Analysis Overview
SHA256
bc0515e48da581d0257842fc65debaf3387959d6120877313784765ceea72a89
Threat Level: Shows suspicious behavior
The file RobloxPlayerInstaller.exe was found to be: Shows suspicious behavior.
Malicious Activity Summary
A potential corporate email address has been identified in the URL: [email protected]
Legitimate hosting services abused for malware hosting/C2
Installs/modifies Browser Helper Object
Boot or Logon Autostart Execution: Active Setup
Downloads MZ/PE file
Event Triggered Execution: Image File Execution Options Injection
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in System32 directory
Checks computer location settings
Event Triggered Execution: Component Object Model Hijacking
Suspicious use of NtCreateThreadExHideFromDebugger
Loads dropped DLL
Executes dropped EXE
Checks installed software on the system
Drops file in Windows directory
Drops file in Program Files directory
Checks system information in the registry
Checks whether UAC is enabled
System Network Configuration Discovery: Internet Connection Discovery
System Location Discovery: System Language Discovery
Browser Information Discovery
Enumerates physical storage devices
NSIS installer
Suspicious use of SendNotifyMessage
Modifies system certificate store
Suspicious use of FindShellTrayWindow
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of WriteProcessMemory
Suspicious use of SetWindowsHookEx
Modifies registry class
Checks SCSI registry key(s)
Checks processor information in registry
Suspicious behavior: LoadsDriver
Uses Task Scheduler COM API
Uses Volume Shadow Copy service COM API
System policy modification
Modifies data under HKEY_USERS
Uses Volume Shadow Copy WMI provider
Enumerates system info in registry
Modifies Internet Explorer settings
Suspicious behavior: EnumeratesProcesses
Suspicious use of UnmapMainImage
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-11-13 15:32
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-11-13 15:32
Reported
2024-11-13 15:54
Platform
win10ltsc2021-20241023-en
Max time kernel
1343s
Max time network
1345s
Command Line
Signatures
A potential corporate email address has been identified in the URL: [email protected]
Boot or Logon Autostart Execution: Active Setup
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
Downloads MZ/PE file
Event Triggered Execution: Image File Execution Options Injection
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe | C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe | N/A |
Installs/modifies Browser Helper Object
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-641261377-2215826147-608237349-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-641261377-2215826147-608237349-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-641261377-2215826147-608237349-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Suspicious use of NtCreateThreadExHideFromDebugger
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
Checks installed software on the system
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\gradient.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\common\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Trust Protection Lists\Mu\Social | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\avatar\compositing\CompositExtraSlot3.mesh | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\PlayStationController\PS5\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\XboxController\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Lobby\Buttons\glow_nine_slice.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Settings\Players\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\LuaChat\9-slice\chat-bubble-self-tip.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\PlatformContent\pc\textures\plastic\normal.dds | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Lobby\Buttons\scroll_left.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\MenuBar\icon_home.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\VoiceChat\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\LuaChat\graphic\gr-indicator-instudio-10x10.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_bn-IN.dll | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\StudioSharedUI\spawn_withbg_24.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Emotes\TenFoot\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Settings\Radial\TopSelected.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\TopBar\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\ImageSet\AE\img_set_2x_2.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Locales\eu.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\avatar\heads\head.mesh | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\SelfView\SelfView_icon_mic_disabled.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\VR\Radial\SliceDisabled.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Locales\fr.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Locales\sr.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\PlaceAnnotations\AnnotationSingle.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\StudioToolbox\AssetPreview\vote_up.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\TouchTapIcon.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\InspectMenu\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\Controls\DesignSystem\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\msedge.exe.sig | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\PlatformContent\pc\textures\plastic\diffuse.dds | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\LuaChat\9-slice\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_sk.dll | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\Locales\da.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\AnimationEditor\button_hierarchy_opened.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\CollisionGroupsEditor\ToolbarIcon.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\textures\ui\ImageSet\AE\img_set_2x_1.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Extensions\external_extensions.json | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\AnimationEditor\img_triangle.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\option.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Settings\MenuBarIcons\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\VoiceChat\Misc\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\ExtraContent\LuaPackages\Packages\_Index\FoundationImages\FoundationImages\SpriteSheets\img_set_2x_17.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\edge_game_assist\EdgeGameAssist.msix | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\msvcp140_codecvt_ids.dll | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\scrollbuttonDown_ds.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\common\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\NetworkPause\no [email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\chatBubble_bot_notifyGray_dotDotDot.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\DesignSystem\ButtonX.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\Controls\XboxController\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.195.35\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Locales\sr-Cyrl-BA.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\Debugger\Breakpoints\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\StudioToolbox\RoundedBackground.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Locales\kk.pak | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\VisualElements\SmallLogoBeta.png | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\PlatformContent\pc\textures\water\normal_06.dds | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\ui\InGameMenu\[email protected] | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| File created | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\content\textures\PublishPlaceAs\common_checkmarkCircle.png | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
Drops file in Windows directory
Executes dropped EXE
Loads dropped DLL
Browser Information Discovery
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F1059B86-FEA0-46E4-9AB9-78221477AE81}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
System Network Configuration Discovery: Internet Connection Discovery
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
NSIS installer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-641261377-2215826147-608237349-1000\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\roblox-player | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\BHO" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-641261377-2215826147-608237349-1000\SOFTWARE\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" | C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133759867263241401" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" | C:\Windows\system32\LogonUI.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.mpeg1 | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.r26\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.rels | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachineFallback\CurVer\ = "MicrosoftEdgeUpdate.PolicyStatusMachineFallback.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{79E0C401-B7BC-4DE5-8104-71350F3A9B67} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ProxyStubClsid32\ = "{3316A154-AC5C-4126-9021-B201E9C33D7B}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.apl\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.camp | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.MinesweeperSave-ms\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.gxf | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{9E8F1B36-249F-4FC3-9994-974AFAA07B26}\InprocServer32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\DisplayName = "PDF Preview Handler" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.wve\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.mapimail | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.gif\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\MSEdgeMHT | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.xld | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{628ACE20-B77A-456F-A88D-547DB6CEEDD5}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\notification_helper.exe\"" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.mpeg\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.r08\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1B9063E4-3882-485E-8797-F28A0240782F}\ = "IGoogleUpdate3WebSecurity" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{2E1DD7EF-C12D-4F8E-8AD8-CF8CC265BAD0} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ProxyStubClsid32\ = "{3316A154-AC5C-4126-9021-B201E9C33D7B}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachine\CurVer\ = "MicrosoftEdgeUpdate.OnDemandCOMClassMachine.1.0" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.docmhtml | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.nsv\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.iso | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.psf | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{8B15189E-5465-4166-933D-1EABAD9648CB}\InProcServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine.dll" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreClass\CLSID\ = "{8F09CD6C-5964-4573-82E3-EBFF7702865B}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6DFFE7FE-3153-4AF1-95D8-F8FCCA97E56B}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{D1E8B1A6-32CE-443C-8E2E-EBA90C481353}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.OnDemandCOMClassMachine" | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.8bf | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.prf\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.wvx | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.wll\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{EA92A799-267E-4DF5-A6ED-6A7E0684BB8A} | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC}\NumMethods | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\.xml\OpenWithProgids | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.aw\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.slupkg-ms | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.dib | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.rmi\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.wav\ = "none" | C:\Windows\system32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\TypeLib\{C9C2B807-7731-4F34-81B7-44FF7779522B}\1.0\0 | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\.Job | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.lzh\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.pbk\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DDD4B5D4-FD54-497C-8789-0830F29A60EE}\NumMethods\ = "10" | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32 | C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.zipx\ = "none" | C:\Windows\System32\cmd.