8.8.8:53 static.zdassets.com udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 code.jquery.com udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 104.18.72.113:443 static.zdassets.com tcp
US 104.18.72.113:443 static.zdassets.com tcp
US 151.101.2.137:443 code.jquery.com tcp
US 104.18.72.113:443 static.zdassets.com tcp
US 8.8.8.8:53 roblox.zendesk.com udp
US 8.8.8.8:53 111.51.16.104.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 104.16.51.111:443 roblox.zendesk.com tcp
US 8.8.8.8:53 137.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 113.72.18.104.in-addr.arpa udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
US 8.8.8.8:53 c.evidon.com udp
NL 23.62.61.176:443 c.evidon.com tcp
NL 23.62.61.176:443 c.evidon.com tcp
NL 23.62.61.176:443 c.evidon.com tcp
NL 23.62.61.176:443 c.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
NL 142.250.27.84:443 accounts.google.com udp
GB 142.250.187.196:443 www.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp
US 35.190.80.1:443 tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.201.118:443 i.ytimg.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
NL 128.116.21.4:443 assetgame.roblox.com tcp
US 8.8.8.8:53 encrypted-vtbn0.gstatic.com udp
GB 142.250.178.14:443 www.youtube.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
US 8.8.8.8:53 devforum.roblox.com udp
BE 23.55.97.237:443 devforum.roblox.com tcp
BE 23.55.97.237:443 devforum.roblox.com tcp
US 8.8.8.8:53 237.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 doy2mn9upadnk.cloudfront.net udp
US 3.165.112.128:443 doy2mn9upadnk.cloudfront.net tcp
US 8.8.8.8:53 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com udp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 8.8.8.8:53 128.112.165.3.in-addr.arpa udp
US 8.8.8.8:53 d348twzf7a8p5.cloudfront.net udp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
FR 18.155.128.166:443 d348twzf7a8p5.cloudfront.net tcp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 8.8.8.8:53 90.233.219.52.in-addr.arpa udp
US 8.8.8.8:53 166.128.155.18.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 users.roblox.com udp
US 8.8.8.8:53 webblox.roblox.com udp
NL 128.116.21.4:443 thumbnails.roblox.com udp
US 18.245.199.57:443 create.roblox.com tcp
US 18.245.175.44:443 webblox.roblox.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com udp
NL 128.116.21.4:443 thumbnails.roblox.com udp
US 3.165.112.128:443 doy2mn9upadnk.cloudfront.net tcp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
BE 23.55.97.237:443 devforum.roblox.com tcp
US 52.219.233.90:443 devforum-uploads.s3.dualstack.us-east-2.amazonaws.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 52.21.107.72:443 l.evidon.com tcp
US 3.165.112.128:443 doy2mn9upadnk.cloudfront.net tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
GB 142.250.187.206:443 www.youtube.com tcp
GB 216.58.201.118:443 i.ytimg.com tcp
GB 142.250.187.206:443 www.youtube.com udp
GB 74.125.175.103:443 tcp
GB 74.125.175.103:443 tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.180.1:443 tcp
GB 216.58.201.118:443 i.ytimg.com tcp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.180.1:443 udp
GB 142.250.179.238:443 play.google.com tcp
GB 74.125.175.103:443 udp
GB 216.58.201.118:443 i.ytimg.com tcp
GB 216.58.201.118:443 i.ytimg.com udp
BE 23.55.97.237:443 devforum.roblox.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
NL 128.116.21.4:443 thumbnails.roblox.com udp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 thumbnails.roblox.com udp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 devforum.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 e2c26.gcp.gvt2.com udp
US 34.86.82.41:443 e2c26.gcp.gvt2.com tcp
US 8.8.8.8:53 41.82.86.34.in-addr.arpa udp
US 192.178.49.163:443 beacons.gvt2.com tcp
US 192.178.49.163:443 beacons.gvt2.com udp
GB 216.58.201.118:443 i.ytimg.com udp
GB 216.58.201.118:443 i.ytimg.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 devforum.roblox.com udp
US 8.8.8.8:53 234.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 34.121.18.2.in-addr.arpa udp
NL 128.116.21.4:443 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 alb.reddit.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.187.206:443 www.youtube.com tcp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
IE 20.166.2.191:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 191.2.166.20.in-addr.arpa udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 devforum.roblox.com udp
BE 23.55.97.237:443 devforum.roblox.com tcp
AR 142.250.79.131:443 tcp
AR 142.250.79.131:443 tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
US 199.232.210.172:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 142.250.27.84:443 accounts.google.com tcp
US 8.8.8.8:53 remotedesktop-pa.googleapis.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 assetdelivery.roblox.com udp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
US 8.8.8.8:53 c3.rbxcdn.com udp
FR 3.162.38.128:443 c3.rbxcdn.com tcp
US 8.8.8.8:53 128.38.162.3.in-addr.arpa udp
NL 128.116.21.4:443 assetdelivery.roblox.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
AR 142.250.79.131:443 udp
US 8.8.8.8:53 avatar.roblox.com udp
US 8.8.8.8:53 gameinternationalization.roblox.com udp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
NL 128.116.21.4:443 gameinternationalization.roblox.com tcp
US 8.8.8.8:53 voice.roblox.com udp
NL 128.116.21.4:443 voice.roblox.com tcp
US 8.8.8.8:53 gamepersistence.roblox.com udp
US 8.8.8.8:53 games.roblox.com udp
US 8.8.8.8:53 c5.rbxcdn.com udp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
US 8.8.8.8:53 groups.roblox.com udp
FR 3.162.38.115:443 c5.rbxcdn.com tcp
NL 128.116.21.4:443 groups.roblox.com tcp
FR 3.162.38.79:443 c6.rbxcdn.com tcp
US 8.8.8.8:53 analytics-api-5968537435-aad4a6c85b28.superbiz.gg udp
US 8.8.8.8:53 115.38.162.3.in-addr.arpa udp
US 104.21.5.162:443 analytics-api-5968537435-aad4a6c85b28.superbiz.gg tcp
US 8.8.8.8:53 79.38.162.3.in-addr.arpa udp
NL 128.116.21.4:443 groups.roblox.com tcp
NL 128.116.21.4:443 groups.roblox.com tcp
US 8.8.8.8:53 c0.rbxcdn.com udp
US 8.8.8.8:53 economy.roblox.com udp
FR 3.162.38.67:443 c7.rbxcdn.com tcp
FR 3.162.38.47:443 c0.rbxcdn.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-2c99d05f7074.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-2c99d05f7074.superbiz.gg tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
NL 128.116.21.4:443 economy.roblox.com tcp
US 8.8.8.8:53 accountsettings.roblox.com udp
NL 128.116.21.4:443 accountsettings.roblox.com tcp
FR 3.162.38.128:443 c3.rbxcdn.com tcp
NL 128.116.21.4:443 accountsettings.roblox.com tcp
US 8.8.8.8:53 c1.rbxcdn.com udp
US 8.8.8.8:53 c2.rbxcdn.com udp
BE 2.17.107.234:443 c1.rbxcdn.com tcp
US 18.245.175.86:443 c2.rbxcdn.com tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
FR 3.162.38.67:443 c7.rbxcdn.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 13.67.191.143:443 msedge.api.cdp.microsoft.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 104.21.5.162:443 analytics-api-5968537435-2c99d05f7074.superbiz.gg tcp
FR 3.162.38.79:443 c6.rbxcdn.com tcp
NL 128.116.21.4:443 csm.roblox.com udp
US 8.8.8.8:53 devforum.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-524ddfbf6e1a.superbiz.gg udp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-524ddfbf6e1a.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-1eee161ffd2e.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-1eee161ffd2e.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-a1d1ce04c288.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-a1d1ce04c288.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com udp
US 8.8.8.8:53 analytics-api-5968537435-e7326d688af9.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-e7326d688af9.superbiz.gg tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-05b129d585d8.superbiz.gg udp
FR 3.162.38.96:443 c4.rbxcdn.com tcp
US 8.8.8.8:53 12.175.245.18.in-addr.arpa udp
US 172.67.133.158:443 analytics-api-5968537435-d973c992eb07.superbiz.gg tcp
US 8.8.8.8:53 96.38.162.3.in-addr.arpa udp
US 104.21.5.162:443 analytics-api-5968537435-d973c992eb07.superbiz.gg tcp
NL 128.116.21.4:443 ecsv2.roblox.com udp
US 8.8.8.8:53 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
BE 23.55.97.237:443 devforum.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
FR 3.162.38.72:443 c5.rbxcdn.com tcp
US 18.245.175.12:443 c2.rbxcdn.com tcp
FR 3.162.38.72:443 c5.rbxcdn.com tcp
US 18.245.175.12:443 c2.rbxcdn.com tcp
US 18.245.175.12:443 c2.rbxcdn.com tcp
BE 2.17.107.201:443 tcp
US 8.8.8.8:53 devforum.roblox.com udp
US 8.8.8.8:53 avatar.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
US 8.8.8.8:53 analytics-api-5968537435-b61a93f7a777.superbiz.gg udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 104.21.5.162:443 analytics-api-5968537435-afc430f94c14.superbiz.gg tcp
US 18.245.175.54:443 c6.rbxcdn.com tcp
US 172.67.133.158:443 analytics-api-5968537435-afc430f94c14.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
BE 2.17.107.195:443 c7.rbxcdn.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-afc430f94c14.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 54.175.245.18.in-addr.arpa udp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 inventory.roblox.com tcp
US 8.8.8.8:53 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com udp
NL 128.116.21.4:443 ncs.roblox.com tcp
US 8.8.8.8:53 devforum.roblox.com udp
US 8.8.8.8:53 assetgame.roblox.com udp
NL 128.116.21.4:443 assetgame.roblox.com tcp
NL 128.116.21.4:443 assetgame.roblox.com udp
NL 128.116.21.4:443 assetgame.roblox.com udp
US 104.21.5.162:443 analytics-api-5968537435-3de1fbd338a4.superbiz.gg tcp
US 104.21.5.162:443 analytics-api-5968537435-3de1fbd338a4.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-c06c952058a6.superbiz.gg udp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-c06c952058a6.superbiz.gg tcp
US 8.8.8.8:53 devforum.roblox.com udp
BE 23.55.97.237:443 devforum.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com udp
US 8.8.8.8:53 analytics-api-5968537435-80b50070a223.superbiz.gg udp
US 8.8.8.8:53 gamepersistence.roblox.com udp
NL 128.116.21.4:443 gamepersistence.roblox.com tcp
NL 128.116.21.4:443 gamepersistence.roblox.com tcp
NL 128.116.21.4:443 gamepersistence.roblox.com tcp
US 104.21.5.162:443 analytics-api-5968537435-80b50070a223.superbiz.gg tcp
US 8.8.8.8:53 games.roblox.com udp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-007ab195f13b.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-131c31a75a8d.superbiz.gg tcp
US 104.21.5.162:443 analytics-api-5968537435-131c31a75a8d.superbiz.gg tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com udp
US 172.67.133.158:443 analytics-api-5968537435-131c31a75a8d.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-9c51e2dedf77.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-9c51e2dedf77.superbiz.gg tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-3f22bfb25864.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-3f22bfb25864.superbiz.gg tcp
US 8.8.8.8:53 devforum.roblox.com udp
US 8.8.8.8:53 analytics-api-5968537435-3f493e0d0dc5.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-3f493e0d0dc5.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-7a31a77e0f85.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-c80fb48965b2.superbiz.gg tcp
US 172.67.133.158:443 analytics-api-5968537435-c80fb48965b2.superbiz.gg tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
N/A 127.0.0.1:57974 tcp
N/A 127.0.0.1:57977 tcp
N/A 127.0.0.1:57982 tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:57989 tcp
N/A 127.0.0.1:57991 tcp
N/A 127.0.0.1:57993 tcp
N/A 127.0.0.1:57995 tcp
N/A 127.0.0.1:57997 tcp
N/A 127.0.0.1:57999 tcp
N/A 127.0.0.1:58015 tcp
N/A 127.0.0.1:58034 tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
US 8.8.8.8:53 g.tenor.com udp
GB 142.250.200.10:443 g.tenor.com tcp
US 8.8.8.8:53 media.tenor.com udp
US 8.8.8.8:53 inputsuggestions.msdxcdn.microsoft.com udp
US 13.107.246.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
US 13.107.246.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
US 13.107.246.64:443 inputsuggestions.msdxcdn.microsoft.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
GB 142.250.178.14:443 tcp
GB 142.250.178.14:443 tcp
GB 142.250.178.14:443 tcp
GB 216.58.201.118:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
GB 216.58.213.3:443 udp
US 8.8.8.8:53 udp
US 35.190.80.1:443 udp
N/A 127.0.0.1:58558 tcp
GB 216.58.213.6:443 tcp
GB 142.250.187.196:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
N/A 127.0.0.1:59087 tcp
N/A 127.0.0.1:59090 tcp
N/A 127.0.0.1:59110 tcp
NL 128.116.21.4:443 tcp
US 192.178.49.163:443 tcp
N/A 127.0.0.1:59148 tcp
N/A 127.0.0.1:59184 tcp
N/A 127.0.0.1:59186 tcp
N/A 127.0.0.1:59188 tcp
N/A 127.0.0.1:59190 tcp
N/A 127.0.0.1:59192 tcp
N/A 127.0.0.1:59194 tcp
N/A 127.0.0.1:59196 tcp
N/A 127.0.0.1:59198 tcp
N/A 127.0.0.1:59200 tcp
N/A 127.0.0.1:59202 tcp
N/A 127.0.0.1:59204 tcp
N/A 127.0.0.1:59206 tcp
N/A 127.0.0.1:59208 tcp
N/A 127.0.0.1:59224 tcp
N/A 127.0.0.1:59226 tcp
N/A 127.0.0.1:59228 tcp
N/A 127.0.0.1:59230 tcp
N/A 127.0.0.1:59232 tcp
N/A 127.0.0.1:59234 tcp
N/A 127.0.0.1:59236 tcp
US 151.101.1.140:443 tcp
NL 128.116.21.4:443 udp
US 192.178.49.195:443 udp
NL 128.116.21.4:443 tcp
N/A 127.0.0.1:59360 tcp
N/A 127.0.0.1:59362 tcp
N/A 127.0.0.1:59369 tcp
US 8.8.8.8:53 udp
AR 142.250.79.131:443 udp
US 8.8.8.8:53 udp
NL 142.250.27.84:443 udp
N/A 127.0.0.1:59475 tcp
US 8.8.8.8:53 udp
N/A 127.0.0.1:59577 tcp
N/A 127.0.0.1:59582 tcp
N/A 127.0.0.1:59641 tcp
N/A 127.0.0.1:59643 tcp
N/A 127.0.0.1:59648 tcp
N/A 127.0.0.1:59073 udp
N/A 127.0.0.1:59667 tcp
N/A 127.0.0.1:59669 tcp
N/A 127.0.0.1:59671 tcp
N/A 127.0.0.1:59677 tcp
N/A 127.0.0.1:59685 tcp
N/A 127.0.0.1:59688 tcp
N/A 127.0.0.1:59701 tcp
N/A 127.0.0.1:59703 tcp
N/A 127.0.0.1:59705 tcp
N/A 127.0.0.1:59723 tcp
N/A 127.0.0.1:59733 tcp
N/A 127.0.0.1:59785 tcp
N/A 127.0.0.1:59787 tcp
N/A 127.0.0.1:59801 tcp
N/A 127.0.0.1:59812 tcp
N/A 127.0.0.1:59814 tcp
US 8.8.8.8:53 udp
NL 128.116.21.4:443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
N/A 127.0.0.1:59853 tcp
N/A 127.0.0.1:59896 tcp
N/A 127.0.0.1:59898 tcp
N/A 127.0.0.1:59900 tcp
US 8.8.8.8:53 udp
N/A 127.0.0.1:59969 tcp
US 8.8.8.8:53 udp
NL 128.116.21.4:443 udp
NL 128.116.21.4:443 tcp
US 8.8.8.8:53 udp
N/A 127.0.0.1:60019 tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.google.com udp
GB 216.58.204.78:443 www.youtube.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 78.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
US 8.8.8.8:53 emojipedia.org udp
US 104.22.55.209:443 emojipedia.org tcp
US 104.22.55.209:443 emojipedia.org tcp
US 8.8.8.8:53 em-content.zobj.net udp
US 8.8.8.8:53 a.pub.network udp
US 8.8.8.8:53 b.pub.network udp
US 8.8.8.8:53 confiant-integrations.global.ssl.fastly.net udp
US 104.16.125.108:443 em-content.zobj.net tcp
US 8.8.8.8:53 api.btloader.com udp
US 104.18.21.206:443 a.pub.network tcp
US 8.8.8.8:53 btloader.com udp
US 151.101.1.194:443 confiant-integrations.global.ssl.fastly.net tcp
US 8.8.8.8:53 cmp.quantcast.com udp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 pixel.quantserve.com udp
US 8.8.8.8:53 config.content-settings.com udp
US 104.18.21.206:443 a.pub.network tcp
US 8.8.8.8:53 static.hotjar.com udp
US 104.22.75.216:443 btloader.com tcp
US 8.8.8.8:53 secure.quantserve.com udp
US 8.8.8.8:53 108.125.16.104.in-addr.arpa udp
US 8.8.8.8:53 206.21.18.104.in-addr.arpa udp
US 8.8.8.8:53 209.55.22.104.in-addr.arpa udp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 34.36.88.89:443 config.content-settings.com tcp
US 52.46.143.56:443 s.amazon-adsystem.com tcp
US 3.165.113.80:443 cmp.quantcast.com tcp
US 18.245.175.46:443 static.hotjar.com tcp
DE 91.228.74.244:443 secure.quantserve.com tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
US 34.160.152.31:443 d.pub.network tcp
US 34.160.152.31:443 d.pub.network tcp
US 34.160.152.31:443 d.pub.network tcp
US 34.111.152.239:443 optimise.net tcp
GB 216.58.212.202:443 content-autofill.googleapis.com tcp
US 34.160.128.112:443 api.floors.dev tcp
FR 18.164.52.121:443 script.hotjar.com tcp
US 104.18.21.206:443 a.pub.network udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.187.226:443 googleads.g.doubleclick.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 cdn.confiant-integrations.net udp
US 8.8.8.8:53 freestar-io.videoplayerhub.com udp
US 172.64.144.166:443 cdn.confiant-integrations.net tcp
US 104.26.9.50:443 freestar-io.videoplayerhub.com tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 104.22.75.216:443 btloader.com tcp
US 172.64.144.166:443 cdn.confiant-integrations.net udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 216.75.22.104.in-addr.arpa udp
US 8.8.8.8:53 89.88.36.34.in-addr.arpa udp
US 8.8.8.8:53 159.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 80.113.165.3.in-addr.arpa udp
US 8.8.8.8:53 46.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 122.194.245.18.in-addr.arpa udp
US 8.8.8.8:53 56.143.46.52.in-addr.arpa udp
US 8.8.8.8:53 31.152.160.34.in-addr.arpa udp
US 8.8.8.8:53 112.128.160.34.in-addr.arpa udp
US 8.8.8.8:53 121.52.164.18.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 166.144.64.172.in-addr.arpa udp
US 8.8.8.8:53 50.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 239.152.111.34.in-addr.arpa udp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 99.86.91.52:443 api.intentiq.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
FR 13.249.9.80:443 sync.intentiq.com tcp
GB 216.58.201.98:443 www.googletagservices.com tcp
FR 52.84.174.40:443 config.aps.amazon-adsystem.com tcp
US 34.160.152.31:443 d.pub.network udp
FR 99.86.91.52:443 api.intentiq.com udp
DE 91.228.74.244:443 secure.quantserve.com tcp
US 104.22.53.86:443 cdn.id5-sync.com tcp
US 130.211.23.194:443 api.btloader.com udp
GB 23.53.174.156:443 secure.cdn.fastclick.net tcp
US 104.22.4.69:443 id.hadron.ad.gt tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
US 35.163.32.127:443 a.usbrowserspeed.com tcp
US 8.8.8.8:53 s2s.t13.io udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 prebid.media.net udp
US 8.8.8.8:53 hb.yellowblue.io udp
US 8.8.8.8:53 btlr.sharethrough.com udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 site-config.com udp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.107.140.113:443 s2s.t13.io tcp
US 34.120.63.153:443 prebid.media.net tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 172.64.151.101:443 htlb.casalemedia.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
FR 18.244.28.8:443 hb.yellowblue.io tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
US 35.190.125.54:443 site-config.com tcp
US 8.8.8.8:53 rules.quantcount.com udp
FR 18.244.28.87:443 rules.quantcount.com tcp
US 34.107.140.113:443 s2s.t13.io udp
US 34.120.63.153:443 prebid.media.net udp
US 35.190.125.54:443 site-config.com udp
US 172.64.151.101:443 htlb.casalemedia.com udp
US 104.22.4.69:443 id.hadron.ad.gt tcp
US 8.8.8.8:53 6.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 80.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 40.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 86.53.22.104.in-addr.arpa udp
US 8.8.8.8:53 191.36.162.3.in-addr.arpa udp
US 8.8.8.8:53 69.4.22.104.in-addr.arpa udp
US 8.8.8.8:53 156.174.53.23.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 113.140.107.34.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 8.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 54.125.190.35.in-addr.arpa udp
US 8.8.8.8:53 137.77.127.3.in-addr.arpa udp
US 8.8.8.8:53 127.32.163.35.in-addr.arpa udp
US 8.8.8.8:53 87.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 f928f780a842c847e707b37d104d47b4.safeframe.googlesyndication.com udp
US 8.8.8.8:53 static.criteo.net udp
GB 172.217.169.65:443 f928f780a842c847e707b37d104d47b4.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 a.remarketstats.com udp
NL 178.250.1.3:443 static.criteo.net tcp
US 172.67.69.73:443 a.remarketstats.com tcp
US 8.8.8.8:53 i.liadm.com udp
US 44.195.167.64:443 i.liadm.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 id5-sync.com udp
DE 162.19.138.83:443 id5-sync.com tcp
DE 162.19.138.117:443 id5-sync.com tcp
US 8.8.8.8:53 gum.criteo.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 65.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 73.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 83.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 117.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 142.250.187.196:443 www.google.com tcp
NL 178.250.1.7:443 ssp-sync.criteo.com tcp
NL 185.89.210.244:443 secure.adnxs.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 178.250.1.9:443 tcp
US 8.8.8.8:53 qsearch-a.akamaihd.net udp
US 8.8.8.8:53 7.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 244.210.89.185.in-addr.arpa udp
SE 2.21.97.11:443 qsearch-a.akamaihd.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 ads.yieldmo.com udp
US 8.8.8.8:53 eus.rubiconproject.com udp
US 8.8.8.8:53 js-sec.indexww.com udp
US 8.8.8.8:53 acdn.adnxs.com udp
US 8.8.8.8:53 11.97.21.2.in-addr.arpa udp
US 172.64.149.180:443 js-sec.indexww.com tcp
BE 23.55.96.24:443 contextual.media.net tcp
BE 23.55.98.169:443 eus.rubiconproject.com tcp
IE 54.220.241.253:443 ads.yieldmo.com tcp
SE 104.73.92.185:443 acdn.adnxs.com tcp
SE 104.73.92.198:443 ads.pubmatic.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
US 8.8.8.8:53 token.rubiconproject.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 172.64.151.101:443 ssum-sec.casalemedia.com udp
US 8.8.8.8:53 image6.pubmatic.com udp
NL 69.173.156.148:443 token.rubiconproject.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 44.195.167.64:443 i.liadm.com tcp
US 52.46.143.56:443 s.amazon-adsystem.com tcp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 8.8.8.8:53 sync.adotmob.com udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 8.8.8.8:53 ad4m.at udp
US 8.8.8.8:53 euexchangesync.digitaleast.mobi udp
US 8.8.8.8:53 cdn.indexww.com udp
US 34.95.81.168:443 euexchangesync.digitaleast.mobi tcp
FR 45.137.176.88:443 sync.adotmob.com tcp
US 104.26.10.209:443 ad4m.at tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
GB 216.58.213.2:443 cm.g.doubleclick.net tcp
GB 216.58.213.2:443 cm.g.doubleclick.net tcp
US 35.190.80.1:443 tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 sync.crwdcntrl.net udp
IE 63.33.74.9:443 sync.crwdcntrl.net tcp
US 35.190.80.1:443 udp
US 8.8.8.8:53 180.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 24.96.55.23.in-addr.arpa udp
US 8.8.8.8:53 169.98.55.23.in-addr.arpa udp
US 8.8.8.8:53 185.92.73.104.in-addr.arpa udp
US 8.8.8.8:53 253.241.220.54.in-addr.arpa udp
US 8.8.8.8:53 198.92.73.104.in-addr.arpa udp
US 8.8.8.8:53 84.211.89.185.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 19.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 168.81.95.34.in-addr.arpa udp
US 8.8.8.8:53 209.10.26.104.in-addr.arpa udp
US 8.8.8.8:53 2.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 88.176.137.45.in-addr.arpa udp
US 8.8.8.8:53 9.74.33.63.in-addr.arpa udp
US 8.8.8.8:53 pixel.tapad.com udp
US 34.111.113.62:443 pixel.tapad.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
NL 128.116.21.4:443 udp
US 104.22.55.209:443 emojipedia.org tcp
US 104.22.4.69:443 id.hadron.ad.gt tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
FR 18.244.28.8:443 hb.yellowblue.io tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
FR 52.222.201.106:443 rtb.primis.tech tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
FR 52.222.201.106:443 rtb.primis.tech udp
NL 178.250.1.7:443 ssp-sync.criteo.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net tcp
US 18.245.199.103:443 video.primis.tech tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
US 8.8.8.8:53 103.199.245.18.in-addr.arpa udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
NL 178.250.1.7:443 ssp-sync.criteo.com tcp
SE 2.21.97.11:443 qsearch-a.akamaihd.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
GB 216.58.204.70:443 s0.2mdn.net tcp
US 104.22.55.209:443 emojipedia.org tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 8.8.8.8:53 api.rlcdn.com udp
US 8.8.8.8:53 id.crwdcntrl.net udp
BE 23.55.98.169:443 eus.rubiconproject.com tcp
SE 104.73.92.198:443 ads.pubmatic.com tcp
US 8.8.8.8:53 csi.gstatic.com udp
US 34.120.133.55:443 api.rlcdn.com tcp
IE 52.215.133.162:443 id.crwdcntrl.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
DE 142.250.186.67:443 csi.gstatic.com tcp
US 44.195.167.64:443 i.liadm.com tcp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 ad.turn.com udp
NL 185.89.210.244:443 ib.adnxs.com tcp
US 8.8.8.8:53 ads.stickyadstv.com udp
US 8.8.8.8:53 d.adroll.com udp
US 8.8.8.8:53 cm.adgrx.com udp
US 52.223.40.198:443 match.adsrvr.org tcp
NL 154.57.158.116:443 ads.stickyadstv.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
IE 63.34.207.242:443 pr-bh.ybp.yahoo.com tcp
IE 54.217.19.5:443 cm.adgrx.com tcp
IE 3.248.2.68:443 d.adroll.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
DE 142.250.186.67:443 csi.gstatic.com udp
US 8.8.8.8:53 67.186.250.142.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 55.133.120.34.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 242.207.34.63.in-addr.arpa udp
US 8.8.8.8:53 116.158.57.154.in-addr.arpa udp
US 8.8.8.8:53 5.19.217.54.in-addr.arpa udp
US 8.8.8.8:53 68.2.248.3.in-addr.arpa udp
US 104.16.125.108:443 em-content.zobj.net tcp
US 104.18.21.206:443 a.pub.network udp
US 151.101.1.194:443 confiant-integrations.global.ssl.fastly.net tcp
US 104.22.75.216:443 btloader.com tcp
US 3.165.113.80:443 cmp.quantcast.com tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
DE 91.228.74.244:443 secure.quantserve.com tcp
US 52.46.143.56:443 s.amazon-adsystem.com tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
US 34.160.152.31:443 d.pub.network udp
US 34.160.152.31:443 d.pub.network udp
US 8.8.8.8:53 b.pub.network udp
US 8.8.8.8:53 csm.nl3.eu.criteo.net udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 34.111.152.239:443 optimise.net udp
US 34.160.128.112:443 api.floors.dev tcp
US 34.160.152.31:443 d.pub.network udp
GB 142.250.187.226:443 googleads.g.doubleclick.net tcp
US 104.22.75.216:443 btloader.com tcp
US 8.8.8.8:53 25.1.250.178.in-addr.arpa udp
US 172.67.69.19:443 ad-delivery.net tcp
US 35.163.32.127:443 a.usbrowserspeed.com tcp
DE 162.19.138.117:443 id5-sync.com tcp
US 8.8.8.8:53 lexicon.33across.com udp
US 8.8.8.8:53 fid.agkn.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 idx.liadm.com udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 35.244.193.51:443 lexicon.33across.com tcp
US 34.160.46.1:443 fid.agkn.com tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 52.203.17.133:443 idx.liadm.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 162.19.138.83:443 id5-sync.com tcp
US 8.8.8.8:53 131c0283695505e00e36b1f176390942.safeframe.googlesyndication.com udp
GB 172.217.169.65:443 131c0283695505e00e36b1f176390942.safeframe.googlesyndication.com tcp
US 18.245.199.103:443 video.primis.tech udp
US 52.203.17.133:443 idx.liadm.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
US 8.8.8.8:53 rp.liadm.com udp
US 3.220.177.122:443 rp.liadm.com tcp
US 8.8.8.8:53 51.193.244.35.in-addr.arpa udp
US 172.67.69.73:443 a.remarketstats.com tcp
US 8.8.8.8:53 cat.nl3.eu.criteo.com udp
US 8.8.8.8:53 protected-by.clarium.io udp
US 8.8.8.8:53 reports.intentiq.com udp
US 107.23.79.111:443 reports.intentiq.com tcp
IE 54.73.156.89:443 protected-by.clarium.io tcp
NL 178.250.1.6:443 cat.nl3.eu.criteo.com tcp
NL 178.250.1.17:443 ads.eu.criteo.com tcp
US 44.195.167.64:443 i.liadm.com tcp
NL 178.250.1.17:443 ads.eu.criteo.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.6:443 cat.nl3.eu.criteo.com tcp
NL 178.250.1.24:443 measurement-api.criteo.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.24:443 measurement-api.criteo.com tcp
NL 178.250.1.9:443 widget.nl3.eu.criteo.com tcp
NL 178.250.1.9:443 widget.nl3.eu.criteo.com tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
NL 178.250.1.15:443 imageproxy.eu.criteo.net tcp
NL 178.250.1.15:443 imageproxy.eu.criteo.net tcp
NL 178.250.1.15:443 imageproxy.eu.criteo.net tcp
GB 216.58.213.2:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 sync-t1.taboola.com udp
US 8.8.8.8:53 r.casalemedia.com udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
US 8.8.8.8:53 sync.1rx.io udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 ad.360yield.com udp
BE 23.55.96.24:443 contextual.media.net udp
US 8.8.8.8:53 matching.ivitrack.com udp
DE 162.19.138.117:443 id5-sync.com tcp
US 34.117.157.22:443 matching.ivitrack.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
IE 54.246.180.244:443 ad.360yield.com tcp
NL 81.17.55.106:443 rtb-csync.smartadserver.com tcp
US 172.64.151.101:443 r.casalemedia.com tcp
DK 37.157.6.237:443 cm.adform.net tcp
NL 178.250.1.9:443 widget.nl3.eu.criteo.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 141.226.228.48:443 sync-t1.taboola.com tcp
US 8.8.8.8:53 111.79.23.107.in-addr.arpa udp
US 8.8.8.8:53 24.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 15.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 133.17.203.52.in-addr.arpa udp
US 8.8.8.8:53 exchange.mediavine.com udp
US 8.8.8.8:53 dpm.demdex.net udp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 sync.outbrain.com udp
US 8.8.8.8:53 simage2.pubmatic.com udp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 178.250.1.17:443 ads.eu.criteo.com tcp
NL 178.250.1.6:443 cat.nl3.eu.criteo.com tcp
US 8.8.8.8:53 criteo-sync.teads.tv udp
IE 79.125.35.115:443 dpm.demdex.net tcp
IE 79.125.35.115:443 dpm.demdex.net tcp
US 8.8.8.8:53 criteo-partners.tremorhub.com udp
US 104.17.24.14:443 cdnjs.cloudflare.com tcp
DE 3.72.214.157:443 exchange.mediavine.com tcp
IE 54.73.156.89:443 protected-by.clarium.io tcp
US 107.23.79.111:443 reports.intentiq.com tcp
IE 52.50.65.213:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 eb2.3lift.com udp
DE 35.156.183.76:443 match.sharethrough.com tcp
US 13.248.245.213:443 eb2.3lift.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
BE 23.55.97.75:443 criteo-sync.teads.tv tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
US 52.20.237.219:443 criteo-partners.tremorhub.com tcp
US 64.74.236.191:443 sync.outbrain.com tcp
IE 52.215.133.162:443 id.crwdcntrl.net tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
SE 104.73.93.71:443 ad.yieldlab.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
NL 178.250.1.17:443 ads.eu.criteo.com tcp
NL 178.250.1.6:443 cat.nl3.eu.criteo.com tcp
IE 54.76.5.210:443 sync-criteo.ads.yieldmo.com tcp
DE 52.57.190.200:443 e1.emxdgt.com tcp
NL 178.250.1.24:443 measurement-api.criteo.com tcp
DK 37.157.6.243:443 c1.adform.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 8.8.8.8:53 237.6.157.37.in-addr.arpa udp
US 8.8.8.8:53 48.228.226.141.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 14.24.17.104.in-addr.arpa udp
US 8.8.8.8:53 157.214.72.3.in-addr.arpa udp
US 8.8.8.8:53 213.65.50.52.in-addr.arpa udp
US 8.8.8.8:53 213.245.248.13.in-addr.arpa udp
US 8.8.8.8:53 75.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 205.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 76.183.156.35.in-addr.arpa udp
US 8.8.8.8:53 219.237.20.52.in-addr.arpa udp
US 8.8.8.8:53 191.236.74.64.in-addr.arpa udp
US 8.8.8.8:53 71.93.73.104.in-addr.arpa udp
NL 35.214.149.91:443 x.bidswitch.net tcp
IE 54.220.241.253:443 ads.yieldmo.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 44.195.167.64:443 i.liadm.com tcp
NL 154.57.158.116:443 ads.stickyadstv.com tcp
IE 34.248.189.186:443 match.prod.bidr.io tcp
US 104.18.25.173:443 a.tribalfusion.com tcp
US 34.160.19.107:443 dmp.brand-display.com tcp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
DE 91.228.74.244:443 cms.quantserve.com tcp
US 8.8.8.8:53 casale-match.dotomi.com udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 trace.mediago.io udp
IE 63.34.207.242:443 pr-bh.ybp.yahoo.com tcp
SE 104.73.92.22:443 c21lg-d.media.net tcp
US 34.96.71.22:443 s.company-target.com tcp
US 52.72.252.114:443 sync.srv.stackadapt.com tcp
US 35.208.249.213:443 trace.mediago.io tcp
NL 89.207.16.201:443 casale-match.dotomi.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
DE 3.69.181.182:443 1f2e7.v.fwmrm.net tcp
US 104.18.25.173:443 a.tribalfusion.com udp
US 104.18.36.155:443 dsum.casalemedia.com tcp
US 8.8.8.8:53 186.189.248.34.in-addr.arpa udp
US 8.8.8.8:53 107.19.160.34.in-addr.arpa udp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 22.71.96.34.in-addr.arpa udp
US 8.8.8.8:53 201.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 114.252.72.52.in-addr.arpa udp
US 8.8.8.8:53 213.249.208.35.in-addr.arpa udp
US 8.8.8.8:53 182.181.69.3.in-addr.arpa udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 18.245.199.103:443 video.primis.tech udp
N/A 127.0.0.1:60088 tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53172 udp
N/A 127.0.0.1:60103 tcp
N/A 127.0.0.1:60105 tcp
N/A 127.0.0.1:60107 tcp
N/A 127.0.0.1:60128 tcp
N/A 127.0.0.1:60253 tcp
N/A 127.0.0.1:60292 tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
US 8.8.8.8:53 voice.roblox.com udp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
US 8.8.8.8:53 groups.roblox.com udp
NL 128.116.21.4:443 groups.roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-ad4e2ea09579.superbiz.gg tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
FR 3.162.38.122:443 c6.rbxcdn.com tcp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 analytics-api-5968537435-d54b50a903f0.superbiz.gg udp
NL 128.116.21.4:443 economy.roblox.com tcp
US 104.21.5.162:443 analytics-api-5968537435-d54b50a903f0.superbiz.gg tcp
BE 2.17.107.147:443 c7.rbxcdn.com tcp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 122.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 147.107.17.2.in-addr.arpa udp
NL 128.116.21.4:443 accountsettings.roblox.com tcp
US 8.8.8.8:53 avatar.roblox.com udp
NL 128.116.21.4:443 avatar.roblox.com tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-567c7d0bbf9a.superbiz.gg udp
US 8.8.8.8:53 users.roblox.com udp
US 172.67.133.158:443 analytics-api-5968537435-567c7d0bbf9a.superbiz.gg tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
US 8.8.8.8:53 locale.roblox.com udp
NL 128.116.21.4:443 locale.roblox.com tcp
NL 128.116.21.4:443 locale.roblox.com tcp
NL 128.116.21.4:443 locale.roblox.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:60430 tcp
N/A 127.0.0.1:60437 tcp
N/A 127.0.0.1:60439 tcp
N/A 127.0.0.1:60441 tcp
N/A 127.0.0.1:60443 tcp
US 8.8.8.8:53 udp
US 8.8.8.8:53 udp
N/A 127.0.0.1:60451 tcp
N/A 127.0.0.1:60468 tcp
N/A 127.0.0.1:60611 tcp
US 8.8.8.8:53 friends.roblox.com udp
NL 128.116.21.4:443 friends.roblox.com tcp
US 8.8.8.8:53 inventory.roblox.com udp
NL 128.116.21.4:443 inventory.roblox.com tcp
NL 128.116.21.4:443 udp
US 8.8.8.8:53 develop.roblox.com udp
NL 128.116.21.4:443 develop.roblox.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
N/A 127.0.0.1:60657 tcp
N/A 127.0.0.1:60659 tcp
N/A 127.0.0.1:60661 tcp
N/A 127.0.0.1:60666 tcp
US 8.8.8.8:53 analytics-api-5968537435-b9574ad2730e.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-b9574ad2730e.superbiz.gg tcp
N/A 127.0.0.1:60709 tcp
N/A 127.0.0.1:60711 tcp
N/A 127.0.0.1:60715 tcp
N/A 127.0.0.1:60717 tcp
N/A 127.0.0.1:60721 tcp
N/A 127.0.0.1:59368 udp
N/A 127.0.0.1:60723 tcp
N/A 127.0.0.1:60739 tcp
N/A 127.0.0.1:60742 tcp
N/A 127.0.0.1:60747 tcp
N/A 127.0.0.1:60749 tcp
N/A 127.0.0.1:60758 tcp
N/A 127.0.0.1:60763 tcp
N/A 127.0.0.1:60765 tcp
N/A 127.0.0.1:60778 tcp
N/A 127.0.0.1:60798 tcp
N/A 127.0.0.1:60817 tcp
N/A 127.0.0.1:60819 tcp
N/A 127.0.0.1:60840 tcp
N/A 127.0.0.1:60845 tcp
N/A 127.0.0.1:60929 tcp
N/A 127.0.0.1:61013 tcp
N/A 127.0.0.1:61015 tcp
N/A 127.0.0.1:61042 tcp
N/A 127.0.0.1:61045 tcp
N/A 127.0.0.1:61059 tcp
N/A 127.0.0.1:61070 tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
N/A 127.0.0.1:55542 udp
N/A 127.0.0.1:61146 tcp
N/A 127.0.0.1:61151 tcp
N/A 127.0.0.1:61318 tcp
N/A 127.0.0.1:61320 tcp
N/A 127.0.0.1:61444 tcp
N/A 127.0.0.1:61446 tcp
N/A 127.0.0.1:61448 tcp
N/A 127.0.0.1:61450 tcp
N/A 127.0.0.1:55564 udp
N/A 127.0.0.1:61475 tcp
N/A 127.0.0.1:61477 tcp
N/A 127.0.0.1:61479 tcp
N/A 127.0.0.1:61500 tcp
N/A 127.0.0.1:61585 tcp
N/A 127.0.0.1:61611 tcp
N/A 127.0.0.1:61684 tcp
N/A 127.0.0.1:61687 tcp
N/A 127.0.0.1:61689 tcp
N/A 127.0.0.1:61755 tcp
N/A 127.0.0.1:60599 udp
N/A 127.0.0.1:61817 tcp
N/A 127.0.0.1:61820 tcp
N/A 127.0.0.1:61977 tcp
N/A 127.0.0.1:61985 tcp
N/A 127.0.0.1:62067 tcp
N/A 127.0.0.1:62094 tcp
N/A 127.0.0.1:62235 tcp
N/A 127.0.0.1:62301 tcp
N/A 127.0.0.1:62303 tcp
N/A 127.0.0.1:86 tcp
N/A 127.0.0.1:63692 tcp
N/A 127.0.0.1:64555 tcp
N/A 127.0.0.1:64561 tcp
N/A 127.0.0.1:56963 udp
N/A 127.0.0.1:64574 tcp
N/A 127.0.0.1:64579 tcp
N/A 127.0.0.1:64581 tcp
N/A 127.0.0.1:64583 tcp
N/A 127.0.0.1:64586 tcp
N/A 127.0.0.1:64601 tcp
N/A 127.0.0.1:64640 tcp
N/A 127.0.0.1:64642 tcp
N/A 127.0.0.1:64694 tcp
N/A 127.0.0.1:64733 tcp
N/A 127.0.0.1:64737 tcp
N/A 127.0.0.1:64739 tcp
N/A 127.0.0.1:64821 tcp
N/A 127.0.0.1:64823 tcp
N/A 127.0.0.1:64825 tcp
N/A 127.0.0.1:64844 tcp
N/A 127.0.0.1:64846 tcp
N/A 127.0.0.1:64873 tcp
N/A 127.0.0.1:64885 tcp
N/A 127.0.0.1:64888 tcp
N/A 127.0.0.1:64965 tcp
N/A 127.0.0.1:65154 tcp
N/A 127.0.0.1:65156 tcp
N/A 127.0.0.1:65158 tcp
N/A 127.0.0.1:65160 tcp
N/A 127.0.0.1:65162 tcp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c52.gcp.gvt2.com udp
US 35.215.90.198:443 e2c52.gcp.gvt2.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.127.77.137:443 btlr.sharethrough.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:65177 tcp
NL 128.116.21.4:443 ecsv2.roblox.com tcp
US 192.178.49.163:443 beacons.gvt2.com udp
US 8.8.8.8:53 198.90.215.35.in-addr.arpa udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
CA 35.215.54.231:443 e2c45.gcp.gvt2.com tcp
US 192.178.49.163:443 beacons.gvt2.com tcp
US 8.8.8.8:53 231.54.215.35.in-addr.arpa udp
US 35.190.80.1:443 tcp
US 35.190.80.1:443 udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 e2c60.gcp.gvt2.com udp
US 34.174.255.69:443 e2c60.gcp.gvt2.com tcp
US 8.8.8.8:53 69.255.174.34.in-addr.arpa udp
US 192.178.49.163:443 beacons.gvt2.com tcp
NL 178.250.1.25:443 csm.eu.criteo.net tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c18.gcp.gvt2.com udp
DE 34.98.33.162:443 e2c18.gcp.gvt2.com tcp
US 8.8.8.8:53 156.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 154.188.125.3.in-addr.arpa udp
US 192.178.49.163:443 beacons.gvt2.com udp
NL 185.89.211.84:443 ib.adnxs.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.211.84:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 assetgame.roblox.com udp
NL 128.116.21.4:443 assetgame.roblox.com tcp
N/A 127.0.0.1:65290 tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c42.gcp.gvt2.com udp
DE 35.207.191.46:443 e2c42.gcp.gvt2.com tcp
US 8.8.8.8:53 46.191.207.35.in-addr.arpa udp
US 192.178.49.163:443 beacons.gvt2.com udp
NL 185.89.211.84:443 ib.adnxs.com tcp
US 8.8.8.8:53 btlr.sharethrough.com udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 35.190.80.1:443 udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
IT 142.251.209.35:443 beacons2.gvt2.com tcp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 63.78.126.3.in-addr.arpa udp
US 8.8.8.8:53 35.209.251.142.in-addr.arpa udp
IT 142.251.209.35:443 beacons2.gvt2.com udp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 34.212.112.243:443 prod.tahoe-analytics.publishers.advertising.a2z.com tcp
US 8.8.8.8:53 243.112.212.34.in-addr.arpa udp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 avatar.roblox.com udp
NL 128.116.21.4:443 avatar.roblox.com tcp
US 8.8.8.8:53 assetdelivery.roblox.com udp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
NL 128.116.21.4:443 assetdelivery.roblox.com tcp
US 8.8.8.8:53 games.roblox.com udp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
NL 128.116.21.4:443 games.roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
FR 3.162.38.116:443 c6.rbxcdn.com tcp
N/A 127.0.0.1:65399 tcp
N/A 127.0.0.1:65401 tcp
N/A 127.0.0.1:65404 tcp
N/A 127.0.0.1:65410 tcp
N/A 127.0.0.1:65414 tcp
N/A 127.0.0.1:58298 udp
N/A 127.0.0.1:65424 tcp
N/A 127.0.0.1:65426 tcp
N/A 127.0.0.1:65430 tcp
N/A 127.0.0.1:65432 tcp
N/A 127.0.0.1:65475 tcp
N/A 127.0.0.1:65496 tcp
N/A 127.0.0.1:65498 tcp
US 8.8.8.8:53 analytics-api-5968537435-867c70767ce6.superbiz.gg udp
NL 128.116.21.4:443 apis.roblox.com tcp
US 172.67.133.158:443 analytics-api-5968537435-867c70767ce6.superbiz.gg tcp
N/A 127.0.0.1:65534 tcp
US 8.8.8.8:53 analytics-api-5968537435-5656cdec2872.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-5656cdec2872.superbiz.gg tcp
FR 3.162.38.100:443 c7.rbxcdn.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
NL 128.116.21.4:443 apis.roblox.com tcp
US 8.8.8.8:53 116.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 100.38.162.3.in-addr.arpa udp
NL 128.116.21.4:443 csm.roblox.com tcp
N/A 127.0.0.1:49182 tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 128.116.21.4:443 csm.roblox.com tcp
N/A 127.0.0.1:49209 tcp
N/A 127.0.0.1:49211 tcp
N/A 127.0.0.1:49213 tcp
N/A 127.0.0.1:49215 tcp
N/A 127.0.0.1:49223 tcp
N/A 127.0.0.1:49228 tcp
N/A 127.0.0.1:49255 tcp
N/A 127.0.0.1:49257 tcp
N/A 127.0.0.1:49311 tcp
N/A 127.0.0.1:49313 tcp
US 8.8.8.8:53 analytics-api-5968537435-66ed4ce36d1e.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-66ed4ce36d1e.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
N/A 127.0.0.1:49323 tcp
NL 128.116.21.4:443 csm.roblox.com tcp
N/A 127.0.0.1:49357 tcp
N/A 127.0.0.1:49360 tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.126.78.63:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 8.8.8.8:53 btlr.sharethrough.com udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 analytics-api-5968537435-9d4948ffdfd4.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-9d4948ffdfd4.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-377041a14e53.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-377041a14e53.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-d66657e0047e.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-d66657e0047e.superbiz.gg tcp
NL 128.116.21.4:443 csm.roblox.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:49412 tcp
N/A 127.0.0.1:49565 tcp
N/A 127.0.0.1:49624 tcp
N/A 127.0.0.1:49628 tcp
NL 128.116.21.4:443 csm.roblox.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 ephemeralcounters.api.roblox.com udp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:49694 tcp
N/A 127.0.0.1:49696 tcp
N/A 127.0.0.1:49698 tcp
N/A 127.0.0.1:49700 tcp
NL 128.116.21.4:443 ephemeralcounters.api.roblox.com tcp
N/A 127.0.0.1:49709 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.125.188.154:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 8.8.8.8:53 btlr.sharethrough.com udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:62591 udp
US 8.8.8.8:53 analytics-api-5968537435-9df50c3cf2f2.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-9df50c3cf2f2.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-66b5a658c723.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-66b5a658c723.superbiz.gg tcp
N/A 127.0.0.1:49781 tcp
N/A 127.0.0.1:49817 tcp
US 8.8.8.8:53 analytics-api-5968537435-c64465f72875.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-c64465f72875.superbiz.gg tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
N/A 127.0.0.1:49907 tcp
N/A 127.0.0.1:49966 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 analytics-api-5968537435-886540725dad.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-886540725dad.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-9e2aead4e733.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-9e2aead4e733.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-ea6cc47f4646.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-eb2affad0b57.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-b888a8a2c845.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-b888a8a2c845.superbiz.gg tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:50056 tcp
US 8.8.8.8:53 analytics-api-5968537435-9cfbe5653f00.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-9cfbe5653f00.superbiz.gg tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:50255 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.122.70.44:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 btlr.sharethrough.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
N/A 127.0.0.1:50260 tcp
N/A 127.0.0.1:50282 tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 tr.rbxcdn.com udp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:50292 tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:50345 tcp
N/A 127.0.0.1:50348 tcp
US 8.8.8.8:53 develop.roblox.com udp
NL 128.116.21.4:443 develop.roblox.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.195.31.45:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:50401 tcp
US 8.8.8.8:53 www.roblox.com udp
NL 128.116.21.4:443 www.roblox.com tcp
N/A 127.0.0.1:50431 tcp
N/A 127.0.0.1:50439 tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 128.116.21.4:443 www.roblox.com tcp
NL 128.116.21.4:443 www.roblox.com tcp
NL 128.116.21.4:443 www.roblox.com tcp
NL 128.116.21.4:443 www.roblox.com tcp
BE 104.68.69.233:443 clientsettingscdn.roblox.com tcp
NL 128.116.21.4:443 www.roblox.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 8.8.8.8:53 btlr.sharethrough.com udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
DE 3.67.209.193:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
N/A 127.0.0.1:51754 tcp
N/A 127.0.0.1:51766 tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
N/A 127.0.0.1:51810 tcp
N/A 127.0.0.1:51818 tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
NL 128.116.21.4:443 users.roblox.com tcp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
N/A 127.0.0.1:51840 tcp
N/A 127.0.0.1:51843 tcp
N/A 127.0.0.1:51846 tcp
N/A 127.0.0.1:51848 tcp
N/A 127.0.0.1:51850 tcp
N/A 127.0.0.1:51855 tcp
N/A 127.0.0.1:51862 tcp
NL 128.116.21.4:443 realtime-signalr.roblox.com tcp
US 8.8.8.8:53 gamejoin.roblox.com udp
NL 128.116.21.4:443 gamejoin.roblox.com tcp
NL 128.116.21.4:443 gamejoin.roblox.com tcp
NL 128.116.21.4:443 gamejoin.roblox.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 2.18.121.18:443 tr.rbxcdn.com tcp
NL 128.116.21.4:443 gamejoin.roblox.com tcp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 t6.rbxcdn.com udp
NL 128.116.21.4:443 economy.roblox.com tcp
FR 3.162.38.108:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 108.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 avatar.roblox.com udp
GB 128.116.33.33:63753 udp
NL 128.116.21.4:443 avatar.roblox.com tcp
NL 128.116.21.4:443 avatar.roblox.com tcp
NL 128.116.21.4:443 avatar.roblox.com tcp
US 8.8.8.8:53 clientsettings.roblox.com udp
NL 128.116.21.4:443 clientsettings.roblox.com tcp
US 8.8.8.8:53 chat.roblox.com udp
NL 128.116.21.4:443 chat.roblox.com tcp
N/A 127.0.0.1:51869 tcp
N/A 127.0.0.1:51872 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.67.209.193:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53117 tcp
N/A 127.0.0.1:53122 tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
N/A 127.0.0.1:53125 tcp
N/A 127.0.0.1:53127 tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 3.67.209.193:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53512 tcp
N/A 127.0.0.1:53514 tcp
N/A 127.0.0.1:53516 tcp
N/A 127.0.0.1:53518 tcp
N/A 127.0.0.1:53520 tcp
N/A 127.0.0.1:53522 tcp
N/A 127.0.0.1:53524 tcp
N/A 127.0.0.1:53526 tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
NL 128.116.21.4:443 chat.roblox.com tcp
N/A 127.0.0.1:53541 tcp
N/A 127.0.0.1:53544 tcp
US 192.178.49.195:443 beacons.gcp.gvt2.com udp
US 192.178.49.195:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 gameinternationalization.roblox.com udp
US 8.8.8.8:53 voice.roblox.com udp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
US 8.8.8.8:53 c6.rbxcdn.com udp
US 18.245.175.46:443 c6.rbxcdn.com tcp
N/A 127.0.0.1:53548 tcp
N/A 127.0.0.1:53553 tcp
N/A 127.0.0.1:53562 tcp
N/A 127.0.0.1:53565 tcp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
NL 128.116.21.4:443 voice.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-49ce8515f6ae.superbiz.gg udp
US 8.8.8.8:53 groups.roblox.com udp
US 104.21.5.162:443 analytics-api-5968537435-49ce8515f6ae.superbiz.gg tcp
NL 128.116.21.4:443 groups.roblox.com tcp
US 8.8.8.8:53 c7.rbxcdn.com udp
FR 3.162.38.38:443 c7.rbxcdn.com tcp
FR 3.162.38.38:443 c7.rbxcdn.com tcp
US 104.21.5.162:443 analytics-api-5968537435-49ce8515f6ae.superbiz.gg tcp
US 8.8.8.8:53 38.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 accountsettings.roblox.com udp
NL 128.116.21.4:443 accountsettings.roblox.com tcp
NL 128.116.21.4:443 accountsettings.roblox.com tcp
US 8.8.8.8:53 locale.roblox.com udp
NL 128.116.21.4:443 locale.roblox.com tcp
NL 128.116.21.4:443 locale.roblox.com tcp
NL 128.116.21.4:443 locale.roblox.com tcp
NL 128.116.21.4:443 locale.roblox.com tcp
US 8.8.8.8:53 csm.roblox.com udp
NL 128.116.21.4:443 csm.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-861262e87f87.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-861262e87f87.superbiz.gg tcp
US 8.8.8.8:53 friends.roblox.com udp
NL 128.116.21.4:443 friends.roblox.com tcp
NL 128.116.21.4:443 friends.roblox.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
DE 3.67.209.193:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53692 tcp
N/A 127.0.0.1:53694 tcp
N/A 127.0.0.1:57466 udp
N/A 127.0.0.1:53707 tcp
N/A 127.0.0.1:53710 tcp
N/A 127.0.0.1:53715 tcp
N/A 127.0.0.1:53722 tcp
N/A 127.0.0.1:53726 tcp
N/A 127.0.0.1:53739 tcp
N/A 127.0.0.1:53770 tcp
N/A 127.0.0.1:53809 tcp
N/A 127.0.0.1:53823 tcp
N/A 127.0.0.1:53825 tcp
N/A 127.0.0.1:53839 tcp
DE 3.67.209.193:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53852 tcp
N/A 127.0.0.1:53857 tcp
N/A 127.0.0.1:53860 tcp
US 8.8.8.8:53 analytics-api-5968537435-1941207c29ad.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-1941207c29ad.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-b2cd15169fdf.superbiz.gg udp
US 104.21.5.162:443 analytics-api-5968537435-b2cd15169fdf.superbiz.gg tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
US 8.8.8.8:53 client-telemetry.roblox.com udp
US 8.8.8.8:53 215.167.157.35.in-addr.arpa udp
NL 128.116.21.3:443 client-telemetry.roblox.com tcp
US 8.8.8.8:53 analytics-api-5968537435-cf96bbb094b2.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-cf96bbb094b2.superbiz.gg tcp
US 8.8.8.8:53 analytics-api-5968537435-fd20f802018d.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-fd20f802018d.superbiz.gg tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
NL 185.89.210.82:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 analytics-api-5968537435-3b19e300e2e4.superbiz.gg udp
US 172.67.133.158:443 analytics-api-5968537435-3b19e300e2e4.superbiz.gg tcp
N/A 127.0.0.1:53892 tcp
N/A 127.0.0.1:53910 tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 ib.adnxs.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
N/A 127.0.0.1:53944 tcp
N/A 127.0.0.1:53947 tcp
N/A 127.0.0.1:53950 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:53973 tcp
FR 52.222.201.106:443 rtb.primis.tech udp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
DE 35.157.167.215:443 btlr.sharethrough.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
DE 3.67.30.220:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 220.30.67.3.in-addr.arpa udp
NL 185.89.210.141:443 ib.adnxs.com tcp
DE 3.67.30.220:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 prebid.adnxs.com udp
NL 185.89.208.11:443 prebid.adnxs.com tcp
US 8.8.8.8:53 11.208.89.185.in-addr.arpa udp
US 8.8.8.8:53 prebid-am.casalemedia.com udp
NL 185.80.36.155:443 prebid-am.casalemedia.com tcp
US 8.8.8.8:53 svastx.moatads.com udp
SE 104.73.93.162:443 svastx.moatads.com tcp
US 8.8.8.8:53 155.36.80.185.in-addr.arpa udp
US 8.8.8.8:53 162.93.73.104.in-addr.arpa udp
US 8.8.8.8:53 servedby.flashtalking.com udp
BE 104.68.68.28:443 servedby.flashtalking.com tcp
US 8.8.8.8:53 z.moatads.com udp
US 8.8.8.8:53 cdn.flashtalking.com udp
BE 23.55.96.51:443 cdn.flashtalking.com tcp
US 8.8.8.8:53 px.moatads.com udp
US 8.8.8.8:53 ad-events.flashtalking.com udp
US 8.8.8.8:53 28.68.68.104.in-addr.arpa udp
US 8.8.8.8:53 51.96.55.23.in-addr.arpa udp
US 8.8.8.8:53 obo.moatads.com udp
US 8.8.8.8:53 data.ad-score.com udp
BE 104.68.68.28:443 servedby.flashtalking.com tcp
US 52.223.40.198:443 match.adsrvr.org tcp
US 130.211.115.4:443 data.ad-score.com tcp
GB 18.133.176.171:443 ad-events.flashtalking.com tcp
US 8.8.8.8:53 a663.casalemedia.com udp
CA 85.91.47.34:443 a663.casalemedia.com tcp
BE 23.55.96.51:443 cdn.flashtalking.com tcp
US 52.223.6.21:443 ie1-bid.adsrvr.org tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
US 130.211.115.4:443 data.ad-score.com tcp
US 34.160.152.31:443 c.pub.network udp
US 8.8.8.8:53 171.176.133.18.in-addr.arpa udp
US 8.8.8.8:53 4.115.211.130.in-addr.arpa udp
US 8.8.8.8:53 34.47.91.85.in-addr.arpa udp
US 8.8.8.8:53 31.254.248.13.in-addr.arpa udp
US 8.8.8.8:53 21.6.223.52.in-addr.arpa udp
GB 18.133.176.171:443 ad-events.flashtalking.com tcp
SE 104.73.93.162:443 obo.moatads.com tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
GB 18.133.176.171:443 ad-events.flashtalking.com tcp
SE 104.73.93.162:443 obo.moatads.com tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
GB 18.133.176.171:443 ad-events.flashtalking.com tcp
SE 104.73.93.162:443 obo.moatads.com tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
GB 18.133.176.171:443 ad-events.flashtalking.com tcp
SE 104.73.93.162:443 obo.moatads.com tcp
US 13.248.254.31:443 enduser.adsrvr.org tcp
DE 3.67.30.220:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 172.64.151.101:443 htlb.casalemedia.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
NL 2.18.121.34:443 tr.rbxcdn.com tcp
DE 3.67.30.220:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 8.8.8.8:53 c3.rbxcdn.com udp
FR 3.162.38.128:443 c3.rbxcdn.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
NL 128.116.21.4:443 thumbnails.roblox.com tcp
US 18.245.175.34:443 c2.rbxcdn.com tcp
US 8.8.8.8:53 c4.rbxcdn.com udp
US 8.8.8.8:53 t5.rbxcdn.com udp
FR 3.162.38.96:443 c4.rbxcdn.com tcp
FR 52.222.149.41:443 t5.rbxcdn.com tcp
US 8.8.8.8:53 41.149.222.52.in-addr.arpa udp
NL 185.89.210.141:443 ib.adnxs.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 18.159.20.121:443 btlr.sharethrough.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 121.20.159.18.in-addr.arpa udp
DE 18.159.20.121:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
N/A 127.0.0.1:54234 tcp
N/A 127.0.0.1:54237 tcp
N/A 127.0.0.1:54239 tcp
N/A 127.0.0.1:54241 tcp
N/A 127.0.0.1:54243 tcp
N/A 127.0.0.1:54245 tcp
N/A 127.0.0.1:54247 tcp
N/A 127.0.0.1:54249 tcp
N/A 127.0.0.1:54251 tcp
N/A 127.0.0.1:54297 tcp
N/A 127.0.0.1:54300 tcp
N/A 127.0.0.1:54305 tcp
N/A 127.0.0.1:54322 tcp
N/A 127.0.0.1:54329 tcp
N/A 127.0.0.1:54331 tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 185.89.210.141:443 ib.adnxs.com tcp
DE 18.159.20.121:443 btlr.sharethrough.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com udp
NL 142.250.27.84:443 accounts.google.com tcp

