Malware Analysis Report

2024-10-19 11:15

Sample ID 240904-ctbnkatckk
Target https://roblox.com.py/games/16935820783/Untitled-Trip-Game-in-development?privateServerLinkCode=04544092476091806493201039659132
Tags
discovery
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

Threat Level: Known bad

The file https://roblox.com.py/games/16935820783/Untitled-Trip-Game-in-development?privateServerLinkCode=04544092476091806493201039659132 was found to be: Known bad.

Malicious Activity Summary

discovery

Drops file in System32 directory

Browser Information Discovery

Modifies registry class

Suspicious use of AdjustPrivilegeToken

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Modifies data under HKEY_USERS

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Enumerates system info in registry

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-09-04 02:21

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-09-04 02:21

Reported

2024-09-04 02:27

Platform

win10v2004-20240802-en

Max time kernel

251s

Max time network

253s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://roblox.com.py/games/16935820783/Untitled-Trip-Game-in-development?privateServerLinkCode=04544092476091806493201039659132

Signatures

Drops file in System32 directory

Description Indicator Process Target
File created C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File created \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133698902119994030" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" C:\Windows\system32\LogonUI.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "237" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" C:\Windows\system32\LogonUI.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2392887640-1187051047-2909758433-1000\{1EBDC5D9-E8B9-4051-BAB1-D4605B9FD09E} C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Windows\system32\LogonUI.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2284 wrote to memory of 3864 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 3864 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 1180 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2668 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 2668 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2284 wrote to memory of 4784 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://roblox.com.py/games/16935820783/Untitled-Trip-Game-in-development?privateServerLinkCode=04544092476091806493201039659132

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffd70fccc40,0x7ffd70fccc4c,0x7ffd70fccc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1936,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1932 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2164,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2196 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2264,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2456 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3140,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3176 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3168,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3208 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4676,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4544 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=3708,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3144 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=5088,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4828 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5172,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5164 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5192,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5204 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=3160,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5032 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4936,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6004 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3180,i,11953126496299329016,5322985292592058981,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3296 /prefetch:1