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB} | C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.edrwx\ = "none" | C:\Windows\System32\cmd.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D1EB23A46D17D68FD92564C2F1F1601764D8E349 | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D1EB23A46D17D68FD92564C2F1F1601764D8E349\Blob = 0f00000001000000140000003e8e6487f8fd27d322a269a71edaac5d57811286090000000100000054000000305206082b0601050507030206082b06010505070303060a2b0601040182370a030406082b0601050507030406082b0601050507030606082b0601050507030706082b0601050507030106082b0601050507030853000000010000004300000030413022060c2b06010401b231010201050130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c0620000000100000020000000d7a7a0fb5d7e2731d771e9484ebcdef71d5f0c3e0a2948782bc83ee0ea699ef40b000000010000001c0000005300650063007400690067006f002000280041004100410029000000140000000100000014000000a0110a233e96f107ece2af29ef82a57fd030a4b41d00000001000000100000002e0d6875874a44c820912e85e964cfdb030000000100000014000000d1eb23a46d17d68fd92564c2f1f1601764d8e349200000000100000036040000308204323082031aa003020102020101300d06092a864886f70d0101050500307b310b3009060355040613024742311b301906035504080c1247726561746572204d616e636865737465723110300e06035504070c0753616c666f7264311a3018060355040a0c11436f6d6f646f204341204c696d697465643121301f06035504030c18414141204365727469666963617465205365727669636573301e170d3034303130313030303030305a170d3238313233313233353935395a307b310b3009060355040613024742311b301906035504080c1247726561746572204d616e636865737465723110300e06035504070c0753616c666f7264311a3018060355040a0c11436f6d6f646f204341204c696d697465643121301f06035504030c1841414120436572746966696361746520536572766963657330820122300d06092a864886f70d01010105000382010f003082010a0282010100be409df46ee1ea76871c4d45448ebe46c883069dc12afe181f8ee402faf3ab5d508a16310b9a06d0c57022cd492d5463ccb66e68460b53eacb4c24c0bc724eeaf115aef4549a120ac37ab23360e2da8955f32258f3dedccfef8386a28c944f9f68f29890468427c776bfe3cc352c8b5e07646582c048b0a891f9619f762050a891c766b5eb78620356f08a1a13ea31a31ea099fd38f6f62732586f07f56bb8fb142bafb7aaccd6635f738cda0599a838a8cb17783651ace99ef4783a8dcf0fd942e2980cab2f9f0e01deef9f9949f12ddfac744d1b98b547c5e529d1f99018c7629cbe83c7267b3e8a25c7c0dd9de6356810209d8fd8ded2c3849c0d5ee82fc90203010001a381c03081bd301d0603551d0e04160414a0110a233e96f107ece2af29ef82a57fd030a4b4300e0603551d0f0101ff040403020106300f0603551d130101ff040530030101ff307b0603551d1f047430723038a036a0348632687474703a2f2f63726c2e636f6d6f646f63612e636f6d2f414141436572746966696361746553657276696365732e63726c3036a034a0328630687474703a2f2f63726c2e636f6d6f646f2e6e65742f414141436572746966696361746553657276696365732e63726c300d06092a864886f70d010105050003820101000856fc02f09be8ffa4fad67bc64480ce4fc4c5f60058cca6b6bc1449680476e8e6ee5dec020f60d68d50184f264e01e3e6b0a5eebfbc745441bffdfc12b8c74f5af48960057f60b7054af3f6f1c2bfc4b97486b62d7d6bccd2f346dd2fc6e06ac3c334032c7d96dd5ac20ea70a99c1058bab0c2ff35c3acf6c37550987de53406c58effcb6ab656e04f61bdc3ce05a15c69ed9f15948302165036cece92173ec9b03a1e037ada015188ffaba02cea72ca910132cd4e50826ab229760f8905e74d4a29a53bdf2a968e0a26ec2d76cb1a30f9ebfeb68e756f2aef2e32b383a0981b56b85d7be2ded3f1ab7b263e2f5622c82d46a004150f139839f95e93696986e | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: LoadsDriver
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of UnmapMainImage
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe | N/A |
Suspicious use of WriteProcessMemory
System policy modification
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext | C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe | N/A |
Uses Task Scheduler COM API
Uses Volume Shadow Copy WMI provider
Uses Volume Shadow Copy service COM API
Processes
C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe
"C:\Users\Admin\AppData\Local\Temp\RobloxPlayerInstaller.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2000 -parentBuildID 20240401114208 -prefsHandle 1928 -prefMapHandle 1920 -prefsLen 23681 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {04c5cbc9-290c-437c-9efe-38338f7b81ce} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2408 -parentBuildID 20240401114208 -prefsHandle 2384 -prefMapHandle 2376 -prefsLen 23717 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7df59abd-3d0c-4855-a0d6-46a696f1bd8d} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2972 -childID 1 -isForBrowser -prefsHandle 3000 -prefMapHandle 1260 -prefsLen 23858 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9262b920-bf05-4a7b-96ee-517b78eaa709} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3696 -childID 2 -isForBrowser -prefsHandle 3680 -prefMapHandle 2948 -prefsLen 29091 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {672aa85c-3b39-489d-933a-7b904adadb38} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4628 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 3676 -prefMapHandle 4636 -prefsLen 29091 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4c1dd78f-c01f-46c8-bd76-a1c2b740fca8} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5216 -childID 3 -isForBrowser -prefsHandle 5300 -prefMapHandle 5328 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {8d16e970-8f3e-4752-978b-e52d8bbb4aec} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5476 -childID 4 -isForBrowser -prefsHandle 5556 -prefMapHandle 5552 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9be70d5d-421a-4e2e-83a5-9a69957bd42f} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5668 -childID 5 -isForBrowser -prefsHandle 5748 -prefMapHandle 5744 -prefsLen 26944 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {38266efa-ad8d-4b95-b1c9-9ca2b0b8750d} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5976 -parentBuildID 20240401114208 -prefsHandle 2700 -prefMapHandle 6088 -prefsLen 29251 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {fe256d22-c5b0-4da8-b913-4100e6b4885c} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" rdd
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2880 -parentBuildID 20240401114208 -sandboxingKind 1 -prefsHandle 5696 -prefMapHandle 6140 -prefsLen 29251 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {988892c3-225c-40fb-9edd-fb60cd994a6d} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6512 -childID 6 -isForBrowser -prefsHandle 6476 -prefMapHandle 6488 -prefsLen 27104 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6f1ac9a9-5dfe-492c-9ddf-96d3bff5fcf4} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x514 0x2ec
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
MicrosoftEdgeWebview2Setup.exe /silent /install
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7M0YxQTQ1M0EtRTNGOC00NzY0LTlGMTAtMzhBQjZDNzk4MEEzfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntBODE0N0U3NC05QjI1LTQyOEUtODkxMS0xQjE5RTRDQ0UwREJ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iOTQwMzIxMDg4MCIgaW5zdGFsbF90aW1lX21zPSI1NjAiLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{3F1A453A-E3F8-4764-9F10-38AB6C7980A3}" /silent
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7M0YxQTQ1M0EtRTNGOC00NzY0LTlGMTAtMzhBQjZDNzk4MEEzfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntERjI4MEU0MS1DRkIzLTQ2MUEtQkY0OC02MjgyQzdEOEJDQ0F9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-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
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /7
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\MicrosoftEdge_X64_130.0.2849.80.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{C7698EB9-9318-4BDA-981B-574758EBB4E1}\EDGEMITMP_B0C37.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x248,0x24c,0x250,0x224,0x254,0x7ff6fc1ad730,0x7ff6fc1ad73c,0x7ff6fc1ad748
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5480 -childID 7 -isForBrowser -prefsHandle 6500 -prefMapHandle 6508 -prefsLen 30533 -prefMapSize 244658 -jsInitHandle 968 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2d335347-41fd-4686-9468-15738e0ebcee} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4652 -parentBuildID 20240401114208 -prefsHandle 5944 -prefMapHandle 3220 -prefsLen 30533 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {22eeca7e-9e8c-435b-b3d0-bc97a9b7b26a} 2368 "\\.\pipe\gecko-crash-server-pipe.2368" gpu
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /7
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7M0YxQTQ1M0EtRTNGOC00NzY0LTlGMTAtMzhBQjZDNzk4MEEzfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntBRURBOUYyNy1ENkU4LTQxMzgtOEI5My1FMDBGNjEzN0EzRDB9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQ0LjQ1MjkiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSIxMjUiIGlzX3dpcD0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O1ZQUW9QMUYrZnExNXdSemgxa1BMNFBNcFdoOE9STUI1aXp2ck9DL2NoalE9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0ie0YzMDE3MjI2LUZFMkEtNDI5NS04QkRGLTAwQzNBOUE3RTRDNX0iIHZlcnNpb249IiIgbmV4dHZlcnNpb249IjEzMC4wLjI4NDkuODAiIGxhbmc9IiIgYnJhbmQ9IiIgY2xpZW50PSIiIGV4cGVyaW1lbnRzPSJjb25zZW50PWZhbHNlIiBpbnN0YWxsYWdlPSItMSIgaW5zdGFsbGRhdGU9Ii0xIj48dXBkYXRlY2hlY2svPjxldmVudCBldmVudHR5cGU9IjkiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9Ijk0MjE2NjA5MzMiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiLz48ZXZlbnQgZXZlbnR0eXBlPSI1IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSI5NDIxNjkwODU5IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iNiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iOTY5OTY0NjQ2MSIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIvPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjE5Njc1NyIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTAzMTkwODgyNDQiIHNvdXJjZV91cmxfaW5kZXg9IjAiIGRvbmVfYmVmb3JlX29vYmVfY29tcGxldGU9IjAiIHVwZGF0ZV9jaGVja190aW1lX21zPSI5MzMiIGRvd25sb2FkX3RpbWVfbXM9IjI2MzY2IiBkb3dubG9hZGVkPSIxNzUwNzY5MjAiIHRvdGFsPSIxNzUwNzY5MjAiIHBhY2thZ2VfY2FjaGVfcmVzdWx0PSIwIiBpbnN0YWxsX3RpbWVfbXM9IjYxOTM4Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe" -app
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /7
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe" -app
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerLauncher.exe" --crashpad --no-rate-limit --database=C:\Users\Admin\AppData\Local\Temp\crashpad_roblox --metrics-dir=C:\Users\Admin\AppData\Local\Temp\crashpad_roblox --url=https://uploads.backtrace.rbx.com/post --annotation=RobloxChannel=production --annotation=RobloxGitHash=3891290f7ec8b14511dd09a88bb53740fbfe3768 --annotation=UploadAttachmentKiloByteLimit=100 --annotation=UploadPercentage=100 --annotation=format=minidump --annotation=token=a2440b0bfdada85f34d79b43839f2b49ea6bba474bd7d126e844bc119271a1c3 --initial-client-data=0x7bc,0x6e4,0x6e0,0x774,0x7c8,0x1296a0c,0x1296a1c,0x1296a2c
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe" --app
C:\Windows\System32\oobe\UserOOBEBroker.exe
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1928 -parentBuildID 20240401114208 -prefsHandle 1844 -prefMapHandle 1832 -prefsLen 24588 -prefMapSize 245025 -appDir "C:\Program Files\Mozilla Firefox\browser" - {1b16544b-42ec-482a-9ea0-176fea1c67c9} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2284 -parentBuildID 20240401114208 -prefsHandle 2260 -prefMapHandle 2256 -prefsLen 24588 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d6e1782e-0e30-4220-adbd-aefe82816b96} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3228 -childID 1 -isForBrowser -prefsHandle 3152 -prefMapHandle 1116 -prefsLen 25087 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ca02f254-a8ac-4431-b80f-e0695b9bdd6c} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4436 -childID 2 -isForBrowser -prefsHandle 4428 -prefMapHandle 4424 -prefsLen 26844 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ab503df1-691e-4ead-8772-c8bd36ed2ce9} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4608 -childID 3 -isForBrowser -prefsHandle 4420 -prefMapHandle 4416 -prefsLen 29379 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c636cca9-c0a5-411e-91a5-48a33bc183f3} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5308 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 5304 -prefMapHandle 5300 -prefsLen 30263 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ea880561-e472-4bf2-b837-8ff932ee5ee8} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5588 -parentBuildID 20240401114208 -prefsHandle 3880 -prefMapHandle 5552 -prefsLen 30370 -prefMapSize 245025 -appDir "C:\Program Files\Mozilla Firefox\browser" - {8fea0db6-19a1-49ba-8c31-31a539054df9} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" rdd
