Analysis Overview
Threat Level: Likely malicious
The file https://mega.nz/file/wDdCRTwL#Yqgj6bVgENy7NY9NW6tsIk3xr_4beXObBJB-3n_E6AY was found to be: Likely malicious.
Malicious Activity Summary
Event Triggered Execution: Image File Execution Options Injection
Downloads MZ/PE file
Loads dropped DLL
Event Triggered Execution: Component Object Model Hijacking
A potential corporate email address has been identified in the URL: [email protected]
Checks computer location settings
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
Executes dropped EXE
A potential corporate email address has been identified in the URL: [email protected]
Network Share Discovery
Checks installed software on the system
Checks whether UAC is enabled
Enumerates connected drives
Drops desktop.ini file(s)
Network Service Discovery
Suspicious use of NtSetInformationThreadHideFromDebugger
Detected potential entity reuse from brand STEAM.
Checks system information in the registry
Suspicious use of NtCreateThreadExHideFromDebugger
Drops file in Program Files directory
System Location Discovery: System Language Discovery
Enumerates physical storage devices
Command and Scripting Interpreter: PowerShell
Browser Information Discovery
System Network Configuration Discovery: Internet Connection Discovery
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Modifies Internet Explorer settings
System policy modification
Enumerates system info in registry
Suspicious use of AdjustPrivilegeToken
Suspicious use of WriteProcessMemory
Suspicious behavior: EnumeratesProcesses
NTFS ADS
Suspicious use of SetWindowsHookEx
Checks processor information in registry
Modifies data under HKEY_USERS
Suspicious behavior: AddClipboardFormatListener
Suspicious use of FindShellTrayWindow
Modifies registry class
Suspicious use of SendNotifyMessage
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of UnmapMainImage
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-11-06 13:47
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-11-06 13:47
Reported
2024-11-06 14:01
Platform
win10v2004-20241007-en
Max time kernel
767s
Max time network
769s
Command Line
Signatures
Downloads MZ/PE file
Event Triggered Execution: Image File Execution Options Injection
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe | N/A |
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
A potential corporate email address has been identified in the URL: [email protected]
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-4089630652-1596403869-279772308-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
Loads dropped DLL
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
Drops desktop.ini file(s)
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Videos\Captures\desktop.ini | C:\Windows\system32\svchost.exe | N/A |
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\D: | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| File opened (read-only) | \??\F: | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
Network Service Discovery
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\GameBarPresenceWriter.exe | N/A |
Network Share Discovery
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Detected potential entity reuse from brand STEAM.
Suspicious use of NtCreateThreadExHideFromDebugger
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\SocialLibraries\SocialLibraries\TestingAnalytics\mockLogger.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\AnimationEditor\img_eventGroupMarker_inner.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\AvatarEditorImages\Sliders\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\ui\ScreenshotHud\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\VR\rectBackgroundWhite.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_tr.dll | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\ReactUtils\ReactRoblox.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\RoactNavigation\RoactNavigation\routers\SwitchRouter.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\GenerativeAI\Light\Standard\ThumbsDown.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\InGameMenu\Actions\SetMainPageMoreMenuOpen.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\RoduxAliases\RoduxAliases\Reducers\Aliases\byUserId.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\TagEditor\Compose.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Lua\AvatarCompatibilityPreviewer\Dark\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\Ribbon\Dark\Medium\RibbonUIGradient.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\PlayStationController\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\Qml\QtQuick\Controls.2\ScrollBar.qml | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\ReactDevtoolsShared\ReactDevtoolsShared\utils.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Settings\Help\EscapeIcon.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\JestRunner\JestCircus.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\RobloxShared-31ab8d40-2.4.1\RobloxShared\dedent.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\WidgetIcons\Light\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\DevConsole\Components\Network\ClientNetwork.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-31ab8d40-0.4.2\LuauPolyfill\Object\isFrozen.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\AvatarEditorImages\Stretch\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\ui\Controls\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\ui\InGameMenu\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\LuauPolyfill-31ab8d40-0.4.2\LuauPolyfill\util\init.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\TestEZ\TestEZ\ExpectationContext.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\ErrorReporting\.robloxrc | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\CompositorDebugger\History.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\LegacyRbxGui\brickSide.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\LuaChat\graphic\gr-gamealbum-icon-52x52.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\GraphQL\GraphQL\luaUtils\coerceToPromise.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\Throat\lock.toml | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\DeveloperFramework\StudioTheme\search_20.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\ui\VoiceChat\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\MaterialCursor.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\Qml\QtQuick\Layouts\plugins.qmltypes | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\configs\DateTimeLocaleConfigs\en-us.json | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\JestRunner\JestRuntime.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\Packages\_Index\ZenObservable\LuauPolyfill.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\TrustAndSafety\Resources\Constants.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\Ribbon\Light\Medium\RibbonSelect.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\VoiceChat\MicDark\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\Qml\QtQuick\Controls.2\Imagine\RadioDelegate.qml | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\AvatarEditorImages\AvatarEditor.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\textures\DeveloperFramework\MediaPlayerControls\pause_button.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\Ribbon\Light\Standard\RibbonCheckboxCheckedDefaultSmall.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\WidgetIcons\Light\Large\Service.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Health-BKG-Center.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\avatar\unification\testScripts\R6TestScript2.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\LuaPackages\AppTempCommon\LuaApp\Actions\.robloxrc | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\Placeholder\Dark\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\Debugger\Breakpoints\[email protected] | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\TerrainTools\mtrl_glacier.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\LuaPackages\Packages\_Index\FoundationImages\FoundationImages\SpriteSheets\img_set_2x_12.png | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Lua\TagEditor\Light\Standard\[email protected] | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\AudioPlayer.png | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\InspectAndBuy\Components\Favorites.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\ExtraContent\scripts\CoreScripts\Modules\PurchasePrompt\Flags\GetFFlagEnableRestrictedAssetSaleLocationPurchasePrompt.lua | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
Browser Information Discovery
Command and Scripting Interpreter: PowerShell
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B1E607A3-05BF-4992-88FC-0DF0CA1BF4F9}\MicrosoftEdgeUpdateSetup_X86_1.3.195.31.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
System Network Configuration Discovery: Internet Connection Discovery
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Windows\system32\svchost.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth\WarnOnOpen = "0" | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\PROTOCOLEXECUTE\ROBLOX-STUDIO | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio-auth | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133753749706200988" | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\NumMethods\ = "23" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\ProgID\ = "MicrosoftEdgeUpdate.ProcessLauncher.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\NumMethods\ = "12" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\NumMethods\ = "6" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassSvc\CLSID\ = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\msedgeupdate.dll,-3000" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AB4F4A7E-977C-4E23-AD8F-626A491715DF}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ = "IGoogleUpdate3Web" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\URL Protocol | C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{08D832B9-D2FD-481F-98CF-904D00DF63CC}\ProgID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\VersionIndependentProgID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebMachine\CurVer\ = "MicrosoftEdgeUpdate.Update3WebMachine.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\RobloxStudioInstaller.exe" | C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{A6B716CB-028B-404D-B72C-50E153DD68DA}\AppID = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.195.31\\msedgeupdate.dll,-3000" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\Elevation | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5F9C80B5-9E50-43C9-887C-7C6412E110DF}\NumMethods\ = "11" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E}\NumMethods\ = "41" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ = "ICoCreateAsync" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.Update3WebSvc\CLSID\ = "{EA92A799-267E-4DF5-A6ED-6A7E0684BB8A}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ = "IPackage" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ = "IAppVersionWeb" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{195A2EB3-21EE-43CA-9F23-93C2C9934E2E} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ = "IProcessLauncher" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\ELEVATION | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AB4EE1FC-0A81-4F56-B0E2-248FB78051AF}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32\ = "{35725228-BF11-429E-B5B8-ED0F2BCABF82}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7E29BE61-5809-443F-9B5D-CF22156694EB}\ = "IAppCommand2" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.195.31\\MicrosoftEdgeUpdateBroker.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5977F34-9264-4AC3-9B31-1224827FF6E8}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.PolicyStatusMachine" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{8F09CD6C-5964-4573-82E3-EBFF7702865B}\PROGID | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\ELEVATION | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{492E1C30-A1A2-4695-87C8-7A8CAD6F936F} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\NumMethods\ = "4" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ = "IApp2" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{E421557C-0628-43FB-BF2B-7C9F8A4D067C}\ = "Microsoft Edge Update Update3Web" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{E421557C-0628-43FB-BF2B-7C9F8A4D067C}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.Update3WebMachineFallback" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 452584.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe | N/A |
Suspicious use of UnmapMainImage
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
Suspicious use of WriteProcessMemory
System policy modification
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe | N/A |
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://mega.nz/file/wDdCRTwL#Yqgj6bVgENy7NY9NW6tsIk3xr_4beXObBJB-3n_E6AY
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa388d46f8,0x7ffa388d4708,0x7ffa388d4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2080 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2712 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5536 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5536 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5208 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x530 0x520
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5764 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5704 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3852 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6080 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5872 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6148 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6284 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6212 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6452 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6552 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=media.mojom.MediaFoundationService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=mf_cdm --mojo-platform-channel-handle=5760 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=6724 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1752 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6836 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6680 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5864 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1688 /prefetch:8
C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe
"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
MicrosoftEdgeWebview2Setup.exe /silent /install
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QjFCRDQ0OTItMDBBNC00QzMzLTg1NUYtMDYzMjdEM0RDRjJBfSIgdXNlcmlkPSJ7ODY2ODIzMUMtMzRCRS00Qjg3LUIxQjctQjdDNjZCMjZDNTIzfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InszRjY3M0NERi00NTQ4LTQ3QUUtQTc0Qy03MEQyRDg5RDBBQ0V9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iIi8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNDcuMzciIG5leHR2ZXJzaW9uPSIxLjMuMTcxLjM5IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIj48ZXZlbnQgZXZlbnR0eXBlPSIyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI3ODY4NTYyODAxIiBpbnN0YWxsX3RpbWVfbXM9IjQ5MSIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{B1BD4492-00A4-4C33-855F-06327D3DCF2A}" /silent
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QjFCRDQ0OTItMDBBNC00QzMzLTg1NUYtMDYzMjdEM0RDRjJBfSIgdXNlcmlkPSJ7ODY2ODIzMUMtMzRCRS00Qjg3LUIxQjctQjdDNjZCMjZDNTIzfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCNUE1NTgyMi0xMTNBLTQwMzYtQjEyQy1GNzUxMkI2NjVDRDN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTIzLjAuNjMxMi4xMjMiIG5leHR2ZXJzaW9uPSIxMjMuMC42MzEyLjEyMyIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijc4NzUwMzI4NzMiLz48L2FwcD48L3JlcXVlc3Q-
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\MicrosoftEdge_X64_130.0.2849.56.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\MicrosoftEdge_X64_130.0.2849.56.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\MicrosoftEdge_X64_130.0.2849.56.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.70 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{81C5B975-A454-4189-8CA7-1E574A7658B6}\EDGEMITMP_7CAA6.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.56 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ff76250d730,0x7ff76250d73c,0x7ff76250d748