C:\Windows\system32\LogonUI.exe

"LogonUI.exe" /flags:0x4 /state0:0xa3945855 /state1:0x41c64e6d

Network

Country Destination Domain Proto
US 8.8.8.8:53 roblox.com.py udp
US 8.8.8.8:53 154.239.44.20.in-addr.arpa udp
US 8.8.8.8:53 73.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 75.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
US 8.8.8.8:53 99.158.208.185.in-addr.arpa udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
GB 2.18.190.81:443 js.rbxcdn.com tcp
DE 108.138.7.95:443 static.rbxcdn.com tcp
DE 108.138.7.95:443 static.rbxcdn.com tcp
DE 108.138.7.95:443 static.rbxcdn.com tcp
US 8.8.8.8:53 95.7.138.108.in-addr.arpa udp
US 8.8.8.8:53 roblox.com udp
NL 128.116.21.3:443 roblox.com tcp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 ssl.google-analytics.com udp
NL 185.208.158.99:443 roblox.com.py tcp
US 8.8.8.8:53 images.rbxcdn.com udp
DE 18.245.60.3:443 roblox-api.arkoselabs.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 142.250.187.232:443 ssl.google-analytics.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
US 8.8.8.8:53 80.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 81.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 8.169.217.172.in-addr.arpa udp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
DE 18.245.60.3:443 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 3.21.116.128.in-addr.arpa udp
US 8.8.8.8:53 75.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 232.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.60.245.18.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 128.116.119.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 4.119.116.128.in-addr.arpa udp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 ncs.roblox.com udp
GB 128.116.119.4:443 ncs.roblox.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 tr.rbxcdn.com udp
GB 23.73.139.17:443 tr.rbxcdn.com tcp
GB 23.73.139.17:443 tr.rbxcdn.com tcp
GB 23.73.139.17:443 tr.rbxcdn.com tcp
GB 23.73.139.17:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 t6.rbxcdn.com udp
DE 13.35.58.54:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 17.139.73.23.in-addr.arpa udp
DE 13.35.58.54:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 54.58.35.13.in-addr.arpa udp
US 8.8.8.8:53 www.roblox.com udp
GB 128.116.119.4:443 www.roblox.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
DE 108.138.7.95:443 static.rbxcdn.com tcp
US 8.8.8.8:53 js.rbxcdn.com udp
GB 2.18.190.78:443 js.rbxcdn.com tcp
GB 2.18.190.78:443 js.rbxcdn.com tcp
GB 2.18.190.78:443 js.rbxcdn.com tcp
GB 2.18.190.78:443 js.rbxcdn.com tcp
GB 2.18.190.78:443 js.rbxcdn.com tcp
GB 2.18.190.78:443 js.rbxcdn.com tcp
US 8.8.8.8:53 78.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 metrics.roblox.com udp
GB 128.116.119.3:443 roblox.com tcp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 157.123.68.40.in-addr.arpa udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 locale.roblox.com udp
GB 92.123.140.97:443 apis.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.75:443 images.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
US 8.8.8.8:53 auth.roblox.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
GB 92.123.140.97:443 apis.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
GB 2.18.190.80:443 css.rbxcdn.com tcp
US 8.8.8.8:53 3.119.116.128.in-addr.arpa udp
US 8.8.8.8:53 171.39.242.20.in-addr.arpa udp
US 8.8.8.8:53 97.140.123.92.in-addr.arpa udp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
GB 128.116.119.4:443 auth.roblox.com tcp
US 8.8.8.8:53 65.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 81.144.22.2.in-addr.arpa udp
IE 52.111.236.23:443 tcp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 11.227.111.52.in-addr.arpa udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 assetgame.roblox.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
DE 18.245.60.3:443 roblox-api.arkoselabs.com tcp
DE 18.245.60.3:443 roblox-api.arkoselabs.com tcp
DE 18.245.60.3:443 roblox-api.arkoselabs.com udp
DE 18.245.60.3:443 roblox-api.arkoselabs.com tcp
US 8.8.8.8:53 18.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
GB 173.222.211.16:443 static.rbxcdn.com tcp
US 8.8.8.8:53 js.rbxcdn.com udp
GB 2.18.190.81:443 js.rbxcdn.com tcp
US 8.8.8.8:53 images.rbxcdn.com udp
GB 173.222.211.9:443 images.rbxcdn.com tcp
US 8.8.8.8:53 9.211.222.173.in-addr.arpa udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 realtime-signalr.roblox.com udp
US 8.8.8.8:53 thumbnails.roblox.com udp
US 8.8.8.8:53 accountsettings.roblox.com udp
US 8.8.8.8:53 economy.roblox.com udp
US 8.8.8.8:53 privatemessages.roblox.com udp
US 8.8.8.8:53 friends.roblox.com udp
US 8.8.8.8:53 trades.roblox.com udp
US 8.8.8.8:53 notifications.roblox.com udp
US 8.8.8.8:53 contacts.roblox.com udp
US 8.8.8.8:53 tr.rbxcdn.com udp
GB 173.222.211.16:443 static.rbxcdn.com tcp
GB 23.73.139.26:443 tr.rbxcdn.com tcp
US 8.8.8.8:53 presence.roblox.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.200.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 26.139.73.23.in-addr.arpa udp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 lms.roblox.com udp
US 8.8.8.8:53 usermoderation.roblox.com udp
US 8.8.8.8:53 cdg1-128-116-122-3.roblox.com udp
US 8.8.8.8:53 dfw2-128-116-95-3.roblox.com udp
US 8.8.8.8:53 aws-eu-west-2b-lms.rbx.com udp
US 8.8.8.8:53 fra4-128-116-44-3.roblox.com udp
US 8.8.8.8:53 fra2-128-116-123-3.roblox.com udp
US 8.8.8.8:53 syd1-128-116-51-3.roblox.com udp
US 8.8.8.8:53 aws-us-east-1a-lms.rbx.com udp
US 8.8.8.8:53 iad4-128-116-102-3.roblox.com udp
US 8.8.8.8:53 gold.roblox.com udp
US 8.8.8.8:53 ord2-128-116-101-3.roblox.com udp
US 8.8.8.8:53 cs.ns1p.net udp
FR 128.116.122.3:443 gold.roblox.com tcp
US 128.116.95.3:443 dfw2-128-116-95-3.roblox.com tcp
GB 18.169.126.21:443 aws-eu-west-2b-lms.rbx.com tcp
US 128.116.102.3:443 iad4-128-116-102-3.roblox.com tcp
DE 128.116.123.3:443 fra2-128-116-123-3.roblox.com tcp
US 34.234.9.163:443 aws-us-east-1a-lms.rbx.com tcp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
DE 128.116.44.3:443 fra4-128-116-44-3.roblox.com tcp
US 128.116.101.3:443 ord2-128-116-101-3.roblox.com tcp
FR 128.116.122.3:443 gold.roblox.com tcp
DE 52.28.200.141:443 cs.ns1p.net tcp
US 8.8.8.8:53 s.ns1p.net udp
AU 128.116.51.3:443 syd1-128-116-51-3.roblox.com tcp
DE 52.28.200.141:443 s.ns1p.net tcp
US 8.8.8.8:53 21.126.169.18.in-addr.arpa udp
US 8.8.8.8:53 c0.rbxcdn.com udp
US 8.8.8.8:53 3.122.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.44.116.128.in-addr.arpa udp
US 8.8.8.8:53 141.200.28.52.in-addr.arpa udp
US 8.8.8.8:53 3.102.116.128.in-addr.arpa udp
US 8.8.8.8:53 163.9.234.34.in-addr.arpa udp
US 8.8.8.8:53 3.95.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.101.116.128.in-addr.arpa udp
GB 173.222.211.11:443 c0.rbxcdn.com tcp
DE 128.116.123.3:443 fra2-128-116-123-3.roblox.com tcp
US 8.8.8.8:53 t3.rbxcdn.com udp
DE 13.33.187.112:443 t3.rbxcdn.com tcp
US 128.116.102.3:443 iad4-128-116-102-3.roblox.com tcp
US 8.8.8.8:53 3.51.116.128.in-addr.arpa udp
US 8.8.8.8:53 11.211.222.173.in-addr.arpa udp
US 8.8.8.8:53 112.187.33.13.in-addr.arpa udp
US 8.8.8.8:53 b.ns1p.net udp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
NL 185.208.158.99:443 roblox.com.py tcp
GB 128.116.119.4:443 usermoderation.roblox.com tcp
US 8.8.8.8:53 roblox-api.arkoselabs.com udp
DE 18.245.60.46:443 roblox-api.arkoselabs.com udp
US 8.8.8.8:53 46.60.245.18.in-addr.arpa udp
GB 128.116.119.3:443 roblox.com tcp
US 8.8.8.8:53 games.roblox.com udp
US 8.8.8.8:53 followings.roblox.com udp
US 8.8.8.8:53 voice.roblox.com udp
US 8.8.8.8:53 badges.roblox.com udp
US 8.8.8.8:53 atl1-128-116-99-3.roblox.com udp
GB 173.222.211.11:443 c0.rbxcdn.com tcp
US 8.8.8.8:53 c0aws.rbxcdn.com udp
US 8.8.8.8:53 aws-us-east-2b-lms.rbx.com udp
US 8.8.8.8:53 lax4-128-116-63-3.roblox.com udp
US 8.8.8.8:53 mia4-128-116-45-3.roblox.com udp
US 8.8.8.8:53 sin4-128-116-50-3.roblox.com udp
US 128.116.99.3:443 atl1-128-116-99-3.roblox.com tcp
US 128.116.63.3:443 lax4-128-116-63-3.roblox.com tcp
US 3.23.68.170:443 aws-us-east-2b-lms.rbx.com tcp
US 128.116.45.3:443 mia4-128-116-45-3.roblox.com tcp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
DE 13.33.187.46:443 c0aws.rbxcdn.com tcp
US 8.8.8.8:53 t6.rbxcdn.com udp
SG 128.116.50.3:443 sin4-128-116-50-3.roblox.com tcp
GB 173.222.211.42:443 t6.rbxcdn.com tcp
US 8.8.8.8:53 46.187.33.13.in-addr.arpa udp
US 8.8.8.8:53 3.99.116.128.in-addr.arpa udp
US 8.8.8.8:53 170.68.23.3.in-addr.arpa udp
US 8.8.8.8:53 3.45.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.63.116.128.in-addr.arpa udp
US 8.8.8.8:53 3.50.116.128.in-addr.arpa udp
US 8.8.8.8:53 42.211.222.173.in-addr.arpa udp