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5600 -parentBuildID 20240401114208 -sandboxingKind 1 -prefsHandle 5592 -prefMapHandle 5576 -prefsLen 30370 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2e894aae-c59c-435e-a962-b55379ab00e5} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3576 -childID 4 -isForBrowser -prefsHandle 3112 -prefMapHandle 3556 -prefsLen 27835 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fa242d73-3151-4652-b98b-a859c7284297} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6248 -childID 5 -isForBrowser -prefsHandle 6268 -prefMapHandle 6272 -prefsLen 27835 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6933b199-74bb-4d65-825d-373d6ab2fbf1} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6240 -childID 6 -isForBrowser -prefsHandle 6256 -prefMapHandle 6260 -prefsLen 27835 -prefMapSize 245025 -jsInitHandle 1328 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6a15e5aa-2727-423b-8a53-de26aedf0601} 4572 "\\.\pipe\gecko-crash-server-pipe.4572" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1944 -parentBuildID 20240401114208 -prefsHandle 1872 -prefMapHandle 1864 -prefsLen 24531 -prefMapSize 245025 -appDir "C:\Program Files\Mozilla Firefox\browser" - {2e0e3ada-4773-4d93-9df1-8b3fe9dd3e35} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2284 -parentBuildID 20240401114208 -prefsHandle 2276 -prefMapHandle 2264 -prefsLen 24531 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {655e7495-851f-49b5-8db2-acf5db7d10ba} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3020 -childID 1 -isForBrowser -prefsHandle 3184 -prefMapHandle 3024 -prefsLen 25030 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {54b52798-2d8b-43e5-b66d-aeb26c31006c} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3992 -childID 2 -isForBrowser -prefsHandle 3984 -prefMapHandle 3980 -prefsLen 30263 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7a3863d9-2ced-4e0d-8269-965299029ac0} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4676 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 4632 -prefMapHandle 4556 -prefsLen 30317 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2b6251b4-d27f-463c-9b70-a5dd444bd58c} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5468 -childID 3 -isForBrowser -prefsHandle 5420 -prefMapHandle 4812 -prefsLen 27782 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0b3a6225-9784-47fa-a69c-475532570cca} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5244 -childID 4 -isForBrowser -prefsHandle 5552 -prefMapHandle 5548 -prefsLen 27782 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {955dbd47-bdcf-4c6b-a6d7-a7301bc67ba7} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5692 -childID 5 -isForBrowser -prefsHandle 5252 -prefMapHandle 5260 -prefsLen 27782 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4f1ccada-e47e-4792-a662-4e02666072fc} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6072 -childID 6 -isForBrowser -prefsHandle 6124 -prefMapHandle 6120 -prefsLen 27782 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f1840445-7c2e-47de-8a63-4b35a88e6d54} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2876 -parentBuildID 20240401114208 -prefsHandle 2840 -prefMapHandle 2836 -prefsLen 30367 -prefMapSize 245025 -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7521790-804a-4669-9ff2-2a717d9e492e} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" rdd
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2708 -parentBuildID 20240401114208 -sandboxingKind 1 -prefsHandle 6292 -prefMapHandle 6300 -prefsLen 30367 -prefMapSize 245025 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {15b09875-117e-4f25-8ea7-b101e8de16a9} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" utility
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe
"C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\RobloxPlayerBeta.exe" roblox-player:1+launchmode:play+gameinfo:ytjt5liL0E2c2phACMUEBQh96M3GRPfdml95gWmc6ZOo4pmGSepqE6qTiRJtP7wemanWlrJrkXAD1dQwmk2SsqFEd7TjSqal9SbHujld2delUriUo3swOQAXSJAaE1Da7DtVuyLtOx_djBpT0anutZkzfkFiYF5rmKwuGU0a6PeO4cZESVmBsHyd7AajQSE2KDNxKvzzGd5uLKdTGqCT19_X5jgZ3NlPGoE5UFHYUP0+launchtime:1731512281628+placelauncherurl:https%3A%2F%2Fwww.roblox.com%2FGame%2FPlaceLauncher.ashx%3Frequest%3DRequestGame%26browserTrackerId%3D1731512176860005%26placeId%3D192800%26isPlayTogetherGame%3Dfalse%26joinAttemptId%3D2f4966a2-691d-458b-8826-de2c43aa40e0%26joinAttemptOrigin%3DPlayButton+browsertrackerid:1731512176860005+robloxLocale:en_us+gameLocale:en_us+channel:+LaunchExp:InApp
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7984 -childID 7 -isForBrowser -prefsHandle 7992 -prefMapHandle 7904 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {19275fd3-688c-4049-a978-da18539dc8d9} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7652 -childID 8 -isForBrowser -prefsHandle 8176 -prefMapHandle 7268 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d57d6d01-350f-4912-9c79-d9750682c4ca} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5820 -childID 9 -isForBrowser -prefsHandle 5780 -prefMapHandle 5804 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d25ef614-8ec4-495f-a983-83e2de0f91dd} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x514 0x2ec
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8512 -childID 10 -isForBrowser -prefsHandle 8484 -prefMapHandle 8496 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ad03fc6e-e479-4e63-b3d7-ef1e1aecf6a4} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F1059B86-FEA0-46E4-9AB9-78221477AE81}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{F1059B86-FEA0-46E4-9AB9-78221477AE81}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe" /update /sessionid "{4BDAC3CB-1B9E-45E6-AC35-85D9A6159D6D}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NEJEQUMzQ0ItMUI5RS00NUU2LUFDMzUtODVEOUE2MTU5RDZEfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9InsxQzU4NkQ2OC03NkRFLTRFNzYtOTc2NC0zMDBFRjBFQ0EwOUN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQ0LjQ1MjkiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSIxMjUiIGlzX3dpcD0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O3I0NTJ0MStrMlRncS9IWHpqdkZOQlJob3BCV1I5c2JqWHhxZVVESDl1WDA9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTk1LjM1IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMCI-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-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzMTcxODAzMDc1IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIiBkb3dubG9hZGVyPSJiaXRzIiB1cmw9Imh0dHA6Ly9tc2VkZ2UuYi50bHUuZGwuZGVsaXZlcnkubXAubWljcm9zb2Z0LmNvbS9maWxlc3RyZWFtaW5nc2VydmljZS9maWxlcy82OGQ1NzdhMC0xZjRhLTQzNGYtYmRjZS0xNDhlZGMxZTRhNDA_UDE9MTczMjExNzEyOSZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1mOEJ4eU03NWNmeCUyZlV1VmhDVHVBTEZYV2VIS1clMmJ5MVVNaXBZMUNKWTJxc3hLbEolMmZEeXJLdElBTjFIQXJISHptJTJiVXM3Q09WSm1ncGJVRDlqRGNUQVd3JTNkJTNkIiBzZXJ2ZXJfaXBfaGludD0iIiBjZG5fY2lkPSItMSIgY2RuX2NjYz0iIiBjZG5fbXNlZGdlX3JlZj0iIiBjZG5fYXp1cmVfcmVmX29yaWdpbl9zaGllbGQ9IiIgY2RuX2NhY2hlPSIiIGNkbl9wM3A9IiIgZG93bmxvYWRlZD0iMTYzNTkyMCIgdG90YWw9IjE2MzU5MjAiIGRvd25sb2FkX3RpbWVfbXM9IjI2NTY5Ii8-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzMTcxODQzMTYwIiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjEzMTc3MDYzMzE0IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PHBpbmcgcj0iLTEiIHJkPSItMSIgcGluZ19mcmVzaG5lc3M9IntFNjA3M0Q5Mi0yOUQ2LTQ1MUYtOTI0Qy0xNEZEOEQxODg1QzZ9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\Temp\EU6D70.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{4BDAC3CB-1B9E-45E6-AC35-85D9A6159D6D}"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping 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-PGV4cCBldGFnPSImcXVvdDtyNDUydDErazJUZ3EvSFh6anZGTkJSaG9wQldSOXNialh4cWVVREg5dVgwPSZxdW90OyIvPjxhcHAgYXBwaWQ9IntGM0M0RkUwMC1FRkQ1LTQwM0ItOTU2OS0zOThBMjBGMUJBNEF9IiB2ZXJzaW9uPSIxLjMuMTcxLjM5IiBuZXh0dmVyc2lvbj0iMS4zLjE5NS4zNSIgbGFuZz0iIiBicmFuZD0iSU5CWCIgY2xpZW50PSIiIGluc3RhbGxhZ2U9IjAiIGluc3RhbGxkYXRldGltZT0iMTczMTUxMTk4MiI-PGV2ZW50IGV2ZW50dHlwZT0iMyIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTMxOTQ4MTMwNzgiLz48L2FwcD48L3JlcXVlc3Q-
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7872 -childID 11 -isForBrowser -prefsHandle 8708 -prefMapHandle 8712 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a42e1270-67d8-4786-b03f-93d43adc2c64} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8648 -childID 12 -isForBrowser -prefsHandle 8640 -prefMapHandle 8636 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {8106afee-f6d2-4d04-b4f8-74b08ec3face} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5656 -childID 13 -isForBrowser -prefsHandle 2492 -prefMapHandle 5232 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a5a3efe5-eea2-45a5-ae0e-f134bd376def} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9032 -childID 14 -isForBrowser -prefsHandle 8596 -prefMapHandle 8612 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d8c384be-5745-45df-bcab-0143db0c7af3} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8580 -childID 15 -isForBrowser -prefsHandle 8604 -prefMapHandle 8616 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c8afd1ec-6356-4e88-830c-295c06e48261} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7460 -childID 16 -isForBrowser -prefsHandle 4804 -prefMapHandle 7360 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e7ad7f75-a0b9-4bfa-84a3-3db84fca83dd} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8632 -childID 17 -isForBrowser -prefsHandle 5124 -prefMapHandle 8204 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d52062d2-d153-40d4-963f-d90cc4069943} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8572 -childID 18 -isForBrowser -prefsHandle 8600 -prefMapHandle 3772 -prefsLen 30919 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4586ec45-a66a-4668-a5a2-20555b6386be} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7584 -childID 19 -isForBrowser -prefsHandle 8564 -prefMapHandle 4528 -prefsLen 30980 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {90b58d25-4011-4004-8a9c-d0a704d9e154} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4528 -childID 20 -isForBrowser -prefsHandle 7892 -prefMapHandle 5636 -prefsLen 30980 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5a0bb0d0-d74e-45f0-a06f-1f077026148f} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuMzUiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RUJCNkQxQzYtQkM3Ri00QTkyLUI0QzItNkU0RTg3RTIwQ0VFfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ibGltaXRlZCIgcmVxdWVzdGlkPSJ7OEI5OTJDOUItMjJCQy00MDMyLUE2RDYtRkQ4NTM2M0Y0OTAxfSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4xOTA0NC40NTI5IiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iMTI1IiBpc193aXA9IjAiIGlzX2luX2xvY2tkb3duX21vZGU9IjAiLz48b2VtIHByb2R1Y3RfbWFudWZhY3R1cmVyPSIiIHByb2R1Y3RfbmFtZT0iIi8-PGV4cCBldGFnPSImcXVvdDtkbDR4SjNjSlNUTUR1bjNKZEwvNFp4RzlqSkxCbkNWditzTGZIVjZ1U1k0PSZxdW90OyIvPjxhcHAgYXBwaWQ9Ins4QTY5RDM0NS1ENTY0LTQ2M2MtQUZGMS1BNjlEOUU1MzBGOTZ9IiB2ZXJzaW9uPSIxMjMuMC42MzEyLjEyMyIgbmV4dHZlcnNpb249IiIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMjEiIGluc3RhbGxkYXRldGltZT0iMTcyOTY5Mzk0OCIgb29iZV9pbnN0YWxsX3RpbWU9IjEzMzc0MTY2NjExODM1MDAwMCI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjIxNzk4NjIiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE2NDM1ODc0MjEzIi8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\MicrosoftEdge_X64_130.0.2849.80.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x248,0x24c,0x250,0x228,0x254,0x7ff6be88d730,0x7ff6be88d73c,0x7ff6be88d748
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x224,0x24c,0x250,0x248,0x254,0x7ff6be88d730,0x7ff6be88d73c,0x7ff6be88d748
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --msedge --channel=stable --register-package-identity --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --msedge --channel=stable --remove-deprecated-packages --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --msedge --channel=stable --update-game-assist-package --verbose-logging --system-level
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x248,0x24c,0x250,0x224,0x254,0x7ff6e382d730,0x7ff6e382d73c,0x7ff6e382d748
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x248,0x24c,0x250,0x224,0x254,0x7ff6e382d730,0x7ff6e382d73c,0x7ff6e382d748
C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\SystemTemp\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x24c,0x250,0x254,0x248,0x224,0x7ff6e382d730,0x7ff6e382d73c,0x7ff6e382d748
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe -k AppReadiness -p -s AppReadiness
C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuMzUiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7RUJCNkQxQzYtQkM3Ri00QTkyLUI0QzItNkU0RTg3RTIwQ0VFfSIgdXNlcmlkPSJ7QjMyQTYxNkUtMDk2Qy00Mjg3LTk5NEQtN0JENkNBQUEwMTQwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntBQjBGNDkyQi0yQzMzLTQ2ODQtQUFDNy0xRDkyOEYxRDRGM0F9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQ0LjQ1MjkiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSIxMjUiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O1ZQUW9QMUYrZnExNXdSemgxa1BMNFBNcFdoOE9STUI1aXp2ck9DL2NoalE9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xOTUuMzUiIG5leHR2ZXJzaW9uPSIiIGxhbmc9IiIgYnJhbmQ9IklOQlgiIGNsaWVudD0iIiBleHBlcmltZW50cz0iSXNPbkludGVydmFsQ29tbWFuZHNBbGxvd2VkPSU1QiUyMi10YXJnZXRfZGV2JTIwLW1pbl9icm93c2VyX3ZlcnNpb25fY2FuYXJ5X2RldiUyMDEzMS4wLjI4NzEuMCUyMiU1RCIgaW5zdGFsbGFnZT0iMCIgY29ob3J0PSJycmZAMC4xNyI-PHVwZGF0ZWNoZWNrLz48cGluZyByZD0iNjUyNiIgcGluZ19mcmVzaG5lc3M9Ins5ODUzMjEyNS0zOTgwLTRCMTQtQTA4MC05Q0IwN0I1QzE4N0R9Ii8-PC9hcHA-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-