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QjFCRDQ0OTItMDBBNC00QzMzLTg1NUYtMDYzMjdEM0RDRjJBfSIgdXNlcmlkPSJ7ODY2ODIzMUMtMzRCRS00Qjg3LUIxQjctQjdDNjZCMjZDNTIzfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntGMzdFM0VDQS1GODI1LTQ2ODAtQThGMi1EOTY5MzAyRDhFQTN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMTMwLjAuMjg0OS41NiIgbGFuZz0iIiBicmFuZD0iIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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_UDE9MTczMTUwNTk5OSZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1KUUdpNTZhNnZHbzJLZFN2S21FZ3NUQ0tmMXA3em5qNTYzRlRvVlVKOFc1am5Oem9sRlEwU0JPdHFsTnV6VFpibE5zVE5HWGFoZ2dFRyUyZnZyRFpLSiUyZlElM2QlM2QiIHNlcnZlcl9pcF9oaW50PSIiIGNkbl9jaWQ9Ii0xIiBjZG5fY2NjPSIiIGNkbl9tc2VkZ2VfcmVmPSIiIGNkbl9henVyZV9yZWZfb3JpZ2luX3NoaWVsZD0iIiBjZG5fY2FjaGU9IiIgY2RuX3AzcD0iIiBkb3dubG9hZGVkPSIxNzQ5MzM2MDAiIHRvdGFsPSIxNzQ5MzM2MDAiIGRvd25sb2FkX3RpbWVfbXM9IjIxOTU5Ii8-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-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe" -app -clientLaunchTimeEpochMs 0 -isInstallerLaunch 3920
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe"
C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe
"C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe"
C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe
C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_6D535\RobloxStudioInstaller.exe
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe"
C:\Users\Admin\Desktop\SyxReBootstrap\Synapse x CRACKED.exe
"C:\Users\Admin\Desktop\SyxReBootstrap\Synapse x CRACKED.exe"
C:\Users\Admin\Desktop\SyxReBootstrap\Synapse x CRACKED.exe
"C:\Users\Admin\Desktop\SyxReBootstrap\Synapse x CRACKED.exe"
C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe" -startEvent www.roblox.com/robloxQTStudioStartedEvent -firstLaunch
C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxCrashHandler.exe
"C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.649.0.6490878_20241106T135600Z_Studio_E5118_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.649.0.6490878_20241106T135600Z_Studio_E5118_last.log --attachment=attachment_log_0.649.0.6490878_20241106T135600Z_Studio_E5118_csg3.log=C:\Users\Admin\AppData\Local\Roblox\logs\log_0.649.0.6490878_20241106T135600Z_Studio_E5118_csg3.log --attachment=attachment_log_0.649.0.6490878_20241106T135600Z_Studio_E5118_dcd.log=C:\Users\Admin\AppData\Local\Roblox\logs\log_0.649.0.6490878_20241106T135600Z_Studio_E5118_dcd.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=0.649.0.6490878 --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=3891290f7ec8b14511dd09a88bb53740fbfe3768 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.649.0.6490878 --annotation=UniqueId=3880808177674071133 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.649.0.6490878 --annotation=host_arch=x86_64 --initial-client-data=0x580,0x584,0x588,0x548,0x5d8,0x7ff6f4a8b2a8,0x7ff6f4a8b2c0,0x7ff6f4a8b2d8
C:\Windows\System32\GameBarPresenceWriter.exe
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=2 --mojo-named-platform-channel-pipe=1212.440.10840039144064974179
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.70 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=130.0.2849.56 --initial-client-data=0x17c,0x180,0x184,0x158,0x40,0x7ffa1f604dc0,0x7ffa1f604dcc,0x7ffa1f604dd8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x530 0x520
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=gpu-process --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=1776,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=1768 /prefetch:2
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=2040,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=2056 /prefetch:3
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --field-trial-handle=2284,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=2296 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3612,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=3628 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=4184,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=4220 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3680,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=3628 /prefetch:1
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c powershell -command "Expand-Archive -Path 'C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake.zip' -DestinationPath 'C:\Users\Admin\Desktop\SyxReBootstrap'"
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
powershell -command "Expand-Archive -Path 'C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake.zip' -DestinationPath 'C:\Users\Admin\Desktop\SyxReBootstrap'"
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=gpu-process --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView" --webview-exe-name=RobloxStudioBeta.exe --webview-exe-version="0, 649, 0, 6490878" --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=2 --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=2744,i,293851758094879508,14111771401300144514,262144 --variations-seed-version --mojo-platform-channel-handle=1868 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://apis.roblox.com/oauth/v1/authorize?response_type=code&code_challenge=qQ73FeexXNJcehJaH-fE1OG0kpebb6MahMmFK7IA2JI&code_challenge_method=S256&client_id=7968549422692352298&redirect_uri=roblox-studio-auth%3A%2F&scope=openid+credentials+profile+age+roles+premium&nonce=id-roblox&state=eyJyYW5kb21fc3RyaW5nIjoiYWtPNi05aW01NGE4bjdhZXVKX09hVVZKWU5nZm5EcmFOVVFwLW5RWXJxTSIsInBpZCI6IjEyMTIifQ%3D%3D
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffa388d46f8,0x7ffa388d4708,0x7ffa388d4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5192 /prefetch:1
C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxStudioBeta.exe" roblox-studio-auth:/?code=jzuKzc-R_dLgEodjAGVXDFO4Nnr-JiEROnAZK7kUPFEoteOg8EZeyDXJKAFf4dyCjMP4f7N3uTgIzg9FYaPHin-XEefOrRHjfWjSRuD9i6WwbslYsVJ3htP9sQWyZMbupExxAnSrYjyXgQJnnpZRp04Pf9G8SLrYqp3qUOQLCHtAqvOCfM_5IS89vG8HBPiwdJvPiQUfyZl-Zq7peON0DVsq0ms-qqoBkGi3pbS_7OpMl9I1GSc83b-4kv2JPeluOWErl9peGejqr2wnvsKCqOpanYjWIq9eWxZpjAIIXVgvmDB1m_ijcPhR5pH2uEq9ihNj_JvBGmJslA-PBDgdX7Wmk6X5dUDnNdeBqjnifBM&state=eyJyYW5kb21fc3RyaW5nIjoiYWtPNi05aW01NGE4bjdhZXVKX09hVVZKWU5nZm5EcmFOVVFwLW5RWXJxTSIsInBpZCI6IjEyMTIifQ%3d%3d
C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxCrashHandler.exe
"C:\Program Files (x86)\Roblox\Versions\version-7cc6d2bdac2f4837\RobloxCrashHandler.exe" --no-rate-limit --crashCounter Win-ROBLOXStudio-Crash --baseUrl https://www.roblox.com --attachment=attachment_0.649.0.6490878_20241106T135631Z_Studio_A188D_last.log=C:\Users\Admin\AppData\Local\Roblox\logs\0.649.0.6490878_20241106T135631Z_Studio_A188D_last.log --attachment=attachment_log_0.649.0.6490878_20241106T135631Z_Studio_A188D_csg3.log=C:\Users\Admin\AppData\Local\Roblox\logs\log_0.649.0.6490878_20241106T135631Z_Studio_A188D_csg3.log --attachment=attachment_log_0.649.0.6490878_20241106T135631Z_Studio_A188D_dcd.log=C:\Users\Admin\AppData\Local\Roblox\logs\log_0.649.0.6490878_20241106T135631Z_Studio_A188D_dcd.log --database=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --metrics-dir=C:\Users\Admin\AppData\Local\Roblox\logs\crashes --url=https://upload.crashes.rbxinfra.com/post?format=minidump --annotation=AppVersion=0.649.0.6490878 --annotation=Format=minidump --annotation=HardwareModel= --annotation=HasBootstrapper=true --annotation=InstallFolder=ProgramFilesX86 --annotation=OSPlatform=Windows --annotation=RobloxChannel=production --annotation=RobloxGitHash=3891290f7ec8b14511dd09a88bb53740fbfe3768 --annotation=RobloxProduct=RobloxStudio --annotation=StudioVersion=0.649.0.6490878 --annotation=UniqueId=6282325106846878732 --annotation=UseCrashpad=True --annotation=app_arch=x86_64 --annotation=application.version=0.649.0.6490878 --annotation=host_arch=x86_64 --initial-client-data=0x5ac,0x5b0,0x5b4,0x588,0x52c,0x7ff6f4a8b2a8,0x7ff6f4a8b2c0,0x7ff6f4a8b2d8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6168 /prefetch:2
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c start C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --embedded-browser-webview=1 --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --noerrdialogs --embedded-browser-webview-dpi-awareness=1 --mojo-named-platform-channel-pipe=1092.4576.3568051702362179097
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=crashpad-handler --user-data-dir=C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Crashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.70 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --annotation=plat=Win64 "--annotation=prod=Edge WebView2" --annotation=ver=130.0.2849.56 --initial-client-data=0x160,0x164,0x168,0x13c,0x170,0x7ffa1f604dc0,0x7ffa1f604dcc,0x7ffa1f604dd8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=gpu-process --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=1808,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=1804 /prefetch:2
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --field-trial-handle=1940,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=2000 /prefetch:3
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --field-trial-handle=2356,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=2348 /prefetch:8
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=3648,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=3640 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=4384,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=4380 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=gpu-process --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=2816,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=1636 /prefetch:2
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=fallback-handler --database="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Crashpad" --exception-pointers=130120329904128 --process=256 /prefetch:7 --thread=1836
C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe
"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.56\msedgewebview2.exe" --type=renderer --string-annotations=is-enterprise-managed=no --noerrdialogs --user-data-dir="C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView" --webview-exe-name=SynapseXRemake.exe --webview-exe-version=1.0.0.0 --embedded-browser-webview=1 --embedded-browser-webview-dpi-awareness=1 --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --js-flags="--harmony-weak-refs-with-cleanup-some --expose-gc --ms-user-locale=" --field-trial-handle=4728,i,13857306019712869480,5866807094957891598,262144 --variations-seed-version --mojo-platform-channel-handle=4740 /prefetch:1
C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -u -p 728 -s 516
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k BcastDVRUserService -s BcastDVRUserService
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x124,0x128,0x12c,0xf4,0x130,0x7ffa2793cc40,0x7ffa2793cc4c,0x7ffa2793cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1848,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1840 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2192,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2208 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2280,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2292 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3168,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3416,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3436 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4608,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4708,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4760 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4776,i,16814025191491384851,493675848109011182,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4740 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4916 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6952 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6812 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5560 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5080 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4092 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6448 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4900 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7136 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6884 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6828 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7432 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4064 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6200 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7480 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7828 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7936 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7632 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7236 /prefetch:1
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B1E607A3-05BF-4992-88FC-0DF0CA1BF4F9}\MicrosoftEdgeUpdateSetup_X86_1.3.195.31.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B1E607A3-05BF-4992-88FC-0DF0CA1BF4F9}\MicrosoftEdgeUpdateSetup_X86_1.3.195.31.exe" /update /sessionid "{BC258719-A7AB-41A5-9F8C-6DCCECD5FC0E}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7QkMyNTg3MTktQTdBQi00MUE1LTlGOEMtNkRDQ0VDRDVGQzBFfSIgdXNlcmlkPSJ7ODY2ODIzMUMtMzRCRS00Qjg3LUIxQjctQjdDNjZCMjZDNTIzfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9Ins3Mzc3MkJBNi0zOEQ3LTQzODAtQUY2Ni04NDg2M0Y4NDE4ODl9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-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_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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMjI2MTk4MTI1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMjMxNTU4MDU5IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PHBpbmcgcj0iLTEiIHJkPSItMSIvPjwvYXBwPjxhcHAgYXBwaWQ9Ins1NkVCMThGOC1CMDA4LTRDQkQtQjZEMi04Qzk3RkU3RTkwNjJ9IiB2ZXJzaW9uPSI5Mi4wLjkwMi42NyIgbmV4dHZlcnNpb249IiIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBsYXN0X2xhdW5jaF90aW1lPSIxMzM3NTM3NDk4Mzc0NjgyOTAiPjx1cGRhdGVjaGVjay8-PHBpbmcgYWN0aXZlPSIxIiBhPSItMSIgcj0iLTEiIGFkPSItMSIgcmQ9Ii0xIi8-PC9hcHA-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IjEzMC4wLjI4NDkuNTYiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBleHBlcmltZW50cz0iY29uc2VudD1mYWxzZSIgaW5zdGFsbGFnZT0iMCIgaW5zdGFsbGRhdGU9IjY1MTciIGxhc3RfbGF1bmNoX3RpbWU9IjEzMzc1Mzc0OTk4NjkzNzgzMCI-PHVwZGF0ZWNoZWNrLz48cGluZyBhY3RpdmU9IjEiIGE9Ii0xIiByPSItMSIgYWQ9Ii0xIiByZD0iLTEiIHBpbmdfZnJlc2huZXNzPSJ7MDVGRjAxNjktMzJCNi00NEQzLUIzOTktNjU3RjNFOTQ1RTE0fSIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU74D1.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{BC258719-A7AB-41A5-9F8C-6DCCECD5FC0E}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.31\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTk1LjMxIiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMCIgaW5zdGFsbGRhdGV0aW1lPSIxNzMwOTAxMTk1Ij48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTI0Mjk2NjkxOCIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6840 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6628 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7704 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2068,5658015880329394525,7132819516532709717,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7164 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mega.nz | udp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| US | 8.8.8.8:53 | eu.static.mega.co.nz | udp |
| NL | 66.203.127.13:443 | eu.static.mega.co.nz | tcp |
| NL | 66.203.127.13:443 | eu.static.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 58.55.71.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.145.216.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.api.mega.co.nz | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 13.127.203.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.125.203.66.in-addr.arpa | udp |
| NL | 66.203.127.13:443 | eu.static.mega.co.nz | tcp |
| N/A | 127.0.0.1:6341 | tcp | |
| N/A | 127.0.0.1:6341 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | gfs204n070.userstorage.mega.co.nz | udp |
| NL | 185.206.24.30:443 | gfs204n070.userstorage.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 30.24.206.185.in-addr.arpa | udp |