Files

\??\pipe\crashpad_2284_BQLAQXLURRQMXERJ

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 c17a818990c6393ad923b01f6880fd3c
SHA1 bf1e74981a03327d529313418dc0f30635aa0b15
SHA256 9f6f23bd8700c0cf6d8776de7af349ca8468298cbda2ade3bc98de232f7c7bde
SHA512 93ee81e9a6120a5545701d76a498d95a4d20ad4d7a8bae679ade3e35446265d4906bbb9a14bc641fff276b52563128e859edcf6bc519896e0276da7bd94a6590

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 168dc8fdb647ac60e47ea022df5203cf
SHA1 92084e88230727799b52ab13bac545b12dc18643
SHA256 6df68b6d04dd4efd7369ae9522c785aaf051fcbb1468ce43dfebadf404efd57d
SHA512 759c998c9d8f32896cfe27f110d87abada000fa7629d0a30427d13a64c7407fbd278b131585d4bf9a81067eee53409b4b1972d4a4eb1d4840b111ecaa451d477

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f1045a9c3ca5af01253bf90e5adba41d
SHA1 94e8458b9045651a456e418f6b4c41ce52b219ac
SHA256 749aed5aebada95e059b10875378f975b8d26718dd8c338ad36465875a590b90
SHA512 ac2c4bcf991b5f58ba571da370b09060c3eaa9d9216108bda74cf9475f203f2fcbf697531650ff795dc198e17f4184e1f9adce20e3cea6845b8caa4507da745d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 db546c5f30590618bfdbdce9ac718bd6
SHA1 085bf111fb3862d75ac64986226064f24bd15aa4
SHA256 e6debc8c8d7e1b2014b7fc7a8644806994c951973db964aa99d2d93b50b68059
SHA512 567cffa5ccc3f4947f6c250f38ab69893eaf3091b6eeeb9b8e985f5eda293c432d4f49fecef9ef0c272d0d6a235607fe0f2bb7a562afda07c5be9410ba1ba782

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 45230196ccb9f4d68e3f1df4317f6641
SHA1 332dbcbb827440d280cbbca5d6dc717c02abd4b6
SHA256 d1499361995516ca2c0bb1a7ac9aa5d369931312fe7f13aa954a9698d39b7e1d
SHA512 9e74fc37ecda9a0460f5bc10aa5b0542e67595b225661db08a6898335ded0ed9d9c49b7201162d02384d07cf9109d7bb97b83b990ca7a8a6606222f7f6fdaf29