Files

\??\pipe\crashpad_2964_SIPFSQUVZWWDWHEA

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3dfd8b9ba001cf5406e5286d4f0e6c1a
SHA1 710aaf5c72f3a3bbb9059c5b58a549152684e025
SHA256 39be1495a5caeece2a263f854024a3d2fc16dfe28abce6afdd692ead556a8bd1
SHA512 d49efa32b708c485bbecd80e8c7feea9a779245c69336eaa6057729bb1fdbefd8d4ce7d6e31dd6966c6b03975258d731058544ec5945e7c605f9ebc005cf53f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 88118e31ee5a49e1c5512e12faa1336b
SHA1 45a67e06fbd7f2ee70b082de0de6729d4cd3feae
SHA256 f657d502df5eeaf0916f31bc0a8d32532fa12206d20de8e58c9bbc0928b20798
SHA512 6a81a016e9af7ab0c08bfa5f37dfbb07b995c9f690c4eb3bbe137f04875c3cda626bbac9245ad869fe3eb811fcff64be45d652df44a4bc887f465658000874b3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 411198b085aba2a3f4da7a0b3aa757fa
SHA1 bc1fc5348025ec7bb18a593c93c7aebe95916fe2
SHA256 a3610b5ff4eb84d677f0bde2413ba7c046ba1781f6a1ed46521b601a1474660f
SHA512 e0833bc0e611e5a4f9a72b32418688fe43b35374b3c797df7f897ba595c6fe3b8b43001bae1a90a053af9c8674938e066de2bb708bf44945137893ad348c361c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b09e1070b62176025f07302b5e859f20
SHA1 c122935c18b4bab8c1aee63a5424da879866f160
SHA256 f041ce3fa54726a0415c32364f6ffe5e0f0dfcf007c97ae2ba8b91f1f1d98e9b
SHA512 093d2fc24f1fc90ebc9dd9e371f698670277594585641204201e1f3fc9e6ea587b18b138445451e2da8261138dfe2e5379fb954a9aa502e7deccff79815b0f23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 6bdcc276f0d59e9a092e72e6d6b81707
SHA1 fcc81cba1ce847f12c2a79cf9d8933138212de62
SHA256 741822a67255641b9ffda4195a32be3b8b1efb15330ce04617230363a4a7f698
SHA512 4e1c73be69d562ca6409b9dc8d2f1c90af6101d8fafbb2f7c050ef3d7eb3179a220ddfb7b68566c89195e71210249fc9fd1ac9dad6d230e01d0634010bcd1773

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe580402.TMP

MD5 31562f1925e8de7615a17aef7e0cfcc0
SHA1 99755db1bad1a057ff27dbb7dbb1c4716f832418
SHA256 82ff40a21861aaf86d4dd8496ff5c3a29f97a57ec8bd7b6467429b10d9380b0b
SHA512 35527a75b91d08478283401f026bb9c425c94bcecd9f4bee812c48848407f952bdd03985d7ecaf520f33dfae1c04969734e272bb6af63cfc417b8961f3ccbe4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 13bee3bd2a6097ad763c70eab8bc671f
SHA1 10e23638e8d0401ef13234196c6dff29f6405102
SHA256 0a4a63bc91febb26c09dc907414cba707ff81c13071e7c5f42828ee021917332
SHA512 539de0dc17fd4d2a628f1203c9817a6a0d8e990a6449559a29a5071de419bb2d610bef99b10ef3a946f481d41ce6374e3ce87306ef647f48772f7af46546b275

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 daebcd6f5449e857b2de957fd1b6fac1
SHA1 bc93c88012a1522ac5e26765cd7b4d7efebf66d3
SHA256 3f03d8a66158807aa006e9cdd97e8bf890ea97b8821c0208b71d15e6a69ea9a9
SHA512 ba72ae8e2f9c95dda2a027b034cc9802edaaae5a10f07bba13289a64d8cdb33fc5e9b46e51939d87d6a834261c42bd620a93c4764e04eb48cbd036f39b7a5bfa

C:\Users\Admin\Downloads\ChromeSetup.exe

MD5 98e201744374cd134927cc2536403b85
SHA1 9b431b1df87dadf6a1e94f22672fe621fbfb783b
SHA256 443c01eda3c7fe9fd362f9f865c28e1afaf494dd12c05f7fba8bac4e2a547c01
SHA512 804e1d0cefe1177ed53725a640702723b51601edc6f3af1bfbfad64834611cb8cdc4113f88faf4b8246c8ac91f3815abb2d95c4a55fdbd31c239d31209261611

C:\Users\Admin\Downloads\ChromeSetup.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Windows\SystemTemp\Google3488_332732135\bin\updater.exe

MD5 675c9a53a09d5385bbdb3a43a88f2493
SHA1 71d1c311eadd4d5949c0b48def8ad0f2186bc243
SHA256 ebb428a4c1e29192617e7699513ec78512735110bba68bbee54dee34807094ae
SHA512 e3b1d8351b6d208678673e4c69aea745de5b2576a43d2cf9e06c1ea0780dcbc2ca56d5d5fc712b80309ba7950b90130ca2780185b71c990ea6c6062bd29f5136

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 1e1a1d97b8a24ce958a30791e955b613
SHA1 e6cc47af7e62969adccb7896696333526ed45370
SHA256 3c70d3607f8039b930c81bdf92741b26ba25b8ca1629d5324faa6eb62be04385
SHA512 6bafe34fafe77b10f3102ff7d17fa85257f8e9b44c755b73ac0416ed4d3c2cc1c3359c08cf8fedea9e6c729f95fcaea9e6b604d52a041bf5967257aff80038f2

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 ea08c31aaea8ac2477dba38ed08f7b1e
SHA1 a347eec1954ce28cdde8656e0eeffea0bc46f3ed
SHA256 adb60c25faf6b474d207b467640a3653e9e992911f4c7282bee4542938a466f9
SHA512 2dd908c035668359c1962342801f4d3f681f6cc40880db775860bf7d37a7222e2397cd2fdab068522e814615bede8fc2d2798c3f82461b31822f1a5749c99e9c

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 b225e604308922f239ec186964577a0b
SHA1 e0195cdaac60bf19d71145759c3c985315c3d008
SHA256 51723c21904880baccecc90b35af31304670328a87f825865798e206c92d7e2c
SHA512 dde6fa24366e0c6dafef12e6b666a2a0765d919538707801de7572eadd8d4089d0265c153dfd3a5b4900c9fd1829f3ae1858e5503beaa020cee1d1174fd6d0cd

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 5d8acd1733f5812c93fd815ae13624b0
SHA1 7f9ce3dcd72a6dd5d6677fafd5b796a656dc41b6
SHA256 08376070806a97fea66f2cdb91069e674e6d9e44c536250015f8115a87b37ad3
SHA512 ec81ea3936066d892aae13c2b07a341c44495b36f710ff93b480839d95d3b16176ad45a3ed3955ad5a2dbad7b49a9d089952b22f7c0fb269d9302c33fc2d14f2

C:\Program Files (x86)\Google\GoogleUpdater\127.0.6490.0\Crashpad\settings.dat

MD5 81f0b4e8c5910689e5bbc7a487dd96b9
SHA1 9324b515d9d625d277bbba88360d5b2ce5c4c4f4
SHA256 eac338b2c2e6bbe47654a1a0264ae7fd948d4adbdfedc960e9b16a43723e8614
SHA512 85c2a9daddf02d47a54440f82224a9297f9b27f862db5437d96808bbe195151ea0d97fd68045f3bec780c4050b08da3c71201821a6cc5490d9ef48e4b73dd6d0

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 bdce395b453a0a3ffcf742feb2a210ae
SHA1 8bfc909ac17238d49d93a3668256b92766391452
SHA256 82f7226a5b6be7356507c368ca2468c5d9b7d4a4036fa18d85c6a99e2f0eae41
SHA512 cf4d12cecd6d749990265779d1f9ec5e505b54cf283580f611cd346aaca17816b4c58547bb61c451190c07b651d967f2d03c13b74e2210195514f8087b92288e

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 7136b45ffcac6b52d6873f2864471ea9
SHA1 7afb956fccbfa48ec7fcac07cde0f6059a51a534
SHA256 78f60448736dd9d298a2bc503571a91a8f0c342e95ff8cc589d546e84e7384c2
SHA512 66755a95e16371a527df8b702ba8d686a08678aa0d3257ec4775c5fef8c81d422d7a6ce8aa1fa1c150ebe02f14a0df23776dabc42b6da5ed83b79be956fc2ac7

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 687daed13ee58e6a4022deff85d79802
SHA1 f579e98f7ee36a2f0887535125738780cdf43b41
SHA256 cbad0ff1fd4e12a99667b591518342be838f8bf78b9b8fb5f259c497940bbb23
SHA512 fba218a0b9fa681b9414dd84dd8da00e44d9b516181fbd3deae52c05a4ba3032592b0fc15da8bde023b889163ee6d8478b332b57191613dabd44aad3bdb83bc7

C:\Program Files (x86)\Google\GoogleUpdater\updater.log

MD5 ade03b84ec7bf0a50303286c25c83e7b
SHA1 95fd22f19ae29b38b14346ae03a1bd35708dc55e
SHA256 4d1bd5d68806274fde61a7077759454af1ed50f6b7277ebdd2d80e144aece80a
SHA512 bed5484c1b0a92437e63fe588a1f5ae01d23e70b91ad8edc929656ff2cb05019365129125697ce140523955cd5f86d9e31563ca398ad53d380c3088772dc1a4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 21fda13eaa148adfe6cbf2c55327854b
SHA1 2f47edd1e6947613369e43065b8859f862dbee02
SHA256 82796dffb843f03b6ee330ad6bdcf5083b5fd3ed7dd77f794e58adb03c0649bf
SHA512 f84cce67607523e6d4c2a17638737687e9b637e2e0535bd0390214e91959cd14e42536bb9d9e28904e3f47e353eb1392f1bd7786aba35b5f795403f46c669583

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d9ce0df3c093bc32052ed552d3a87ac0
SHA1 c10ff3eff943e4cd3214bdaadc1f653538328c62
SHA256 57248347ee1135cadd812d8252f743fd755989508ce0a2ecee991ec3010d3fc0
SHA512 0568ce6749927259c4226cd80577c9ec17faa85b4d1e1f5001f4b49b0c47fe7cfe365fae46a2fe1c4c485a82886be3a0ddabb026ca6d65073ea80bdce96b5067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5045a4e8c0202a687700347cb48a5ecf
SHA1 0a3f9f6ad8ac7abaa8efce699430f8148c86cac0
SHA256 994875767ae049e85b9ab920df48c59184a805b780d13242fcb15a75e4bd5abc
SHA512 6b6bcb17874a71735c03107da2f480b97be2fb375d40fda8eb33781a90a0e183ee606332b35f6fbdb1ee686219eca4bfb828c95f462473963436346bd17d4d08

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 4a330089c31c6bd265a43bab6801430b
SHA1 fc6a20f6ae2792b71d9700cf28dd189405881cdb
SHA256 8ccd3f45a95c3be6c6ac0f6b7fd820d2522e0e2a52fb894169196d6284d02f77
SHA512 976e5b1273ff25a67d65d16cd29e4bc3411f493db1cf0239d97136c687274255f7e8b5ea84df6c08511fa064af8de14a8129575679265238db68616d2c4133ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0e78992b6c4d1008575b8911421fb247
SHA1 426448d4d6bbfa1aea21b95b8023055186418910
SHA256 694de08b26e8605ce6404b88ca222eb5b408b45108b4e7e5da5260be276bea97
SHA512 6283e8443cbac7f9f2078cbbed8e2e4b511102daa4569b060a1815cc55c363d8098c8d80f548ab9b33d890e09bbe008e328d2a60e3bb8ecd8ca909445323daef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1

MD5 2372ff29641e88aaa95df5af02f84ca5
SHA1 98ece93605d723010a9b7e2db4bfce9e4f627d9e
SHA256 623d9b06dea8b573d8d6d4b307f7a1756b3bf20985423454fd2853bbf6d02c88
SHA512 eb2f6211a16d37dae582d3948a2ee1b1a7316fdd72a4ae42cdc1d32b982b44b23cabdbd535b8fde570fab94c802f104684ac1b502f7efba083043a2961c4416c

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 7fe1989bb12dee69988abe271478d764
SHA1 9ae297db7769e9c458d7f03cb0a460c9bdda0a3b
SHA256 d862313283602389a23fdc3acce23c111f98b29dc0f197512deb3cace2b7478f
SHA512 3952408d4422835166d89cc9226750c61c226e9d37830ee7b7fe2cf9f19e3bee8eda102e69d73efe006786ca7c3958597f7123008fdd045a3c653b786bda741e

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\CR_D9C64.tmp\setup.exe

MD5 782b0870300882f2977bed8dd60130dc
SHA1 7d081e093c8b1ab6a35e0afdf7fa265dccd7bd3c
SHA256 997e3f4f45950f00532b7cb8b3d9f4a5305a4dfee3bbc426de7b5ebf82774be8
SHA512 149d4fab0e8d110e477f38995d792f401ea4c66894d33488d6249a7b83137b9f08341ed77a3e1f755be034448c0caa8018e6d19572085d0a648c0e538664440d

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping4824_1383994144\30c25332-4bd6-4bee-875e-997d35911775.tmp

MD5 7590be4d7513f0751fb7b7a138b920d2
SHA1 b19cd30e3bb7e49e08fd7b00e3e0ff76cbadae82
SHA256 b748224a19d2bb36bf083aeee81d9bc1b31ed60d0394b9335b685bc5e83e51ec
SHA512 ca8b28ada4160798ea8db64ab1367bdc59931e07e56c9fa6e2225689aa1f7156531d043183198d09e35c7d0eb53801106915ca765e96bb8460d03d57647fcd98

C:\Windows\TEMP\chrome_installer.log

MD5 e61e8503d51fb72a48aa4c81f311b69e
SHA1 9f2c1c411910b872047130363912b8d8ba577769
SHA256 6a9ff09440484b6aa25c148d79b1ab6407407f3f7ec85e36a631119853bbc824
SHA512 38069b228a4feb0606c890e46fe96319808afbab2853a32a4b035f44e16cb6d3a19bf97d47d4b207386032e6fa03844900d176b7f864620cee46c351f337c2d3

C:\Windows\SystemTemp\Crashpad\settings.dat

MD5 ec5b07bb1d3b0f198126ad192cf7cbc6
SHA1 a14a7e948656fb7bb155f2d53f08053ec28c333f
SHA256 c861640400c8ff6042b6ea6706cb47a421dd911ff6f7f6280153f80e5d531110
SHA512 2341063e48e8f8cc3ae7012df5dfe578f3f2858c476e3b5b9ed11eac4287be8fea8c9696e38e7221b25f4c8ffa7698bd946077a59dcb8b8a6ac775eb41d21650

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 204056c9e70ef51891b4d975532ec1b4
SHA1 43b5981e65fb727579b88c7a651a944560be8ca3
SHA256 da8df6ce3ff2067b0a4d50f47a2cca0c1e30e0ad074386e59ccacb11ed118941
SHA512 5d1a6173667f304b52f4bccf04c21ae564f073d9500a77be54607ebb852c9d65a6b0de86a1cded206982b8f8472c4ebdbea2688bfffa3847738fe7c70d81a77a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 5abc00d4fde77449db0170aeea27cfb8
SHA1 f83780211eb50dc89d18fdd84a148e81fe6fe1c0
SHA256 356e06cf0ce317262fd38bad04b263dbf5b06256c8123c20ae7abc29d886ed4c
SHA512 d9672f3f3f2c7e423daa4c8ce782105dd69bfde3f6509df7bb65d9a200d619a6e6c9b81b64ea5b30d4dc4ac2d5a2058c0a395acd27a3e4e0928707778c12103b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 961e3604f228b0d10541ebf921500c86
SHA1 6e00570d9f78d9cfebe67d4da5efe546543949a7
SHA256 f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed
SHA512 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 2da47b4c19a5142a7c63eb25439eecb5
SHA1 a71eeb555749557ffa7fcaf867acc1a1dba54d69
SHA256 18a2e1a306560fb6c058b8238d9195ee1fcc4fad791f7b2e04c4e1c3d663a54a
SHA512 836715bbad0fab8ef0bfd8067290fdbe7a7504b260f75d9baf9deec9106cd2eaf5bc58a2a20fbba8bebf09e5c59132085ab0c59e2170b46f50cdcaad7df2054c

C:\Windows\TEMP\chrome_installer.log

MD5 805f21979e7e9e85c25b1f667a994651
SHA1 83e3baee79b633426e3658e792f903b2fb84363a
SHA256 4de80a6675b4ac4fef0b7db2fce01230fffcef8c8c342f3f082f97909f47952f
SHA512 d4e3b6f697a5a45f7fdda3d50f98469974889b3950fd37dffacd95e99022cc52768773a593086f7b86288b5bab9965961c214c06bcd6bde54971ff1c73d2c3ff

C:\Program Files\Google\Chrome\Application\new_chrome_proxy.exe

MD5 fb3c12e156dee6dfd4e6c405946265a8
SHA1 a28434588cca4d045b3613937fca99df0b4e72c2
SHA256 425a86978b74d3f623be16c394778b2e6a5f6e743894f02dddf79a55b0d32f6f
SHA512 0122f8b559249dbb168364941f25570387b1586eb3a357f6d1e92feca67e5260ee296cf6cd8e547d2199b56b180973dd6aaf0f4d47e86cef8dbd7e4a9bc1d9d0

C:\Windows\TEMP\chrome_installer.log

MD5 30a6dd462e59ffa2c04095c076c66df6
SHA1 81637b57f8fbcab77bbccd5a322918ba718bf4d8
SHA256 272c6352c6075bd52e8a81d7cd69db52dc7ed9b010e0b8a562f0bb3f2b0332b3
SHA512 b3bbabe32283b7c0c6ba189f6bd0c20835bf10adf01cb78b8e5b0c24761607dbce391dbe8d1d19957789a1b0d8f805733e6e7cd8b439f7f1dbb034cdcca4bbf7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 3acfae0da31ed1e034523a0329f83631
SHA1 6a84bbf7c14c3d396dceae7556708d63fc9e8948
SHA256 aa86bdec26074d991a20d7362ecae3f8e19dcf9e47a5adec17983f4ebad9e46c
SHA512 bf1bdab6729ddd76bc998fabf86eb7fa5caeb4140b0aa6997a4098cca851fe69649aec3e122dd9fbf0206b530153da781823bd2ad4fd4b4e91e3e457fe99cda2

