Analysis Overview
SHA256
5948ddb5c715a86b71249f8b2bad1dec3a5c0407258824e0937b9975cf75510f
Threat Level: Likely malicious
The file egg.jpeg was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Modifies Installed Components in the registry
Sets file execution options in registry
Loads dropped DLL
Executes dropped EXE
Registers COM server for autorun
Installs/modifies Browser Helper Object
Checks installed software on the system
Checks whether UAC is enabled
Adds Run key to start application
Suspicious use of NtSetInformationThreadHideFromDebugger
Checks system information in the registry
Suspicious use of NtCreateThreadExHideFromDebugger
Drops file in System32 directory
Drops file in Program Files directory
Drops file in Windows directory
Enumerates physical storage devices
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
NTFS ADS
System policy modification
Suspicious use of SendNotifyMessage
Suspicious use of UnmapMainImage
Suspicious use of FindShellTrayWindow
Uses Task Scheduler COM API
Suspicious use of AdjustPrivilegeToken
Suspicious behavior: EnumeratesProcesses
Modifies Internet Explorer settings
Modifies data under HKEY_USERS
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Modifies registry class
Suspicious use of SetWindowsHookEx
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-06-05 08:10
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-05 08:10
Reported
2024-06-05 08:41
Platform
win11-20240426-en
Max time kernel
1799s
Max time network
1801s
Command Line
Signatures
Downloads MZ/PE file
Modifies Installed Components in the registry
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
Sets file execution options in registry
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe | N/A |
Executes dropped EXE
Loads dropped DLL
Registers COM server for autorun
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\EBWebView\\x64\\EmbeddedBrowserWebView.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\PdfPreview\\PdfPreviewHandler.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO\\ie_to_edge_bho_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ServerExecutable = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_helper.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.187.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_click_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\InprocServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{2B1EC306-3EDE-4012-9BB0-FB836132FF52}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\InProcServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B54934CD-71A6-4698-BDC2-AFEA5B86504C}\InprocServer32\ThreadingModel = "Apartment" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\INPROCSERVER32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32\ThreadingModel = "Both" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\notification_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\!BCILauncher = "\"C:\\Windows\\Temp\\MUBSTemp\\BCILauncher.EXE\" bgaupmi=AADE3DD9356C4B4489768A1CD8C3CC9D" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD076931-1CCD-45E6-BD47-92FB1D738371}\BGAUpdate.exe | N/A |
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
Installs/modifies Browser Helper Object
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
Suspicious use of NtCreateThreadExHideFromDebugger
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\fonts\families\RobotoCondensed.json | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\AnimationEditor\RoundedBorder.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\DeveloperFramework\PageNavigation\button_control_end.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\DeveloperFramework\PageNavigation\button_control_start.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\DeveloperInspector\Bin.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\ResetIcon.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Settings\Slider\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Locales\cs.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\grid16.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\PlayStationController\ButtonCross.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\LuaApp\graphic\Auth\reversevignette.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.79\Locales\zh-CN.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\LuaApp\graphic\CompactView_purplelayer.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\msedge_elf.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.79\Trust Protection Lists\Sigma\Cryptomining | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Backpack\ScrollDownArrow.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\DesignSystem\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\PlayerList\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\VoiceChat\Misc\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\msedgeupdateres_nl.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F6F4C3A2-E333-47A9-BED4-1F712061CE4C}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\homeButton.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\VoiceChat\New\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\AnimationEditor\fbximportlogo.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\Debugger\Breakpoints\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\loading\robloxTiltRed.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\MaterialFramework\PlasticWithBorder.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\StudioSharedUI\close.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\ImageSet\AE\img_set_2x_1.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\LuaApp\category\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Trust Protection Lists\Sigma\Staging | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedge_100_percent.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\StudioToolbox\alert-icon-small.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\icon_admin-16.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\PlayStationController\ButtonCircle.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\Controls\DesignSystem\ButtonX.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\MicrosoftEdge_X64_125.0.2535.79.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\particles\explosion01_smoke_alpha.dds | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\TextureViewer\arrowleft_black_16.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Settings\DropDown\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\InspectMenu\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\VR\buttonActive.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdate.dll | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Trust Protection Lists\Sigma\Content | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\VoiceChat\MicLight\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\LuaChat\icons\navigation_pushBack.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Locales\ur.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\ExtraContent\textures\ui\LuaChat\graphic\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\DeveloperFramework\checkbox_unchecked_hover_dark.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\StudioSharedUI\sort.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Controls\XboxController\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\InGameMenu\GenericController.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\InspectMenu\caret_tail_left.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\AvatarEditorImages\Stretch\gr-tail.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\Settings\Help\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\ui\VoiceChat\New\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\mip_core.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\avatar\compositing\CompositLeftLegBase.mesh | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\content\textures\TextureViewer\select.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\PlatformContent\pc\textures\water\normal_16.dds | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\VisualElements\LogoDev.png | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe | N/A |
Drops file in Windows directory
Enumerates physical storage devices
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\125.0.2535.79\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge\WarnOnOpen = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge\InstallerPinned = "0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133620487286949639" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32\ = "{2B1EC306-3EDE-4012-9BB0-FB836132FF52}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ = "IApp" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ = "ICoCreateAsync" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\NumMethods\ = "12" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\ = "IJobObserver" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\APPID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{A6B716CB-028B-404D-B72C-50E153DD68DA}\ServiceParameters = "/comsvc" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MSEdgeMHT\ = "Microsoft Edge MHT Document" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\VersionIndependentProgID\ = "ie_to_edge_bho.IEToEdgeBHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\ProxyStubClsid32\ = "{2B1EC306-3EDE-4012-9BB0-FB836132FF52}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ = "IProcessLauncher" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ = "IBrowserHttpRequest2" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\LocalServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D9AA3288-4EA7-4E67-AE60-D18EADCB923D}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachine\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{60355531-5BFD-45AB-942C-7912628752C7} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2EC826CB-5478-4533-9015-7580B3B5E03A}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ProgID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\NumMethods\ = "23" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine\CurVer\ = "MicrosoftEdgeUpdate.PolicyStatusMachine.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\.webp\OpenWithProgids | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\NumMethods\ = "11" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ProxyStubClsid32\ = "{2B1EC306-3EDE-4012-9BB0-FB836132FF52}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ = "IProcessLauncher" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell\SniffedFolderType = "Downloads" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2551177587-3778486488-1329702901-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback\CurVer\ = "MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\MSEdgeHTM\shell\runas\command | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ = "IGoogleUpdate" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ = "IPackage" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\ = "PSFactoryBuffer" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\ = "IJobObserver" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ProgID\ = "ie_to_edge_bho.IEToEdgeBHO.1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Network Shortcuts\skivbidi.jpg:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe | N/A |
Suspicious use of UnmapMainImage
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe | N/A |
Suspicious use of WriteProcessMemory
System policy modification
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe | N/A |
Uses Task Scheduler COM API
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\egg.jpg
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9c28fab58,0x7ff9c28fab68,0x7ff9c28fab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1632 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2092 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2192 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3140 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4332 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4492 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4632 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4640 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4744 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4760 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4180 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=2816 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3536 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5088 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3372 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3084 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=3448 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=2692 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=4892 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5092 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3400 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=3216 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4348 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4408 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4304 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=3384 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5020 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1608 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3364 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3280 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4792 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3484 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3388 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe