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8876 -childID 21 -isForBrowser -prefsHandle 7384 -prefMapHandle 5744 -prefsLen 30980 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c7e13203-8f38-4408-8f5a-f5b5a67b3ac3} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8184 -childID 22 -isForBrowser -prefsHandle 8284 -prefMapHandle 3516 -prefsLen 30980 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5b2c9f66-b102-49d5-b8bb-32704f5f7d68} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5760 -childID 23 -isForBrowser -prefsHandle 7360 -prefMapHandle 4804 -prefsLen 31235 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {57b329a8-2a7b-4bdd-8538-e3e7e53b651e} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8608 -childID 24 -isForBrowser -prefsHandle 6220 -prefMapHandle 5744 -prefsLen 31235 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6f328d2b-530d-4f22-88ca-98642b8428f3} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4740 -childID 25 -isForBrowser -prefsHandle 4788 -prefMapHandle 7604 -prefsLen 31235 -prefMapSize 245025 -jsInitHandle 1316 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c3e96a77-7b27-402d-a22f-970781e5c1c4} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2136 -parentBuildID 20240401114208 -prefsHandle 3520 -prefMapHandle 3280 -prefsLen 34352 -prefMapSize 245025 -appDir "C:\Program Files\Mozilla Firefox\browser" - {0c8ac4f8-32c7-4211-b033-741d9aeae9ac} 5376 "\\.\pipe\gecko-crash-server-pipe.5376" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x220,0x224,0x228,0x1fc,0x22c,0x7ffea090cc40,0x7ffea090cc4c,0x7ffea090cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2016,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1992 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1884,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1984 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2292,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=2308 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3168,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3176 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3180,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3196 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3732,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4884,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4892 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5080,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5088 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=3212,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4264 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3200,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3304 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4604,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=3416,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5092,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4056 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /C "C:\Users\Admin\Downloads\PC Killer.bat"
C:\Windows\system32\mode.com
mode 40,20
C:\Windows\system32\shutdown.exe
shutdown /r /f /t 100
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5624,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=900 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5832,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5812 /prefetch:1
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\PC Killer.bat" "
C:\Windows\system32\mode.com
mode 40,20
C:\Windows\system32\shutdown.exe
shutdown /r /f /t 100
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.4355 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=3364,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5992 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6016,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6000 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=4544,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5968,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5808 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6116,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5616 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=1512,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4060 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6052,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6272 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=4652,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6412 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6280,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6556 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5996,i,4420431466124214952,4092873810022602417,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6060 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa3934055 /state1:0x41c64e6d
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | client-telemetry.roblox.com | udp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| GB | 128.116.119.4:443 | client-telemetry.roblox.com | tcp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| GB | 128.116.119.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| US | 8.8.8.8:53 | 4.119.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.17.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.210.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| FR | 13.249.9.67:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| FR | 3.164.163.62:443 | setup.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | 67.9.249.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.163.164.3.in-addr.arpa | udp |
| FR | 3.164.163.62:443 | setup.rbxcdn.com | tcp |
| FR | 3.164.163.62:443 | setup.rbxcdn.com | tcp |
| N/A | 127.0.0.1:49763 | tcp | |
| US | 8.8.8.8:53 | spocs.getpocket.com | udp |
| US | 8.8.8.8:53 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | checkappexec.microsoft.com | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| GB | 172.165.61.93:443 | checkappexec.microsoft.com | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | 115.230.163.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.61.165.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.205.72.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | firefox-settings-attachments.cdn.mozilla.net | udp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.149.97.1:443 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 34.149.97.1:443 | firefox-api-proxy.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 34.149.97.1:443 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | tcp |
| N/A | 127.0.0.1:49770 | tcp | |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | 232.168.11.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | youareanidiot.cc | udp |
| US | 8.8.8.8:53 | youareanidiot.cc | udp |
| US | 104.21.95.69:80 | youareanidiot.cc | tcp |
| US | 8.8.8.8:53 | youareanidiot.cc | udp |
| US | 104.21.95.69:443 | youareanidiot.cc | tcp |
| US | 104.21.95.69:443 | youareanidiot.cc | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 69.95.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.239.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| US | 172.169.87.222:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 222.87.169.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.f.tlu.dl.delivery.mp.microsoft.com | udp |
| GB | 88.221.135.210:80 | msedge.f.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 210.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | support.mozilla.org | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | location.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.classify-client.prod.webservices.mozgcp.net | udp |
| US | 35.190.72.216:443 | prod.classify-client.prod.webservices.mozgcp.net | udp |
| US | 35.190.72.216:443 | prod.classify-client.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.classify-client.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | 216.72.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.181.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | ciscobinary.openh264.org | udp |
| GB | 216.58.201.110:443 | redirector.gvt1.com | tcp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| GB | 88.221.134.168:80 | a19.dscg10.akamai.net | tcp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| GB | 216.58.201.110:443 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | r4---sn-aigzrnsz.gvt1.com | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.134.221.88.in-addr.arpa | udp |
| GB | 74.125.175.169:443 | r4---sn-aigzrnsz.gvt1.com | tcp |
| US | 8.8.8.8:53 | r4.sn-aigzrnsz.gvt1.com | udp |
| US | 8.8.8.8:53 | r4.sn-aigzrnsz.gvt1.com | udp |
| GB | 74.125.175.169:443 | r4.sn-aigzrnsz.gvt1.com | udp |
| US | 8.8.8.8:53 | 169.175.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.210.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.214.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| GB | 128.116.119.4:443 | ecsv2.roblox.com | tcp |
| US | 8.8.8.8:53 | 40.173.79.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| FR | 13.249.9.67:443 | clientsettingscdn.roblox.com | tcp |
| US | 8.8.8.8:53 | 154.200.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.193.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ephemeralcounters.api.roblox.com | udp |
| GB | 128.116.119.4:443 | ephemeralcounters.api.roblox.com | tcp |
| US | 8.8.8.8:53 | setup.rbxcdn.qq.com | udp |
| GB | 128.116.119.4:443 | ephemeralcounters.api.roblox.com | tcp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.qq.com | udp |
| US | 8.8.8.8:53 | setup.rbxcdn.com | udp |
| US | 8.8.8.8:53 | clientsettingscdn.roblox.com | udp |
| US | 8.8.8.8:53 | setup-ak.rbxcdn.com | udp |
| US | 8.8.8.8:53 | 23.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | setup-ll.rbxcdn.com | udp |
| US | 8.8.8.8:53 | setup-cfly.rbxcdn.com | udp |
| US | 8.8.8.8:53 | setup-hw.rbxcdn.com | udp |
| GB | 128.116.119.4:443 | ephemeralcounters.api.roblox.com | tcp |
| US | 8.8.8.8:53 | 57.110.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cxcs.microsoft.net | udp |
| GB | 23.213.251.133:443 | cxcs.microsoft.net | tcp |
| GB | 88.221.135.57:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 133.251.213.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.135.221.88.in-addr.arpa | udp |
| N/A | 127.0.0.1:51023 | tcp | |
| US | 104.21.95.69:443 | youareanidiot.cc | udp |
| US | 8.8.8.8:53 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 34.149.97.1:443 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| N/A | 127.0.0.1:51027 | tcp | |
| N/A | 127.0.0.1:51513 | tcp | |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| N/A | 127.0.0.1:51731 | tcp | |
| US | 8.8.8.8:53 | roblox.com | udp |
| GB | 128.116.119.4:80 | roblox.com | tcp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| GB | 128.116.119.4:443 | roblox.com | tcp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| GB | 128.116.119.4:443 | www.roblox.com | tcp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| GB | 88.221.135.219:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| FR | 3.162.38.18:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | d143j4fdqe1jki.cloudfront.net | udp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | d143j4fdqe1jki.cloudfront.net | udp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | 219.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| GB | 128.116.119.4:443 | apis.roblox.com | tcp |
| GB | 128.116.119.4:443 | apis.roblox.com | tcp |
| GB | 128.116.119.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | locale.roblox.com | udp |
| GB | 128.116.119.4:443 | locale.roblox.com | tcp |
| GB | 2.18.190.134:443 | apis.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1818.b.akamai.net | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| GB | 128.116.119.4:443 | auth.roblox.com | tcp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1818.b.akamai.net | udp |
| GB | 128.116.119.4:443 | auth.roblox.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| FR | 13.32.145.74:443 | images.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | 134.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.145.32.13.in-addr.arpa | udp |
| GB | 128.116.119.4:443 | auth.roblox.com | tcp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| GB | 128.116.119.4:443 | assetgame.roblox.com | tcp |
| GB | 128.116.119.4:443 | assetgame.roblox.com | tcp |
| GB | 128.116.119.4:443 | assetgame.roblox.com | tcp |
| GB | 128.116.119.4:443 | assetgame.roblox.com | tcp |
| US | 8.8.8.8:53 | apis.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1818.b.akamai.net | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| FR | 3.162.38.18:443 | d143j4fdqe1jki.cloudfront.net | tcp |