| GB | 92.123.128.133:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 133.128.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| DE | 128.116.123.4:80 | www.roblox.com | tcp |
| DE | 128.116.123.4:80 | www.roblox.com | tcp |
| DE | 128.116.123.4:80 | www.roblox.com | tcp |
| DE | 128.116.123.4:443 | www.roblox.com | tcp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 3.162.38.66:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| FR | 128.116.122.4:443 | roblox.com | tcp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.123.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | 4.123.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.122.116.128.in-addr.arpa | udp |
| DE | 128.116.123.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | locale.roblox.com | udp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| FR | 52.222.201.77:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| GB | 2.19.117.27:443 | apis.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 27.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.145.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.163.245.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.209.201.84.in-addr.arpa | udp |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| US | 8.8.8.8:53 | ncs.roblox.com | udp |
| US | 8.8.8.8:53 | arkoselabs.roblox.com | udp |
| FR | 18.245.175.126:443 | arkoselabs.roblox.com | tcp |
| US | 8.8.8.8:53 | crt.rootg2.amazontrust.com | udp |
| FR | 3.164.163.90:80 | crt.rootg2.amazontrust.com | tcp |
| US | 8.8.8.8:53 | 90.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.229.111.52.in-addr.arpa | udp |
| DE | 128.116.123.4:443 | ncs.roblox.com | tcp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | thumbnails.roblox.com | udp |
| US | 8.8.8.8:53 | contacts.roblox.com | udp |
| US | 8.8.8.8:53 | notifications.roblox.com | udp |
| US | 8.8.8.8:53 | accountsettings.roblox.com | udp |
| US | 8.8.8.8:53 | economy.roblox.com | udp |
| US | 8.8.8.8:53 | friends.roblox.com | udp |
| US | 8.8.8.8:53 | privatemessages.roblox.com | udp |
| US | 8.8.8.8:53 | trades.roblox.com | udp |
| US | 8.8.8.8:53 | usermoderation.roblox.com | udp |
| US | 8.8.8.8:53 | cs.ns1p.net | udp |
| DE | 3.78.22.155:443 | cs.ns1p.net | tcp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 8.8.8.8:53 | gold.roblox.com | udp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| US | 8.8.8.8:53 | iad4-128-116-102-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax4-128-116-63-3.roblox.com | udp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| DE | 128.116.123.3:443 | gold.roblox.com | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| US | 128.116.116.3:443 | lax2-128-116-116-3.roblox.com | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| US | 128.116.45.3:443 | mia4-128-116-45-3.roblox.com | tcp |
| US | 128.116.63.3:443 | lax4-128-116-63-3.roblox.com | tcp |
| GB | 128.116.119.3:443 | lhr2-128-116-119-3.roblox.com | tcp |
| DE | 128.116.123.3:443 | gold.roblox.com | tcp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 8.8.8.8:53 | s.ns1p.net | udp |
| GB | 2.19.117.104:443 | tr.rbxcdn.com | tcp |
| DE | 3.78.22.155:443 | s.ns1p.net | tcp |
| US | 8.8.8.8:53 | c0.rbxcdn.com | udp |
| FR | 18.155.129.94:443 | c0.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 155.22.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.123.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.119.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.102.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.45.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.104.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.116.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.63.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.50.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| US | 8.8.8.8:53 | titanium-aws.roblox.com | udp |
| FR | 18.164.52.61:443 | titanium-aws.roblox.com | tcp |
| US | 8.8.8.8:53 | 94.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.52.164.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sc0cfly.rbxcdn.com | udp |
| US | 205.234.175.102:443 | sc0cfly.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | b.ns1p.net | udp |
| US | 8.8.8.8:53 | 102.175.234.205.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sin2-128-116-97-3.roblox.com | udp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| US | 8.8.8.8:53 | cdg1-128-116-122-3.roblox.com | udp |
| US | 8.8.8.8:53 | sc0ak.rbxcdn.com | udp |
| US | 205.234.175.102:443 | sc0cfly.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | roblox-poc.global.ssl.fastly.net | udp |
| SG | 128.116.97.3:443 | sin2-128-116-97-3.roblox.com | tcp |
| US | 128.116.99.3:443 | atl1-128-116-99-3.roblox.com | tcp |
| FR | 128.116.122.3:443 | cdg1-128-116-122-3.roblox.com | tcp |
| GB | 2.18.190.75:443 | sc0ak.rbxcdn.com | tcp |
| US | 151.101.1.194:443 | roblox-poc.global.ssl.fastly.net | tcp |
| US | 8.8.8.8:53 | 3.122.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.99.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.97.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | games.roblox.com | udp |
| US | 8.8.8.8:53 | t7.rbxcdn.com | udp |
| FR | 3.165.113.28:443 | t7.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | voice.roblox.com | udp |
| US | 8.8.8.8:53 | 28.113.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | followings.roblox.com | udp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra4-128-116-44-3.roblox.com | udp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 8.8.8.8:53 | mia2-128-116-127-3.roblox.com | udp |
| US | 8.8.8.8:53 | badges.roblox.com | udp |
| DE | 128.116.44.3:443 | fra4-128-116-44-3.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 128.116.127.3:443 | mia2-128-116-127-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 3.44.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.95.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.127.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.51.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| FR | 3.162.38.113:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 113.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| DE | 128.116.123.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | client-telemetry.roblox.com | udp |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| N/A | 127.0.0.1:51432 | tcp | |
| N/A | 127.0.0.1:51436 | tcp | |
| N/A | 127.0.0.1:51439 | tcp | |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| FR | 13.249.9.45:443 | clientsettingscdn.roblox.com | tcp |
| N/A | 127.0.0.1:51463 | tcp | |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| US | 8.8.8.8:53 | 45.9.249.13.in-addr.arpa | udp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 38.38.162.3.in-addr.arpa | udp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 2.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 52.252.28.242:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 242.28.252.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.f.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 199.232.210.172:80 | msedge.f.tlu.dl.delivery.mp.microsoft.com | tcp |
| N/A | 127.0.0.1:51990 | tcp | |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| N/A | 127.0.0.1:51993 | tcp | |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| N/A | 127.0.0.1:52084 | tcp | |
| N/A | 127.0.0.1:52096 | tcp | |
| N/A | 127.0.0.1:52101 | tcp | |
| N/A | 127.0.0.1:52104 | tcp | |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| FR | 13.249.9.67:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 67.9.249.13.in-addr.arpa | udp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| FR | 3.162.38.38:443 | setup.rbxcdn.com | tcp |
| N/A | 127.0.0.1:52120 | tcp | |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | objects.githubusercontent.com | udp |
| US | 185.199.109.133:443 | objects.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.109.199.185.in-addr.arpa | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.109.133:443 | objects.githubusercontent.com | tcp |
| FR | 13.249.9.67:443 | clientsettingscdn.roblox.com | tcp |
| N/A | 127.0.0.1:52326 | tcp | |
| N/A | 127.0.0.1:52350 | tcp | |
| DE | 128.116.123.4:443 | client-telemetry.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.123.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | ephemeralcounters.api.roblox.com | udp |
| DE | 128.116.123.4:443 | ephemeralcounters.api.roblox.com | tcp |
| DE | 128.116.123.4:443 | ephemeralcounters.api.roblox.com | tcp |
| N/A | 127.0.0.1:52354 | tcp | |
| N/A | 127.0.0.1:52364 | tcp | |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| DE | 128.116.123.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| FR | 3.162.38.18:443 | static.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 18.244.28.99:443 | js.rbxcdn.com | tcp |
| FR | 13.32.145.114:443 | images.rbxcdn.com | tcp |
| N/A | 127.0.0.1:52367 | tcp | |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| FR | 52.222.201.122:443 | css.rbxcdn.com | tcp |
| NL | 128.116.21.3:443 | roblox.com | tcp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| DE | 128.116.123.4:443 | metrics.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | 122.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.21.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| GB | 2.19.117.28:443 | apis.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 28.117.19.2.in-addr.arpa | udp |
| DE | 128.116.123.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:53 | 4.4.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| FR | 13.32.145.71:443 | images.rbxcdn.com | tcp |
| FR | 52.222.201.13:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 13.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.145.32.13.in-addr.arpa | udp |
| DE | 128.116.123.4:443 | ecsv2.roblox.com | tcp |
| DE | 128.116.123.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | authorize.roblox.com | udp |
| FR | 18.245.175.11:443 | authorize.roblox.com | tcp |
| US | 8.8.8.8:53 | 11.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | o293668.ingest.sentry.io | udp |
| US | 34.120.195.249:443 | o293668.ingest.sentry.io | tcp |
| DE | 128.116.123.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | webblox.roblox.com | udp |
| FR | 18.245.175.44:443 | webblox.roblox.com | tcp |
| FR | 18.245.175.44:443 | webblox.roblox.com | tcp |
| US | 8.8.8.8:53 | users.roblox.com | udp |
| US | 8.8.8.8:53 | 249.195.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.175.245.18.in-addr.arpa | udp |
| US | 34.120.195.249:443 | o293668.ingest.sentry.io | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| GB | 2.19.117.104:443 | tr.rbxcdn.com | tcp |
| DE | 128.116.123.4:443 | users.roblox.com | tcp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| GB | 23.215.232.238:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | usermoderation.roblox.com | udp |
| DE | 128.116.123.4:443 | usermoderation.roblox.com | tcp |
| DE | 128.116.123.4:443 | usermoderation.roblox.com | tcp |
| US | 8.8.8.8:53 | 238.232.215.23.in-addr.arpa | udp |
| N/A | 127.0.0.1:58431 | tcp | |
| N/A | 127.0.0.1:58482 | tcp | |
| N/A | 127.0.0.1:58554 | tcp | |
| DE | 128.116.123.4:443 | usermoderation.roblox.com | tcp |
| N/A | 127.0.0.1:58634 | tcp | |
| DE | 128.116.123.4:443 | usermoderation.roblox.com | tcp |
| DE | 128.116.123.4:443 | usermoderation.roblox.com | tcp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| DE | 128.116.123.4:443 | realtime-signalr.roblox.com | tcp |
| DE | 128.116.123.4:443 | realtime-signalr.roblox.com | tcp |
| DE | 128.116.123.4:443 | realtime-signalr.roblox.com | tcp |
| N/A | 127.0.0.1:58652 | tcp | |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| DE | 128.116.123.4:443 | assetgame.roblox.com | tcp |
| DE | 128.116.123.4:443 | assetgame.roblox.com | tcp |
| DE | 128.116.123.4:443 | assetgame.roblox.com | tcp |
| DE | 128.116.123.4:443 | assetgame.roblox.com | tcp |
| N/A | 127.0.0.1:58667 | tcp | |
| US | 8.8.8.8:53 | clientsettings.roblox.com | udp |
| DE | 128.116.123.4:443 | clientsettings.roblox.com | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| DE | 128.116.123.4:443 | www.roblox.com | tcp |
| N/A | 127.0.0.1:58717 | tcp | |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:53 | nw-umwatson.events.data.microsoft.com | udp |
| US | 20.189.173.20:443 | nw-umwatson.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 20.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ogads-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 216.58.213.10:443 | ogads-pa.googleapis.com | tcp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| GB | 216.58.213.10:443 | ogads-pa.googleapis.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| DE | 128.116.123.4:443 | www.roblox.com | tcp |
| DE | 128.116.123.4:443 | www.roblox.com | tcp |
| US | 8.8.8.8:53 | ncs.roblox.com | udp |
| DE | 128.116.123.4:443 | ncs.roblox.com | tcp |
| N/A | 127.0.0.1:59266 | tcp | |
| N/A | 127.0.0.1:59268 | tcp | |
| GB | 92.123.128.183:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 183.128.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 92.123.128.141:443 | th.bing.com | tcp |
| GB | 92.123.128.171:443 | r.bing.com | tcp |
| GB | 92.123.128.171:443 | r.bing.com | tcp |
| GB | 92.123.128.141:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 141.128.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.128.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| NL | 40.126.32.68:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 68.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.bingapis.com | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 8.8.8.8:53 | store.steampowered.com | udp |
| US | 23.192.21.216:443 | store.steampowered.com | tcp |
| US | 23.192.21.216:443 | store.steampowered.com | tcp |
| US | 8.8.8.8:53 | 216.21.192.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | store.akamai.steamstatic.com | udp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | cdn.akamai.steamstatic.com | udp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | shared.akamai.steamstatic.com | udp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.117.19.2.in-addr.arpa | udp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| GB | 2.19.117.22:443 | store.akamai.steamstatic.com | tcp |
| US | 23.192.21.216:443 | store.steampowered.com | tcp |
| US | 23.192.21.216:443 | store.steampowered.com | tcp |
| US | 8.8.8.8:53 | 13.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.117.19.2.in-addr.arpa | udp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| GB | 2.19.117.29:443 | cdn.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | smailpro.com | udp |
| US | 104.21.94.236:443 | smailpro.com | tcp |
| US | 104.21.94.236:443 | smailpro.com | tcp |
| US | 8.8.8.8:53 | 236.94.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | unpkg.com | udp |
| US | 151.101.65.229:443 | cdn.jsdelivr.net | tcp |
| US | 104.17.248.203:443 | unpkg.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 229.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.248.17.104.in-addr.arpa | udp |
| US | 104.21.94.236:443 | smailpro.com | tcp |
| US | 8.8.8.8:53 | app.sonjj.com | udp |
| US | 104.21.77.200:443 | app.sonjj.com | tcp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.77.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| GB | 216.58.201.110:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| GB | 216.58.201.110:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 216.58.213.1:443 | lh3.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 1.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.200.250.142.in-addr.arpa | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| GB | 142.250.187.226:443 | ep1.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| GB | 142.250.179.225:443 | ep2.adtrafficquality.google | tcp |
| GB | 142.250.179.225:443 | ep2.adtrafficquality.google | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csp.withgoogle.com | udp |
| GB | 216.58.213.17:443 | csp.withgoogle.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 216.58.213.17:443 | csp.withgoogle.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 17.213.58.216.in-addr.arpa | udp |
| GB | 142.250.187.226:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| NL | 4.175.87.113:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 113.87.175.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| HK | 142.250.76.3:443 | csi.gstatic.com | tcp |