"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"
C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
MicrosoftEdgeWebview2Setup.exe /silent /install
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7ODA4RkNCMTUtMDgzOS00NDc3LUFFNEUtQUZEQzdEM0REODk2fSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntBNzNBQzE2Qi0yNTdCLTQ1OEUtQkUwOC1DRkE0MEU5RTc1NDF9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE0My41NyIgbmV4dHZlcnNpb249IjEuMy4xNzEuMzkiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc2NDY4Njg3MDQiIGluc3RhbGxfdGltZV9tcz0iNjk2Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{808FCB15-0839-4477-AE4E-AFDC7D3DD896}" /silent
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7ODA4RkNCMTUtMDgzOS00NDc3LUFFNEUtQUZEQzdEM0REODk2fSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntFOEM3RTlGQy1CMEY2LTQ5ODktQTlFMS0zNjZBNjA5NTg4RDN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSIiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTEwLjAuNTQ4MS4xMDQiIG5leHR2ZXJzaW9uPSIxMTAuMC41NDgxLjEwNCIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc2NTA0Mzg1NTciLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\MicrosoftEdge_X64_125.0.2535.85.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\MicrosoftEdge_X64_125.0.2535.85.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.142 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{CF39520A-852A-4D02-8A7C-A30F47D4BB4B}\EDGEMITMP_1D169.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.85 --initial-client-data=0x244,0x248,0x24c,0x220,0x250,0x7ff6b8df4b18,0x7ff6b8df4b24,0x7ff6b8df4b30
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7ODA4RkNCMTUtMDgzOS00NDc3LUFFNEUtQUZEQzdEM0REODk2fSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins3OEQ0QjE5Ni0wQjM1LTREMUEtOEYxMi02QUQyOUM3MkQxMjd9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtWUFFvUDFGK2ZxMTV3UnpoMWtQTDRQTXBXaDhPUk1CNWl6dnJPQy9jaGpRPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGMzAxNzIyNi1GRTJBLTQyOTUtOEJERi0wMEMzQTlBN0U0QzV9IiB2ZXJzaW9uPSIiIG5leHR2ZXJzaW9uPSIxMjUuMC4yNTM1Ljg1IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSI-PHVwZGF0ZWNoZWNrLz48ZXZlbnQgZXZlbnR0eXBlPSI5IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI3NjY2NjM4ODY0IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMTk2NzU3IiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI4MzM4NjU4Njc1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiB1cGRhdGVfY2hlY2tfdGltZV9tcz0iMTA0MSIgZG93bmxvYWRfdGltZV9tcz0iMjE3OTQiIGRvd25sb2FkZWQ9IjE3MzY3NTU3NiIgdG90YWw9IjE3MzY3NTU3NiIgcGFja2FnZV9jYWNoZV9yZXN1bHQ9IjAiIGluc3RhbGxfdGltZV9tcz0iNDM5ODgiLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe" -app -isInstallerLaunch
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=5736 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=5768 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6132 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5496 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:jwHSkEW-ZQnF8x5F0OubRqM-jTfRU8Y5WPFvHg41wqRllFh81ri7NEXP_PkTI5CLcB30j6dDYdycArCVejG_VPFEw7jlf5gqiRko7pRumDrwBAhFzbflcMhJG12p1DL-2dOWnYRx4ScZIqKyiEraJYwKNow571-Qd750mAbfQQZugldHWpFDIKeWtL4r9eAELh4RjF9hiq0AY-T1pKA0j_xpbfzOgnfuNilGANYEjkg+launchtime:1717575536728+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1717575185406010%26placeId%3D15532962292%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3Db348da12-f2b4-412e-acc2-f12b5a96fd92%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1717575185406010+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=5632 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=5908 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6408 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6576 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=6644 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6000 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4828 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s fdPHost
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6520 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=6296 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=5892 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=6704 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=6900 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=7064 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7200 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6864 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004EC 0x00000000000004F0
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=7624 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7412 --field-trial-handle=1836,i,8166238867643796293,3586934999347808192,131072 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F6F4C3A2-E333-47A9-BED4-1F712061CE4C}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F6F4C3A2-E333-47A9-BED4-1F712061CE4C}\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe" /update /sessionid "{09A3BA5A-EF11-40FD-BFFD-369B9BFDF319}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MDlBM0JBNUEtRUYxMS00MEZELUJGRkQtMzY5QjlCRkRGMzE5fSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins1QTA1MzE3NC0wOUUzLTQ0MTEtODdEOS1DQTdEOUYxNzE3NTB9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtyNDUydDErazJUZ3EvSFh6anZGTkJSaG9wQldSOXNialh4cWVVREg5dVgwPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTcxLjM5IiBuZXh0dmVyc2lvbj0iMS4zLjE4Ny4zOSIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjAiPjx1cGRhdGVjaGVjay8-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMTIzMDQ4OTY2IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMTIzMDc4ODg2IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PC9hcHA-PGFwcCBhcHBpZD0iezU2RUIxOEY4LUIwMDgtNENCRC1CNkQyLThDOTdGRTdFOTA2Mn0iIHZlcnNpb249IjkwLjAuODE4LjY2IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzU4NjIwMDYzMjY5MTgwMCI-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjEiIGE9Ii0xIiByPSItMSIgYWQ9Ii0xIiByZD0iLTEiLz48L2FwcD48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iMTI1LjAuMjUzNS44NSIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIHVwZGF0ZV9jb3VudD0iMSI-PHVwZGF0ZWNoZWNrLz48cGluZyByPSItMSIgcmQ9Ii0xIiBwaW5nX2ZyZXNobmVzcz0ie0U2RUM4QjQxLTg2RDAtNEI5QS05NTM4LUFEMkE2RjQwRjI3MX0iLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EUEA30.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{09A3BA5A-EF11-40FD-BFFD-369B9BFDF319}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.187.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjNDNEZFMDAtRUZENS00MDNCLTk1NjktMzk4QTIwRjFCQTRBfSIgdmVyc2lvbj0iMS4zLjE3MS4zOSIgbmV4dHZlcnNpb249IjEuMy4xODcuMzkiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIwIiBpbnN0YWxsZGF0ZXRpbWU9IjE3MTc1NzUzOTEiPjxldmVudCBldmVudHR5cGU9IjMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExNDg5MDQ2NDI1Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-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
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD076931-1CCD-45E6-BD47-92FB1D738371}\BGAUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{FD076931-1CCD-45E6-BD47-92FB1D738371}\BGAUpdate.exe" --edgeupdate-client --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RjExMTQ4NjAtRjJFMS00QkEwLUE4MzktQzAxNUQzM0VFOTE3fSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins1NzIyQzQ1NS05MDg0LTRFQzgtOEJDNy0zNTYyNERCRjI1MTB9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-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-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_UDE9MTcxODE4MDg3OCZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1DOTVQaVgyVHFHRVVqVWtobnYlMmYyelQ0V0dGVnhMaVRBNjdwTlJUa2M3MTlpUE9TaVE2UXowUXZHSGZHSHhvNGk3M3lTdXkxa1RpcU5RUkxhNDNYUDdnJTNkJTNkIiBzZXJ2ZXJfaXBfaGludD0iIiBjZG5fY2lkPSItMSIgY2RuX2NjYz0iIiBjZG5fbXNlZGdlX3JlZj0iIiBjZG5fYXp1cmVfcmVmX29yaWdpbl9zaGllbGQ9IiIgY2RuX2NhY2hlPSIiIGNkbl9wM3A9IiIgZG93bmxvYWRlZD0iMCIgdG90YWw9IjAiIGRvd25sb2FkX3RpbWVfbXM9IjE2Ii8-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-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
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\MicrosoftEdge_X64_125.0.2535.79.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\MicrosoftEdge_X64_125.0.2535.79.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\MicrosoftEdge_X64_125.0.2535.79.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.112 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.79 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff763984b18,0x7ff763984b24,0x7ff763984b30
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.112 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{83C559E8-32BA-46EB-8500-D3B207D7E4ED}\EDGEMITMP_33D98.tmp\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.79 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff763984b18,0x7ff763984b24,0x7ff763984b30
C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=125.0.6422.112 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\125.0.2535.79\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=125.0.2535.79 --initial-client-data=0x24c,0x250,0x254,0x228,0x258,0x7ff6c2cf4b18,0x7ff6c2cf4b24,0x7ff6c2cf4b30
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xODcuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RDI5MkNEMzMtQTgwRi00RkU0LTlFNkQtMkREOUZDQUIyRjVBfSIgdXNlcmlkPSJ7RUNCNDUzOTktNEM5Qy00NkMyLTkxNDUtMDI3QTMyOUQwQzIxfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntEREEzRDA4MC02NDYxLTQyRUUtQjA4MC0wMzdCMzRDMjQ1MTZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjIyMDAwLjQ5MyIgc3A9IiIgYXJjaD0ieDY0IiBwcm9kdWN0X3R5cGU9IjQ4IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtENmp4UGVVbUtmaDh5dHk2RjA3WXhNMWVaREgvVFY2RlFUMmZmRGlaeXd3PSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTg3LjM5IiBuZXh0dmVyc2lvbj0iIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9IklzT25JbnRlcnZhbENvbW1hbmRzQWxsb3dlZD0tdGFyZ2V0X2RldjtQcm9kdWN0c1RvUmVnaXN0ZXI9JTdCMUZBQjhDRkUtOTg2MC00MTVDLUE2Q0EtQUE3RDEyMDIxOTQwJTdEIiBpbnN0YWxsYWdlPSIwIiBjb2hvcnQ9InJyZkAwLjk1Ij48dXBkYXRlY2hlY2svPjxwaW5nIHJkPSI2MzY1IiBwaW5nX2ZyZXNobmVzcz0iezBEOEQ3QkM0LTkyQ0MtNEMzNy1BQ0FDLUE1QjdFMDRGMTY5NX0iLz48L2FwcD48YXBwIGFwcGlkPSJ7NTZFQjE4RjgtQjAwOC00Q0JELUI2RDItOEM5N0ZFN0U5MDYyfSIgdmVyc2lvbj0iOTAuMC44MTguNjYiIG5leHR2ZXJzaW9uPSIxMjUuMC4yNTM1Ljc5IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGlzX3Bpbm5lZF9zeXN0ZW09InRydWUiIGxhc3RfbGF1bmNoX2NvdW50PSIxIiBsYXN0X2xhdW5jaF90aW1lPSIxMzM1ODYyMDA2MzI2OTE4MDAiPjx1cGRhdGVjaGVjay8-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE1NTIzMTI2MjE5IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE1NTIzNDM1OTk1IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PHBpbmcgYWN0aXZlPSIwIiByZD0iNjM2NSIgcGluZ19mcmVzaG5lc3M9IntGQTUzRkNDMy03REExLTRBOTktQTE3OS0yRTQ2NDUyRUJEQzl9Ii8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEyNS4wLjI1MzUuODUiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBjb2hvcnQ9InJyZkAwLjAxIiB1cGRhdGVfY291bnQ9IjEiPjx1cGRhdGVjaGVjay8-PHBpbmcgcmQ9IjYzNjUiIHBpbmdfZnJlc2huZXNzPSJ7RDFEQzZEOTQtN0ZBMi00RDQyLThFMjktOEVCNDAwNUZDRTk2fSIvPjwvYXBwPjwvcmVxdWVzdD4
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| GB | 172.217.169.46:443 | www.youtube.com | tcp |
| GB | 142.250.187.206:443 | www.youtube.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.238:443 | ogs.google.com | tcp |
| GB | 172.217.169.3:443 | ssl.gstatic.com | tcp |
| US | 52.111.229.48:443 | tcp | |
| GB | 172.217.169.46:443 | www.youtube.com | udp |
| GB | 172.217.169.46:443 | www.youtube.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | tcp |
| DE | 142.250.180.67:443 | id.google.com | tcp |
| GB | 216.58.212.246:443 | i.ytimg.com | tcp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | udp |
| GB | 216.58.212.246:443 | i.ytimg.com | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | udp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | tcp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.55:443 | js.rbxcdn.com | tcp |
| FR | 3.162.38.66:443 | static.rbxcdn.com | tcp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | udp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | tcp |
| GB | 128.116.119.3:443 | roblox.com | tcp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | 170.33.18.104.in-addr.arpa | udp |
| BE | 2.17.107.249:443 | apis.rbxcdn.com | tcp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | udp |
| US | 18.245.199.98:443 | css.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| US | 18.245.175.61:443 | images.rbxcdn.com | tcp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 35.206.80.10:443 | e2c47.gcp.gvt2.com | tcp |
| US | 192.178.49.163:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 10.80.206.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.49.178.192.in-addr.arpa | udp |