| US | 8.8.8.8:53 | d143j4fdqe1jki.cloudfront.net | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| FR | 13.32.145.74:443 | dapx4swc8lj69.cloudfront.net | tcp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | a1818.b.akamai.net | udp |
| FR | 18.245.199.38:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | d1kpbbfl4rco16.cloudfront.net | udp |
| GB | 2.19.252.155:443 | js.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | d1kpbbfl4rco16.cloudfront.net | udp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | arkoselabs.roblox.com | udp |
| FR | 18.245.175.18:443 | arkoselabs.roblox.com | tcp |
| US | 8.8.8.8:53 | d22703ixv0v5yp.cloudfront.net | udp |
| US | 8.8.8.8:53 | d22703ixv0v5yp.cloudfront.net | udp |
| FR | 18.245.175.18:443 | d22703ixv0v5yp.cloudfront.net | udp |
| US | 8.8.8.8:53 | 38.199.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| GB | 128.116.119.4:443 | realtime-signalr.roblox.com | tcp |
| GB | 128.116.119.4:443 | realtime-signalr.roblox.com | tcp |
| US | 8.8.8.8:53 | economy.roblox.com | udp |
| US | 8.8.8.8:53 | friends.roblox.com | udp |
| US | 8.8.8.8:53 | privatemessages.roblox.com | udp |
| US | 8.8.8.8:53 | trades.roblox.com | udp |
| US | 8.8.8.8:53 | usermoderation.roblox.com | udp |
| US | 8.8.8.8:53 | thumbnails.roblox.com | udp |
| US | 8.8.8.8:53 | contacts.roblox.com | udp |
| US | 8.8.8.8:53 | notifications.roblox.com | udp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| US | 8.8.8.8:53 | sin2-128-116-97-3.roblox.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| US | 8.8.8.8:53 | sc0ak.rbxcdn.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | mia2-128-116-127-3.roblox.com | udp |
| US | 8.8.8.8:53 | silver.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | cdg1-128-116-122-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax4-128-116-63-3.roblox.com | udp |
| GB | 128.116.119.3:443 | silver.roblox.com | tcp |
| US | 8.8.8.8:53 | silver.roblox.com | udp |
| SG | 128.116.97.3:443 | sin2-128-116-97-3.roblox.com | tcp |
| GB | 88.221.134.11:443 | sc0ak.rbxcdn.com | tcp |
| FR | 128.116.122.3:443 | cdg1-128-116-122-3.roblox.com | tcp |
| US | 128.116.63.3:443 | lax4-128-116-63-3.roblox.com | tcp |
| DE | 128.116.123.3:443 | fra2-128-116-123-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| IN | 128.116.104.4:443 | bom1-128-116-104-4.roblox.com | tcp |
| US | 128.116.127.3:443 | mia2-128-116-127-3.roblox.com | tcp |
| US | 8.8.8.8:53 | sin2-128-116-97-3.roblox.com | udp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | cdg1-128-116-122-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax4-128-116-63-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | mia2-128-116-127-3.roblox.com | udp |
| US | 8.8.8.8:53 | silver.roblox.com | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 8.8.8.8:53 | sin2-128-116-97-3.roblox.com | udp |
| US | 8.8.8.8:53 | cdg1-128-116-122-3.roblox.com | udp |
| US | 8.8.8.8:53 | fra2-128-116-123-3.roblox.com | udp |
| US | 8.8.8.8:53 | mia2-128-116-127-3.roblox.com | udp |
| US | 8.8.8.8:53 | ord2-128-116-101-3.roblox.com | udp |
| US | 8.8.8.8:53 | bom1-128-116-104-4.roblox.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax4-128-116-63-3.roblox.com | udp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| GB | 88.221.134.11:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| SG | 128.116.97.3:443 | sin2-128-116-97-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 3.119.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.122.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.123.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.101.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.127.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.104.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.63.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.97.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.120.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| GB | 128.116.119.4:443 | presence.roblox.com | tcp |
| GB | 128.116.119.4:443 | presence.roblox.com | tcp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| GB | 88.221.134.11:443 | a1831.dscd.akamai.net | tcp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | a1992.w27.akamai.net | udp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | a1992.w27.akamai.net | udp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | games.roblox.com | udp |
| GB | 128.116.119.4:443 | games.roblox.com | tcp |
| GB | 128.116.119.4:443 | games.roblox.com | tcp |
| GB | 128.116.119.4:443 | games.roblox.com | tcp |
| GB | 128.116.119.4:443 | games.roblox.com | tcp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | followings.roblox.com | udp |
| US | 8.8.8.8:53 | voice.roblox.com | udp |
| US | 8.8.8.8:53 | badges.roblox.com | udp |
| GB | 128.116.119.4:443 | badges.roblox.com | tcp |
| GB | 128.116.119.4:443 | badges.roblox.com | tcp |
| GB | 128.116.119.4:443 | badges.roblox.com | tcp |
| GB | 128.116.119.4:443 | badges.roblox.com | tcp |
| US | 8.8.8.8:53 | sea1-128-116-115-3.roblox.com | udp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 8.8.8.8:53 | gold.roblox.com | udp |
| US | 8.8.8.8:53 | lga2-128-116-32-3.roblox.com | udp |
| US | 8.8.8.8:53 | iad4-128-116-102-3.roblox.com | udp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 128.116.115.3:443 | sea1-128-116-115-3.roblox.com | tcp |
| US | 8.8.8.8:53 | sea1-128-116-115-3.roblox.com | udp |
| US | 128.116.99.3:443 | atl1-128-116-99-3.roblox.com | tcp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| GB | 128.116.119.3:443 | gold.roblox.com | tcp |
| US | 8.8.8.8:53 | us-central-origin-px.roblox.com | udp |
| US | 128.116.32.3:443 | lga2-128-116-32-3.roblox.com | tcp |
| US | 8.8.8.8:53 | lga2-128-116-32-3.roblox.com | udp |
| US | 8.8.8.8:53 | atl1-128-116-99-3.roblox.com | udp |
| US | 8.8.8.8:53 | sea1-128-116-115-3.roblox.com | udp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| US | 8.8.8.8:53 | iad4-128-116-102-3.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 8.8.8.8:53 | lga2-128-116-32-3.roblox.com | udp |
| US | 8.8.8.8:53 | us-central-origin-px.roblox.com | udp |
| US | 8.8.8.8:53 | iad4-128-116-102-3.roblox.com | udp |
| US | 8.8.8.8:53 | syd1-128-116-51-3.roblox.com | udp |
| US | 128.116.115.3:443 | sea1-128-116-115-3.roblox.com | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| AU | 128.116.51.3:443 | syd1-128-116-51-3.roblox.com | tcp |
| US | 8.8.8.8:53 | 3.99.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.32.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.102.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.50.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.51.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| GB | 2.19.252.155:443 | a1993.g.akamai.net | tcp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | dw04ej0wrfjel.cloudfront.net | udp |
| US | 8.8.8.8:53 | sc0.rbxcdn.com | udp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| US | 8.8.8.8:53 | ams2-128-116-21-3.roblox.com | udp |
| GB | 128.116.119.3:443 | lhr2-128-116-119-3.roblox.com | tcp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| US | 128.116.116.3:443 | lax2-128-116-116-3.roblox.com | tcp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 128.116.45.3:443 | mia4-128-116-45-3.roblox.com | tcp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| GB | 88.221.134.27:443 | sc0.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| NL | 128.116.21.3:443 | ams2-128-116-21-3.roblox.com | tcp |
| US | 8.8.8.8:53 | ams2-128-116-21-3.roblox.com | udp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | lhr2-128-116-119-3.roblox.com | udp |
| US | 8.8.8.8:53 | lax2-128-116-116-3.roblox.com | udp |
| US | 8.8.8.8:53 | mia4-128-116-45-3.roblox.com | udp |
| US | 8.8.8.8:53 | ams2-128-116-21-3.roblox.com | udp |
| US | 8.8.8.8:53 | 27.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.21.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.45.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.116.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | auth.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| GB | 128.116.119.4:443 | auth.roblox.com | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| GB | 128.116.119.4:443 | realtime-signalr.roblox.com | tcp |
| US | 8.8.8.8:53 | firefox-settings-attachments.cdn.mozilla.net | udp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| NL | 4.175.87.113:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 113.87.175.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | now.gg | udp |
| FR | 18.244.28.128:80 | now.gg | tcp |
| FR | 18.244.28.128:80 | now.gg | tcp |
| US | 8.8.8.8:53 | now.gg | udp |
| US | 8.8.8.8:53 | now.gg | udp |
| FR | 18.244.28.128:443 | now.gg | tcp |
| FR | 18.244.28.128:443 | now.gg | udp |
| US | 8.8.8.8:53 | cdn.now.gg | udp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| US | 35.201.96.38:443 | cdn.debugbear.com | tcp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| GB | 88.221.134.26:443 | cdn.now.gg | tcp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | tcp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | tcp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | tcp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | tcp |
| US | 35.201.96.38:443 | cdn.debugbear.com | udp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | tcp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | 128.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.96.201.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d23sp3kzv1t6m5.cloudfront.net | udp |
| US | 8.8.8.8:53 | d23sp3kzv1t6m5.cloudfront.net | udp |
| GB | 88.221.134.26:443 | a1184.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | sessions.bugsnag.com | udp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 8.8.8.8:53 | sessions.bugsnag.com | udp |
| US | 8.8.8.8:53 | sessions.bugsnag.com | udp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | udp |
| US | 8.8.8.8:53 | 7.88.190.35.in-addr.arpa | udp |
| GB | 128.116.119.4:443 | realtime-signalr.roblox.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| FR | 18.245.175.21:443 | d23sp3kzv1t6m5.cloudfront.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| BE | 66.102.1.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | msedge.b.tlu.dl.delivery.mp.microsoft.com | udp |
| US | 199.232.214.172:80 | msedge.b.tlu.dl.delivery.mp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 84.1.102.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.cmp.inmobi.com | udp |
| DE | 18.197.18.38:443 | api.cmp.inmobi.com | tcp |
| DE | 18.197.18.38:443 | api.cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | 38.18.197.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.16.238:443 | play.google.com | tcp |
| GB | 172.217.16.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 35.201.96.38:443 | cdn.debugbear.com | tcp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| FR | 18.245.175.21:443 | d23sp3kzv1t6m5.cloudfront.net | tcp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | notify.bugsnag.com | udp |
| US | 8.8.8.8:53 | notify.bugsnag.com | udp |
| US | 35.186.205.6:443 | notify.bugsnag.com | tcp |
| US | 35.186.205.6:443 | notify.bugsnag.com | tcp |
| US | 8.8.8.8:53 | notify.bugsnag.com | udp |
| US | 8.8.8.8:53 | 6.205.186.35.in-addr.arpa | udp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | udp |
| US | 8.8.8.8:53 | dn0qt3r0xannq.cloudfront.net | udp |
| US | 8.8.8.8:53 | now.gg | udp |
| FR | 18.245.199.60:443 | dn0qt3r0xannq.cloudfront.net | tcp |
| US | 8.8.8.8:53 | dn0qt3r0xannq.cloudfront.net | udp |
| US | 8.8.8.8:53 | dn0qt3r0xannq.cloudfront.net | udp |
| FR | 18.245.199.60:443 | dn0qt3r0xannq.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 60.199.245.18.in-addr.arpa | udp |
| FR | 18.245.199.60:443 | dn0qt3r0xannq.cloudfront.net | udp |
| US | 8.8.8.8:53 | raven-edge.aditude.io | udp |
| US | 8.8.8.8:53 | edge.aditude.io | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | static.kueezrtb.com | udp |
| US | 8.8.8.8:53 | pub.doubleverify.com | udp |
| US | 8.8.8.8:53 | static.vidazoo.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | geo-location.prebid.cloud | udp |
| US | 104.22.61.119:443 | edge.aditude.io | tcp |
| US | 8.8.8.8:53 | raven-edge.aditude.io | udp |
| GB | 216.58.212.194:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 104.22.61.119:443 | raven-edge.aditude.io | tcp |
| US | 104.18.166.224:443 | pub.doubleverify.com | tcp |
| US | 8.8.8.8:53 | pub.doubleverify.com.cdn.cloudflare.net | udp |
| US | 8.8.8.8:53 | edge.aditude.io | udp |
| US | 104.22.35.123:443 | static.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | static.kueezrtb.com | udp |
| US | 104.18.22.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 104.18.33.178:443 | static.vidazoo.com | tcp |
| US | 8.8.8.8:53 | static.vidazoo.com.cdn.cloudflare.net | udp |