C:\Program Files\Google\Chrome\Application\new_chrome.exe

MD5 f83f22c9da85a207e590eb8ed0c11796
SHA1 c97cdf54791461f07088762995f8419e44422729
SHA256 8b1c64f2938d58be80cc2bedfc9dd3b4028a44cd71e4088e838a7fda4aac5f06
SHA512 5b13e9757351351eaedc81bdcff45d69e70606f68ec877f07a5a0cc201346a84a88cefb28846d245587c69d6c15f59b09c0c8a17d9ca9bdff5aab538e17367cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d6965f72b6f8d99216579c0146ec78ba
SHA1 d14fbb724344f4f74b08476c978234f404f9ff4f
SHA256 494bd8a55af22636d762d4fe982169105a62ed98d5361dd47e15edf13a6d3f50
SHA512 a058b770f08bc44dfa85faa66fd12f71e06a0fdcbca2bd7c62e0f7f6f369cbf091ab0ca87d6f3cb9e4d2b68b7c3bbc7a96c1d3829e4b2e3e59c653fb19d2abdb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 95ee2ce789627a500aa9f98a32cfa14c
SHA1 5f487f24547ef047d236de899b2d8928453364d3
SHA256 0c585fe8edab451e2a0eea110b58efed82a80472d875534f4ebc845f50d88c69
SHA512 ad00ed7bbff153f569c032b3bef795fc632e268f18adfc85e9ce41ee9cc909990cd54c7b2d02cdb02ea8573f15cca71f46b2e928d848613659ade74079ed1a36

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico

MD5 505a174e740b3c0e7065c45a78b5cf42
SHA1 38911944f14a8b5717245c8e6bd1d48e58c7df12
SHA256 024ae694ba44ccd2e0914c5e8ee140e6cc7d25b3428d6380102ba09254b0857d
SHA512 7891e12c5ec14b16979f94da0c27ac4629bae45e31d9d1f58be300c4b2bbaee6c77585e534be531367f16826ecbaf8ec70fc13a02beaf36473c448248e4eb911

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 3433ccf3e03fc35b634cd0627833b0ad
SHA1 789a43382e88905d6eb739ada3a8ba8c479ede02
SHA256 f7d5893372edaa08377cb270a99842a9c758b447b7b57c52a7b1158c0c202e6d
SHA512 21a29f0ef89fec310701dcad191ea4ab670edc0fc161496f7542f707b5b9ce619eb8b709a52073052b0f705d657e03a45be7560c80909e92ae7d5939ce688e9c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 596d1c60bd9316e21a9db316d7ab20a8
SHA1 eefd65fda5aa0e837b31bf161754baea21a32f8c
SHA256 5a8f814cf5ed5e66251ef712c6a531a05d5578e94a7824f77fe51c8691653ff8
SHA512 f247bb9cfeb6238a091b296637428598e947767efbf4787ce437f042d39d2f6b3cfb85dac1c757c5c28058b23ffdf7be963bf3506ae9afa33f167faf78b9df02

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2ea6a30db2a2abac034d395c38ffeb46
SHA1 ccd96295068f5ef38a963a3dc5c3c4f4663a2360
SHA256 2bcae5b23cd006039dc00dd7253ddcd4a77ed59d808ea6099fc64a80bc2cf38f
SHA512 f0f64e7734ff012f36f721f797a284cbfe4ce34b2c61dad6a9502c134d11a93462a12a5d880428b197862a10df8f6862eabe724ccdc6ded4eaabf5a5a9572cae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 f321472c089f09a76eb0010e4547d340
SHA1 ece25ee982f9b8453de5a6181358034b3b96b3ec
SHA256 bb146df157cab9e58b2faffd1afe6a828190fbfaea7ea3e6328a9c8df9fb2c2e
SHA512 1e7000572d4ae51689e770029a2497d7fcb0879d160745c6b9bb40f69ea27418da5574a811fa01642ccbb568fb8f862a8954921de6dccc4e449e5b34a7b319fb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState~RFe5912f2.TMP

MD5 526132cce0ce53892c80e325ec8ba86a
SHA1 ef2cabe25b1917b75610de9b926d86d602ec7d4b
SHA256 7b3d1f263e454299647f7c24d1caf4147341d83f8c6124a9466ac232424c58ac
SHA512 e59c231c445d46af6849e34df5f360a68777fe098f0fdafef1850c2d9763a363a99972073121f68e8fe3eaa4975a08a19db661c6e7490fe77a50e4466df54647

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 f0cafc43832c61c816de3d4ca4d045f9
SHA1 e389fa136b500980c839e58bd1eff71bc3004b6c
SHA256 d650b2c6b09692c4e4833eb64b8d869d15c81571c97e61a701796c706d85a932
SHA512 8a9c93375c30eccb3b7f46dd1ba13cab1ecfd89b9c3e52a41755a24fbe9e1dd3d755d1d735c2b33e6a0f2fbed41523cd470248215cd0bacfb8610ac2ad17ffc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 6447ca52fb2798e6ad4b06a01b87f9a9
SHA1 bdf648fecdc24b8d31b9e74c439a6c8be24b4fb3
SHA256 13b7c155946be28ba1e982f4b997600f203528ac4067ab289be3ae18268381e1
SHA512 996824320f1805bef0235e7d026da1ea4c92037652c413b91ea9e2ad602a9f862d53dc20d2262d5c153f8d3b59e655f67ce1ad8927dd45b41848333edbf108d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 803300c7882098224cf18a595115b719
SHA1 c50ab49d46b68fc9a4d5ab85ab12b1741840abd8
SHA256 851bf09ee044e3b310c16082c6b5ba42ee156f6e65ad1cb99c93ca209f880bd9
SHA512 3f76fadb34ac13bfd9fc693703adc6eb6416dec7458742fda566c4b592dd4fd50fe135047a7c1a33b52c5bd4e592b3261f255b7785d13bb0d603886525929c1c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039

MD5 e955953b801c04327c1e96c67dd3c618
SHA1 f9061d3780f153e863478106bf1afd85132bccb0
SHA256 e8965a2d52ef25918ebee58ab6971745d396177a7943acf1ed53a65bb4dddd45
SHA512 6318ff1eb838954dd73dab5ed891d47f4f39089fa5e899d30183c32269c5620bd09d169af4cf8303e3d5c2ebab23cfe9ae5d9fa5c3281023abb009f66a25782a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3372c0206ff298ab779f11c2c6ddcc7a
SHA1 02ba76f98083036a4879bcce9629d505821b5e28
SHA256 d866a1ccb97c747d0194e8357a84db3868a972d262484dfc6ff0e5c827739f64
SHA512 ede175f34236ec43a53066ca2b6f72fe96a40e68ec1ba6770ee51d59953162e77e12a801d28dc032da877f1943b01176648fe299b88ce0abaee2b5056deec908

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4f5eb376d9594adae05c6fe91cb56579
SHA1 90617506f5fd6d1c63c34a0dc2483a708b79d025
SHA256 dde4565c12d4344c1536649ee54a01bbb6ba85930618eb495bef250ab9b18afd
SHA512 d2a0969dd6973b4c262d18dce3676f12838951b2ce4d234f88197c4fbf711c4562ffe157a6b1ff2715b00e5a38ddc720bd8af0c694d2c58f7961771579295fa0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eb2730f9ef368a38ec61657ed9370c2f
SHA1 8929780b232cfa0dc9ff93703c596faa9ec69d55
SHA256 69e1f2148a181c17432a7b6ba43155473e7ab1981e7aa603b79a4960f918c300
SHA512 845d59eb3be69c3dbf1d0f9365539848a37316ffc798a22eb945f3d11fdc375dcde05c0c58f524bdcdccc9bba4e14785ea2a93592014c222e672f5b1e4749b00

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 01ee572d3d4a00253b89d0670125d940
SHA1 b398bb237a67864f267f300edd69f187a34beb8b
SHA256 4d82f53e8debe0235e1d9ab094c80305fccfe05f36aa6cc58e6eadf5b0309ad7
SHA512 aceac9cf34f219773f2841090c4c9eb89751a68f9387d51f2c0936515d4b684931b8b95251dd2c68d2aee52ce7b997a62bfef9a9fbde1a07fcc79ef972f9382a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ff20010203f8f44f464f12d8028f100c
SHA1 9d8895effa6437bec0510ddcad5615616c876271
SHA256 b67929d7f0ab3647b1848f8fc96ca9322b9ba116353bab1f08a700a16cc2026f
SHA512 289232be5fe0c589906b5676fe09cb7a2b3246a1bd42907f1d4bb07d0aa95a705db06a7ddc804cf00ecfdc3ab4320f69565cc416792b35c7d9e94dbdfbbe2577

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 409f3f7bea24b34877ac453be54ecfd3
SHA1 993badc4eff9acef4bb7f7504ba246d797e9f419
SHA256 6509345224b76644ecc2bdcfcc7a10e1e48fa67670adf156dcb25f809eb92af3
SHA512 b01c130c9af767683947c00deac6c50ea407f0a4d50ddf2fa7ecb35cfdae7f147744e54eb0f7b348c1455678384d8adea94d070fb3f0ba149c14f388c9d15452

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_2143749773\crl-set

MD5 1eed47241189ded2a355cfa37cef4f8e
SHA1 5532aa074718706fab128118a63aad6a018c7ad0
SHA256 d3137942703f13b6d1c34b468db45e5cae6e37949fc67b426ae64dfb27d2a0d5
SHA512 0b2d571c555f988031d65d04737b8ac57fd56ee7433c44f35d3f44c57850047b8656e693e0de152f60d757adf43c77ad838193e3cca6db67e40d544e797affb7

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_2143749773\manifest.json

MD5 ea841ac113501798a777bdadf6d7ca7c
SHA1 079f04bfdee75d995b418dc02104ad663b7ec7b9
SHA256 636dcd22fb65de5f0ce76537623afebb5b9bc638333cf68c2e3ec759828c50b0
SHA512 df2370c527811360d3be8bd43632f3001aa4bad2b6d63c56c4d2360eb0a17971a02d8434f3799a826a767211f9bc9959a4db06381080d4f4798dd6ddf12aa595

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a231f5c7a1dfe1f65f628870b9836e73
SHA1 60ae381d3b1f00d3c1cb7ccf73112283b8f8b99a
SHA256 7473910ff4c0e6593c99c345b9f01302df8069c955648ed17c5ebb1dd8040532
SHA512 afe5fc95e76d7a2028c1fde328b0ba228c757b00f17d33b2e1c88a1c684d7621ac6c5f2aa20adb5f7f736796dd866a5ec394880aa23756f12dc2808a3d6be8d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005b

MD5 aa12ea792026e66caab5841d4d0b9bab
SHA1 47beeba1239050999e8c98ded40f02ce82a78d3f
SHA256 65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1
SHA512 0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping1096_1641886685\manifest.json

MD5 4c30f6704085b87b66dce75a22809259
SHA1 8953ee0f49416c23caa82cdd0acdacc750d1d713
SHA256 0152e17e94788e5c3ff124f2906d1d95dc6f8b894cc27ec114b0e73bf6da54f9
SHA512 51e2101bcad1cb1820c98b93a0fb860e4c46172ca2f4e6627520eb066692b3957c0d979894e6e0190877b8ae3c97cb041782bf5d8d0bb0bf2814d8c9bb7c37f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.49.1\Filtering Rules

MD5 6274a7426421914c19502cbe0fe28ca0
SHA1 e4d1c702ca1b5497a3abcdd9495a5d0758f19ffc
SHA256 ae2fd01d2908591e0f39343a5b4a78baa8e7d6cac9d78ba79c502fe0a15ce3ee
SHA512 bf1287f502013308cdd906f6e42998c422ef1e272b348e66122dc4a4e471d01333b418f48d1bb2198c72845bdc950612597e179e612aaa1ba6cf8d48fb8f0cf5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 7640e56ced9cb92eef90179e55a6cd5a
SHA1 9b2e55dce687979ee63310dc0415c7f692ee85cd
SHA256 9504b32fa2c3f2b68ae6b5f001b7c0552cbc83c199c607f584c369616f3dffc6
SHA512 f9893eff1bd0f765a7ca51177fa65db1d2ad8192d1bf9725b5a077b76acb2e08cd382ebfed04ad426d6482393c0f912f8ec63114c6281e9ebedfacf89a7dc3ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e2f26697e00e22c15d4dcfef0c2a40e0
SHA1 5e246cad22ffab2351de1020cf6c0627416fc46c
SHA256 e5ef2caeaf9a556b83b244332af6f91614302e856b08833b6677e139b4d30eb5
SHA512 bd602a8f76d349dd990381f4f6fa07f74ea608ea5425a79aecced50d607b539d5ebb8790298981443a16316cc0bdfc76b5e64581d5834b0fc2df820c46955cf8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 ab68680b5c4da8cec76288a0088cebd7
SHA1 5354d44c9fe77e2be53271bf5a59b83d7adc2cb3
SHA256 a86da7792358bec4c92839784fdeb512de4d61024b034960da39a75e6d4b52bf
SHA512 4d7adafeeca126906551706e2a22ba234ecb21a0c4a7f1e4c2f920ecab9fd645afcc43fe96a44684bc3bf23300156e6f18a6ab5eabd1dcb3eac4055e87a0e2f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2cf0b813570fe900f13f2e5e3a203389
SHA1 d3fbcf05ac6398ac5493a2c87f386ef0dd608637
SHA256 ed7e21217d423e866fa7fa787fd6b9fd63967a803493b21e371ab5548a69c5e0
SHA512 e5ec9712d0c485d05bc0b752e1ad1dd29fd0c55ecea99b4a351c9a36c52a8ff8dec3eb4071a94118b1ad199dea428d37e9b2f39ae14f4b43f3cf804360b83998

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\347c4f92-3816-432a-9b4e-5bc67cd16af4\index-dir\the-real-index~RFe5a6b0f.TMP

MD5 cfa861d0a0774d069e74df0bc2778f80
SHA1 063fdab894b5be37a683066eb5478c2bbb7e5982
SHA256 4535dcb992a9d566b1f8bd0cb4d757cc6a6751af8fa5bbeb8f2d14426da84b73
SHA512 4ca4b1649211f5c62fbf8d151e9540d7dd186f67c4afad4e239e154e195b30a88ae58fa39475cbf53a78026198fb5968d59c2489d1876907eda9df8c91b526b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\347c4f92-3816-432a-9b4e-5bc67cd16af4\index-dir\the-real-index

MD5 18aed4578f3682d88b4b2348cdcf2ae2
SHA1 cfb974822ca3360a3c6ed98115b2da4dcd94cd2e
SHA256 f35fdefa937370acee470c4bed377ecf32652faf68e5a43f9520d97a9eaa086f
SHA512 2b3cb2030f2e14b4b5217f3a1eafc55055cbea7ba82fe2a941496f0aa827885b8a444d3f9aba5c29081e42b639368fe0131b0e512ab597b37a4a86f35a2cfcdd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 186a5f1411b81e7a00bcb6a814d76910
SHA1 b932afc3da4bbc12e59c89eda9bdcdd87a44ce98
SHA256 a0b847e426bcbc8d65eb3c6258086008bbf6d0fd28b301637e8df7ddf04a6386
SHA512 2f5fae8a79560a6c9c7187088ff30eb5e08bb0327b1f96a0534fc974255d3c9f0bb7dc2ad88b2cf644f99628cebe0d07874555c66b951f909d7a0e17ae01472e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt~RFe5a6b3e.TMP

MD5 6372122abac6e5a613e47e2156aff57f
SHA1 d5dfc34feadb351ca1ad549e0001edb3399c85b4
SHA256 b5f9878a04749f7a725f139ef3f8c4fea61d1b870aae78efa64a75568d85ce98
SHA512 529c5d9df907037df0c9f2921c5b2a1657822b1731cd1e665208feec4024502e0a79c9336a15171b7c199f5848744967c6850620e739294b5978bd3094679727

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 04b205a338db0fb617056f564b25fe6d
SHA1 4d41665f18f978e8b87b4094b34d005893112499
SHA256 d763e9cf2d678e5e803f18fd41b1d8fe3cd35a825bb4fb50647a51396d2a461a
SHA512 e0a7ec80eb1902e2f0e192730f33c204f5c8c2ef3ea1c6923cdca5bb5e6a0baf33e53f9d36c5a6b82e510110dfc3ae926709f6080b3e2539a11947faa299a0b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cecdbdbac35d5d34384e169905388df0
SHA1 3869eacc95758fb3674760dfeecbe7ac1653fb89
SHA256 c2b4bdb2f0e1c59489182e49fa9ec0186418f3da7326dc1159a036e865132cb0
SHA512 e9b34635e391d8c0917a04bb568ec918b3c95e6fa2d2385d4b1e97321e053f3ec2459c966e18405e05856d831408ca4bba4d07bb5b93cba3d00849f7a71c2f68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9786c6d187688ddf80f258aacba6a9b7
SHA1 b4539533c92889e0ce17d111df24b84e8c3d82ea
SHA256 292ba9adec5207f2e3198b2fb420175ddbbd83f37997295cb0d4f23b70a42af9
SHA512 0c71e16f6ed1f77dfcb89be5f8c56af2afc59caa9d4bd0b8e1974374189b1261ec98a568d90c9784bc1c623c4a278021c4174685964434ceb49db0e8d93a102c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7a7882d6c5de96bfafcd837506cbc541
SHA1 4cde4baa43659c5aec5776744edbed456a2c4127
SHA256 c0d173e1114c0455de53888cedfd86507c756c910df6f876fd5b9ac7c21a890d
SHA512 f9eaed209d1235f0a16f9eaef10bd6ceb9be003b0ef1128b6bbd58ade58a0805da42df648b72b1d8f860a0d9525728a14f3ead0dce2fa0f545d8933bbc50de51

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 268ae23cd479fbb0c3618ad703241fc9
SHA1 85fafcb08fdc191c9868168e54c98b15deb41a16
SHA256 e5dfd4f4c60ef276fb0f2c7c71982ab1bd19a4a127a59474f69329106c18a715
SHA512 9671fd32663decd6c57ef51c83627fbe6286144d37a4272ab979835a995842d0fb00d038d4d9ce692c6e6e3e770a13de97c9d0ebf038842d9833d5d11b8dc76f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f878972652c0ed67fe7563f5ecc95f78
SHA1 18fe7f6805052ac018d2c26e5021d45904d29ca0
SHA256 d4eb6a53bf240ca85b8e971169c9510163d2e9e2d54b2e9aa6629d34f871156c
SHA512 b90d0cc5260e0b2bc82414aa834118d6f835bba13b5a012df89fdf6d5d94226e4d6796483cce557b834ed70b410af756f6d6622e7e7fd6e465eca151be0ae0e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000059

MD5 eb11bfb369775ff0739dabb3a5f379cc
SHA1 2eebaea2f7080c0b256fbfc70ab91473243af0f8
SHA256 2e0bdc192134bb3950a1ba4c1148901e39ebd8d2d01f64ef23106e90a9f771b0
SHA512 59e89752e932aade54d5b2b940e09f3c8b12a836f1c5eb515e82036a97492f42e12a4fb3dc156cb8d969d6cb4e8fd8f18b358715f972e12d4596ad390430cb21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\trusted_vault.pb

MD5 f9dcf6cf64f7b5cf277921d84ae3d094
SHA1 1fa1fd3139cabec40397aae43dd5514adf60ff10
SHA256 e2c73b6a46fcded2c39b6b70300859448e90a6202ecc3d8cb4c1a074c9332e7b
SHA512 e9366bc5b84c9580d7856895befdee45905f71bf25a06b21d7784e4d2be6304d55e476a6ccc215234053ced25622f7c29659a004e5df30825bb4954facc5128f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 2bb390877edd353a55021d028de53886
SHA1 311dab3e5aef759f4f7b446df1005fa285b5b0d7
SHA256 8fc82dadbb84f9b1bf17e1daecab197d977703bb320e61ae61c5f4c8ff7b7a5e
SHA512 6d1a932dd16909e7fd8734693683c218db0942cacd53e7069b4b6b2c08dc0715290cef758fb5e650c85cd4a79b39269792d5c3e1102145b4fb0fe962c976c1fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG.old

MD5 82543a1926b63cf9afa109b3c5d44e29
SHA1 be8fe3be4da3a2af34d68f79473ea33c5788170e
SHA256 36edce471e4acf6753a9587aca9c22ffb68befb8ec112c5c05e3a0d86a76f9d2
SHA512 1e17cbf2771bf03abecf54340fad71b53385c2758703fdccb43182b9b72f753ccbd741ee47c33d3eab57fe0326dfcb68bc888aa2a9830f29e6ba69cf3bd5474b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\000003.log

MD5 7ec17130e2af76c0d52b86b8a3d15a84
SHA1 8de304b13aa6679684f0cc3051dec148ef02b1e1
SHA256 c0a9b253cfaa31e73cd85a8aba61c93d10afcb3c09abd07c8050297667d1b891
SHA512 ea1c8a84e2bc5a5b09bb7f397f2faec066387aca5cf9872cc7e311245afd9f236ea1498de568a122951434031d14bb63a95990faab3ebd7776e4b4953a07d46a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005d

MD5 7f2e1b48b71ec58fda4539018a2f56cc
SHA1 507bf81f52fa8c99bf2c5c8bd59a981899ca9995
SHA256 7f80c4c91054b3d6c80721939242c2d4f68f15e41f251e12641f695d78eb2f35
SHA512 dd7b52119d1179332147984f6c7d8cdcb3388aeb1e8af708ef9036acdde6e7b3900acc965221f4e4864dad89797072e19e5b308cf065a65dda7656be884cdd77

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068

MD5 b8e62f3fe1294f672cc6337d2303a395
SHA1 ec57e27e9cb17a5030d43ea1ea0087e973c34139
SHA256 3c12616dd137088ca5c1397c6df1b97c15e4703a9ffb0492480b8879451097ae
SHA512 490e8f764a98ae4e08e6a582c9bd74f62b80e1334efd43809dc98eafc3a4faca76eeba84481fed5d3d6aabc94d95179f6dbb768a3ab0b525f167a20a597c3733

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c

MD5 fde8c74686dfa3911f095eb18329abcc
SHA1 624bb2caf1a5ca8f043bf453c4ff979905596e93
SHA256 c31faf749a6ec7f9ead100e06e8a9946d832d4b78c16e9acc74977818f44d95a
SHA512 f87199b83192743134f3bbd6f7372338624280fb6d482c5a57f4fcc0c9efb00e13ec1c8cf10d8ace0869e8dc18bc94fb611f7d1ef51cd98ed4ce57128fa16677

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\index.txt

MD5 ce670f1a6b16380f84e3418f3ad0312c
SHA1 a3c2fb90bfb9adac7f0658dc3969fe0034790b33
SHA256 43268fc0523c1334663f222d1414edca8d4d91a0dbae57827d46a1f474312f6b
SHA512 5718fbab9991ffc4f4e14b4e257a646706458836482a559918bd0d38f918bf96c2a7d91b6b746bb01383e775e1a7d29f5d4eb3c2e72ac0a50ddb9f2fa6b4f3a3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7a8ac19e7aa4abd9544764a13b5c1596
SHA1 a592948716dc1bdb14da2e71421c4737d58b8275
SHA256 45422985d914debbb4b9187ca524c86e4f49e4f44587a9a14f1842a6f078cd8a
SHA512 7a44f12f94baad27e9089da621a808ab70a30f6192057c47c3344cad75914f0a4326fc658dec87812b1f427366c06138107502500d9c197298347dbebbce488f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\a7879a61-8aed-4d9f-bc29-c5d9697407f4.tmp

MD5 1711e6e83edb0fb52f6915295bcc59b6
SHA1 842fef05577a5f0f4a6e09fb0fa936d6c5b3ce59
SHA256 35e8431aa0bc65ed8991c051fe18cf130be0b1b059f4345655fb0418153d4609
SHA512 a33416677b272cb7214e1ab879235601b2d8394f5b917a9c908f1a77e91271e4bf9765354518af089d83783917a8d8697b10cb2a2a7e729dae44a258cf02bd68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8f78688c16dca89fa250be936f6990d3
SHA1 f0815b2cd5a778cfb547902d18aa257e3ee983f6
SHA256 7d00deafe0368c571fab85ace8207f1c85b48e59b4ed12ebaf923f2a193c9e07
SHA512 15099ae199d7a2ef167657db9919ee57b6fbb5ee6a571dcbddcff2da6208b11302cc410c9385c71904dbe86a1851750072258083e0763cb691c2815c87b1e107

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 c30a4d6d46d6feb8d41e8ff31e9a7da4
SHA1 245043501e28acf4597b041286191ee41bcd2328
SHA256 14f10e6d4dc5da9f85b0e7307cedb0d90f69b93102606b58e7ac4dac225e5808
SHA512 cbe853fb6f26f854def3bc1c261087c12295f9742b376d8cd056f937c4abc850c89d7b650d78c6f26412421409653956476d340fbf4119ac25bb1d800ca4b0ed

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\index-dir\the-real-index~RFe5bbb6d.TMP

MD5 6290ac03067243a8dea336314ef30c44
SHA1 bdb2c6d7ef43d74d623241552f9c1770d7d11453
SHA256 18455b807f371a18c928cd07a487843c69fbad8646dac38da5dcd04a75d02e2a
SHA512 d145ffedcc40666bdd31bfa4ec596ca9ae851746fa5c90f98e4caa3ac5ea51acade83539cb69f7a0633827a7cc13d95c0e4d6784d855162cc931e84d0160b894

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\index-dir\the-real-index

MD5 4fa876caa3be284287fbe55423ba65ae
SHA1 38285fbf3446021c6b3112d5423adba8e09487c0
SHA256 d6366b8a8f3511a9d0b81b0686f1100a80ad93a132b81cd48b8e7015491fd17d
SHA512 8366cb85f57fb7f3b8fb337ea99e62dde0359984e67cc2abfe40ddab37d469ec824c7346dbd124fe2147395a51d8465032ec1343f4477a61c9e2f46f71994a23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 079f1f94fc61d692cb61bb00505f4a0d
SHA1 dde4814af6887279839d7fd7aacd6702ec8c3979
SHA256 33eb89f8f693657b36a8c2119153f637cf64004961030a2d0521c4cb16ec335b
SHA512 836d99dd6618b52519e55e95b194bfbe6fe07a0cae7ff00369fb5a5d2f22f58a37866b392bce2936a005563e74974d6fdb5a8069aa305fc88f6f714960580f01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 0084b93929d25e5f2e5a54e8e2c33c89
SHA1 371e54c8aa5ad1fea18113988d3740d439b75514
SHA256 dc81012e50e983f6b5191ac7431f72a167ddf46cb70eb6b75d3fc12df878178d
SHA512 23f86fd534e0e6af079c073e4600eb58c908e2ab8fb080a48ea00b164133a17cf3257590bc405bea59a65385ef547cc5bae36c1bf9f6d67f4628838642e6b0af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006a

MD5 d2df18f45ffe5acc8b33bc57a9b367ef
SHA1 235afec7a50d5eb9b81dcc65e5fa420ae4183807
SHA256 a95f1c92e3b251c3dac8c8893a16ae6e1bd0a179b3a289e100172b1f642e6709
SHA512 87e9c3554538d0a79476f944fea1b0ef304ce626ed32c2276d3191cfd7c5aef8b8de3f864bca85feeca1c363bdb1c0431b80d0e4b5c2936dc6643cefcccb4308

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a147569696f3581e94bf874763f3e3e8
SHA1 34cf66eda7355875b3b607d67689b4086a080276
SHA256 82052fd1e45a33e889e3068557b9813a7e9ab47200df948744d24f396d31158c
SHA512 316ab59b587ff8de6e8247b42a82332a43661190ad59d0a097b11ce8ee00390800b7a3409f11eac5a0487222f469cffc02bf3ad5fe684f22b01b92abbc12e90d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9a35a5bf1bc4663119716dd5552e36dd
SHA1 ff45dcc2880aeac2d1e1145dee7ef50f718bbd7e
SHA256 d2a2204263a7916236869f1218cdea7abfe8db405a320d829a152bb67a75b84c
SHA512 d53b916ac72d1f651bd7e01e54be114c033956492434121e6b67ae4a2bb951d0c77e51aea0f45c73454c9a7f0c631f7f2be1d99a91d3ad3f561fcccc90437f40

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 fd9f099923725e40610ac9ada9e2bd7f
SHA1 9a87861ed3bea15b158de2bfaa5d2f5fb8d5bd80
SHA256 c03e27911a607084d17fa88374fd0dad3e9a671c747166066f95b8aae060f05d
SHA512 4afb2bebe28c14ab4458291cc694faeb0c7b6032acbe9bc77da5de1949681191789faa61eca518af53232889f70cda606bc168804bbd5ad71efe6f5040129a03

C:\Users\Admin\AppData\Local\Temp\ddb5ca18-6fb2-481d-b97a-85358493ffb7.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Temp\scoped_dir1096_1635656210\inomeogfingihgjfjlpeplalcfajhgai_65451.crx

MD5 3c057c581bd63666398158551a1146f4
SHA1 43f414ab0ce7313028d70712191e91a830f4148c
SHA256 389981305efeff65a5e2dbe3b2c91cd89a68f29260e70b1c8a5a315864fe8da2
SHA512 edb8316624beecf1f547ac2e74323ed4ca9a3345fa4614d53f9aa2e7d31f67be5daff27a869fc5e78f4589d8d3e6df756ac9b92f9a196ba9257ecddcc12ef396

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000067

MD5 6c620b3d36c35f5a899428724506888d
SHA1 c013de5aa8096956a831b6d86841333f556e9620
SHA256 aad3899144159cdd9abc831f50a3a8bb3a0485febe4ee971536ee031994358b4
SHA512 38a0b097e604ad6904c528cf705196c28d6cc4398c7aeed2331e51cc05998a9c161c621e387ec7a7522c53edcf270aab34bf82b220e57e4f9627fa5d3debbba6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

MD5 16537d4f87adf593cf2845c3e77941ff
SHA1 377c92c37ae40bff8607590a9c4e2beab99fb601
SHA256 6363e07de8bab00273d415a8d24b3b9c84a6022f1b2ca55a5218174570e6f4c4
SHA512 ecaf3ddf4b5faa9fb93a376102462a3ff710b93d2c9f6370e24078b0636960703d56a11b2ef2c211dca79775543488841979704f59ca40c40ce2ba617cd714f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b0f13d2c0fab458d94a24f8e242424e6
SHA1 fe9c101d3d8a7ef1a2ec4103ccc15d55ab8c2ea0
SHA256 32afcf4fc89d530d1b78feca95b761e9cbcc3340b5e2bc1ccfa9f6eb1839f418
SHA512 963f6f69deb6c1140e286485facd755d3f678553b8f3e37286af92be5a893ce7c7c6e55a74056e5dff382740ebfc61c75acf9674aa3100e6dbefcdeac43fd80a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 415b554691d2395058df8e91b0739c4c
SHA1 1c45d7c75604eb870314d346b156cde768ee22db
SHA256 990e4327096b83018959bae280a53a3933b0c197e18cd6c9f67e274ccf705b3d
SHA512 4f39f54cd0c513edc87178d0e027ff3946b53309f6ca2e8c506c52223b53455a1f9a7a85df663980b168a44cc7a68beb1a461271e05fb165631cede8018efc1d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 e4be50d4275e193870db35b9fd673825
SHA1 eeaf86191ad027318d3f0f87b7d2ac74af5f7e2b
SHA256 53125a48013eada5fd642a91df2e567f403aa78c8511a42b287bcba39ac1a4b4
SHA512 3ed09f8914a82534079fac57efa3531d3921d90cfc73fd0b3ec46abf645ed966fef4c92dbf94da849ef86fbf9eb605686809b08ba4d34273ec72a8ce180d0b88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 d20ed0baabdecde26af1c67202c7f4ca
SHA1 768f7f13de8ff1cedb8934b95eec35255d7bb5d6
SHA256 2532851de7a17b2fb6ad0a8c305a92f0b773626d89912f3fd01428946b311473
SHA512 fba2fbb5b4289b3166cc5641c409c3478b54c2a4b5725ed09952db15f982d15305a7b1426065164239307b0b9ca301288d70b6c11b9cfdc215bf80961bdd0539

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bb26f917e09735a40fb66fade7f4c44e
SHA1 16f78735e9d712baf223cb6c3ee51fb13815c5b2
SHA256 578be631e27a2315975a2c6ca155ad11aae78b505f0e55efad840ec9c8b874e0
SHA512 b9b7fa942f45587dc62e36ddd6b5ddecd310106d13e035617df94998c85358ef887b758c9936e90a9af7630001651a525a33b369a96a0122aa2a54c7ce542466

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 5e4186ca42f9dd31a7c036be8bc53835
SHA1 12f7d1056f50816a1ee7e283789eb80b145c9e6a
SHA256 8670e6d77dde9488f7f76d64c59a4b210617ec5870dfd15591f12d50b59a9986
SHA512 9503da04e049f3fa8059dcd8f10e493b7661fc65ba1fd301abf87d80c744a69a33debc7281e20b46b23ee99cd502ad1c9a6cd4eac2513cc84798a66c5a9cc1e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e3f8bf1f8d400c3e742c08d098a5fc36
SHA1 9bac9ccb14417a0c260ace6d345c27b9c209a72f
SHA256 e1179329b99c00367565bfa5294d98ec20bd1ad32e8ef4de63aa546b269ecf0e
SHA512 ceaa6aa053846025ca4986f70652ed0e1f02de6e0e31ae8bc6cdf78a910fa2b873ce87efddd49395bf5c8ec9b0bc9ac16e818d2367a5c0558d1267c10d1e7dc9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG

MD5 299cc4e9a4bac12743ae9565c93c5f85
SHA1 a647c10007284e6e45c5ff9103d34d24a153c13e
SHA256 fe39a8e976898eb46d933e7c7804044a55dc78b93f8899ca38100a3501b4b86c
SHA512 1688dff76d1d77835b1a95ed0e7c88bbc2aef1552531da9755be4b51237602b56ea0822bc7e9e6fe123418848cf4a4454adc16a554d85b6d9467b0ebd4264567

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 27e2bf4e6750b80d0844fba797ac7c95
SHA1 e040981718cf9e51b010944bb21e999bac750a35
SHA256 f3879cf4ee683dfe0a2d5d4cb865f9d4ddde971e86893fdbc2b748a61a392294
SHA512 09e972f4796dd47d5d18b62330fb7eb6ba3d3221a23c23277d3333b718f1c6df2d657deb965577687bc49e6e3d5777564aeec09b215d11292a1d2bed1c21d5cf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 838732daad784f0e7e592c93d5b5eaa3
SHA1 a49d277e3e3b183796b99693132f57744692d153
SHA256 f9548efaee431b0df6569f6de94d35c5f1423618746e2f2773fed0ee312cee97
SHA512 71860df0a052fd3dbeb47ca6dd593d7b4de25fdb9faa38bf057bbd81769e20f6559f7747c17e6a3f804381fd484cdda12607adb0074b7615093c65d2d0627213

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 481b95bdcc31df725e23494803a59b1e
SHA1 f92a335742105d3c5c31436014c4bd8bfc007885
SHA256 84cfbcf94317b4f434da6389f34f6a5ad0a4239835fbb609a694bf50cd004f97
SHA512 01670c13c51ef4046f1eb60c970037a457db2cad4ae90b3a68812def02ea429b6f96a7da25c3a61ba4bfed5a3c7dd7c7f6015adfc6df2b5c56559b76a31667cb

C:\Windows\Installer\MSIB954.tmp

MD5 a0962dd193b82c1946dc67e140ddf895
SHA1 7f36c38d80b7c32e750e22907ac7e1f0df76e966
SHA256 b9e73e5ab78d033e0328fc74a9e4ebbd1af614bc4a7c894beb8c59d24ee3ede9
SHA512 118b0bd2941d48479446ed16ab23861073d23f9cc815f5f1d380f9977f18c34a71f61496c78b77b9a70f8b0a6cd08fe1edc1adb376dad5762ad0dd2068c64751

memory/6040-2025-0x0000000002B20000-0x0000000002B56000-memory.dmp

memory/6040-2026-0x0000000005290000-0x00000000058BA000-memory.dmp

memory/6040-2027-0x0000000005160000-0x0000000005182000-memory.dmp

memory/6040-2028-0x0000000005A30000-0x0000000005A96000-memory.dmp

memory/6040-2029-0x0000000005AA0000-0x0000000005B06000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_fshpqx2o.0v3.ps1

MD5 d17fe0a3f47be24a6453e9ef58c94641
SHA1 6ab83620379fc69f80c0242105ddffd7d98d5d9d
SHA256 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7
SHA512 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82

memory/6040-2038-0x0000000005B10000-0x0000000005E67000-memory.dmp

memory/6040-2039-0x0000000005FE0000-0x0000000005FFE000-memory.dmp

memory/6040-2040-0x0000000006030000-0x000000000607C000-memory.dmp

memory/6040-2042-0x00000000064D0000-0x00000000064EA000-memory.dmp

memory/6040-2043-0x0000000006520000-0x0000000006542000-memory.dmp

memory/6040-2041-0x0000000006FA0000-0x0000000007036000-memory.dmp

memory/6040-2044-0x00000000075F0000-0x0000000007B96000-memory.dmp

C:\Windows\Installer\MSIC0D7.tmp

MD5 85fcf7b457b7194bbeb46db22fae05c3
SHA1 5eca64d0d4ab4599852a475a7dd25beb88ae1c27
SHA256 e24376a9346c2d486ce7426ca3ddc73cd020bb7216f8e5a0b9b2cb23caddcf31
SHA512 12d46c2d63d221adb288a89b2fe0b423d4ae7579c24c36d651a6ce9488bfdc669a1e8378309c28f7019c7cfc43fa87e99b4829cace97715c0b94ac9e2a758339

C:\Windows\Installer\e5db51a.msi

MD5 5f259c755b3dcbbbbc27f9513cddac61
SHA1 0e672bad7b67cc1f234b265f3af21976935c4903
SHA256 9cdd681fc86c1e816e652b0b5590d2e986b08bc26204e8048918a59c291051ce
SHA512 4c7f66962cecba4e753f3c996cc45bd102c6b7c6ab97bf85197091cfdb05ca82dd400f0888ead82927c61e3f45ea33e919a3a51da63cb5af1141a980f779fcb3

C:\Config.Msi\e5db51b.rbs

MD5 b4623ccf5b7cd696101571c57b98cd78
SHA1 05929bcfeb5d139987d2d46f6142b0cb52abccff
SHA256 ffb6b2e724e7ddb1b37f0f906c80cfdc0b1c8b71dfa98d10c7fca072406e8d8f
SHA512 6bf5657ce6d4a1e8c7f083ed3de11e6ef637ebcbbe1a5baa79bc53a549a05fd0ba5bb980b77abf67f5b12606b5321b97e0acc50b8eb4f83c372f41888d526635

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c2345c1d14ab7a98c395af1af9fa8c27
SHA1 14f077d127eb098ad7bf7971d26e5cd30d1ee44b
SHA256 89badd156148280e3101d4077b476fc6179a5a02569a82b6c1b1f5d2f962df33
SHA512 192579faca4f0ce93fa2bb747108f51eb01874a11c5c2154b19f77006d89762fc1c62529e4bf1d43548699ddcdcf95809d072a156cd541890fa2ab4e94b831ef

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 016e124d133f16e81bec433897b4f275
SHA1 978e075b595d530d5a6a26cfa8790595fab74d04
SHA256 20ebf7d645d6bf6c956523f7ccb029a17c45b2d54706c4edece8771f9b1b3ecc
SHA512 19f81a16a1837c07059e79219a0955d1a8370ca469f3a5a03745e2cb5f793dcbddba354784003889ce6d24e512f96d81292b645c48fb0cf27fc38b2094ee481d

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 142472bd8e78eb1bbe78f525fa5117df
SHA1 2f10034ba74898bb262f9c3f732c4b09d6667b1b
SHA256 09f95d7e83b6bfac0b5d46b7b1961d07d58ecf9734a16249291e74647bd29d1a
SHA512 d85b19c3b0969f69d1758b9e741c2d1558bb9776dbd27b746f2df61c3fc01319f4ad95acc0733b66108111ee6c088676ae7060da9c0df084915fc33651528574