| HK | 142.250.76.3:443 | csi.gstatic.com | tcp |
| US | 8.8.8.8:53 | 3.76.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 199.232.210.172:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| GB | 142.250.187.226:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| GB | 216.58.213.17:443 | csp.withgoogle.com | udp |
| US | 151.101.65.229:443 | cdn.jsdelivr.net | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 14.24.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | store.steampowered.com | udp |
| US | 8.8.8.8:53 | store.akamai.steamstatic.com | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | shared.akamai.steamstatic.com | udp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.19.117.13:443 | shared.akamai.steamstatic.com | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f426165d1e5f7df1b7a3758c306cd4ae |
| SHA1 | 59ef728fbbb5c4197600f61daec48556fec651c1 |
| SHA256 | b68dfc21866d0abe5c75d70acc54670421fa9b26baf98af852768676a901b841 |
| SHA512 | 8d437fcb85acb0705bf080141e7a021740901248985a76299ea8c43e46ad78fb88c738322cf302f6a550caa5e79d85b36827e9b329b1094521b17cf638c015b6 |
\??\pipe\LOCAL\crashpad_1868_NYSJGVAXEKJXEBTX
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 6960857d16aadfa79d36df8ebbf0e423 |
| SHA1 | e1db43bd478274366621a8c6497e270d46c6ed4f |
| SHA256 | f40b812ce44e391423eb66602ac0af138a1e948aa8c4116045fef671ef21cd32 |
| SHA512 | 6deb2a63055a643759dd0ae125fb2f68ec04a443dbf8b066a812b42352bbcfa4517382ed0910c190c986a864559c3453c772e153ee2e9432fb2de2e1e49ca7fe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 45994c3c0756aa9ba081323e58e86843 |
| SHA1 | 18ad1412113fb79a2ef764f7385262dc37f91e79 |
| SHA256 | 6a29bd2131dd3a203ea0615381f1058a60bd47f8147fd95f3b51114239ba4b19 |
| SHA512 | 3ad8ef0cfd7effbeb3a3d47cbbe8be80983d7c180c063f0ed82100ef9af25ee4087a86e1408eb637a58e6ec270dd029dd474b6d5a4253da6bbb81c2bf07152d4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 3dd0f50228ebfd6d35754d5dcc8809bc |
| SHA1 | c22bd2cc298f129d147d0c7db838b2509f809a73 |
| SHA256 | 96c73a325bcf542cea4a161b4ed054438b04959d1ea7cf7b42cb353847c43522 |
| SHA512 | 4e692490b69a42bc77bcb181020eeef072ca72e090d6f93e352ef2c71c1bb6920269b74e58f2b540d7263acd02b48e73ebc13e789385e077329ee9863f12eb84 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1159db76dd6a673da074ac5b96d2b10a |
| SHA1 | 9902a9cf01eac5efdcac22bfed3a1f4d724c40d0 |
| SHA256 | e722e56fc1b3ee33f2f139e786ba82de3439b16373666ab5f47a949cde7d1893 |
| SHA512 | 105df511e82545db1138103d8b05f2dbdb9866e0e1d4cc1dedb65227491e926df0906d0c7bbaf8f7dcb55585497fa65fd2c724d339c2fb38eed6abbff01a5c75 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 895957c2f5066e39f7bb246d8ec57f7c |
| SHA1 | c71e4905bf4d41e479fd2ea003649a2595fb020c |
| SHA256 | 2a8b7b66e4f2978c647f68fcbed1e7519110d4a0c63378e7906446c6a3620d83 |
| SHA512 | 0918663756a1cd32e22dd8e529b4007b0894ec5f6ece433c1e45ea7fe7e8f8ca6121e09080004408c38aa2bd4ba9f619da6f826cd75bc3a1c62bb38eb72201c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 0bec68a0262f8a1b2112434de2a2959a |
| SHA1 | 9df5927f98a774da72146f5ee2594e40d7ca709e |
| SHA256 | 616eeda966e3e3f0b63ccdfcce43d371cdd9cb456ecdb2c511c0fcb4676cdcdf |
| SHA512 | 5793f4115d5b30cf5d1144a84593efc942848f3ee4ef0e50dc9013c06a9343ed991c67054e8e1f59fc9134a18ea98709cd6683eba43d8532615865bb9d2ff266 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe580e82.TMP
| MD5 | b023e355352003d1fd917a769b19011e |
| SHA1 | 705ab5dbcf398c57ee69cb882791906e770b1412 |
| SHA256 | 13423b82ff4fea68f02dc81f4ac0f62a8c9f93fb57f00f4e3a58aca0de5d1b3e |
| SHA512 | 7ca72348a105de917c04c6068e876c21d8e407a7c517627336c6d2913d47b3c44fea2535181aadb1dd01799f252bd6927c2be4253c128ea2f1402cf571895c15 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | ab9e924e63b847db022572b13ddae60e |
| SHA1 | 70eb71389dea28733f46de856b0d74dac4c61b5f |
| SHA256 | d8d2ebd5b85a8fa72e9bfc481a039c8718ce85bb0c2fa1344f49d0e031dca2de |
| SHA512 | 6dece8712fa3013aa81350160d943ca3874f969d41c5e5421e7e79c2b763aa7678501d47047092fc39ff31141051339d4a34494e5a3756d2b6d18fbab9e63009 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe582650.TMP
| MD5 | 6927863cff6a53460dd254f9b5018d30 |
| SHA1 | d044ab4c779c2296d5926d87723b24dd7a923172 |
| SHA256 | 824e841c5d467fc8a8a96ef8b3e5fe99a35fc3a3a849303910ed20d0ac002f40 |
| SHA512 | d1025ec2f06d704cebca74027dba55deedb250aa43382a0fdb3903a6863ae08d99f3b88e90e6d0078a4ebc0460965d621919434fd33fd42a5948cf62f1c544d5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 11508a503e3daadae2a6947cc4922bd3 |
| SHA1 | 28145e8012fd8404901f63f4ef69573761aacdf1 |
| SHA256 | 8d3383d262161a7ee7a2c6a1072e5b37b396633ea32bd83dad52f39fbd7e139e |
| SHA512 | 8a9edbf39dceab344c02e10eae7794216b02186be6d9d04033cacce769e09d8a8ffd2499d982ae87b42e8965ee0e652421a6b08bb55154f4334fc5097180804f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 86d3eae41348292da3c1a3903ec6b542 |
| SHA1 | 039a0ac8cacbaf772b86af97140e601eb1edea6a |
| SHA256 | 79082ad9df9576e8e19584b0d71cf6054602b9af79c697d6fc2a34c5f58c7723 |
| SHA512 | bc232ddccc2e375527e5f2800ec55e28caaa18ad91e02033d1f22b969c290afbe11bf29c82495015939bb856c1d2877e06825695e3b87fb477827a4929c7c8b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c218e3d75608e629413b77fea49214f0 |
| SHA1 | fec81a6b07cfd178862e451ade70ded69484a376 |
| SHA256 | 770d2afa024cff25c0842c64e2b068f1ea9f1292c80cba52a886c308a6c44b0c |
| SHA512 | 720f146170109bd02c5a05fa3c3095e3c4fdb6abb4ae0c0d40ee241a8c451e6de97758598af6a0962a341310e8fd7a3f468217a68c5df2489fac197eb35471f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e47b8faa31c311a6b089846b357231f8 |
| SHA1 | 9fbddfbf7f9315e805296718ce505008d0068003 |
| SHA256 | ce6151bf1ce603cf7310f9e26e75a6023e9625e0ad4cee4ff92790f79da581d9 |
| SHA512 | 862e10e7ee9ef1d3c32126945ec6633ece66f71e15fb70c69823c7ab90016e85bcf9ab3ab8107b1e41fa497571f7ca609d409c73e2c3a6dc375ce2bc91396118 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 23777b2529bd4009f115e3945f9aaf9d |
| SHA1 | 4e4b1672cf8b77f1b0b4108fa94d15ea86ceaec5 |
| SHA256 | cb93276f28b394cdef15976910bb1c77130013c191e5ac5265c05091e5716324 |
| SHA512 | de2f5f051ccedb07ffa765e24480618f40d324b0bca1093323f49ddf43462e40d5cb79b1dbedc987b9991576e4f78c74255b05e9820547c37e39845bd9739a69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8e74cde50b2875e0d19a408199730c08 |
| SHA1 | bb86b4664d0c683adb5b02bd66f70ee4de33861e |
| SHA256 | 1d08c68abd58084b0ee15239786acbe9f3107ac5a9e2fbb4bfec17239ff925db |
| SHA512 | f4352800830c1e8ee23cb6fd7bf8a4a19510502ad2aba3f33a5723e32c421ff2d465e0cdfe7ceb098935b32e2193d16d0bb11d57c492278087a674f53bfb3850 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3fa38a1d8b9c3d897822dd3985b053cd |
| SHA1 | 90a2cbb2409cb4b72c92a1d10a8f2626109f2ee9 |
| SHA256 | 8cca1ba1f95e87c0638ff40b25c0b6521bfe820f1516194102b07510b4c91a09 |
| SHA512 | a7fc49101140df63fbd44b8ea4af115a5f23d9a593c04a6a7a3add4a80f6c55199ae2857b47271cd69b8a2e425ed8ba2f1de3ac8f29c0c9265db301aad64293c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ddc450f72bfd6a06bb6e5d9759eeae82 |
| SHA1 | 4cf66681891c6670df140c59ed6e2c6cb0940e4a |
| SHA256 | 81db7172060999e90ec0ecc68511ac26de0889b8434f66e38d4f5a53e077767c |
| SHA512 | c21d18eef0604b56081f88d5e379f54acf57c02c791dbadffb33b557d2b5f9b692057a1ce2c6d5ad0b4b9e5e1257a6d8cf8bb1e79a2d7cacacc0a6b6e5da73ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5cb2ab693e2698082f6df8893607b4c2 |
| SHA1 | 0061427fba6c76338b923029c92f443dd0824789 |
| SHA256 | ceadf000a9686c6a614ff3ca8e0f1efb14b4799d5f5afbf5413f0ec71d721cc5 |
| SHA512 | b6636a0f21536d62279a6378c355fdce41c7b90821424376330c13ae6c9fffdb4b2e93df7eba91c2695fab735344b85c5089c65a9308c9750fda9aab81200af7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6776d2b55bda5bcd758f5ada8f5f4635 |
| SHA1 | 3b6452d55c46f7c4a1e676eebf693637338c4ad5 |
| SHA256 | 7eb7c7c7c3fb16b7e75c8637dee9b7b3f55a37142f7c63b26f8c74d37e61234b |
| SHA512 | 49f1b9ca71fa4f00a071b498f98f9209d9101be2933fce84bcecfbe48b2cbd8c9e812551494842239ace861de00926c8f2db113aa3d8b07e3e0d2b42a51a13ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4bc382a1c05c832cd0571a072ff724cc |
| SHA1 | 94fbf1bad4fb96635dff3c22a7c828382b0dd74b |
| SHA256 | c456f84a24876d6e6d3b3da190b73dedde436e8777e172c6be79c46bfc8c5554 |
| SHA512 | 3ae7e795ca1ee45e765c3a33a27a2d0f2acf6acfa30d90b8152bcb816ccef61ca2a961f28b977d1feebfe4b66c92463f71e2548c3f184d409ab2ba7ff38ab039 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f71a6db5403b46cc422478f9acd5387f |
| SHA1 | b915cd68c53718999f534d6d3f4b68aa879422c4 |
| SHA256 | e5d954c0adca16f8be098468a2a7aa38e028f6051c4ef365304117e1aa431ec6 |
| SHA512 | 1d08c358d2a4d6525fba18406efe78e9183fbd80c226832ee860efb3496ac62e3a81914e0c68f204ae671f75f967491c586ea83199b55722d7ad196eb63c92b3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 6a14c6c540172b600a90532ea5ed367b |
| SHA1 | 0ddddab46bae09d78d070adbdf29c4c6589e80db |
| SHA256 | e9661292e7e8ba163cb6868a2f72e402b42ac077a11fcbc7d45fdc618f7e7b1a |
| SHA512 | 2c8ede024f10bb248cf6c2c12f82f4f3a4260ad376a686d295fca0356b24333b5a9bca48440c3a918222970a2396adcc72605c0b26e787fc73eb987fff476230 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | aeca121d32c6a5c88e0a1af04821e502 |
| SHA1 | d759a7401837ee90c7360964bf5f80628b21d545 |
| SHA256 | 7dc39d47ff1a1e37b6f81fd9195fad819648a6d73c5c84ecdea34303adc6f0cd |
| SHA512 | 64eceb7a2361f39d5cb3073fb32ec40523f0a26b7dc356667a567580c6ed221e65a350978fd5aa23ce46c42952148a2a8d2e9822eaabd02f21983e5a34061f49 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8275d936ec810ae4d00012dea8444f61 |
| SHA1 | 048c4aa2c00d44e28daf40caed018cc2415d74d6 |
| SHA256 | 5aacbcef6325a9bb8684da9d12d113e17663907af16661299364ac68af3b3f7a |
| SHA512 | 3f94d2292f9d86b9d81300e01e5a6f7a479853c0c8e59e90e0796321a640fd4138ebc6ded04305d7faf3302aba4e96d5ca6373726465c0a24a5a03c4f786a91a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fed3c844e76c911e92963fd67085a9d3 |
| SHA1 | 06725c21710a610ffdde5ee9c4b504a6c62da000 |
| SHA256 | 6ead02bd91baa38152f69b83344c5ad5d2c4ae3addbc7217e74f8a4eab654bad |
| SHA512 | bccb7ff123d537f3c3045b379153db2a77b7c5abe203b6c7bc5a191d90fdc804182b8a2bd210250537ad3ca8e3dfad0ca561d2826e956fde2ad8505a2158cc44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fa86da2b044a5e6fb62c1c4a10ce74a3 |
| SHA1 | 882de845e7ee553bbb03a10e1bfeb082ec6e451f |
| SHA256 | a574480579112ce7693e2abac6160791735c03fb40992a226a5eafd91edabb76 |
| SHA512 | 05597f7bb0fd0416a83e64a5bbb044cae36d6c17e042ced709d321e9a039ec774f2b53a680a03536cb2b3f3cdcdab85fbd262f5cea737e08be95b5c6e713a98d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7f208a6f574a9d270787c6e1ba5cc8e1 |
| SHA1 | eec773629399e4fa57701a108c894320048baa56 |
| SHA256 | 55907ab151307f2c6a55c5202f94c3866d9e3bc7ce326dcf4bb17958d0a3115f |
| SHA512 | 72605c89aafde8e59bd06dd590b92437d2a59612f6d2d1ca45c13e4995c8b9f588c43a87c2e3e798455642561339391576478d2f3c357ac64d2d89a908306adf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | ff9e773932e83fdc4456cdc7b5264cc3 |
| SHA1 | c73ee4a774020b2887fb1e1459bb2795f4b7b7ee |
| SHA256 | 7df776c0713593686370188dffb0a221570ace0466a8d31d4cd454f044eb14bc |
| SHA512 | 178e1b61c5a01c6fb67fadb7fa0b71bb26e702f57ea32d2bd000a7c6a53f18a5f649ef6ffc77ad3a8b00bff5ad2868621619497bbf20dde33e22a4fb1eda9d54 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00008c
| MD5 | 588ee33c26fe83cb97ca65e3c66b2e87 |
| SHA1 | 842429b803132c3e7827af42fe4dc7a66e736b37 |
| SHA256 | bbc4044fe46acd7ab69d8a4e3db46e7e3ca713b05fa8ecb096ebe9e133bba760 |
| SHA512 | 6f7500b12fc7a9f57c00711af2bc8a7c62973f9a8e37012b88a0726d06063add02077420bc280e7163302d5f3a005ac8796aee97042c40954144d84c26adbd04 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c915114d25154151fecbc65c9f3a2791 |
| SHA1 | e972f44e040fff54ee2687dfdd021793c015cf0e |
| SHA256 | f589d26c629e5b646f68a221e1e187cbb073e15e7f8b09b73d89e6e56ea542e1 |
| SHA512 | 8a6e5c1e14b828683386a90756ac1d7fbb24c878879aafa2276582486134916a5eac936597cac391e846026acae1afe1643f0d372884cfe76babfe02ffeea9d8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000026
| MD5 | 97b9940ce8ba7b3f3eda7bb55435f3d7 |
| SHA1 | b1f6aec1ccde480c2901c791c678fdafd8e2c7fe |
| SHA256 | d96902ab2818db4cc66aa586715f1bea2b011d51dd5b90cb05b20b0decb58e2f |
| SHA512 | 01eee053051102b2f2c2f640cfe136d744380bfaea62caa63c84f63c85283a430fc48f4bee0ed3c9c0ffe441a2ae265ca670ed050f6cd05e2338208fc250c47d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | 8be1165c374241b6f3dc0ae4c157bf6d |
| SHA1 | a4769bfcd69c3afa6850af974fd9a53bdb4b0dc4 |
| SHA256 | fa3c236b07d0716a9645983687441e93e9e43fc614492b018c7c8a0f3edd1f00 |
| SHA512 | 42e6b54ea06c5dbe176fa458728acac07e03ba8a65cdadf6d68a8aaf965fce4b982cdc5524272f57506b35a76bbdba6515dd454cecdf6cd3eeb00a5766c071cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5b461e.TMP
| MD5 | b101c981a21097c6054b76a04b5616bc |
| SHA1 | faec94b58ca610805e9457d4f0c2acb172f467b1 |
| SHA256 | a72f9cf13c1e589ae1af792298101641724d579b79fd74364a9322d05b147ab4 |
| SHA512 | 325ccb075fbd84077bf900429d7c69c76a5267be151172acd078776dc82027d416cb6e48216e33e4969da303c0b20ccbb6f7e3272cd4bbf99e23ae736171a822 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ad3b518b0fba011f3b449b261bd10d48 |
| SHA1 | 76152fe4aa6b6f8dcf90655973b4c744b7f8d40f |
| SHA256 | 04376b1f2177a6eb5935a316f8d29248fcb8b9f6986ee9f4865f52cdafabf778 |
| SHA512 | 64c33db24ef97b893b164ff1772d37dfdb10c517c2ac6b8c447bd5ec3580fd398f887ccbb56875a4eb28d1b04ab17757e502d1c9597cd20c24a4074f780244ba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old
| MD5 | ef509cb16dfabd14505eab1626468252 |
| SHA1 | 283ee7113b47d4a4e0e2ef7aba9ef7d65a4fcce0 |
| SHA256 | c2523ba746f3842e2d3e0f7a800d32dabd280a7b524020a69208cf5e9373ca45 |
| SHA512 | e8259722c276771cfb36fc8795e40a6bc5b50a8049701050af641d57f23d68482effad97b286406bc91d23d84967a433d187ae876a5b162c6f017091d79dbbe8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4aca8580613a2ced66ff3552b88b9cd0 |
| SHA1 | c82e97278d0522dd134780f75d64ddd7837a91ee |
| SHA256 | b07196cfa5bc147555bec2861b4c95a81d9cbc787720a4bbd8722a889df17b18 |
| SHA512 | 497fc55a59c5530c44b3dca871732107a6fcb3f7bb9dc992e60aa28b19ab76c815ce2714bcec0733435d237a9dc4ed65bb9663b32c3dded485d1d4d94adfaed3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ad738bd4c47bbb0c22882e26080d6b3d |
| SHA1 | 1787323cb0017d004ad35d4924edfda9ee0d643c |
| SHA256 | 9a701aa9b7868d191e110e6b4f3ebfca00c9b5d6713eb4bf0a7410377a4ffacd |
| SHA512 | bd2c0ab88083168e792c02fb88dd9c4c9aa7d2f2d72aadd62463330478d12de3f9526e0762c587300da7967567fd94d0690960559abec98b2a251d9253e15738 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | a1ba5f09f9f4b1b0b488426e6974c6fc |
| SHA1 | 65e611d62784d3e791604b4b00763d6292d9398e |
| SHA256 | b737b2bdcb8f38c38da9df55c5867103812da055a67d6bd0937c711c700250f8 |
| SHA512 | 6bf902540156090016d09db3796b48556c7894438614118e0506f439f8fac7dd2a2ad9758309c8d9cc482893fe5e811489b5913b172febb5cdb1d3cd0ea7f4c4 |
C:\Users\Admin\Downloads\Unconfirmed 452584.crdownload
| MD5 | da5705f4ae30d837139cb7380d941e1b |
| SHA1 | 08ae6cb9b2703df17b2bf554586a36f4b73502a6 |
| SHA256 | 9f205a55a45a2a45d2ebb98afb21499b191a4b2e26f4311568d0337b32faa1ca |
| SHA512 | f3042947d05222aff5facc14ac6123380d502435e98608dc6d053848997cdd0fb22b121a381e67df893c15ae14ed836a58fca5898540ea5dfb0a0da32ed8dbef |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5c3682680a9d02057528b68a626028e4 |
| SHA1 | dffe0dfa5b774fac31545522da90e2079a06bbed |
| SHA256 | a21ae3112ee7061073792842d78b814cf0469c7400fde54c1f9fedc2a133a1a5 |
| SHA512 | b74270de60a3765277a56e603caa82fcbb75524087c0932f20d43b4703577c4c4b19866fa2e2c9354c22d220644e6f6a9f55e2dd6d93c5a24a84463f491f7809 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9f0a84723f6b169bb007ea33dcf2051d |
| SHA1 | 6d581d6a4769c44ba503e0f1922e347800a24a4c |
| SHA256 | 38601ab319fa57fc7ff07a929e6472dfa5e17161e901d2830d2abd19493eaebc |
| SHA512 | 1305b1dad5add6de91af709c53e620fb57985a7d58538df9700ad39aae38e3004dd32180358695246ab89442c5c620797caaeb8f0796a6690538686df2fcd95e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | f7dd3be4813f23bca77b1a44dab24f39 |
| SHA1 | 6bec036e88040e81f2e31ed09e3b67d2e6cce01f |
| SHA256 | f7747e30265e6cca76c0e12463a0e4098d78940fe0160ef8e504f983c9b835b1 |
| SHA512 | 2ac64bc4f310b23bb1efc9af9d31d2f728115c82926b06a01ad26d95bfe3c34284d0e62ba55817c8b4bcecb0fb2f7b6011e16d9bb1e4794e7b43c2bc2993c4a4 |
C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe
| MD5 | b68e7f7ae52ef8e962723c7ddda4f75d |
| SHA1 | 686bdf2057cdd7b16877fb5eec0aff150fa074d0 |
| SHA256 | d779b2acc52b4b3e72c1461dbc7e950f0b650e924b3799db425942f64624e94d |
| SHA512 | cb0ecf531c95d657019b0188e648520b36b8386516d2e640239d99972ae44439d21ec6fcbe7902fc59c6f65db3571db0944e48f2207a442f3be5d10c9655bbb1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 677c9b2f89239be1f8c259a2a5debbba |
| SHA1 | 938f1454435f24133e7ab61207f974b79b9dcfae |
| SHA256 | 49f66e74e43c1e164faa9681ad582adf64eff624ade9001943cccc456a30a440 |
| SHA512 | 965fd765372cdba6ec8e0a760ba9415f58c332c7cd6e6cc91c9ea844ac23f7ddf0a367d6e0a66dd27bc3ad430136cbf0f42eb28560dc1df9348be6c7bb56b0f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | bc315d3fd9a7dfffc01e7abb128b1e30 |
| SHA1 | 97307df00f9207cbec7f1ac4ccb068a123580d09 |
| SHA256 | b073f7bfd87caf69470d8048c43aa429609bb74efc52f40930af542fdfb37717 |
| SHA512 | 1cd6768ce677f7fac7e80c0ca0a4530694ff9ee8b2dee69078ee8736a3d87a0760c3f6994c76d512e91b2399f00e1ce66cacdfa3a7cbfb740140629f0d81b1c8 |
C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\7f3632afdee7118812dd116069729b41
| MD5 | 7f3632afdee7118812dd116069729b41 |
| SHA1 | ed116033aff765c3eb24c3059aff6c6fb0be0c0c |
| SHA256 | 6c98e86a6d732761ef8b8b2df2646f55190657e02201ec8ab8b9137345154c5a |
| SHA512 | 44948874e9d243c234882ab1db269fd729f57ad5fb36a3b22428e0d78a9fe5a05366ed2eb97d0331caa0ef1b622528130344016e13f809b266dc1bdc10ebf9ed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | dbd542c80bdd02233e0e9344fb578478 |
| SHA1 | 2f14c74abfc662e78d36af93964969e1f0a0c58e |
| SHA256 | 293c4b5066b0d98799f92a1047a86a3fecec82cd5561fdcd9230093faba068b5 |
| SHA512 | 87cd79df234bed752ec687119a1c9784731703a69bd074dcb7ff8caf1b90f711500d3a5ccda3dc5192e49c928fe1d401e87ee8f2685e165aafc162e1f789b24f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 79c5b7698149a7502cc6a3760e74c3ce |
| SHA1 | b0b66170dfa6b088040cd85a55c13dbf34d01d15 |
| SHA256 | 0b6a4cc0af667545d6ae6f17ffaa6f6d712804a7804c51bb2ddcc743234ee89d |
| SHA512 | 4ac33c1de356f9a68a47055170c3a08139e680908ade4b7237bc533b27e2c4b73169405367ec365f56f1eafc94175e69f2b5e92496d2690c15b9ef4626279cc4 |
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
| MD5 | 610b1b60dc8729bad759c92f82ee2804 |
| SHA1 | 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552 |
| SHA256 | 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08 |
| SHA512 | 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdate.exe
| MD5 | 4dc57ab56e37cd05e81f0d8aaafc5179 |
| SHA1 | 494a90728d7680f979b0ad87f09b5b58f16d1cd5 |
| SHA256 | 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718 |
| SHA512 | 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdate.dll
| MD5 | 965b3af7886e7bf6584488658c050ca2 |
| SHA1 | 72daabdde7cd500c483d0eeecb1bd19708f8e4a5 |
| SHA256 | d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19 |
| SHA512 | 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_en.dll
| MD5 | 4a1e3cf488e998ef4d22ac25ccc520a5 |
| SHA1 | dc568a6e3c9465474ef0d761581c733b3371b1cd |
| SHA256 | 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011 |
| SHA512 | ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdateCore.exe
| MD5 | c044dcfa4d518df8fc9d4a161d49cece |
| SHA1 | 91bd4e933b22c010454fd6d3e3b042ab6e8b2149 |
| SHA256 | 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2 |
| SHA512 | f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe
| MD5 | 60dba9b06b56e58f5aea1a4149c743d2 |
| SHA1 | a7e456acf64dd99ca30259cf45b88cf2515a69b3 |
| SHA256 | 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112 |
| SHA512 | e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\EdgeUpdate.dat
| MD5 | 369bbc37cff290adb8963dc5e518b9b8 |
| SHA1 | de0ef569f7ef55032e4b18d3a03542cc2bbac191 |
| SHA256 | 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3 |
| SHA512 | 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_ar.dll
| MD5 | 570efe7aa117a1f98c7a682f8112cb6d |
| SHA1 | 536e7c49e24e9aa068a021a8f258e3e4e69fa64f |
| SHA256 | e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01 |
| SHA512 | 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_cy.dll
| MD5 | 34d991980016595b803d212dc356d765 |
| SHA1 | e3a35df6488c3463c2a7adf89029e1dd8308f816 |
| SHA256 | 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e |
| SHA512 | 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_en-GB.dll
| MD5 | d749e093f263244d276b6ffcf4ef4b42 |
| SHA1 | 69f024c769632cdbb019943552bac5281d4cbe05 |
| SHA256 | fd90699e7f29b6028a2e8e6f3ae82d26cdc6942bd39c4f07b221d87c5dbbfe1e |
| SHA512 | 48d51b006ce0cd903154fa03d17e76591db739c4bfb64243725d21d4aa17db57a852077be00b9a51815d09664d18f9e6ad61d9bc41b3d013ed24aaec8f477ad9 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_el.dll
| MD5 | ac275b6e825c3bd87d96b52eac36c0f6 |
| SHA1 | 29e537d81f5d997285b62cd2efea088c3284d18f |
| SHA256 | 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0 |
| SHA512 | bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_da.dll
| MD5 | d34380d302b16eab40d5b63cfb4ed0fe |
| SHA1 | 1d3047119e353a55dc215666f2b7b69f0ede775b |
| SHA256 | fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f |
| SHA512 | 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_de.dll
| MD5 | aab01f0d7bdc51b190f27ce58701c1da |
| SHA1 | 1a21aabab0875651efd974100a81cda52c462997 |
| SHA256 | 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c |
| SHA512 | 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_cs.dll
| MD5 | 16c84ad1222284f40968a851f541d6bb |
| SHA1 | bc26d50e15ccaed6a5fbe801943117269b3b8e6b |
| SHA256 | e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b |
| SHA512 | d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_es.dll
| MD5 | 9db7f66f9dc417ebba021bc45af5d34b |
| SHA1 | 6815318b05019f521d65f6046cf340ad88e40971 |
| SHA256 | e652159a75cbab76217ecbb4340020f277175838b316b32cf71e18d83da4a819 |
| SHA512 | 943d8fc0d308c5ccd5ab068fc10e799b92465a22841ce700c636e7ae1c12995d99c0a93ab85c1ae27fefce869eabadbeafee0f2f5f010ad3b35fa4f748b54952 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_ca-Es-VALENCIA.dll
| MD5 | 2929e8d496d95739f207b9f59b13f925 |
| SHA1 | 7c1c574194d9e31ca91e2a21a5c671e5e95c734c |
| SHA256 | 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df |
| SHA512 | ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_es-419.dll
| MD5 | 28fefc59008ef0325682a0611f8dba70 |
| SHA1 | f528803c731c11d8d92c5660cb4125c26bb75265 |
| SHA256 | 55a69ce2d6fc4109d16172ba6d9edb59dbadbc8af6746cc71dc4045aa549022d |
| SHA512 | 2ec71244303beac7d5ce0905001fe5b0fb996ad1d1c35e63eecd4d9b87751f0633a281554b3f0aa02ee44b8ceaad85a671ef6c34589055797912324e48cc23ed |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_ca.dll
| MD5 | 39551d8d284c108a17dc5f74a7084bb5 |
| SHA1 | 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884 |
| SHA256 | 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07 |
| SHA512 | 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_bs.dll
| MD5 | e338dccaa43962697db9f67e0265a3fc |
| SHA1 | 4c6c327efc12d21c4299df7b97bf2c45840e0d83 |
| SHA256 | 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04 |
| SHA512 | e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_bn-IN.dll
| MD5 | a94cf5e8b1708a43393263a33e739edd |
| SHA1 | 1068868bdc271a52aaae6f749028ed3170b09cce |
| SHA256 | 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c |
| SHA512 | 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_bn.dll
| MD5 | 7dc58c4e27eaf84ae9984cff2cc16235 |
| SHA1 | 3f53499ddc487658932a8c2bcf562ba32afd3bda |
| SHA256 | e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98 |
| SHA512 | bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_az.dll
| MD5 | 7937c407ebe21170daf0975779f1aa49 |
| SHA1 | 4c2a40e76209abd2492dfaaf65ef24de72291346 |
| SHA256 | 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9 |
| SHA512 | 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_bg.dll
| MD5 | 8375b1b756b2a74a12def575351e6bbd |
| SHA1 | 802ec096425dc1cab723d4cf2fd1a868315d3727 |
| SHA256 | a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105 |
| SHA512 | aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_as.dll
| MD5 | a8d3210e34bf6f63a35590245c16bc1b |
| SHA1 | f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693 |
| SHA256 | 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766 |
| SHA512 | 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_am.dll
| MD5 | f6c1324070b6c4e2a8f8921652bfbdfa |
| SHA1 | 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf |
| SHA256 | 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717 |
| SHA512 | 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_et.dll
| MD5 | b78cba3088ecdc571412955742ea560b |
| SHA1 | bc04cf9014cec5b9f240235b5ff0f29dbdb22926 |
| SHA256 | f0a4cfd96c85f2d98a3c9ecfadd41c0c139fdb20470c8004f4c112dd3d69e085 |
| SHA512 | 04c8ab8e62017df63e411a49fb6218c341672f348cb9950b1f0d2b2a48016036f395b4568da70989f038e8e28efea65ddd284dfd490e93b6731d9e3e0e0813cf |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_af.dll
| MD5 | 567aec2d42d02675eb515bbd852be7db |
| SHA1 | 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37 |
| SHA256 | a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c |
| SHA512 | 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\NOTICE.TXT
| MD5 | 6dd5bf0743f2366a0bdd37e302783bcd |
| SHA1 | e5ff6e044c40c02b1fc78304804fe1f993fed2e6 |
| SHA256 | 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5 |
| SHA512 | f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\MicrosoftEdgeComRegisterShellARM64.exe
| MD5 | 7a160c6016922713345454265807f08d |
| SHA1 | e36ee184edd449252eb2dfd3016d5b0d2edad3c6 |
| SHA256 | 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9 |
| SHA512 | c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_eu.dll
| MD5 | a7e1f4f482522a647311735699bec186 |
| SHA1 | 3b4b4b6e6a5e0c1981c62b6b33a0ca78f82b7bbd |
| SHA256 | e5615c838a71b533b26d308509954907bcc0eb4032cdbaa3db621eede5e6bfa4 |
| SHA512 | 22131600bbac8d9c2dab358e244ec85315a1aaebfc0fb62aaa1493c418c8832c3a6fbf24a6f8cf4704fdc4bc10a66c88839a719116b4a3d85264b7ad93c54d57 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_fa.dll
| MD5 | cbe3454843ce2f36201460e316af1404 |
| SHA1 | 0883394c28cb60be8276cb690496318fcabea424 |
| SHA256 | c66c4024847d353e9985eb9b2f060b2d84f12cc77fb6479df5ffc55dbda97e59 |
| SHA512 | f39e660f3bfab288871d3ec40135c16d31c6eb1a84136e065b54ff306f6f8016a788c713d4d8e46ad62e459f9073d2307a6ed650919b2dd00577bbfd04e5bd73 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_fi.dll
| MD5 | d45f2d476ed78fa3e30f16e11c1c61ea |
| SHA1 | 8c8c5d5f77cd8764c4ca0c389daee89e658dfd5e |
| SHA256 | acf42b90190110ccf30bcfb2626dd999a14e42a72a3983928cba98d44f0a72e2 |
| SHA512 | 2a876e0313a03e75b837d43e9c5bb10fcec385fbb0638faa984ee4bb68b485b04d14c59cd4ed561aaa7f746975e459954e276e73fc3f5f4605ae7f333ce85f1b |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_fil.dll
| MD5 | 7c66526dc65de144f3444556c3dba7b8 |
| SHA1 | 6721a1f45ac779e82eecc9a584bcf4bcee365940 |
| SHA256 | e622823096fc656f63d5a7bbdf3744745ef389c92ec1b804d3b874578e18c89d |
| SHA512 | dbc803c593ae0b18fd989fdc5e9e6aee8f16b893ae8d17e9d88436e2cd8cae23d06e32e4c8a8bf67fc5311b6f2a184c4e6795fed6d15b3d766ef5affc8923e2f |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_ga.dll
| MD5 | 3b8a5301c4cf21b439953c97bd3c441c |
| SHA1 | 8a7b48bb3d75279de5f5eb88b5a83437c9a2014a |
| SHA256 | abc9822ee193c9a98a21202648a48ecd69b0cb19ff31c9bbf0c79dab5f9609b0 |
| SHA512 | 068166cfdf879caf4e54fe43c5265a692fcaf6a9dcbf151335fd054bbec06260bc5ed489de6d46ca3fc0044bc61fa1468fea85373c6c66349620618ee869383a |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_fr.dll
| MD5 | 64c47a66830992f0bdfd05036a290498 |
| SHA1 | 88b1b8faa511ee9f4a0e944a0289db48a8680640 |
| SHA256 | a9b72fcb3bdb5e021b8d23b2de0caeca80ddc50420088b988a5b7503f2d7c961 |
| SHA512 | 426546310c12aeb80d56e6b40973a5f4dffef72e14d1ac79e3f267e4df2a0022b89e08bba8ab2ffa24f90b0c035a009bed3066201e30fe961d84ed854e48f9c5 |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_fr-CA.dll
| MD5 | b534e068001e8729faf212ad3c0da16c |
| SHA1 | 999fa33c5ea856d305cc359c18ea8e994a83f7a9 |
| SHA256 | 445051ef15c6c872bed6d904169793837e41029a8578eaf81d78a4641ef53511 |
| SHA512 | e937d2e0f43ade3f4a5e9cdeb6dd8c8ad8b5b50a7b6b779bda727a4fe1ced93abd06720395cc69a274ce3b0f7c6b65e1eba1ecf069db64edb80d007fbb4eedbb |
C:\Program Files (x86)\Microsoft\Temp\EU4ED3.tmp\msedgeupdateres_gd.dll
| MD5 | c90f33303c5bd706776e90c12aefabee |
| SHA1 | 1965550fe34b68ea37a24c8708eef1a0d561fb11 |
| SHA256 | e3acc61d06942408369c85365ac0d731c5f3c9bc26e3f1e3bb24226d0879ad9c |
| SHA512 | b0c1a9d7df57d68e5daf527703f0b6154a2ef72af1a3933bda2804408f6684b5b09b822522193243fd0756f80f13d3ab0647c90d2bed1a57b4a9fea933b0aa9a |
C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
| MD5 | 23b793701f5f1fba54846ffbe9b5ab19 |
| SHA1 | a8eadbabc0a55a64b544927febe681883f56df25 |
| SHA256 | a7ef19b0d4d9f9ed07bec9ddf0b8b3ee9a7f835517a0ed06e7215178312a7a97 |
| SHA512 | 926d4a099c57ccf8f07ca55086901c9b3251991a30b6c0906e5287b50c00cb9aecc900859559fd323d596de9d57cd205859778fbaacbffc03e973f60b4b595d1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5a6a71b215c69505f66037f94d2aea23 |
| SHA1 | 36a94d062299659ad929382a77a2f53f08cf5d21 |
| SHA256 | 6412b0fb568c86f43b4382035b25043950594f3b4ad0e2a564fadcfdf2b06ecf |
| SHA512 | d4f70672988ab3ab37ea60c223d51f2f5591c54f7a95b66784389864c4301fd91c767ee4209005c54d73f7a556cb3a816de5b6e2384de513d1c574b704444074 |
memory/5872-1754-0x0000000000660000-0x0000000000695000-memory.dmp
memory/5872-1755-0x0000000073FD0000-0x00000000741E0000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 063cb8efa2001129dde16555658b73fd |
| SHA1 | 6ce371e395993e6f712a521840f3059ec4460a1a |
| SHA256 | 105c587c3b0ba1e894a3d854a05e1981a7cc7084493000d85a60367f1d730615 |
| SHA512 | 048253643c90708b4d531d8e7575cc38482ac3630546c9f88a52b021ca95fb07a047eb3810c7806b4936c374becc069d3588c51812d71d670d1eae5f9266d312 |
C:\Users\Admin\Downloads\SyxReBootstrap.zip
| MD5 | 94818b5dd6fd533052a0a9f68f23b86e |
| SHA1 | ae34ccf4df49553d6fab6eb4d32a0be7854abe97 |
| SHA256 | 6e4f0f71b55576352534d4595a58e564cde2f4e338541661c1569af8a8fbd463 |
| SHA512 | e6d64bc0a535e2a500985022beea1096aea95f2999ac36793e25c88ba6ff1ebe551e7841d26be1db8520715b6bc7caf76dee432376e1099ab06b0cc2023fc19f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 614a647523557c67e57c43601cff9a09 |
| SHA1 | c81ab62eab6b0b080239f872a54512c70242ac2c |
| SHA256 | f2d015851cea0b1e2d91d1341740696f1932d37a09685605d644162031f3f540 |
| SHA512 | 6fbed895dbe8e72250e3025fe9f1e53c20f0e35cf4da7c3492abafb36d826181755333dec71ea6cbaa4d04419e17392eb5712845da9a5b92fd0cedeeeff10541 |
C:\Program Files\MsEdgeCrashpad\settings.dat
| MD5 | 34ffd1131be2f0f63b14350a4eb4fe61 |
| SHA1 | 9a9f9c244a3e576c0699a61af13d3f71ee8ac743 |
| SHA256 | 29ac9a866af36a80f8afa1b68ec2197186cde9f42b8f09f6a9a3d87f6ff790a2 |
| SHA512 | a29352ef08c7c41d20662b4f029d198e02097da15a6557ff45c848234c9024d1b723e9bf5b9d93ab6815c530244b0c973d391fc46a81c451254e70f3cf565f7d |
memory/5872-1807-0x0000000073FD0000-0x00000000741E0000-memory.dmp
C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.56\Installer\setup.exe
| MD5 | 9a98f71bb7812ab88c517ba0d278d4c9 |
| SHA1 | 459b635444042ad0eeb453cdba5078c52ddba161 |
| SHA256 | 273f8406a9622ddd0e92762837af4598770b5efe6aa8a999da809e77b7b7882f |
| SHA512 | 5685717b2192b477b5c5708687462aa2d23999f565a43b7d67388f48eb9a3d33d9a3da54474ce632a0aee1bc4de8a6172a818239033d4a035f045e15947868f3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4834b92d065349b69bae2ef67f0d9189 |
| SHA1 | 7171d97b2d31298701a5334dffcc02bc8ad1e7e7 |
| SHA256 | 6aac80d4ea8bd36fd0d86d1318840d8e6ca267870fcbca871dbad3c3056f790d |
| SHA512 | 99c49d9ffe498a2db28c20daec3ea35ab68cc5755e383694c1296de8b236c25dea377816f0a982c670996a81cd2767e8100915308fda94b275066f0106eb0611 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 03a1dde72c64d1a8d9a30c84dd215230 |
| SHA1 | cba4aec4b6d37b0db898a7d6d45ac3f667c70fa0 |
| SHA256 | 89ed7aec0e9cbc4658cfc3cdd1cd9823fb0bac615c9056dd6cde50eb8f0c2c13 |
| SHA512 | 79a3eda3ddfb2857420d9926fd451f728599685c8f1dd3f3d1336f78668878c3beea73a27d9c19f9db3e08d557af72ef83b708affca6a03f70ae3e5372dd14cc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d65cd1e6593aa5b722bcabe1eba39db1 |
| SHA1 | 23dc4a0dad006ef7e744f9e6d53f046a12ed3ef2 |
| SHA256 | c6945321dadd06bf88bb32dc6f5d098e1a1e6632c4c36503ede27a2cd189c08d |