| US | 192.178.49.163:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 203.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| NL | 128.116.21.4:443 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | roblox-api.arkoselabs.com | udp |
| US | 104.18.33.170:443 | roblox-api.arkoselabs.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 2.17.251.24:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| FR | 128.116.122.4:443 | lms.roblox.com | tcp |
| NL | 128.116.21.4:443 | thumbnails.roblox.com | tcp |
| FR | 3.162.38.51:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | chat.roblox.com | udp |
| US | 8.8.8.8:53 | contacts.roblox.com | udp |
| US | 8.8.8.8:53 | notifications.roblox.com | udp |
| US | 8.8.8.8:53 | accountsettings.roblox.com | udp |
| US | 8.8.8.8:53 | economy.roblox.com | udp |
| US | 8.8.8.8:53 | friends.roblox.com | udp |
| US | 8.8.8.8:53 | privatemessages.roblox.com | udp |
| US | 8.8.8.8:53 | trades.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 8.8.8.8:53 | c0.rbxcdn.com | udp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 8.8.8.8:53 | gold.roblox.com | udp |
| US | 8.8.8.8:53 | c0ak.rbxcdn.com | udp |
| US | 8.8.8.8:53 | aws-us-east-1c-lms.rbx.com | udp |
| US | 8.8.8.8:53 | silver.roblox.com | udp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 128.116.116.3:443 | lax2-128-116-116-3.roblox.com | tcp |
| US | 128.116.45.3:443 | mia4-128-116-45-3.roblox.com | tcp |
| GB | 128.116.119.3:443 | silver.roblox.com | tcp |
| FR | 128.116.122.3:443 | gold.roblox.com | tcp |
| BE | 2.17.107.216:443 | c0ak.rbxcdn.com | tcp |
| US | 44.216.241.94:443 | aws-us-east-1c-lms.rbx.com | tcp |
| FR | 18.155.129.122:443 | c0.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 3.122.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.129.155.18.in-addr.arpa | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| GB | 172.217.169.10:443 | content-autofill.googleapis.com | udp |
| FR | 128.116.122.4:443 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | 94.241.216.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.116.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.45.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.120.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.51.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.50.116.128.in-addr.arpa | udp |
| FR | 128.116.122.4:443 | lms.roblox.com | tcp |
| FR | 128.116.122.4:443 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | aws-eu-central-1c-lms.rbx.com | udp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | ams2-128-116-21-3.roblox.com | udp |
| US | 8.8.8.8:53 | aws-us-east-2b-lms.rbx.com | udp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| DE | 52.28.142.149:443 | aws-eu-central-1c-lms.rbx.com | tcp |
| US | 128.116.99.3:443 | atl1-128-116-99-3.roblox.com | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| US | 3.135.181.230:443 | aws-us-east-2b-lms.rbx.com | tcp |
| NL | 128.116.21.3:443 | ams2-128-116-21-3.roblox.com | tcp |
| US | 8.8.8.8:53 | cs.ns1p.net | udp |
| DE | 52.29.33.253:443 | cs.ns1p.net | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| US | 8.8.8.8:53 | 149.142.28.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.21.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.33.29.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.99.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.181.135.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.ns1p.net | udp |
| DE | 52.29.33.253:443 | s.ns1p.net | tcp |
| JP | 128.116.120.3:443 | nrt2-128-116-120-3.roblox.com | tcp |
| FR | 128.116.122.4:443 | lms.roblox.com | udp |
| NL | 128.116.21.4:443 | games.roblox.com | tcp |
| NL | 128.116.21.4:443 | games.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt2-128-116-120-3.roblox.com | tcp |
| US | 8.8.8.8:53 | voice.roblox.com | udp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 8.8.8.8:53 | sea1-128-116-115-3.roblox.com | udp |
| US | 128.116.115.3:443 | sea1-128-116-115-3.roblox.com | tcp |
| US | 8.8.8.8:53 | b.ns1p.net | udp |
| US | 8.8.8.8:53 | 3.115.116.128.in-addr.arpa | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| FR | 3.162.38.106:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 106.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | client-telemetry.roblox.com | udp |
| FR | 128.116.122.3:443 | client-telemetry.roblox.com | tcp |
| N/A | 127.0.0.1:51107 | tcp | |
| N/A | 127.0.0.1:51131 | tcp | |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| NL | 128.116.21.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| BE | 104.68.69.233:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| FR | 3.162.38.106:443 | setup.rbxcdn.com | tcp |
| N/A | 127.0.0.1:51134 | tcp | |
| N/A | 127.0.0.1:51137 | tcp | |
| FR | 3.162.38.106:443 | setup.rbxcdn.com | tcp |
| FR | 3.162.38.106:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 20.114.58.89:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | msedge.f.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 2.17.251.28:80 | msedge.f.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 28.251.17.2.in-addr.arpa | udp |
| GB | 184.28.176.18:443 | tcp | |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| N/A | 127.0.0.1:51632 | tcp | |
| FR | 128.116.122.3:443 | client-telemetry.roblox.com | tcp |
| NL | 20.50.201.204:443 | browser.pipe.aria.microsoft.com | tcp |
| US | 8.8.8.8:53 | 204.201.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | c0.rbxcdn.com | udp |
| FR | 18.155.129.122:443 | c0.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| NL | 128.116.21.4:443 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.stripe.com | udp |
| US | 2.17.251.47:443 | tr.rbxcdn.com | tcp |
| FR | 128.116.122.4:443 | lms.roblox.com | udp |
| US | 18.245.175.51:443 | js.stripe.com | tcp |
| US | 8.8.8.8:53 | followings.roblox.com | udp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | c0aws.rbxcdn.com | udp |
| NL | 128.116.21.3:443 | ams2-128-116-21-3.roblox.com | tcp |
| GB | 128.116.119.3:443 | lhr2-128-116-119-3.roblox.com | tcp |
| US | 8.8.8.8:53 | aws-us-west-1a-lms.rbx.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra4-128-116-44-3.roblox.com | udp |
| GB | 128.116.119.3:443 | lhr2-128-116-119-3.roblox.com | tcp |
| DE | 128.116.44.3:443 | fra4-128-116-44-3.roblox.com | tcp |
| US | 54.183.81.141:443 | aws-us-west-1a-lms.rbx.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 54.183.81.141:443 | aws-us-west-1a-lms.rbx.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| DE | 52.57.179.204:443 | s.ns1p.net | tcp |
| NL | 128.116.21.4:443 | badges.roblox.com | tcp |
| US | 8.8.8.8:53 | m.stripe.network | udp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 3.165.136.128:443 | m.stripe.network | tcp |
| FR | 128.116.122.4:443 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | 3.123.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.95.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.101.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.81.183.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.179.57.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.136.165.3.in-addr.arpa | udp |
| IN | 128.116.104.3:443 | bom1-128-116-104-3.roblox.com | tcp |
| US | 52.25.24.113:443 | m.stripe.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| NL | 142.250.179.131:443 | id.google.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | 131.179.250.142.in-addr.arpa | udp |
| GB | 216.58.212.246:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| GB | 142.250.178.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | udp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | udp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 172.217.169.46:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| GB | 142.250.178.14:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn2.gstatic.com | udp |
| GB | 142.250.180.14:443 | encrypted-tbn2.gstatic.com | tcp |
| GB | 142.250.180.14:443 | encrypted-tbn2.gstatic.com | tcp |
| US | 8.8.8.8:53 | 14.180.250.142.in-addr.arpa | udp |
| GB | 142.250.180.14:443 | encrypted-tbn2.gstatic.com | udp |
| N/A | 239.255.255.250:3702 | udp | |
| N/A | 239.255.255.250:3702 | udp | |
| US | 8.8.8.8:53 | c.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.f.f.ip6.arpa | udp |
| US | 8.8.8.8:53 | slope3d.io | udp |
| US | 172.67.193.247:443 | slope3d.io | tcp |
| US | 172.67.193.247:443 | slope3d.io | tcp |
| US | 172.67.193.247:443 | slope3d.io | udp |
| US | 8.8.8.8:53 | 247.193.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | kdata1.com | udp |
| US | 104.26.10.172:443 | kdata1.com | tcp |
| GB | 142.250.187.202:443 | content-autofill.googleapis.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 172.217.169.46:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.10.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 13.107.253.64:443 | www.clarity.ms | tcp |
| US | 172.67.8.254:443 | universal.wgplayer.com | tcp |
| US | 8.8.8.8:53 | afg.wgplayer.com | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| IE | 68.219.88.97:443 | c.clarity.ms | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 254.8.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.88.219.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| US | 172.67.180.10:443 | scout.wgimager.com | tcp |
| US | 172.67.180.10:443 | scout.wgimager.com | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.67.172.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | udp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | s.uuidksinc.net | udp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | dclk-match.dotomi.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| NL | 31.220.27.135:443 | s.uuidksinc.net | tcp |
| NL | 31.220.27.135:443 | s.uuidksinc.net | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| IE | 34.251.19.157:443 | pm.w55c.net | tcp |
| US | 52.71.174.196:443 | sync.srv.stackadapt.com | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | tcp |
| SE | 213.155.156.183:443 | d5p.de17a.com | tcp |
| RU | 77.88.21.90:443 | an.yandex.ru | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| NL | 63.215.202.169:443 | dclk-match.dotomi.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 23.219.36.241:443 | analytics.pangle-ads.com | tcp |
| NL | 63.215.202.169:443 | dclk-match.dotomi.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| SE | 213.155.156.183:443 | d5p.de17a.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 23.219.36.241:443 | analytics.pangle-ads.com | tcp |
| IE | 34.251.19.157:443 | pm.w55c.net | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| NL | 31.220.27.135:443 | s.uuidksinc.net | tcp |
| US | 52.71.174.196:443 | sync.srv.stackadapt.com | tcp |
| RU | 77.88.21.90:443 | an.yandex.ru | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.19.251.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.21.88.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.36.219.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.174.71.52.in-addr.arpa | udp |
| GB | 142.250.200.2:443 | www.googletagservices.com | tcp |
| RU | 5.255.255.77:443 | yandex.ru | tcp |
| ZA | 192.178.54.67:443 | csi.gstatic.com | tcp |
| GB | 142.250.200.2:443 | www.googletagservices.com | udp |
| ZA | 192.178.54.67:443 | csi.gstatic.com | tcp |
| ZA | 192.178.54.67:443 | csi.gstatic.com | tcp |
| ZA | 192.178.54.67:443 | csi.gstatic.com | udp |
| US | 172.67.31.38:443 | video.wgplayground.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 172.67.8.254:443 | videos.wgplayer.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 34.111.113.40:443 | config.uca.cloud.unity3d.com | tcp |
| NL | 146.190.225.138:443 | playtomic.id.net | tcp |
| NL | 188.166.66.250:443 | www.id.net | tcp |
| US | 34.111.113.40:443 | config.uca.cloud.unity3d.com | udp |
| NL | 188.166.66.250:443 | www.id.net | tcp |
| US | 34.107.172.168:443 | cdp.cloud.unity3d.com | tcp |
| US | 8.8.8.8:53 | t.id.net | udp |
| NL | 159.223.15.222:443 | www.id.net | tcp |
| NL | 159.223.8.49:443 | t.id.net | tcp |
| NL | 159.223.8.49:443 | t.id.net | tcp |
| US | 34.107.172.168:443 | cdp.cloud.unity3d.com | udp |
| US | 8.8.8.8:53 | 168.172.107.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.15.223.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.8.223.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.66.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| CL | 34.0.63.29:443 | e2c70.gcp.gvt2.com | tcp |
| CL | 34.0.63.29:443 | e2c70.gcp.gvt2.com | tcp |
| US | 192.178.49.163:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c3.gcp.gvt2.com | udp |
| JP | 34.84.111.50:443 | e2c3.gcp.gvt2.com | tcp |
| JP | 34.84.111.50:443 | e2c3.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 50.111.84.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| CA | 172.217.1.3:443 | beacons2.gvt2.com | tcp |
| CL | 34.0.63.29:443 | e2c70.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 3.1.217.172.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 20.7.47.135:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 135.47.7.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 199.232.210.172:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 146.190.225.138:443 | playtomic.id.net | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 216.58.212.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 192.178.49.163:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 172.217.169.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 2.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | cdp.cloud.unity3d.com | udp |