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 71ca1fe6a206cf72f715a95979c0e8fa
SHA1 10725b90789ac55107ef286144cabd8ae189d93c
SHA256 d188ff11a17410ed7176cec1cd3475803b9447553e81f08912a26a3ece3d8584
SHA512 5352e8d09b7648aa8ed545e4127ae9ac3eceabae3a832b16650b346f63edb3c397ba79f8f6123ae793bfcb43ad66cea1489613c5d4048f30370ba5b79dbcfaa2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_0

MD5 14fe33a0adce0dbaa4cd0efd1ed374cb
SHA1 779bbce153bd1bc48186eab804b5c5ee60b87136
SHA256 550ba22e54150dbe9b926d8e79061d4a8932c2be4403e9d621290c1d77ca1673
SHA512 2077711eef7121d4c3aaed91c1341ca78756a60c214dfe843b173a9db74db96240f7a16bf55e845800d290e9cee3af4cc9f5e0983c9465cf27e4c9cab12e145c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG

MD5 478a8eddc68b6fc2a73161794352e878
SHA1 0a215fff70914791a4b8480da1be10c4aebeb3ac
SHA256 4fb23413fb7f03226e363d74f60ba3832ab6444704797c3a6e2c2bfe7d4ee509
SHA512 8582008b4e5e6be8f49e2972d022cb5971c71083dccb5fa917e0b624d36478f00d1989069a2817753718a00ede2869d750dc3eb5a49a26b53fc9bf68034980d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c30a59e747e6aeaf3991bc0f10b8ec58
SHA1 6b406f6aab54305ce23fb775c5e0012fc1a2c986
SHA256 8c597281fdba9272e9ac118c317a4e21f9e5b22fd1df74a683a36be97c39a584
SHA512 a81dc20d01c875256b1ac78c714f37d6b6f0292f297b73158d3494a6a0591feb499c8aab30066ce9781d070c4a8a0222b2be18dcb5922bd80bd94fd78c47aba9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 468feef7cc68dfdd46859139ed02d9c1
SHA1 b51b4f50c7d233a72db37d88cae66fc0e3ffd5d5
SHA256 62ad371b167f54ff13a43d81ff9fde335e2432cb22f7bbe8e856f0f30a247fc6
SHA512 fc097c8e4724476afdf440acfb1784f633204306b8ff1fb5cb11e146a9cbd3afdde8ca90ef632168ae76203943082724bad601a4239ceac5eb9b526b85c1a277

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\e8c7215e7cf5023e_0

MD5 f144a19a3c9e915af663b5f43dde57de
SHA1 2ba58783ea7522073208dd536f5b45e8ecfb90e8
SHA256 3c442e150e3f62fb982c969413a1adf4a26f3f2e834b1a01bf74472b8ac1d7e5
SHA512 9039cf65ea33c5a9e7736e09b434df7ce62473c079e8f1189de0a30a7bd4550a2a8b65348ee32323092dafb4854142174b3a985e6f512c1d32257f986d3ed403

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\9ab25684c02b5c2d_0

MD5 973d0ef6044c8cb657c62f90da24af1b
SHA1 9ad0c7d89a1192c865c722c702dfac7cfa79590f
SHA256 53eef22b3fd4117d376a40cb31003614ebb81fb5e494f60a30640311146a2c98
SHA512 22979a869d042ebb99a51af25ede564e32b4f47c07fbf8fc4a81167d190cb94b6537cec60e614f0b5b361d2556b4ece58f6e0c4b2c96097a21e034c3086dbf5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\6738554eea59ace6_0

MD5 abc199a336a9fcf5a7365b502ab372dd
SHA1 572c2ebcf2ba5d72db1e70010ed894eeafb3a37d
SHA256 dac3987270a5894dac646c0c82cdf81d7c0b419269b380ebd853fd4a4c299f3d
SHA512 ac0679677c6d1afd7700148c00572805c8120ec298789cdbf43d787fc7be3b0fe19a2b19925a1b7b9e3a190e518b6cf2166cdc8a72b6a21dfcb6bcc43740b7a3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\d6524967364a874e_0

MD5 4aa67b198055cfc5839fa482680bc81f
SHA1 eb2427cc4ffe01c8a1bac8f4b047bd62d00ebe80
SHA256 356f9f20402d34b33ea115e35413e39ddddf379aa88e5bfe27ff451d814c53d7
SHA512 0addfa208b8beab22b49ae747bfb9b0aa86796ebefc9ef59a390e1ad4e67ea51a276d6b6a190d4f9ad27bdd78c3816aadd229d39be6c4235836e53c5b67ed544

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\33301c9914932820_0

MD5 4a47e68650d2b11564351ce978f6b7de
SHA1 7176585441888cd12aff274c681ef624ac67e632
SHA256 3aea7035da64e16b8a4ea5d07a99deb19c281ecacca8074f4c6d2f2c57fa89c7
SHA512 017bc3330c389bf7748ed485eba19905e0afb525816c2426575721335abe99de1520e71e397ce95f6a4ff7d57f634db6051d3e8e7603393906fb592518e83fd0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\f4ff1d121067b382_0

MD5 b5cfdd6f5923e602d2a8ed0f5c638f3a
SHA1 2e03a3e2c0ffd5c2d300b3a9d97920322952cecd
SHA256 683e546cf5b062f97c144028dad93f6d2211ad88dd53002d37299cdd907c7b29
SHA512 f08dbc3de4acb7aee7f642bc4325771461123b5b3527572fe573ce360f8d89d9d13012c5fba2c56ceaeac1b7545cebc4e1358ad5b468b94537e25bff11bf317b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\c6155b8e89e0318a_0

MD5 498f09e0f909f3d624dd051737aa779c
SHA1 2cf47856e6cadb958ba3582cb9dcaa1370f92009
SHA256 ae0395fd1d508a93c9be51645fca3a570ff98f890caf6a242dab857f8a73945e
SHA512 48c5fd022f3e29bfdaed4f42e29f0e3803f22ee8f31ca2c06913332bfe4752332e23d035ae101acdc92f8e4cc6c88681abd15aa12abbbe3a22e640b0cec79b64

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\1996107ae4614524_0

MD5 58a348e3de1c6e8a340b58b3b5928f3d
SHA1 1e99b27fb414e4f7619b6b64b6a8d8be058d27b5
SHA256 689099263bd0b51adc7a8f4ab58e6ef1011ab9cf610a9d8b2540ee859ac0d3e5
SHA512 571f8086b0fe59b63d908161d3c320730ca2976a011204bcc856308d522d04af02453da2fde1df28e8a18c77cd72f6778a76a01d12eb72ac26f2ad735ec0a54b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\1c79ee9b6e6b1e84_0

MD5 a89a996feccadbd67146d8eac6fe36dd
SHA1 401264b0d966ff24c1a70db4a731c2e90a06d157
SHA256 e771ebc73d58f87c081620867df1b40a56aeec22e5e7874fd190f670d24eed6a
SHA512 e3e981fa142e08fceccfda363f9af7713048a9b6d310a66cd73c39ae91ff2f5a72178e64991413172e2e9f839ed43065e0e9e6687bbb7a78a873cd9c5b893b7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\ea6438f45dae6b8f_0

MD5 c01dff48bd519b44c4c66d0e44c194a6
SHA1 3940599a0a8881d739b112ff27e318e8adb449fc
SHA256 9c0f5f53ec432699181c86e1384a438b40254e8653f5391af6d97a9f3518d135
SHA512 b37a57b467599fb66ce20e38416ad57ec3cbcc361d5efcb8dde698dcf3b4ef5049859e03a98786905f4b7e71e3e9a948812a2950755f792447fa83e0b294f78c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\3c2cd2c816e7b78b_0

MD5 58592d451a6fb580daa7106dcebbfb0f
SHA1 37e7cb9e2fd1e15f93a4ddbdfb8c8edadcd57711
SHA256 13a2fa9b7e29b7ccf8ff0420501ffe4585e24b8fbaafcf98846120d1f7c4ddc0
SHA512 e5628bdb483de94e6a8d1e2164de33e9d1cd1b0a04b867fa2926907cfcaa17c0ccc8cf9f5910f0528e198387bc9cc2d526aa8c5ef005c50f22eb83bd6f051e28

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\a7a27cd7691d5e83_0

MD5 a468ba9544a801b6a243858d7f995bd8
SHA1 42d215dbf46dcb4d0d902dd91690b63dfb9b8010
SHA256 9425b2584b5a0d834a5331fb69c7d3073cd69464cc52a9881a83e88b413f5687
SHA512 94576a317b310b4b6286c6ffb9250bab5654d4ecf1eaf53c7fa2e119991600f6899b7210b5493e8b37223c1cdd57a6a88646c3c1384901e93352813a67d50a84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\7445f96e712beb7a_0

MD5 fcef410c46518e811195c2cd17573552
SHA1 ead1fa3b7926d843521d537895f3597a1bf7d132
SHA256 660c5751b1b4f7ee556cce8b7021f42c0706f069ecc0587b2bf76535c7c1ca24
SHA512 903c1196ca5394bb166cbb2e70855535d65afbeda69c9ec5ca57df6e74a940ae3cfb757733ead4fefaf0291d92b04a6dfe785bd89538c8fd2273b260d82724bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\f1bdab78d5471d87_0

MD5 203b2e3c7c436328f7e734a9c70eb159
SHA1 b88af11d58be12f0b3dcfd0ff40d4855ed102e70
SHA256 58aa671c366f8364ec61c16e6cfaca45c50bf6a5419cf8ad943302b8c3e7c07b
SHA512 fec4700d636670b2e161a84a161a14c63e44ef62cd88e8b298439c491054cd982d6d188465ea58b444e515a0bc20b2f64504e50cedde4049007f94ea9e272473

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\41b97b7e8d083d1f_0

MD5 f2b42ebe1f5765ff1d866b7051c3c74e
SHA1 4727495b244550aa6a9b1e8d7e25c200bc255002
SHA256 d9fb01259b98c85be865b0e650cabb71101e6661a30865c54a82200bc0604429
SHA512 a5195832aa0dfe34d2f9d4fad0c3501bfa5467e5f92f639794b9c19f5ae28fffb738c270ada89b168176a4c8bdecb746331a9591739c22b4b89dc97f9039df19

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\b00049e8391f763b_0

MD5 9487f2d14b7e998406bf9a094e976292
SHA1 fe9b380d77f27283dfb4a0aba857975e23a521d2
SHA256 7f4dcc31d2ad6f9f24239ad8b75f458ea5f3e9bb7d73b028b1436f0819adf83b
SHA512 3061ea0c5b473bb534f971c9114441cfc541d20e6948559afa04ef83ed1377bed01b14d145722d3cf75f2750f36d5d3dc7a04d7fcf45ba4452a9188bcb29ca29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\69ed753a87eb4232_0

MD5 f93df6ee2471d2674391439752af2e20
SHA1 d58de5d5e68bdb1645e1efd516afee087949dd66
SHA256 5aa15235c870946aa900f85a9aba3ff94ac722452e1aacaad0a44f2e35146ccb
SHA512 771f9f37a29aba800029202a9ceb4b9292e860e66b370a656e99660c94c0f140a5ed174784fdd5ac6cef68212bfe70a11c7430774be920322d29ee86c3355505

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\30086229bf9dcae4_0

MD5 eaef0074518e4995e3db8a6a16238128
SHA1 00605d6276092cf42a638cb456e2a51adfbc8b4b
SHA256 8d2c36cdbfa724a1a08088cda8d0bc8e39036969943c7871415e64deeeabcedb
SHA512 c32bb97be2947be8f78348047740cc3feaee29d3d38be29e2a159ab47997d4c18ef719fced3074d270809e2fd8fe3c9e04de865fcad137cc362388e611f42941

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\56c2d3442626c87e_0

MD5 c2ad458aedc6004e16920e10730edccd
SHA1 5ca53ff0799503cf2fc24f75c67793d6d0b69a36
SHA256 6e121195935f20db79a4f162b1ae3c1744da70dbd35234db5879063b5bba2a1b
SHA512 21e3e204b743febb4efa065f8fe358a30b8b135602cc4e65e4b1839400706ab9b6085d266a3dc5c59ac43f284f0ec5656170b30d291b0f75071ff6851ae16f3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\cfba60a070a7dedd_0

MD5 4b23a4c47cc912f454686cb0fea2c031
SHA1 ec95b7baff7996fd6cb02ca3fcd987ec31a7a448
SHA256 0e9658b770cb5f4573f206d43a273a81527c611b6a765d3439652ef28c1e30a4
SHA512 0dcbcaf44505c5e87fc9b768aedcb62e7b12daeadd6042f491f00c5cc3bc2a51a87668568fdaf0c38f36c57966e3617c1ca40f81a55e47946db1a25004026248

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\3bef1ef0c678ce58_0

MD5 c39c29ae3fc64764f95dcb3d9c8caa15
SHA1 ca88033874121c26e0de160f38f215f64d6c923a
SHA256 44ce834a189eb5d1d1a9d7f586f2880d64230bce342c2f4a09404021bfe87a9c
SHA512 03f16b62a849f6ca987e9780212084ab06f804f9ee653c7e500e353e313f1fd4cc67716695804b3e5b6b1730f8d4352f62b73b31774ff122e2db433f8c6ebaf7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\f5a17a2f311cbd42_0

MD5 37fa25b76110ce6f124d5e66f2cf8fc7
SHA1 60079841cf81fc00dfe63ed2d70800d9799bb6f0
SHA256 24ac603f6424ac90fde54524224dba0a56b78abfa4f36f3fd7b7de77932656dd
SHA512 456cf3b7b03814466b62d52416877847b57b89d887a015e615708c17a8bd971540c926a0b3d3bfb82724fef0f0ebffd036b74d49f4c1d02386edde11c8b8263c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\5c2b7e02df5d88e7_0

MD5 7adac512db7771ac7b10448f244548c3
SHA1 e590e2e85e4c3527f705c93368ab2b4becbfb796
SHA256 52f5feef166d1279a1663923a8966f171863d1a8ccca7aa2b00c254d49bbaf5c
SHA512 f5b3d0929f6ffe0c1737cad368857b6cc68c9c85cc9aa4cd5bcbbe4ddeb60ff1c69bb68d9a8742bb99e1177c3ae9e0f3ffd17d63b3abace9d87e4c9363313367

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\5eaaa43a55140d42_0

MD5 31454989904c551af7c1821685a34aec
SHA1 81551231508cf05f54a0f6cc917e7de2bd6f736d
SHA256 5def5d2f4dc9c77db255c30ac00aa8b34535507164a4c966d5c0faee6002c76d
SHA512 3676c164f1e3bfb9105aae848224faa339695296e92ffdef1f176186c26b993e06cc7c43021fa8b0840df451e3e55e4f25a3df28ff28c358f85693356ce63680

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\33d8a49b8508b21f_0

MD5 d70751cb2fc8c21ad4f31e3520b3d1c3
SHA1 45dd6e773cca6078e30aa2f63d9fe969046f53da
SHA256 80b7d9d5c0446cf619e9906c561aa6e8affc2e7c56c830daa8ae3810c1f83455
SHA512 847ba50a555c65b6a1e5e3d5f31f29026d6078fb628a5fd9df28cea162d35d77f24b31547a07d576f327a1307e16f7c8cb616057b18debcf9eea323588d1eb3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\ca9e6f72e85ab121_0

MD5 a9abca20375fda1290544aa46b180d87
SHA1 ff0a726deccae9df2b9cb0d04ee5e5bfe80e90f2
SHA256 d0d9535300914ae9748dfff3cef67e55dc862c0462154335c4add198389211db
SHA512 2aa3df424413781bec0acee988cf7a7dbc646c572d7879cad96bdf5ae55c82b3ce1faafa6c4325a00257dcf5af3c16a0a859e28e690a476b79a32456af9453e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\f86837064c77a241_0

MD5 269917bc13a1e13eddbec1f1c8d5b364
SHA1 a8b7075b987644bfd795e329a89838a29234d436
SHA256 56526daad227d3b80c8004c60880db6ece09e141e6de66795fd3da2e2a7a17b8
SHA512 c62f234f4bc2266e2d1183cc271b5fc731c59adf8f19b4be896bdd42f797be155a29e38676127153185fa573202b1733eb7e74084a0054cf9d69bd07e7ee0215

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\d9a8c5c898c6acd8_0

MD5 bc52dd5f9e851ddc62613a2e0023d2ff
SHA1 add985cdce7e46afbeac3b20d5c8ab6479ae7535
SHA256 9e6bc676144e0cbd490af3363269546c3243ab03f3bd8bbf60e86ea381fc2daa
SHA512 8d0e81127c59324f34bd6eee67675ee04cde7fdee6e6664f42a1b3f2f6b4a4e195be5f17df0f63b3be7e4b0b507f37fea70f591e9b85af47bd465f4382520d57

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\928e76a31ad8d25f_0

MD5 2c914c606c4e58ce45d96b70b58a0104
SHA1 8c8d9d5d22426da3711a5f31e385994be28c94bd
SHA256 dd5a23c8c0e3409b48a596777d54485873ae2ed0ccd31bde274a3fa08feed4d8
SHA512 d7b463b74d56f72f86cbe11e2e1b103c954854c1ca72dc4fc837d6b44266b13ca2cbd44c522b742e32701931b0b45831bfbcaca1595d09a5823a4d3a1a086f7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\573356a07cd43f3f_0

MD5 5881bf59927b6d13518051c3d4bc4bf8
SHA1 93f242c4a40b461b39250f5be790b1db1553ab59
SHA256 1f064b98fdf813b828443e32a065b3830d24e02b1e0b2eae3fb3bf4ff45384ba
SHA512 8883113891f491887ab6305e611fe01d867b9adbe13c608481f618acc4f7d8901348e93c29fe097ab35a478b3ebd0f57eb0a9cf02c5b699f58e8383e647f9f63

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\9760981bf195fbeb_0

MD5 ab79b6896579b5183621d9f4b460e4bb
SHA1 e61208a2f1c503ca06e01be44dcde40157866934
SHA256 78107e88a6349557822e3794c40420508a93201cf8d37eddcfc69746d6b8b08c
SHA512 7fc1858e57683f5fd69e21aab5af02177e775fd6fb6b5c171f9d577d341099df8aa105c1fe2d388af36bd976cd8b2281744f849be5aa04e82ee276434cbf78e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\8676e37bbc4b48fb_0

MD5 0fd2b4063a9baf68b55dc37237b40cc5
SHA1 e2bbe4950af868f4498db5b53e65469ca763e81a
SHA256 d45c7d0456de9a55dca3a0c765612f2ffbdcbc0b7cf5e361a51d936e9e8daefc
SHA512 0b5f55a547256544bea363e65c70975775b35f09a053071ec47807fdf5bbfb2f1100435f2b15530d9a3b7b4449efa6c1fdce5b2797828941e2ae9ad04c31dc06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\f39192f2bb816b8e_0

MD5 2878aaf7c6cdba5190bb3f637176358f
SHA1 345a4d5d988358d7d3062121b77f52bd3d6c34a7
SHA256 efb7449514ab9c489291cdec07b173ae6211b8cdc2549f4aa0647510d5c8149b
SHA512 93e506886e64671470ae1964e126855bcb29262f388b0d020fa50eda323f09c9b2ff678db788091e9b558d0e2712541ad9bed87a50cc00ca914ed9163f73146f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_1

MD5 35af1f587a03d7b6249d98862f87a497
SHA1 85afa691b962fe300294c8b8e1d54ccca3b775d9
SHA256 48b394d3d8323840c29e784eaa5c25d01686189066ce20aaf5220ebba100e22e
SHA512 9e38f4c9ff76ea6390becc97dd3a99c4d0cb87c83d75e95e08f21e60c8b8ca0d17f399d19a789c9f35ee32ad328d36c6842a0809ab649018063d5a309364d90e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\b6c28cea6ed9dfc1_0

MD5 cc0cbad5ab5d0155120cdb5179b34a49
SHA1 cfc070efc373e016ed6964848bf6e4f1b96904a9
SHA256 1f16bf187ba74675b801fc2a418af0c5235c6b0f543e785eaca3ff9d6951f1b8
SHA512 55dd6a6120407f6d01e84c4baab8b119ca7576024efd867464c4942fdbc8888a9081232c3ae8d5c5a0f4dc73c66cbee12ff5dce3e464c15bc407dc243f18c398

C:\ProgramData\Google\Chrome Remote Desktop\host_unprivileged.json

MD5 599a4adcf450238c2b9bfc87744864a3
SHA1 99f254fe0d11926cd1296b42e9aaae90f7117eca
SHA256 9e033911df06ae82a920cd8ca5b77b9f926c0a2cacfd9b179fd851f429c8b2e6
SHA512 ef0d7a317e63a6db16d0f03d135d603293b2827d340b3fb69f1bc3c09475c26021fbb2cccc2180b279017fae872a6316caa792b834e9c4678b172451cc8ef852

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c0f4d66fbf26ebc8e858ffcd3dcad375
SHA1 a382a2de6dd915da6f62454eb762efa7cc4d17a9
SHA256 3379ae5968ac44816967d93f5f600e76a119e0335b18eac12c39dd4780988ea0
SHA512 0b371e5f6f7b9a3b9e39d70f4d42af267fd9cb0c007b754c17ccf2a41ad4a60a22d0731053d5e32b919eeaa949531c5cccf8faf73816c72205093d22a3363635

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 16cab5a8d3284d28e5a1b17dab01d39f
SHA1 f327d31abb96c0bb230a96fceccd971457faad37
SHA256 30f3203f516d954b5307b3b507e66107099ce50fd46d7a5d5628e9905de050d5
SHA512 0e02ee5d36b51dcf854d37b873630707067a30c474ed822f80e6b2f46cfbe08d9d083a6c040f148430ce2b172847a8f4b35fb2d0c1b21345c3fbec0b5ad5a6df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c51b4d8dae1bc56d09092913620f003f
SHA1 78ea7241746ec8a6f11bae6c5a5b84bd835bc79e
SHA256 f5a062bbc0a877df84c321b67d97bc2da956c4f9f039af9410da31c0642b836d
SHA512 aec02b6a6a9e175b90f56b01ab3039c169b5a8370d5fef731d6d472c717ae101dd2e5789b12d1b827dc644a6842a73809612abcb85607d9983b5ca4d1dc6b7ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\a587745628d61ed1_0

MD5 69fbef9beb4ea30c98c7040e524a9bf9
SHA1 b3c4f81c06f446c45ffe85bc7dc104347e631249
SHA256 60304e20e30ec8dd0d106aebf4a1024e4eefedec7e7d178398ec16528d69f60e
SHA512 dc565ff2e3170863de3c92fa3df3f162add9fd5842df05cf2a8853af25f4c1c8deb1223641092e74664da94a2f2f279d5de61707bc8fe6bb738b55415ffd754c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\44d6e71834085fe8_0

MD5 829e3c088c92d711cd65a88421cd39f4
SHA1 0c4e198c1d05374fdfc108f02ce0fb0b51723c86
SHA256 cd44fd86d2d6ee869c67732f5e829c931d199069e2a3aba7064df8a1761c84a4
SHA512 b1d6601f7cc1adcf6304c4c210292a1f8195a1c33083418708563ae61ba275c4ca619d38c67055eb1238b84dc54bdd8d92badd3eca46450eee99d339763bf25e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\47213405f9393bee_0

MD5 3e03d5b1693dcce7f9c811a5f646870e
SHA1 243c00d67b34f5ab78fb0414f8f2d2da32af314e
SHA256 e88753023d75c455e2a705c9a06c666d18bd93bda3e3ba691540219c12cb825e
SHA512 240aca228aa134ad05aeed27575bdb7d8892d2ef2b686656c1dbd00c040fff9d391ed98536af42628606395341f2e67a944ac5586549ebd18aaeb37f00da64b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\15ac1fe7c682282e_0

MD5 bc9915f4e85b66e987e1fcb10a47a7b6
SHA1 4238b81d89a3a920712ab883f8bdbeae0d319f2c
SHA256 bf54b635c13ebc40296547684b7db53e6eea689a4a3fee91c357909fbfd72f30
SHA512 ab060ed0230dd7d2c3c0e1f7d409fabead4e8b3586f2f6a2333388c2536e40fbb1684e8cb01d8560c082722989a50ed372d9be09b087862b13e57791ede47d48

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\90f20c17e2bc11158145209b110cb75c09654d8b\90921910-a131-41cb-b184-3cd2b1d00edf\fc4eb374afb7ce3a_0

MD5 b2db131f276c5e78910280f81d03d0b4
SHA1 b02e89dc3e4369e006413595a6fd402caf3f1b08
SHA256 6c478514a85997bf916f385754b163ad71b5a575139a9fbb6ea0b26aa66ef5fd
SHA512 bc03f90763286a369975c5727b90752190c08c081d37ce853e1df0ab30cbcdabb0cc8dcaf9556254981056f8dec2472f6cd385a40149800c14f697185998d22e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG

MD5 9a97d96c2047bd09a9594f25f5c5f36e
SHA1 b7c4a7cdbc947650fe87d23c88e7b8047cddfaf5
SHA256 da58fbe549bab81bd7fb54803675249773715507310a87eb1224c602340d3939
SHA512 94d10fb1fb368561556265c5eb58bda91a7a77fced50fd84bb70e83fbc0319e16b86602b124a41dbf3feef3bdf0ae768a1af162976a8b2772cd19a07cadfec20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2260d1aa6ad77c39dc82513019161088
SHA1 b4555337edb3ba9c440245315b04e2e0cac4519c
SHA256 5ecae6d82b4d850f2a8ab42a55944830c11eb46955fbf98bb83b1469b96485fe
SHA512 25bca8e8555e3f573cb2262ed8b91805873e41db2101aefd2c76e57ebc972a3ab2bd8816a1a1d39377be0d8dbcd02798480cb15dfeb624d23cb71d5428548c01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000086

MD5 8fcc16726278a182a9b10f990a2fbf0d
SHA1 2c4dee8d842c4189d54440b3e2093b0aece5b1e1
SHA256 d2ed989ef583f6453dbe1350543c6c54cb639337c867a97aa99b61e2717ee571
SHA512 c0b6289e8e553c1014d8d4278ba9b16d6ea49640093417b6e6adcad6afed1ae6402b082fb27864a77b51b57a0c344f6b3c9bb0789eff3c42a171c6bb0d8835b9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0969dcc2f102b356413f32a54fdfd60f
SHA1 7d945a0b3f7595ca3340e757a7cd2a625b90455c
SHA256 bac1fadfb826ce5070467f20b45d146b383fd2078244c90a8dbd105ed5a507d6
SHA512 42545a24b16a1c827610d5f5b91631708167062429f059307cfa5fe726a462067e904ee7176bb4babd63846723fceb66a328eb3570680782c091a6ea2787850d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 7d2f85964d8b6abd2b3c1aba1de15824
SHA1 951368a53731d18a6b12d042db2c4a952ae71975
SHA256 5991fb223f31bafa2751bc46fd5113417aadb7ac441e05e0195260ef61d6151a
SHA512 3d7832780a25e8a98791df5bc6c27cd715b613bea7c730fb34facd3876a53d89f79995ff9aea383f9ffbe65a3f2da41e809dcc27d25644c84c69a37fe139cd2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 72f9978ef29104f380f5281cc06a4be2
SHA1 75914ff3400ac1a89f91799656032a7264c82ed9
SHA256 7b2191ca40a041ee48711ab91caa83b66cb6662090849a86215c2d77f6651d4d
SHA512 f6882df7abfffdfa5572c6ba20e58435b9ba747ccaff57ce53d048b2e2ee9f6c6872a59260ae7863c5ef42584f3a96f236e408716527505b8eb514723e54b972

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d2abdcb44a619a2de05827a1f2d5006c
SHA1 db9961a8536e9a71e427cb4b2364060290ef9bdb
SHA256 dfe1c7b42162dd107b892a01c0302c35b9190889ceba293daf269bd9ca9f6c24
SHA512 c9dd349af309f7ae4282ce959db4792395fcd810b5e6170754dd6e4263da373730d9d4dd182fcb5ed4176225a1ff98cc65ccca58d74017d5e9c91b89dd3d15d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 320ed3682514a0edfb3755a8e7a002db
SHA1 1a2ed34b479cdad99b2db27d7f811657acaf7580
SHA256 fd488b85cc0ab10f874c9128fd83e4fb7f95a91102b1dc9cde5dba031ac78e73
SHA512 467a4c423ddc1d1d2c611d9b7890b77c04d9e8cbcbed49e90912b4f238970b432ce9c85a4cc33d81d60e9b732d2b6eccaf5dc2f6154477c0cc20db81ccd75d59

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ae28db762d58e65295d94973028b650e
SHA1 2342c2f3aa9d81a37d5221d534d36fd675c2ad7d
SHA256 23c1e74f3a4d9d32f8947aa0d790c3a274009195b9e95a40eb146a05eb0dfa4e
SHA512 3fc4a1c6fb494b2005fb1cfca2c38ce089139b57f975c7de5c0fe8f872a8118acdd8f502f7b1c6be4cd0fbcb03070ce8f72293c5bdec5c86619e2e8ace61886b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008e

MD5 81d606856baacbf56f3f3d5173f63f18
SHA1 815fd032e398860ffd46c477d3a970858f6d7d13
SHA256 bf0c09397ea7380e594af19f53988cf9a829bc17f71f6c994241d3ffdd3d1df4
SHA512 a22c73a295915221caaf2848ecd9863c8805f90d4a9e54c508ad37555afb1bd9f3484490b4f0d6903a268992c35120b6ecf8206030f413fcd17c26476c9d8142

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a2

MD5 21af9bc981d404957c6344aaff4b3e28
SHA1 e5569bc0876884ded0d9594432cc261effc66d47
SHA256 e9515acb1b0c8f7c1008358ed424d6563cae681f0e87c53547d0cb7b9f51b051
SHA512 fb42427a114a3cb5739c30f6235c4fe3102876b2063772665c82ecce483955d357dead930e6da185f2b27fb0e72b9837ee272c3271efa5b7e80f98edf4cfaae8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bf

MD5 588ee33c26fe83cb97ca65e3c66b2e87
SHA1 842429b803132c3e7827af42fe4dc7a66e736b37
SHA256 bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760
SHA512 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 07e136033442adec31756672c2c1617c
SHA1 1f92daa8a93e08a1160a2c6a2c5ea7d68ac3b845
SHA256 0f5074824173d606df43520cbc5416cbbfaf58377f4f00766d2519b057f94f45
SHA512 6e1daa366000eaa959fa0e03adb48ef6fa05f108e41cb39be8cd8558941ac9ee57bf3d6ecbb746005b2e88ad94393e41306497e550b21b1b44ed51077be9ed88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2481972e5bf3692623513f73c5c12912
SHA1 6d6bb2b8da742b04083f817b41ed1880b4c22577
SHA256 4a86b1a65c73a98ead30e137b1a6bf63a5ad68e38bb52d293498b1afe40f851a
SHA512 c8f06767dc7547d1f0ffb5697fdf404553a511bda874602248eb9f0a55897f7aafef62d9d957645af5de520e07899610eb53b0089f59400d3db22b713d53870c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00018a

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\5\CacheStorage\index.txt

MD5 18f7172da27ffda8680876046bd6976c
SHA1 e68622f057938dc0db145eb084858c60f9abe45c
SHA256 c0c19ce5375bbf60b7ef8976bc0a9ca6dc62e23da2e9cbd7f00a43e46b4b3e5b
SHA512 b3aba20915831b3212a4004e3b3ad1559f2317df661691941e2e1be079e8b4dabf2a95fbd4ac9c451d3cb7fb87962a781ec6ed5f8842222fb310b8309f7c4370

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\5\CacheStorage\index.txt~RFe617aec.TMP

MD5 a3a1ff0288f14420849803435c6140b7
SHA1 4c03bf803a18174639ab903661a1fee12ea250b9
SHA256 d57bdd315d32a4a452d9ce25cf3009ea9a3fcd68738ba48e6d8039040942a72e
SHA512 116efe8a468ac122a9e0792269743c81ec0027bce4d3ad3467d8c31c4b39a07d41218dd0aff7ddbf357cc75226b2a93259229c02ba0ab9298ac8bca14bf0fffe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ff7b0ccac3943be9544224ec8fe0d9c8
SHA1 49468009d073468eb8ebe8f46ad2fc3a7920f10a
SHA256 7b83a755236ac6b511001c87d48ddd4be99279a847a13577a0ed2336848a632e
SHA512 5a9fb020d3af0506fde89cc7f53ddecf0b3b66e00cda22c0f1b4bd73649f0e0ebce316a3596ae3822f6ceee1340124a51d2bb5b322b772e13eb9865d430099fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5bb01c9638b2b32f76eb687674ed5d19
SHA1 b7dc8dafef321a56c1a6316aadf9a5249701e42f
SHA256 0155757f63cdbd9ed1df92db65c7ca7919a92e60bfcb1a6c5e791dd815f6749f
SHA512 fd23853878f453869d4d062a31ccb7e58c91a556ad8de01c99a94ae5bf587e0d02cd7491320cb94a7b050d3138ed7494becb272f302e9f39e476b186760036e2

C:\Users\Admin\Downloads\Unconfirmed 244341.crdownload

MD5 529ac613c7ac1ddbaebe9e7d9f82eca4
SHA1 fc8cb991735a98a9663776a61cb9c185a3335f94
SHA256 cd6a5d746b5c36525d781e6d40368f87a3edc3ea157bf63fb55baacc51337f0d
SHA512 e2378819587ed7eb417d0375d49a55ef9292b9e8d22718a52688e3fad59d68a711281f25d1045a9da5442f2d805b9d98aedbf4278c9188208bb2edd917751e04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6c22976974dc9a141bfda1d0582ee10d
SHA1 9905fd4368b30cc0552401aee814a958d599a5f8
SHA256 416490b3cf3f1f6c3c12468bcf5804fcb133e40f22e23233a5aa62c507721df2
SHA512 2ba0b2c3bf42af61015a7a51bc592dd35a7f6fee6c11c706bd7d9ec5e840b002b77779bf32a67c7f9cb4e81a8367f50d782cba1d34cfaae1449abec5e3c49af4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 bde102c717552295434dfad6d39c259c
SHA1 41844e9301493b8f4b82ff4aa857cfe7e6f1b234
SHA256 982928a7cd925901d1cae788645b9ec73b2252d48f61fe6cf0c88328f6097f9d
SHA512 83a96b128100c35c0b2936427c2fa4ba355e135af37f24cd227e5c3dd9c2ef9d2b5c0bad83719e128498a70caf99b82682f19a3dd6c22e880f6ce6d7fc8e9b30

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3ccaf3c1778a0a5096ee496af0430d00
SHA1 0f5107c20d343a0e53740bbaee9f5d817152bb65
SHA256 28651fb24ddb9da0ae8069a68a0ad32400b72585bea8ae8e71e95ff1d7aa814e
SHA512 d7a5f8bd6808865dbecda8ad468a15ea8876dbead8a8264177c5ef846d79c0ede8ef68199590bca2046cc26d1a8782e3c1d13edbd2e455e3d2b4ae98a0c294ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 365a6a92314bc656e9d5f7a0ba3370d0
SHA1 62594625b93b341e0f78f2e63dbda78fd791b1b1
SHA256 543ac744a44fd0d02c407f6682fb2617697f63384a81d668e0e6f8263963b049
SHA512 59004fdb2010c424a23a9dd03637491ede130fc054d672360df6f5be99418491fe1f3ff66222fe1f705a0ed0e33ef29bd35555b4c1cba29ba5601da6a567653a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 73a343547022b489f27ab78d5053a540
SHA1 92326c64ae3ff9098349f2a311b35db6c62c1cd7
SHA256 4f5b39201a990dcda3728c35527b8b1fe26948702a87b97fc82ab874192634b6
SHA512 26e1d05f517f509bde001e117bca4fb10eb7e666da299eebb2fcba9579ff9a3cb0de8057a7730e3016c52c8c5f16157fa57822aee2ff725570ce063454e651d9

C:\Program Files (x86)\Google\GoogleUpdater\prefs.json

MD5 4d5cb1b8b5a17009cfea031b5040de19
SHA1 440c11588a4eee5bf6f8e1acad6b21073214ca53
SHA256 98e06731b47e6fefbc769d78fd2fc522c334dae3fc8c73e28be35bfe0a649453
SHA512 889b8e3e7e69119aae1550ababc50f3f721643df3347152903e009834b7e6221a100931ebfb161a6becc1beb519b30a69773256386238782fd2146e8afeb77c6

C:\Program Files\Google\Chrome\Application\SetupMetrics\4cfe065a-857a-4ce1-978b-312a97f191ef.tmp

MD5 d7bdecbddac6262e516e22a4d6f24f0b
SHA1 1a633ee43641fa78fbe959d13fa18654fd4a90be
SHA256 db3be7c6d81b2387c39b32d15c096173022cccee1015571dd3e09f2a69b508a9
SHA512 1e72db18de776fe264db3052ce9a842c9766a720a9119fc6605f795c36d4c7bf8f77680c5564f36e591368ccd354104a7412f267c4157f04c4926bce51aeeaa1

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 86a3d2d6234457141f0af437c95cee1f
SHA1 2553013327a25d4d13f782cccab5d85d3db8aa9d
SHA256 c88251dc85a913d4a983753faccf4fbf7b800b7ec48303341dce7e94fb09d495
SHA512 e8cefdbdb840ea58edeb3ed415795768dda1127cf77545f6d9ac8079e36f92a3d46b0f44a7bb8320a183c84147b58e4e561f695e1461ae164bde95c4e63901ec

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b7f568d4520d9a04e21141ec2e8f7f44
SHA1 f6f3c182d445865d349ffaf0082701314d640ab8
SHA256 196d4cfdacc12d49cb04d344052809d4d85648f77dc06db9e2baa931b243c2cc
SHA512 d7f737bb6bc87a8b596deb99db5e7c139c975bc6d8378041755a7667b468f59bce77af71392301fc3cf1c3d71759d2d2388a9b599ee3fef0bd5165e1b994dc4f

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 58e2ee3c9d6ec74c1246cf185daf1d25
SHA1 b1ac19a458fda458f5df81cc0fe363ca415e1e68
SHA256 65f5efac27488036ba1c5e5ecaed8294f611809783c70bdfa1b196d3d0677615
SHA512 1c476af7199175e2d705138911f0a9fa15eb26d9d4fa0be658f2854fcf232b28a9b5d71f6f7e254897b4e3be7721bb3a96b2ab8f448ae085a90630012dd4b7a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\6\CacheStorage\index.txt

MD5 84936fe5235594f7e8e28c728416127a
SHA1 6cb9676704d2770c4335c758b74a2c7d1e97b69c
SHA256 e40a236e4e7952ade2b3434037777845f937243ba304dedd5b18a534367a5c03
SHA512 049975936c59c16cb62d7b8712d26c5e76d0ce0cfb3f2bb7e10dfd6a115d078bbc52e32aae4244dc17e74828c6ef5e3be297822a2bd9e90394d9288c51810e8d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\6\CacheStorage\index.txt~RFe629d92.TMP

MD5 e61106cb2407b9c66fcf44b60c24d6f2
SHA1 193ff49d0d5b6cfd0ebe1f4770c9c0adccaa2c6e
SHA256 bf3153b6151725c753f8260d0116907a9283e6863a684b73930567ab503e6541
SHA512 021f533763b7eb3c4989e858cc20caebc3401e87b0c53fac14b282f5d9182818d444a3aff8f6da936f245d66cefb48df360299a4f4afa64d69add660bb4ec94f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c5acccdf5f29b8baeff8ab594391a597
SHA1 1bc08ba34dc0f4735fe781e9d7a083a6a8dff370
SHA256 2b647a4355dba746df80564a8e3b642de2d611e85a4a63678cd87fd438b8e0e1
SHA512 f51b4fb1a5d2d80258d2219e35a549d1b28cc5e0f7e190d936d2f916f8b0f76476bf453a52a6154167e78cf2730b46b3bc877f8d5dfaf59508919a8c4b951065

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d44ab6b293b0f9e3657a3d12a3448179
SHA1 7e88e8221699ea5127e7d09a7f8d00c3da71608c
SHA256 7de05441721e08a7461599380091c0dc1bfdac27cd370dc9fee225699d1dea02
SHA512 e38ad27d2fc19dd512bf4f47bd5865eee7882517b78211c858b9f649dab823b2b772859edd8088cf32acf21c83994bbe771ec8e30476f7ae1629f001b22f4898