| FR | 52.222.201.89:443 | geo-location.prebid.cloud | tcp |
| US | 8.8.8.8:53 | geo-location.prebid.cloud | udp |
| US | 8.8.8.8:53 | raven-edge.aditude.io | udp |
| US | 8.8.8.8:53 | edge.aditude.io | udp |
| US | 8.8.8.8:53 | pub.doubleverify.com.cdn.cloudflare.net | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | static.kueezrtb.com | udp |
| US | 8.8.8.8:53 | static.vidazoo.com.cdn.cloudflare.net | udp |
| GB | 216.58.212.194:443 | securepubads.g.doubleclick.net | udp |
| US | 104.18.166.224:443 | pub.doubleverify.com.cdn.cloudflare.net | udp |
| FR | 52.222.201.89:443 | geo-location.prebid.cloud | udp |
| US | 8.8.8.8:53 | raven-static.aditude.io | udp |
| US | 8.8.8.8:53 | track.kueezrtb.com | udp |
| US | 8.8.8.8:53 | gtrack.kueezrtb.com | udp |
| US | 104.22.61.119:443 | raven-static.aditude.io | tcp |
| US | 8.8.8.8:53 | raven-static.aditude.io | udp |
| US | 8.8.8.8:53 | track.kueezrtb.com | udp |
| US | 8.8.8.8:53 | gtrack.kueezrtb.com | udp |
| US | 8.8.8.8:53 | raven-static.aditude.io | udp |
| US | 8.8.8.8:53 | 119.61.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.166.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.35.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.22.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.33.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | track.kueezrtb.com | udp |
| US | 8.8.8.8:53 | gtrack.kueezrtb.com | udp |
| US | 8.8.8.8:53 | production-raven.infra.aditude.cloud | udp |
| FR | 13.32.145.43:443 | production-raven.infra.aditude.cloud | tcp |
| US | 8.8.8.8:53 | production-raven.infra.aditude.cloud | udp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 8.8.8.8:53 | production-raven.infra.aditude.cloud | udp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 104.22.35.123:443 | gtrack.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | gtrack.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| FR | 18.245.194.122:443 | d1ykf07e75w7ss.cloudfront.net | tcp |
| US | 8.8.8.8:53 | otrack.kueezrtb.com | udp |
| US | 8.8.8.8:53 | 49.69.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.21.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.194.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u.kueezrtb.com | udp |
| US | 8.8.8.8:53 | otrack.kueezrtb.com | udp |
| US | 172.67.21.232:443 | otrack.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | u.kueezrtb.com | udp |
| US | 8.8.8.8:53 | otrack.kueezrtb.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | u.kueezrtb.com | udp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| NL | 178.250.1.11:443 | gum.nl3.vip.prod.criteo.com | tcp |
| DE | 162.19.138.117:443 | id5-sync.com | tcp |
| FR | 52.84.174.60:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| NL | 178.250.1.11:443 | gum.nl3.vip.prod.criteo.com | tcp |
| US | 8.8.8.8:53 | sync.kueezrtb.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 67.205.150.146:443 | sync.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | h7mzk9dlb.puzztake.com | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | h7mzk9dlb.puzztake.com | udp |
| FR | 18.155.129.34:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| GB | 104.78.175.230:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | wserver.vidazoo.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 68.183.31.191:443 | wserver.vidazoo.com | tcp |
| US | 8.8.8.8:53 | hr8sqd7lb.puzztake.com | udp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | e4536.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | hr8sqd7lb.puzztake.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.174.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.150.205.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.175.78.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.138.19.162.in-addr.arpa | udp |
| IE | 52.48.168.123:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.now.gg | udp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | bis1.vidazoo.com | udp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| US | 159.223.176.152:443 | bis1.vidazoo.com | tcp |
| US | 8.8.8.8:53 | hgw6oh2lb.puzztake.com | udp |
| US | 8.8.8.8:53 | hgw6oh2lb.puzztake.com | udp |
| US | 8.8.8.8:53 | cloud-api.bluestacks.cn | udp |
| US | 47.88.31.190:443 | cloud-api.bluestacks.cn | tcp |
| US | 47.88.31.190:443 | cloud-api.bluestacks.cn | tcp |
| US | 8.8.8.8:53 | cloud-api.bluestacks.cn | udp |
| US | 8.8.8.8:53 | 191.31.183.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.168.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.176.223.159.in-addr.arpa | udp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | cloud-api.bluestacks.cn | udp |
| US | 8.8.8.8:53 | 190.31.88.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | event-ingestor.judy.pnap.aditude.cloud | udp |
| US | 131.153.232.246:443 | event-ingestor.judy.pnap.aditude.cloud | tcp |
| US | 8.8.8.8:53 | event-ingestor.judy.pnap.aditude.cloud | udp |
| US | 8.8.8.8:53 | event-ingestor.judy.pnap.aditude.cloud | udp |
| US | 8.8.8.8:53 | 246.232.153.131.in-addr.arpa | udp |
| US | 8.8.8.8:53 | doctoraux.com | udp |
| FR | 3.164.163.101:443 | doctoraux.com | tcp |
| FR | 3.164.163.101:443 | doctoraux.com | tcp |
| US | 8.8.8.8:53 | doctoraux.com | udp |
| GB | 88.221.134.67:443 | a1184.dscd.akamai.net | tcp |
| US | 35.201.96.38:443 | cdn.debugbear.com | tcp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| GB | 88.221.134.67:443 | a1184.dscd.akamai.net | tcp |
| GB | 88.221.134.67:443 | a1184.dscd.akamai.net | tcp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 35.201.96.38:443 | cdn.debugbear.com | udp |
| GB | 88.221.134.67:443 | a1184.dscd.akamai.net | udp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | tcp |
| FR | 18.245.199.60:443 | dn0qt3r0xannq.cloudfront.net | tcp |
| FR | 18.244.28.128:443 | now.gg | tcp |
| US | 8.8.8.8:53 | now.gg | udp |
| FR | 18.244.28.128:443 | now.gg | tcp |
| US | 35.190.88.7:443 | sessions.bugsnag.com | udp |
| US | 8.8.8.8:53 | 101.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.134.221.88.in-addr.arpa | udp |
| FR | 18.245.199.60:443 | dn0qt3r0xannq.cloudfront.net | udp |
| FR | 18.244.28.128:443 | now.gg | udp |
| US | 104.22.61.119:443 | raven-static.aditude.io | tcp |
| US | 104.22.61.119:443 | raven-static.aditude.io | tcp |
| US | 104.18.22.145:443 | cadmus.script.ac | tcp |
| US | 104.22.35.123:443 | u.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | pub.doubleverify.com | udp |
| US | 104.18.33.178:443 | static.vidazoo.com.cdn.cloudflare.net | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| GB | 216.58.212.194:443 | securepubads.g.doubleclick.net | tcp |
| FR | 52.222.201.89:443 | geo-location.prebid.cloud | tcp |
| US | 104.18.166.224:443 | pub.doubleverify.com | tcp |
| US | 104.22.61.119:443 | raven-static.aditude.io | tcp |
| FR | 52.222.201.89:443 | geo-location.prebid.cloud | udp |
| GB | 216.58.212.194:443 | securepubads.g.doubleclick.net | udp |
| US | 104.18.166.224:443 | pub.doubleverify.com | udp |
| US | 104.18.33.178:443 | static.vidazoo.com.cdn.cloudflare.net | tcp |
| FR | 13.32.145.43:443 | production-raven.infra.aditude.cloud | tcp |
| US | 8.8.8.8:53 | production-raven.infra.aditude.cloud | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| FR | 52.222.201.89:443 | geo-location.prebid.cloud | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| FR | 18.245.175.81:443 | cmp.inmobi.com | tcp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| FR | 18.245.194.122:443 | d1ykf07e75w7ss.cloudfront.net | tcp |
| US | 104.22.35.123:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| FR | 52.84.174.60:443 | config.aps.amazon-adsystem.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | 81.175.245.18.in-addr.arpa | udp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| FR | 52.84.174.60:443 | config.aps.amazon-adsystem.com | tcp |
| US | 172.67.21.232:443 | u.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | sync.kueezrtb.com | udp |
| US | 198.199.89.209:443 | sync.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | hj5ozcalb.puzztake.com | udp |
| US | 8.8.8.8:53 | hj5ozcalb.puzztake.com | udp |
| US | 8.8.8.8:53 | cdn.now.gg | udp |
| US | 8.8.8.8:53 | api.cmp.inmobi.com | udp |
| DE | 18.193.40.240:443 | api.cmp.inmobi.com | tcp |
| DE | 18.193.40.240:443 | api.cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | a1184.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | 209.89.199.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.40.193.18.in-addr.arpa | udp |
| US | 47.88.31.190:443 | cloud-api.bluestacks.cn | tcp |
| US | 8.8.8.8:53 | cloud-api.bluestacks.cn | udp |
| US | 47.88.31.190:443 | cloud-api.bluestacks.cn | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | choice-apis-prod-2120274730.eu-central-1.elb.amazonaws.com | udp |
| US | 68.183.31.191:443 | wserver.vidazoo.com | tcp |
| US | 8.8.8.8:53 | hr8sqd7lb.puzztake.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 131.153.232.246:443 | event-ingestor.judy.pnap.aditude.cloud | tcp |
| US | 8.8.8.8:53 | event-ingestor.judy.pnap.aditude.cloud | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| GB | 142.250.200.3:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | bis4.vidazoo.com | udp |
| US | 161.35.10.162:443 | bis4.vidazoo.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| DE | 162.19.138.83:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | 162.10.35.161.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.138.19.162.in-addr.arpa | udp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 100.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| GB | 128.116.119.4:443 | apis.roblox.com | tcp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | support.mozilla.org | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| US | 8.8.8.8:53 | js.rbxcdn.com | udp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| GB | 2.18.190.80:443 | css.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| GB | 2.19.252.154:443 | js.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| FR | 3.162.38.51:443 | static.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | d143j4fdqe1jki.cloudfront.net | udp |
| GB | 88.221.134.74:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | roblox.com | udp |
| US | 8.8.8.8:53 | dapx4swc8lj69.cloudfront.net | udp |
| US | 8.8.8.8:53 | static.rbxcdn.com | udp |
| FR | 3.162.38.51:443 | d143j4fdqe1jki.cloudfront.net | tcp |
| GB | 2.19.252.154:443 | a1993.g.akamai.net | tcp |
| GB | 128.116.119.4:443 | roblox.com | tcp |
| US | 8.8.8.8:53 | a1992.w27.akamai.net | udp |
| US | 8.8.8.8:53 | a1993.g.akamai.net | udp |
| US | 8.8.8.8:53 | a1992.w27.akamai.net | udp |
| US | 8.8.8.8:53 | metrics.roblox.com | udp |
| US | 8.8.8.8:53 | css.rbxcdn.com | udp |
| US | 8.8.8.8:53 | a1962.dscw27.akamai.net | udp |
| GB | 128.116.119.4:443 | metrics.roblox.com | tcp |
| US | 8.8.8.8:53 | locale.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| GB | 128.116.119.4:443 | locale.roblox.com | tcp |
| US | 8.8.8.8:53 | economy.roblox.com | udp |
| US | 8.8.8.8:53 | friends.roblox.com | udp |
| US | 8.8.8.8:53 | privatemessages.roblox.com | udp |
| US | 8.8.8.8:53 | trades.roblox.com | udp |
| US | 8.8.8.8:53 | usermoderation.roblox.com | udp |
| GB | 128.116.119.4:443 | usermoderation.roblox.com | tcp |
| GB | 128.116.119.4:443 | usermoderation.roblox.com | tcp |
| GB | 128.116.119.4:443 | usermoderation.roblox.com | tcp |
| GB | 128.116.119.4:443 | usermoderation.roblox.com | tcp |
| GB | 128.116.119.4:443 | usermoderation.roblox.com | tcp |
| US | 8.8.8.8:53 | 80.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | lms.roblox.com | udp |
| US | 8.8.8.8:53 | thumbnails.roblox.com | udp |
| US | 8.8.8.8:53 | contacts.roblox.com | udp |
| US | 8.8.8.8:53 | notifications.roblox.com | udp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| GB | 128.116.119.4:443 | notifications.roblox.com | tcp |
| US | 8.8.8.8:53 | images.rbxcdn.com | udp |
| US | 8.8.8.8:53 | assetgame.roblox.com | udp |
| US | 8.8.8.8:53 | pulsar.roblox.com | udp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| US | 128.116.101.3:443 | ord2-128-116-101-3.roblox.com | tcp |
| US | 8.8.8.8:53 | sc0ak.rbxcdn.com | udp |
| US | 128.116.102.3:443 | iad4-128-116-102-3.roblox.com | tcp |
| NL | 128.116.21.3:443 | ams2-128-116-21-3.roblox.com | tcp |
| SG | 128.116.97.3:443 | sin2-128-116-97-3.roblox.com | tcp |
| GB | 128.116.119.4:443 | assetgame.roblox.com | tcp |
| US | 128.116.95.3:443 | dfw2-128-116-95-3.roblox.com | tcp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| US | 128.116.121.3:443 | pulsar.roblox.com | tcp |
| US | 8.8.8.8:53 | pulsar.roblox.com | udp |
| US | 8.8.8.8:53 | sin4-128-116-50-3.roblox.com | udp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| US | 8.8.8.8:53 | nrt1-128-116-120-3.roblox.com | udp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| FR | 3.165.136.15:443 | sc0aws.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | d2yzw3aiudktwi.cloudfront.net | udp |