| US | 34.107.172.168:443 | cdp.cloud.unity3d.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 172.217.169.34:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 13.67.191.143:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 143.191.67.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| GB | 87.248.204.0:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 0.204.248.87.in-addr.arpa | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 13.67.191.143:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | 5.242.123.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| NL | 128.116.21.4:443 | www.roblox.com | udp |
Files
\??\pipe\crashpad_1624_KUEIERSGCNNNAVXL
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2a9e34f35362a08d42a1d4a8f0c39a1c |
| SHA1 | e9aacec3df16ba36af4e60ae08b4b86a9b0a5c46 |
| SHA256 | 9261693109ce90ba0410c22ab067fe86c9e2d63cdaaa1d542e499133f11f216f |
| SHA512 | 70e4ffae318cbbf459a50103e966df84c8a3e1109fa7a0c314a6fefa202057e505ff4b4315403548776ecab44d35e792adb3a7fa0c992bca31aa5cf031d4f07d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6cc83ef15d76132721b0d5fa2761fb3d |
| SHA1 | 1a004f4a225776fe1979a0d2941ab9dcc49770aa |
| SHA256 | 0a0ffc0afa5032eceea65794f27f70e5d07cc553187aa63df3d447c87f64b541 |
| SHA512 | 8fbb46b3460652f0736497045e4ee6a09a7a957a6e3ed5e47fa02e551e5750c4df3169afafa70f4bdf973a0cbd62aec7dcbc9aa6405e9ddfb1ee7877e742662a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 64627dec5ea799e8b010c45a2bcf8eb6 |
| SHA1 | 107aa451849aad47f615e5095ff9d06111e6868c |
| SHA256 | c98e10e2868c58fe1f1b0cabf7f7d9f695419f9561c4971c434eb82577fcbb32 |
| SHA512 | 625baf2c227bae28dc56a96699f69a219741083455b03525fd4b71385e0ca1f26afdf2ae129aad79ba9b3962df4e82d6150f5612fe27c39b67bab6a16ab9312f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | dcdbd273e2e537a2f1cdbd986fbeb522 |
| SHA1 | 81891e16e53d9511851dc9e6463fcc21d571c93d |
| SHA256 | f0fe681cf3a9f5218b9ab59a626f2c28202604b8bd35d8efe1a844879556fa56 |
| SHA512 | b487c42b5a6f091576c301d7e3ec5f68d9fdcdce3a62e53fb1d3fe1cc7f6a4ff7f151614f27de6987de3e5302f5e1ef27c6c86f11459ea53855bc69b12ab194f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c3e01a932264905284baeba2b5f01d1f |
| SHA1 | 41d8cfe5851548a4623c496bdacadaa1a7e14047 |
| SHA256 | 794a23e675372e11b4a6b80666eb3af0f2afc844033367006cf056bcf76aa9f5 |
| SHA512 | 1241091c3605e96c1990af15c2ed87cb292f4f71db0a3a597e915d1c115b7e95689742abae28ea5c0f32b32f191e4b7a621877365d6c7880d5eeeb2b668dc5e9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 49b9fe5c42329adae8e48b571b81d0df |
| SHA1 | 564cccc9031acc0b1b7d58e9ff99312f66317adb |
| SHA256 | b36b5ade579416d68e80ed148d26a103300bb11c86812feafe46ec906b0087e5 |
| SHA512 | 4177dd6f37934078635ed880ec58f1650a9c58f3595be384be32571b08f104c623a5e0d5f96bd3a023214a20ee67113c794bbcc582d38759b1bc17d4b012b413 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | e955953b801c04327c1e96c67dd3c618 |
| SHA1 | f9061d3780f153e863478106bf1afd85132bccb0 |
| SHA256 | e8965a2d52ef25918ebee58ab6971745d396177a7943acf1ed53a65bb4dddd45 |
| SHA512 | 6318ff1eb838954dd73dab5ed891d47f4f39089fa5e899d30183c32269c5620bd09d169af4cf8303e3d5c2ebab23cfe9ae5d9fa5c3281023abb009f66a25782a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 734613a38efcc4af41be07d53d2e032b |
| SHA1 | 8e54b919ded51c357a7c2fa9fd8739c515b5d812 |
| SHA256 | a2ed60587f6a1843a825e512729642eb4665853eb9b6647e4e7dee4ca92683e1 |
| SHA512 | 0ef03add00346b52038ff1afd327c5120512c79460d0160140f2be270af5707ede783f824ee7b676d12c78cf2743555bce33c8e3588cb6b6007a15b9f5624add |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 448a1d1848b6cf8a8c7208d4c27b2025 |
| SHA1 | 088ac59a59efa8489e39048f69bef9c40b613ac5 |
| SHA256 | 94ad47414194acc3d03e3e2fff6eff5a4804326b19ca9c2731b0afe3bd487352 |
| SHA512 | d9c817503fe61c97e7ee6d0c814fbaf3cc78b6c783f899831af640d6b8e39d7c7c774342677677d382cddffcd2cfe2b055f2a1646229b47608dbda54526a629c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 94275bde03760c160b707ba8806ef545 |
| SHA1 | aad8d87b0796de7baca00ab000b2b12a26427859 |
| SHA256 | c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968 |
| SHA512 | 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe58df10.TMP
| MD5 | e9318d440c3e6434862df23ebfd1d343 |
| SHA1 | eb3b9b73ec44c2c4a716ee8934838dd4da3680ef |
| SHA256 | d9e5633aadd98a4da7395f7754108c1a25c3008edcb6a71faa6c5c06813fb4d4 |
| SHA512 | d39db22804332fde81d16ebf1e99f468215617d3da51f6e00f07bcc57e310afe502d4551c33c422be1e59acf5c35835eae68d160cbe765089ef0efc98f6f7575 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 348a95f35ea595dc55991278c42dda5e |
| SHA1 | ff627c194aa53066fd850c61009408273ce291b9 |
| SHA256 | d36a0c9127a10ebe7269effe93cc554eec9e52b22414ed3dbea79d0f9c974968 |
| SHA512 | ef53956f46d544482293627ef526dd41ffda752fb9744122ae9274eca66626ad3b83f5f976fd09a3eb760f93fe396b77d3a7de32dedd1f380802af47da6c3a6b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 58b94c8b5389eeff8c8f5c7b44dda944 |
| SHA1 | a07ed27fed76fe9f0f619b33a9d0391a0ad6c4d1 |
| SHA256 | b8329769a20fbe35554c31fd26a34c36c5e32b1f96debcdd05bcc1768a6d8342 |
| SHA512 | 7cc6a223f310d1851dad7ebd9df53f9247e7389a321fec50eb46ccfad01c9473ada1eee023e8cc9f79bd195182e586571fdfc9dc01facf5376d0a40e1e8177d3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c27f524716ba54b170f843d4895941a0 |
| SHA1 | db0e183bdc3e77dc82b42dd02c85810e2d475244 |
| SHA256 | 7b974616979774386053ab2aefee81ed970c97b320ea5d230adcbc1594337adc |
| SHA512 | 38f8aa307720abfaa463dea6f93b60fbb62a5408cc3337e15a0ad67de69a36a6c0103d6d2ab2ad61a8c0a23e783767cbec73cacfd0e7e05d2de26230800f9bae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 09ee6e167bf32c2f9a8c6fe6d8c88efa |
| SHA1 | 2fcbe2571fc053163a31cb458573a2dc0958882e |
| SHA256 | 89e6f803cec4e6f3986735d5937658dc21d8f287f741c93e57ea8aead65a1214 |
| SHA512 | cfa1b180129994ce55bd5f504ec14180a514a7a3c513933dfe888e532b762029da716213c22c4912d047ae630bd6c44735bbcc758df6a988315bac4464d15bba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dd7679a9bcdc61b8d0e669d69a15c432 |
| SHA1 | 2e14eb5a24caf7162fe793c4385a42b49578e18a |
| SHA256 | 11a0efe050ba78a748bba38782ec738ea610ccf14e21f4f8a0be01e27c62f6ab |
| SHA512 | e9307ade0c06161730753a2932e52680e88bc013982b0e63ca90ed4ac0c8b8c498f7d64835be36770a432c449681befcf1877a5b2c94904a04e43470c1a4e709 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | be1ac07660dae5c5b98f2f238929e523 |
| SHA1 | d144f2b88bd6d61ce227402150fbc7fea6a5e27c |
| SHA256 | e1c30520056a8e8b356348075c09d63dd5d0d3a0634fd3a4c6a38ac3784f74f0 |
| SHA512 | bd0d521373889c3626e3b802c223d47e992b091cacf755dfd79531146333023e3a01846e72f8a5e8dcc1a2dd19b871a7fe810d573201b622c5bc62cf7e340735 |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f21d320e8768685552f51d4d0119cfb1 |
| SHA1 | 4951bec23f37bc7849164f9be7d39ba87f85800f |
| SHA256 | ec2048593d3697aedda2e7fdd6aebe9f0c8d606170c71b18522d1a852d82ea97 |
| SHA512 | 2ff09c0b31b70313e51842d2b60e0b0281305e42c23267b9eb94ae847a03f4d1b589a1db0cba56ce54e41d92ee8bfc80157f40143a7db66140c7fc886b358264 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe599531.TMP
| MD5 | 68f7fb5b1f10ed61aa13ed9a8f0806be |
| SHA1 | 888818e68efeccc0444f71b62cb59689266caf03 |
| SHA256 | 47ad1a761fd78d22a0881bd36961a969e3d6200d18550eb35c0f397892d652a4 |
| SHA512 | 1a95fbfba715d813feb181d7b0bf4bffc792d707a24ed29f881ba123798562688d7f8abb070536cf1cdd1e8aa34ae6935c2cc280dcf103bf3a39c56b77a374d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | e75a9f37afbab0e5b179f620220270f6 |
| SHA1 | 85303e664e413eea9e40d1c3c8e3e89fd81b2101 |
| SHA256 | 702e36a379a979702e6910a681a2358cf458044e0b7eeeafb0bdf532fa8e2f07 |
| SHA512 | 80db01714f09a81028dec86be483490cf8db9d0f2f632c14bb69d2f8cd6154fb7fefef8e33a8e3c54b0aa9707c7a401423acf5ec75b073fad9f67f67587bb5a6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5045559c3eb7c1cf88109f4425629940 |
| SHA1 | 04b67cd719e0a237e4ab6ed1a82291ef9c3e3b0a |
| SHA256 | 94f4795521da7d6ead08e9030ffe0d1365ec65411ea5078726ff69a1e9f22883 |
| SHA512 | f099fa7446628edf06587af03809e5768957f155127bdafac6c9c5c84147d04f582428cc7415ff3acb8e036c6979db86c81f79f608edbc9b07b9691d57188a87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 97d887cfb4c1c5268dd4a13267cff074 |
| SHA1 | c2022d532f60f89df61ca8f25ab0c48ab74b18d8 |
| SHA256 | ec06db57e11ec159c6387947482ec80b6394dd883563de289bcfb2a8f66f7791 |
| SHA512 | 30553844276e77ec33458aa749514c1240d872f410c455c7ddeadb89269cf78029997580d72fd46a3140cef62dde944857552543bd591325335393bbe79fc39b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8a9c400c2c58858787149b3bfc58f855 |
| SHA1 | 74bace2b70af583a3d6c9db779d32b5355d4c800 |
| SHA256 | 9ef66d5a499f8cf2ae839f4d3a8236f0949740ec8a1565840c0c911934a0cb22 |
| SHA512 | bd67094fecb9b117502a39aa6dc857d8d0a8a94885d0c196c17a48099e88ad35cd54efd45232c4ff437d47e4924d273633c21710010ea3781583dceaedf9e0a1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f58de4b0b8ef7496b9a7f0c133684af1 |
| SHA1 | 1c1e3a1e32ae5c9271115edb94fe73ebe8b38fba |
| SHA256 | 7c6ef189dc34188ec43370953d1dc7531611ff5fbea3a8686fcc5b3ffdb6de6e |
| SHA512 | 0f7ffe2960c8edddda06486a990f3b688572497a1a992ea1bb2b9083a9b349c15f659f4a16daff809d9806b3e069f0c3b509090ba7033cdf65b9a9ccac7f470a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 8aab5c310e95a4f73dfc828db5c3f4f7 |
| SHA1 | 0e1dee85676b9368a6e6fa4fb545d5ef099ad455 |
| SHA256 | 829960ced2923391538f18742763bd051088841498ea498e3974a08cb605d2ce |
| SHA512 | 98f3490570f4cba118d2134da3e856dc8851b42bd22d80b19b0beb77efbd77c499a1fce294a84094cfeececd336b0a39c0d428b352ae4269a05f9da0bc6f7dde |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5fc3b8b51334019ede8cd7ce3783059a |
| SHA1 | f4b464dee2636255fe6a4a1cc483e8acfc26a895 |
| SHA256 | 10fee41eaa305d9c894a574814314417617009d4d3030548173bf05c3d7b8307 |
| SHA512 | 84d18fa288681a2dcd678fb3da3a185519920c607b58cc010c2df2f29de8044d7b1596256377bd6c53a08b1adb6b01af9ad25b21e8bd3d49fc25bbf91cbdb3d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d37c753bef80289745d420d4b3371faa |
| SHA1 | 1fa3283a2b631c581539196180bea0b6aead2fa4 |
| SHA256 | 29d4f20c08705a0a3f9128b960968d454bd7b96b4fcf9cb9751b3dcd81c65a33 |
| SHA512 | 967b1620230979c107ea7946978c348e4a690018ebf357b79afef92cfc279ab6c30235e4d65d0825bfa08f38a794ff2b806d1e688a149f7d1ade15efee8c47a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001e
| MD5 | 81d606856baacbf56f3f3d5173f63f18 |
| SHA1 | 815fd032e398860ffd46c477d3a970858f6d7d13 |
| SHA256 | bf0c09397ea7380e594af19f53988cf9a829bc17f71f6c994241d3ffdd3d1df4 |
| SHA512 | a22c73a295915221caaf2848ecd9863c8805f90d4a9e54c508ad37555afb1bd9f3484490b4f0d6903a268992c35120b6ecf8206030f413fcd17c26476c9d8142 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f
| MD5 | 588ee33c26fe83cb97ca65e3c66b2e87 |
| SHA1 | 842429b803132c3e7827af42fe4dc7a66e736b37 |
| SHA256 | bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760 |
| SHA512 | 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e5aade544c7a901b28e9adeacc7e4af0 |
| SHA1 | 7cec884bae338c75b8a7f4d6b2070d9549bdaa95 |
| SHA256 | 727bfa0666071d2fdd0785dcd0b512d81f6879c956cec79c98e2ba94fe2fcefa |
| SHA512 | c07349ad93e92b8ad71c76bf38106071244a37df8918ecf7936907db6b9a3482986a4335df54794ef869def8109b6f8ae022f8d051de900e7634dd81389f758e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 03d3e674970b2865bca8550bfd2b6f48 |
| SHA1 | c760d23ca0925f4904aeb5fe535fec8f4079ef35 |
| SHA256 | 22b0142a2c69c6d77112444728a25f0a4fee3594b0292920111de3103227d0a5 |
| SHA512 | 64007afae91042d6a30361f0637cb98b67efdacc9eb333ae5da2130af2c0007c35bc51a7ebde2731bdae174e40914bf3a032dcc8f14a6816b4357db49a5a6a34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ff15892be939975bdf24b4278bceea26 |
| SHA1 | 7aca9df2c86dd7407c278dc1ab7b086166138613 |
| SHA256 | 072486da70528d98023e490453a6d23d4010659d45d1f54a305362244ee5c239 |
| SHA512 | 3548289c5ad8771cad068ac9515e38c2a54db6ca296d1e5635b4f03f0053f2eb3dec91baa5c1cdf023a01d6d96f92e28cca0b2eaa43b7724dd7f8794de9135b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2242a59d5af554d77cfef32dbd422e78 |
| SHA1 | e7ba908a43ff5f2a7d8d20fa4326cd97dc92fde7 |
| SHA256 | 2a93a957ce4ccb6bdff963ca371505918d6c93f6553d2b4e9fb3452bcf41f70b |
| SHA512 | 15bf7d38c33455605e5807fc01ecc41acf11205022ff824b791a8ea40ab82ab36818d641a04358014a6bbbb737eb021f25d0f06dcf35bb18a90f5680083362fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 469790c799450844bfff9b8cdf29ea92 |
| SHA1 | a5d2176c4a6cc19a67df7e281cf02b220843cf67 |
| SHA256 | c00fa8d039a5d8b501207aab63a4e3b37644ca49e63364c948f07bf0e1927a0b |
| SHA512 | a25feb53c9abc98746fdaa24714df18aac13eee0c98b7326535207b75f9c155ba5baec25eb251deaaf401c5f0142f8c35481d92fcea3cd73832e5d9d4a61948e |
C:\Users\Admin\Downloads\Unconfirmed 94225.crdownload
| MD5 | cfefb36838560b726b44c5eb64bc55f6 |
| SHA1 | 28b9646a5d6e9aecf4b6cdf6bb97fe30f18900f3 |
| SHA256 | eb02f21fab1f3bd916d086a5129c7d9aa39027cab9b61e93866e0bfb0724d85a |
| SHA512 | 732173841815647fe8d3fa758669afebcf9e754c93ed1722b4d4119d04f6a5297ca6177ee1c777b3302ff6f72a810a037b2d344c66ba6086af791ed8a50c9519 |