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bdc5e7322103418a8e6c3d00d86ac292
SHA1 8da3ed8863c0c7b790c037ef58475831881d1968
SHA256 173d8dae6fd7d203b68653fdae801ed170a1f140d3cef273dbfe29e6a87faca6
SHA512 6092b33cc892933777645fabdfb608e4762b4cc662128d1529a8e631ed43f10e0ed42a00b9ab087d040369a8999568c194d802a05d1f9a1718b3ca600a80ceaa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6bceae61e8d624c5daeb48f0efe153fb
SHA1 a6b417a9b25e1c9796f5ef9cdc727edd6b1cd79e
SHA256 02881d1d27b9c0ff716f25cbe1bd2c8a716f8fef88e403e6819f6dba5cde2434
SHA512 7f958c3d00d0e26c697f0f9529476874b33172e507a513b184d891965c8b8bd7aa3ca0c6afbe1a33128e120d07092d9da5d3d92a7e09825146967d45054b2c54

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 35cf762aeb818ae828bf37f581afdc6f
SHA1 8629a341ed726e5698a84986c86ee89e207cd8f2
SHA256 b38218478bb90fde8d17912cf9a74880de93aa0889cced899ffbf9e0f32d1c3d
SHA512 b67b326a1c926c69805ddbcd06b7a7034eb15c090fec1fccc8773b0efcd06b970e61e9e7eb3dfd09cbc0bdcae275336766706bb6d8446ac4d2c77f240817fb01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c4e2a0a0595a54d01404211289dffc23
SHA1 bc6781af312f787169c160bc9e12639f81afc554
SHA256 32f152548569e63a9940f03da7521ab52bc11c556ac727393b80b840f78ad512
SHA512 2b3c96a25099abbb1ca60393dc871f9bf6bc83daa7ff28e9fd3670ed7f6e0fe15bb542c6eb671f9c3544480cfd5999028a02ea8ce62e7065e6faf2795f007cf0

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 fca2588df4a45a1f6f00558136e6fa3c
SHA1 21210c6777717abd4dc418fc7a8a425231b72251
SHA256 412869e919b40184fd407b1ff01af7afea816e2ff9c52f741a2777cc7cbdc427
SHA512 11680297a227d0a169ca1a67ef51dbcbf4210ff28e8b7d5bcab262bbb4845492557788c32cfd2429403c1d2c420fdccf96a14fcefa637a7e7eb5a585dfaf3bd6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fcaa4fb8d1529d262b1f2b70ca8b9667
SHA1 aad6685391f1dd5caf629fce1e5bcd5ef49c0360
SHA256 8f48334d9578700a94f134018c9d3d915d34dbe698761044cf32004c01104184
SHA512 41c90ad57a604465151e067cfe721a239b2ee0c8c9dfa0efbe0aeb1389a63e31d3912d397b25100f540aebf05229836f8b3fa9ad44599f8aca5482ac26896a85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 579fdf844773cc5c994ea752908a760d
SHA1 319e8417fe3170c6e5181544ecf18c642e1c7915
SHA256 9aa11a1287acbd0d187a9474c04d541b207541416c64cec2f77cd284b749ab95
SHA512 d63a624828f86cde24c112d7b48e226ddba524b58e76bd38fef81a91fd8134535c6d9cece0d718698fc83250b34d1a104a657d6038a7110b0964ad0b1750969f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cdca5f0ae398fe877730137da3d4e8f9
SHA1 75adf9cc47dd036f84570c2f95f88a80811567f9
SHA256 2155316cb8d6bbfcb6a75dc877f0b7407b616dac4218857caefe52c1e9776c48
SHA512 c6e6c81f8e987382dabe5d964aa46bb3e5217cd00878a4dcf6a05f00c10537ca15376bef44d9f8cf9bb6ee6c2c00b4b8fd1528150dbcc860189775f564de55ba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b5e5d555ff68a053d636209110138030
SHA1 4e73240c2331a890251733d9e426b04d4d7bcda6
SHA256 eb76b5ba232be93834e648e03e4d786e170ca3fa4627f86fd76bd1c7212d7c48
SHA512 68a6d7de420e45cd2e78005592447ff0b97f18e252c379147cdc61669b801059f145fe47235284723ef71332bcbcc771e3fafa7636cda8f66c5b465fa4f1f96c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 0fb8fa4658a9dbe3773c0a05664cd77a
SHA1 5190948e885a70a09f0e137d3877fd2cca219bcc
SHA256 2b0c13944a1ff6232272392f9d558811e0a7858ab49553ea68b138a3114b5c66
SHA512 f1d97f0b330e438972dd5d06e21adbaf1d8b398c35ba3a2223acd4e7a51f4af3da7217a6b2763de8fe51dbfcccf3df5551e07aef91f919bd4dd592202459fe1d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 bd56463c78c2bdf6279939e5b23559dc
SHA1 9e25c5c502058d8948f674aac613f376347f3da3
SHA256 ec4d64e042d47c05e710f55dfddfb927ec1b4b23b549e3f2bfb1ca0c935d7256
SHA512 8586787705ebd804943876dc19bcd32bfc6092eaa2a9c6e0d240495270279c8def3881392d27f89252fde40358c390593afa56184333a3c4149b85e5e57ccb21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d55a45d960d86b735fcd3d535f5ceb60
SHA1 3676f0b254d1760ffd27586841dd8adb9272b758
SHA256 cfabac887ed134a01c84537d7a7e9dcc33a04f4cace67c7506b0f8ce49611dd1
SHA512 829f7ee0fa49d4973c51380e5df6c5997884dd916c3dc162c73d195e150414b09c02d88d0510c70850b44263ab3ce7f1036584ec8e3b715d82609f1aec500723