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 4f56f2c25c2fb0b2e5758c28448a6c99
SHA1 c302c64c68b5cb4c1717873729afe54f639ba204
SHA256 6cdb97abc0cba14d2ea3ce61a1cbcf6a025adc0a99ad99544eec7b74379968f6
SHA512 17303722524f4828e422a9959c11ad86da660a85b3f9a548d29f6b01751748d650d4c7a6da4c17a8ffa44c4e2a3921338fefcc04375fd92962d293b6a010b4f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\492718095f602324b357e60917636efa746ae235\57060c89-e264-4138-ac3a-d8d7ddc26e55\index-dir\the-real-index

MD5 52e06d6647f82e182a6cb23585201ee7
SHA1 624cf83fb7dcfee56c4456dd67c8d1e23451b447
SHA256 3b1a9440d395994d71d52084b5fb3f317773e53e65dd5d1270b6be54536cf259
SHA512 a56c9bb24d50e1b1a49c37eebbd043ebf6d6e269b033397d5bffc68ce6e8c349c0b792b4102db3cb32fac4e31314a680920ff8dc6c5a74ac569833fb4aaa56d0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\492718095f602324b357e60917636efa746ae235\57060c89-e264-4138-ac3a-d8d7ddc26e55\index-dir\the-real-index~RFe6303be.TMP

MD5 8d4c7c1a062f3c7b08e29e9a13718ae2
SHA1 ca39da8baeec73c3d96af3fd419e966ef956bf6c
SHA256 b541024b5630c264e3e22246e8d937d3c673ef3c2d77a44f606a19848a10c850
SHA512 4331b941548cac546bc954f3dfd19c44d5adb369a23fb3c89598f37416721f285b85d655ebc38407ca8befe44e273fa42aa501a1c655a2663898287cd55323af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\492718095f602324b357e60917636efa746ae235\index.txt~RFe6303ed.TMP

MD5 321e0ed8a6770308459eb97511836952
SHA1 8d7d6b2de665ac207e190258070f2ee1dad6220f
SHA256 22d6dca15dea37dffe57c3f3640a0c0cbbbdfafec5a4501874c1230ce08a3f40
SHA512 f639f4d655c8cf987ed1956323470a396121e5f8414e3e1893b774432d5178e966fd27eca2d0cc28fe1f7a6780618008ed1d988b2ccd6c10d270fe3e0db0dc3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\492718095f602324b357e60917636efa746ae235\index.txt

MD5 2d6dc29e5db7041f6a0a9107d4bf618e
SHA1 bf0881f8c11b7133d8e670cacb119d234c51ee4c
SHA256 82f2134e722143b9c014b816f7c81e1e089d0eff21c24fb994ed8ad99ac52125
SHA512 4687087daf69ba8ac42571038358cffbd73374e31cb20a88bed4618d00022e1ee17c66a52456f9f7f12adb241c34dc5d55d1463840aef08ffc1e5ccaf592434f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 16389d1ef7be7856678748b67f5495cb
SHA1 86584206fbfd34d4a1df5329bae06e9693e38c23
SHA256 b64309b76dd961786072777a168ff9f50ff6900c73ab450607b27511c4e98b53
SHA512 b1b2c4f31377e4bd6dba8e727e5bea35c28a50e82c41b6b451533b03bc3714dbdf531dc3700375dcbc76df19367e0e8461f2b216cbab96983333184f6b4b3cce

C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat

MD5 5fd6bcc1a3e5396cbc62aba38da36c9a
SHA1 dec7305b315100b035f2b8b14c6b55d06ec3385d
SHA256 89fd6f06294fe5a06bad486269f9f2b927ade17d9d25c9fcea01b909390c7ac8
SHA512 7060ba1bdf3daa80037985eef9f8da9dcf951ffbb953add350f9d65cbe0f445b9234c685387c8dd23e28d24db4b7a37cd905a34e66ea667e09babc14800ac705

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bb90312afff17e2830e11d86f0cf51fb
SHA1 a1a3981d17beb2b063b94b7097fefeb5103e0b8b
SHA256 4ea6760ed62cfe5a0dd17714a005be64210fb88c60c7724d82f85fc77970fef8
SHA512 99f98e470f8c4d3b1489c9a302997141accd8bfa4113f257fe4a3d9311a1eb1af1cbf56b55169584fca60991909dec977f2778b6653b02daf56c736f5d6f6791

C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Installer\setup.exe

MD5 776d096934ab49e06d98f228f2f09578
SHA1 85843747c6b28fbfa094ffd37306260a0b80665c
SHA256 4454ee06716329235c9395b1bc3c5498565074bd43fffd70123935ed68096796
SHA512 cada5800ea29613e4cebc370a77b0fa589656ed27cf52eb3f6ae0321d951a98afaa192ae1e06c3a4662726b64a9f84903cc3ec633f7170d1bf25cc66c8ad4354

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b020e6810c159e6e719e15845187fe7c
SHA1 fe26db220a2cd844db88415e962a0d44fc4cf294
SHA256 7830f3a4c0a8c40fe26cc2aa99fe32207293c750f744ef95ac1bd10776547d7a
SHA512 83c3c5677794a902f7f2d0879e5304b2262be6c71ff6c14a9f214c1cd3587d540e26f8fad51836e0bc3564dfce19d275f17a8ff420e5e05db5904e5d9d803a80

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3fe5913d06e186ab18df291f8f81cd2e
SHA1 58a58651d84c47b4a740de600d54869d5148f62c
SHA256 621e63ccd0b165d47a92598a5c3c2ec1b21802d004c064882cdc2950ee9b20f3
SHA512 6e3faa77b9d4d90a2c403a6a004f9ec8acef4ac873249babd422edc6aafdd47abdb7a1aedda8da3003b50621afb11d916c7543ab60b495a471dae661571b6f7e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001d9

MD5 1fc15b901524b92722f9ff863f892a2b
SHA1 cfd0a92d2c92614684524739630a35750c0103ec
SHA256 da9a1e371b04099955c3a322baee3aeee1962c8b8dabe559703a7c2699968ef4
SHA512 5cdc691e1be0d28c30819c0245b292d914f0a5beaed3f4fc42ac67ba22834808d66a0bfc663d625274631957c9b7760ada4088309b5941786c794edad1329c75

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c3913deeb9efa2b389d41d851b76ef89
SHA1 051de36dd2aaf1f30adb963bf3005e778c79d884
SHA256 fc56dfa8a874f0890e2a6c9368b90e5b018df747942be6cf39c8bebef2c27132
SHA512 f1a23440218178181f0830c2820a5d51798557ca51898e8ddeafafd8b9d238b8e7095a9765d62bf99d8d14cf18cff3ed7311b8e9288f9f57223d9122d455673b

memory/1852-4637-0x0000000000E50000-0x0000000000E85000-memory.dmp

memory/960-4645-0x00007FFAC79D0000-0x00007FFAC7DD2000-memory.dmp

memory/960-4643-0x00007FFAC79D0000-0x00007FFAC7DD2000-memory.dmp

memory/960-4642-0x00007FFAC7160000-0x00007FFAC76AC000-memory.dmp

memory/960-4644-0x00007FF7424A0000-0x00007FF7434A0000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 f9f03503e222e9c8b640defa2d842f28
SHA1 6021212c60958c2f38943198a35b90893611c68e
SHA256 bd9f6f01e433e298ececd5a8bf2239d8feee523215f7d11b6c684e08e3207887
SHA512 20ec2af5b3549634924b1d5015347fa08942988aad07f8de0a1773217fc84fdf4710088231e8fa6add9d87d2e0c6ce29a7c4be7262413d4ce0d35439573185b5

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State~RFe63e62f.TMP

MD5 c9251351c33da30da5fea34fbd1757fa
SHA1 246d1058d6e94259317029af3c452d6654b232bf
SHA256 e93f5025ad4cb148390716b702280e1df07af554348eb83a66478f09dfc40874
SHA512 fe575415284fb7b37ca8ac2cb94ec0957c68df12c45e39cf7988959a938f3393fb9133ddbb5761059cbe2589ae86976fd45967ea76dbe1a3e410935c6bdcf158

memory/6008-4691-0x00007FFAEC970000-0x00007FFAEC971000-memory.dmp

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 86ba058e37698e821b9314e35c351c98
SHA1 db4747fbc135400b4d01694aa1c07e520ea5ffd9
SHA256 466c90518e99b553c024a9ab7de715ec922dac293f79217b91863392e3daffdb
SHA512 a5218bdf326f23763cbddf32b45bd607588b913ada411cd8ebfeea7708a87967b3bf7274006823531ebcdb3d5fd54a5a46a010d3037083adb126a2aabe5d4f43

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat

MD5 5303ca641851eab5025a7e30f2574f62
SHA1 071e74a61469e4b080b3dbbec0b15864e5e7c980
SHA256 04d03be51f0dee456ea0cdc1dc83353c6b7fec657820353d300f754b80569cd4
SHA512 c01838cfdbf03d5cf1b2bd2efc1617acd86ff6606911dae810949006613da548aa50269403e7e9c3d5e91b076e2a994ad88b2f86602ce5e017520ae6f723df5b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 b65049f09e0d9598532540dfe42d377e
SHA1 44d9862abf19fc63acbce9b1d68135e9b177a9ad
SHA256 ccb911f4c8643f050a33eb9fa7b713c08544f76c97dcd26aca0b91ceb39b2eeb
SHA512 5ce8d71e9dd668b9aa4b29582b3ec8d773eced6fc2bd28519f6bcb3d6647394ccdcb603ad6d9694d5249669ebba5e774131f89a7dc3257c1fb4d1e0c505309fc

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\GPUCache\data_3

MD5 41876349cb12d6db992f1309f22df3f0
SHA1 5cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256 e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512 e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\GPUCache\data_2

MD5 0962291d6d367570bee5454721c17e11
SHA1 59d10a893ef321a706a9255176761366115bedcb
SHA256 ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512 f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\GPUCache\data_0

MD5 cf89d16bb9107c631daabf0c0ee58efb
SHA1 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256 d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA512 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 68f395812c81d576f253230f9dbe4647
SHA1 2bdc10898aa68ad0e1363ed45a319cb761e9ac6b
SHA256 948f5bb5b0f8a765a6bb380821628a475f1abf3f551d1e0d054d7cfe014c0056
SHA512 e7de249651794c56ea8cbe7a28d6370569fbe0eec0cddf55a1891dfe5fcff674cff8e6353e364be8f7c023a203730ded0bb6c91ebb8c1b5bab2e1484fd545fd9

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Sync Data\LevelDB\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

memory/5800-4804-0x00007FFAEC970000-0x00007FFAEC971000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 961bcf14e206b6091c98956e0e5f49a9
SHA1 1087aeb4be7683d9ec34c9a25e112c93343fce28
SHA256 3bfcdfb6ee65c2d6346b61a890a7442d961acaab61f0f55503440820b5ed80c1
SHA512 09cbc86a007eeaf644334480243df65d25435219545ddb49252a1ec9d2687b1c166e719a29b7f00cc9ccd75c45d9e82ce21f87dda7c9f4b6e450c884226458b2

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Cache\Cache_Data\f_000011

MD5 0c4880fb1de7d2ef097042adee0d2d31
SHA1 ea7b12eae99f8f044352f1dd1bc4f7ea3786eecb
SHA256 506fd688cabceb56eed3a3ffaed6afe80f124c61b223b3c8cc231c74ceb5c73d
SHA512 74d5d2148505142bcfee0f99d3879a4c5baca87575026df3eac7d504b56c849f827645b83fa7fe2d64bc6bc3b53ee35ad458ba56b846b2d4a5e03996e2ddd80c

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 f056f63d2f5bc0a053c2b59f514774cb
SHA1 7b92e07790787011557de4121f0e4ab5ceda8fb6
SHA256 868ad54d9546502a01f8020153283434c176f1fb1d515436b620a92f860575a2
SHA512 9062863f116d37f46b0e648e59fd6307a76d995ec2a79b1c2a65077434b54851b85f3f6854eea38b0d27c12cb2ccf08858ae6fadc703bc2f6a2a591da31db123

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

MD5 a6ba027dded089eb8e6c4123beb3dd85
SHA1 004a115d1815bf6531be0117285e9a9edefa4a68
SHA256 09040d24c64ffa35704114c697172546e3874ff54bea24f10b71247ef5d1c52c
SHA512 808ef8c634638076cfdb571d143132d40a2cd5033ccc23e89a534c4852cdbf4b97f39603d27d0200c037fd48b14201ee6bf80e7b776b2971410dba3d16e1bab6

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity~RFe643c10.TMP

MD5 8730d21c884b91cc0cd5edeadf425512
SHA1 5136f192191e6d52412cf250a7eefd71cb874c1d
SHA256 2e92402094a09cf8de0670c2178e004654367924d838404f0423e9129e87bda3
SHA512 27a2c33c80e48bd023e5541fba856767036ca0862ffcc59daba10b617a115a2b40225d620a3ca32164a1bf86d1e7c3d1149309d0167330725ca32a8ac24486dd

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RFe643eaf.TMP

MD5 1eadd9a9f9f6caa209ffef48ebbb7dee
SHA1 38a21cee5874ab7505a1d0f3ef54acdfbf0106b6
SHA256 d817de50f9507202133f31500f39b168107d3c61bdcd68f5f07e3ff37951eeb1
SHA512 f503a9eb99802b92e646c516fe023824738b0563922c4557310d91de06ef6024811c86ba87dbfd5aa4653559678f28bb7e780c5e665765724aa3eb9f33ecd940

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index

MD5 0130274731dae5d3c66988ac49fd51ad
SHA1 dd8a51eacb096e99abfeaaed5a3c2b85f48e6aa2
SHA256 a02f9b9ad834eb2118918bff304cc27371c0b87297d5c38362d1b765c761ba2d
SHA512 632c8154e97cf9a06e8eb746a4769901cc57e27a01ad3041535cb948ffd0e52f7b0a9a41d1a353d9a04b86c41b4ef7657a9bda6691ca1990db0f982325caa1b3

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences

MD5 2d26febc56f3368e2e5b10965410585c
SHA1 62c53188010d75702930ca8cfefa31c44ceb4fd7
SHA256 4e4f4e356397282af07bcb727d98c41057aa2dc1e867944d50b14fd77d0d264d
SHA512 80beea796d3d97046dd9e8babe846022b9d9ab51c26596cfa9eaad01c27e3639c274b400a6b119148507dba48e9fd83d6ee5c38b1fa52dce8a783d6846cc45e3

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences~RFe6441dc.TMP

MD5 a463010226178639df2e17988371d1c9
SHA1 6f505ff012ff36799159001f0304aa726e642452
SHA256 a36353ff8a08ad0b4608fb21166c52b3407361fbe00e3d784bc9f49fcdc48360
SHA512 f85c0fbdd03806496937d7e5a1744f68ca54cd6df3a3042c5fad8f277b8834583113f40f5b5b9e5a97b6b177769ab8a30f5d4a5a7fe5c08432ed784373850fc8

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State~RFe644bcf.TMP

MD5 78bfcecb05ed1904edce3b60cb5c7e62
SHA1 bf77a7461de9d41d12aa88fba056ba758793d9ce
SHA256 c257f929cff0e4380bf08d9f36f310753f7b1ccb5cb2ab811b52760dd8cb9572
SHA512 2420dff6eb853f5e1856cdab99561a896ea0743fcff3e04b37cb87eddf063770608a30c6ffb0319e5d353b0132c5f8135b7082488e425666b2c22b753a6a4d73

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

MD5 f3ab493290f8daf5dd423ec4266ce51c
SHA1 1580c02c60ef9c5c7fc48eb8c0a0398471267e44
SHA256 f453f99455efa75c10b65913994f43d639634bebe858ab2f7a0418ceabdcfe59
SHA512 0ca5b705995dbe48bdea68bb12c4d03b4ad50ceb4941bde20f8abf2bd62a5f7ca9bb28cc7c9baac0a8ac749d44a008670d42cc62601f257a2a28657b83b32a57

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\66838349-780d-4d18-88c7-943194d06c00.tmp

MD5 1f1aaa4b4d7065f69ab15784039e1560
SHA1 52d3b97a9c217417a2e6009ced50b1a49d50ccbc
SHA256 6a6d2d2d0fb06d0c82baa06baab93a8310761aadb4825a78ec1c23a9e6c9f7d1
SHA512 7a4734b6ce17d6aec6bccc6528788b6c8222d96b9daf2d79613359e9e5c02844a144880022cfe4219582f173d46c0c98404fcf1f967f2baf727d552ddf0a3ce4

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 78cc14e81579d89a670bc5c08ff8136d
SHA1 be618cd557260281c6acc15552e1814db5cde193
SHA256 43bae2226a4f8a044cf148e5c6d7efc20abc707fc2a4862ae344001d50e8731e
SHA512 f54b27c6450a3a2213aced01251bf04602a81d4a8eb9c6b544e34aa12bb6a3d99d1f01df326693fd758a4654b58eed2920e8be059923cf940122aec2a7e5b656

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001df

MD5 1aca735014a6bb648f468ee476680d5b
SHA1 6d28e3ae6e42784769199948211e3aa0806fa62c
SHA256 e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a
SHA512 808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 d5c46c99312bc44913e4ad130c14be75
SHA1 06a3b8c3c9db0f8d4c3ca3b6b68d1419dfc74f3d
SHA256 c8bd9816e397c631a1b52057740f46d15f49f868233f7026a03a82322d9d903e
SHA512 8fd6019976b641d4edc497703ccd36ad7039298f95f6569bdd77812e024555e4cd5f1aa9269a2941dccf1cb05b9118ab6a1ee3fbb585d55e81f936315bcc2e1c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 41f976ddfa4a69a46fd9a06a9e908039
SHA1 5d21c833cd278287543319d9f60d0a1ae3ea69d4
SHA256 26d7e8beb322e30f1fd2b352bfbee6ea13096e3fe7a4a94a076181bc1ee5c0ad
SHA512 45b73d5cec910b844cabab28d68564ad04be09dafbfc57ed90b3bdf8729f2447b2c690afd6d77938c98fcebe379a224206bab504be2d5a215cecba63139920e0

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat

MD5 d196aece4a3be83fb42a1d85b026d9d6
SHA1 22f21dde17edd992b2053098cb6014fbddb74e49
SHA256 4d2c2e146ab062e05ed9e64be9bd112c65d38fd16a5748fdcd631d5ccbf93d45
SHA512 0e7c56246b0846fb040fba8fd9e80d979cc15ef28a0fa19c0bd9411bfa80fe465ea1196e2045ee3f5f20330abe50ea15dc6df4a79950aad8a113c8d3b0ab3a55

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\f0ec811a-f89d-4a2d-8040-de99572e8ae2.tmp

MD5 3cd071373b283facfff7d328dbee413a
SHA1 31eea04d677c7a5077c34e4d49b66f66acd02fbf
SHA256 fdc6a96b7f7e5af50c860ecc0ff667963ff8572173d7b9d232251a444a9a25ee
SHA512 feff9f7400584010b8312f94a1d3cb4fd3ed1ef3b3516718a297efeec3256f3938f1bea74053bc68db369ee17c911c6d18137e24a778012bf710ce7b740c0cd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bfb91e2f5c991ebcdcbbbe1b2c1eefd9
SHA1 04e4f75e60396c5c47409114b2988668e37a7148
SHA256 fb8b1dd7712047500332771b62571ce6e09ec9a5960427c3d3ca04e4d763f199
SHA512 c82b7621a8a546198c1d16d22b4597322d5ff508b28b5687e3fb483098515869360168814d10149e65546141179559007451227b806838614c62dd9b5c467d85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 838e57acdd3caea68cdc113756670a53
SHA1 ae72bf93dbc6138b774f8ccf578b5582427f0019
SHA256 228d56e995a628989852794174ea828d2d709e0207367c113b8cf19db79cb63a
SHA512 69df17ed64411e574a5b520cdd13f03d89e724dc37a64e3959da118224e61a8323ea8725bde18e057aea05999884a55a592e1fb9eba862b8a6bdcbb9a135d36d

C:\Users\Admin\Videos\Captures\desktop.ini

MD5 b0d27eaec71f1cd73b015f5ceeb15f9d
SHA1 62264f8b5c2f5034a1e4143df6e8c787165fbc2f
SHA256 86d9f822aeb989755fac82929e8db369b3f5f04117ef96fd76e3d5f920a501d2
SHA512 7b5c9783a0a14b600b156825639d24cbbc000f5066c48ce9fecc195255603fc55129aaaca336d7ce6ad4e941d5492b756562f2c7a1d151fcfc2dabac76f3946c

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping6516_749637733\crl-set

MD5 d246e8dc614619ad838c649e09969503
SHA1 70b7cf937136e17d8cf325b7212f58cba5975b53
SHA256 9dd9fba7c78050b841643e8d12e58ba9cca9084c98039f1ebff13245655652e1
SHA512 736933316ee05520e7839db46da466ef94e5624ba61b414452b818b47d18dcd80d3404b750269da04912dde8f23118f6dfc9752c7bdf1afc5e07016d9c055fdb

C:\Windows\SystemTemp\chrome_Unpacker_BeginUnzipping6516_749637733\manifest.json

MD5 b6911958067e8d96526537faed1bb9ef
SHA1 a47b5be4fe5bc13948f891d8f92917e3a11ebb6e
SHA256 341b28d49c6b736574539180dd6de17c20831995fe29e7bc986449fbc5caa648
SHA512 62802f6f6481acb8b99a21631365c50a58eaf8ffdf7d9287d492a7b815c837d6a6377342e24350805fb8a01b7e67816c333ec98dcd16854894aeb7271ea39062

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State

MD5 bf251ec20d60a7a77b1f6b0bd19dcdfe
SHA1 800611114bb88d23338b11c0d42942351dc6e044
SHA256 f4cea9681c1bbf3ba67c77f11db84ab5a631685bc9df5b578ff692173629a877
SHA512 97aaad53ec387872a6efba305b3ae588b3f624ee3d16e70a5a1cd9db60691cf9393a112992700e5308349b71a22ad04e9271b1d5e1a12ada0405a0fd860e72b6

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences

MD5 4d77993b83c86b4b696145f14cbad8ea
SHA1 e15cd1c73145e730b41f7a0ac88e73f18a3670c3
SHA256 46d0c20bafc6eae77659d520c96b26dc2e08b365638588f78e1f09911c3301bb
SHA512 9941e61bd2c7917305f35376e4bc83ce91fe3926ba277974bb0400d3796a93771a14c12d053b936c7ef00fa602ac1faa1815711cd7c73069a604715ecfefb4cf

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State

MD5 e5006c915d6a63445362001a362333d4
SHA1 5e35db544921b577ce8959c710e5c538bb6feaec
SHA256 ce8be3b01cd56930a88b2eff40a87ed95706cb32053a5ecfe5cef10b368aa3c3
SHA512 e15be95370e5a54d9cf98c65d06d29ef6afd76df035bdd7b750f8a8b4c7b4da7ceeebe3ff2934fa88547063bd5a2ab4bfb6b59ec032fb985151f2fe04abdd461

C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity

MD5 871fc5dd0d41eba1813d9eb20045bb48
SHA1 87d8c7b3d652ebd78516a0c2eafaed44d1528fb9
SHA256 81c7675590d020736d892c292f9b349fc4b2ee4f1d68d323be661e04a22e44c8
SHA512 3a34cd7cb00148c20d9b01c3505b576c02094aa412e3ba2490bd2dae147bdde493ccdab7dc4fe13757836ca0a532324b12311bd9ec4def5d96878a1b31428495

memory/960-5591-0x0000029558250000-0x0000029558450000-memory.dmp

memory/960-5590-0x000002955A720000-0x000002955AB60000-memory.dmp

memory/960-5596-0x000002955ABB0000-0x000002955ABB1000-memory.dmp

memory/960-5594-0x000002955ABA0000-0x000002955ABA1000-memory.dmp

memory/960-5593-0x000002955ABA0000-0x000002955ABA1000-memory.dmp

memory/960-5597-0x000002955ABA0000-0x000002955ABA1000-memory.dmp

memory/960-5600-0x000002955ABB0000-0x000002955ABB1000-memory.dmp

memory/960-5598-0x000002955ABB0000-0x000002955ABB1000-memory.dmp

memory/960-5599-0x000002955ABB0000-0x000002955ABB1000-memory.dmp

memory/960-5629-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5628-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5627-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5626-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5625-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5623-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5622-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5621-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5620-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5619-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5618-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5617-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5616-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5615-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5614-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5630-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5613-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5612-0x000002955AD90000-0x000002955AD91000-memory.dmp

memory/960-5610-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5609-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5608-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5607-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5606-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5605-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5604-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5603-0x000002955ABB0000-0x000002955ABB1000-memory.dmp

memory/960-5602-0x000002955AD80000-0x000002955AD81000-memory.dmp

memory/960-5641-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5631-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5640-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5639-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5638-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5637-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5636-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5635-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5634-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5633-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

memory/960-5632-0x000002955ADA0000-0x000002955ADA1000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2417287fcd1e0869cb1ec49d37c89878
SHA1 ed7cf87c0628927027b2dca370de8eaff923eb33
SHA256 d03c44704daf84c07ce6161a2a6a1e2d19ba808e9ea1fa8eece0193cce7350bd
SHA512 7c28822011ca628ea7746630efffce34fdc8f27a3e6dcb6d2710eacf0f2cef9b2a7be374541588d36f0a1aafc5ba3a82d627711dfbfa088088d9b4923a11cc5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 070ce47c4debc2299e306b2984ed4407
SHA1 6c08cffab9b206eec1957525de4c19bb82e3fcb2
SHA256 b5daa3ab93b364158997ffc9c948e8762d50efa07a04c1f338add67139d45af7
SHA512 ffb31eee991bfc7d076887c1ff3a3bcb83a6e03f21f1925c8a93822c1164181db1a1d3564833ed770d37b5ecdff8a60dd123ef51fa75e4e3210df63e76aaf32e

C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db

MD5 144a2b2b3645556e8ce6799d06e00f49
SHA1 a89853c2ef32ee784891ae19e3e68ee1b8f9d7b3
SHA256 e79a90c7c0e519a8c9dfcc077e1c2e2888b7c18b5fc164ed229372fc0ccb2220
SHA512 9f11558bac3d5cc79c12cb10079e7e645f2efd394a2d5f3a8b9f572cefb29ab643b980e1aec8e1553208b7cec1750c2a154894ebbfcb84e5f7091d8af290986b

C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db

MD5 f0ca9fff70276f7d4b07dad5916c6bc2
SHA1 d41f48ffd2fe8859ff15b7e077020d80862436bc
SHA256 e65a86f589048f652a83e88f364e8bc725b72a7736de7331946dd3f81568c12a
SHA512 3832c0f28476917e5b19217adfad34f46f3e05fe8f0246606fb2071a4275a472ac380b0837a4d3ba45fca858c34627371c222d8774267d73c2da295ca24dacf0

C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db

MD5 a05ed79f63d6c53f947d8aa81f324a4a
SHA1 5224f39fcd09a31d9b5e4b8135362fa155cc73ad
SHA256 0c9f1082ba2b9b637edf978f45f49c6714f42c42a586fbb747c9ed728448bff0
SHA512 511618662341ba8a8bc019f856c3d84fad3693dbd8cc063bcd9e327aab0384cfbfb10ea93607426ca3ad9f029ddf43fe0ef24c8a2e6f2ef1019f1de0257372bf

C:\Users\Admin\AppData\Local\Temp\Roblox\http\77df496edf70a1389e5e37b9ac2e66fc

MD5 549d5baa6aca378dc9b13d75f597273b
SHA1 332b27fedba2c357bb26a672da53161a8bba9940
SHA256 93fb04e550ae786f03823954656a62743557b1f00de2848df90e44ed3b4ea188
SHA512 c9b69816ba575fd79706f4de6b2b4fb4afd66e7f7e6aaeec0a32684d5592ea6158ee9c05040a08733f63c7ce575b941c96bc3c452c8eafcfb9ea869739a00399

C:\Users\Admin\AppData\Local\Temp\Roblox\http\102bf581734d85dde3587fd50f490091

MD5 fa3f0b17c6256ce6f5e63be483b0ac9f
SHA1 173a417e1da31d1416e1811e81b1910974ec917a
SHA256 3e7eb7f5ea678e81557df95a5f8a6cac67886bf08e87598cb2cb1d637656a6dd
SHA512 b683db9353b29e43e0294f47783a87f9129cbf40b539e03e146ea34cd5596a8c3ad6c7f3160a62b72d3bc03cc2bd0a9e58b24519b832b55a75399a2e424dd61d

C:\Users\Admin\AppData\Local\Temp\Roblox\http\720f83cb75ec958d0454d2681d140b01

MD5 283a3dffdcae5ca362b39513609877a0
SHA1 0f7caac8906ce10530dfd2602b299855fd1aeb16
SHA256 e97545156ff15e14934b366d39dfb9cf1daa8d7953d814ad5b26fa4fefdc909e
SHA512 9a64309b3d7d1111729eec356f567eaad119715bdf35b4b0009ab6c539717cbb56835109238386b950d234660d1c6fc744fb0ff2c2ac1d834f18ccf8c3bd3a77

C:\Users\Admin\AppData\Local\Temp\Roblox\http\5d34a1f5416fdc978c6e0c7edc7d67a2

MD5 c76ac26f80988d0fcf03874d625b86af
SHA1 b04a5e95018f8eca571daa4077e66626b9ba0de6
SHA256 3dca66141315cdee30f7604013deab2fcc1dd74af93f9630fb700b7606f531ab
SHA512 23ba1357212eb135ad87fcbb81bf73fcf2e189da34f08ca1cccd40d763a856e9ca8ce5514af395caeefca2b0dd3a6fe3b8d43e060c5baf5139fb357fedb90a59

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c26a1fb954d71303d656a1986c7186de

MD5 73f5ca774758f57c29df95e7646787dd
SHA1 9d4510e3cd917ab64e17b47792b6e9d3b4526952
SHA256 8fdc27df2ae86333c0275be4e25f3ca7ea7e78b020df1dbf6ffd7a2b085d7d77
SHA512 b2160159c6ed7acb681be30d390be46c3bb7669f5347b536b8341b758506ae14e852be7b8bf3df2df41999cf11bcb482f4001cff3a14896464e6762e760384c4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0f10b6865c21c904e29f52a54a31f37a

MD5 38b25c1089062288a7a9a8876138e465
SHA1 d7dc1955cdabe9a50ef4f6b345c9012e3efeb56c
SHA256 e39aceee4952e730f1a101894520b046ff21156ebc79c0f8e070e87af20fdd29
SHA512 198469bc9aa03de2c29b322cee7714a67b1b421a8fb0b6ade7148f54fb5ea0a37f6afe5e80f052f41815174363ca2b2dc8395534c624f0f87d2f7a0e9d773dd5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\66dddf2a734a4efbc883a85eafc1b90b

MD5 36d8d4700055f9b24cc3b47fd305ae0f
SHA1 04712338538712300bfd8983403bb555c628628e
SHA256 8421c33d999c6214a4f21df84518b83fa563d4a9b0a889bde888afba72046231
SHA512 948359b49eb78f06ba4f086d433e2f71d940d4d593b013fdaf43223946034eefce8999bb3faa72527de0a74665e30f61fdf25d85650b728102d4a45e5b7e7ad1

C:\Users\Admin\AppData\Local\Temp\Roblox\http\8f3f01e20d650f3f69a04402c167cf37

MD5 57d5b944f819a150ec24a0e56bd9dcaa
SHA1 786cd6f3c764376823039606c7adf3341afd222b
SHA256 9ddf74a1f875b2a4fb4e98a8137dcaf127e77abc30d86f2b9397b35735e6ea25
SHA512 aeb60dd88335e36b8ac28677bcbd8d3087067d882c1a406b11fbf554bf5c52addf5916bc4e15ff31c5454a2a49a22f973a37831d9c0c9e817573efd83c9b7f8a

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3acc8af1251b7ed321f9b36da661d9ed

MD5 808cb55c51b6fc55fa6cdb17892dc876
SHA1 4487b86a3a42ff05e109800b1827c100390245c0
SHA256 eed0725bdeac66a2e53e7daaa033f06c360314d751df70176a0af3f23eb08c7d
SHA512 0d2e6534792e7d417a6fa8403f22397f406352a38bfe1019d87e0308d041b3e69d7defae77e2bf6b87adb3b7d59718efea7d5fad340847c681eeb293beb0f24e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a9cc46002a4af86d3ea38943fb0ceaa6

MD5 954fee2cdb85a19010953a2e94be0669
SHA1 9cfc174656d1344512118b5f437ef767eccf49ca
SHA256 ec8f7150c89fcbd628a533ee54542f431c3835cf93d43691895cf8cd3831e183
SHA512 ae4a50efbeea009f66323f29135ac5593bf58dd046ea7301d7cc8e43234763d6f75dd9e1d93b01b8e09b824280a849aa82e40194723db38024a455158e7e86ce

C:\Users\Admin\AppData\Local\Temp\Roblox\http\95d98e1cfee595f720d12856399cbd72

MD5 39be6457e3ff988375205765c4660895
SHA1 8e946b84ba320df9c28aaa6e759e24719ec38aba
SHA256 1194e8aa1e2ff45887bca03f3ddee55de61436c660e162ae343ee64e7d146da1
SHA512 80f75601d5887291d0f2884945dd2ca197090431fb30dab6e6ee9ef601076950922a75f23a577dc58824a8ea7f57c48c1a742cdbc13a28215bead6b2b0b47033

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a1aac6bdbb2642f3f23fbed64d042c3f

MD5 2c65a49f36fbe81aed88d7626a0112e3
SHA1 832fc429cd021f288f5ef9531e7dad6c9c6507fc
SHA256 eb8f138e67962a5c7db64722b78454da2e3c3d656ec8d72c9bec566f10a942de
SHA512 4fe7c7a7e439f6b43bc13af9291994ff913fa65ab1d77f162c97b18ae505b1c46ffb2c9236b7c9010580b095526a58204bf182aa5d476e3d0a006b2ca450d181

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ceea000e430b7c9714bd62a61ef5eb0d

MD5 e6bf3b994b7bd85aa47c17406d367d2b
SHA1 b18be2803acd9576aaa72bb19116b09680f0cbd0
SHA256 92638ea5cef2b20242923fd21757df86c8c434ff12243d480250364b8480f2fa
SHA512 3e207bfe1b30c981fb533971769a4051c0c87ffbfcabc012606ec939c5b66f2bf59cefeb85c2b903856d6396584b2c96472965c11d90d6a1ac9f59b29cf3d664

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c53416998a218bbaf03f4875fed8f962

MD5 161f70779b52fe8cc990043fc1d38682
SHA1 2caa927bbdf5f67fb2d4c9ebba6a0308d8f46c53
SHA256 a0ddd1e9d9fb123e15629f1059de0c121cb8858f2534918d5463636b45aa7e1c
SHA512 ce78bb57332491bf52bced15af8e2794bc34cca0d665959ff63d8aa266d85be6458652a9d3929116b1ba53a9ea20372a39a947e74ccee002e6088371f5a4814f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0cbacc9a3c6aa07deb13db83f658936d

MD5 e3690a37568ee9fe7f191a17a47e2146
SHA1 476c939e0ca065001820946509e36ac2842fb1fa
SHA256 b8da756d34febd98745815e7ee643c49dfdf1adeece7fbdeda22487c06472f28
SHA512 c7b777cb3616fbe210b58c1e2395ffb378ffb36c2fed3af8c634e7d39667b9b433386d1a284f936a1d4e10e76c7a678e97216fe801cf95a0fc3fb313fc4514a3

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f47a9d5415245dd05d023078d1d460f1

MD5 a33b1a5b82d26125efab352c2d167a7e
SHA1 0460ab7b59691e0f18d93a5c5750bc057a177bf0
SHA256 c9b5a3b2ad180ab625c044b8da07678221c9300654139c3d3040dfd1fb43fd21
SHA512 3b1fa3b952438592718d46df3f1a84f4183384092ac05cab882df00df393e0a7e1041475c90f127a21f9a981460f125802351c006d524073b976e84306b05394

C:\Users\Admin\AppData\Local\Temp\Roblox\http\d97695587f3d51b2a716d9775b82477b

MD5 1ce5826e55fb1b8fde85ae58ebac4b99
SHA1 84f1bed8443a656264f83a6b3ee2452ed328e81e
SHA256 b2991befd92dd77836900cd1ae85b2c426d9796009965bf16e243aa665a06f25
SHA512 86a7f84143fc3b03e0308e04e748f5181570df6b7609f56357c9e32d57e2c47e5f5a25a897b3dd717dd614d8cc97f1f74af1a4c0254ab5295492559abfa65d45

C:\Users\Admin\AppData\Local\Temp\Roblox\http\228f383d708e8556dd5a633706f5172c

MD5 fe7d917b2e5d524e0419fe17a77c3d41
SHA1 3617c58767a99567d29b2fd0326111dff44bd0b7
SHA256 b908f62d8c94f9ef1ea454c7fbe6a1f2ae71480864fdd28dde13b6a95d0fb7d6
SHA512 647c23ac035ea50a3329ee8271d330b3bc34d2ee9df485b3509d601b203cf6a7cb344c882f8e61b21ddbd1812e1bcd40c71cbff07725410a9912f72a54952661

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 a124ac9f9f82ce9bfa4465e75bfad473
SHA1 465ee8d621bdb73b9987dbe479b976e1cef6917b
SHA256 97c10ff6f86f63a5fe2097b8592321a600ee8415cd1822e441c0ff138139261e
SHA512 2e5205b90c7de76a8ff73163520fc36db7ced0f891209e6f2223ec5419b0a08b0aaf866d9f57ccc7f99a1209d9b94567f840374387282090f54b33f35fe367fa

C:\Users\Admin\AppData\Local\Temp\Roblox\http\ebf23c45762d6add5c9d1c8377240f00

MD5 7a7b02029fb88d1fce1162fc174bc94c
SHA1 34d009c9b10ee73e94a37c026031c5465ce84e20
SHA256 9b1792cfa537316e12514d5271013d94b24b0ae8ee1f4529b2bb8986ed4ad16a
SHA512 3b9f619a6581036d681fcbfdbd1396e901735b73fb2c8d7514bdd52ba3f566fedd7e7d88c11d97e8204972ad812fbd1a82a469ca6ec8d99565d5289e82514442

C:\Users\Admin\AppData\Local\Temp\Roblox\http\6acac54550db6e95d98e1c6bc42ecc5a

MD5 d88daf3f28739558f25ddddf1052b882
SHA1 128bd3cfeb8666f8c9997470974ca26d8c4ba0da
SHA256 9cff6e500d03e2c03036d5da53f1c768abb23240735cda9802e3546b2311a531
SHA512 f71cf5a1283973c432562122a14085ecd55575b264e4ca9dfb584ce9ce062d1bd4b8c747661b46a7d1804c2f9ea8d869cf61f2a235e8a0466e577e9cbbe38218

C:\Users\Admin\AppData\Local\Temp\Roblox\http\e79102e5f9a40cc6818de314ee868826

MD5 cf1cecdb6d1c699c4dcefab661d935fd
SHA1 af461eaf67fe300f58eeb281f454896185d3e3dc
SHA256 d2cadc2b2afdc717ab980c99bdc5099437af1ee7a365fc1c80715b38afdd5ea3
SHA512 9e75bf068e51cea62e52cea591fb54748e2cc079f1ebd27a497c9983b3b707f8e178cfef2cf3c5f5f4b822e41e061fde3f42596a870f89a5a5b9c5c017810e63

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8a6e38f963597d931c1fe05844b87e90
SHA1 f4f9195cf4639c64e2a906912316cbf14cfae783
SHA256 0033e5d63d98c02995147b5df09daa76f92c29fbc1722bf980af32e87b62e1ff
SHA512 a7cb942ddd99e42b0838a751a940ea167306da44cab00e4ec2a6f03bf741b5cd09a9d9008d0cf3cb9d89d9cafe1121a01ba2d75d1fe6a2e756d7437648a966c0