C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe:Zone.Identifier
| MD5 | fbccf14d504b7b2dbcb5a5bda75bd93b |
| SHA1 | d59fc84cdd5217c6cf74785703655f78da6b582b |
| SHA256 | eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913 |
| SHA512 | aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cc4ca8a6714e167c1b4bff4dc1911402 |
| SHA1 | e3871ff6cc061a5110fc18957d53ec7931b26446 |
| SHA256 | feda0c7b068bbe5519af1cd034a12fb62feb79db8af1d1115af96e07acd2d3ca |
| SHA512 | f0bc2c3073e2401b652ed2be83413c8d5cd2a23cb301a321ad25f679cecadf11210c22a65449a990715a0168e093adabf90320855b2c37a42552bb8608f7cd02 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8a8e00bf7c40c85a4512d20a0c8a9d47 |
| SHA1 | 2c77c98147322ea916fa5368b56ab8acb031ada0 |
| SHA256 | d849cf84ba9e78ae4c3d869d0860536fc4832551a5b7220171b37555434fb27d |
| SHA512 | 199854f805dbce8eec33bed7d9aa089bcfc50b50670eea0e14e8a35c4e9b16dea78f4c5359f0fe1c82c5433c67ea9060bb276a405f97847bac8f8ae80451da44 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | f97dcc517a590f402900ea696eb89cb1 |
| SHA1 | cd8fd7630c38e71199fca456543e101405853165 |
| SHA256 | 73163f45d03f2e535beb23151250633a07848a531c086a2694840fd0fedda3b2 |
| SHA512 | e543f70ddb6979ecf58223b3636d2f69dc19de3a6feef665713ee0dc54eab625cf61dfe3c344c7a09125808c06a50af147229b52ca1d113a8ccb9c5db660428a |
C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe
| MD5 | 529ac613c7ac1ddbaebe9e7d9f82eca4 |
| SHA1 | fc8cb991735a98a9663776a61cb9c185a3335f94 |
| SHA256 | cd6a5d746b5c36525d781e6d40368f87a3edc3ea157bf63fb55baacc51337f0d |
| SHA512 | e2378819587ed7eb417d0375d49a55ef9292b9e8d22718a52688e3fad59d68a711281f25d1045a9da5442f2d805b9d98aedbf4278c9188208bb2edd917751e04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9e748a723f2e80b730c606d435448b2b |
| SHA1 | c0df2c34447539e2fe8475228deabe7f9d1c6f34 |
| SHA256 | a41831ae080eb5aaceb96e726f4c7e8c62642e497064a40e5d130ced473f0874 |
| SHA512 | 1443114e89a75908f743e86956435e0ccb84407a212bc57c69fca4da43386278784743adf5bfde234be0ee219b7083e20eefccde47172989c494dea338ea800e |
C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\442b78765b051e21bcf04e926b87079e
| MD5 | 442b78765b051e21bcf04e926b87079e |
| SHA1 | 1a22cf8c593231a6963bf2a624bf105420d4dae9 |
| SHA256 | 4387634feeb838cbf3156a553ff0914b3cbbc3369a1179a3c6fa57c58b755017 |
| SHA512 | da2fb23108d05193776703addfad8887fa8455e5a1de441fa2a53d1da6142559f19d1a64910d88643b73a23e12fa09b6cb04f3df2aa007edfe0a4adb8175feaa |
C:\Program Files (x86)\Roblox\Versions\version-d6abc3b106a04c5c\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
| MD5 | 610b1b60dc8729bad759c92f82ee2804 |
| SHA1 | 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552 |
| SHA256 | 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08 |
| SHA512 | 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdate.exe
| MD5 | 4dc57ab56e37cd05e81f0d8aaafc5179 |
| SHA1 | 494a90728d7680f979b0ad87f09b5b58f16d1cd5 |
| SHA256 | 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718 |
| SHA512 | 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdate.dll
| MD5 | 965b3af7886e7bf6584488658c050ca2 |
| SHA1 | 72daabdde7cd500c483d0eeecb1bd19708f8e4a5 |
| SHA256 | d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19 |
| SHA512 | 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_en.dll
| MD5 | 4a1e3cf488e998ef4d22ac25ccc520a5 |
| SHA1 | dc568a6e3c9465474ef0d761581c733b3371b1cd |
| SHA256 | 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011 |
| SHA512 | ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdateCore.exe
| MD5 | c044dcfa4d518df8fc9d4a161d49cece |
| SHA1 | 91bd4e933b22c010454fd6d3e3b042ab6e8b2149 |
| SHA256 | 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2 |
| SHA512 | f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe
| MD5 | 60dba9b06b56e58f5aea1a4149c743d2 |
| SHA1 | a7e456acf64dd99ca30259cf45b88cf2515a69b3 |
| SHA256 | 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112 |
| SHA512 | e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\NOTICE.TXT
| MD5 | 6dd5bf0743f2366a0bdd37e302783bcd |
| SHA1 | e5ff6e044c40c02b1fc78304804fe1f993fed2e6 |
| SHA256 | 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5 |
| SHA512 | f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\EdgeUpdate.dat
| MD5 | 369bbc37cff290adb8963dc5e518b9b8 |
| SHA1 | de0ef569f7ef55032e4b18d3a03542cc2bbac191 |
| SHA256 | 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3 |
| SHA512 | 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_bn-IN.dll
| MD5 | a94cf5e8b1708a43393263a33e739edd |
| SHA1 | 1068868bdc271a52aaae6f749028ed3170b09cce |
| SHA256 | 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c |
| SHA512 | 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_da.dll
| MD5 | d34380d302b16eab40d5b63cfb4ed0fe |
| SHA1 | 1d3047119e353a55dc215666f2b7b69f0ede775b |
| SHA256 | fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f |
| SHA512 | 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_el.dll
| MD5 | ac275b6e825c3bd87d96b52eac36c0f6 |
| SHA1 | 29e537d81f5d997285b62cd2efea088c3284d18f |
| SHA256 | 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0 |
| SHA512 | bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_de.dll
| MD5 | aab01f0d7bdc51b190f27ce58701c1da |
| SHA1 | 1a21aabab0875651efd974100a81cda52c462997 |
| SHA256 | 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c |
| SHA512 | 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_cy.dll
| MD5 | 34d991980016595b803d212dc356d765 |
| SHA1 | e3a35df6488c3463c2a7adf89029e1dd8308f816 |
| SHA256 | 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e |
| SHA512 | 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_cs.dll
| MD5 | 16c84ad1222284f40968a851f541d6bb |
| SHA1 | bc26d50e15ccaed6a5fbe801943117269b3b8e6b |
| SHA256 | e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b |
| SHA512 | d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_ca-Es-VALENCIA.dll
| MD5 | 2929e8d496d95739f207b9f59b13f925 |
| SHA1 | 7c1c574194d9e31ca91e2a21a5c671e5e95c734c |
| SHA256 | 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df |
| SHA512 | ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_ca.dll
| MD5 | 39551d8d284c108a17dc5f74a7084bb5 |
| SHA1 | 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884 |
| SHA256 | 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07 |
| SHA512 | 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_bs.dll
| MD5 | e338dccaa43962697db9f67e0265a3fc |
| SHA1 | 4c6c327efc12d21c4299df7b97bf2c45840e0d83 |
| SHA256 | 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04 |
| SHA512 | e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_bg.dll
| MD5 | 8375b1b756b2a74a12def575351e6bbd |
| SHA1 | 802ec096425dc1cab723d4cf2fd1a868315d3727 |
| SHA256 | a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105 |
| SHA512 | aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_bn.dll
| MD5 | 7dc58c4e27eaf84ae9984cff2cc16235 |
| SHA1 | 3f53499ddc487658932a8c2bcf562ba32afd3bda |
| SHA256 | e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98 |
| SHA512 | bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_as.dll
| MD5 | a8d3210e34bf6f63a35590245c16bc1b |
| SHA1 | f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693 |
| SHA256 | 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766 |
| SHA512 | 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_az.dll
| MD5 | 7937c407ebe21170daf0975779f1aa49 |
| SHA1 | 4c2a40e76209abd2492dfaaf65ef24de72291346 |
| SHA256 | 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9 |
| SHA512 | 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_am.dll
| MD5 | f6c1324070b6c4e2a8f8921652bfbdfa |
| SHA1 | 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf |
| SHA256 | 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717 |
| SHA512 | 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_ar.dll
| MD5 | 570efe7aa117a1f98c7a682f8112cb6d |
| SHA1 | 536e7c49e24e9aa068a021a8f258e3e4e69fa64f |
| SHA256 | e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01 |
| SHA512 | 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\msedgeupdateres_af.dll
| MD5 | 567aec2d42d02675eb515bbd852be7db |
| SHA1 | 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37 |
| SHA256 | a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c |
| SHA512 | 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3 |
C:\Program Files (x86)\Microsoft\Temp\EUF3A.tmp\MicrosoftEdgeComRegisterShellARM64.exe
| MD5 | 7a160c6016922713345454265807f08d |
| SHA1 | e36ee184edd449252eb2dfd3016d5b0d2edad3c6 |
| SHA256 | 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9 |
| SHA512 | c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e |
C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
| MD5 | 99263ecbd0d91acf87f543ef56403c53 |
| SHA1 | 7a8b27a14114ffdf160693a0e7d0fc1d89b5e82b |
| SHA256 | ab104e25210bc3bd7a70b2038bc195732f8e7417b358fa9b37a3037adabd20d9 |
| SHA512 | c0972f99b9e97a8a6d582e0195a1fb14a24bfc1cf756b2183ba883de87a9c42f84bdad0174ae432d190bf4801b99f5fa665ec061b6d6fab7bfc1b66f0da6811b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 419f6e5c03ddb42565e6f15c5a16691f |
| SHA1 | 8deec7ee3a9af3846261824377e17df55f0a6cfe |
| SHA256 | 3e932b052d936c2fc8374278b811d248b1cc45254b1868f9cb4c3ac0aea8c912 |
| SHA512 | 9d8d6d21142e0c33e73edc0eb1a00618a55a1a8d9a2d8b1faae61ee1c72a5821d58e45b72fdd5a40234c12ef1aab9a572073954770d650e97bc443b5dc95122d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 7615ec7edab1bea541c92f6d7e1f8509 |
| SHA1 | 8d46055b505947e2d91c0c06589655d13f26ebf1 |
| SHA256 | 33b01133b9082c141e74f7d38cfb0d3a507e70a829d0b40f4b028f783eeb986c |
| SHA512 | 636fcbbdab3c0bb09f9979dab39dabbb5f51918f4b3943951380232c80208b8f02ae2164169103f36d8e5c1eb1473c96160ab824634d3024cf38a06cf02a43eb |
memory/1036-1541-0x0000000000F50000-0x0000000000F85000-memory.dmp
memory/1036-1542-0x0000000073010000-0x0000000073220000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 521b93c510ee399c29a9b2b392951790 |
| SHA1 | 0efee14142a3c8e74156d485a9461c7a047e8909 |
| SHA256 | 291b1eb5b3e260d1f08de571d2790a00b5c0fe33ea1b28b61c8bd6561507a9e8 |
| SHA512 | 16145de662ec02d253f456ced44571e9252093df78dc1e516c74772a9007d7294778e12fef02d517485f65c3212e3cff0bd2731ca7ddaa2ddc712159dad9c57f |
C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat
| MD5 | ea651ae32ad5371e2cfdf79486e2255d |
| SHA1 | 0d8ad3c51257cd3e25e5bc3424cf14ab05a0f932 |
| SHA256 | 7e13f9dd70cdcb5021c258e6ab6af8fd22300884b64f2298b7e214c3a033af95 |
| SHA512 | 8e8c9aa0899549593f6d5c67e35cca480758933c2bf84e37563ae59b4a03adfe472de8674ee111e710f640ad50097ef54a4904930b684a9bc2bac830e0b53e00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d5c6f1e986e0eeebcfff52ce367d96b7 |
| SHA1 | ae806ba8dbe0ecac170e37a90b64ab9ce42bcfd7 |
| SHA256 | facc5a8bf08e735ad9ee8c1210088ad95cd46ec6fb4a490fc08f808db877fdc7 |
| SHA512 | 4ab85ae8ee6260240440a53c6602f96c29de58f0bfcbaff781bf0815ea5e3b49cd3c18be7bc148af8bd7e685de2f84750faaf2f03dc107fe306e1e2c0edb2826 |
C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.85\Installer\setup.exe
| MD5 | 776d096934ab49e06d98f228f2f09578 |
| SHA1 | 85843747c6b28fbfa094ffd37306260a0b80665c |
| SHA256 | 4454ee06716329235c9395b1bc3c5498565074bd43fffd70123935ed68096796 |
| SHA512 | cada5800ea29613e4cebc370a77b0fa589656ed27cf52eb3f6ae0321d951a98afaa192ae1e06c3a4662726b64a9f84903cc3ec633f7170d1bf25cc66c8ad4354 |
memory/1036-1604-0x0000000073010000-0x0000000073220000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8956542e724a2f710d3fb1ba4120da5e |
| SHA1 | b5611f96b1f677174e90d8f23cae82d2e96fecd1 |
| SHA256 | f2bec08ad9afa830dc87fe09d648d8e48d51cba4ce255baf481e651a5e986259 |
| SHA512 | e886f0aaf1543bdc0aa62e4694244513f65721724d3b6292ddb093bb9565f1e372cf52241921fac7db37ba91214f4a393e1834f1aba6c07d8b280571e1e54391 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0386549b9aa7e7889dfadc20c6501d26 |
| SHA1 | d8cbe1d41d49e5bdf29ba2c7af096d235379d5f8 |
| SHA256 | 023295f8bc72d40d21458582fd18c41bf7acb490b9ff20007fe09a1fbcbafbb7 |
| SHA512 | a1a05f1f1fe83bcbaf5b060f9d8d7b1f95950a9177654f46819ef0f84e06fe35e6d40cfda10ee1a8b2d12b911990abdc108b47924b8327f9a38725fe35f38fb6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ffd9887c7390f954004e42c2f1b5607a |
| SHA1 | ce927165b3a6cd139c87ac358697938550d9ecbf |
| SHA256 | bee2b29a7a5123cb14abb5cb17f90f145e82a20b319c99b0c3c310e1bc380589 |
| SHA512 | 50c1a6a0e24f8ea436a2a5df6be90da56d1c9bf33f88d8bb40bcadc1b9ed46896dab71ebd3cfc08d1aa2d92d959c847e98c63eb9701c8d3f747f0c351183db58 |
memory/1036-1640-0x0000000000F50000-0x0000000000F85000-memory.dmp
memory/4248-1649-0x00007FF9D1D10000-0x00007FF9D1D40000-memory.dmp
memory/4248-1654-0x00007FF9D1DA0000-0x00007FF9D1DA9000-memory.dmp
memory/4248-1653-0x00007FF9D1D10000-0x00007FF9D1D40000-memory.dmp
memory/4248-1652-0x00007FF9D1D10000-0x00007FF9D1D40000-memory.dmp
memory/4248-1651-0x00007FF9D1D10000-0x00007FF9D1D40000-memory.dmp
memory/4248-1650-0x00007FF9D1D10000-0x00007FF9D1D40000-memory.dmp
memory/4248-1648-0x00007FF9D1CC0000-0x00007FF9D1CD0000-memory.dmp
memory/4248-1647-0x00007FF9D1CC0000-0x00007FF9D1CD0000-memory.dmp
memory/4248-1646-0x00007FF9D1BA0000-0x00007FF9D1BB0000-memory.dmp
memory/4248-1645-0x00007FF9D1BA0000-0x00007FF9D1BB0000-memory.dmp
memory/4248-1660-0x00007FF9D0F10000-0x00007FF9D0F30000-memory.dmp
memory/4248-1659-0x00007FF9D0F10000-0x00007FF9D0F30000-memory.dmp