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 514d8bc95e3608c169a5998a51e5bae6
SHA1 8d80f4a5f23666f452cc6ed6c6c01e48613324b8
SHA256 783e1fe89d187a58dc2e07f46cf826b3b6473d4129ac10c67aa99d97a757e0ee
SHA512 1514cb231f55eb38f73985e8eb6f966b49043f807251630069e5d1f0ad5b0da4855d22c37055740fb29c8fb6e838d81d97036bb1bc5230c4c32a9c2d95b5ab9b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 42550fd16630b75be16905eccae00994
SHA1 b52b40e9064da75057cf65a714512f5bdc8c8b72
SHA256 ce4b1c17bb12e8b85f077042a0a99df9ec1db4230ab36baa1df9ab1a28c239f6
SHA512 f822cc9363f3de49befe77112129e5941c9cbc766268b3fe31e5ce327b67f54364da73e44c72c6d8626eeee821aac450a51f0cd8b08a7c48890a4f1f4653adb3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 464f0199481a85e9c30ddde4f275f618
SHA1 175f4e38a9c40bfac8396a399b18b2f1128fa51a
SHA256 d5f0f7b15dbc44c6b4c775bcc62f72dc98339060efd4e9e14b1da69d0026935c
SHA512 b200231ed0b536682a334b5e1c899ffc17d8d413e7548f2f49a6bbfb25a9856b3bccc6d1ec5481ea3e68a933536c9bdb3e6b2f9a4c98495da5eb5a0f8e277059

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 514a08171e6d6b789e5bfd9f42c2c01a
SHA1 f5ca5cb4c4546307e6eb214ee72c4da396623d7f
SHA256 790e8137507a0655376436230068130e0b4c39ce6dc7373f397a57d6e7346cb1
SHA512 d582cff60b75890d669c14e71c023e84bb77156816a73ec131996942fc061c509d312ab5943154adc9dbcdfeff420deb5a03662960af6dbcccae98f7d540ea01

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 53055b013073bc9ffa69c0c4a4c760bd
SHA1 16e8b9c0b79b46c3514a352e146b4024e3b37bb4
SHA256 b242abc6e87050524854c03c107c5372e193dbca829088f88dda8dc16a3ebba2
SHA512 7e9b0cf9cad5b71744431ad1a75b31689b57fdc339df1d87e39a37f241edf46f8abccf9fed973fd649af46d94f65627b832c3bc93c62d818f125d5cc55da1593

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 58fa355fbe851bc1eed84289c9ffe6ca
SHA1 273566f83a15a051a24cb5363248f9cbe9f32011
SHA256 7306b23555bcc7770dec64301ab3a3f811c7c40f7edc3e1f0eb5cb6d6ced203a
SHA512 df7259fbae7c9abd26b09157d7268170f4398fab4b459c2c9746a67ddafa6911c50bec2d083f694763beebc5160d6aed4a4485b498a83388b6b17cdcbcb70856

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8e0afa5ebc8d036d8ccc718a03fa0012
SHA1 59ebc9ccbc99a9365fef563766a3afc91c37529c
SHA256 f2f12fd1ddb8a64b889a296e0f7b3f9b3d7a7dd381334bf6048ebff48b1ba440
SHA512 774e96bad54f39c88d502eaa05514dc34f55d9e368e3009d01d87a7e4e320a7a77c39585c38eb19ea4dc739777ba9654cb525010a0b696aa6cb070741aaf108d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cd8fdb3e3b931a48226b183cc525f30b
SHA1 78853f727b8185f1bf047b4bba39575e0096710c
SHA256 35e57df94daba0c6ee2ddae885faf3d7a7fd0c9834212267cf471612d1fa52f2
SHA512 3a911dbaa918ddd1b634a81a1893c8db9b760d1fa991518720ef77d77f16ebcb133bc9e06de02c4e856404a28f0bb75f969ba1525cdcbcf1b3126a1fd71b25a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ea4aaeba4af10a43dcf6e12564895623
SHA1 8c56ae5f4ec2b38969f371e2944f4dda8c160be0
SHA256 e12d137a69b03d44cddd57fbb19caece5c7e795538e2eb33a068eb45e2bc3ce8
SHA512 3422a233b3f87bf6a3f05ad51c4489da2632cb62fb73eea21905daa773a07b48c2261d620ae26ab6558e96f4a5e3d4308131078f798899cf8c5d1a8e924f0341