| SHA512 | 619027793a8367cddfbee371d4701b2ac4daf7c546c203c077601140b8494fb4b30c0dfac66f93156962ad8c2cf529230d438b50797ff49d5f1ba2654c5b2ab3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 41bc0631c628c0257d2d1419946ee75a |
| SHA1 | 16751b8ed6bf04aa6589e02b4d4da03afed6299e |
| SHA256 | aa132d8bcb6713301f9fd22d4e995c139dc9e46d80006ebf51e733c6ea2ebd77 |
| SHA512 | 1b2510b716daaf097feec4b25218eedc3b6128a41485ddb0d002cfd4d8d64f1555d7002b523207d7ce62bc1286f3b27094087c9bfbebb8619bd230a604c50be0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e2c66d8ce2c9163614977ce912aac50e |
| SHA1 | b6ba550c7565ef98e015b839552a6830d5e42d73 |
| SHA256 | 91eb2a5c4cc1d2c65d9f21d96d16a5f84c46638b3a77aabff45e105451482199 |
| SHA512 | 4eaa12479350747827cf40fa6f69a6237831fc0f2916e7c1c2df45d02d127bd51ad28b7c519d594c7dcec660e36f3024a851f23cc70c5ef746f1cd25d87ecc22 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 625df65f046ebbf876482ec80563600b |
| SHA1 | 434f78cd0082e14476527bc5e7e2252558ab5957 |
| SHA256 | e04daf309f885612b0d577d7c105e4b9b32155a9f72f49d7336ece230f9e1a3e |
| SHA512 | e78ecb09f195a3cea6e94c46f19fd009580c919c8dc96332ef1b1fa4fa9914d91e9f4d169cf2ba4fd5b2bb4bf9ce3e4c08474b8f42689b960d90047c869d424f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 111ccf47d332ec892431db05ad94431f |
| SHA1 | 0ac7fbf818fd80ce420b544d723a0a54f887c94c |
| SHA256 | bb32516a6685410cedcdccdf9f68cd19d10d9d9c3d3c15b62f3dcc112f88a577 |
| SHA512 | 25cfb4134a2eaf5201f86f10d3f638de57d990ac7a33d9b4d066f6f9d0304bceb3e3ed674485bc77d64aa14420d263c683c7b6098fff7b4374c444d3ab9933c6 |
memory/5872-1900-0x0000000000660000-0x0000000000695000-memory.dmp
memory/6040-1905-0x00007FFA47170000-0x00007FFA47180000-memory.dmp
memory/6040-1923-0x00007FFA45330000-0x00007FFA45340000-memory.dmp
memory/6040-1922-0x00007FFA45330000-0x00007FFA45340000-memory.dmp
memory/6040-1921-0x00007FFA45330000-0x00007FFA45340000-memory.dmp
memory/6040-1920-0x00007FFA45330000-0x00007FFA45340000-memory.dmp
memory/6040-1919-0x00007FFA45330000-0x00007FFA45340000-memory.dmp
memory/6040-1918-0x00007FFA45310000-0x00007FFA45320000-memory.dmp
memory/6040-1929-0x00007FFA44CD0000-0x00007FFA44D00000-memory.dmp
memory/6040-1946-0x00007FFA45A80000-0x00007FFA45A8B000-memory.dmp
memory/6040-1945-0x00007FFA45A80000-0x00007FFA45A8B000-memory.dmp
memory/6040-1944-0x00007FFA45A80000-0x00007FFA45A8B000-memory.dmp
memory/6040-1943-0x00007FFA45A80000-0x00007FFA45A8B000-memory.dmp
memory/6040-1949-0x00007FFA44F50000-0x00007FFA44F60000-memory.dmp
memory/6040-1948-0x00007FFA44E50000-0x00007FFA44E60000-memory.dmp
memory/6040-1947-0x00007FFA44E50000-0x00007FFA44E60000-memory.dmp
memory/6040-1930-0x00007FFA44CD0000-0x00007FFA44D00000-memory.dmp
memory/6040-1942-0x00007FFA45A80000-0x00007FFA45A8B000-memory.dmp
memory/6040-1941-0x00007FFA45A60000-0x00007FFA45A70000-memory.dmp
memory/6040-1940-0x00007FFA45A60000-0x00007FFA45A70000-memory.dmp
memory/6040-1939-0x00007FFA45270000-0x00007FFA4527E000-memory.dmp
memory/6040-1938-0x00007FFA45270000-0x00007FFA4527E000-memory.dmp
memory/6040-1937-0x00007FFA45270000-0x00007FFA4527E000-memory.dmp
memory/6040-1936-0x00007FFA45270000-0x00007FFA4527E000-memory.dmp
memory/6040-1935-0x00007FFA45270000-0x00007FFA4527E000-memory.dmp
memory/6040-1934-0x00007FFA451C0000-0x00007FFA451D0000-memory.dmp
memory/6040-1933-0x00007FFA451C0000-0x00007FFA451D0000-memory.dmp
memory/6040-1932-0x00007FFA44CD0000-0x00007FFA44D00000-memory.dmp
memory/6040-1931-0x00007FFA44CD0000-0x00007FFA44D00000-memory.dmp
memory/6040-1928-0x00007FFA44CD0000-0x00007FFA44D00000-memory.dmp
memory/6040-1927-0x00007FFA44B60000-0x00007FFA44B70000-memory.dmp
memory/6040-1926-0x00007FFA44B60000-0x00007FFA44B70000-memory.dmp
memory/6040-1925-0x00007FFA44A50000-0x00007FFA44A60000-memory.dmp
memory/6040-1924-0x00007FFA44A50000-0x00007FFA44A60000-memory.dmp
memory/6040-1917-0x00007FFA45310000-0x00007FFA45320000-memory.dmp
memory/6040-1916-0x00007FFA45280000-0x00007FFA45290000-memory.dmp
memory/6040-1915-0x00007FFA45280000-0x00007FFA45290000-memory.dmp
memory/6040-1913-0x00007FFA472D0000-0x00007FFA47300000-memory.dmp
memory/6040-1914-0x00007FFA47360000-0x00007FFA47365000-memory.dmp
memory/6040-1912-0x00007FFA472D0000-0x00007FFA47300000-memory.dmp
memory/6040-1911-0x00007FFA472D0000-0x00007FFA47300000-memory.dmp
memory/6040-1910-0x00007FFA472D0000-0x00007FFA47300000-memory.dmp
memory/6040-1909-0x00007FFA472D0000-0x00007FFA47300000-memory.dmp
memory/6040-1908-0x00007FFA47280000-0x00007FFA47290000-memory.dmp
memory/6040-1907-0x00007FFA47280000-0x00007FFA47290000-memory.dmp
memory/6040-1906-0x00007FFA47170000-0x00007FFA47180000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 70cca2d38d3d715484bb0d58a3a7e958 |
| SHA1 | d59421448e0c1f5512e9ddad2f8e614e560e3998 |
| SHA256 | ebea1fb0fbdd93eb9b9ae56fb4522eb5d8d689e3a9244fcc6a44d7f1cd03c193 |
| SHA512 | 99fa8e9128fdd67a032687a1050ec71df19d4d07a8af290df036e2b7cb928454f20f4411205e8093c0410c90564ea8b24fb1eb9b8dbcd7ad0e235bab6a730df4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6e8fe6785895472e70555e4c44ffdba2 |
| SHA1 | 6e0c0aca0207d9279cd2176c54e48542860b69d6 |
| SHA256 | ff68c4933e802731cf462ac8b90fd6e06164ac628eef4e770e434ec3740f167a |
| SHA512 | dbb257e5ff7aa7c911c944307f98e80d552d3bc2256257be854584d5324d16e202b80a08e4e5c663599b98f91e795420a2b04901f29e21a47afa5b6f6dcc6c5a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 99192417160e5354ec760c37e99f83dc |
| SHA1 | b95bf3187a5554defb1ec6369091692c69ea5708 |
| SHA256 | 671ddb6469351fa071eb805d4b707bdc162e3c034242048e2a7514f85420894e |
| SHA512 | 2dadb8df8c02d1eb76ff5ce9508c707a593a00bbaebe0c0e72aaf5070437e9676827f36b47d05300990658f7a43b002134b889901397fcb867eb893d1f82a2fe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | be37f7203f932d93d9b89253046d0f60 |
| SHA1 | 1031c479f2260b509e6f6a3a69510ab270083696 |
| SHA256 | 586c4fd95c114173c6eee63e076ed452f3e4e44691f81515939c652b9035ec9f |
| SHA512 | 1bd29624b9ab7ec337dadbcbef175f4eb7191c3e6ac21d1438b33aedeaf320d73c6c9d02f3e6b14652132cb0273c2d183d3ec168184fdcdd524997bc1f785ae9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f33b057568f7a54dfb0eac86c5e088d0 |
| SHA1 | 150f84cf8d81bcd5d6005f81932cbc022219c557 |
| SHA256 | fbe9f2bb5a3a2be8111dc8aac707baf0ac1ac0ada176950d5848b2d4774e7b04 |
| SHA512 | 24e92ae9081e9ce6162212ea3f66abefcf3cbf5691550c5e983c59bfcea21eedcf010bd794579245c0cc94f9771b37de5af8b8c023035b3bbc52e20d03a3ddab |
C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-studio\ec1fb8fb5fcc548b7650d7d21cdfd290
| MD5 | ec1fb8fb5fcc548b7650d7d21cdfd290 |
| SHA1 | e3587c2b150099bd0be3038d9c4464fd4c7f8daf |
| SHA256 | a46f5b439e6f1cad05931ee4318480697d5d7ee8c10497207e058078d6acf6ce |
| SHA512 | 98f7075f838e7c84ddc5bae7e2a51fa46b57cc164b68a871ae743d98fe109cbe5b3ed1995f659ab3250e4685dafb780548f6b950e4ec69c9fba4bbd65b11751b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 993996b9a2f7e7b068886ab86e9baee2 |
| SHA1 | cf320b90a68a1dff8de9825e1f5ba0760458cd6c |
| SHA256 | ae4d951893477c23b428cc817f398882496810e9e506711a3763f5103d47f81e |
| SHA512 | 5322f4a43727fd6d53d8d6b23f942142f49d58cb1254502a893fdee7ce192b7c279421f351756736349b0e0f12255edfcdec4e94a77039406e5fefa3ef54b5c7 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State
| MD5 | ec4369d5e6e1adcc1a783f82cef04802 |
| SHA1 | 791a04bf298d643bdaca3d97a11faafb7ed60976 |
| SHA256 | af3348c8f05981c47acd855b9594a06713eb5ed2565e83a333d044cebd211cf3 |
| SHA512 | 5e2ecbdc5296314069914e6463bfcbdae371da9cdca58e1cbcfba0c465950345fa0b32f1662d0d31e73fa94c186a6803205888699b2c1116e162aa3bdbdc9632 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State~RFe5eea6d.TMP
| MD5 | 9a7b15a1e2d49520ef7ba0a0799b6621 |
| SHA1 | dbb7212c3773cb77a8873c1b7612abfa2d87c697 |
| SHA256 | fbb99961edcbd426a39a85a7c4ec607bf99efe1539e4ee4db8971e2e234d0b7a |
| SHA512 | e70db8284f07051104321692d8e2e35d150d541f441a8919cbdf3581112f2d71f5009091ee700850dcc55d8106224ab6ffcd53df00e72b79c9f828614ea1a02d |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State
| MD5 | 7f11f763a43849496f0f0761db5a155c |
| SHA1 | 31e5bec4f5eb040ce18a6a2725af3e156826c076 |
| SHA256 | 0ca00f3663631b968e2be91402eb1b4f5599817b46373168a34112e652679b0b |
| SHA512 | df604f507f45100ba5320cfe56a4d317f99fe8aab0bf384aaf78217438897ccb25b149af582963b9bd7a9680c817e254859326abd8ccd0e8de6ccd0646eded4b |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State
| MD5 | a2eb7d630b9a3eb44dcca9856b056b7c |
| SHA1 | 7d42bbe6dfbde668bcad1821f289c5187877d0ab |
| SHA256 | 9f88282ee91a027ef6c7de42122e1a58203dec0f8d54c7800bf373791876b41d |
| SHA512 | 39b8d8e9aaf3e3da8ec496c195e71b256b4ebfc424084ba79b9d4bb1a13f45092f518e3ca8cd332c5289d42c1acad74321f0eea220b53c411fe1c89e9c00fd5a |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Crashpad\settings.dat
| MD5 | 9d4ecc7289be435480ac782a69dad3f5 |
| SHA1 | 7b41932b4233a6abcbddabcca96056a1c47ee4cb |
| SHA256 | 789b8bc874dbd1ad527f86cb5217f5443b0867e55346c2510cde1da40e9068d1 |
| SHA512 | 7af00ad6e7ee3404df12f2d1529431c93c1a282c1115ebd2d14f108f9435bbe06d4ebbc0d39844e6ef72ed149ad66c8ea1359631295ce59c3c4921e81988ef14 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GrShaderCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GrShaderCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GrShaderCache\data_1
| MD5 | d0d388f3865d0523e451d6ba0be34cc4 |
| SHA1 | 8571c6a52aacc2747c048e3419e5657b74612995 |
| SHA256 | 902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b |
| SHA512 | 376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\GrShaderCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2039010af541a7460ea40526f30a2ef9 |
| SHA1 | ec42aa409f34c6b413686b95e416b70e57a625fe |
| SHA256 | 2787ceb0e4a7ffb813a51820192b027ed1612fa981079c6d26f5ed596143883c |
| SHA512 | f74ddff203e861e84d7e51f1aa4c0cafa12d7e360f2832db25004c58f0924b3f502d3416c504d6a772bffd79046dbd0c63fddf4a15b2a4d4a8fde3b47ba80f0d |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State
| MD5 | a67973b6dcd7109fb2a5e448ca8d8437 |
| SHA1 | d72b462c904b08580afecdb1f46d4bb0730882ec |
| SHA256 | e461d5996fbc1d13fffae35ab75c9a54a435137436a8e6aee280f5ddd6fcd50d |
| SHA512 | f6ede3b7270acbd6974f5e9ac223d2a0bbf35d287dd6d34c7dcf3ef687d4f18777a2e285882423dd3cf6cd376a5b568f93963d3ea3884b0e991e2c38cc0bfa4c |
memory/4432-2842-0x0000025257020000-0x0000025257042000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_azwzcnw2.bof.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/4432-2852-0x00000252573B0000-0x00000252573C2000-memory.dmp
memory/4432-2853-0x0000025257390000-0x000002525739A000-memory.dmp
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\mode-csound_score.js
| MD5 | 67d3027a53dc9dea93e8badadac2c08c |
| SHA1 | e7b8064b0c9aafbcfc27b39ed66f96eeae054e63 |
| SHA256 | dfd544612c4b4c146234c397c610062ef0a64d84ca61bb146a3d74017b93bb40 |
| SHA512 | 091fab4c78f777f27afe3f10c7ff4777babbdcaef75ed99cb12b7dfd831f7ee9837d418f9932eccac3691abd508a8bf64753f1ac7e4bdda85b9792876400c7ea |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\mode-django.js
| MD5 | f35de187177b0165615f713868e14448 |
| SHA1 | 918a10274d31f09a0fc96b1b5d0dd35d6c0f136a |
| SHA256 | 624dcb5438d0d5bf3c630e938da5f0bd2d8bd904fe4316afea82ce8b7f25d56d |
| SHA512 | fec3ec6a120729367801800ed585971ece19c032ff03bad38074d2ff0f4310ea872a48dadd80c9d9be7fcde07fbacf8b67ccc4052dddabcb4f38a1398fbb84a5 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\mode-ftl.js
| MD5 | 71451c50ed393d0071d352ddb2e56330 |
| SHA1 | cbfc8767bb4baceab37805257997c84f4264bbea |
| SHA256 | 2437cbce03f95681d4d31f50d2c5079ed35289bba9f13b1f62da20c73c3f06e2 |
| SHA512 | 219f6d3deee708706ac4e8fdf4f7161a3cf4b6b719763680783e385d9525c0553fe4bba46157a5610e434c8fb40d88e46e54688705925710c4be782f80986fb4 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\mode-glsl.js
| MD5 | 8ca9be0b4f85aa607d8af3c05c15b20d |
| SHA1 | 11f4bcb7b70f1a5bc6eda16825a8c40d81f4b616 |
| SHA256 | 69343926d5bf317dff9a42193db72989f8464518508a83f642f027745b44e217 |
| SHA512 | c279c05f3d04ab75275b4fd61999d4d8b005e956b5d0a1447d00030f15b061621c680cf7ec462cda3c0b669e1b957e9edd2aca64debf6258c8e123ed3f0c9712 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences
| MD5 | 4177ee00f4ed8d5bee7329ebd3a51f00 |
| SHA1 | a215e82cab7743d2b7ef0cf6bf1cc52cc4709a38 |
| SHA256 | 683785f1d8da19bfaf27f8ae839f4c2a45fa6fcf8c14a623aff197987a15981b |
| SHA512 | d0038b4519a947f88f73374d4bd9e3b4f6de64be5770ccb62d7577ba65b35dbfad4c32aa40559347cd4eebd46e8bf8a7deb5eb7ae7eb77aa8a4f0c357ac1f26a |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index~RFe5f294b.TMP
| MD5 | a1a2f2d794f16cfcdb5f8537feab6fcc |
| SHA1 | 8445e29733cdd67e07d39060f507e54efb2a2789 |
| SHA256 | 47be84feebacc94b8b669d21f58a531526811a83bdf14cf2df581e458c18df00 |
| SHA512 | 9b08811892e17e948454d4b00dd74274f9ebfd09d16e6c05f3f77c8a47d4ae7aaeb51b9432750bcc28201e7db9c8e2bdc151d6e63c7c04906244b57c826461be |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bcb8abdb659622a221ffbaa543a098bd |
| SHA1 | e1615b52e4631463b8d58d1ae6ff6f1e5907c44a |
| SHA256 | 37b18d386d76c9bc54e6abc5f591087ea912e26ddc9f7e30e261ff5a1e95053b |
| SHA512 | 9cba345a133fe609c33f06ba5ca6560a4bd3adaf60c08af01ede0088a29b9a7c60495dbe5da2c7bebf30b7fda517d70be319b804317785069103cfec2414f6cf |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Preferences~RFe5f294b.TMP
| MD5 | e36a413c8098df95a2fd655fa8542cf5 |
| SHA1 | 798ea4ba3f12b8f72fb9890d3932fe99b20dbd51 |
| SHA256 | 8779b4e5c1204591f67823e0a68fc845f623182bf59ec3d202992b101cbcb40e |
| SHA512 | f61c9b61fdc18a8b4d55c9316a5a93e720eec1abaffbe708e0094f6ded47f2c5a43abe2eb0d80c31ca1c470dfca878e91121963b2a78caedcda85ec9e58a94eb |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity~RFe5f297a.TMP
| MD5 | 29cc179021e8da8a9aba335cfff74132 |
| SHA1 | 088f2d4dd5807c6872e781aaf63746328dba4420 |
| SHA256 | c169e8d6313bf128da4a1b529db8454a27dc2cba618347e7b2746c2676da2ce6 |
| SHA512 | 627c1d3b21740bb957f385d212acdfc3c28c77bd46ba9620966ed9c177fb14069a2e03d198e87d10ab88341a2b357d69ff7dfa5ca328aca38b85eb80aa77c9d7 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\TransportSecurity
| MD5 | 78311b909ac45f9c37fded64cfc59a3d |
| SHA1 | 701825d62f1412c6a2f9fe86de16f4986e94e204 |
| SHA256 | f131612554789fa36b22bac0918b4cb2a5c087806aa7d3234298947cf96addcf |
| SHA512 | ec6b1805afe0182ec1e5075a5e28ae205007f73bbe315d6bd34a78d51f6b47afecb857223694bb9ff97b22e19ddf69784a87ea4e027f4e0aad9e443855289d49 |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State
| MD5 | 0c29b89d47f50f0523624f255a672648 |
| SHA1 | 2c0dfeb3599354c0c2c7e76d60d59592f8f4d0fd |
| SHA256 | 1267e9da256a7fb2fa8ced9ccde94b689bc3d5dcbe9cef6f10019fa3f05e54cf |
| SHA512 | a61a812db4f59eba7c8d55181ca6337714f63f8e59b7e4e67ea1fede56ecbbd402bc1f9cdd80a5d0a7f458c18af53bc0daa7a4b8f0d734573dddca9634c10d9a |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Default\Network\Network Persistent State~RFe5f298a.TMP
| MD5 | 2800881c775077e1c4b6e06bf4676de4 |
| SHA1 | 2873631068c8b3b9495638c865915be822442c8b |
| SHA256 | 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974 |
| SHA512 | e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b |
C:\Users\Admin\AppData\Local\Roblox\RobloxStudio\WebView2\EBWebView\Local State
| MD5 | 142d21646b97608988170369f0528b0f |
| SHA1 | 932f4eaaa7ae55bc3056834e53499278806849db |
| SHA256 | 680c4b29cdaa0ae5b3e964bb4c695604280a2415f85a82de9873ca292d4561bb |
| SHA512 | 1f30bb7e8f1d013276b26c32c1f55ddd5c1aabde88b397068b400f62aac8c3f78cf2bc0bc9ab8e1356a6699f205c29dbe91e2996d30f73cdcba9224f9999c048 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\mode-sh.js
| MD5 | 37f7cf0e0a639840d67e81e0a3d257dc |
| SHA1 | 4e59399b4b5dd9275ba58fc5c7640822af8891c2 |
| SHA256 | 61f9a37f096997d0f8a4de024358c443943e8eecb2a8d023dba992212e3d1534 |
| SHA512 | f4940712bd359338eef2498b5658938a1e3cdbc967e1b17bdd13b6136e6661785abad4537daa2136274b8628cc622035e7447c0fa986f0db77f58f7d1ea56588 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 12c2c57210bc70dfc4b94d906c16dd48 |
| SHA1 | f6dad031afea46c0f8832334811c2def995bd4c1 |
| SHA256 | f1892e2d1c809641c9930039520ce817505ec101b58ed945af1d9abc7cfe33a8 |
| SHA512 | 183c086b7546c239890a3d3667166ed28dbef8298c13e3c639fe973cd54738d7e76bfe68eaf1ff788cbf58ab36ecbf15bce9eb31f864423406f5d45f65be85b4 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\Ace\ace\worker-css.js
| MD5 | efb7f98bfc7e9c92c7a5eacd72ece9e6 |
| SHA1 | 0b6c2de65deb556163893762146c88e7451a3945 |
| SHA256 | 53468a5a21fda1bdc6838d73255f0f0b3d7030c745077d09d4cdc41b20796f5a |