memory/4248-1658-0x00007FF9D0EF0000-0x00007FF9D0F00000-memory.dmp
memory/4248-1664-0x00007FF9D1000000-0x00007FF9D100C000-memory.dmp
memory/4248-1663-0x00007FF9D0F10000-0x00007FF9D0F30000-memory.dmp
memory/4248-1662-0x00007FF9D0F10000-0x00007FF9D0F30000-memory.dmp
memory/4248-1661-0x00007FF9D0F10000-0x00007FF9D0F30000-memory.dmp
memory/4248-1657-0x00007FF9D0EF0000-0x00007FF9D0F00000-memory.dmp
memory/4248-1656-0x00007FF9D0E60000-0x00007FF9D0E70000-memory.dmp
memory/4248-1655-0x00007FF9D0E60000-0x00007FF9D0E70000-memory.dmp
memory/4248-1667-0x00007FF9CF830000-0x00007FF9CF840000-memory.dmp
memory/4248-1671-0x00007FF9CF9E0000-0x00007FF9CF9F0000-memory.dmp
memory/4248-1674-0x00007FF9CFA00000-0x00007FF9CFA10000-memory.dmp
memory/4248-1673-0x00007FF9CFA00000-0x00007FF9CFA10000-memory.dmp
memory/4248-1672-0x00007FF9CFA00000-0x00007FF9CFA10000-memory.dmp
memory/4248-1670-0x00007FF9CF9E0000-0x00007FF9CF9F0000-memory.dmp
memory/4248-1669-0x00007FF9CF9E0000-0x00007FF9CF9F0000-memory.dmp
memory/4248-1668-0x00007FF9CF830000-0x00007FF9CF840000-memory.dmp
memory/4248-1666-0x00007FF9CF6C0000-0x00007FF9CF6D0000-memory.dmp
memory/4248-1665-0x00007FF9CF6C0000-0x00007FF9CF6D0000-memory.dmp
memory/4248-1675-0x00007FF9CFA70000-0x00007FF9CFA80000-memory.dmp
memory/4248-1683-0x00007FF9CFB20000-0x00007FF9CFB2D000-memory.dmp
memory/4248-1682-0x00007FF9CFB20000-0x00007FF9CFB2D000-memory.dmp
memory/4248-1681-0x00007FF9CFB20000-0x00007FF9CFB2D000-memory.dmp
memory/4248-1680-0x00007FF9CFB20000-0x00007FF9CFB2D000-memory.dmp
memory/4248-1679-0x00007FF9CFB20000-0x00007FF9CFB2D000-memory.dmp
memory/4248-1678-0x00007FF9CFAE0000-0x00007FF9CFAF0000-memory.dmp
memory/4248-1677-0x00007FF9CFAE0000-0x00007FF9CFAF0000-memory.dmp
memory/4248-1676-0x00007FF9CFA70000-0x00007FF9CFA80000-memory.dmp
memory/4248-1689-0x00007FF9CFA60000-0x00007FF9CFA69000-memory.dmp
memory/4248-1691-0x00007FF9CFA60000-0x00007FF9CFA69000-memory.dmp
memory/4248-1690-0x00007FF9CFA60000-0x00007FF9CFA69000-memory.dmp
memory/4248-1688-0x00007FF9CFA60000-0x00007FF9CFA69000-memory.dmp
memory/4248-1687-0x00007FF9CFA60000-0x00007FF9CFA69000-memory.dmp
memory/4248-1686-0x00007FF9CFA40000-0x00007FF9CFA50000-memory.dmp
memory/4248-1685-0x00007FF9CFA40000-0x00007FF9CFA50000-memory.dmp
memory/4248-1684-0x00007FF9CFA40000-0x00007FF9CFA50000-memory.dmp
memory/4248-1695-0x00007FF9CF450000-0x00007FF9CF460000-memory.dmp
memory/4248-1694-0x00007FF9CF450000-0x00007FF9CF460000-memory.dmp
memory/4248-1693-0x00007FF9CF340000-0x00007FF9CF350000-memory.dmp
memory/4248-1692-0x00007FF9CF340000-0x00007FF9CF350000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 980c99baa4e27b909cff0dc437362f64 |
| SHA1 | 0c898ced274b38b0dd92684373aeaa984965f090 |
| SHA256 | f036deecb4fcd712e821c72b99cff64d6d76313c669f4ca8ed722ca32bd90d2f |
| SHA512 | 5bf22cd0be1438896e4873888127854b90f103ac62a565f4e2f36784428710c3e7568f17edce9a2e4e1f229152c02b335b21d3d62f10bd4143006f468ea4f018 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e4d0162fd810fd4d5f01c154f2fe6e9f |
| SHA1 | 7bd05eac79ec29b1a31480be687489c78fb93bee |
| SHA256 | fba13a937f956f1ad93af9da380d589a22f7847a5631defe9cdec50b44bd1df8 |
| SHA512 | d20a81b0f8d7b34b16280ccf8f0b0695cc43c1605ed7c5226fb96f1f38685f9c421d5172f4f981099f090a8b412f2a99fd84f85f34eaef011e65c5f33230cc28 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 43d050376834015b221e97557d933928 |
| SHA1 | e12be86db876f44a7ae2d5d1ef5d731026ed8b49 |
| SHA256 | 94f27d75616940fbadfcf25ab691ce15f06f78a83d37acb40ae9bad4cd5487fe |
| SHA512 | 29eb099d12272c9ef2e2a540fe54f99fdbdc7850de932bcdfdd992650c4c865c4894f97c9394a4666e914f1429d840a726d4ec10c1632119a8324ec2e6f6f66e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8be9eebc049a5ec18348b2343c6fae1d |
| SHA1 | 1ced47cdec71971f74826b85be2b2ff051c6ff04 |
| SHA256 | a297528d1db762354a92731d900cc3e1ec73cf021a6c1dcabfcce923669fbb2a |
| SHA512 | e52ce906f6ec3cf4aa18928a927ed08935c67b7b4d140837561f8b21bd02b5cef63ce3133e060cfa8a19f4b66859385b218315cad699fc7658e326ddca4f08c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6a4fcd300e98f69dd9b42a52acb4b88d |
| SHA1 | 07add4e06ecdf56e3a73cabed20b3b1898fa70ec |
| SHA256 | e0460c4bc5a17df0a5265a92859a9cc762624448cc9eba37cc2fdf42368b5732 |
| SHA512 | c2850c4d2af743882082fd992c68800882ad23ddebd93b36ffa14cebec45e016710b06a730f114e57713562e1c7222d02b0c43b541e83643fa86ce9149a7688c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b5f2c4ddb8034546dc19274cf4468ede |
| SHA1 | 1fb04aa607cfe8a06c3454dfdfb157cc56925162 |
| SHA256 | 80a8fd375c465aaab35e1bd1818552f50e30af5acc9ef4c5989526a33f547b9a |
| SHA512 | 90fa25a0dd8f8fa8919adec47f12101a636d555b4d59c9b2b72503d2de606ee8569f8688d77888c1d916bda0b63ce37db90bdde4f16570f6bc4bfb616a9dc15f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | b050033c1e9061a55a45dd44868ca491 |
| SHA1 | 3245ad15547951b9f825edb52615130bbf1f7422 |
| SHA256 | c76b80db78bafb816f2a6f91412f2a2317f355468b0cbc4c076d31da29e65382 |
| SHA512 | bd8071e580761a45e6403bcd60b19898ede591a630ab151ab08e53e6f4301cfb997a08295f4f80a3e198568d8ac8e18110f80869c273e45a44b66356fee82492 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5e4004.TMP
| MD5 | 581beac081473d062c209b0048f887cf |
| SHA1 | 89d389241aee9cb9d5f20e8d043ac98e8fe6ddef |
| SHA256 | 94fdb3aa8dd4ce5a37f37416392f569617250b91f716c2c3c9478df26d5a39d2 |
| SHA512 | 857a7edb19c575874f3be7869625861f667b1a8f34a75113d6e7729177ade5277a6cd02e66d062aa1b19c34058c75d002b5089cfcf27151451a5651e974b01e4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dc977997e4ec2f6993b4ff5db07fe2a8 |
| SHA1 | 04d7d817068421a9ed820404444f22e40de3c767 |
| SHA256 | f50b7323c2541f96063a379a32f3957a9300a20de42b04df2f30fb5b32f08c2c |
| SHA512 | acd607c9f49bef003af3747c6b622c2da22d3d2c8232aa39fa688a079de124e122bbc3d88288e37ed51485f8b80af6d8a8e1104960661101c328f834e6dffe34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7dbb0a2cecd4113ec5e86b778486752e |
| SHA1 | 0909eabde8800566ceb1662ca9acdba41219c714 |
| SHA256 | e3c59b264186ba8902e608a584d17a01852ada150f31e7bd4df019eeed0fc643 |
| SHA512 | dccae5ba51c36b56ce016c9ccc8f0f889e4e51cba238abda306f35ee6e5ef6b449c21a3ffbcc0c5e4618367c9a32f0e05dca3b75ca1228d8925aa85c7f73dc55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 73fad304f2ec69b047b72b690f2dba33 |
| SHA1 | 9d3777f5c6eb540051296a400b8b51f44fd0a62f |
| SHA256 | 12dc65d119735d876530a9968069468d98869c7f22e7f90bbc7877ccc65cf252 |
| SHA512 | 461c7f669f8e150e1c657f5e0957fa154b14078738eed3bfda036b233fee8b16d8d8e8b1403d8038c6eed41b1b82ed9d1bd019e461add36df7d0509e45ec68a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 787e2edbfcc2530100841230e2bad1b3 |
| SHA1 | 97e6aef2fa6254afae7baa9da6a1d5bb93db294a |
| SHA256 | 0a864dc7c5028c536bfe50bed75aadaf4dc17252e67d6666303f867cb938d87a |
| SHA512 | ea66ec233e55032945528ec4ed54ea4361fb974ec4c893d498c36736a8bdb3f175c359fe781db8c3a34deab0d52c92cab2bbb44acb3eab53a78d552130afc8ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eee2957cc39b10beecf89fe7af789be4 |
| SHA1 | 2d232a462da80782dad659fe3302ed3d3333ff37 |
| SHA256 | 65b81cadb6d8de30782be94d0f4629b1f5e2f8c06dcddc668c1c06ec061221e7 |
| SHA512 | 9ead3db8776251d1b339ab0ad1f73ff36bd0f2bed91b94ac4af8de281c371f70ea1f5a5ce32dd4c2bf3fdfd5b39b1c2a88ea753dd6000e05d1b126bad698b270 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | fac49e161e404a2a94033d91245077d8 |
| SHA1 | fcdd095a60d94e7fedb86bf29c784007b4d7e9c7 |
| SHA256 | 782fae8642551618ba67e354c7335e274ffeb931ca0c02698e5cd8ca5931a349 |
| SHA512 | 0a3e34ab9bc45b40f7c2b2c26896ced8869a78992e1a8fae4d0dffd7815216a0168c19661de536b6174f168f88563185ed87929c04a7d8238250960bcf562bb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | aa12ea792026e66caab5841d4d0b9bab |
| SHA1 | 47beeba1239050999e8c98ded40f02ce82a78d3f |
| SHA256 | 65fe153a832452e97f5d484440a7047e314d3a83cb61ad2508fed48a820e1de1 |
| SHA512 | 0b2b1bb8851c60c9d4ab1d039b990a4de5799c97c50b45f64e36a21849c14e785f69196f674ac225b1419d7f501338054074cab6203d041361a4fa1ed8802b27 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f14a902098fd4ffdc67470502e271107 |
| SHA1 | 1f571fb87fcac9ee9eeb1d765fcd265364ed5a97 |
| SHA256 | 5ede900a425c15d565a5ef080ee1c7ba52bb1fe96dadc3bd555ca0936a4b8301 |
| SHA512 | 0aad20ee78447f791fe21f8d6aa531e7d872b7780c84d364b8e272c099800bfbcc14f60c7eb0bcc83613a4a3487e9b53b0772b4699108963e3de0f7be42a05f6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 222f7c4cb95b899db9edf427bf2a8460 |
| SHA1 | 909ed9d01a863012c08a1e36f5074e14bbffd7b3 |
| SHA256 | 49656e53087b5154da6934145363833fb7219499b6eb8443d32afa6a7008d615 |
| SHA512 | 766f0b3d5f611cb970d72f9c5cf1baaaa713bf885b0555a2680be201d75df6b4244435b8cc2a405da82afa3ceefecf9bf5cf855a0966b61a12cc8e7dfa4cc9a0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 86537b3b11d417b5554f0a6a9699b1d6 |
| SHA1 | a0a6e4fbf7a7ff679c0e313577883a4d7d48a7b9 |
| SHA256 | 2abf3f11651141a8aace021421fea18c9bcb538a3d085e8ec9df68c64ee6fd12 |
| SHA512 | 65811afd83bbc43209891927af653fb55ff774852ea0f914c5b4060e85363586a7d37d047e83d86ceb0886533fc31aa0cd83a05efe80d6d5b0e7b8e510d9e686 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f4d07b3655ea913a2d830a46794d4cac |
| SHA1 | 0385d7659fe116f606c0c93795bd2723b7c8c0b8 |
| SHA256 | 2e2c19825999b9564a0204b4316b46c50c7d289ebbd8dce26130ecc70411d1ed |
| SHA512 | 8ff37c331f8c23b69b5f4c47637fa4512f7fb93f7aba364430b7968a0c3456a9d5f74f8152d8bc64ae366bc9cd013ff4d2b3cbe74bbea73eac26c928628d53c3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | 4f9d58547367f284c0fa5c840c00b329 |
| SHA1 | afdf5a998830ad8bea4d57ad8cb3882ac911b43f |
| SHA256 | 3104d7911ad5190e95f4bcc647740dcc286325ca7a57f46510cd7970aeced0cd |
| SHA512 | 7d21bdf059b4cbb5a1203c8c7333ea91118bab3b6d935f59e7e89637eb31d2a28d69033ce8501431dfbcccdb6df1f05d86cc4d99af01c68270a5577b795eb350 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000eb
| MD5 | c8833d412a1bb5261fcab30ac740a5c8 |
| SHA1 | df313263e64731124c70334c9e1ba6feaa6558a7 |
| SHA256 | 1b8ed9e038213303270b20e1a24548692d3f4696fe37f0e919ef6b5a208a3572 |
| SHA512 | b6d100b4c837cc23635fe4827e977bab04857d04e7cc5644fb94cd5421a4730ec35cb1f9e5a5d9fa9d20dd2c69dda0f05826d504cdead71ede6b8b6444d06535 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ed
| MD5 | a6f1dc318aadf451b1e62263926ecddb |
| SHA1 | e81878fd945c46f1d5065ec064ab96b31ca95577 |
| SHA256 | ea6f6cd6af14dc5c999f9127ea663b5c22e32418c8c96eeb998af7bc23907971 |
| SHA512 | 96f3bc23791af94f7f4ae1bb39c78fe2f101b85467041227dc1e288e2713fe826fece758f30a91c0d46e27e739b91d2703f150f4fa1a650ebbb3b136c3fe6ee5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5d9c30ff35f838064606f5779a785b31 |
| SHA1 | 80c2a4f31315ecb51af3485e88bb6dc741b89517 |
| SHA256 | 03781b98fca5930280831b087009922adb40733489be43c181eabe4cb07b16a9 |
| SHA512 | ab18d58e5a4591c1cc8ed3c3f136bb6f310efe96631fc05b7df997b5f5842a77b8c8b671644689af1774063b1074000f05d66ff8546cab944cb89b93e1c7a6eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f8
| MD5 | 2ee7bd28bb23f27d2c3cbbd98cba8ad2 |
| SHA1 | de6817d0a550d3abbfb12e44ba1a4fdf6f81bf0b |
| SHA256 | dd2659da62c714450aeee73ac230a8d707d0c9e1ea8e52b6977168a6098e0189 |
| SHA512 | d23a6fcf62738ed2439985a57238959385c6d5380d44113123957471d66e4b03069bcead32d4129d9c383727d0e7011f1e23937585c532a5ea839c3451c30c87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 970495f3fabe5d322935eb1b70b0f2fc |
| SHA1 | 0dc69d4c7f0932458b4a443e4fb596f7ce554ea0 |
| SHA256 | a4f91a34197e2c387de8be8d256997bda02d990a7edb8eefa2cccba8141fd12c |
| SHA512 | 8a6838116501e08354aab587de0f6d2f49f78781d582bf51b1c66aa20e77a10dd3e894976262c1740842b31f2905963d5701efaa7ea6b3f677293e44fd790edb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ee287ee476e368a6e78f63845313d0c9 |
| SHA1 | 1ab1be73edb92592c6f873080c2ba8eede07c16b |
| SHA256 | cde0a8025c076025ad2fa6ffc9564e8409487181ac701c97d16a1816f0868233 |
| SHA512 | c60d9f4cd0f316a7bb1430ceae463790080228cb04dabfdf4fa24f1328d0de850cff6c61a8e274349e015420df577001bdb24ee261a1d36309a06354811aec11 |
C:\Users\Admin\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
| MD5 | bac0475cecebde14c2b51aefbaa037dd |
| SHA1 | a4e7b23ea8d225c565f1e14ed00d5ca8894325b7 |
| SHA256 | 5ef17d7edad3facd5edaaf4b30096721565c457e6fafb75c2e6c20d08ba4f490 |
| SHA512 | 3b9a2999fa6c216dd6a93f1ebabdacbca37f4792f74445cd9546964c1dbafdc3b60bd8d4825b01827e1cb536fbfd2b488e546f28479d0314178d91aa573113ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 32d0b2257e8a44f1a11227a9d51cc1b9 |
| SHA1 | ef2e4e7c229f20d7738e50b3228d2da79a8aec88 |
| SHA256 | 3d78a4c6c2b8cda66ddfbd18a47a0c1ecb38ecd5108ea4afd935626914746a1e |
| SHA512 | db0190418e5c9a446e15b96e7132d365da3e708966bde59fa5dc77e79a97a5245532570a656f37e29fa49c0cf00dcb0296d10d599738fad587ea60599a57ce14 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 569cd4ce0f421209527f5a0b793a4be2 |
| SHA1 | 2b0301b469c57adf25dd821bc3d0869c918593ba |
| SHA256 | 2517b6f099d267290e32371d317848ff9f0a8f28d41fdc5cc7d31357eb43e1ef |
| SHA512 | ffb6551057eeb74c9eb9d3ce36d40ff2cd9515187bd8f727167b77469d3f66722472945bf5a8d8b6ad3eb523feb74eed9ae7c6879618a2bb1b34e4f388132579 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d4e42841c261fb5d32f64d77a02621d6 |
| SHA1 | ce246cad88aa8970cf4b99b5102285ebd109e90f |
| SHA256 | 8af4b5e7e3372132c125ac298b89adcc9a50804b705e0964cdd1da390497faf7 |