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f1c48398f453cf495373b0d21cae478b
SHA1 c26cc239aa242652a92a596bb41ab187e4ba152a
SHA256 f1ead85486d125d08e740977f49da464dfa7335b3f4a01c5119e160e8c6dfdd9
SHA512 a6c75e1163e431e76d2e95ece4092f6c00c8328cced9a8ee768da73b79297bc33f36f52130abade02091cd83ae50771b8e54d81bdfee97c116387b851b19bf31

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4ee9a71a26560b250356f017442464d9
SHA1 c1dadf6fca931978b53a5b65940ef4cbe60a1535
SHA256 263418b6172db5a7b3a751e80d5957ab0471b47e440bddbc0da39b305f8a3f46
SHA512 f78ea26c0ea1c49a2d1d39dc6916a81f813862b99e6e9e67eb0b4fa0f42b25f8fb685275e431b49fd6fd1bf3c14b331aa7f15ee7cd4f21238a4ace07dcd45d92

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 71ec2c5490e4f1655a02c9f5190db085
SHA1 75d49bbcb5625d68f3507fce83aca63d8f414e1e
SHA256 b1e4c7d842712589d07e878b1e7e713ec96f29e24b21b3cb08abd8d9d229f5dd
SHA512 7cb47e6f7773696063ee75545a20a205b6b69baca576ae353d7a60530e4def86ad43e6b4d542354d7bb7e798c6c353fabd117de45cc20db5dcd930378b3d9d39

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 e701883d7e2f88c6462dac2276547518
SHA1 612ed3e01fcd01a9796767f9747dd0d4fd95a50e
SHA256 88f6a441c57d9d594b34a39d349ad76e9d017de450e233d6a1a4fcbc6c873b8b
SHA512 6ac2220df5603be01c7d528ccc70ab56f27075a75fd4b4b90ea2d630e7b9d88e0394b16378282abb3905d597173c94d067a2a797ce09bdf771ad813d5e8c159f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e3919b1a619d68c466bc10c67bdf4d3c
SHA1 2d302f06fd6487f5607e1fdd5abc39d0c8ef4ec6
SHA256 b8986b207090e4796324e7bacf52d60c4f60fceda96abcb23ada71fbcf9fa562
SHA512 b5cf0a3dbf4fa71ac36deee5c6a87740b5ebb641b8be1762f7e4e97ce4a6c8aadc453849f6e8acf0814503ccbdd14a034ddaf6eb45509a6b726cdfdccc263c59

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

MD5 fdf09c3c067041ffdefcc9e1bdea9718
SHA1 e31cf28187466b23af697eedc92c542589b6c148
SHA256 144754d90b3eaad27d8a11c86faadb24da4ddc251bead8e43b9ed515fafb84da
SHA512 9e32b294cfc17fd52fbdd62732571f4ee57dc0308d62af476331887d0e2446b483ceac06ba4617cfbb1c347d771c0f7ea12108bc384e93f69b180c7ca1a92268

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000065

MD5 588ee33c26fe83cb97ca65e3c66b2e87
SHA1 842429b803132c3e7827af42fe4dc7a66e736b37
SHA256 bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760
SHA512 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7dd2ed891f3e2c0e13a4639162662370
SHA1 9b4ea3ea1b38cd35cbe2b00c3a382bbc3fcaf3cd
SHA256 a908f42380f00c4b82dfeab681b8737e06709d90fd446500c913163504c18452
SHA512 90a061fadee728ae901f34e66f601c7480f0405653c1fa79fd44759126880d89d57adba6afa331fbe84ef1481ba5defe70c87e516f5fc9721a0eb036be8129f2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 890279c59b5caa7e97034d382cfb1dd3
SHA1 933e8579b7a869c821a0775551434cdb3484cdf6
SHA256 097b4ad3a8e8b39042fdd52a43db31a90090d2b7b7772a9abdede4a62a43c160
SHA512 0360fc403df32485fb9dd1b29b0f26c1b43f8f820e9120cdea3ad07d5a0036e9b660a796326035e34037ac5561485ccb0162b8bef71f81678f50fe0dfcb24fb5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 85cd2bd8754e86216fc78b7b69955206
SHA1 02f96140e2feff5a7271c04e2c71b58c3de95b8c
SHA256 8d38d344b9485d03492232cbee777258f81a2ac472e48080a19793e85dbd8fa3
SHA512 30c84833c92fdaf2a1be0e8de6afe25dbacecf610afacd321f90360b2ead6ec3110df0eb582978d10093d9ed29014a6995d748a8153f2301a2a74b8038921f8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 301ec51cc15cdc972e4664d5623fb63e
SHA1 e8f367a43a8e22917e177111b81d29db056a1567
SHA256 abcfbbc8465aff10df8548cf1942b97899b99d505534023bfc05a791e23dc279
SHA512 833436c5dc5587a4cd505bac0e34ddc3b1f62e750db24f6d6ab3756aa99396b996d0e27a67a783308ba5969dc4f443eb1907a8041396ba9ccf0e4e277ba817c5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009