C:\Users\Admin\AppData\Local\Temp\{1D1DD8EA-920E-4BED-99A1-8AAEADAB8824}-MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe

MD5 1f744e1c802560affe8b308640b6ab67
SHA1 bbfecefdf891c11d573760d4dabdf86091463421
SHA256 fa7d8a8cae60ab620d2aa887de62039d2647e4f5c1c649d75f0f52e14ec11a99
SHA512 780440aa518397e52bb429b5a8e7697bf0096db0fe343cd40a541b60f34ad4976ef7fc2204737d296a8c1fbed2951496503dc50158d6455617c67483f87f3015

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d56e3cf8e4fc5cc594782508b325d51f
SHA1 235f97ed836d11e0f2c9df6341a692c66845ee12
SHA256 d3d438d8af45448b400ff006d5be8c90d70cbe9a42cf3549cde2f182aac5ad4b
SHA512 b78d2c5ae73062dffe0fcfacc84723de9c37d364e5d902a776646908b057bf633832d4b74dc88c5977a739a5dec2dcf749de4478779567bd2875a043f5f11a3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG

MD5 05387bf6a232bbee7a5ff3d17597b993
SHA1 56ef51840c52e8dd1ab736c825b22d6d2581e4fd
SHA256 a8ecdf9674c41e7a1f7f6d93c403c15efe3bfe9a480442d30ac181a5eb8cd1fa
SHA512 7e3c8a2706e830b3c1f6b38481683153ff832ebaa22e2c0dd5aa4dc53d738b55f7824c5a6f2f05bcd5b8eaf2ecef6f575bfa9fad2f565fd0440e6773ee91017d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0a12f5842e07480888550499db5d99f8
SHA1 791254ba7471d7bd83b2c90de1c690e7f3b9e4e4
SHA256 c3ca57febf991ef64fa4f848b44e03fc8bf7530e0e37b35fe919e83fb670de15
SHA512 12301fb22cfc0ea55adcc6d5427e47538c3cb2abc1885aaa22396b3c23cf99935d9209e66b8fdf3f98ac204d024ea8b79b70e36146b34fd9c532e38e90bbf61e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ab

MD5 87c2b09a983584b04a63f3ff44064d64
SHA1 8796d5ef1ad1196309ef582cecef3ab95db27043
SHA256 d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0
SHA512 df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001e9

MD5 7deb26435e6ef8bd69df8526dbe787df
SHA1 147ebc2661871a803e797a787677ee29a14828eb
SHA256 3b561861056163b8fb1da1ec73c81cab3199b22c85a52e9f6127cd157b2e4897
SHA512 b47e10dc2cef0d11d067298b3521a2ea615b0017489a0123cd4cad0d3786b7437119b839e4f7f56f841e786052184fa9b8e4c86810b66a493eb0c9252ad4064a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ad

MD5 3f2995ac3c327b326297738083e8877a
SHA1 d8ecba1f39df69a5ff9caba5ed10f8dc626508c1
SHA256 2bdccf24797cd777f6a7f68c11d2307b1b924b8d8ed5b2283e85ee3e78191184
SHA512 90336f63b8ab0cfb928e076b1663db5f47968b3d23fa134b22cf0bec2fba331231d57fbdad0804f2757a818635beb23d71a865515365b539997505fb6b6c4b2f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001ea

MD5 1c8e100a51679ca0ee220ad6fec32775
SHA1 e01faddc0dfd739072431297811c9d6f4ff7566d
SHA256 9e758d6e52a9d8d37b181c7c42f115ac50296548263a53c4cf79fc3d5071d1aa
SHA512 341b109f2c75ffef7b0ccdb6c9d82f9f23a0e215fac7cc2bf9015eee011d28fc21c4eac1001194cb0380829df5a2687456389ce5ee935b69a4c4b29f3db5e2a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b5

MD5 20e84051d7b8c097a4c7f732f1b7cf75
SHA1 fca1bc9a1bebe2546b785ac5d5b98506ed7d1a68
SHA256 c7be541f2287088ef1849c284f3d83695474bf9811f1f062621f78bb5e07361e
SHA512 883de352f9783c327c6a996c556c6c2be806ecc53c5059f56c2fc1ab351ed5319bef7cc14f894a9a3fe3584fccc72d945e2533a61f925e80c3ad6bf2b8f8b957

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b3

MD5 8bba2516f31ec7f2e08927289e212d9b
SHA1 78f03abef41b96a1d2fcb43bda9a39f527697ca8
SHA256 76710d555c8b489f86d7931f78791513b8ed2e67a236040e121a717ff987916a
SHA512 0eee53a780c73884d83d672e51c848dd14848848e6eac6f956e27987c7af3b36ecf34e61403e15692b5c535bd3fcb7a13b818093dac0d601f00f478ee69391e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b4

MD5 d19f357145a2ee96291ea0f34504aa36
SHA1 26ffce889eacbee5c4e96fd8b61c2ebd84cd1730
SHA256 f085d23e60e753705381c1861cb512e90305651e4107b9a3db6529367e7ccce6
SHA512 25987b8c3d8c56b26039c6f1e46eba6161739c93b81434822b0c85282310b63387e9c2f9af5de6dd7812ddf1eaf1491b10467c8fb1f1c285783ffac2f3496efc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001b6

MD5 4d1cfbade9765314d6a5ba13ba24e491
SHA1 92aae720f91964839eb4baed8c8b72666e9a8027
SHA256 8ba23d481d4b5a94379950640ba928c297c731c84dfb32f20c73e750670c6e01
SHA512 2113a63b67e07ba8aa6856cf9eec35ce53bd9cc4994a364f85ccfbeeb44e0043278cc4db2b5446960fd209a7c10250dca8d04d265e3a8c65807e13834a37f391

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8aa65ec13cc1b5fe8881b53a46db6d02
SHA1 ed10d546c1c96b0d41958db4f9c807e0143c16bf
SHA256 e417c9adad492166d59f7fef948dfc0ffa9a8d90db9527aa75d46a27afbed1b7
SHA512 33d624b1682beb2e816219e17a80fef9d037e6e34f673b12197c4dc4aa72010dae961fd565c0b68695d7903a5aa61703e5037ccddf38ceef7e8afe5f4e3a02b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 45caa4e2ac16edb8acda80e51789d149
SHA1 b48343fa1410c752f0815aa26a760afca0b0ec14
SHA256 e6acb25c284d1b7deb78bd582cc16dbf464226744832c9856bacb552f0447a26
SHA512 1419bab323fa96e887156542f332af040e31090466ab9aabd74be456f2991cc6540a573aa0602dc02ce1e822b343c27ac1135da63ae7010ed6ac1a9df87ac7e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0001f8

MD5 f9829f29b97828c48352a3ace12633bb
SHA1 f02fb3c0cfe57a51c50475267f54a59711f5a41b
SHA256 5f68c2ac82609146b08ef2534f85db2cd5b2512deef4472c3ecbcbd7216bd5cd
SHA512 b6650b6a94d0cf9dff0f7b0035e0cab8e88705585135d81108431e42b021bdb1e5966aa8c96078935dec851ce1b5059cdd665f0b5dcca41fc174ae2c1d68568c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 41ac69fe7063ae2c3db0654937d31030
SHA1 60592b563f1906c87afb80bba4ee2272bb4847af
SHA256 b20adb81c5318de7627ab64bcb4772d92ae4f81c68833b99f056ab389f18db60
SHA512 bc6013b0459b61a48ae537f4b9b7f30eea8f99d31d8547f3900802692c1881d19d449420a7a9f1fd09b86276a44da6af76ea26301112a8679bae4f3ff02e354b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\36\9.49.1\Ruleset Data

MD5 c5e30274fe7b93847f6d7c02410d1209
SHA1 488a49f38459f29e110c706c51b61ca1ae3b0e26
SHA256 e634e3cfdd0d27d0be1f5f9a19748d19d564928765db343503f42a6e1f5dd4ea
SHA512 bc235bb3af269e9a828e6788dbae2b42cabc879b858102f4cc76c0fa02af0e296d20ffc8f134c0a3f9b408643e4810e8c46afeb0c285b892908b06ea1aa1b811

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\6\CacheStorage\index.txt

MD5 8c58840c668cec65c25e29b869db2989
SHA1 1eb611a5dd484ac7580bd7472341ccf70b1b41d1
SHA256 baf96d605925972d439c8ca2f5d68dc0c72bb94c5e93ea61d362829cb390be7b
SHA512 fcf85e498c30401f1416a6f9e737a205a6bcdfd871e9046772ae99a11d0ee883bfefcf4f15f78ffff213a558d1d26711ff20578c162ed39b50736b2e7c507b86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 950f3ca29cf3773899935ff89c5f931e
SHA1 5be11febb41bea778b080d834827c3a5893ebab0
SHA256 1a9dc1a928aafed532add8680aca781f72de22ee55f4dc0270e35ee951dc23fb
SHA512 230dc8e8e789f9e58c85f5ac71a5b46dc3a9eac802666b0907ee2abf6c3bc7c417917bc5921648d4b261b834353237c5791c1ba89360efe52cc04c39e529e7cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000220

MD5 9c84bcc5829a19a39b66a469600e69ac
SHA1 cbab67ecd0a4191690079aafede10c70796f6326
SHA256 aed0f1a44515d9aeb954a1b8c80b27c6411535f84e38c774b52aa7eacccf75c6
SHA512 0ae225b5a6d038a8ffb5099f487e632f0cb1e796852c4fece019517a5f482e9c6e6e01f7d409bb563b4e8c80eb114aee2021b8dc45ff38ff385e298557a8b448

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00018c

MD5 e375447ed0a7aa1ca7d5dc5ca4632b2b
SHA1 34cefcc7ffd7b329b63af54d2b35d890d14fa870
SHA256 01bc6b654fbb35db915a7963ab9ce2473ce952985796aa9c07175deb4df28e35
SHA512 2202c9152a15458694c83f25962b8adcdd90cd06a8f4ffd2b062ae88e0803e560cb111c241a81e04f6f07d97348aadbaca0522a5a67613708a747717e7b4356b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00018b

MD5 e0a5b5b5b60870c900d4e965d0582b5b
SHA1 324bb751461fb997107f4c2f869042b093ac3ca4
SHA256 a4658e257cd9b7c17301efa73ef9d9d66c9561ceffdbc92fb5e5b64454b87f96
SHA512 e7c17425d5a6954710393ec309e473db216db095072f64caa968b9a3e1943efa75160873c8d965ee1a36a7493816c11a59bc24c245014fb9f8e6b5d043c7455a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\6\CacheStorage\index.txt

MD5 b6b84f06a0b766f23af7892ebb8dd725
SHA1 58cfcf26a6f4c4ca93804ba9feb13ecc7fbc2476
SHA256 26196666cfba33b0942e1bb6d9e479a0d4a8023a0b667e1008cf825cef75661e
SHA512 68053dde682f481b540e70e8df4dc1de621460ddfefc024d5722c9f2b354f6b9a5d9fe871797eb102c102733acdaf83644bf1fdaf0375e009ab59d39f7c89faf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 068f28604ec33865ad646ea95f4f2ef0
SHA1 e04114a2cf4e4c0220537796ee44b633c19d5d1f
SHA256 129b67a30ebb47e2c0be58bf2a2d65bf3150c87f2e73b6eccf9f2fbca664d3db
SHA512 09957c0e47e215f4b581fdc11a80209a714d4c66e206552f3e043633e48ef9ba40f00e74ac6b8f525bce11a23c9ac9d498f09d02fba9e90678cf86bb80409a7b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\10\CacheStorage\index.txt

MD5 94ebf5285aa186811f8abaecfb8fd20a
SHA1 563ecc373a7679f91e98cbb269bd04a9b1a6aa4f
SHA256 f056ed1a80ce80fd0a17419465769ea371d5143276b883383bf408b4fd66df35
SHA512 a79c9f901dde93517d79390c166d3874e2936e4b9ee8fac206189beeb579324a731c0bb8fab7a2f46b28e7d2646926c4a710daed60e13486cef8b23087d42a27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\10\CacheStorage\index.txt~RFe6aa77e.TMP

MD5 9779e5f3a93e0a441129d4462226a080
SHA1 fd35388a721d4c46c21c6573ed93a5474f867ad0
SHA256 45ddac5222ee728a6a4b9305f895b302c8b47bf4b98418e48749cde186033339
SHA512 0cff3688d4b32bc8af8cf47ad95989cb90c0d4da36daabd5bc8acd0e4230c487b2927e72ec03e75889adc12dc22ef3e255c8c6a013aa5511d2d44e3cc0ef046e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00022a

MD5 68d17b261d94d13c812fcaf75f673ac2
SHA1 adf25f6cbd405f592adbce0a97b827101c2af0ce
SHA256 328a870944b1fdcd68375a2ec5f01dec0c9a1620ff0d2d375cb90dd8777fc9ed
SHA512 2ea653a9db82bc0a8ad11797a07009da8b22167e36fec83fbae8eb895a1cf3118a899d9ae3f61e87324d398b79cd2432ef66016f5de9636de5e69ab5d459367a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG.old

MD5 9df2030053cce47cd05ebe8fcb5387d1
SHA1 cb3feba91e7052c15e097649849e468218e48687
SHA256 3378da8deb1d1d33be3288a35bb427d9beac012c5644346e5b8c531a01d88e3c
SHA512 1c4f093415e0ee4644d3ff5722c74a1c07deb89b77cca4eb7e40ffdcc6dbe13ce284e1e562d90d6bc130fbbf166bb081f41fe90a7206094b1a52f97a5c578893

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 44b57ffd87eb4ef9a2c9cd3ca204f048
SHA1 e3e82af3e0e3cc1a31dc273bc9b3a8e76ab4d636
SHA256 8632dd29dac0726a54637a8bcb44719b0361f4dfaf64f006b1b4fbf0a7e520f7
SHA512 017c0f1b782e67b477800e263b559aacdfb1a0724872dfbcce75dd63b3579a06058a47bf24e677efbf7ca4312cf0179dea3e7c16fc656f5d51799c6a2626e858

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0658f79931756b10399927f869d92b32
SHA1 2079dcd7fa8a7ea611dedc305e2c576672871326
SHA256 61f5adc4210d520c3532e7d3bf972b9d425634dd41ea3a0d31c9fdfd5ced22f8
SHA512 313f58edbbeb0582d5fdfd4fd0a7c7a341e151dcd7a8cf8ab2e56d78ebf0a982202bee3f5a8fc4e8d84b0373841718b6c28cbc88784d94c21911f64c10cf26bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 ac0eb3144f8f35262042e278105d16b8
SHA1 167df4fe40d3f74d2f7d78fb57c607af5fedd7bd
SHA256 57c51388094572cdd1c3f9f1fe5589adb99abbb523936da41d4b390364d2378e
SHA512 3fc915329c953c900ab55caded9175e139f6bbac4b961331a110b09f380ee496b728fff66b61f9823402e5db52074a75bf05edaa589dc6872c1bd9fdc1048007

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d25d6766d696a5aa06364ece2bc49159
SHA1 6647d6463efa189ad9b36d9e5270bbc014f817c3
SHA256 9636edbc10b406f300209a98d2d56a58b33fc916a837ca294f434f563d0af20e
SHA512 55b1bbd18af27f65f533be69e2e6e2fbf9d97bea2590f665d490b41eb82f98e1ccf1ea6bb965cdb427fcbceab175c1d1a0bf66f86ee2cb3863f23d24b9303319

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4dad7e0a174ccef84afa47a8da2e46bb
SHA1 4f340461c8851b740e95ba636b2e59d33363ceca
SHA256 99800714ba62874ab970ecd58f5a6078f2417dd5e15f9b3b791ff783de961fde
SHA512 5218f26cc698de9315e1a86b474f5349dc53618d02d6a7882cd65285323b555b5da5c52881bf39a4c613c898d0856355c5aa49c2071c8267643b840f0a937e12

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 496cef5fefdaf26e83f827daa56c28a3
SHA1 cad62e4229f7ebc4159424c887632f0e07e653bc
SHA256 00d4324ee8ef2788e55ea8713975cacc4ea86e2f9c7cae4208d3de4c3e8dc270
SHA512 60b85ef09248ed2c531c12a669f6cc8016e35aa66eadf71535c8d5a212497d953654b04659ace7dd3ca3677dffe0f67ea411c8efa5e4250addb19b26f0f59dc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dec1c655efcf9ba18e11301e71678fb7
SHA1 f3db08b058a8175343c61f793ae7041907d93d9f
SHA256 373abf6429604a3b5a931d724f6a60a6c9ddc09c4ec37e8d96685475f54f4b63
SHA512 cddb3f01051bcadc96a8d2d1249f9ee82231ca1e24dfc7db5bd69ff05d3265281deb83a3078c886533999a46787fb8b42f9e140f669102dd37a228522028b1bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ac24ecb79a5cbfa3aa7a7d40d5e49ef9
SHA1 6ee2e7dcb0bffb69f4f02eda3e075702e8236ade
SHA256 77e81dfb3d7b7edcb66f83e8f741cd27596cfd1c61079665838e3a988a01ca3b
SHA512 dff31aecd55f282551bcbf15accc41eb18d77ed2fd42bc70540f4795b562b2d22ab0a9cb94fed8a295a4891927cfccad93147724390e1c83302171b5c97a670d

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 da3aee225ab8d839afc6605caa28dfa8
SHA1 5714bc922d07b46ba4f16351c2a6fef707d55e52
SHA256 bbf9ba4a5c50b93505ec3c2558e277f527ff815d521b30156e0c468f1342f9e0
SHA512 1287a44fdabe605cd077b1087e47eb378074aa8bcc07fd8d95e2ff74ef4c46cd344016f29104bd3fe687a78b6715868325a7c0ccd385c6a71f5f86e8e325634c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2165ea775c2e7de89df1b91af5c0c395
SHA1 39cd7b65a448842b09e36d313b89c649881273a8
SHA256 e8e4dbd72c686a1748a567dc679a1039e15f2f6a8d7ca9aa06ce95004b8c93f6
SHA512 c17e29c53862c7576579845754530e04b7e91513d0ab8a8a2e3490a2b3fa5a76f86cd6fecb415e3efb6207cf1f7a664fbb619236c5c3dee025bd80fa5b157dbb

C:\Users\Admin\AppData\Local\Temp\Roblox\http\53d827d30453e92ea03c8733cb48667c

MD5 a5596c41ac4338487b7fbf3925acf2b3
SHA1 450c3512b03d7772ccad78cfc5a075f0fc95a3b4
SHA256 513074ac91efb2815072912c0f5661793fe768983d5bb3ead6d8cd2aa83108cf
SHA512 edd907d4e9ff550dbbfb42ccec2a23fdfe1fb27f0984a713f3a191364a58a4af7f5227454dddffdac0eb5061c7bda651457bcbe19742b52166870dc7f634f242

C:\Users\Admin\AppData\Local\Temp\Roblox\http\2de8b71e249ec9f3feb3c539d524775e

MD5 d6abb132187484a9f7a5183fa9d486ee
SHA1 da61867318513e6f1847f65d35c5f61f1908e2ee
SHA256 7de504553188fee870034279c1f64f6257b51cab23dcce55397f513ad70002bd
SHA512 9df034e26ab7a154f1999be20fe94c32ab2a3710dc2cdcffd9db7a80c8a99748a85d3eb2d14904fa9908b39e678e7a5cdd117e072f49cf7a97f2c03def61d102

C:\Users\Admin\AppData\Local\Temp\Roblox\http\017b3de9988fc8ea01060584b5f2a667

MD5 09e9d98228f9147d99ebf2c4b496b43e
SHA1 3f0be1f00b54e6e93ad8de063a81faf874bce01c
SHA256 56fd96db81751c1e61c3b2719f821d78e0b3c72c3b8b0f3dc80ce1a5291944de
SHA512 bf3f5f3fc1930d1113eed6ed241d17b6f8fbf625320ca52a0096ef2e6762b050c8335a3920a1abb4d64fa84f6e24ef8b7053fef1374140f6c4c5d79f8c48069c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e3d10ece69681eec0194255e9ed5bf46
SHA1 50fea954f1205a8e2898a01e9b451fc4ca7e196e
SHA256 cdf8b883940f950b6ff9417d3f807b9416ffd9cbb47ddaefbe5a3a6eb47e1364
SHA512 03bb56e9de442f08091a548c6847c9d4f6335cfdc8b46f202d241245b6abf9f35ec09b47dc6cb21df59087dbb631046108d9d8bb0713ba8c30c418dabef70eac

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 98fc7b1bbccede10df5b50c5e57cb06f
SHA1 a96253fe570039fc2ae63bac85d051a2e278504a
SHA256 01eaacc8ee3dbedb024c26387e65913eec1f5d7f3c80cbb6af67b93338e29e16
SHA512 f4ffc355a3e1e8145451a8a7fefb716bec585365c038cf58107318861820cc2f71cd2bf1f940007015b082aab96472b7eedc0132436c2d7e26dd05649f7a732e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e3e8a9e82be6b15bc2202ce219d4fe60
SHA1 de5e264183662d1217cf114b5b016bed57cf4646
SHA256 4089667c065a58fe97c49e45db386f83eea3c3a82f4faa9bd3d9c0df34f7b8c8
SHA512 dced30c1a2e2b5e304ea848d293b82911b0506f0f5c6c7289fab7bc362b37604d4965f1c106d20b1da5236650fa60d5c0a1838fc3ddb821de7ef411ca514e58e

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 313365e518caf90d9f2daff7ef0cf62d
SHA1 8afbbc7344c82d9dd3f61b8b4d7a1183332aab99
SHA256 3f38d5fb0946c239e8bbe6eafbfb9694a81b538b32e8168e804dc80bf2e9ce58
SHA512 cd0fdbe86a5e35c79d994eaa0789bc15adca5d8a9335b27e812da91a39100358d00b13694a72045581bb23d4203c7ffa8ef8ee2484704147ae9f5620f585a6d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 138bfac02434c15897968937251f263c
SHA1 f6ab677b825fef95398e30e4af8e772b66b0acae
SHA256 f20d8d28f7b65cf5dc4044af46d97a82dab602fb9447174dc46464e40512b9f4
SHA512 568d12a097cf0b0a35dfd999aa2b58c0111c05b501c29e32af732c6b03740ec901fc89aacd7b09f78dd76292909f1eae078d282427228c938c7053bdeb4c35e0

C:\Users\Admin\AppData\Local\Temp\{F1698914-CD50-4009-B7D5-8348C726FA6F}-BGAUpdate.exe

MD5 3f208f4e0dacb8661d7659d2a030f36e
SHA1 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff
SHA256 d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b
SHA512 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c5a4465a1a710ea93ee585f859767a9d

MD5 68f59ecaacbc78f91a57f39bb8a7bae8
SHA1 85d33148ab7b4a043b8b459ce5832612d0a2a320
SHA256 2cb7d021787af8192e2859b58ed3ba6590e4c26736f1b5c728af80c454c97536
SHA512 b5416942a6dc1c3b9da120dd71e1de448a1e1912c3a9b5a7a0135ede4e1e6a4c2ef659037a69b937a1a54088c75bb57e5850a72082733c525cebc966ae40b8bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 beb543199c17686289eb29b996bae2f9
SHA1 b38647dc3e50285074394247958150d4fb46694f
SHA256 d44997c106c9e7362c3230c81fea584a9050f602c62aee0d5ddbeaaf3947cc59
SHA512 b9480766d92f969b06739e066a4c5dafda53fe969aafda32e0bb0b3d2d81524ba69f3faaf844cef9e54ea5dbaaa761181b8b526b1214b99555c7f787ffc11714

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4bc5dbf3eca3888607a34290dead96a5
SHA1 90eefda4a827d0c4aa09d69be574c3a4299b7716
SHA256 8e708333b66d5d33947dc4f1488f89a69bf6845611ba3a710fc0d60b10649019
SHA512 a44108c0d9712efa113867009ae08646aa770e3c994a4bdebaf027349301d27847a1f33df9f6a6b728948592647368847a78c8230b07824a3e99f25b9bcf803c

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\6963317097\17509267544\Plugin.rbxm

MD5 fe4b853d8b5c8abee688705094c1ce4c
SHA1 5946974cbda00d0897572b3964fc7aae6012834e
SHA256 3115d650704363a6f3257ac287a6488a620e0102e0e68322ddd9eedf50110f05
SHA512 8a6b22073b1917d5fc60a3a262f196a6c864afb0b1c15bdfef95c0504a6b307fb9311a8a816bdaf073d2aa01ee83317a3314ffb8ae609c66c5184c33813768b4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\eb979393184ee611a626f558e7a1c257

MD5 37799a5917de150a3ecbe4907d22859d
SHA1 717f925497ccf94ca29a5976dbc63295e98108ca
SHA256 fed0a3bdcffe8b1693ff4b4026c7c5a897797147c97c3ece73fa02cb5d59378e
SHA512 818b4da2486a26e37d9ee08966361280831db202c8bf65dd1625ff7a8ae1b82629934b87614ace43870e0250c87f4e4af2aa95e20168c3fe7645933dd96eca3c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\14f71a9a6b0683020c7dd6809dc74532

MD5 6e290823c054cfea6911a028759716ec
SHA1 dd2d128bad8de4bcb8df6b7dc6150da3c98b4d16
SHA256 378ce3d78d3e53ae9a29ee877d8b3800176fbb1a56540f95be71604c7266728f
SHA512 0193d729d03c1d57d0335bd0ec26a51f52573a7919bf51a2914995b1a2c86c249c3b91c85cd44b034b4aa2c0836035eca7567b99400da3d5efb6adb7892cc268

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c264a57aadab3dfcdaebbe146021e18b

MD5 fabdeab26eb27b8be390ee0d71559b25
SHA1 0bad11090445b7235f9b79fa31546f4e330141b9
SHA256 142345bff7986ec02f6ab9860418c25155382d615261e7bb1994eb17f5f6fd57
SHA512 c911cdc33e96eff419d7f47eca3fa8a08501d05da513db57a42137931917a5854a91d15df89994a5a90cc83b637e0c145bca12ff98fb1dda221978db8550b49f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f235271f27c6d32f0ced0e92dc895d7a

MD5 14d84efcde33eee11fa83cff389852ad
SHA1 323b015e02ad1ed8e40285e92c14a471faab113f
SHA256 bf46a4e4d6ea2a0092e826b3a5a29e288d2e4f98ee912816523b0ef4c27b0134
SHA512 dc2f03024fa93ad174c290e4091071c4190e8b7dc593a70d870bcd8efe672a1b7c5367902c32d0d7a335ffe07fc804f9f11d9ebb53d38d065f6d9ebdcd6e2877

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a807ee778648df766d3571a7c8904de4

MD5 7fb8c13426babb3a991a83511a228079
SHA1 4e38fbb2a2788edfae61d10688c3175c540b7031
SHA256 66f5f06a72c4e250275915e349af59a3ec5ea50b7e09090ca7893220258300bc
SHA512 fba46c89d041281cd9e629dc725dd5e4f3d000f9de39b3c3c521a08d38646abb0051d8c5b9b13d145ae509ddc94ef0e1fd5a2e1b80d411f63691238ae5bda632

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7f0b05faa1f62c09f138894a69484bd6

MD5 3aed78d1f11463c573eef82177ea4eb5
SHA1 8413546ce4173586cc3c527010072ecddf0f3759
SHA256 0defae2206bd172618ed8f5abe4bf960df619d7e3983da4d429edfbda058b492
SHA512 ae19a01e8347bcb1492db7c82d2e301a7a9cf2d049a17fd4628970c881ac4e9f4407b0aa1e259a33e985068e004690989382a7fcead992d45118741209255f06

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f70b912552093e7b290b3bf9258612b4

MD5 933c14a3fd3ddf5363bd8c17c3287701
SHA1 c610f1c34ff1509897c83ef86035cc45491ece3a
SHA256 48645d3b40d86f5d8d5fae5a3246a48a7a7032c3e85cdc0a8e0ec3b96091d3e9
SHA512 bd8b87e56196fd63b6628f0d4825caa6136c7d316b89a7ca85bd3c51d42e7ea8e0b18f563704f024f12567b12ae6294fa5b313175aa1dbef11e758fc7a40415a

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4f81d51cc739e48584c254d16d348af4

MD5 b65856b94950f8556b40c13449ab3093
SHA1 71902a51e74a25527dfbda40c8510ec760d08b8a
SHA256 c319dc5bf6532ad9342cddf055daec35de8c2bc49fe354187744a25450a7eb3c
SHA512 49429e835a32b720a57ddb35bbe5c64d9d23b396912516dd3d6d38c34fe450a06ed679981ed299a7e7aa26d825e3a927d2f15c8b6ea51b4a3c2450335df410d0

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3bdad4d24da443a16cf9181d5a15df51

MD5 7d749cb3ebefa0502301528f8f57f769
SHA1 e364cb59693b12d6eb53c58749fe06c102856bd6
SHA256 47e9fb01aa55f01ec49920cb18868e48886807e40a3b3200d69ca72fce4762d1
SHA512 722fb2c1d4e9a9c4a3ca6f4b0c3d915859b437b1cf44ca5c1a1f6b36e57b25c0dd14d06705cc280340a12727662671259bd28b533700c0861b3883f5a9c14525

C:\Users\Admin\AppData\Local\Temp\Roblox\http\32f549e0d0881fad13ba2dac6703e862

MD5 f8a3007c3673a84ba2287c9da1d7ed70
SHA1 33e6d63fcb47b33ae3084ee29862fa9a07fbacc5
SHA256 b0ce5d9f6695f5f6e607f29d058f857bc20b80fe8f6b7454198a804c73306393
SHA512 78d92eaaaa7b5e490f53581e100fcf51ea982c9b2216caf7d4374f70314a1210797c6a6fe910151c4494c2603c0201d615e40d6a666e642e308b6eeff42c65dc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\26fc3c9b281eea6517d75c014ecb39cf

MD5 9e82347863246931e6b424ca0fabf432
SHA1 ff566c4f997fe7cb25b768f2074bf8c4deedfb86
SHA256 2551d682f111489e5a67cdd6f5f45d75955a0180d5182a33d8ab9a5f5a4a944e
SHA512 f2cd455c2f7664b8568892d45234993072a3c46c15ada0075d4a923425416c34d7acf551b1cce5a7330bff2c43a0813b0dd6a73595f58e8b1274fdf5fa4c34a4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1f98867489bc6360951b208738ad6447

MD5 c9d7a5449c2416cea3dc4b8697273ad2
SHA1 452f66798b4f15ae1c77aa6c20247d202fc09fa1
SHA256 2b94005f0e346190d6ba38deb3763858acbdae197a6a200f0c7c1220f5f5644a
SHA512 dd637977954052362cf59ab76b8d707243d519398fc51e188ebbd882d4b82abd3cb18f80d0faced0fcd37d06373748ebe493faa0b45b12d41f0af1700c6ece89

C:\Users\Admin\AppData\Local\Temp\Roblox\http\19667f23eb63ee866d1f21c766f8d771

MD5 ac28f3a5de243fe643caa5acde34839a
SHA1 1a8442740f0b24949340dbd2126a4609ab4950c9
SHA256 1d7fdb0101be387304cb7b405c54183cfbdccfcbb0b388398a24a3423d0709df
SHA512 f4c4e7ebe546b8a8aee3b1cbd90e568106cc779acf6e5775b4c286a2c2fb2668aaf6741db0b46b78862dfacd9a17f0b0a5257d80c129d7453d56c7d32de2fdb7

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7e983174527d066f342cbd5253370641

MD5 abf7dfa816289c944e9d019195c857da
SHA1 845b96141f770af5eff4b1b53e8e8ef71e18cbd6
SHA256 22c64d598bf68fd003caf89d2be1417dee940c3a607da66393b43d52be083730
SHA512 cde23ee869f8ba74b8888b551f97d611d4b8dd97ccd0a485f4489e0d3f24359c883a8fb26be9d305fa129d1f783bfe881c71a8635e9994da670f7565861b2936

C:\Users\Admin\AppData\Local\Temp\Roblox\http\RBX2F09FE0C7DB0436AAF3B3CAC778C41C2

MD5 927431ddef2ef4974d38fa57a3892683
SHA1 f20fe6a7c36f07d1add4523f1b27f4d349889f53
SHA256 9919af53241273077511c550a1290042f11583113c0b6b2914797eb335aa7dc4
SHA512 4f3add7576b689c7dc88b3cc36d6512ab1cb7bc46d2476f7959153be1d349257299a13f446a262867f4d50f28c7b9d2dab6675325a4ed17abc344f87336e055e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\62df5184ae1f060c81401754ada047ae

MD5 80696c7595540638b24e76d1557af8ba
SHA1 8d58e475d0a3c629e5e4781eac657faf6d9ca22b
SHA256 7bbb75c1d5624f35dbfc6f31ef170d3aeb92d1058ddc0784ad3f3b560412378e
SHA512 951013b48cdf1d5d071f161e100359022c300c41d9d32c5f96bea7613d94cc45fa609f7a9187214333611fefd0376bcb401d77ed9cde07ba4a5cb0211ef16d95

C:\Users\Admin\AppData\Local\Temp\Roblox\http\6513a3dc2c6dd7f5eec3028c11586d24

MD5 faeb085f5637b32b39458c89ff68538b
SHA1 f057e675c657f1980508cd245204b75775627957
SHA256 2ba539509be43398449dd5073d34c4e5eee06bbd03adabaa5310acd8730539e2
SHA512 36ca1e996d186a41a5623401b14559d9baa7ad32069e18d045aa03b475029428f1d49870191b4a676d1042bd9b0a0be9146d08dfdf2eee5e5cf2c78e3ba038fc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3d98b47fa16f2c1ce288045a3ce99466

MD5 dbfc2c7880018b1b21db64de228da5cf
SHA1 42fc45334559786f1ae8446f6d715e56d97c04d0
SHA256 f10723bda1258d002180aace6de1927d7801b362e9ce23fa70d34bdd827d0328
SHA512 a1ad5ba4f245eac6eaa89723e57dbfa3ebaed498d3f9ec1dd51a4875a3b959d466cc127250a5c53f699f71758efb8ddedc9ad013c56ed3784fb78065049a8fff

C:\Users\Admin\AppData\Local\Temp\Roblox\http\342207013c48fa95cb9a1b6ceebce77d

MD5 c2f681444dd524a0313899c73063386a
SHA1 7a4fc8221e5cd1e313ed40f8eba550179b8e70dc
SHA256 fb498fa3b0da022da1223d127ce4ffaf247340a3462a1573f07b545e35657078
SHA512 d28003b7dfc4964bf2379b70e61a0aabc33cd8302081da44c76a8931e0bc2aaa0d0dacdbd78ef24c22a3bead0e2275006e7a4c88fd429d8d29782bdc47abfe5b

C:\Users\Admin\AppData\Local\Temp\Roblox\http\e2e86c8c6c7dce76fa269cba60c8040f

MD5 d1e44be596290997cd26fe1feec50cbf
SHA1 745c45f80e039e97a60e639efe9b60e63039b91c
SHA256 4dae9e7ea6319a043e95f13f9572dc2945e60e3ab6a3c6652b0ecb198448dcd6
SHA512 3b0d7dfd952142f197abb17ef1d1b0949ee336d380ff3ce7c6d5c717edae6c2d00b338865e1711a95cc55a7410e49dad7d3acfd05191561644d5342d7683136b

C:\Users\Admin\AppData\Local\Temp\Roblox\http\440bcb762a22e49ca4c7c6fec2b1eecd

MD5 06ccd73a943d3548bb6a7ad4c15f662a
SHA1 d6106707b71461a099ab7bce4bbd66191b938366
SHA256 7aad0a8789b6cff666eaf202435ae5a1802b67836d8cd116ac255c03f91e17be
SHA512 a60ebe45bc07db4d1a5801ce55b501f1c8d605e480ffc201c9fbc97598a607eac0d8cd944c3dd801e4fff88d082313dfaa96f5c1737acf165ce7dafec452426b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8406b4b3c61110ef1f6e008d9ed36086
SHA1 b4d166e286714ee7b7760b247a581a3bb1569235
SHA256 25ba4c06b55c23ed9333c749b85035f4116d6a9b6c2f2809f23f5b1c10ecc84e
SHA512 119858953a5c5020a259eed97e2dca57365be803b7888aedd7fd6018531ca0037debe9982e91880a6432f90e3486b79fa5ff18d19f1fdd65db6ce3da9168b0ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 013801e7fc8ef1286bc31fa9ebbb5dc0
SHA1 a3934340162cbb8c7654ccdcd213ebcbb6debf85
SHA256 84827c0ce693860d083e2ed5f1c859f669e4e68ccd9deec8942748aef663c615
SHA512 347b0d5a67268319c96a8e082b9e2807f6397ee039b1c39c00d504fd304f3e8232f4fa5814bac09d0aef6bdcd64c36b0c464d19d013053e84a3d6c69ae06776c

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CA8ABBDC-A8B8-4D42-9A40-FBB4E9B54170}\EDGEMITMP_93D5E.tmp\SETUP.EX_

MD5 efbbf5c2d18bd7b5bcbaf5314b54ad42
SHA1 c678b863dbd1b17f863cff7eda8a7c64e538aad7
SHA256 d60029d17924391efa510e1291d85f3934a9dd74eea6e099a0f8580523b837c1
SHA512 e69c71c126a559b9955d6da421a96566aca317c24b7fc918801f4a3f3a60b0627dcf61cf23c7ddb8103d5f58f20b733bb070847bfcd751e90fda5dc1252d9e9f

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

MD5 08fcdf1345ebf40c7661b174b708d037
SHA1 f5392c3dd732fab41da1d254a8a5f476e6c04f5f
SHA256 686fde47755afee858bb086a79af3a58b8e96e6f2493d4855da6b4f758375c5f
SHA512 5abee5579a26dcadf86ea68627675aa925e08722a09e3c96c01f3286e8165ddc61f6d3853a7eae0a97728188461cb2cdc16ecaba8c94b1f10707b1566d94aa55

C:\Users\Admin\Documents\ROBLOX\AutoSaves\Place_AutoRecovery_0_AutoRecovery_JXsAUK.rbxl

MD5 07109128a8ffc329b75b51968047f048
SHA1 8ab5cc725af2c75083abd87157558810f3559651
SHA256 e6c073616e2bc29a6d8478b02248fbcfc6dcf53d9711d56d67e710f58189de0a
SHA512 df4025bfbdf898de8cba65d68d68ade2b9ae0e04405632d1bd229ec61c6f9e7e194e974ae504966d64a0f1894aa744d60ace2a8e6e64d5e9904a0cfd4377eabd

C:\Users\Admin\AppData\Local\Temp\Roblox\http\086b414f7f02414d8d7df46858d24c94

MD5 7e46c65eb019506179ce958cecfcd1d2
SHA1 85b251e5638ed95a3b5c7c2189976553c9119aa6
SHA256 f3751aab559c63e3e91e2226cdd53a10238258f070a1159dbb28d3a5466ce888
SHA512 dfd44ca4261b15f9781c0746ea943dce0a12715bc886fb337fee759fe58c03b6c711d098b5bf612b2afcf115826b0e18599b74cea70f01fc761d3f595393c7b8

C:\Users\Admin\AppData\Local\Temp\Roblox\http\30a53e7d91730b31358134cd9e362012

MD5 efec0fc065ba0e7e55686701d2245d79
SHA1 6922ecef5a0370b24530ba4bb7a80f7645d732f1
SHA256 b0dea79ae6f4ddd69cf523ad4d6942cc1712dfacec0cb057b94f0d3183997a8e
SHA512 5b9e0a87016d4d1c8149bce4f5dc45002eb7cef593bc9612838b1d1a473cdeaf80464e86ac79dd8de878a16521cc544e6967cd57a842561099de6ff74e9a59ae

C:\Users\Admin\AppData\Local\Temp\Roblox\http\525c2c2ab32fa495480ab65027bba4e4

MD5 3653c4a2e4d83de2fff843a9d7e91005
SHA1 90ec4df920e7a39531c392886f6400128dd76e28
SHA256 f98bc57501bc6f176f93a195ea7c8e8f12baf983251f61cffdd3f35ea043640a
SHA512 b573d7a24dd07ef002d4c02c12ff514c51932eb8f3a2d0a9829d885b8253a5d9ef3ad953539ac43e10b345d5b022c762b10e8f6ca354e9a6eca19c481c03a891