| SHA512 | 6a33cb1ef83975ac7b465889a40b138263e6fb2c2082cf8dc503343b6edad675a506adcfee811e7f6ed83f38e50035c007c330b874a2fde270132a2cd9dfb6b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\dbe6acac-7147-4873-9830-ad43881801e2.tmp
| MD5 | 3757ef3b337550e7c3660fa8e03cda5a |
| SHA1 | 3c5eb0985c3043193f5f01b5dcfea83354ca7171 |
| SHA256 | 0b9325785e1202d35de715a2585f3dd4d93f65264ba383c2cc03f582fc55d2c6 |
| SHA512 | 41b1996436d3c025431681005dad0a701b7bfea262262643ba822e5056c6a824b6ff5defc179a0efc014605ded875926a00d8c49aa32db0028c9b23b10fe2b5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000111
| MD5 | 8bba2516f31ec7f2e08927289e212d9b |
| SHA1 | 78f03abef41b96a1d2fcb43bda9a39f527697ca8 |
| SHA256 | 76710d555c8b489f86d7931f78791513b8ed2e67a236040e121a717ff987916a |
| SHA512 | 0eee53a780c73884d83d672e51c848dd14848848e6eac6f956e27987c7af3b36ecf34e61403e15692b5c535bd3fcb7a13b818093dac0d601f00f478ee69391e0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000115
| MD5 | d19f357145a2ee96291ea0f34504aa36 |
| SHA1 | 26ffce889eacbee5c4e96fd8b61c2ebd84cd1730 |
| SHA256 | f085d23e60e753705381c1861cb512e90305651e4107b9a3db6529367e7ccce6 |
| SHA512 | 25987b8c3d8c56b26039c6f1e46eba6161739c93b81434822b0c85282310b63387e9c2f9af5de6dd7812ddf1eaf1491b10467c8fb1f1c285783ffac2f3496efc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000113
| MD5 | 20e84051d7b8c097a4c7f732f1b7cf75 |
| SHA1 | fca1bc9a1bebe2546b785ac5d5b98506ed7d1a68 |
| SHA256 | c7be541f2287088ef1849c284f3d83695474bf9811f1f062621f78bb5e07361e |
| SHA512 | 883de352f9783c327c6a996c556c6c2be806ecc53c5059f56c2fc1ab351ed5319bef7cc14f894a9a3fe3584fccc72d945e2533a61f925e80c3ad6bf2b8f8b957 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000117
| MD5 | 4d1cfbade9765314d6a5ba13ba24e491 |
| SHA1 | 92aae720f91964839eb4baed8c8b72666e9a8027 |
| SHA256 | 8ba23d481d4b5a94379950640ba928c297c731c84dfb32f20c73e750670c6e01 |
| SHA512 | 2113a63b67e07ba8aa6856cf9eec35ce53bd9cc4994a364f85ccfbeeb44e0043278cc4db2b5446960fd209a7c10250dca8d04d265e3a8c65807e13834a37f391 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00011b
| MD5 | 68d17b261d94d13c812fcaf75f673ac2 |
| SHA1 | adf25f6cbd405f592adbce0a97b827101c2af0ce |
| SHA256 | 328a870944b1fdcd68375a2ec5f01dec0c9a1620ff0d2d375cb90dd8777fc9ed |
| SHA512 | 2ea653a9db82bc0a8ad11797a07009da8b22167e36fec83fbae8eb895a1cf3118a899d9ae3f61e87324d398b79cd2432ef66016f5de9636de5e69ab5d459367a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old
| MD5 | bfad2713ec021eef3c2c15e8ead5fcbd |
| SHA1 | c864efc410e93374197a8afd06758c45b00c10a1 |
| SHA256 | 06a6acb7391dc04a7df2285876bc7bc37f529e4ddbed3bbd2bf6b3e31477ea93 |
| SHA512 | 854c613a52381a9c655eff052dbf970bec55289ddda6a1274d3aa43abcdc6d82812d817884176cf629ea1fc82dc2de0f1b62468d88f37782a12a2f26a28edad5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old~RFe5f68a6.TMP
| MD5 | 6b2b4ea969fc97a1ee10affd956352c4 |
| SHA1 | c62ff44638d7b52cbaa483ddfe41073d850e6cf1 |
| SHA256 | 3b7176a8cc8bd71486a8bc697b2ab46573ff986d59799beca350f4a28e508558 |
| SHA512 | bef8b49adf4d81fd70807f94f20c71a16bd9ac71b91b50e04a55a0e5580611622adb67bb0ce28f5d76bf11c4bea7409f0b34042ed335e032a48e6ad41afb0a3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | a008086a0d3339951b588425e2efcbe6 |
| SHA1 | 3cd6a1bb161f6b422e222fe0586829fc74b8d97a |
| SHA256 | 095d2b1352d1324657ffd583b2b22af16c907deca5acc310885eeff7483fc3b2 |
| SHA512 | 990b98d36d738f203dd4908b2bff1d8a8d160a9bf5d52efd5dc5a1b740e72400ce5e8436a1bbc89a16ba46b9d028826953ec0b61c91161920a90257c30e74747 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00012c
| MD5 | ce1093c800c0933d7c9674eda75790d8 |
| SHA1 | 371c2dcde092f51b18852e2617bc6c0c176f5873 |
| SHA256 | 57781a723db9a2483067bcbc89d1f30f7e2f22ae2d18aab1e45ad894d8cdab89 |
| SHA512 | fdbb31c607cc9a4bd75c42cbc552fb40d82e53804d156244ed2daa124c75e1680b908589f7a3ad8888b9b03ebfd1f4b3e83e19f84e3a746cf210d0b8a1678533 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 70228a4f6a3a1ba6fcda8eac09e80f84 |
| SHA1 | a7f41a82e03ad7c281023c8f37da627e289a4713 |
| SHA256 | cb611baf7740a28f13f7c1e6760d1ebd9637b3974393ed6bf610cd8d0408d7cf |
| SHA512 | 98116d88a2ba175b37778db7ec8498b1f16de853d61e719ec3800d217297fd49df0c9b902cc51d8ff69b39e198ca2797c199572c7b0996d173085cbacfc7d4cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 82ae45212bf322de10f539a0a6989535 |
| SHA1 | 7ad9fecb9803583822e8c5ffc8dc34d27e6dde18 |
| SHA256 | 00c1a9a42e1c096ef033e4940ed64c0fa7e9ece00c8e811ebd1b3e49f927d90a |
| SHA512 | 13dc58a8d67d70fe70d4aacf187e10543152cc4bcdcd25f020eaf118020194fba5801bd1d652fa72e4efad692d0803685949647d4c4514459405ec1633f790d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000139
| MD5 | 27c685aefc29a8c63c8312d32ac1fb44 |
| SHA1 | 60a4b1c0786abce62d7daa26cb28f63315984a85 |
| SHA256 | deb4745b0bb541d392ad8d81794933ef63313aebe9828288a2404a14092eea27 |
| SHA512 | b589e0e7fdcc6b6424b04d0b33a5d163f52cac7cea60cc535e64cddd37cb6af05c11afa2df57630f79fe793b27493e29c5ee9ea80b0e627363706f58a41867f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 677f42b7bcc9a5582094f212f95e82d0 |
| SHA1 | 90a525d92b7406ba2c23f7f28c569c57cb90038c |
| SHA256 | 9b4060b3f5d1cf555a492df30b63454079263acaae617d2e36200fa2f429b50b |
| SHA512 | 24190da54d64cd6115e248a8625153601a7c28a00a2a2bbbc7891f648c6343493424a809a57b6d4595d9a51ef530c8faafc42633fc877ae21320a6a516865e98 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 7e43daff66e3e2f8d8dc345b77a27f9f |
| SHA1 | b15700dc5f1baa72cedb6a9bcb6d3462556c5210 |
| SHA256 | 6a622d83cd7219d68a881f4348747eef288040924e947f2ed4ec5232bee39fc3 |
| SHA512 | 2197e7375a07e02d3b04d10dff6992fd259b058a08ac439df3f4a31d58b1929fbc98b1f6243f26127936b620580815871c670fd33ca577f8434a2b06f53f70d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | aca3ca474eebae95e97da961717a9925 |
| SHA1 | 659550cf22e08ac200030175dbb0978bb54ed621 |
| SHA256 | 0e5a23df17974d993bffbde905921a3b02bc3ef0ce2d1739ef585f89558cb5a4 |
| SHA512 | 0385cbbd91bbb5d7708363adcefed10d971b8896403c4968f60a30bd001fa6749e7fd6122808f85a416d5efc5b4a1ebc58ac439a80769e6c50c5aed00cdf4dd5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4bea6f08601e9fe49638700c268df2cf |
| SHA1 | ecc9b71df2ef30149464d2bc93af6312c728701c |
| SHA256 | ca30f07d916090614fdf73d42863efe279ce436e15abdd0d515f0f955efd1bb6 |
| SHA512 | 9c2e5ee03613922a13b75f6ff5b3fb19205f3b1ec920d535a79e64f2d19c240f4e0e0886216b3816ab43c66deb9e96b8f7fcc51e46561506cd83a4f57aa2ddf9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 452933ffa40d7502181a904d437ac177 |
| SHA1 | c7274f39ec8134c721eaa2db25488c31f9ff7cca |
| SHA256 | e10e66a6b1a14e20214212d222b98448da2929ff8d0ae5ac71f8c53f4e829d42 |
| SHA512 | ea4b72721624325ad2f08a2276ad5c4e654b52e1c4aee144ab2fc8df13c2b8403e724d250a2083f557e34c0c04df5b66642dc5d152788aea9839eaa9f8353e9c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f01c04d2b88bffee3251222ebcc5a05f |
| SHA1 | ee4131a8032f87ef52a313ee78df67fe7cdd0eb6 |
| SHA256 | 8aacb6def5bc584277146979130976f4634e9effa7f7c97c590076f9b8bb2f3e |
| SHA512 | e6eb2348d827b7e2f191353cf0a38a8ed7b5782737c40608e6db56fd5844ddc3fd8f6d65bf3e8f4b03f3f4431eb5d8c95a74be69dba7bf56cb84d36721e89426 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 5a9f963cf867e264ae620b094e879643 |
| SHA1 | c04ab14efdc4c1d82419904708927d931bad11fb |
| SHA256 | e3e339568fadad462ed169353fb94118946a8e2ded3164e0b8eed1f8a9b390d7 |
| SHA512 | 86786d3531f9a03b6ce7c25acc94934105ce4ac87e78dfdbb179fa91dbde57d12825ac4e3e29d37f982549f0fba759859eb949ffbe06d0e6533937e25e35b0b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 47c68184e3a8bd29fb0036c8f94652c5 |
| SHA1 | 7fbfb2308bd4cf5df87672a164340d819eb0dd08 |
| SHA256 | 743655d2a2723d4d48af966a3df1934c6f6fe5e2328a881b43ba6feccf5a1187 |
| SHA512 | d7fd9ee49563a565b8aa62b9463b2640b780b28a1c210ff3802a044d27a21aa5ff705832d21e603b6ffe82972f4cec13058f9e6a9644529bc9ce4624d0854f53 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fc3dfec0b4020edf887475931da13102 |
| SHA1 | 6b8872b71d9a91c3145d68f4e59f8cba439f9323 |
| SHA256 | bb8b381856fcf9b88b057d3e2215751766e4f06b04e3c9017d0a476b92244621 |
| SHA512 | bb7acdd2d32b18d59a69fb8c1804e83ca9fc6f12e9895da2625477abfab153af2cd78d28e57f815b67c04553249005f8e4c86dadcb925661c711db2babc72891 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 44359b497bdf63f06fb05bc0a83838d2 |
| SHA1 | 3cabaa6dc5c37e8b73aad7fdc8f5524aabe74572 |
| SHA256 | 2f9a513bf1cb43e1d4d2d1f7b859e18bfb11093e6f586a8ef933301618c98984 |
| SHA512 | 45ed4a3503794a6b7085d0afa58da731595eea147d09398dc5574fc35e94b83b5171371ff8fa89640ade93c4403255afea001095f65969123ed051a1ce2e916c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d06d80f51bac3b980c30d3af7c13b069 |
| SHA1 | 685451da9d1cc471b439b25216eeb114ee916f3c |
| SHA256 | 37278227907d18d9f6699cdb662be88a8f81d94c543f73d3463eb6414ffcc245 |
| SHA512 | 298e67be2e923779835be4857924796f9e203ad04e2da672c868328ae8f3592a926108b6ee6c5936f0f2eafcfc71e5c3c715a6e56fa952406f7bfa0ffd64b261 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9d3e173923302d5c741e3d2ae00d445b |
| SHA1 | 936eb23294c9a83a0f5f16f244c9ee21eec73bae |
| SHA256 | 9242f4161f9811ff7ba2933d0c3b2b6f14bbdde454454b05f4076a8a0425d7b4 |
| SHA512 | c964e4da9aa0fb517b0fbc0e8865703107b54a009e99443568de31c212e0ee8efe4655777fe21820a17d12948f006a5b3c818168895aca2e34b1b3e17d7541d3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d8d51d7c4b91b58a148fa764dbfe8c07 |
| SHA1 | 337f867fd4e86641c1648cbfb43ad3ba907b9a1e |
| SHA256 | b474f4362ec41a8aea9b63edca31a6c8dcfe6ccacff57ed4940a9ed4aca5f0a1 |
| SHA512 | 271f1443a89feaaf2e2dca77f2bef22e66ee9d685281f88db17f293351d2f39e2e490ca8e31a45aa80bd5ccd3a832b31ca4120d4c3de58ec80610d5ca5b9751f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 26a6c4893bcce44bb1ff433b5580114e |
| SHA1 | b8f96388a182498c06cd405c535edcd11a731b17 |
| SHA256 | d263d68aaa59dc5a8bf72a04f804c0b7b1aaae442cba03b6ad93a42d593fa7f6 |
| SHA512 | f0ced2bad9ab22ca3a1095bc28a3894bef9acaed11f7cd6eca5a491d377f83f7b2e1fb9c82d2222f6730f9760bf88eefd5dfe6ef3294697557d27ef5023491fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7afb5884ce3adc493eaddad8a08d8f11 |
| SHA1 | 14f7f81bf192e5861b08b7d3e00070fb1624eead |
| SHA256 | e88edff5b8fcf44e79e043661049e29dab6715f3b7bc05e6704921d458f95501 |
| SHA512 | 48498208b6ecc171e1dc045c66ae0c9f5d65f3c721b0b7d8741d2450554ac17ffb91b20d1726266880689f11827dfb4d5505e34786335402dd3349513446c55e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9d66e761051f387638eee428c78b8533 |
| SHA1 | 9c4dc6e402ba8601290e387383c4e4d5b8e950cc |
| SHA256 | 4396c3704787d1e55ccbe43cdb736de0c2287c8773e4dfdd254361ebfdf5bfdd |
| SHA512 | 91ded16972f78cb787cbcac787a0c41efab30608ae6eb3a3b0129df3e699af6639d7368fcb0b0779ede796c563ef6e032ec2f88c994be7629c8cb5d941bb6717 |
C:\Users\Admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TempState\SearchHoverUnifiedTileModelCache.dat
| MD5 | 19192645b4dbe46e9e73f5fb2ce55131 |
| SHA1 | 73bbe89003c8680a03d104dd618f852ffe4e3699 |
| SHA256 | 161f68f405a623dce8db73438a4c8a49f84dac12e58e2366a34a0ff32bfc286e |
| SHA512 | 779bad15b9477b1402daf77b05928066ba528fece8cfd6c001e6e500f6c978c9eaa3ef5bafc9fe7f5ef9649814d3c958d4db447fede4f226789001cbbb2d844e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 810d153c9d20421b7c690ab7042a7250 |
| SHA1 | 2dac1c91cf836f705067757f6fc063f860528912 |
| SHA256 | 765c73567da28ae4f84900edf6025e041a126eb54316bf07d236e1f3b4540059 |
| SHA512 | 5592722bcf1a7e11339ecc3755407881d0c35eac688a57146e1cf2a5a11575537bfcd8cac38ce804da92293456c427c8074edfe4f5da69f0943c1771034e2d23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 57ad77a1e2a2c761b6ca65d1eaaeb8ac |
| SHA1 | 56d26f0c47cadb8a18ccd1e25411b1d896db83a4 |
| SHA256 | 84b24bf9e22708b95304348959157b14d25d5337da3dc6b2f4b17b118b25b644 |
| SHA512 | 9c8281ba4336404e1727db7bea91ad375d523508673aaf2f40212f44cefd095353272cd950b7c950c74605171d99a2d0c66d0d2c1ac8eb7cf7f5dc25d38f074e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bc21d9d0942cea469b03af070ae70a46 |
| SHA1 | 83acb0b0e3cd2b87b78dfe956237e68b0acc09dd |
| SHA256 | 6b830ebd62fdd4c1da052aa48ad38713ff48485bc17a7b7b95a9716af903ccba |
| SHA512 | 9598b2ddcc0364d7ea07706e26e05021fb843f75f223731d741c1b99196d9c4b1a9918ac2842dc8905babd7b4d5575e3174512c02d90f2862f7474615a6b71f7 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.187.39\MicrosoftEdgeUpdateSetup_X86_1.3.187.39.exe
| MD5 | 1f744e1c802560affe8b308640b6ab67 |
| SHA1 | bbfecefdf891c11d573760d4dabdf86091463421 |
| SHA256 | fa7d8a8cae60ab620d2aa887de62039d2647e4f5c1c649d75f0f52e14ec11a99 |
| SHA512 | 780440aa518397e52bb429b5a8e7697bf0096db0fe343cd40a541b60f34ad4976ef7fc2204737d296a8c1fbed2951496503dc50158d6455617c67483f87f3015 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 701cc451cce89e6b0e3112ae9c872130 |
| SHA1 | a65d044dd9470cebaebbc3987cdd45a370c592c6 |
| SHA256 | a5c611fd190163f875fc4a863cb10fb668e305a51d94aab81460d91275f5ee7f |
| SHA512 | 6e2a79e82f5472f59be275bb49bd0bca0cf933a944429f6ac85e75324ec40e84b7b5e00788ea18569829d8dbaee76108e0184755087db0b2e53743b9fa7174b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c18edbe34dbf516cec3105bd1bfe58bd |
| SHA1 | 76f51f4dc022fc1489f523a721a69b8e47ad2270 |
| SHA256 | 7336ffe623b7d09227b5d801124e90500a90f1413e8d7a2e0b309ad351876901 |
| SHA512 | 80d6925a1e1eba9cf170095a88181f64f5304e3a60fe05240474ac7ddcf92e9188c1400c89602d821745f969efdbb91f0886bd21312745c50e89c9710135bf96 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e094b838d140f75323344c73e91bf19b |