| US | 8.8.8.8:53 | dfw2-128-116-95-3.roblox.com | udp |
| US | 8.8.8.8:53 | pulsar.roblox.com | udp |
| US | 8.8.8.8:53 | d2yzw3aiudktwi.cloudfront.net | udp |
| US | 8.8.8.8:53 | a2047.dscw27.akamai.net | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| SG | 128.116.97.3:443 | sin2-128-116-97-3.roblox.com | tcp |
| US | 8.8.8.8:53 | tr.rbxcdn.com | udp |
| US | 128.116.121.3:443 | pulsar.roblox.com | tcp |
| SG | 128.116.50.3:443 | sin4-128-116-50-3.roblox.com | tcp |
| JP | 128.116.120.3:443 | nrt1-128-116-120-3.roblox.com | tcp |
| GB | 128.116.119.4:443 | presence.roblox.com | tcp |
| GB | 88.221.134.74:443 | tr.rbxcdn.com | tcp |
| US | 8.8.8.8:53 | a1831.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | 3.95.116.128.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.136.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | realtime-signalr.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 216.58.212.206:443 | www.youtube.com | tcp |
| GB | 216.58.212.206:443 | www.youtube.com | tcp |
| GB | 216.58.212.206:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | youtube-ui.l.google.com | udp |
| GB | 216.58.212.206:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.200.54:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.200.54:443 | i.ytimg.com | udp |
| BE | 66.102.1.84:443 | accounts.google.com | tcp |
| BE | 66.102.1.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 206.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.200.250.142.in-addr.arpa | udp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| GB | 216.58.201.100:443 | www.google.com | udp |
| US | 8.8.8.8:53 | rr3---sn-hgn7rnee.googlevideo.com | udp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| US | 8.8.8.8:53 | rr3.sn-hgn7rnee.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr3.sn-hgn7rnee.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr3---sn-hgn7rnee.googlevideo.com | udp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | youtube.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.16.238:443 | play.google.com | tcp |
| GB | 172.217.16.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 40.164.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | youtube.com | udp |
| GB | 142.250.200.14:443 | youtube.com | tcp |
| US | 8.8.8.8:53 | youtube.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| FR | 173.194.164.40:443 | rr3---sn-hgn7rnee.googlevideo.com | tcp |
| GB | 172.217.16.238:443 | play.google.com | udp |
| GB | 142.250.200.14:443 | youtube.com | udp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.169.10:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.169.10:443 | jnn-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.169.10:443 | jnn-pa.googleapis.com | udp |
| GB | 172.217.16.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 10.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:80 | github.com | tcp |
| GB | 20.26.156.215:80 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.110.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | 154.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | doctoraux.com | udp |
| FR | 3.164.163.10:443 | doctoraux.com | tcp |
| US | 8.8.8.8:53 | 10.163.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ac.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | ac.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| IE | 52.142.124.215:443 | ac.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | ac.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | 215.124.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| US | 8.8.8.8:53 | 233.54.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | 222.125.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.112.21:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | glb-db52c2cf8be544.github.com | udp |
| US | 8.8.8.8:53 | glb-db52c2cf8be544.github.com | udp |
| US | 8.8.8.8:53 | 21.112.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | msedge.api.cdp.microsoft.com | udp |
| IE | 4.245.161.190:443 | msedge.api.cdp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 190.161.245.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 34.117.121.53:443 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | presence.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | fd.api.iris.microsoft.com | udp |
| FR | 20.199.58.43:443 | fd.api.iris.microsoft.com | tcp |
| US | 8.8.8.8:53 | 43.58.199.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 8.8.8.8:53 | glb-db52c2cf8be544.github.com | udp |
| US | 140.82.113.22:443 | glb-db52c2cf8be544.github.com | tcp |
| US | 8.8.8.8:53 | glb-db52c2cf8be544.github.com | udp |
| US | 8.8.8.8:53 | 22.113.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | ecsv2.roblox.com | udp |
| US | 8.8.8.8:53 | edge-term4-lhr2.roblox.com | udp |
| US | 8.8.8.8:53 | checkappexec.microsoft.com | udp |
| GB | 51.11.108.188:443 | checkappexec.microsoft.com | tcp |
| US | 8.8.8.8:53 | 188.108.11.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| GB | 216.58.201.100:443 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 227.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 216.58.204.78:443 | clients2.google.com | udp |
| GB | 216.58.204.78:443 | clients2.google.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 154.111.199.185.in-addr.arpa | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 140.82.112.21:443 | collector.github.com | tcp |
| US | 140.82.112.21:443 | collector.github.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | raw.githubusercontent.com | udp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 216.58.201.100:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 8.8.8.8:53 | stefansundin.github.io | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 185.199.110.153:443 | stefansundin.github.io | tcp |
| US | 185.199.110.153:443 | stefansundin.github.io | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | netdna.bootstrapcdn.com | udp |
| US | 104.18.11.207:443 | netdna.bootstrapcdn.com | tcp |
| US | 104.18.11.207:443 | netdna.bootstrapcdn.com | tcp |
| US | 8.8.8.8:53 | 153.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.11.18.104.in-addr.arpa | udp |
| US | 104.18.11.207:443 | netdna.bootstrapcdn.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | objects.githubusercontent.com | udp |
| US | 185.199.110.133:443 | objects.githubusercontent.com | tcp |
Files
C:\Users\Admin\AppData\Local\Roblox\logs\cacert.pem
| MD5 | 1a4af016c683d93ebfa916f641da64ac |
| SHA1 | c89c32b9620917d1cdbf34fb5b03f1a595e48e3a |
| SHA256 | 9483f4bcc05eea3c5929627130b8e574fdc850b4fac319d7e98c4f68c59a3a0f |
| SHA512 | 3b2ca0d5d0bdee0d060d50c71c88c9c7d35c9d0f0956b135ca6ddfa2618feba5774fbff2ce866f18ae20b90139e0c1eb8bf4087ac9337498b733d0da434d3eec |
C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe
| MD5 | b68e7f7ae52ef8e962723c7ddda4f75d |
| SHA1 | 686bdf2057cdd7b16877fb5eec0aff150fa074d0 |
| SHA256 | d779b2acc52b4b3e72c1461dbc7e950f0b650e924b3799db425942f64624e94d |
| SHA512 | cb0ecf531c95d657019b0188e648520b36b8386516d2e640239d99972ae44439d21ec6fcbe7902fc59c6f65db3571db0944e48f2207a442f3be5d10c9655bbb1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\5995dfeb-a81f-4378-a188-33436fc609df
| MD5 | a8f18c0df9603f00dd46cf99fa3cb837 |
| SHA1 | da6a7d57c4429a499d9b6385cfed890865b1e1b4 |
| SHA256 | 2e07cc0951f9233663b48b1745c188e9a0d6a27d7da08cad447b0844b243b688 |
| SHA512 | 2f27cfbac2f43e3c0ce12989bde063a7d417842bfe79dcbaa3a2c5be2ed4b02338e065154ce4fd726b02cfeb03f414e5150ba65861d84980855e5f090607ce19 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\1ef12330-ff4f-4957-9be7-567ac81fbf30
| MD5 | b14585f49f7f687cc7e9267564783748 |
| SHA1 | 33bb8356599fd503cfcb3315b9c177a06996d058 |
| SHA256 | d5c7e723aee128e23335c3d8c8f096d09e3b3f3f3cf3966f54e2564e4af00b70 |
| SHA512 | 3b14da8f8c52533b421a1455594728b2e92a49eb3a5758a134571c0a8f0caab6c5f80181aba015adc9b60bf90fa2459fbe247b78f51131bd8a7457e831b55f49 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\77661dbc-83f1-497f-b00e-9d3ce53c88f9
| MD5 | 23915262668f71e873aff4d4d3cc7ce0 |
| SHA1 | 1b5341bfdd657791401abe8d04bfb289c5dbd731 |
| SHA256 | 3e36995fce8f99fe8662a91af8322ed5cdfad2fb1d8da56949554deaf7dbc657 |
| SHA512 | 134e75d517378a6847fec382e3ac815a8a7f7cfd32857f90246ddbf2af49ed494943d3bf0b9e571b361b19363154eb59c40785e6ee6a782f9a8dda19b718ffbd |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | ae58bce817853431c930bd79a863726d |
| SHA1 | ac5ec9a35014543cd6809f42b9982249cf77039d |
| SHA256 | b5105b73aae3b2864a7b37ef335329cf921428c8b3cd2dc5a04edb564ba8b64e |
| SHA512 | cdabc1e570f454eff5946727d0f7d3a627280122056d040a8846d7079f03964e9065db7b66130fe698e3ab7a621edc87f8c26fc40c8a884b73cb3868139eb585 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 1aa77c454f3dabf6d8ac52d08f370b41 |
| SHA1 | 085bfb70ad8d3914e71688a2f97bd90d5b9eeb11 |
| SHA256 | 97930a4ad8698a082b19d135c1e8f27d70c629819e79ddce14f6b3960650f525 |
| SHA512 | b9a31eb31fb20451e20b4e62732257dd39316a95ffa63d27674c4faff7125fab32a40de300cd459c46417d4e4a9f70e60e5be612b167845aadb920a19a5482c9 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\AlternateServices.bin
| MD5 | 911aad4f6d1a5b00bfe9e7a297b9cf0e |
| SHA1 | d7c425cd7063375228f43b7cb86a7eb7a3f8ee0a |
| SHA256 | acbc440db4601933fb1d33569733929c95b04c6a5867a355692d78a34c5168c4 |
| SHA512 | 752e32207d55f90bf483bb0094e514f8a6bafe8cb7bff0461bf52a75db7f664cbc4de079b54befaa2098b432e7fad5cf541d4f748c1fb8f39e3161d442f11020 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\thumbnails\d888190b76b4010c8e5daf7dbea547ff.png
| MD5 | 2f8730be9a624183f2997f8655f9b36f |
| SHA1 | 5ba3348f75f78f24233c244eac505fdcbbe0b7d7 |
| SHA256 | daded446dcfafcf5e2abf09060a916d42da1ab60643bc7bda8221ce304fe0f25 |
| SHA512 | 110bac20d24fe21af14e2d7df48e7197297892d49e4bf101f270b3c81c1291c742df18871a2e87968c2dfe6e941893df16e92ff0ebed5ffa1fa73cbb4da96b89 |
C:\Program Files (x86)\Roblox\Versions\version-b7eebc919e96477a\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe
| MD5 | 610b1b60dc8729bad759c92f82ee2804 |
| SHA1 | 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552 |
| SHA256 | 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08 |
| SHA512 | 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdate.exe
| MD5 | 4dc57ab56e37cd05e81f0d8aaafc5179 |
| SHA1 | 494a90728d7680f979b0ad87f09b5b58f16d1cd5 |
| SHA256 | 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718 |
| SHA512 | 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdate.dll
| MD5 | 965b3af7886e7bf6584488658c050ca2 |
| SHA1 | 72daabdde7cd500c483d0eeecb1bd19708f8e4a5 |
| SHA256 | d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19 |
| SHA512 | 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_en.dll
| MD5 | 4a1e3cf488e998ef4d22ac25ccc520a5 |
| SHA1 | dc568a6e3c9465474ef0d761581c733b3371b1cd |
| SHA256 | 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011 |
| SHA512 | ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdateCore.exe
| MD5 | c044dcfa4d518df8fc9d4a161d49cece |
| SHA1 | 91bd4e933b22c010454fd6d3e3b042ab6e8b2149 |
| SHA256 | 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2 |
| SHA512 | f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe
| MD5 | 60dba9b06b56e58f5aea1a4149c743d2 |
| SHA1 | a7e456acf64dd99ca30259cf45b88cf2515a69b3 |
| SHA256 | 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112 |
| SHA512 | e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\MicrosoftEdgeComRegisterShellARM64.exe
| MD5 | 7a160c6016922713345454265807f08d |
| SHA1 | e36ee184edd449252eb2dfd3016d5b0d2edad3c6 |
| SHA256 | 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9 |
| SHA512 | c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\EdgeUpdate.dat
| MD5 | 369bbc37cff290adb8963dc5e518b9b8 |
| SHA1 | de0ef569f7ef55032e4b18d3a03542cc2bbac191 |
| SHA256 | 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3 |
| SHA512 | 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\NOTICE.TXT
| MD5 | 6dd5bf0743f2366a0bdd37e302783bcd |
| SHA1 | e5ff6e044c40c02b1fc78304804fe1f993fed2e6 |
| SHA256 | 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5 |
| SHA512 | f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_bs.dll
| MD5 | e338dccaa43962697db9f67e0265a3fc |
| SHA1 | 4c6c327efc12d21c4299df7b97bf2c45840e0d83 |
| SHA256 | 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04 |
| SHA512 | e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_es-419.dll
| MD5 | 28fefc59008ef0325682a0611f8dba70 |
| SHA1 | f528803c731c11d8d92c5660cb4125c26bb75265 |
| SHA256 | 55a69ce2d6fc4109d16172ba6d9edb59dbadbc8af6746cc71dc4045aa549022d |
| SHA512 | 2ec71244303beac7d5ce0905001fe5b0fb996ad1d1c35e63eecd4d9b87751f0633a281554b3f0aa02ee44b8ceaad85a671ef6c34589055797912324e48cc23ed |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ga.dll
| MD5 | 3b8a5301c4cf21b439953c97bd3c441c |
| SHA1 | 8a7b48bb3d75279de5f5eb88b5a83437c9a2014a |
| SHA256 | abc9822ee193c9a98a21202648a48ecd69b0cb19ff31c9bbf0c79dab5f9609b0 |