C:\Users\Admin\AppData\Local\Temp\Roblox\http\640ab0e340dbb9f163ef2b2b77fc1799

MD5 18086b348bb6c5ae72191e6fba2ac46d
SHA1 8760836bf18c9ff17ed4675ea006bdf69c17a329
SHA256 121c1088500937ac12d03a74bc067123fda000720776e52d0ffd12b7805e6994
SHA512 c2486dc7a555f46448825a181f8c074cd6ad23921d9460fc700c68590d2956d9c001c6f56048c6a53e5cd09da86cbd2ecc2d32263f6baba623f9ec636af1c951

C:\Users\Admin\AppData\Local\Temp\Roblox\http\RBXD055789130764C2AB402A395380AD7B5

MD5 b22d848a03f617284581938c74c1dd71
SHA1 d3f40d3a7d894e18bccf7a47ab9f41e6fcd1864e
SHA256 39b63ea4a59ce2ee74318960b5676208d1956447a6f72a9ca721711d750b25f8
SHA512 ebd1ad02736ab5eb5a934b7c200e7ea577ca13557e78441a17f888a06d67594aa354c776436c86d559cc1f8b2b57cd239258c86bdb126db70af0077969c37e17

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 c94e97ed0261066599e526135c70f3fd
SHA1 f442e8e0b4a835c3fde30ef405df16db162610a8
SHA256 c03b479d735710d65fde6267bec240b7119eeed8036f33ae7793a33f4c465db6
SHA512 c97447d90e205c79b816db9af8a65d1540ae59aed5cb84ae97b633eb3d4a8f34d30c9375c37bd5e7f5a818980fd3b9eb717c6f9345e0d2f8bcc3ab1b9c62ce7d

C:\Users\Admin\AppData\Local\Temp\Roblox\http\22a87dc2fcc1d7f2d4eebec174141c11

MD5 96b63cdd7637e2b70ffba0564d1a4afb
SHA1 f1420b4198b6544f7ed8cd636b630df3469cd1b3
SHA256 0fb58f3a864ef626a462630e7df3aebcf49f6885509b317234e420d27931b30a
SHA512 ab7c724c59f80685253fae72d1caeffb594e7f19990772f4057c746fe94e971aa5e91128e8a376d2ce3f0a2882f1dc354ff23f6cbbc5d11fda9a5a3ed24cb758

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9d833f16233aa7e9f8fff34da8e035be
SHA1 f990c8ed3791fc72dde497d2b089f8b55bba049d
SHA256 e11f311806d455f9be1e731ba232b67862187adf356d7e87816ba3003315f647
SHA512 dfa36ff679f91dfbfc9c102c4084b42dfc603968ded22f478690ace263a70da69ad269f5e95582689e68cd074ede2324f2a95cea46c9e4fc8a3e6bc25945b9ac

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a2f3fad0cecf63e774e8ef6cc9c97b4e

MD5 a09725973af927ae447da5a602799f4d
SHA1 364837c95435682777758fcb64a4b747503841e5
SHA256 ad2c6baa477c092bd074eab896c5b387016783d4de68fbdb6d538697fd92b948
SHA512 5eb4e95d0be189db2ac3f4cea9950de388a906a07642d578919ddc6f626c46bf07df5ec6f4181d06c06f38ec4f568c00356308f0673ac9156ffd22b4608bef17

C:\Users\Admin\AppData\Local\Temp\Roblox\http\RBXD876E43531AE42C69046864355186524

MD5 05293c18895988df9ac4932b3994ed27
SHA1 70220e4d65453bbe0e5331b6a0de55c558af08aa
SHA256 cf11c64526bc3b9fb3e0498d0adecef9e3cdc695488acb10de4ea8eb3f476084
SHA512 cad980057e609022201cac19393f40f69f78e3fa6d31af76046188ea8893d8cd36967f1a019c53ab2463e6e26603c0c211d1990c8be1cff2fa7819084fb2ecb8

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3ad02fdca06d8652544ed34b83390732

MD5 a9b5a4b015cf9eb95071e79e966f9fa0
SHA1 a1d05b52cf8576d22d81087eed2bee887b97399e
SHA256 38b8774e1ff78cc5b90feab620acce79ff2e5703bd8a8a41e84ef4c50a9b80b1
SHA512 3059f5d55440a74c96f919e8db7e6adc1ce8c1dd1ac425bcb8d86dcc6d8af2c075eaa134e548519fa034cb8c0ac1fb399f9d66e75daad8891976deb2ab6eea49

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f4b59b712342970d8029e3abfddf1523

MD5 0b3543da5ed78b2fb45f4aa229038d3e
SHA1 004c841a85e7a467d1e481775c6f278acedd9cbe
SHA256 a533c17340d0b4006cba8d579114435556019c0a8325c1fe01ca00d5f248102e
SHA512 41f647a654e41fd2d113f50e251f2d030595203987609e3b8f259066aab85d8f487c4c5700a27fa31309097a140543cd050092a897bf5ddd4e55ed37feac3b2e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c2f029617fcada6f55fc51db2408130b

MD5 93854b9b0edcbd12b6b0da3e75ba8eed
SHA1 3d0a999f1093ba9aa763ed4bd40bd92abb8fdeef
SHA256 dc7382a3bd5a4f56cbdaeb877988a80a7681317291c40f752c1c1532a617b5e6
SHA512 70e52d5b518eabb582310d046970079a504b85658e2e1e0f9cb4f13e44893b1c2aa643b02600acf0040b6ee9e60413673cacd69d9fe3237c9cf497d7414f80e7

C:\Users\Admin\AppData\Local\Temp\Roblox\http\717d70c8a0bb6a97c373cbdaceabf9da

MD5 3455364b72d42d2a33fa88491ac1bb1a
SHA1 91f60fe2f5ce9ff73120374782fd2e5ed47bb335
SHA256 2c40b304aa11aa8596fd92652fb020f7d1ff00d5f58566bfeab6a994fd7874ab
SHA512 3e782c9c5e51e99cf4196ea1a6913147b9e1988d45426fcdf9b2333869c03146996b42b660f22a39998e27ad870ba8ee20afaf16a3b1c5172da4a41d83c320b9

C:\Users\Admin\AppData\Local\Temp\Roblox\http\561082bbf91c7be9f9bc41c4bdbbd673

MD5 920c27ba2e394fe983c8addd7ad1d0b6
SHA1 f75300d361f5efe9a8cff8ef9b1e93aa28f2329d
SHA256 92e6e15c419ae36911812ea6924557c81facee61b266378c3e368adac7be772e
SHA512 c1ca7d708a473697fd495d05cb3b2fd6088aa7b6414154efb531e1a001d90ed6e9beb59adf44e9460189f247a35c52837dbb4204473a8da699f583c359f8e071

C:\Users\Admin\AppData\Local\Temp\Roblox\http\2fd5b95ccb896323a6c877d623ba6a4b

MD5 8fdfc24c207db17312385b6a553c93cf
SHA1 ac3952a2f0e293e67edad48965a796612f391ad4
SHA256 9632107910f4abffe021366b74c4980ba5d7cc5a855560f8ec675f2e62fdcd8f
SHA512 567908b0ca9614650e1bf0d959264d3dd7c5a2888c374c0804d87a3ebcd1b1a274db49dcbc37cafc653b27cc0bc405f55f5c66408244942545e843624cf18dd2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\89312e5dcf4179aee2640b253db4887c

MD5 b7d3d8f587ce47b28d14d8f7c3b264e3
SHA1 6e82f44e263aeeb59686c681ebc8418ae23d77c6
SHA256 6b7a150c8c8bb76c35911a3d1e1489ddbaa8978de26cf8b475849b9891da7e01
SHA512 10758d02d69b9860f24414cb27bbba5b84bb5fb6b5074006892602c9806929b59f94af29fca9f1344fee753b865c1c9cf6b708c07a46b165928b5cabd29bc3ca

C:\Users\Admin\AppData\Local\Temp\Roblox\http\87051b50ff747e8c55aa54f3894e85c4

MD5 947fbf9d20fd9b4eb167a2ce28a1cd47
SHA1 a593d80ad91dca300f93986ce9709432645b9687
SHA256 5019ce111dec5458d4a84560d3f31e494737426de9b1f77cc70611f71c3bf467
SHA512 e8802cbf905497be08727024e60e3540184f8ff431537d1e02e87840fd6e95125ee4f916ff2c020d59179452cbd312a400a9387bf7db0cc1dce1c2c89261948c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4897d7279d69d566e358fa616825eace

MD5 6525400e97004e778409bd457741a5a3
SHA1 dcb9f40c5ec195f12411f297cba86a377edf061f
SHA256 383190134b5c375326909e6a12dcf0ef469402f754686a9d0249afcc9e575fef
SHA512 21e46ad6d8a448e3c22c24d0e78182479bf3e369d873fe29ce9897a2d754a0e29d43b9bc3cb3b6cc2fe300e3bcd387deb6744926fe0c9fc4c13019cecdcbe7c5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\20219f10437672c6ce774c88e971f965

MD5 7551ed24ee58d02e10120cfeaadbc239
SHA1 650a48ee1c55c6c615df3841744f061ff48d263b
SHA256 e42417d0d435488ee36eefea5e5e182a1468b5b370ca9ff6627b9367b9374efa
SHA512 73b254a3bca52129633d6c96e1213fc4365b6b712b3a1e2b99dc158a516442f346a2a1153cf4734e69fa5de78943cc9b2538ee2ea0d7810bbe3c93bef9b5510c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7ad308ae630099ec35a07aca755e550a

MD5 34b230e9645b5b5cfc57dff36b382521
SHA1 3e89693a5446e59942e362ec3a6045e3d73c270e
SHA256 e96270e4beccbb8d0f5b53e550ea41d677e7ca2affcce0f80473bf9ff372628d
SHA512 9c48f7ed57bf4e98f64972161f0c2effb3cf780c5f3a95e7e7ca698df4160a41da49c10a406a999f1884aca44eef5ae5a36d8da5bdcbe5c1e2e7ca4f68d9a38c

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a25d8e41a6fb03b5e98bbec38dcff01f

MD5 f7247c5d7d54f314f8c207fb2fc44b1f
SHA1 637a11985dd6f18c96837e54674348512acb162d
SHA256 0baa6a0762650e1d71cbb6726776f39b581917a1aa49cde407cb1e8cabb16cef
SHA512 253d26a07bd5b64048d9a89a3ec723ae46a9169361e1ec3efe8a302366ddf513bf43edab63eafb0707354f1427b2bda89ce245839cfa857fd5a51a6f45ef20a2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\e754c5a7690200d756ee57d436f547f9

MD5 94fafdf0722aaae9e49c0b0b10ce1f0a
SHA1 8c120e9281f312b4b044e8d05ccaf5d6cce46dd4
SHA256 675269c990d3a4a8788c14976e51e4d2a4ae7cf8ed62ce0b8cdb3b65a7678094
SHA512 af9c47cdc59e93619c392bb6a17c6afb41a16daae45e62158a0a5140d61ade9517ae23c5cb130fefd696e57a487a10d4fff78e2e3eb9dbcfbe2f97eebddad0ad

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3ad8869dcb7882edadbcea1ef5aaa2bb

MD5 e8861bafb413b3dd782ee12e6dfbfcda
SHA1 6b8893e93f4b6837da722073c79d9b2646876ba4
SHA256 77c81145daaea260ccf10da32cdcde712bde538aef66e0f17e53449a26f5612f
SHA512 94727c9a2011af6f06baa07de3cb1da059f98e9013eadf64a1d10bfec9705c4277f8ee12b3973a7f95ea6e610133c7c44b6dbf3d1e63f720b2fe032a7c21fd67

C:\Users\Admin\AppData\Local\Temp\Roblox\http\7de699762fce90d036e2586e7388ba0e

MD5 f65ce1d28dbf83cdda20cfeec9e8ff6d
SHA1 0a42f89c291b957bdfd69eb7d69f5b4c2a5b7f00
SHA256 a987cef298b6aaa3e07551a42b77a500cd4d5d4b8438c2bae51a50772b2c48c2
SHA512 a496c45476b81e041ed0eb2bd6a7f9a66745d7f24a70833cf322fdba023db7af2725b36615a6fef9eacca6217767f442fdc16b178aacef2174573b12ac3d7694

C:\Users\Admin\AppData\Local\Temp\Roblox\http\9d832c96a654de99475609b25d593c69

MD5 ec5ded319150e95fb788a914f4765d47
SHA1 889086465857ed81af2c8d00c350ea967537e06f
SHA256 54f475d73cc6524dfd2f020491b20b2e7b14cfe2550b6480b03d5ad697ca1f96
SHA512 a1f0639bed3b6578a1cccf00faaf28117179939d50d166de984161d7c5cdda3041eeac953d0ee51e2a8bd7c89ac1875c37350485d89720df8c1d9f1858041cae

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1b3a9ad8a8b17c8a3504f2a1f794fe34

MD5 044dc955ec5f40bb0302efe97ba485c2
SHA1 b60956c032d0f5c2f3c11760e0b1d3d938039e66
SHA256 14833c4961c4b08f0cca5bc40e93dd2a1469df5b6e2fae53ce551ea787c67657
SHA512 4c3f46750f376820f90a93a6778cfe607968d43abe9821c35414225808618a0ea7524cf5ef355ecd086d53b7fad7a735fcae656ecf9cc4f2ff8b9642239fc4f5

C:\Users\Admin\AppData\Local\Temp\Roblox\http\68f4d9224b2a3aae5d16d878af6029ce

MD5 782abbe2630c8271f0f4cdec9f1f6737
SHA1 6d7a6350eb6fadec61da09c43ebe11cbc8753a30
SHA256 ac70a287096de86a3f271a5c47e8e2425958184decb300f64d42e25ac2b27e89
SHA512 e1ff24e27cd243fc9a864909ff06de23dfebe0ec7d33a0d1952b5ad506dff97dc8837783c21a56dcfa0544b936c2f7474fa2c7d1d21dca18f53348b4d32336ef

C:\Users\Admin\AppData\Local\Temp\Roblox\http\b67ab46b586b3012af07d37f51d11582

MD5 d7672b636233fa56a33a3639763c00d4
SHA1 448182f9a9af2e9bc05ffa0c24e9c7e6b182d039
SHA256 a14ebc9dc017a8c5af34004e76f6c76bbc8ad547b642062b6d1c79540e3e9d06
SHA512 2f727045a22ae14c759608b8a8e5a774b58898b947d5f6485121bd7f26a14795ee2a48442e4e32c5bc8577cf331a7e13f8fe2e8a14e37c3636a6b9faabc19e60

C:\Users\Admin\AppData\Local\Temp\Roblox\http\85cf7c0f1044b3c2e96e348430bb4831

MD5 f11700f0ae144449148d51d04d8872c2
SHA1 91a4c1fe6398916bd4775840f71d63582be8619a
SHA256 e5f7c9f67dc2b5747dd4310a414c08fe7914b7da8ae68fdbe0e0c010fe7b50c4
SHA512 349f939a7666a911234c836a088fdac22c78222feb55cd219a36fa4694ce23e0105573a443e8737689d159b7be6aa12f1de6cd1d0306f917ee4b6ea251212854

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 82602114af8775315c00d3386216d807
SHA1 23b6814a73fcfcddb807fb5b223055708213b06c
SHA256 f5c1f5f3d8f5ace4f866fa4d82e922dee69c1b1d3ac89f112dbb6b7f9937e537
SHA512 d2b25544ec9264cd9f7ac649eb6acfa7177ddd999911fec2219ffedf82c8e8374605c8c77691d42227225717c3f116e932b4e387e2b008ca096044b38e011839

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a3bcf6bd36b83787335f32c4b2d4b181
SHA1 9388218149056c148e1d6660d5cd766b22679487
SHA256 263ecc268b696a5efe38ccaf9b97dea6813604af77374142004f29c3b6cd7507
SHA512 fb0b1cb599ff8ec2726608dfb7484d7cb4f4aa61c32703622e81ab40409b32fa906c0462fedf63d5b7a90ead053af0b64bed5e67ca31dcd2af709603b4e2919c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e018a3702b1d6230e8e902da397ab538
SHA1 f2772bb2bff22bc0fff037f2e8170848b532000e
SHA256 37f4356bbcca4c5ffea6113d8b484697165ba1586cee067681a543309cb382ae
SHA512 95b92efa73573a01dc6a79a2ec8df24fbbd97cf96aa3bc01c9d8aa2fe1a631330a4c26cfd6f0c98275fd1549e3440e5c6c010160912c66b454a11506cada2ba2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7233f16b8e94954697b13eefb4ad94ea
SHA1 260ce87805fb14ba0fc1ff652cec368f3e0f44b7
SHA256 eba70d6cae57ce418c8903575b26f049d399ed34e29dcaeefafbc4e5cd7996cf
SHA512 29f9d5c449c70c54cb86d22afcb75f579b942839e6251c45f5e2da647cc2717298d88158a352cd8a6b78e7229ccc0dc4c490814bbf93e2c75367cdc54e160772

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2f87eb14303b18107e0e7d094ae04b96
SHA1 2c3652d9d18b014d3f02e81c7f3d2fcd39c93e75
SHA256 e6d05d5de82cd85e544289d81feb16cfae415835026cca4c57a9bde04486dcfd
SHA512 1e367e2b2c1d6f4020278acf307154aa1c882211ca47e87d99ce5bcd1dc1f8ae590b4e2566752083c82dc5da4793a052cb04bab26ed3e1e6a8e51f4041d2df96

C:\Users\Admin\Documents\ROBLOX\AutoSaves\Place_AutoRecovery_0.rbxl.lock

MD5 f69679d877f5aafe7c21d4ccf8b896ee
SHA1 fc857207f1a07d326a7d9eebe6e4601624d1d5aa
SHA256 47b226c10dd2f1f3f4a770129225feceda12b1c2ed92786dac4a308cbc035f86
SHA512 bd24fe3303133e680b0dfda0583dcd93a0835b65fbfbc861bbd0cd34f4540243e1920b69f266aace41ca71330f9f20caae9a6651db0cc0c6fd910c774431d0dc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\e7a975deff9b2b031cadbf3221ee1bcb

MD5 8a50840fc925aadc662f0a6744fc19f6
SHA1 27d3daf3d57a4572b99fc4eb274c26c484b4ed3f
SHA256 9ea762dd1b6d835620e710e276e9be18f85c7577b5125600c9aeb42aa6f7131a
SHA512 e684d52b1d4616835cb150da6f0d77015d39d8d072c66ec5208a96185624e41286ae879005f0c4b1102f43d42e0bee1b5610fea6165e543a4ed983e66e6c19e0

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c9be770f5cf5c417d739722ae5e8e0d2

MD5 c78ea0b0cce62cffbcb964b6b1895597
SHA1 e0e2e634d6723fc32e7f69e9a5b4c65a412241ee
SHA256 c04ddd03e23c73bb0cd13a89efa95d5524e254c90ec4333c929b7ce671a53f5e
SHA512 a32decae5b85b62edf674d585287787edb9ad68331b3e0366a84f23e806bea6d9742e5aea5fdcc6b97eb5fc5a3a6fee6081dcc160ed10cb994465cbe8f3e5ffc

C:\Users\Admin\AppData\Local\Temp\Roblox\http\f30d6137ea6e1733c39d8d4af2fc2cae

MD5 8676fe42b30d27930ab8d40a05e43cd4
SHA1 812917c165faff46a6bb13f3f4c55bbfcc01579e
SHA256 85eb785a67bf59c34eb911a9535f7c6d9be4c955a665b8c07e00ea0d500b8cba
SHA512 ca89a987908b291580483725cc84a87c79c1510254b9bf4deea3d9cbbb57fd0758e28106adc4b6ff693bca5e619c97cd23da96c8398d507704a7df2f76f65db4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\22749f226263706013eb4fe48fb04af3

MD5 f95d85343c433ba01c28829c1057df4b
SHA1 69651800b68d313dc57e4463091b23da422d4b4a
SHA256 8f581d472c14c51bfd9d951c8ecaebe648527e4332425951f55f6b4aabaac1ba
SHA512 41051255421534bf29a8e09643a20d63f95862f6b4c2bcfdc9c85d2f3ce5fd54862afd059b79554bd5a563c8978ef42fa015faca3cf4182cb06ac57f49594305

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1fc81a9d4041e8d2adbfe61ff5780f8d

MD5 44becc3b9a619a7e9451b5a52e6d0c9a
SHA1 da4b149c2468a83aea5af42be643e4a3bf315e4e
SHA256 fc10667d460cb1f5cc96807e6cf90bce0310785dbda5c86cc37c1d4c29add864
SHA512 39c729cb2b449852ffdebb056b75cdbcba8f954cf783db331d0c70ff6355021d3f7b4d0e1c29741e2cf46bbd0875b8fe5e76bb40bc9535bfaab0ca84d85a284a

C:\Users\Admin\AppData\Local\Temp\Roblox\http\47ed8a145b05fad38203e62ae04e635d

MD5 071d36eaec1db6e6a88f8c972326ddaa
SHA1 675da36fcc81434f88583eec1c215393a1be6571
SHA256 5675fcbe2e1f51076677c521f627075d0a1eecace5dd08947ef262e09c1193c6
SHA512 9343f0a21a12c19b28ab89e9e34ac79f7ad2240a06b072236d390c0532a5b481296f1a1f9e9ca170f05626734b6bc6bcd4ac459649e96f096db5dcfd6ec5dc98

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4eb0d66b82046c9029261c0263283d0c

MD5 2c52ebbe8239874086e15bdf53b4bc99
SHA1 e9f195531c92c732bf2412799f98b545ed0b42d5
SHA256 dd4280188fc2a714462a48b6863d9ccbec0e8167c64e1eda3165d403ee768b08
SHA512 13f44c1d7893e38bcf23f109a5bb55518674740a35fb4ea15b7a81be236b96b647e278a0bd114f62051fc9e6ee151f4ec5a6ba4aacc8d3e921f7058bc3d7a724

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5fa0ba435d31a4ca0c8463583db73380
SHA1 d5a8615eb66c072a8bc62a6afe013d6c67711a38
SHA256 79511c33f73ac6f2eedf0aa7872b7970ff35994056e273a2b91fcfd677ab421f
SHA512 5cc1f7a5300e0af65206669703e08b6238cf1adbc67cba2a91ad3d0a5923ddcc3afc1e0ece1567ea9d0a386999e53f495592692a078b5a51ca4acee619e51e43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9361ddf57519706a82614d4039fbf1d6
SHA1 e43a53d35a46085949b33622ad76a36618f5b4b1
SHA256 df44c9144a995e2df8a0760303895fca3e3bf479ffc97a0aa77813c8d6c62992
SHA512 9e107b3108884d51bb526947bad8f29367b3c3d716786b81ac50b028fbb31f9cc57da08a0bd26ebbd5deaa0c24e31486459f4e929198176950490461cb987368

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ae56e0e2ed825f05a02d9ba877a16e1a
SHA1 17f441636fb1f3e33b35ca9e81551ed7b666172c
SHA256 bbf35673aef5501d3750a46c2a69f89980ca90cbd0ec9a6741377061ebe051a5
SHA512 e6f0560ddea786bc3ebcc0f6acbf640a03c132d896e808ce3faa9799e82c9c5e4ef80a2c5275374b0e2869a4cf7a40e26749244be2c8da52334376ac7c1e78db

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8597ee0c1229b55ad4027dbc4c34a16f
SHA1 b37ea4813ea4e1cd860cdf76db94b2eb15931ab1
SHA256 583b89a29263df59e1746ce11297e42167f305284453215395692cc36bdd6e7a
SHA512 3fabaf8d91d3f4b538faddd116d9bcb3f23cc7538876a54988f90f9a4bfc5cc1dca196d313f5a0ec90a33753cac178995bc0f677305b716e7b62b99853d819f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 21905363559f2a768fcf4fef0851e34c
SHA1 f011a74c694216be0c9c064ce79a9e0f4bfb74dd
SHA256 7b3496232020531938ccea473514922b7b2e5398b368727bce8e1e12a4447792
SHA512 39821c270e99a4f72cbb079b9c5562e701f3b36118088ae9165c87c84ad0608c9b7a7b5b13da1dd1baa2d537a99d35953d0f89edfaef0a11d449f5ebf05dd717

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2b667df37a50344cd5b5c9d1ddb90643
SHA1 63fdc697d13aef15968418865eff118e2b9c9e3a
SHA256 1e010daf00b149457adaadf11e3ef4df01837902298c355b06ccc025ecb8c8aa
SHA512 cef1d3dcbeb9ee97bf831d4563c1f1e438aa8509e468d5eaca0e06e1dec7ee5346f591a74ea0e143195633db70e6dbe11d0a1093fdb2112160b7fe2ffd9a6e7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 95ffc6bbbb2ebcdcb9667d67df23c8a8
SHA1 0fb8c6ec6cb5f92ac7d54582abfd42e7d8802baf
SHA256 2a599d5c141857d7a40606591f1ba85e60fc8d3ba655eeed7936904d09c5659a
SHA512 f1c0351547104d3bf8714f0bb75c160c96c8603e7cb79b4cd99de9bf1b88c36b81530addbb47e65424c7ec8b37359b8a19c5eeb289e150f72c860a2298779c33

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8a8d987b6abab68d57e714a6020f5616
SHA1 7ae8aeefb7ee9cde04981cdf7322032294c66edd
SHA256 8dfb474843c5032a54ae9bf15e9bc3316e38a67dbeccd354f532a375416f417b
SHA512 4f09ee153d75e49cf50fe5e3b53455a7444f719db26438450f885867d02dbe9bbbaf8672f8b12af0cc48f45c8a114ba298be3fb02073fd6c6b626f84a6044231

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.g3pg1b_5hbjb9wj5yco2yogxh.tmp

MD5 530f1945913c81b38450c5a468428ee6
SHA1 0c6d47f5376342002ffdbc9a26ebec22c48dca37
SHA256 4112d529734d33abda74478c199f6ddc5098767e69214a00d80f23d2ea7291ff
SHA512 3906427ffb8f2dfea76ba9bb8cac6bd7dece3ebee7e94ea92da5bbdb55d8859c41260a2bda4e84fab7e1fb857ad12a2e286694ea64d00d0aa6cab200fbbf64f0

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.nxv599oimnaw51w77a_d96rjh.tmp

MD5 4085b7b25606706f1a1ad9a88211a9b7
SHA1 31019f39a5e0bf2b1aa9fe5dda31856b30e963cc
SHA256 b64efcb638291c1e1c132ed5636afbb198031cee44384f3ecf67d82b73accecc
SHA512 9537559523839e3e708feabe8c04f40236add7d200ec36bad00c10a69337a15001103c17093dcc0d8cadb4713d911f39a6411624c1db4cbf1ea1af272a716168

C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AC\Temp\APPX.io8mfk1ip8uvgz7ns43xd5t3d.tmp

MD5 24ebdb1228a1818eee374bc8794869b7
SHA1 79fc3adb42a5d7ee12ff6729ef5f7a81e563cd2d
SHA256 92a7d7d3b0bfac458ddcef07afcdad3646653ba7f4ad048fdd7a5ec673235923
SHA512 63764d99a0118fac409327d5bf70f2aa9b31caf5277c4bc1e595016a50c524cd6c3d67924321b0fcad12cd968de1a62bd292151e35fd907034efd0f40b743d6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ca52f4761db5d5dc561be056b170ea07
SHA1 27c95a9bc7a9130ef93143fb0f7a36653dd7777f
SHA256 e4542a134588718c8124166c64d7dbc45cbdd2d563640b8ad24d5187e5f3686f
SHA512 c337de02c87fb1999a8abb9ed5f5f16b7dfcc31d1a16c90c1ee8fbe0611d8e9b4a96c27c735067e37e45c559a5bee6adfc56ecf0d98fd1009b134467c2001b8e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ac3a21ba96b94b9f2e414879aa3d46bd
SHA1 e9a9c7eb5ca33fe4ff3187e8e584f31f539ba652
SHA256 b276280da7c1a9cd04e9fc8c9c2d1dd302049c900fea7490647028b39b1e00b5
SHA512 4b72952d9bb3fb3dbf6e6710bd8798928d7e96d23d3e2befaade9a17094f3e7433d9b02c4aa1e451abae1853d256ddde242081ca1b6c3cc676313d322d5dfa3d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\10\IndexedDB\indexeddb.leveldb\LOG

MD5 e7c10b8485aa277a10d00ab6f12b8c06
SHA1 2523ad78dbf77566b7a1b41c1a8d6e4fcfc7e5a7
SHA256 a7f0ead04ba0338fcdf40f018f5a2ff5c71e3b3d9229fa0d6da4629d7ce1260b
SHA512 dfeae3c4fd3f9f758588ae8f50cc44321b147d406c22b8229a0e83ddb6f184f4fb8fb70bf70110a1c6f463d6dc146ab5b3119d42ed8cd95bdc126641fea64be0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\10\IndexedDB\indexeddb.leveldb\000003.log

MD5 aab3b3b791ba21da4f27b50ed017ff52
SHA1 8c9284f49834a0355f22c2d333826cb6fa763bab
SHA256 21f759ae2d9f5656cb77c1f258fc2c863954847ccfcbfd0b26d99410d36bcc72
SHA512 5a4b204d818ea3638424213c8e19319ae1bc6c9afe5e8e5e79b2f7baa0e063e0d2cc82234d5c65ddd3e0e5265145045002f6a541a884d6295ce121326152bb67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000252

MD5 856a3daa268de8801e7cfd5b727b6de2
SHA1 8e099b433518980e657c7541c49b498e6b83430d
SHA256 b870ae3c5216311e1dd7b8662e01d1fa3326edc85a98a58247cd37b8cfca0be5
SHA512 2f191ea906a3551576ab14e607fdde9930fcb15f15ffb40a8c5999ba07224bbb8ea69918db11d1cd719a3d57510edd466ad2b9199c6a45a48463b0020a2e6eba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 53f36a8deb6301a5e34e1f217a32a8d5
SHA1 2b5d816c3cc3ffdd308a183b107f1b8845bd5823
SHA256 aa2de58768c03fae6b5d750557503bc402aea9da9d6cbb614f65c8e0b25feb43
SHA512 c4b81612c7065028534496e9c5997ba83579153b5a48fb7b7c8a979aa4b00a36ea2bcde7495e0eab076fde528e671ded28a04cc91c1af3ccc4f0a4fc16f0ea27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_remotedesktop.google.com_0.indexeddb.leveldb\LOG

MD5 26d5092c3fa80d5de4e569738ceaeda5
SHA1 a6407cb7c51b8be8b1037e1e81619201f39dc8cb
SHA256 f97ec4a79deae50ce5dca679866ab4160cdc6d21d17d39377bbee9dd689513cb
SHA512 489020456fbc2fcdf297b3777a4b3201585451af2c929fe68c3e68215e823bd6519c14aa52d36b6b76793bd3eb0338704ed02950968599aa735f3b6b2bdaf19f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00024c

MD5 bbba8d08edc2434dbf95893ae48977a9
SHA1 c3df6c8a174820ec55b54d11df9b356e3a4732b8
SHA256 a3e214dba1ab20a28e3d6abd5d843b589d858911dc3c9445ef0af0c9093eef84
SHA512 4510d1c2597edddcb17db458e3341efb08a6fc1bd84b417606c683ba00cc83a5c12c10e74ecdd5aaac2d9f7cf83cc2b3a23695961728b2a37c24efafce58a2c7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00024f

MD5 89a574ff00e6b0ec61d995d059ce6e65
SHA1 aea09e96808ab77165ffa712eaa58b8f056d0bb6
SHA256 e5c29c139842fd487473d0824f2c01b374680fb35d22fa929686d17896602a44
SHA512 30d0d40bd680e61968273155b740901cdfa66670fc2af6f23e44c6b998b67cc1fcd0b51bd5f9470f209f188e75d071355e592b2a7c97f4bfd15d07d455e0909d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00024e

MD5 159be154b0c6a30c75f4f32d27f2e0e9
SHA1 656d75888330c85405f7d107175858fa7bb08230
SHA256 f24d5ad304b1430ccafd63cefd033e8e8c17f4864eb8b7984041c3cf4da961e7
SHA512 6319f3fa6ff4bfe58ad34acde79207c72210f5594fd1f3895451811c8fc3d163569bf8df21b0fcdc123b8676e766af4955d7f0c67a0601fb00f4841510a1898a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000251

MD5 6fb26b39d8dcf2f09ef8aebb8a5ffe23
SHA1 578cac24c947a6d24bc05a6aa305756dd70e9ac3
SHA256 774379647c0a6db04a0c2662be757a730c20f13b4c03fe0b12d43c0f09e7a059
SHA512 c40f4771c10add1b20efb81ee3b61fc5ede4701587f29a1c2cdde8b6faabd1c76d769bf8b99aa19082012f95d99ba448a472463fb9056acd2e43542e14e605cd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 2754faee404620ce5f7c35aa13a61b37
SHA1 74b2885376d4619a1e4ca50020f2db763c2ea423
SHA256 a80fbce56d86cdd04d97de147a04b4ac2675746278248fe06f354483d75d7730
SHA512 505d6476e265696529416ba92dc394722c08aa38589b0346c5fbd24809f278952c75d8bc7c5de473e5ac92be8f41677b62e62d4f57873cf18ee8cf57d8544c6e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 10db6bc1126f07f90e6169ae9321576a
SHA1 e46c2a0976ccac4f14a2312c43042daa1df44f97
SHA256 552ae8a5876f5f162082cb3d6d9662ac025544ac3fc7fd60a0aa7928577fa005
SHA512 6acc9492eb1bb2c15735c5cb133b0bfe88537407b5444a1c64296b22ced7f9686f940a0d2fc6de5bdb3f62a0d0cacb3689ab2d0bd905ec21ab6cfa3409a819e2

C:\Users\Admin\AppData\Local\Temp\Roblox\http\6582de78b5e5ffc6fc7a2e7e6ce06588

MD5 3e78c522df28ee384b0efc78fca50916
SHA1 a40afb7ca3181f3739cc001dc53cb525990e2667
SHA256 7607b25a217511b706aeea6787578fa72d59771c9fc8ad55299e36f040f9f525
SHA512 50e9a027acd329e0bf1d4cd8224bc65dd41ad31559b89d2d2c9073c7f3bd3ffe7a8ed8db4bf040ecc4eeab74097d238bde034f38bc526c805eff29f65fba9b7f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\31ec158c4fb0a7e05c69df3c8eb055ff

MD5 1242a9d1f4524b11b39ec03c631583a3
SHA1 b5837d88b2a265be0433b3144f87b3cc55d1f4f2
SHA256 d2d8b99fe4d14fe57d0cd684b61b296e72c99106cfb87e63a447d5616f3ab929
SHA512 b087af14eaa1b7a0bdc1d659e5fb6ae158aa5c54bb82d2b0b82491a2c52b5c0f32dd8dc9a1d96fbfd04d56cb6fe54cab15ab585d696b3d3545b46212c84f0d18

C:\Users\Admin\AppData\Local\Temp\Roblox\http\5afa5ad3d3b21a3352a22d0bbd25b1c8

MD5 6f643cf1a34dfa2ba8e6e39b4f708a94
SHA1 e1e2be43d131b54ef486949b6aa0cbf7c531995d
SHA256 b825a07ed843f2dfc3dc9901da0bf64579f98340b9d7fa6ec79a5bec7c32ee44
SHA512 7a7c698701c4de60b1ad1e129b110ac23945a98612b61e045be38c35e5dc2d6039eab27a86581e57ee34caab32b9042d492684f571acafb18be364351f42757f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\6acd031c961e05d02eb5fbda3d87b3cd

MD5 ddb58ab42de0155af297f0ef33761d3b
SHA1 0acec80698f8056ad63aac17fc226f7e78b2ba22
SHA256 f1721f4e3dc711307c9060f0eb059974e73d4a3678111a1c2420308eaf0f0662
SHA512 a8ec8110ab47b5db5bac15ccec96a1f8c8ded01257675a322e78d9e34198bcb4ed4563646226820cd2a5c6d71f64bb1d7661cfa14860152e7bbc7f83d7a5808f

C:\Users\Admin\AppData\Local\Temp\Roblox\http\cb7a694fb433024a23b1fe2e8afb8c95

MD5 cb218b8d286c1c9321d4b357618bad02
SHA1 433a32d0e878a0821e4225fc1bcdfd9c4bda0bd7
SHA256 c95ffdf1e50522b4102dc463e4ba9faf772977368ef78d4ac2c9cef8093ab9a8
SHA512 06db27db9671c9714f723817d179a36156598f8a886bd075f4c60f5602e6dbff8f366cf1a33b4509940d0d883c25e7b1134f6bf89f06e9c9f2a7f683f05936ac

C:\Users\Admin\AppData\Local\Temp\Roblox\http\404098719601fc11f26f0b685d29c376

MD5 f52e0478f70a8e2f8f2bde0eb7e9c2d5
SHA1 c77fdbda7e97b97b460464cbcc7c5c81687f6832
SHA256 df0890b1fe85c243075bb1ef3fdb7bd48dd83737ce0caf07983f5db380d61be1
SHA512 f61f4b2c117ab2194356d06d995d7e665884be4a3847eac1ed735d8dee5a4fb5d452d4ee1608524e39eb08b2c99975ba05c72d7907e3613c15ab9bf4c2e9eba4

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0fdd6a3414b6314a0f5ba4f558870f3e

MD5 9e0f571aa9d05e198fa8dbf070421d3f
SHA1 8a0e057cfa40012b19fdb7674c8f024607f09264
SHA256 564b47f432fad5bed8c07b1d7a89e0cc2e36185198dae8b7bd3ebdab77a5f51b
SHA512 1812bdbc567cb81b40d23d633ccb41cf95d1b6d5550468c0c1739cad754ed5f1cb0351fd969bb8a59985ca30790b38389f01134ead5341c95783334a8d8897c9

C:\Users\Admin\AppData\Local\Temp\Roblox\http\12cdc773fb1a97dc29440a58d7c13ab0

MD5 181c49476bfc1dd7bc7e0f3871865996
SHA1 dbf3bf9b13cc5c1614993bab8d910db385157def
SHA256 0cacfd8945ddd9876964f80747bf2b961e63361d90f76e50f62b2c353d91d382
SHA512 131da4864d858c1bce969dfa92ed486b42607644cf34cc93ce84889318e1133780bd3b2a1de7b24bd5575e82bf38a73eb051b75e57c2e4e091b5b43c856121d7

C:\Users\Admin\AppData\Local\Temp\Roblox\http\86b90aac496cfced6cca8d60d0f86fcc

MD5 f826987464b08e467a877b223c77b8af
SHA1 8c80b7c3b1ecbe7e08c410e5e72bb2ddc8ead6b0
SHA256 392329e48812afdd037122f20709f04e1018d24de699472fd03ad007bf7f957a
SHA512 3bcaf45a61e9b9c07f800ad690376395618c8b0e10f490113b7d8ed0b88e73a5f26a46fe021643f1fa33116af77c8375617c816a0f8678e90a773f21b9868b28

C:\Users\Admin\AppData\Local\Temp\Roblox\http\c32c4ac28c1d42aaf9706347bac68564

MD5 abf7b4b827d97271d3d1503c935d402d
SHA1 fec01711429c0903c73d562eacc2272a782f4061
SHA256 96ac68e3abe838eef02094207beebf5c8cde9d0a931fb10e0fe287a5b7d96c58
SHA512 7cb47ae1e54ff9875989cedc2557003db21ba848c9be0f46db99748a86d403ac59a05c334e0c0cbd9b70c66da0b1dbbbf5d521b8b5e7c87243d6b57334347a86

C:\Users\Admin\AppData\Local\Temp\Roblox\http\a88cf249846cc0cfc2fc664db024aeee

MD5 e715ace2b3227fd947306204053ce167
SHA1 047f982df50d07ce36970c55d99e8dd4c4a5efab
SHA256 2938c068ddbf3ea75fe1eb731262c92e24f4d78c36ba275694b0b734820cf0e1
SHA512 43c20c41ac373c7cf8f622cf37196eee9139f8a57c6e7c155ff223f6c8183c612779770a99eea0d17cb3b11d7d5dd3987f6bf58583ab316a8d484d08ff601b47