| SHA1 | c10197c99d29bfff1023167e9d29610833e5fe21 |
| SHA256 | 99a5aad911a1f853e04a680c64252d0d6029057151fa90122541ec19443f8934 |
| SHA512 | 38257216c826a1d7091caae75cafb2a94e551d3b0dc88486bcd4436018562230bb29d7f44a51adf54972d11d0bcdf3268a7c1fff3f283e6fb416194f2eeda1db |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4bde7b7c3b72c228faf38643836058bf |
| SHA1 | 0536ba286c4bee6e9fa130d53807a961b24eef92 |
| SHA256 | e2a4160710ca5c66b867c3e1c54da3c12d25aaeb0c96c6b9271ae9dd582891ca |
| SHA512 | 18f7fab86e10a6629f5139e9d582089365b0994af69028744f0e7216353d22d767235f31b5f1cc977aca6acf5a759a9b7b7448835e3a95efc303257a7566e4fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 26defdc2b1066ec3b81eb6aef3aa7835 |
| SHA1 | 60779b03357a5ef39f6d06b9114b28b348c201b1 |
| SHA256 | 1975ac1a79f853ad9f707384d24a222931010e0e42f8e9e8f26c0257a81aa595 |
| SHA512 | 0f487afe726f506b3735fdb570b99164a8565f103f0aa1fe02a62e7f209864fcf98f5cb1982f4092660be06ea77a1e6d35fcb9751cae4d4426cd2be2b1eb87b6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3ed5ad426e0ac023c18a91d26f57ef40 |
| SHA1 | eb5feb3a5ed0810d8e17a12ec2c04bb6af72fe08 |
| SHA256 | 76132a392305718f62bb24e42a449546c0d0adf1e96bf910d3a25944c2e45cfa |
| SHA512 | 2f9991c83a9d48e08c92dc3652f6670dc51459b77fc9907e13490a5b7e9d84e26ec6d4fdd7a6b96926d6fc92208fabb1e013ca9ef35015d621003a703cef5612 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 878cbbd8992a7ffd85d6535045ca99d1 |
| SHA1 | d7ec41936feaf2477ae4cbf0309093764adf9423 |
| SHA256 | 16b5ca7edf5671e1e475ef7e0f4b5af0f4176463e50226f45794028d9d80125e |
| SHA512 | 68405bc9432753180fafeca7e9bfc56cb83d19da87776a9e2ec391f87c945e85f4cf1e32b6130924bc9dc4705ad851aa85b24bebcac06ad06e9d0639a7f55672 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9a0db27560cb29f83ace8d7a68edd965 |
| SHA1 | c0af2962f15a0fe1180b3eff9ad42de8e084a992 |
| SHA256 | 7c5877978b74a5f6e2cf44bd1bb065af38973a783a1f9d11fdfadf878a7226ba |
| SHA512 | 99413b8e713af133c1422b37cd6dcf7f69c8fcb4a44547af4383d4d9545c8baab22681ce47e6501a523bede5fb6302731a20c35f7ab4a77a53f8dad0363a06fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 60ade74f7a5f10b5c023512eb594dde0 |
| SHA1 | 4852cb681f9dcc1f54f3c7bf2305e1f87793faa5 |
| SHA256 | ee1e776cdbda5ce3c7fce066eb0d8a4ca6eeb0331d0ed4737d9bfd2f361957a7 |
| SHA512 | ff70c041f6518e0e7a8a2a63b4a1d24d734d85875104a89c1f9d558764c0765b3ed8171bf8100bb8343d6504eb3a9332f3e0d3ef0bdc8a85c8fb3819c2643fcf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fcd12d690b13fe056348285ce59ce9ab |
| SHA1 | 6757f0664a02265bed5da27f2bd3e2547a403465 |
| SHA256 | 6f0c1425817980b939485bece648357d449171fecd766aef9a14e9da15a42653 |
| SHA512 | bbdeb263227e8a21a66afd10c13dd647fb95d596d8c14cb45d0f65aa1835f753c71786faffbea942e1a6039240ac863f715b6a05ef4700e98dd3902459e6f8cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 70a8c2a4256c9493186de1244802cc28 |
| SHA1 | bc8f36d070643ef29776ebb3a5977df86a4d8c5f |
| SHA256 | c7f87154daac1eaf01385f16244a252455e8f30a429e4929be8f8a127e75a4d6 |
| SHA512 | 5a5c3da7d5b4614336173c6d200be0eae125a9a00205001653cb73454b4dc51ca5f42e0b6eebd84c8d8c4c91249820856828a1163eec3005b5791a2fea0fafb8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 76fd9d44c44ba0c5a3320e30c7522222 |
| SHA1 | 1dd16a89c55bd71edaf97fe7943fce627dae9419 |
| SHA256 | 69bc9f4ad30b889b15d1bed6ac11d6d569a5a6eeff7dc7234f64a4c6a24eb592 |
| SHA512 | 676490fb57ff6f9493f8251f8aa1ea18ba5a0a7a44a663057b3bfa9ed6451da9ee77e65e3592457889c7c6b83b59aac428c7965d4528a1403d14e531b2c69093 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 85ef602840aa3ed54a242ef0c7e7e43f |
| SHA1 | c0c6e433c3213fd218616e89f005c1a5749313cd |
| SHA256 | 6cd71ff69f29586d1194fda7ec2bc4ace894ce3819aa96be5bc8d92317550252 |
| SHA512 | d97acb69a41af2276dc959bc206f546ff18af85482dd8157c9977e1591353bdc599f3c46308ac39c398e30c63cc40442d9f2dd14d7012c005d74129b90b065ec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8bffcf0c9a2515fdf4df70153c26b18f |
| SHA1 | 134d84daf5b4077bc327538f15c91f28d9f5c406 |
| SHA256 | 26e21a15acff8595b1d2ff14519045d0071016993e45bf645536102b6048d996 |
| SHA512 | 93e8b7a94a4343f4ffb6faba37c3a5d9cdf7a479b545f2950d623ccc054d1379b32d7ab456bdb79f371cc5bd0aeeef0e62a47ac01e141927e139d7514f889824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 07299c15a968828dcc72843acec57b13 |
| SHA1 | 42119e951b2c629ab13fc6dde76ed2d6083dc354 |
| SHA256 | 2dacb175e3e4cfb4352076e9f536cfebdc78acf43e47659bd91408110e4bdec3 |
| SHA512 | 6552dd4bdbc275c5402f4b1cc11c1872ccee9d9747beabb5316a7cae72d3f22377ffcad84062377b6a5d5e64a7a4245df959de1f4b7985eaefa2d483c6ec6c27 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ec799bc31310dcb41efebf5bcf310136 |
| SHA1 | 102c34ef40152b278050840fdcc5b4283e09fe4f |
| SHA256 | 4641dbd4a84193ecb7875bb9075dd2db6a7c54466e4dc70b1a301a6f2ec5dbf2 |
| SHA512 | dce212dcea1b81897a4079b153165533b9c4ea26095001b74d9fe65f7f95e4f571c3f77a24fb2fbea224fbfcc24a2027790f815aedb997420d53fec7e37ea6f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 70859ad4836409df0e3b223b0a376d1f |
| SHA1 | c42e1691df4ffb6912eea1a8001d806fdeb61f4a |
| SHA256 | 6f5f06c93942c65f9edb946bd901cb6e0247e2757d7a5c1b16621bbf59809a21 |
| SHA512 | 5f425536610614ef2ff1b98f824356961aaee1cbab60188b38fcc4d2f9c0efa7f2b4fe715fc912978474198d20e136d38b54a030564f5c5bdffc339fc628ecbd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3381fc7f60b107fbd57874dbdcab5a0a |
| SHA1 | a273669c62e0ae7112ee2eb3f3855baeb279aa24 |
| SHA256 | cbd306da24fd4b2ab89d5ebf047e6b418a67fecfc077cd2e9529a92a0e26098e |
| SHA512 | 8610ff9d0873adade69818d5a98838dccb818d7cc4ff978dfbd42782c30b29fa0b2bc1b68ade2ee4279b7bb854c82b41d3fef876cc236f37cfc6e86193a67c89 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 84af20a4054b508c0dc6c1a1789ff1fc |
| SHA1 | 50e9dcc020cb9fbb0b321eb7f0b9439145dbf5ec |
| SHA256 | 31d47502e8d157cae423291438eb7ccbe259717eca838c0cb6aea7ec40c81857 |
| SHA512 | 0b1380cde7fba2ebbcb4b338d1386b3e8ce8a00f8abc36f9602a8dc052d8488a333d294de640b0e345ecdfc4af90395013d6be7c895967cd68f88fa3b71e8178 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 56bd7b1d4df46d25af56f63ea0f0774c |
| SHA1 | c13c3b3d8287049e941da94ee8d94f83cd356cbf |
| SHA256 | 7dcd40085bc8d85463c72eaa4c2c0d3489d511dac3b502afd2649e5d67c3d0cf |
| SHA512 | 99b0adfdf595024409b4c82cb77d449f0bb9cc5e966b32f5b8ad6ed01630653b4032cd2ca119ee09f41b8f97003b71ed0e3e91fdd9bbe7ba98b50da066015c10 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4e58f180002f0b273ce187cd8e82e59e |
| SHA1 | dad64dd22cd19dbc02879a4e37de0df34ee92f58 |
| SHA256 | 0ac128b62dbfd7ca020337eba3a097f4decb2418564a7a97fce27a8d3bf7c482 |
| SHA512 | 7fb2c7dd7973b8180c26e3b92bd658b957b86540bf4a5b59697111348b0f9a919f33b82701436b67497c478438e784d037d48df3a86c728e10ea00eb505972ea |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 43a553a3fff23cb32bb7cfbe4058b31c |
| SHA1 | 066b3e24eda187b545e1ace5680d43a62e67ab30 |
| SHA256 | c63809ef3608f10889cdd9ffa4e7cce0f69555232b1c667ae6eed19c8c51436a |
| SHA512 | 3fbbc766085293ad9abc2d6d30ae97d62b532c986a4a739c234ed8d4fbfe53b0a3ef4fe44d9e21dbde8b54d59dec1fa121e7bc61271c88492b08e63f9c6911af |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{1FAB8CFE-9860-415C-A6CA-AA7D12021940}\2.0.0.34\BGAUpdate.exe
| MD5 | 3f208f4e0dacb8661d7659d2a030f36e |
| SHA1 | 07fe69fd12637b63f6ae44e60fdf80e5e3e933ff |
| SHA256 | d3c12e642d4b032e2592c2ba6e0ed703a7e43fb424b7c3ab5b2e51b53d1d433b |
| SHA512 | 6c8fce43d04dd7e7f5c8bf275ba01e24a76531e89cc02f4b2f23ab2086f7cf70f485c4240c5ea41bf61cb7ceee471df7e7bdc1b17dfdd54c22e4b02ff4e14740 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bfdfbaadb3d7f95382a8e35e133fecd6 |
| SHA1 | b4e7dca962b3b2092f8331a08b7ca3b5d19650a7 |
| SHA256 | d49720ad855325b5945c8567ef07ba7e49b279a741c31700ce60a15d2c967ea4 |
| SHA512 | 274b3009aedbe54da99efb7d98ac6dbbeed8733a395db3cdf38cb14599bcf76a8e207b9e30b6aac2366cb883a556fc2b4212610e8a1daae0476b0eb8ad242e46 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ccfa4df54ff87153376c59045e4acf6f |
| SHA1 | 9f3a9f0f1c5c320fe46a2ed2649b81280994495e |
| SHA256 | 49265bd88981afb615a5f6f85191fa35b671323edf17653332d11d9d7686dc83 |
| SHA512 | 430f2348c117383c7c9ad086a71ac21c7a88ba96f5ae16c35d898acc6bc4c45bb5f7e278bb7e6f20cb78b3a6d1950d8e60165e514f022348f3f204385a62f821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e9d9a10a9f34ceb56c28ad1825495e0d |
| SHA1 | d80088101d044f7467093fabfb484881c3d4930d |
| SHA256 | e0d2312340baea71500b54996f2e3623de2ca10e78825d722753172e3d4e17d8 |
| SHA512 | 5a45bdd38a9403ef51de540d9bb6bc95771f4dcaf85ee47890106f32adbc44b31f7389751d9ec3c56f4e343cbfcd2813b97399335789cbbf661c97a3fae19085 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ab44e7a82fe5d72afc450366d2a48a36 |
| SHA1 | daa14c767e16331a008135a766912b94bf40c993 |
| SHA256 | fa4436cf48dd1937c08c2bd1e8c55b4bdb1c1a7cb3a3f2993030c1ff08ba915a |
| SHA512 | 0979ff756c443072b5d615f9c1895534f1ae45c0dbae43d56fe7d63a56280f5cd5827641aa9974b5c9bfe94ff28fe02baf6a5eb43fc58aac8538befac6dec209 |
C:\Program Files (x86)\Microsoft\EdgeCore\125.0.2535.79\Installer\setup.exe
| MD5 | 365eb1aab5e477760126569b7f72f85a |
| SHA1 | 06aa9c213c163b7716644314ea6d3997f882ab06 |
| SHA256 | 19dc1f8c7901ec057bfaf763d8354a07880ce6fa3093185c64b95d082f8055af |
| SHA512 | 0d34bc14ed5328f2ded1c48acc29872a2154db0c4c9072a098266a08c0d0b235705223f988e64e3fd418e9c62338560e33d7f3d9ae933f43da77763e88938888 |
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
| MD5 | f0b6dff5abddac0d1347ec7a08a2d4ca |
| SHA1 | 1ad1fcb19b3f7242fd023c9c63ae538beb892725 |
| SHA256 | 6c56ac43714bb3a5439bc99310087822205c4586ed0f6b168adee36b7a9d4329 |
| SHA512 | 7f94b2a2b4c5bb4bfea1d2bdacf86c2bc1c83a3702df1315fc8c6ec4d59d94e926f3f4d7a19f68e9877e7e1cfc973f889a199afbe0efef7533e7cebb4dbc1fd2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9e7d0c47e2594ecedeb4e5779d80d288 |
| SHA1 | ffacba5f81d513ed680da05d79efadf35247c108 |
| SHA256 | a3eb83db7a26558a2a32fb12e26e7ca43f18d6b4c8c3f7b99c2978ea998a222e |
| SHA512 | c36a834f8a40e23f50e13cb4e319530969527d0b02c037d89d8f2545a285ab23e2c046ddce7c7ae56b35146d1c9f5431d5cee92f2cd6f52cfc2bc7ba70ad1b02 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1aba634bffccdc3f5d7f2abb6cdd31ca |
| SHA1 | 18c0c0d4f922b28a0269e8a88aa5df52ab24ab22 |
| SHA256 | 6aee952f40416e08f3b136c519321abe0263e43b51e0557f6ba3e8f7361f7031 |
| SHA512 | 068b17dfdc06f18395c4a61f4b8ffa9108c9d9adfbd1db7c683f9eaabe92662acafad5e6ef77016b21f66fa0485052e2a702d0dc6d9d86ecfcc862b6445b1ac9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4facef6f1f7902cb99101752187ece43 |
| SHA1 | 2afe4c09c0052a33d68668fe51314ec005bee8db |
| SHA256 | 1185ba4d0a0159dccc5d67139bf1cb44467f2c74d0f452d4d358afdd61ec8c47 |
| SHA512 | 2ae5116362da9becb20404f8f72859e4d33ba400adf3772985048add496b51ccc01c33d9c4830e92edb9bb7c8a975ade591ade8520976b06ca3292335549249c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f079ae57360e499d45f1d612b35da7bc |
| SHA1 | fa3bdde95d2ce3444489d301a2c7177e0cab9659 |
| SHA256 | fb19686549956858e60f4b839d31e12f34fd2659c07a22f332fe5b1bb48e827d |
| SHA512 | 1f985c9d9d30903b571f83f4cb98fd55c078398937c750c3945250c934dafb0f9e8b96f8e274e963f97481e69a4f06f13492b132201559ce76e3ee004162b2fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e06bf3959945bd625f4854dee6c69782 |
| SHA1 | f20e40958f1bbc378bd9182ffaa8ad27b6459962 |
| SHA256 | 3be78613070f71a2e5f725c3509eea48db4f3bc1ec7661249b4bc769aaa39bea |
| SHA512 | 39b1b59f142da91d02c7b929376bc54ffd8da620492e408faaa3b36b2a885126d6aeed5a397ce8d4259645c0536e001efb2097a70eb41d4a176504d957cfa882 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7fe1e11a80b15d093dec867a7da985ce |
| SHA1 | 7cf7b9b7a79b879aa9abb56d344db60d5c063425 |
| SHA256 | 16c1aeece0bd5061d465a317d2f5d34174f7558e2eb3c0c12c5e379ae4e33986 |
| SHA512 | e3ef6e97d57ffab97113a8f4337bb0b60519c904ccc7aefc89d047979a64f5c88fbae500438f755f45ff346a340caf98a4339c5e7f9264b181f6a8e3fc93ee7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 968bfe4ff534f6e030d97776ac991803 |
| SHA1 | c0681979591a5a65d6e6af3ba8e536e125f35c9f |
| SHA256 | 6e2396383b177c1917ed4a434250b42b5306470f4348ce5a1b047a255ed87e31 |
| SHA512 | b2cf90da4d409d4ef7399436a8ff1795505c044c232c3202b267edc480a200670caad4ee242485223e29b2e6a20e8d025a1191184278b7d4e9f130c48d7609a5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0eb5e3c4f941f9bd7c24814ee7919d23 |
| SHA1 | 8634fb3dc7693ba8cab388a4cf27fdc52117d5a1 |
| SHA256 | 6dd6e6b3f270bf337a6fbda614fafa35b69c01c6cf969004248d31582933ff3f |
| SHA512 | 235cdea534bf4d452029f7651acbd64e217217c144234ae808d6540fd9e9d91f79e2675a05acf35ccad8094060a45c6deadb3fc77600546736e562a9afb04331 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 420157eec75b4bc47734f88f157bbca7 |
| SHA1 | 0441b7403df9c4e45899642e0051554d0c8f96ad |
| SHA256 | 6597a9d00c238190a654d3508353dbaa1280f9f934efecf49608e86aff4e1f7b |
| SHA512 | 761ceae2695c7e9013d1875e052e69ad364588081aa64ac8d5f78f89117ac88a8a675d88e330accfbdba5a72ba5bc09c6df09c53a3834a11556be42f144a3ab9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8d6aefbd318ba069a79bd16e585c0ee2 |
| SHA1 | f2e5edd82dd851822d2e2d8961b18ee8e6127eab |
| SHA256 | 2bf8ac02495b409f49ae135ff9050193cec0602a15f279b9fb46f0ef19fef604 |
| SHA512 | a19906da81cb1cffe6fb49d77ffb77a80a1d8394c6d60f3c48215deef4c4af102b53c477acbaae4f3b259e052b1fa96322e4c2244bf199ce17216dce7be5e2e3 |