| SHA512 | 2ca94b561e2d13ea7f91ea3087c2c4a19ae3862b48ebfcd934f9f3c95eae3e49f8d6cdd69d8254a88985e3c57ffc3935581ad615dc8fb473720cc64dce9e50cf |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Code Cache\js\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Safe Browsing Network\Safe Browsing Cookies
| MD5 | 51a20df6f804afd907f46cc1910bd961 |
| SHA1 | bb7287484c3eb4eb5128c336bae1ff0cfcf8fc23 |
| SHA256 | 55cc0c2d464ab59935ca6d7373a7b5dd3253b9f9bd358af91c042203eca9c3bd |
| SHA512 | 08f13f72ae40a595619f59438a1ae03a0f9aadb7d05512f59003eebc7afbd1c5f6b9191d6abb7b80df38348775cc3d672b0c239e3247c1a40eede875f4ac165c |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\workspace\.tests\isfile.txt
| MD5 | 260ca9dd8a4577fc00b7bd5810298076 |
| SHA1 | 53a5687cb26dc41f2ab4033e97e13adefd3740d6 |
| SHA256 | aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27 |
| SHA512 | 51e85deb51c2b909a21ec5b8e83b1cb28da258b1be227620105a345a2bd4c6aea549cd5429670f2df33324667b9f623a420b3a0bdbbd03ad48602211e75478a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6f45834ca49e34a5f43ce24739efe788 |
| SHA1 | 7747e0da537a36efc4ec3f459128b3fcef4429ae |
| SHA256 | d6cc058c43681bc3cd0400ac5fdd22d8c1d9f0466e92059c34aa29ded20c1daa |
| SHA512 | 7d5b9acf1244ce9f9f3c3d303b7283bbbc06521acbdb4ff6ad654f0d3ccdc293f8ceff0483813796cb6cdaac3b13f804426c8307ae29fb64e4f723a8b7382c72 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_00000c
| MD5 | fc97b88a7ce0b008366cd0260b0321dc |
| SHA1 | 4eae02aecb04fa15f0bb62036151fa016e64f7a9 |
| SHA256 | 6388415a307a208b0a43b817ccd9e5fcdda9b6939ecd20ef4c0eda1aa3a0e49e |
| SHA512 | 889a0db0eb5ad4de4279b620783964bfda8edc6b137059d1ec1da9282716fe930f8c4ebfadea7cd5247a997f8d4d2990f7b972a17106de491365e3c2d2138175 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000007
| MD5 | 269fe390a07463746fe3f51c5607b0ea |
| SHA1 | 6d44e91215fb1027c4167b562ec94e575552f622 |
| SHA256 | fd4b6a6a593db09d42bf969e269678c9fae78778f1e8eb99a2cee831f50cd192 |
| SHA512 | 741f8af4a9ba2b0a09667f1fa0b1ddbb992aff9e09a34464103ec85458e53d27f131491a143fef2c8af69db1071fe7251a21ba9ed1f757a3b6f04c44ace3342e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c5d07673fd6a402b140ba54d056dc8c8 |
| SHA1 | 104ac7a4e6f6ad7940b58e8205a2ceb58c6b734a |
| SHA256 | c73bddf8075c69e97846669d1d0a10391019266e2af534ca8af127b46ad4776b |
| SHA512 | 8c85bb715ecf1ecc28e33125b684eca9372bed7dd9a274350db29314d0dc5e23357f066439329bd8daf35ac267427c0f9feb6edd1a9ee858e203ebfe146fa8c4 |
memory/1092-4679-0x00000137131B0000-0x0000013713328000-memory.dmp
memory/1092-4680-0x0000013714FE0000-0x000001371512E000-memory.dmp
memory/1092-4681-0x000001372FFD0000-0x000001372FFD8000-memory.dmp
memory/1092-4682-0x00000137300B0000-0x00000137300E8000-memory.dmp
memory/1092-4683-0x0000013730080000-0x000001373008E000-memory.dmp
memory/1092-4684-0x0000013730D10000-0x0000013730D28000-memory.dmp
memory/1092-4685-0x0000013730DD0000-0x0000013730E64000-memory.dmp
memory/1092-4686-0x0000013730D50000-0x0000013730D58000-memory.dmp
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\e49e7d06-b8fe-40c3-84ae-b99938ef8364.tmp
| MD5 | 5f938819f1a5b506bd472a221470a26a |
| SHA1 | ee718c88bdfbb3b23c86ebae87ab1325987da98d |
| SHA256 | 750932bcf92805c5ba110bb00f6ffbcfe0917270beb91144d131cc49e2400902 |
| SHA512 | 8ce479a16359ba1f61c0623b6490b335a5dd09edafcfa63b0b0570c93df4c0230d40ab1c398b1699a0bbb9a2c3ca4a4a83cd63cff574019651d4dcc78fd70b53 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Crashpad\settings.dat
| MD5 | 09839222f5f38236acd389bb9ddca0af |
| SHA1 | 35e13c0ce709422f353b12e0765d282f7ad8e24c |
| SHA256 | 03e8f92be66c8c7558bcaa4fdf6dc2f166b76681c693c14751fac84cccae91c1 |
| SHA512 | 7502720fe0b6ec9876ce8fc8c2b1dd7d24c6b934c95caf96f5d988a0e4767318efe74a5cb5bb8f5ccd60c46b5e1bbb809e406b2cc14e87b03cba2586e12aa266 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 744771570b9a245c0446f475c465fdaa |
| SHA1 | 43aa09e13101847f2568936f39c4776d2064e59d |
| SHA256 | 7fc6e3c75186352bf764260992810cba67fe8fd988e9693af7dc662d7929d13c |
| SHA512 | 43c9e88131dc0792260ef62edd9199d7fdc73b990ec278e19757c21f404f1afdeb84d84010b88cbe492e607f16faf9f287940d37df872861f383ac2120157df2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 94849c0d9c96e7a82e1a0152c5bbc4db |
| SHA1 | ad7c71f4c067ebef3ac4c6f4a915553ad69369c9 |
| SHA256 | bdfd816e4fe61f29ce61d5bd7148d165a53683a2aa6340e0faac2364f329bda1 |
| SHA512 | 06d809d6326cba469a99d4a08e41e4c8620563be1fc32fa3a0c70d047555750b6f940992efd7a4bda979e3a21076f7513e258a4cc063d146646fda3a41e2a5c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1fb894529a36aba50b5f6d6b02522c69 |
| SHA1 | 9f2502c04524089afd8a3dc461a671d20af150e3 |
| SHA256 | 5d02dc9bb7ea18a47efca3c5445463a3cca062fd42af5df356044b0f8947d4bb |
| SHA512 | b397ff126ff0e083c2e8d4680eb0bf1e42a7d5d9dcfd266deee18cab3d36a853329eeb5b3e7ea333e975c287c442af8a0bf00c710e29db074e4e5d3d96c13442 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d3306855a7572f43daeba2f38861a87b |
| SHA1 | c1d8c891bb3d3a2d8da9831f9c7fd32c3bf53d2e |
| SHA256 | 56cedc1dbabc972f699d7e2891897addeb618f95b1972b21a1249a522288ad7c |
| SHA512 | 4a9166cb1fa89bac5f18d4d0e96cab4541a8f87927e6825dbda9597d2ae9172c926ee38679f43b4ccc5aa4648541a2aca37881853c27ff423338892c4283169a |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Secure Preferences
| MD5 | 77c621e9ffe864a91e297fb9e9f171c9 |
| SHA1 | eaa95bbb2149e356d122b0a8efb6df4a17b649a7 |
| SHA256 | c2fbbc584ef0f519f9374249cd6f1bd9a0964f4b6b0a5cd4f097bcbfed70083b |
| SHA512 | 36758527d1bb33b8d1ead696efdb91b32839f64b441147c165f012c7b2c2a35000c974b07ee82f613ba25c0d627fb9855282e0efeefbe143cfbf9cc0f5295ebd |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Preferences
| MD5 | 65b3285669a0074c526ce813ddca883e |
| SHA1 | cefd1c5d99182506233b80fd764c063786bf96db |
| SHA256 | 139b7758438a406fa8db3ee191a2a759747f32495c44ff5d82cb2a60cffca10e |
| SHA512 | fcb3fcfe0713b29a91ea98e9ef947d3df2a5b8d40e6848f8235936dd03b5e15c753da2357b5906570c25a1d252b1181cba4110c5a30ed822cf163b9f0ceef86e |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Local State
| MD5 | 0a679c3afa6acc8d751cb6e4bc224945 |
| SHA1 | 3c2c73e9f52e57f3f4686df2c0be6d14700a0467 |
| SHA256 | cdf5bcc3a0c5cd0bd4d72facbe57a11f3b57e5d35405d961dbdf1946d23573c2 |
| SHA512 | 135ec72a5252fd8e8cc7fec5cc113e9e5b0ccf6712bebe1c4426bdbbf15228e837268ff8d09d627039cdd809f2770ee66ceb93c30ae60dd8f9e53c51a4de2a0a |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Network\757c62ee-a68c-4660-b09f-d8ae8fb6ab4d.tmp
| MD5 | 20d4b8fa017a12a108c87f540836e250 |
| SHA1 | 1ac617fac131262b6d3ce1f52f5907e31d5f6f00 |
| SHA256 | 6028bd681dbf11a0a58dde8a0cd884115c04caa59d080ba51bde1b086ce0079d |
| SHA512 | 507b2b8a8a168ff8f2bdafa5d9d341c44501a5f17d9f63f3d43bd586bc9e8ae33221887869fa86f845b7d067cb7d2a7009efd71dda36e03a40a74fee04b86856 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Crashpad\reports\2b417462-68f7-4bbf-a0d4-ed25150d795e.dmp
| MD5 | fd49736dfe4091428e9229587dcdf276 |
| SHA1 | 8960fd533455c96b8fd1f4e397743db02548b525 |
| SHA256 | ce84043f81055eedac1e16ad91523cea37d6cbf9bf8f9e9aaee0f61e026781cb |
| SHA512 | 82924044827aa18b06ea5ad38d4e8c27246886c68ea50c48b8267c19bedbb29ee00d3f2068e2a11ef4fe6aa24eac46e996a28b3ff4210104993d3bb552d510b1 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\Network\TransportSecurity
| MD5 | 8837f9ee5d07c04f35cfda74ebcc995d |
| SHA1 | 3e5a4008992513ee29702318289824cff9a747e5 |
| SHA256 | d175547ecea80e46f9867ef3e17d9add7fe863256a960611f67eaf55096ecbf8 |
| SHA512 | 2449979dd0e402a7588a7a893260384586d754c3f18024b4f8e7e21807bf27dad21371ce79263b934c6eaf9c07cb8c075f1facf905c48818ed828cf9334a0b49 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b3580a4a78920481fd082f1c01755498 |
| SHA1 | f852856e55a4c5f6525a48ab64d991d4aba0dfb2 |
| SHA256 | b7e443ffac936971d80aa883e06316e68ca12e46c79d2bbb24e91f0f4e337005 |
| SHA512 | 6bb84d6cd30401e979f7b86253b7875c372a46d743687bbc32f4c97d836dcd8a156b89f8e3477e8a07743a0196c9ac344c17616577660dbb2e6dc1a9d67f9bf3 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Local State
| MD5 | 6e3c059af8e3b50984e50feeb9917a30 |
| SHA1 | 56d9101434b514a8c38210d87cb31b6625309d03 |
| SHA256 | c4ee285cd78b9d7422acd808738f03acb4f454789f2cd73297082b7420d6291d |
| SHA512 | 50d1bafbc5490f7548975a5af342b2adf8ee09a008898c379c45204fdeb46626ce2d43ab41999261a05f6afcb9c859137230b939809a5393b36bbd0a58262643 |
C:\Users\Admin\AppData\Local\Synapse_UI_WPF\SynapseXRemake.exe_Url_spy5naqi2alw3mfury0qhgyx4zlpibuv\1.0.0.0\user.config
| MD5 | 4c20dc7ea59fa93f94572d1ef0b90f13 |
| SHA1 | 393b5439d55fd6cd6715c717bf3f8345c8e7615b |
| SHA256 | 68d0b1b45805d298a38aff2e8818528f3b5102d461b56091c1e40788efae864c |
| SHA512 | 40ea29a74009f80501eef3d3ffcbaf97ba9a907e33a18a818ea0364756cab5d2c1e00045434c4fee8160bcd87f19aa6febfacfd38962baf0823778eb42324874 |
C:\Users\Admin\AppData\Local\Synapse_UI_WPF\SynapseXRemake.exe_Url_spy5naqi2alw3mfury0qhgyx4zlpibuv\1.0.0.0\user.config
| MD5 | 51fb28e3a37a158cc226f1708b8e5805 |
| SHA1 | bb9d5b8f4adb1c83bf490d94a49d83e752cb2ae5 |
| SHA256 | 5f801de17307d6f51133ba8c315cd0bb8452a3ac71ba93276432620339a1c602 |
| SHA512 | 2a187027469c8ddeac5b8a478c915a40c8dffa00ba3aaf7de282dda0046dc4dd60805529f54cf5c3eafeaa9561489d4966e99127f6e28834d76d45aa9741ba9a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d8ec731c910c4ee1d1606044ee0ff006 |
| SHA1 | cad9b831e057469f6f3f20fa30d3f451d9c9e05a |
| SHA256 | 03b3297b64f8f6ae621bc10905ea407b93a4041214f2f7ecd19af8eee529e8cc |
| SHA512 | 4cae6997b2408b7de16a431ee7fdf5ea17d9b94dc760589a8fccf94c5ce5a105772ca48e5b001c5b69b8db74ccba2ab92dcc8f562e2c4f847ddccc224a7b4da8 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\GPUCache\data_0
| MD5 | ed5ba6ed821ddb239963c0bfa5f97f58 |
| SHA1 | 3435dc850d9934b59081fa890f5c58d1dd9ffae9 |
| SHA256 | 2151371ca5a0fb2a9800ffcc5aec7136bab705a850dfb878f34e4fc1167f314a |
| SHA512 | a81af3321d1585a8be5e2c27dbe0108733b90d080c553fa425b24dde24c023dadfc4422a7b0a5bd0a107ea47ea76e053834dcb4de0be1e35feca5f5caa945534 |
C:\Users\Admin\Desktop\SyxReBootstrap\SynXRemake\SynapseXRemake.exe.WebView2\EBWebView\Default\GPUCache\data_1
| MD5 | 467d394008edaa70091957ee10052359 |
| SHA1 | 1b5ff5ff77903ff50b9ddcb7db3ad677d3c8563e |
| SHA256 | 8fb670a32e3c35d588f36dd0b20c54446ac25c305ff0493d536762c20ffcb450 |
| SHA512 | c1f4b6745a616529d86aa1bef490b493778284304ea8d143de03244b56b6e3f77d6aa2f1b9fac3d35d28be0e37d78d8e7c28787c8099ed6519fefb4a7caf4391 |
C:\Users\Admin\Videos\Captures\desktop.ini
| MD5 | b0d27eaec71f1cd73b015f5ceeb15f9d |
| SHA1 | 62264f8b5c2f5034a1e4143df6e8c787165fbc2f |
| SHA256 | 86d9f822aeb989755fac82929e8db369b3f5f04117ef96fd76e3d5f920a501d2 |
| SHA512 | 7b5c9783a0a14b600b156825639d24cbbc000f5066c48ce9fecc195255603fc55129aaaca336d7ce6ad4e941d5492b756562f2c7a1d151fcfc2dabac76f3946c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | bc6142469cd7dadf107be9ad87ea4753 |
| SHA1 | 72a9aa05003fab742b0e4dc4c5d9eda6b9f7565c |
| SHA256 | b26da4f8c7e283aa74386da0229d66af14a37986b8ca828e054fc932f68dd557 |
| SHA512 | 47d1a67a16f5dc6d50556c5296e65918f0a2fcad0e8cee5795b100fe8cd89eaf5e1fd67691e8a57af3677883a5d8f104723b1901d11845b286474c8ac56f6182 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 7b5d73a16a397478bd6352ceef9c9116 |
| SHA1 | a760cdcf48b0073633d3a394cf3139b82a1b7778 |
| SHA256 | 58ccac9dc21669cb547322e675c108354ab4dc30a1f0e4b396d72521f87c874f |
| SHA512 | 5ba8062889adb8f3deadacc7c569ae418108c0b55a9aeee3b84b7fa7664441b3bb119b3d6dd1f82f52716a768b32ea2af2b8582fe28152743d5ef5bcaef4a7b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6dc4a1e60389f9e9e1e20720690df995 |
| SHA1 | 4239f50ffe2ba873aceb8cf76461b595599ac25c |
| SHA256 | 0c44ee70daeb9b17aae0ebcdf0c921a27998bad7e015c29817eaf427e32d458b |
| SHA512 | fe94a88350f6a99eb4aaf9ec04d3b0fba1775ba69b486ce5a09676e6ceb44be3abd9eaf7b64150ac47b771a57c472feb584890cd0c05201d06a71129bbcd6e9e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1aa21335b3d517230b8dba52d5d61f6e |
| SHA1 | 99880059ffe3c9fc9ca79be9dc0ffdf7f200b1fc |
| SHA256 | 6d22e4624ff6b2f321b04012f9c2c93666c16ef2e5d8d0e32261f8d780a131c3 |
| SHA512 | c89bbd61d9aafd10d681f8687b2e8eef7b87b57a961bdc9fddc5afc15655eb310d4b16b3f422294b9a63ed8855e5446dba6affa459361d87d8995eafa25be22b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a4d6eecde02786e7631e5534d721af10 |
| SHA1 | 90996dd417961544334dcc68798fed26d795c5a4 |
| SHA256 | cc7b347738307a4211a1cf3193510ae7209ee7a7085f6c6dc2160be559ab7215 |
| SHA512 | 50e7f9bc7d301b8c5d5e32283511feb807714ef4a1e3db436ffba34331f78a6eca6f20e8862fa911a00964b164f639d606ef2beacc096604ed56eef9ac8633f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1
| MD5 | a6dc920ad1aa0729f111b7ec2e999000 |
| SHA1 | 262ce7d259f07a6d32b42ff34de41d42c6c127b2 |
| SHA256 | 6cf4a84f7fd4f8945528c43704f19ae645d9925c9b7614056d08a2f34ba2b876 |
| SHA512 | edd3aa997a5777cca61a169a2946c44156b830809996d4451142f882edce91b4626606a04d5f619efbaa7511bb558b7ea152827aa35e0cfc2390c71c93355fec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_0
| MD5 | 61b0f207e6196d1d27a7b766c8fb1dcc |
| SHA1 | 5980ccbd67649e650539bb54c8da1383a2e25a16 |
| SHA256 | 03df7487e811c431afe69166a4c4a2d688742d67b6c28d4f78a3c1c9ece22d29 |
| SHA512 | 03da393d6ea1336c7be47d7c7fcac2cdfa7faaeb03e4a380c99dc91edf9121c4539e4807c5196264e3368cfc1c92d3e870f8c2697454c321dc2cff738bf92926 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | e2462059fbc4fc3b63784c82db8d7f74 |
| SHA1 | da7cd562d25c386035bed71eb7051454e9039764 |
| SHA256 | 2c138238dcf8d6f3fcd587906fa392145b254d7c01b675a9e7b69a20ce5ea380 |
| SHA512 | f8096cfe5b0b4bade9225de48b0d5da9c5cdd5d4fa939411855517b9c3aa1944b7b2cfc9f7a5efb420765ce48f08f394c11d70dffc2abb2aa102184c24421c99 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e17e7638350dea72b54727c5dd4e74ed |
| SHA1 | 76789a1e5058089e9e10f5987e95d854831f3c37 |
| SHA256 | 9fcd4e0258f7ed249aa8c9078d39456f334be318b9f7c1b14bfee8575bc02f6c |
| SHA512 | 80c8f62c8977a6f46154fc576f0fbb896b9926ab47cc95d8bdd4e9a6fb2339f5142aa36b9b87cb57d4e086848b741cafb243dffb40595f71c2250e8bba5053a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\ff45478c-8ab3-445b-9bb2-4d971c516037.tmp
| MD5 | 66b8339b61d3a1e01372c708d19634c7 |
| SHA1 | fd8de9d652393340599cca9b930409f0595a3d3a |
| SHA256 | 43b76cbc213acc0d699c0018dca240b1f9b682c73c5411f40c09294caf17c9b4 |
| SHA512 | 4dca3c3a1d738260fb145c63ef64b5f6e26c893f36e679933fffef8e47a5d6e16798c8ae7c74e31a9188ae281e88039bd38f2c94ffcf9d3836fcd56f95f94f69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3d877332aa51ef1d0b332c7df5f8697f |
| SHA1 | 77cd0a443e7607303198af6635c943ddda3e56dd |
| SHA256 | a9f54fbc1079e49a6562dc217174116ef2f7c1775106137b8756745e4f561480 |
| SHA512 | e8528750e608f0a01edd1be80df15ea0e97c2988928fa7aaa8466e999a7c7d57b1e83580174f7f931ecec2c126a1e0f90fe4b524d2d706d71c6ff4ca843df01d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000139
| MD5 | c3c0eb5e044497577bec91b5970f6d30 |
| SHA1 | d833f81cf21f68d43ba64a6c28892945adc317a6 |
| SHA256 | eb48be34490ec9c4f9402b882166cd82cd317b51b2a49aae75cdf9ee035035eb |
| SHA512 | 83d3545a4ed9eed2d25f98c4c9f100ae0ac5e4bc8828dccadee38553b7633bb63222132df8ec09d32eb37d960accb76e7aab5719fc08cc0a4ef07b053f30cf38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00013b
| MD5 | fb2f02c107cee2b4f2286d528d23b94e |
| SHA1 | d76d6b684b7cfbe340e61734a7c197cc672b1af3 |
| SHA256 | 925dd883d5a2eb44cf1f75e8d71346b98f14c4412a0ea0c350672384a0e83e7a |
| SHA512 | be51d371b79f4cc1f860706207d5978d18660bf1dc0ca6706d43ca0375843ec924aa4a8ed44867661a77e3ec85e278c559ab6f6946cba4f43daf3854b838bb82 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00013c
| MD5 | 2e86a72f4e82614cd4842950d2e0a716 |
| SHA1 | d7b4ee0c9af735d098bff474632fc2c0113e0b9c |
| SHA256 | c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f |
| SHA512 | 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00013d
| MD5 | 710d7637cc7e21b62fd3efe6aba1fd27 |
| SHA1 | 8645d6b137064c7b38e10c736724e17787db6cf3 |
| SHA256 | c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b |
| SHA512 | 19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6de54d157cbf2b6b53bb764c8d2f3910 |
| SHA1 | b9954105f371de66518747a42508aa873d0e1a98 |
| SHA256 | 08f74129da4299cdd4d867eac626aca5d2f51816eb39f1676fc91142a8f9c32b |
| SHA512 | 35314f240ff75da112c15d6e25052e9eb1948c6ac1d44e8fe9be1b80c6f90b3858a47a389b9c6966673f6fad16de1fa8a1411dc10a1f37d037dc9d072a91757c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 1264c8a14c77341d4dd8f7fb036edd3b |
| SHA1 | 4c03857a5ff9c104e2a152bfc9e482f20bc28105 |
| SHA256 | 6f991d1538aa631d3f118c69db1d3adc1fca91e9cd0de3a488ce8bbc547338f3 |
| SHA512 | 410e27a4f07e4b760ba036effc1924e7c7c206401af772fb6da088dc0b70edfa0a84ed754461e8b1437d5e6aeaad0eb14ff881f28cd55a3a187bd33dea65326b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001a7