MD5 5be09c7c686dbba1984fc1a2bacb772c
SHA1 b0626f753ce1f18bd01b5c29d86af92a7152e07f
SHA256 c85491a931fe791cd1b23d54b42bd7abec503842ed5cb76420ab365c4ff45b4a
SHA512 2fb59449fa9a0334e85c0342352037a60378e484ad0e0cc417b9559fa8ef7ac81c972a50dff01d177db0875bf244b3ba90bda0565e269be8e745aa7470e223b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012

MD5 7fd069146ea79b16633bc8b45f90482a
SHA1 98dfafac54f6f5db51e3baea698208833ed1b642
SHA256 a746ba588555b584fe98e42ac1a2dfbb92c2831b54c263f51fe91d124b9214d7
SHA512 c31822f497ebb35a5da455e77965f16a83e2007215ae88e64bc21019d8d45fff4671ab4300d9cf518bd2b652d071cc582fdfb99b4807c75e2022755e6c60a06c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c

MD5 c37a5314ba360c995451518527cf293c
SHA1 22d1c9ce7d909b3ff70f6ec0c8bcbf999015ba11
SHA256 65beb8051538d1938ec9af6e82affd097e681aca80afcc3893fc7d1081fa23b3
SHA512 51c80c33f1b1756ea187827ef20cc4ba1917a7727759adcb23daff5585ba5e2fce7d98162ce0659ff50fa556e8b0c8d58ad7143e93f74808d6c287b25b2ed3e4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 83e5cd3161f79d25bb1c8da4c04c0f2a
SHA1 3d2930715534661471b4f3bb109b09160b748fdb
SHA256 70d50c58d837a227cbe3188b7735e8b197422f16dedc3ceef516b743699c9747
SHA512 985120f632787d7cd1e0cbf97ffdce8ce0149a5ab6adebe1aca90a393c1c53fc730c61d37c615e190a21de2e87a918f6f436a2f34ac9b9ab7256835bb3249f03

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006

MD5 46966eecdcda82baad0419180e225a74
SHA1 7b3a7867abb1edb5f2d81433e8152f5eb9e70296
SHA256 ebc84b6a3c8e0595e8bbc164edc1ebb97d5e902e0503876bf025348ad6b41a43
SHA512 b614883f475555c4026204ab8732e28b3d5d33055b9e6782f168893c1da20ddad169824bb21a0befcdeeee568df3f3f57ca6a4f38321729db6cb11075ceb359a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 01d5892e6e243b52998310c2925b9f3a
SHA1 58180151b6a6ee4af73583a214b68efb9e8844d4
SHA256 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
SHA512 de6ca9d539326c1d63a79e90a87d6a69676fc77a2955050b4c5299fab12b87af63c3d7f0789d10f4be214e5c58d6271106a82944d276d5ca361b6d01f7a9f319

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e

MD5 39b81d65634260b15593cfb1f361e410
SHA1 a5e6654e7109c8f410a973ab8dd40a9d4edc533c
SHA256 d8f023e34ad28c370d0185dfaf17ecb5ab67037885a1651199e4c735c6852437
SHA512 4c7d23ef62006d3c0f9a6b1f3eff7d81b9d3b80d7b002b2665d76f3156ef122ae9cb8f4189e31ce43225742c16527d690e637a97f5e6a9a3faa8d860cbc86dea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4c423dca3fdc0bb9ca9936bb0de95bde
SHA1 623253ef2b76c8229538219fc6d0cadaea2b35c7
SHA256 27acb66b4a32b153557ff86ccd8d07a5f0b506120b220de156b3aab2861ff264
SHA512 a27cd8d837cf3f86836ff9effff1519a94c7e5d799b0c9631091e0a38770917fdc2b72793ff5fcfd21eaf3f77ab7ec317052b946d03330fc4069da54a4ce9314

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a20dffc3250bdae3c4eb43a2e5768051
SHA1 12cb89063ce04b39b6ac5a849b14e7910f427161
SHA256 7c57595e6abbe35409c57715a70c0d94bd1617333c6a68d07e196637eb544160
SHA512 67f52597bd54ee4c24b73dd8508dfbd1c79cccc22a50f83073470cff397ab4dfb69d59b1e2e805dd9ec4e396eae62473fd3dec2e4656dd637a778d6d5d59fc8f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026

MD5 70f6a1e1f287ec962c89fb8e4ed38bce
SHA1 65fc137952b567815f00e45e5c1bf7e1de661b72
SHA256 1b455a005fd6d5dc5d8239834e08a68437761ad748ae521df0504c7b2f134907
SHA512 bc21c6d2a568b410d1ebf9d3c7313c06dc7106d0dad4cb2dce050c6de6775fd0cd5183a71b8e3c6cd4dc7d1cf2fdef34e790bebef50b5419ac5ca6eb9abb4820

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 c972514741811bc7da873fc1aa000994
SHA1 2b70ba90000d73629d4af06171f4db25221b17f2
SHA256 784bd0e345b276ce0bf448d0ef444385bed0339eef40dbe401c04c849dd45dcd
SHA512 f89bd4b45a08a7319dc0e824df82a8febcbf81dd4df7eaf276564e58d72e9df4768af296504d1b59e698d2b6788ec67a22f54e0ad7592d0698c8e20da7cdab52