C:\Users\Admin\AppData\Local\Temp\Roblox\http\0212fc222bef6780c4044fbf0a71a3ef

MD5 9abaed794fc3a61a91a233392467d308
SHA1 1326ba76626c04ad2dc5031718c5cb713c6b41c0
SHA256 8764d4c6088ee65754b9f43d47cfdc2794efecde6274f378d9cb802e7bf8fbd7
SHA512 03bfb7350a14618ed44535baab94c62ac75855a76270c8fd33e8f20cdd2947c82c00fd8c9cf310b0f90a5421a6e302bf9eec8bb3aba0010569e54a08e989d648

C:\Users\Admin\AppData\Local\Temp\Roblox\http\13a914509dc6ce0a036a6cdf709f572a

MD5 647fe3a56a9f2656dd68d9eb6ea2adca
SHA1 5bf2b62a4e8011d0eb0e525fa6f145a6c1cd89cc
SHA256 65cc3a734b427b5a9f0812aa5729f0004883d3f76542b56bbf0ed6b13c8d29a0
SHA512 a0ba08f9f04255cde848c55045dedb144623cf498260dc27c7ad0f5944ab12bde1826d428a1245e65a63add807e59e621fec6c00b5f064054f9e0ee4a9761fae

C:\Users\Admin\AppData\Local\Temp\Roblox\http\b339968c1d753df3454d3974eb4c3be7

MD5 735c71aaf2140f8268ba57b9bea74514
SHA1 67785e1d70230645792d14122069fe72dd31b580
SHA256 4bed66d6439d248268aa73bfad0bac72f11a517e64986e77f7422d3f3e603582
SHA512 247c7fd22618677e7bc6a7367a7cc36de937a4a3ca63b87bba1f6ba2698eae39a4fd7614217f217b381d5f233e9e2aa8f6ce39d8d75c356aea6ebbc2ba8f0bb6

C:\Users\Admin\AppData\Local\Temp\Roblox\http\8dff2f3dae25ccd6d8b3ede2388788c7

MD5 dc62ea824d27d1f628f8d2644c681828
SHA1 0907623ce0b9102fbc48f80048bc06ad5f954a9b
SHA256 c22d84abe635496e4fe9aae071086eb5abd5d35ec0f4e3f3b08a2b079a37d452
SHA512 b1cd6f6063c2e7df4a1e177d169e9c2cfe4c79a1c9f186baa97e4c67c50007464f19dc8ca84fb2a9f2022d3b288b9594d20746cecd4ee1d41bde15fbde9cb65e

C:\Users\Admin\AppData\Local\Temp\Roblox\http\5ede093859e3512765f8c52bd201ac3f

MD5 cc8295c8598421bbf5d3e5692cac465c
SHA1 79cdc2be4061d4097a0e89c1acb301adb5689c3f
SHA256 62cc9684f16a9b24732e05c33d9a9fa7ecfa22c2e62b580d936a3e7b5b66fa43
SHA512 e5629337c10d0d91685bdccd3bdece92500380a79e131ee274794e172c1ba261fb1910a61ff87e1c94bf3311a0559c56fe6b5e3a868ef620da8e62be5f1c8b24

C:\Users\Admin\AppData\Local\Temp\Roblox\http\da81ea725758ef9d3953414987ba5aa8

MD5 9b89bb1abd9a0badd4d84473736945a5
SHA1 e604837b684ff574ff5bd9130de711eb2bc17819
SHA256 c421c184036cd2131fbfbcac592c4268ed4b159bdd41935dd935d988148f88ec
SHA512 468649f8a97cc8d7a7ea900da3ce5f0410ff2bc51853c1951ec2fa4113883638b252d24d6fecbe0e08d2e76c80371240894791655aaa596e4ed2a4bbb53d2f03

C:\Users\Admin\AppData\Local\Temp\Roblox\http\40fc089559badde1267da504a91214e9

MD5 043a80e961b1fa2f4bdb70c27ad76bd6
SHA1 9a70e885cd2859e892f65572ba557f7a90c43c2b
SHA256 99e84b15c4eab26061c609acea1aa206782cfb70189315b903891c5c332d27c7
SHA512 f3516d2ee6ef2f120f456a9450da1435d8a04518dfb888b0ceb818dcc83424942afe67c6b019468e7f6c4a5143ae05eacf550012f320a0337680d6b816f97209

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00027f

MD5 995db107c34a3e672a33edc6cfc928b4
SHA1 e31c61f8e4e66ca8dfe82f4148d9804f7e5ae4a7
SHA256 ccc407c1460d983a717b25d88a52c265f20cd99dc05d995d16764f7aafc2a452
SHA512 cad7b0be71ab19ac0caadc259788372c8c39efa276ac52b09eaa3dba4f62d2fe6d0fa96622330100270b05b6cccfaa83d9a256c4bfeef2f07262edf7dd1d4fbf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000280

MD5 55ef92a0848cf32281e2e9d81404297c
SHA1 2dd82673dba672149083b3e8d12ca766da9e7f54
SHA256 86158dc2b8285811291a28570527197ccc1f70c6a48a4cae0622910fda7f0665
SHA512 ede5065eda283c79b33c13c723237c565614101ab62ee43f7056362bda9e4c8f922498d5094a0a991d68b06d4e50074fccce57435b422edf162180e42723e599

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000284

MD5 48018bacc2185756408c06dbca3c2963
SHA1 7757f052240db21d6845a2023f8c432143937921
SHA256 f2fe6865e474ab03b22324b8659df9b39f3e05029b2a1893a68dbd7e880d7a9b
SHA512 55fa973b7924a939a70e2e8451511aca3300dfffa18842765b0c1d4d3bafd28fa5e0152e85b2b7244035e52c8aa9fc50d6527a2d4119562c22bd88f72e5a1e41

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000283

MD5 bb5005a0f5751c271ab83fea127c6c0e
SHA1 fadd1dc7675f20e24188c2d1118ecab35ca9f99a
SHA256 c3a975d6c8edac938f955c3b818d9f97485ed61c1d920d6c78b32158b1174723
SHA512 11a389337b4690698c0cde26c16bf666a85583b2eeb5f2302fcdfbd2959cf456d202bd961e47abfd47713a11cda35df0b9af766caa09fabf3c4614d9dd0e1ba4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000282

MD5 5b2068376e5ffb460c8037aee8574636
SHA1 2c642e4cf59f07613ef92f604c303eed048e6308
SHA256 5891df3dde0eeacf56743a9203297ddf990416dcf35c815cb1b056e58ad9a77d
SHA512 ee954938b0adb215b0bab30e4ebd9742d800842ad8216236a75fc8ea7ad7cc409e8c7dda6432b79c6b630695914f8f648b3277171fc6bbdeeddea3f8686cde3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000281

MD5 4a4b4b518072bf7eb21b5beba06886a3
SHA1 27d3d480cf38696131bbe594ef8b1d378c2c3d1d
SHA256 e0cdad7e8ec4b6b8005d4190126167c79a37804fc2adae2e529c2534201a257d
SHA512 d51f6925ba1b85212bd7e9691d6800f38f721aefc48d31eb09c4b378a2721bd278b45883ca6f9fe528db6d6deec81b13cbaf141e10be61a2d182eae6ed17018e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000285

MD5 3f1bd7ea7569eece504c89183112b51e
SHA1 1776f014b5877403d8452c31954e2d8079357ad0
SHA256 b192170fb77a56d47f1595b3b2cef2947481ecb3ec1d37cf3cbc68df6d164774
SHA512 53f6a7ce864e2eea8daa43b3416f02ff34c99bd5289c177ae06f801993a76c5976fdbaf1b89da024a47ca14cb24b0a60cc0c9de05ea1e4ab7555525e1ff8b82a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000286

MD5 f7f6c2a4afbf3dbd3d5708a6dcd33b33
SHA1 a243dce02f4b36b72ddee960c9467a3fdecbc1de
SHA256 2b4442ce6b6dea87798f90a4e9c97ef22c120f82a5c17054190cf10fb6711f36
SHA512 f95bf684901f7254954ba815eb1ee0369c0c444479a232e09cfea310bf8dca1657e1a78cafbabce3cea3f0b71249a460eb5f0bd2623f9595a3e59a6307137e7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000287

MD5 de49fcea2c2d408ab0b40268a2a16b0b
SHA1 b7f63d89149dfb1931578d7439474f1c0caf324b
SHA256 49c73070a56ca0962bc80af425257ec8d492dd7f0564f80c2afc8bd51fcfa59f
SHA512 25d4482e99e73ba07fb8598aae656f5ae378fb3c6922b52c79332741bef6a4b8f50b3fd57d019993fa01091935aa8da45779d9e80f25575e3fc9a44c16dd7809

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000288

MD5 6aa6b7aa21a4b9af4ae40d7abe942c1a
SHA1 0326931417d60642470e9d754d4257e3b7c230e3
SHA256 6f6cf443034f43ebaedaa5048ec952834f2ef85f9f859311b54c0ad33d567296
SHA512 0b753c45b762df2d58134345f02a72d70c6ee1bf99337b9deff79c3b4eeb1a54794c78ffeb548695a6348c8298eceadf84b7510b577e8d42a40eebefac51a3f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028b

MD5 e08d490b5b0d79a11ddc23f134844f86
SHA1 cb30281cce96ce6a7a867e22600bb5cc1b2f6077
SHA256 2fe16bc3018d4b7fb905681fc6d9fcec2d6f111f3f869bcbe77d480640e77c0a
SHA512 a997303b98518dff81a568ca7ac03c265b6e6ada35004b43d994b245dbf119893e7cfea85dc2bef3e73450e79e8d4157a43960a16b35c3f21e6e082de01ef2ae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028a

MD5 fefa7ed3abe57f64c97d886457e19712
SHA1 fb4d19e99f63c7a4a7c2a991b623baa6f8f19eac
SHA256 e3cd9d3b9c2235bed737e5e956df87c9748c3c0c644d589daeb6f9ec102728d6
SHA512 0385d897dc919ea233a664b8d601b607890b32ba257a25cdeeb36378b2b2bec545932c29a4790267d0304ff25ce68821b0e3b7a083d3602f00e91f57c2e911fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028c

MD5 2daff31869e65f1fcdca7ac85bf6f86b
SHA1 27211eb74171d78abf7cf489a5472a8b20a313c7
SHA256 efaf76974f6ca91babf01e062723d26db42111f81a92bf8c6690bb0ce466a416
SHA512 281f79f2750eea9ee883316eb9394ce9028510c5c052c61d7a5a9acb6b7ba3084be0ede852abab5af5201118c9ea4f52b90c2c31fce81821a10596b8882e5c71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028d

MD5 9bc42a1c7c39ade93e5bc2f0a8a0836b
SHA1 21d0dc27cbb9fa9c43045527a6f3033a0bec3cd5
SHA256 d63c266124ff9ff48e8ec1b7f4989433d371424533e7799a05b6b038c7648176
SHA512 dfbe1540544bb5b02e6043e36fc7b8f376fd687156cc7bb33551043ac197c5bc14dba4d036d7d112f8f3b1a049cec72b14236876e281695cb24d745b96cab248

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000289

MD5 3ae535633ece27de7e4da1c907f2109b
SHA1 a44df3fdb3ca7487d64535caa598621cd76cfbc1
SHA256 b698b828d316bafe8f20b349c5f1f593ea9ce4007b9f832e16f9f0379fa93f4a
SHA512 fc7c15a6e95e353c3a00c80a62a10f9155e9131608557e81798988ff9052a31cf5cd0a4fd0bdb4bc2bad2593ebd5215df214b74370f6b110d8b6b2c1f2caefa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028e

MD5 d71c9e1529f724dd59ab1c144d551d4e
SHA1 42c6d10e126df39351d60021494d08f8852e4c2d
SHA256 a530e71bd6db9ba1c8ae60738670a2b6deaab82e78833db269612b8aa79d5a8b
SHA512 d714259712af7ee63a4ac35ec610221f0f96d0ccd8bb265d11e937ab24ec09d4ccdacd9fbdb9280ad3c503c98951f113a2f6b0cfeff3bb049a036ee5e11fbefe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00028f

MD5 7c12eae78a311cc8ef612bf7430f1d41
SHA1 cbba64f631862c4f6cf369b881d77c01634679f1
SHA256 a38823244fc0827e62a34f66deae6e1aec1c6b95fb449fcdf330cef6c40b7419
SHA512 b1b9af6e4a72979a81f072e87a67b0e26e1b6273e6defbe574c1ddddea6063d8c72be61bacfac331e10c88ab399f5fda5fe639713e01d906e123f435784e2ce0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000290

MD5 26eebd141af28e8e2e782d590858d2e4
SHA1 821351a5fbc5a8f65dfcf4a7bf651af3dd86c483
SHA256 fe2a11e7f2b1d8e7522164953ae2a60b610b492422314cf6fdaaae79ba1734ad
SHA512 dacdc9698a5577a2b51e3a3fbba14bbee0e9c7d7d97a1ce5bf8044483c744c18fba678d19aafad564dd810cc0a71a575b4f29e5976adea80aed10fc0b2e3af89

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000291

MD5 d70c3fba10ed5593abd17fdb27cd8840
SHA1 18f5640b13af28d52f66a1943211928afa19ec3f
SHA256 da1eafcf0f139348b66da8c1d25aa0c395d9ada7b00ec0b2e53dc072d7cec3fe
SHA512 b500343c2a07f51756b95849dd817d436e08337713bdac4fb9ce92124d945f3c53733b18ce9ddd6d35adac5b9777de6c6b87f3ec89dcb62cf9fc191cc24df4e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000293

MD5 6923d0a54b9fc4e61db43a2d57cf7ee8
SHA1 56195296c0138879a90233e0fcd98497b526c970
SHA256 5b0c889927435372c0504b12dca7b57e6db573c716a72ab3d7d674c49308aa0e
SHA512 9251a3538329a5f529562bdd63d64bdc3369e5dc8877f558a8a891e3f0ff382e1c584194a936018cfda331a87fb1dcbeba78a0aa32f43e4f8a2f73f6267acc7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000296

MD5 9a590922ffa1526efeff700aa837e14b
SHA1 6a54f97f3a9389386237af90347677661ef7f1cb
SHA256 97af1d7d08914543bbdc9bbd6333d94b120523d1ba3fe7bb5c4e949348f62c8e
SHA512 208dcedd0ffff551d504646601551517b95410a99509256c671d575794fd02005445a2969b52adc66949fe39d8c394c84de2294d019785b32d63eca12c33b519

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000295

MD5 b14246c446b81a443fbbd1d59bfab7e4
SHA1 9ad4dc2ee5433d7fde85e07b32e40bdcd877aab3
SHA256 b404ff5b26458c6e80ab14dbebf65b98b7af05b6dc63cc5036ce6d6e84a2aa6e
SHA512 d82ea9d50aa934d82046fe0b9e11526363de4afa3b15852ac7529ecf81b3015462dacef433479275c39d90e9c689c884133f35344c7c501a5412f06285d60631

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000294

MD5 e1c14ef9677739017512bda9c3ac2546
SHA1 20f93902ab367e734f94e399c58f9efe1b894bfc
SHA256 6782305371ed6645194a97cb255ca261dd2cf4f99349df6cdd45e403abe7dfdd
SHA512 c4c956a0a3d122fb9cf5ef334df56f684e707ff0e9a1968a3abd3071bf8f0d57bebff5a643e06d142b0a2258dea63c6ba64196db46f510038a6e5b12a9570876

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000292

MD5 0b383682fb39f812b0905ee2e209f27a
SHA1 91cb36eea5ae8f9ab880c47574d7fe8171b027b2
SHA256 7d4a289cfd1eb883b1537de52c06afa897d88928ab3627f7df9ddae272618074
SHA512 7a5196c0f933dee850356198ecc1110af6b36e54cab2a1ee898d4dc64822fdfd974981cf898481d3133f665984c89f2477becf51ac41038c25444849282442ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000297

MD5 d84e598466c3c93df4a7b015c9c58fe9
SHA1 a82ea936c16f9b41c33cf338dea1733f154fa125
SHA256 13a1b3b859ff85e4fa2ef5db3b8b73769e62fb1012384b5ffed00ed0566010b2
SHA512 f0760342b52dac4722106a84836db0e1eefd5a08809117aa5269c769f8f79829adaa48a293e4cddb337dbbc8ffbde78e73569eede5e4b16f6767e70f5a1d4389

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000298

MD5 ddf6ec47d1780a2c7776b71de96cf6ab
SHA1 76437d1c21d5e7640c0f15f90cdeb40d522b4c01
SHA256 2fa6b30e45a28e0be4a79af7b1e97486081de696c54ba22fa971b5e53afcb6ea
SHA512 6abd9338865bc64011aca1c09ff652e7571fa0187172ca8d11c80ea3c192fb3bede2e0caf5491966ba771c0bb7a371d56dba481618d84b69e2e491224b71f15a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000299

MD5 3e5b9c1d5fa336c738746f7491e5eca8
SHA1 aeaee19483bd54b0131db0afc3827bb8e0f8bfeb
SHA256 1ac55b74ff25d75dffbd68d897044fc8cf2010b58104e3f45fa69e9c95e2fdd1
SHA512 9ef6917fe9f3cb131c71411f55659cfb0709f47b69e914fff1ced43de76efedca4fdfb9c548626c316d3e31cdfa4214d02f3d15738d1455a088ca0cfcad2e166

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 48dbd78d77c2c3ddc58cc5f8f6f9fae7
SHA1 6b7a5142fdff1c5f1e993dbd83ca20f05ae3a734
SHA256 4f73a7a723bb5f99adf81f0e4946e355998fe9f34d10d66aebd417769178e0a0
SHA512 704e5dc14d88cc57700765c8afc662669a16e7341c7ffa9ce2f5e37cb2c40e9859a149dc6522231213a8ab2671f1d2448710b642a11600cc7c0475a23b984a3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029a

MD5 30f4d62be54deaf3d032e74e778c8822
SHA1 dfa7e0f4fd647d81e004a183f984a936d7140e7c
SHA256 142229a9e44b3a462f841887ecde44dab19332f5b3b37ca6fd1eebbfae6fbb71
SHA512 74bab42ce41222bcc8764b6f56bf9ad57c99b5ba05b735023b8aec18d591f6b42503809795c857d14e47cef6252d474e93cb9a3f31a5feaa4ead6e5661e608c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029d

MD5 428b1fa7030c0722e3319f651abfc2a5
SHA1 e5043edd9ea3b82058d59380f6e85a5ff440bfc6
SHA256 042300d5368d876bd9d0f7c6c65ad3c1a269a328a677fa1084b0440ee528e478
SHA512 68fa0e854cafe43e66cdac072f9f407f4ffa198cbc8a6765442f7fb78411eb1496d718bd0d521ae28dd8292a9254d1139bb9bff03662fefc0689090f8ee561a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029f

MD5 ce4aee6e4d0699a06a3a4e7a5ade89d2
SHA1 ef61617c780f1bae301a1441fe6cae8104f767ca
SHA256 9afd92bdfe6d29db9962f11c6371ba9300675948ec005d7e97ffedf49b6ca17d
SHA512 3c1f3d2852883914aee9864e9878844d9bdf2e84701ece56d54f97baa331c7d562436c4ed9184793eb6b1eac6a418f02ceebf720a7cd8745442cdbd7b8649812

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029e

MD5 86c280be70f539b9c536bc17816c853d
SHA1 b038947099b8be1514812ea48760e88ca616a528
SHA256 9f76c3f19b0212045e4b1fc0f2e2b07053763f252acbf1ba89b655e0dd10f159
SHA512 63629102fe4daf0b776f622829edd1fa7ad52c7817679c65da46630ea3bc0d468f67dbbc86f71bad48660bf22443442cc8209ba99b5b1bf0d0d3692bd9e3ae5d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029c

MD5 b59afc03756009097917e956c67fba04
SHA1 1a133871efbcd43376857f7fd60842c0d47efbef
SHA256 f5c5b509c43ae78321bfe27048d2cd249dddc2668d4959b02a8740e7d78490fd
SHA512 f55b2cdd77633656a8017d7bd1d4f5acd629d229176adaa5c0bd47557770e818914ac00b0329a8e3b98680e14400c4e41ba29c8dcbe57105ec1c2880de39126b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00029b

MD5 9afbc9f86269f17b02838ff3bdde1e97
SHA1 9aef9ebd027d8c4029ea8f015ce8495b3be05056
SHA256 68f8ea28c98fb20ab2dcd7447b88eba72784d3f8d3efb394f7e8f101ea1a3ca3
SHA512 1fb782e7f015f3914816356e87c44305043e548937e6e2879565e6d13867ebb7ebafd53f8d83c90add630dd9a273ce0e17bbc576de9283c6e214ae83c9453036

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a0

MD5 ea105d8717bd35aa68465cf1468892fb
SHA1 7bcfdef4839de7c60d502d5edaf8315083760653
SHA256 6997dc4293e4727940c81b530a3e1f7bab6e0e3aec1b3c379aea1b891ad3d40a
SHA512 13822c72315df83d30a4faea9e9d5339fc523abe418028955f88ce14a3d812a1eadaa971f09222185d9be5696e2c8047d3bc527fde2cde62ec18877024dc6769

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a1

MD5 30fd463b7d7720d90dc042af6a9b8f30
SHA1 d61f9c96532993367c89ca7be242022684a1f188
SHA256 a53972b5c0c7895e987de6290c859dfdce8eca4d1eb5bccb460d90e53be94d29
SHA512 a1732c44a9054ea415d62fc40a4d5225265027b6f14641b77c1d4455222856067b7ae3958198032f6fbc9f47a9800aa08ced328c53a031809ca772c0e0cd14b8

C:\Users\Admin\AppData\Local\Roblox\5868157057\InstalledPlugins\0\settings.json

MD5 b77103ee04230e306e463b4a160e6680
SHA1 8426bc8384b0750e9cbd76b5103a4f6f16153e2b
SHA256 211f79db5911f4ce68fbfdc87732f21f73a46d0a60fc29019dc4b380fe40c973
SHA512 dbbdd660a02f73e07c09ce5d014d198b3bb35d4e7af1667eedbe094dd848a5090db3dae1ee4a68731942612b6c74b36eace044483cc8860b0015194984195f58

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a2

MD5 e07732f0bbb225e7390b2dd184aa13d8
SHA1 256f24e719e1c5d8b1c1834c0e266e5d890db728
SHA256 20690158baafdca5bcdb006e7c5f2a5fe79b990ff7c7ad1b3526984a6d4b0aba
SHA512 de0b9f2ae3b54b79047e8aba2ec35116392e0d69f323899cce797327aeaed694b86a5ef7d712515fb03072904cd37345867f5afb878694ed598cfd2d73ea5569

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a3

MD5 58ea4b863656916f1e63a6109ea079f5
SHA1 a3aaa4de8a9dc51733f3ab2e9cc4836f20ed17a0
SHA256 6b924b3778ebe4be4994da49e3df07c4da68fe8ff935b4c61bc57769a55aa4ff
SHA512 14947e27fab91a2e4f911416dd7f2614c0ef8f4c1b93413710cbdfa76b8fc228698ad9eab0617d514934f89662cf4ad574aa5e8b4df155a4d1d819c3cf10288b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a4

MD5 b52e619106cd6ce8953c05e20c327cf6
SHA1 ee33e8b4bb85fa4eed8d965723ef9ddc65dfb21f
SHA256 0819a3ce39b6b535c2be2d8b7cf886eeb6a6fc3c75c3c6efe84809c1a20701e8
SHA512 d2adb4c440bf9ca015947af7a080ee02e5b3d815f042b33d40486d96138ee33bdc7ce40dcd0472fdac83a7759dc77afd32523fffb7157274bc2d09e08ab45c0c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a5

MD5 14c350206661873b0581c7945ce298d7
SHA1 c5a7fbb652ce77460f19847f45c82f67469ed06b
SHA256 dac6984274aef39bdb9dfda2d435a3d97298daaf7bc48b6cb2c2f61ca804fd28
SHA512 8a046c1ca2e4f303c1621f3ab45ae100389e549e98716da0487373511073510544608807a854274f2882e8a6c597b480ea0d1336bf3e376561a6c176019a0884

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a6

MD5 c05d19ac62fbee391594b5b2b9425efc
SHA1 11e96eb100755f2878c971a0e070ab894699c428
SHA256 ac2b8f0edaadf6bf95f3cd768afdf5ac097c6ce4121c3a368234c67169d15ff5
SHA512 57f399102eaf39ce869216abf785989136dc4dcb6b1cf02e395fe3cc2768f0dc44fcd86f6b9b2b0998751cd6bc7a0a445958a58a072c1ed503ee87111067764e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a7

MD5 2d9e0ef4abe8c65f9dc1784387d8fce0
SHA1 cb0447f4907d842fc6b6749c0b8cfdb0ebe07068
SHA256 0089aa6fb0f87081e7d3348e4d9e06240e5d04eb72dbbd2b8e0f4303ff9b4e80
SHA512 42713774a7c28608b5d838f6793a6264fce0023ea670ad1fc8af88149be463c903355d6081064bf95b447ec86f0753c094e9c17b4c1195095bfecdc9d98e0fcb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a8

MD5 36a9d37879d74c138359c101f40b897f
SHA1 892ee818b3a8f42dbaba27f4342bc2b6723d98d6
SHA256 d0802aff2aa0d46f14aa75bae7d500f89845bf673f4cfb2449d524ecb20aa0b4
SHA512 bc8ea5d209e45beda9252b6733f0a35ccc6360e6cbf57dd781a5b371d2e96858f3799ca0beeb8b762ab94a0bbd2bbb881a1b9868c60e19a768955662f6e2a74b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002a9

MD5 4a939bc8e20db240af80ee3ee3420fe1
SHA1 73ac32269b0bb5630c76b0a18d18d589d4762627
SHA256 d00fc57145faebda73dc1ad40f448540a3cfb7870aa14a02360d5e05ca708477
SHA512 0b3c7fafc657f154e1d0d2d25f753fd35a97b303a8a9c710e1349c494689b3f5a276a08fc3f34aea5166500cba5a09383ed23237cd0b271cd8211d26fa1b3387

C:\Users\Admin\AppData\Local\Roblox\LocalStorage\appStorage.json

MD5 2e15adebc62c6931ef09f08a1de54506
SHA1 0071c4d7ea8717be2eb112a9c4b09bc9f9bd0f3a
SHA256 72c06e1bca71585268b748b7e9c6ad6611694985eede073e659a7cbebe601593
SHA512 944e868246ce238834e67ba2be18f4be74281dad6fc881a8dedfd8723b6504b7d6005e57d3155dee5097a84f0ee355c7cbe6f5b5f3232f8b3dde89e255937daf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002aa

MD5 a2316764fd42a034838c2bc77fa31039
SHA1 5a294c4388e477acfc828df439d91e80c10d108f
SHA256 278d44aeb6c09584a09b01cc6aeeceeacb1dee3192de0dca22af4e27311dc028
SHA512 ff4ba8417d75303874cfae27808fff2abe0ef438edc0d119caed8746cf077c3fc71cd1b2029eefba9715c9e2f90fe7bbfa0266e2aa331ec1ca9df42585e08901

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002ab

MD5 ecefc2ef9a2d7b6d1c2fcbf12e8a88da
SHA1 fcccc5e27f75bb5f748bd2dbbd30dda40711a531
SHA256 279b8d76e7aa3c252f18c7d28f8ec88d1894c85b4d269603aa95ceda3898d77f
SHA512 a756a9a23534fe5c8bbaef36eb73190b6cd0b0393b14bc822bb1b98c9587e4033e65f7b9253cf0e1007b401acf0185922413237a720231c5856721e7c197bf4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002ac

MD5 e5d9605763239fd322895934d8695ef8
SHA1 87704c54d39c8ee36b8bc348921b16c5af02cf6c
SHA256 9366be17b86d393d248de515ea77d90c8a250f8bd83d025d25007e03add8e2d0
SHA512 3e2cd1c1034d0ad5bd00a9f2fde64f21d9298919ddfbcbfdc1fe84006d4b0e06b2ae37a9591b8a0723b668cc680bc06dde41f4653db707e6ad5e7560d4bb0719

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002ad

MD5 188d564800934331e3ed62bb87bec412
SHA1 0a9f4a94bd974bb7ca4f6ef2d04bf40e272589d8
SHA256 8f671ebd5eeb83e029bb39ae040eda31080706f3d7b0a8c042e8dd9f51427b2c
SHA512 debe93cbc40da0aa196e399b05c0b802fa5ed29a2155de231f99fcf18589e84fca791225521a8e85281a5edae34f9d998f2d903feb67e5a13c59add2af1a115a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002ae

MD5 ed32a985445b48c23f44e8198257bb04
SHA1 3ce6bbd647be213be31454f64c4d52487d03f5a6
SHA256 5c4e803d2ea0c1ed8e955edb6672b1c12e4cdddb44736e347b1e7efb327a2154
SHA512 3b69a061d68f9644fb828d4ddd95b3f8180e02537ef231179c894ddb728fd3c219e0863391d73b2a6d57a5c597060007f079e0f951c5d1a48a6684856e642126

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002af

MD5 3db311058b049a86a639aa5b77edf39d
SHA1 987ffa0d56b64447fba395243173f77344491c7f
SHA256 75b280ae342b98a8f82ce77a027dda995ef1be89e3d2ab46040b6805b919d1c6
SHA512 185ff3bde842860339a48a581477d6c04dd5d2888bfef4897ddebf589f5ca4c9d9c819c49f47139988866220a395d54f9f88071627a7d840594963028ae960ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b0

MD5 6867db3ea4b1ad0d0e569e71b5fd1d59
SHA1 77d02d5d8594b2876f917035128f9a4bdb429d30
SHA256 aa39d1afd7e0417a8e099c78acea2ea9f6594faa40c6aa29920090a817c9a481
SHA512 ebc892ab15bbd7efb54b8063c7f9dfdc8aeda0080ea8af2fd8cc5159789d47135514d2368c3580fa736d4156b0e85bae2e62330837e7df96c662f0c77fe9a90d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b1

MD5 03c98db1699014bc29858059b7da9c6f
SHA1 717241d3d98a2951ed0bc72f3a2fa6ea31eea946
SHA256 a896b5048f1dae5544659543c09ff1f85af13380eb49a2bf20549464d47d33e6
SHA512 9f5b3ba392aabc9d08a30d0c6b45fe20e890792b6046280f2b0d7ce831706c2863107833a32968151005b27d7aac04c2f2959da7c38b2330fb2faf29c66b1547

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b2

MD5 00cede3ad9038f43dbcca85905477aa5
SHA1 ae9c6edb82fa9260c74b8de01f5a1181291a08f0
SHA256 ce70379ae2e108fb02fba3f2ebeda1b6af62896efe27aec1f71cff706f7863e1
SHA512 085894d5bbfe94a25ad2b4b49cd6f00389abfa451f45c69670919a2e6b57e3e7a29ac1f1e49a3461a6d287809ed89670bf01e179dc6263c596a67a365fde9610

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b3

MD5 292d3411760eaa4b3e7c5688c2a02894
SHA1 d68791b5e72a8292f715e96b7814948cbabd9285
SHA256 b3f287c4251db01e9f6d6c00051bc36b87762017c91b976e562b34d923303621
SHA512 b2d1f7d9069264ee6e2fd3f5f0943ff7155be640ab05c9683665b75bb019906cb83f4899dc09b3e31a136b88a4046e44dff7c23c00b2af7ff2167782784b3904

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b4

MD5 c2f9fedfb00ed0fd71d017f04e6de568
SHA1 22acf1cae6c4576dfc88d1e2f716b49577fb0b3b
SHA256 d77368d7b59920828a41f3b0f1505dcdc59506fde72c9484316d1a065aef4f43
SHA512 b6c73dcd9ff82b4c010bca96c457f56bdf0b98ebc83cd07e110229784a6ac7adac1cdbba8c252af8fcccf24f131de866db99dd98654a3cdc8b1283cde03257af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b5

MD5 46a7744488f5d3bc9197d7233afa13ae
SHA1 f5526ca6537eca605d10ca854379a54bd2347440
SHA256 7439fbff5fa4376548c2a2ef1adab15d949a124b679154d33b14dcb6488272ca
SHA512 47d645b84f815c40f2122029a9d1dcd92913183fe1ae59f338c651ca3844a7161d35c7d254d59062f32254b4118ebada414f37beeee81b2cf35924f257e5819b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b6

MD5 9d6faad9f1bdc92f07d4c3afa98e4551
SHA1 dcd0eea22bb7a8ae71499f9739960e55fe42bbcb
SHA256 55f4ed7294cf20432d1646be4aff3c3a7aaad86a2f8eb000236616d15c942f1d
SHA512 fb614c0d7854efc3fd8ead2e6b76bcb4c87b9442bbeb3de4a1a70c0ff82a2abf161602f97510d2aeafb8e6758cdefbcfe1be8c97ab049c92d16974b4fd56b306

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b7

MD5 d52dd25bcbf1cea60e3a9ff6e7017448
SHA1 4551954cc6da51c20f9b106704c9b52865536619
SHA256 01c0e5b90d9f0fbeb19f6f501817d05ac832486f3fabec22f5ae91a338c08cad
SHA512 39581ddb468cf60f5c140568adc03e1d1910e9ea11798b50fe3abae29ed788c57816fb5121052a92c863008efb6012a6c4fd81d29c862fa910595b59f31abc7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002ba

MD5 7f6acb2f69c0e1247c60a3c2315c4df3
SHA1 415b20a25848383c0374fab91d49a66690e6551b
SHA256 b2e40d0b909df5edf408a88675412e55e16fbed2498142fa4717cfdff01c3bb7
SHA512 06f74dfdc92dae00ea071d0e1bf68e2dea7a1befcf7afd57b513ab61701eae128cb5608471175abf7337512796b58c19a743ef1fdf97dd460bcfa6ee0678837b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b9

MD5 5ca5d4bd98149ae6194cfb0cec5cb934
SHA1 47a4380229dc5077b5d42c63a78c7179bd452c33
SHA256 426981b63a6eac5b32d4223b2d3677d1c71cdf9d071cc8fef7b8f6525d0d4643
SHA512 fa5e7b4d42fcc6be845b558de26f392329d3dafe84560c48ca745e66c3cf254c551416e0eb56deb142667d0ccd34a808e8d80725149be79076e318004198d23b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002b8

MD5 c13816dbe943f771656ee921459b214d
SHA1 cf6df0b179b8bbb3dcb2d7d0a2eeb98b4299cf55
SHA256 02f2e807d842047e0970a1159dacdf82a9169c9c2cb2b1e5829d223ad6a9e455
SHA512 fdac0631de641ce300957737f2d84a4f280ae5a01812d059015334634f231b71eb4b597b70de66eae3d3bc385c763997e957b4c6e8edf820bd9fd656b26779e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002bb

MD5 59f95d575111348c7dfd7024a6eb1e6f
SHA1 f87f2cc9d4160520f74645b571da27f3ed7dfb21
SHA256 b70fd2bed156b36cbdfad606b7432721e7a623d5e6a2462d797f140285f250af
SHA512 549749636f5f06cd51503a458240858e26aef4feb8c08a5a13cb5e41dae78f0c52ca9e092887d8bb1ccc562a0c173f6b884ba6dc1ec3f524b9878d50aa89bcd2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002bc

MD5 3be44d3b4c0a28f8ec4619dbed2ae042
SHA1 b9f3b84b760e36d085b5574be5420b4117df7013
SHA256 03124763e5aae6313037df5836123d2fcbf248383ce096e01ba0f9d2fab5c597
SHA512 d9ceca65f10d77f3810ea20551b2b3b1e825ac56a3e72c002f0caaebe82fb6ca06186f469398915693879bf04e18c0e934608f7cda669cbac2fd2c5d4e7f0e20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0002bd

MD5 10b717c98620d705be23c224c7ea8db0
SHA1 6c9421f60d31020d799e3988bcdce1e9f1c121ab
SHA256 d0a83a547452404f147676c7b7c952633782a0a37825c9e5ce2dd9a9be3f2dd1
SHA512 5695df89d70c613a6eef204c81b10c2482d04e50613f512778a1e97e24cf97bde4be35d030016a9172628355bb339c0f34e98155ac789f11211208c54caea486

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 03726032ab63c0fcb7b08059d92988da
SHA1 a2bc8ce8ad75df92fc683eb9022b6c0d860329e8
SHA256 3db30e0a182e668adecb5ebb0c261ff6b0548cc6908d4d0aed4f08b2ee7d99ac
SHA512 409a9b042a79bdd53e7335d0c518215aa026f7d1ee0f14a05502c270a221f530dd3707eda0899228001250a18388f0bb04410fd2a22410d6c1979c8e984d62dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 98d733a503f280e3142cbb688962e1ce
SHA1 e9287b6e7db9918a55d1f3a8d8d7660bf88d8c62
SHA256 8a2d4aa1d8ef09965b29c4deb5cff046937d692df8c1aa0f559d33333f09b9bf
SHA512 8494726e3fa4cd77e3e2f675c0cf56c4e8a2b12ac7dea18d393e6f8e876f74f6d5bd90da0578d3efc8f3feb971c37803a78506892199d426610686fbc7c0f9e6

C:\Users\Admin\AppData\Local\Temp\Roblox\http\1c35ce256eae624028c58d2b4f5f96eb

MD5 bac54b310f44b8bb662e576b2df799db
SHA1 7fb610124738f9394da9626f3016b627fe1964c7
SHA256 d776569fab3f732479213cd2ca390b46b6f8b193add604d6ccd1b8d3b30fb8f1
SHA512 571c95f756054c04cca34401de49ea553716f477111d6fcb1d77808b23a9b94f96da96bf44512900becaac4f0c3e17ab020725a978117d246965706b0de98338

C:\Users\Admin\AppData\Local\Temp\Roblox\http\3ffe76dae518af4b3da2d3932edfb409

MD5 a50260d91fd87e2b6aae9c19ad1263e7
SHA1 7eda73a893746a67ef54659de7652b4c26f5630a
SHA256 267f4d666e07cd66ed06cb21feecd9eadd1940c26523a2b9d94efeed3bd74810
SHA512 29d2e13fd16a48be823fd872f762e027882ffb935697fe856ebad6cb7462bbf8aff5bda398a21483ddde6b29c7b2461821bc4dbd07a8f951ba0489f61e8f89df

C:\Users\Admin\AppData\Local\Temp\Roblox\http\58f9c9b118052f3b947df201d5008da4

MD5 ca9105bc04e2747164aa5bdbe21b682d
SHA1 b149d1d335c843bacedf3e03e74de6ae2cdce323
SHA256 afd5142ef4739a81e6c5a9271c59f1785f180ee7f61f3321a7b6f24f17c1a5a4
SHA512 18d6ab5353f5c43b34e8a79ad7fd4b3fc6394885c6bbf8595bd4cf7f7f766e33afa552822a5a55ad74a815e9078a38f0526dfc4ff605ae73527c7b653aff7109

C:\Users\Admin\AppData\Local\Temp\Roblox\http\97042d32acd53834e79fcc333e1c338a

MD5 f5642283c8f949dfe6a547bfe3a20e09
SHA1 633631e603e17fc35a1c5ceb115fdb83c14e9f11
SHA256 a5155e9cf2755b7c6014bc0a036a441afe618d58d85b5f315f44e685746f24c6
SHA512 c2520043b21a7c71ad8f5142c3419c713c140d43540b343155979e324024cfa835ce0e47b4ce3d2b4588cffcfdc563ad7d383139658de13ee22b446b44c08935

C:\Users\Admin\AppData\Local\Temp\Roblox\http\4e50848905610818d2afaeb695c5d573

MD5 fc18b98db2d5c687fee380ceefba78fe
SHA1 b44f71ddd4857ee3cbe8210a0138bdab26db8300
SHA256 ab5193be5a892f5d436d5435e5aac3ef3e3bd63089b7d3fd5da7acf35921f909
SHA512 35d0a8398f192826bd203c4961e7653527a4db1d9363fef371b3bf950ccf778fa46d75273759550a064b19413ef86b3edd18f1ba0f6d9fe03e18c12b4b33a6cb