| MD5 | 54460939adee2ae735d8ac184402558d |
| SHA1 | e9b88020fc803bc449f95cb1221294ce00590367 |
| SHA256 | 23b04b0b2a9bf4c2146efe04f0614aeb76fc0d62fa72adc436baed7a37cc0312 |
| SHA512 | 0a994da0fcb85a1b519ce3c783dc3f7da047a7d66f00b377c3a87cc1e5948f6bf2000349b9cb43214363fe3072e78c9e778075db183dc8a1eff829b4cf4bf685 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0769597a24dd100215656a45f9e48a1e |
| SHA1 | d25e05546ed5897eaee850cbcf4142e981a19dd8 |
| SHA256 | 26c60f146654a6126d26cd1c0a8f7d95a780ca0830f3ba0b50df514779e440b3 |
| SHA512 | 130d555fd87a2e57d6c27fd3c9e9ae472800f06b538f5d0f65ee910c458841eac532825af5429e7fc7bfad1d2184199c63c23b3c87bfa1ea27a688ee35e08910 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | cf64ea62b043a1efca711fa12a816dc8 |
| SHA1 | 51915f2f5f14f053844d11e4b068e12d4266f7a6 |
| SHA256 | af283848dec0c2b0cd66126959545110175dc056a0f1aa723f9542509c28e02b |
| SHA512 | cb5e1011d8152863a758e33c48d0a2ad2327ea0dce192863c98c7a95fc9812930930033e7a91566e585b242f425fb43d0dbdd9b0b7440b9589fa6ba0c5377012 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 585580b05ebaaa8e4f0cf6b1e2aad6c4 |
| SHA1 | b911ad3a9de8e1085f9c48a23412a41dea2a6568 |
| SHA256 | eb10c631ffcb1b6d00df4e23757460aaf4993ddca273c369b8d98653940d8b62 |
| SHA512 | 1c0d955416e1db759b82c56fc665eadeb04fbcfac8693006f046816fd0514b6c51759becdfca3fc4585469e89b25a92fd5f62d484a5c2c0145ba3b78480b9177 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ad
| MD5 | 015c126a3520c9a8f6a27979d0266e96 |
| SHA1 | 2acf956561d44434a6d84204670cf849d3215d5f |
| SHA256 | 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa |
| SHA512 | 02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5a77e68ccf2429abd70b6a9128dbccd7 |
| SHA1 | 0e00a6d8c7c8ec74c2e1aad47218d22c7aa39e3c |
| SHA256 | 144186bb4417c963c6f5a0a7546dc56644281d341a66ee164546eb8e1e4636fe |
| SHA512 | 44211419d79627ebd052cc6c258530b3cb2ce743b82cdf6bcf1cf558e85defb124e16967ca87d8422235c27cf8611471f8ea15d1f5908bd321f1987afe7314cd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 10b3b3e0132566e26534abdafd5b1763 |
| SHA1 | 2cf5d567c93a9c62f32cf0d21740d4923d553c75 |
| SHA256 | ff1455bbf548fa71747b32097b6d7026b436f03d67e499ab1c396e052cc48d7c |
| SHA512 | 9ed3b5a1fed4c6724396830db0d0704d2176bb8f920944023d256cd9c3c452d86c109deef2f1d32a2b018b32beb218dc80958a7645a44281cfdf3308ac7da7b5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00019d
| MD5 | 31e928ac2a07838614c315702febf1a9 |
| SHA1 | 3415a65eeabbbf9a70aed75270df5facf78228de |
| SHA256 | b685359e01060aa10da412bcead30224bf3b11d8636d035e1b6917536b64d049 |
| SHA512 | cc400bf72b119b7477d83125586c1295f9a1b339d17ad683a7503ccc95c58b8ffb2390508c2801d6f4b833fadc0b444d52913a2f10619f664cc078d4c34ac18f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00019f
| MD5 | e190856aff84264585664c063ac7b608 |
| SHA1 | f8551d40205dbbd8132d02c353260945798d15a9 |
| SHA256 | 2b0a938171c19c2166a0d10ebc908c28055884bc2f97b57dd20d15244cb277ad |
| SHA512 | 5ff53fa53c1e5f813af0a713bfc49315df41f7db81117540d052827a7ffaf7a772e77d1c182abcd6bd9f649042e53ee0c0f9d251ac511420e9dbd33b73dadc78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ac
| MD5 | faadcf8e5560b92714ce7b761dde2589 |
| SHA1 | 5d9c9821f596422ae8578944708f3e28d77f29f1 |
| SHA256 | 0640afcd97e6533478c36a8e0b03c79d0e5f144ac5debe63e4dab8df67447740 |
| SHA512 | f810ab293e402c384576ef1688d6b6604323f050774cec3188a76e5cb1d724753611945ba3a4da95bdd3ea29c52f6a6935201d168dc6923b808f689b2e3df5fa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001a3
| MD5 | dee46781c0389eada0ac9faa177539b6 |
| SHA1 | d7641e3d25ac7ac66c2ea72ac7df77b242c909d3 |
| SHA256 | 35f13cf2aef17a352007ab69222724397e0ec093871ff4bd162645f466425642 |
| SHA512 | 049b3d8dcfb64510745c2d5f9e8046747337b1c19d4b2714835cc200dc4ba61acaa994fec7c3cd122ba99d688be6e08f97eb642745561d75b410a5589c304d7d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2453abb3c7f214ae_0
| MD5 | 3dda138df21225d418a5c09e8475c454 |
| SHA1 | 2a1c63977ceb3639ce2190de3fc3f3c12701e132 |
| SHA256 | 2c2a68b7e9efbf88eeaaeba4d255d83ef3b8ae7d9e7a3e1c288321b3e9b9275f |
| SHA512 | aa4d6c1799d4c243d1a3b707afa78a7f80e9150b535462944048baec690e077816689362c94e1ca276ecce93a21c95c310aba8e6e04f58c49e25846c856dce9d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b46b2ac7b26fb79f_0
| MD5 | bd6d0ecf233c0fee35fd9514a833f819 |
| SHA1 | c13c7347f595cfea8df9048ef5a5b60876d37107 |
| SHA256 | 7e7a84116c3d0ea16c540832a698ed41af4dcd7ca2a1aadece2eb9f3670147c5 |
| SHA512 | 3b8a1e6086cc78731b9a59f74b2dcf4c2ba8e271d2d56c359f26f4135dd4fedd9c56ffcbbee72e881af9216fb81e64832439b4b91719d9fff292719352cb94ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\41a14f56f1d2bca0_0
| MD5 | 09b9141c62077c261491c111b4792932 |
| SHA1 | b11061c31fb28ee2334a79ae966036079ed0abde |
| SHA256 | 90c6925692d520ccbdabbd0df49ae6877f9c7ee63999955ec338950ca103a513 |
| SHA512 | 7977becd0aaf9ce3abc59e567c3b4c10a914731816ae2b1f38ee05920979140b2be4cda39bd8622643006e754b809dac33dfe54251114e106e1783aba458fdca |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\371d6340e37fa6e1_0
| MD5 | 2282365bd8a05deaf540df1fef25b9f8 |
| SHA1 | 0786108b767feab38df1d720d14f145ecc7e6ffd |
| SHA256 | 029eb91272966734fbb05a852097b758b93d7f2378c2be1376b9a14ebc42365c |
| SHA512 | 333207800cb979f0d992b022a56e17234508776e4686cd37dbc2cc2320f119ad07ddbd29eb2e53db1670041e73a88e074b925978bd33525537d20cfc81ba9d6f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1436bf46666c27b9_0
| MD5 | ece9f3a7c0c625422b2f543d25829a9f |
| SHA1 | 2de6e3046c5540b43e3f4b44413766d7ba4b8a7d |
| SHA256 | 5ba9c1c6a0f1a3a25c1ae1e6eb3fb7957a176e70e7bfdb66320ce7dbcd5a54d0 |
| SHA512 | 99c0d5ae634f82091d03abb7357e981152e2c7c3b636c8ec5c6a2ac52dbac52c7a9c7efcae66dda141ad8482b6bbc068ab638223f206e2cece547c3080318c02 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ab
| MD5 | 7c702451150c376ff54a34249bceb819 |
| SHA1 | 3ab4dc2f57c0fd141456c1cbe24f112adf3710e2 |
| SHA256 | 77d21084014dcb10980c296e583371786b3886f5814d8357127f36f8c6045583 |
| SHA512 | 9f1a79e93775dc5bd4aa9749387d5fa8ef55037ccda425039fe68a5634bb682656a9ed4b6940e15226f370e0111878ecd6ec357d55c4720f97a97e58ece78d59 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ae
| MD5 | 3f8e48f141d27915a0e20f64f80bd4ac |
| SHA1 | c9b35b9da4361ac8f2743ed451c955dc7c29958f |
| SHA256 | 37247d0c5913f541b20baba97af10738e130502b0a89a1f25ea0d2a9d70d709c |
| SHA512 | 5ac57c17b520ec0baffbf7e63231230d84f7a9f6019a83a59f31b3820966b0de37bbf0bb4eb76acb96c0d9d79f9eba807398c938b67d4c52ff09396039cc5e78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001aa
| MD5 | a2edb5c7eb3c7ef98d0eb329c6fb268f |
| SHA1 | 5f3037dc517afd44b644c712c5966bfe3289354c |
| SHA256 | ba191bf3b5c39a50676e4ecae47adff7f404f9481890530cdbf64252fbb1a57e |
| SHA512 | cc5644caf32302521ca5d6fd3c8cc81a6bbf0c44a56c00f0a19996610d65cf40d5bae6446610f05a601f63dea343a9000e76f93a0680cfbf1e4cf15a3563a62c |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.195.31\MicrosoftEdgeUpdateSetup_X86_1.3.195.31.exe
| MD5 | 96da7b3dc4fb1d5dcf2c417ee046f447 |
| SHA1 | e84a715aa7484e56c9f33d05da3bfa1ca0f1387b |
| SHA256 | 44487270c94902abed843606f7dd7b10923abbecce86c1cd85b3f25156eb60da |
| SHA512 | 8630835de1a5952e57b9c0db112854050145ca923018985984cca60003b986314f60146eba54ab52933f600ef7d61949f254627c0fd5459b724315968685d733 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e197ab07a222cbee93e17c82b2d5470a |
| SHA1 | 30c137938297c4f804d56281dc09524ece112467 |
| SHA256 | 1851b1239d25f4213a8b6cb0f5caf138c5da35fd1cbe14144ca6f34007db4013 |
| SHA512 | 140a47fc3401b8536f172d487267cb111e4ba024e9fb84eaf4eef8e6fda6598b9b59a6fb31da65950bfa617a6daf427363d9493b020abcc2c4303265cb6b6d9d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1a355b915c55d75ecad002c5fe2454b8 |
| SHA1 | 3422332dad1ac623cd6400b640048950191269f3 |
| SHA256 | df01d115380cc10d27d5f92c0bf73b94b6244abecda288779ac9f87379ac3b9a |
| SHA512 | 674e72bc15feffea06c368148eca91df0fb1632948c9a981317a1d132d2068ed96d20496733b31a0187dfadde0ce1c06b42dfe5714f9ba5829bd0e4d5024eb70 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 20eb72a2e36193eed4ebaf5c54d28975 |
| SHA1 | 1043e099b7dcff649e20140b97214fc3dd835e1f |
| SHA256 | 4ba983fb6df6d91bda9f1a647487c2bdd30b7611694627f4434a2a5d4cecca93 |
| SHA512 | 7e34bedcbe76a1e7f167c062039ff05ab2e90d5550dff052f7dac2546a42d6079929d5cd24ed3dd730203dcc7af7543f8f76a21239439db3b1803bfa77bde11b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9270e5fdf7afb467d17c0031422467e1 |
| SHA1 | 3694f2c0ad7c64e247c6aec90afcbdcd73926b0c |
| SHA256 | 7b53645741732611ce37c2865d286c55827b8401a6c4becfaffeb17769902b59 |
| SHA512 | 0c5c19364855d128bf923eff5c907f3b1769dc1ad339874794bffb8f0d3f2a8fec447e0606607cf751079552c72d5d24b729dbb6cef3d9322ff2c3dde473832d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000199
| MD5 | 98eaf699f517ff88bb2f595bddb2c5d8 |
| SHA1 | eae1d3e4c6e6a8f9636c0efb0a04ecbabe8b63ca |
| SHA256 | 7aa34824dbe8dbfd8011576a365dcd057127406d61702634d69f0240325cc582 |
| SHA512 | 7d9623ca066012a200a01bf48e0617fcfb35cad0efff091bc3b7931e98b72b95df66205cfa904ae9b84d92c9fcea421b366d9ef3023c023488cdabf91b5ef8c5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000145
| MD5 | 2fed1645b3d6857e061b7bc0d2850494 |
| SHA1 | 4cceae6416b4275b18a172eb9dec60c16e874753 |
| SHA256 | bbe87edc7f708e4f75d90f09135220e03a29ca93730f30da17be4869d0a1a436 |
| SHA512 | b968593188c7558f41c9d809d027ae9b29a6fde2be2c5184a8c6bab579eb572be9a9df5b4a2ef4e15698a00377b36b839f80bbd9e4e7b2a401f528b9560452be |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000146
| MD5 | 9fa060a599b0ee1912f2073ed59df3c8 |
| SHA1 | eaaeef616747d09506c6ed1d96901d2c8d1ad4e0 |
| SHA256 | 7924474a8f327264982347dc932997ed49890ea4114925024ba678fba2d4e90c |
| SHA512 | 93837c0d1bf848ff603073bce6ac252f770a35fad094b294609682e11b04b463292c74c8440891e89741f28fa67a888ed6fdc1575fda99a3c2b6065ccc4e7b47 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000155
| MD5 | ccca1d507e618047398d2b7925f6ccea |
| SHA1 | 107b142dfa77a1df956f8051b1569e7767d4a2e7 |
| SHA256 | f56b99fc2b763e22df8d023fb1d9dde3afa04c52560abfbf0fda5c75649c599f |
| SHA512 | f1d40a2ae4369811f1fc44ade60b0321d42eaa1369f17ec998010470291c60b536e5a563bc01cefa3776b6aab3214c6e2c9b50234eae4b0fc70647df3212a37a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6a87c66e5a4598252cd0b13eeb0b652e |
| SHA1 | b9333e062188c9407b0acb5ea543b1cf50c33734 |
| SHA256 | 581fc39abca604be3db2ed4c8f09eb4d4721a6e8d3f3c3cf0093bbdcfd4d1132 |
| SHA512 | e110d1c5e313bfed60777f4bdc83345b4126811242bb62d52092db378381e3f59f87df1bde94c1c42ce15af46db0acd594c7bd668cf4079f878a664223648673 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3684825b325be70c72c0b4344f5cae7b |
| SHA1 | 0e39b6ba172cf91db9641e326c482cdc7497250e |
| SHA256 | 9e9ac9c76e60670fc6dfb404961e617a4b372e931767058ec811dc15616044f1 |
| SHA512 | 5cb31f6d2a28258d6cf49fededef6c79032c4a846b64b43d9d8b93485950dc401cd091ab4b14c9b5034c9440e368973ffaed85edd56e1320d1b18bb74f5391bb |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 5a55e2dbd90fd05c2f68300c7a25d738 |
| SHA1 | b3cfae154c10b15e1c4e2fed9fccef9107963828 |
| SHA256 | 84102c8d2eb1f4a07b41effe80605baed7dba3bb054b2713b78af72723387e26 |
| SHA512 | 3d89f78726eb5ae74e6782414da94b9df0ec53bb76e88fc1307a2b4324e3da64ce34e0d50256aa82c6dcdaf3f621bf349f4c45db4e3c78e7c7c436e8c22359ff |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 5e85f5dfeff536a1f4109ecd3b528e62 |
| SHA1 | 3bc3e327a115cdaafd3b478c039cd7a48031f036 |
| SHA256 | 81b4459824dbe430ac1f53a5e5c955cbb7040768b0f968ca795a80d6ce0568b6 |
| SHA512 | eaff78879cb91af649ac5a41d1acdb850e5aa1d6d4a986d1448a42a13a14fab2ca3d398da08debe68591c2ad1e80517473ad48584c610a1313a9642f50b9a880 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 13c9f880797dc31f19da2749016640d5 |
| SHA1 | 6f1784fbffbf328d7edf20cc4a276398ca069e54 |
| SHA256 | adef52311e3e20079c9c252cc60b7144aa291f104cc5695d97a6e2858372753c |
| SHA512 | 77b8bf75720900e81e86632548abebddf69a514f829a9b52ddf8f36aa64b2b4fae5d2c0adecaeb01d9342971a9af4e65228b7b1bee171c4d0b285d3a30c4ede5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | e3bfda89af42b5d79cf5a90d0ffa3bba |
| SHA1 | 271b3e1019868e59dcb0b72c1e62f7cb88a6d80f |
| SHA256 | e07082ac431bf9bfc5fc540cad7ea8ff870528e26f5651a0c2869bce7a9118eb |
| SHA512 | 14416d2813ead7c3b075c4d73c1369ae70b6e215aa509eda3551358fad5efae093c2fa0286e2d6384d807b72562b0ce1478b3864f8f4462a35fb3442bd048c7d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | ac722d950580b748076b24a28d02bf05 |
| SHA1 | efd166461c8642f16a0762ac3b0e41e7a1d03b7b |
| SHA256 | 78ea082fd0bb4d222b6e4cd10cd9172609ae44055796f6933b44c91082dc3ffa |
| SHA512 | 4814a2e4064e611029075b6151a5641af13d95f3c18ca20a3a9759bf0bbb0391f0c0bd5905f91358c1a2260c4b15b2973b226e1c1bd71dbdb7522f6f586657b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000172
| MD5 | 9c4296981d7c3c8f68fdb015c70988ed |
| SHA1 | 58529bab31b3bba803b568d3d2bdc999d6224622 |
| SHA256 | b056d8d14fa59a3c0f743c90e6a89440e1cfddd5b8d020804e499594b63ec918 |
| SHA512 | d430833da2b82b02d926f86743e623fe7320c83bdafb3a2f89364adf48ec2b3412cc84d0f3546f41150cfab924d8f5853ba81b20cda742ab3e2f240dfd754c88 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000169
| MD5 | 23dccd50c1598cf87c321dd0e788e2e4 |
| SHA1 | 4697f41531098e96b97de4ca6626fd86621efb1e |
| SHA256 | 167b5e3d2fc6a069ef986144f71f70ca1ed8c4332846757c8aa4792703420635 |
| SHA512 | 00174629a41be7b3d69e0ef03041aab41adae416c39209934b8a9c3923350010ddf01ce8d37cedd6bd57769796b41ee3c18c1b393726988039b556416c20f676 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000166
| MD5 | 1046f118e94b9be80b93c392ef392601 |
| SHA1 | 7964bff232ba386ef811f90528a06ecae45e0ed9 |
| SHA256 | 7562e901ec3a9d3b876691fbd4e13d72c7746641d91bda979f533994d106813d |
| SHA512 | 9a3c02be4a6792151728957bccb52003c8d14c8bd4be8ab69000ab2db372599e54b55241c74fcd1af1fac69403f4582c6497b9268146f3ff622c730e8fb0d2d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | cc910ccd1ff61b5a648c17e3559bd3fe |
| SHA1 | c3fea608395802c455f08606f359da890fb9ecd7 |
| SHA256 | 6dac042d53b551757f6f82b222fa97ce511e1c0c43ed3dd596821dd085927917 |
| SHA512 | dc492c686676c9e407b4129bb5cf4cdae4ae92a70528ff14aeb2dad3e2cb9224a0c881f30bc5555e0fd5d2320c23185e0b66004d842e8e9179b22de6a0283548 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 96a965edc326258fe2fc22a7ec2b6301 |
| SHA1 | d000d3b888d4715d5c808bd900d9e7637fdddaf1 |
| SHA256 | 163e1fa075d65b537ac78fc8254d0bc805687d2b799024c4f13e86a7085c0ca0 |
| SHA512 | eb0526cf8afeb476bdaf39eb014f85029d93228ac4d575ddb488bd7940556d59e9e4e93513d8295ede5b691352d9322ffde5834542e2ec48270cd8216d16425a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 25f9fba0d5b17064e77e2fcd5706d27b |
| SHA1 | 1ee4cad1dc5c8feb04259ddf3a3ccbdac0a87ffd |
| SHA256 | ba230b50cbab0cfdd1088c0a267c1a89b1c6ca4deb99cd79d70510a061b321b3 |
| SHA512 | c04402847a8e1bde4472a0d51fcad209224d33b095511521cb1e92b24f502a8ebfa2f08986b0a407f28e90d4d75faa48e98f9b2d98311eec86fd7c44b8b6b854 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 523d65519bcaaacaec7d8e71d43f9a9e |
| SHA1 | 200c4785b0244558dbb05fb30a0c81f090987f65 |
| SHA256 | 6fdcc7a9e9f785cbb76faefa92c8d8e773577c2c98a26527efa75a52b642ee4a |
| SHA512 | ebd88d6f0c6c4f0f365850d5ba645f1db59be1f1c8d6612d06062fc99168502ee914f8554a116f829d4dcd8dc9c63526f31fb3865d0168beab3b383360bd0777 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 934528d77ba03dc5879cbfbffd0ccc04 |
| SHA1 | 91d9335d1d52db40a42be0deb142d82b1b06cd35 |
| SHA256 | 16f87782b3b3530d03c7eef2c04155a202f7c697e34530656102912b1589c912 |
| SHA512 | 6063a7d06fab0bda4d6a5843b6939c5c9bf9bf145502c662984dd81191456eb1fdab6490e56fa80e8b92b20850e3d7a647174d588eba8fd97995dc90189ca55f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5c98d1f9c6bdb4136686436940041b4b |
| SHA1 | 5c427ad860f56a0fcedf4ff925fef413fc611b87 |
| SHA256 | a8ec97bc7c423502f200384ec8556503f6edaefc38a6ddd41b2c06d1c25782f8 |
| SHA512 | e516cdb408aa7c85f8ddd1ccc6cfa18128701fbd8f69e932b89a8e999fa4d2f093cd0a41af38be1e5c66a5dfee8c94dbea6e6af4ccecfa26745529755fa41e76 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\33ac56b0-e3b7-4078-99a9-9a7948843b7c.tmp
| MD5 | 52e5aa099064e21a36eb6933a121c638 |
| SHA1 | ec9adafd0054e2668fde50c2675e2fc47b3a637f |
| SHA256 | 301ce3231917bb55908aad56c65beca57645c05a1220257b1d07425c753ab1b6 |
| SHA512 | 4a3b083a55eddbe8796934e36f173869df3dd6c0f25769a73924be893a6021b154cccf54ed1361f8b786a33172f0d8271c815fbe85ce964a93edea05e42a9f03 |