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5ae4a4.TMP

MD5 e6436d3e5f9d04c313f32b2fe1fe9d62
SHA1 614bbe422340d43b71c1091d187d93f5dca497ff
SHA256 2d1a9094c4be7c91475b14e1e76f3d78133559b3a45af1e612f0bc1f3850e4f3
SHA512 3df796edbd90a9a8bbe74b7c1738bd9d92480525c8b314152cdeab0d45dcb61882d69a932440a2ac904b248b58d9f05f510d68581b6ba60312ca645ef5f458ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000eb

MD5 45c53679bb27a14ba029ba06afc67bb2
SHA1 d40021823bfda741bcfbd12fe0a7e39fceefe2a4
SHA256 c1a5721987ded448bf8c324b2cf1f32a4722b033f74555c9c8c6c0842879d270
SHA512 13af5753122e38c0155526d173bcb8a07fc626c968ac7885930cc17a60c9428692bf7814b710f44096a7dd3393bdfca4617a7a18377a5e7b347901f892742903

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ee

MD5 22364e6bc40856ad9d2b31b04d92c9d0
SHA1 2dae04188b81c3a46c1d20d57995ea6bb38c2049
SHA256 76cce6ed2969d4b775a8c0b2240df97b5feb5515c0233ca75150f3d5b626c2b8
SHA512 79eefdf119e9139f383702faf38fded03a57e8b8849326db158236049d6baae1b2ea64db513b10267051a80821dde4718e62b15e770aab1d8617f86bb904d1a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a2235155b9ba280ae7773bf220e2eaf3
SHA1 71414e2a77b279ae738b42a03a5ef9ee7e16f1dc
SHA256 5859dcd0f4ffc352f12ed6d9288fcc18380b6e06b151b6aa65aa6ce1adf9af4d
SHA512 6c2400024a5a77c36ec9c89f010a0d247fb1a6bcc376c60d18a659aee690d738930f6bb7a4c1fd452efe090fa8cc7b1c40e53f68447c3ea933dad1bd83cdaff9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 276e0188de7da97f6d3f4474c6916b05
SHA1 d87980284e78623fe750a0f10220d0b4a6109b37
SHA256 fa09d16dc50b50144d3e621bcf874bd1e9fa980bfbc884a4ede79da7dfe367e5
SHA512 cd9a583a871a19e1d8518b54fd32a126801ed8aaaa9ad6a8f4d8e26f8e19dae8af6fc9ac696fb8c01f6423859be1848fc70f295a7cddc37018e91457a8ae15be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 ab9d6468865bbc860b47f8a6e7901ddc
SHA1 3558f518f120779dd68825c12cdee73510fa7121
SHA256 1e94562bba41a723046f6dabdf6ffad706c9dd127a02258cf10253502544a682
SHA512 733181433b317f0cc7801720f07500abd04ff3bc55f5af52fbb00acd16a74e1f942ccf0a9a4dc32d8a4eaf37d722ea6b467b1f2b40ff7c6c93ca14f238f35909

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 cfc18f54bcec56e7574e82d844880247
SHA1 ea13d33e4b70186d949ca638b6c413afe0601425
SHA256 8c9791ef54ec5d524d661a9d6d8784f088d8ff91c9355f1948126d93eea87389
SHA512 d7dcf7f40d7680c49108a3fa9d2b74797dfea92797b246d5d1be8577c41d702e478d59af6c6ff4a6da08b846883c9f9c3ac63dab37d67d25a15e38fc29f819e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\315c66db-253e-44fb-8e8a-612f59ebdce2.tmp

MD5 6f6c17d337fadb50ce2942dd7403c2a0
SHA1 e7aa1fbe59f1c05d251d7c0d5a19566c892d9a1c
SHA256 cbb529d28530986ccc8515db7371efbf22e7abbb23a2fd1b1a1b0d77824b956c
SHA512 dc602f5c5d1528e574a5b6608528dd0c866c877ecb14eb023d4e8b2cabdaa668b57e10165372daccce5d3c1ffaffe5050f6984e2423c881e71d8fcb32cfaca72

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 903e43ee4f5864102d629b45b3bf6a00
SHA1 12f6c413af93fe1b27126c734acd79d7ef83f0f7
SHA256 50a4d4f956cf5b312471ce6e11f765381080fcd415f6983f76fd91e3ee921f5b
SHA512 436101c1152cd5f491d66b25a4edcbe375642766d6dea477f7389b23c1a7f4f171d9df91b38dcd2d04287f9fca103dc515e3e9f74999cae886bd54865aa50bf2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 c0f52d8871de621a708d354d48acc11e
SHA1 6de09d1b235280a53d032c8222c8d995d5038ce6
SHA256 a48aa65ef4543a386a370c6b889fdf2dc7a12f3c1bcced8a686908aae86d876b
SHA512 05ccf5f59de129895d929be3316aaf4736216aeb358f08687a5fdaadbf1ed53067ca89fda7e67c520f3cb94616e067c934253dddf65fab39cef98e468a9c9c9c