| SHA512 | 068166cfdf879caf4e54fe43c5265a692fcaf6a9dcbf151335fd054bbec06260bc5ed489de6d46ca3fc0044bc61fa1468fea85373c6c66349620618ee869383a |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ms.dll
| MD5 | 51230a1b9ab0dad791e583b7ee57afe4 |
| SHA1 | 957ba3e5d9b2df16ea3e099aab5b7e74d2055e46 |
| SHA256 | a47fc6a9a75875e75f3415f068c357dd499e533849381b875272d5994c163670 |
| SHA512 | 5a3d754cefa1ab28748cb38021b5cbebd93fe513da0f4a7cbae98c0938acb10cdda939171d0842b09e97cb4c73f19272be665f767642ba1c5b25c709b5417edb |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_mr.dll
| MD5 | 468a420700d239a0cd90b95896b0d6da |
| SHA1 | ce57e3abf57c7ae13e99546b2a5e19dec03cb9b7 |
| SHA256 | 24b304bd40f8e63848f8d2a1ca6ac8bc032b7a700161efad61ad445787650c87 |
| SHA512 | 604c4cc8132c520da70c4870514610364648ec6446afa47128ac3aa8a9157932705da93e8ed4e33d56f5191d611b26b76aeba1514e9dff1a13dd32693cfddb8b |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ml.dll
| MD5 | 7e90d4306c5768dfd1160ad9e2168a19 |
| SHA1 | 4f7b17843ad226d51cfb0090235b55a29b5a674a |
| SHA256 | 8ebe88477b1493733140f1fced91903276ec69c7302deed3281054b49573eb3c |
| SHA512 | f6d8b538915fa70bfb784ea7e6d4047759d8eecc822e4b76ac9666997a41901c8269a8185f29e5472bcfaa87e4b97483bd544f3fc8f656b60dca71d63b44d291 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_mk.dll
| MD5 | 064035858a1df697913f06c972461901 |
| SHA1 | b6be99ae8e55207949076955389bc8fec81937fd |
| SHA256 | 4850260d2cbb4b4ff3490eb90ce55a412268ad699f946b1cd686ddf9f0403bd6 |
| SHA512 | 9459056e919854213117b874e61b526af4ba35c3c3e195b204c5c3e59cc4dfa2b4a45c32551e1de144842844f246f5e0d025cdcc78dbf7265ba5e26e7209cd91 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_mi.dll
| MD5 | 1866ddadd9397dbf01c82c73496b6bff |
| SHA1 | b210a9df7d6a5e116fe7a9ff8d455b6cbfb5663b |
| SHA256 | 9b4bb2ca3366a1935b4869796efc0601f94356b45e8613d28e023dd516f48d17 |
| SHA512 | 76fa5cade101d79d012e00904bf18692f85967ceea0ed7e81da4df65b85afc125a00127d9e06c8c59ffbfd2dcdc88488157b61922960559fa17d13dedca3ee59 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_lv.dll
| MD5 | 30849a9c16061b9a46a66e8e7d42ff81 |
| SHA1 | 2d0e86535d964acce8912c6bef3cc12346b22a6c |
| SHA256 | b8075c09d33cc6b6ff22fdb29ccc3dd319ce867f4b77a1d165f6f8d8cb4977e9 |
| SHA512 | 298ee10ff6cab7ff38d31e3a7826dedeab8e9ccc616eae4ca2e5ec333f42e5c6744650857031d8bf35034bd46c7c01a2646362ffbbef1f421995c73ba999ff0b |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_lt.dll
| MD5 | 7071c732cf3e4b3144cf07c49d8eb44f |
| SHA1 | 3800bf304b44d9d27ac26bed6ccc899669dc3b4f |
| SHA256 | 9c75ef5c3f53c643d7bb8c5907a0cba6ca2d1d64e6bea39ce06b4ad5a20454b6 |
| SHA512 | be3a0942e2af843adeb8e9b6acc7cd8adec956b761f71d8eb0a02835ee5be115ac064fda7088b0813d40ec3a24e7bb77816e9b67ef0cbdce1562c36880b15049 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_lo.dll
| MD5 | 864edbc77831a64a3e3ab972291233bb |
| SHA1 | fa1f3eb3320c1b1a329cbe786abecf2a8e625cbe |
| SHA256 | aecab1eb46075d1a1432b3e14537f860a2ded49a13ca82f17fac44b40ad2da51 |
| SHA512 | 3d54efd01d6317fb4746b55db2c847a506f594cff055f0db84a72ede02dbe3aa03d8e65ea06c5ae365f44312a26cdbc45ad5f9a0de46d2b9c878aeeb24566b89 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_lb.dll
| MD5 | 269e84b82973e7b9ee03a5b2ef475e4d |
| SHA1 | 4021af3bfde8c52040ad4f9390eb29ae2a69104b |
| SHA256 | c3fb0cae3dc5cdd86518d60f998c3adec1c0c5804a74ffbb9a346a73d598af07 |
| SHA512 | db716e2f6527af2dfeba4c22ff00e159d7cc0b482fc126e87b8b3d35b714bb382676066097352b6ebb87c8dfe7f6144e83100f0c9a9990b0d23c810b6c575c21 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_kok.dll
| MD5 | ca3465347e57624ee2a5dd2299d4f4cd |
| SHA1 | 551a151a8d49489c90400e18c34633aa2c2b8a4b |
| SHA256 | 5b9509a1ae34d89c89c8e657742495037d28cd03e1cd48aef4dfaa7aeebe29f0 |
| SHA512 | a4bdd458a7628a9f0664e1000512e056718cc924510a21704ff8c69b0b251a5a1c7f6f267d66325cadda1536aaee78440348be128d082112c71732e485ac93f3 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ko.dll
| MD5 | cf91a1f111762d2bc01f8a002bd9544d |
| SHA1 | db2603af55b08538a41c51fc0676bc0ed041d284 |
| SHA256 | baa9fae4fb8939e0b5fe0c7f393ab1ca40b52534f37bf2158a9a36331a221e75 |
| SHA512 | 9db864dbd194885b46f7bed9875f1e531e48f7644ce4494b8dc482c7516a6f783cd35129d2565b272dc674491a08c844a6da88bf9fa7843fcf89c96b4e0af799 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_kn.dll
| MD5 | 60dfe673999d07f1a52716c57ba425a8 |
| SHA1 | 019ce650320f90914e83010f77347351ec9958ab |
| SHA256 | ef749f70e71424d7f548d5c12283be70a6d6c59cffb1c8101b74f37ecacb64af |
| SHA512 | 46bfe77a49f14293988863a8e4dd0543202b954b670940d9ad5dc6d2b46e46104d8d6206be08a941f7e02b8ff3e2e2366b7b795d02352cff18971f8d0df5fcdc |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_km.dll
| MD5 | 2ea1200fdfb4fcc368cea7d0cdc32bc2 |
| SHA1 | 4acb60908e6e974c9fa0f19be94cb295494ee989 |
| SHA256 | 6fd21b94f62ee7474b3c3029590ddf06936105508f9bf3509620c42dc37486c3 |
| SHA512 | e63b80a5929200c85c7a30a3054bd51eee2f27e603501f105073868690906f4619a27a52e58c90ac2ab5d5c34a4739dfdd2a511574afeb7d0118de88c5544f42 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_kk.dll
| MD5 | bcb1c5f3ef6c633e35603eade528c0f2 |
| SHA1 | 84fac96d72341dc8238a0aa2b98eb7631b1eaf4e |
| SHA256 | fdd6bffdb9eca4542975f3afe3ac68feac190b8963f0a7244b4b8fa6382381d1 |
| SHA512 | ecd79ddd9f3e6db1d0471132c453c324ab55bdead21de77392f418281bc8a2dd43e9009912896ffa3d55d4d3ef17b0aa847a084369b619eb04a2d2313641d520 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ka.dll
| MD5 | 3bc0d9dd2119a72a1dc705d794dc6507 |
| SHA1 | 5c3947e9783b90805d4d3a305dd2d0f2b2e03461 |
| SHA256 | 4449ee24c676e34fea4d151b3a752e8d0e7c82f419884e80da60d4d4c1b0f8cb |
| SHA512 | 8df01ad484bf2924892129c59317f3da4f79611be2ca29e208114e5ed2cb96a63f753511dc4fe97e281417366246f2fb576cc6ef2618a67803ae7ac01be7b067 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ja.dll
| MD5 | b507a146eb5de3b02271106218223b93 |
| SHA1 | 0f1faddb06d775bcabbe8c7d83840505e094b8d6 |
| SHA256 | 5f4234e2b965656e3d6e127660f52e370dc133632d451ef04975f3b70194b2ed |
| SHA512 | 54864e9130b91b6fd68b1947968c446f45a582f22714716bfd70b6dc814841fffe939bc2f573a257ec8c62b4ff939643211fb29cabc0c45b78a6cc70eaa3752c |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_iw.dll
| MD5 | 45e971cdc476b8ea951613dbd96e8943 |
| SHA1 | 8d87b4edfce31dfa4eebdcc319268e81c1e01356 |
| SHA256 | fd5ba39c8b319c6ba2febf896c6947a0a7bae6aa0b4957bd124d55589f41849d |
| SHA512 | f1c9fccf742fa450be249dbbf7e551a426c050ae4af3d2e909f9750068a2bdc801f618eb77a6a82d13421d27949c9f2a9681a44bcb410ccdeec66b24a70f6a9a |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_it.dll
| MD5 | 497ca0a8950ae5c8c31c46eb91819f58 |
| SHA1 | 01e7e61c04de64d2df73322c22208a87d6331fc8 |
| SHA256 | abe2360a585b6671ec3a69d14077b43ae8f9e92b6077b80a147dfe36792bb1b7 |
| SHA512 | 070398af980f193ff90b4afaecb3822534ef3171eca7228bce395af11ca38364bc47cab7df1e71187ef291f90978bdc37a8611d2992b1800cd1de6aa7fda09d9 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_is.dll
| MD5 | 5664c7a059ceb096d4cdaae6e2b96b8f |
| SHA1 | bf0095cd7470bf4d7c9566ba0fd3b75c8b9e57ec |
| SHA256 | a3a2947064267d17474c168d3189b0d372e36e53bf0efb9c228d314fc802d98e |
| SHA512 | 015dcb17b297a0aaad41c7b0b2199187e435855fd3977d16402be774622cc4f6b55d04ba9159a89e26e350c5602928c76dd9386be3974437b41888a0cfdddfa8 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_id.dll
| MD5 | 03d4c35b188204f62fc1c46320e80802 |
| SHA1 | 07efb737c8b072f71b3892b807df8c895b20868c |
| SHA256 | 192585d7f4a8a0cd95e338863c14233cdd8150f9f6f7dd8a405da0670110ee95 |
| SHA512 | 7e67ea953ea58ff43e049ce519ae077eec631325604896479526627d688f2fa3bfc855a55ac23a76b1c9ef8cd75274265b8238423b95a2437be7250db0db31b1 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_hu.dll
| MD5 | f4976c580ba37fc9079693ebf5234fea |
| SHA1 | 7326d2aa8f6109084728323d44a7fb975fc1ed3f |
| SHA256 | b16755fdbcc796ef4eb937759fe2c3518c694f5d186970d55a5a5e5d906cb791 |
| SHA512 | e43636d8c947e981258e649712ad43f37c1aab01916539b93c082959fb5c6764c9c44979650092202839e812e6f252c6c3eaf66d3d195c1efd39c74c81ad1981 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_hr.dll
| MD5 | 0b475965c311203bf3a592be2f5d5e00 |
| SHA1 | b5ff1957c0903a93737666dee0920b1043ddaf70 |
| SHA256 | 65915ad11b9457d145795a1e8d151f898ec2dcb8b136967e6592884699867eb0 |
| SHA512 | bec513125f272c24477b9ddbaa5706d1e1bb958babac46829b28df99fa1dd82f3f1e3c7066dc2fe3e59118c536675a22fc2128de916ca4c478950b9992372007 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_gu.dll
| MD5 | f9646357cf6ce93d7ba9cfb3fa362928 |
| SHA1 | a072cc350ea8ea6d8a01af335691057132b04025 |
| SHA256 | 838ccd8243caa1a5d9e72eb1179ac8ae59d2acb453ed86be01e0722a8e917150 |
| SHA512 | 654c4a5200f20411c56c59dbb30a63bfe2da27781c081e2049b31f0371a31d679e3c9378c7eb9cf0fb9166a3f0fba33a58c3268193119b06f91bebe164a82528 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_hi.dll
| MD5 | 34cbaeb5ec7984362a3dabe5c14a08ec |
| SHA1 | d88ec7ac1997b7355e81226444ec4740b69670d7 |
| SHA256 | 024c5eae16e45abe2237c2a5d868563550ac596f1f7d777e25234c17d9461dd9 |
| SHA512 | 008c8443a3e93c4643a9e8735a1c59c24ba2f7a789606a86da54c921c34cbc0cb11c88594544d8509a8e71b6a287c043b1ffe2d39b90af53b4cde3847d891ba8 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_gd.dll
| MD5 | c90f33303c5bd706776e90c12aefabee |
| SHA1 | 1965550fe34b68ea37a24c8708eef1a0d561fb11 |
| SHA256 | e3acc61d06942408369c85365ac0d731c5f3c9bc26e3f1e3bb24226d0879ad9c |
| SHA512 | b0c1a9d7df57d68e5daf527703f0b6154a2ef72af1a3933bda2804408f6684b5b09b822522193243fd0756f80f13d3ab0647c90d2bed1a57b4a9fea933b0aa9a |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_gl.dll
| MD5 | 84a1cea9a31be831155aa1e12518e446 |
| SHA1 | 670f4edd4dc8df97af8925f56241375757afb3da |
| SHA256 | e4eb716f1041160fd323b0f229b88851e153025d5d79f49b7d6ecb7eb2442c57 |
| SHA512 | 5f1318119102fcee1c828565737ce914493ff86e2a18a94f5ff2b6b394d584ace75c37258d589cce1d5afd8e37d617168a7d7372cfd68dd6a2afcd4577a0bc51 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_fr-CA.dll
| MD5 | b534e068001e8729faf212ad3c0da16c |
| SHA1 | 999fa33c5ea856d305cc359c18ea8e994a83f7a9 |
| SHA256 | 445051ef15c6c872bed6d904169793837e41029a8578eaf81d78a4641ef53511 |
| SHA512 | e937d2e0f43ade3f4a5e9cdeb6dd8c8ad8b5b50a7b6b779bda727a4fe1ced93abd06720395cc69a274ce3b0f7c6b65e1eba1ecf069db64edb80d007fbb4eedbb |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_fr.dll
| MD5 | 64c47a66830992f0bdfd05036a290498 |
| SHA1 | 88b1b8faa511ee9f4a0e944a0289db48a8680640 |
| SHA256 | a9b72fcb3bdb5e021b8d23b2de0caeca80ddc50420088b988a5b7503f2d7c961 |
| SHA512 | 426546310c12aeb80d56e6b40973a5f4dffef72e14d1ac79e3f267e4df2a0022b89e08bba8ab2ffa24f90b0c035a009bed3066201e30fe961d84ed854e48f9c5 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_fil.dll
| MD5 | 7c66526dc65de144f3444556c3dba7b8 |
| SHA1 | 6721a1f45ac779e82eecc9a584bcf4bcee365940 |
| SHA256 | e622823096fc656f63d5a7bbdf3744745ef389c92ec1b804d3b874578e18c89d |
| SHA512 | dbc803c593ae0b18fd989fdc5e9e6aee8f16b893ae8d17e9d88436e2cd8cae23d06e32e4c8a8bf67fc5311b6f2a184c4e6795fed6d15b3d766ef5affc8923e2f |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_fi.dll
| MD5 | d45f2d476ed78fa3e30f16e11c1c61ea |
| SHA1 | 8c8c5d5f77cd8764c4ca0c389daee89e658dfd5e |
| SHA256 | acf42b90190110ccf30bcfb2626dd999a14e42a72a3983928cba98d44f0a72e2 |
| SHA512 | 2a876e0313a03e75b837d43e9c5bb10fcec385fbb0638faa984ee4bb68b485b04d14c59cd4ed561aaa7f746975e459954e276e73fc3f5f4605ae7f333ce85f1b |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_fa.dll
| MD5 | cbe3454843ce2f36201460e316af1404 |
| SHA1 | 0883394c28cb60be8276cb690496318fcabea424 |
| SHA256 | c66c4024847d353e9985eb9b2f060b2d84f12cc77fb6479df5ffc55dbda97e59 |
| SHA512 | f39e660f3bfab288871d3ec40135c16d31c6eb1a84136e065b54ff306f6f8016a788c713d4d8e46ad62e459f9073d2307a6ed650919b2dd00577bbfd04e5bd73 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_et.dll
| MD5 | b78cba3088ecdc571412955742ea560b |
| SHA1 | bc04cf9014cec5b9f240235b5ff0f29dbdb22926 |
| SHA256 | f0a4cfd96c85f2d98a3c9ecfadd41c0c139fdb20470c8004f4c112dd3d69e085 |
| SHA512 | 04c8ab8e62017df63e411a49fb6218c341672f348cb9950b1f0d2b2a48016036f395b4568da70989f038e8e28efea65ddd284dfd490e93b6731d9e3e0e0813cf |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_eu.dll
| MD5 | a7e1f4f482522a647311735699bec186 |
| SHA1 | 3b4b4b6e6a5e0c1981c62b6b33a0ca78f82b7bbd |
| SHA256 | e5615c838a71b533b26d308509954907bcc0eb4032cdbaa3db621eede5e6bfa4 |
| SHA512 | 22131600bbac8d9c2dab358e244ec85315a1aaebfc0fb62aaa1493c418c8832c3a6fbf24a6f8cf4704fdc4bc10a66c88839a719116b4a3d85264b7ad93c54d57 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_en-GB.dll
| MD5 | d749e093f263244d276b6ffcf4ef4b42 |
| SHA1 | 69f024c769632cdbb019943552bac5281d4cbe05 |
| SHA256 | fd90699e7f29b6028a2e8e6f3ae82d26cdc6942bd39c4f07b221d87c5dbbfe1e |
| SHA512 | 48d51b006ce0cd903154fa03d17e76591db739c4bfb64243725d21d4aa17db57a852077be00b9a51815d09664d18f9e6ad61d9bc41b3d013ed24aaec8f477ad9 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_es.dll
| MD5 | 9db7f66f9dc417ebba021bc45af5d34b |
| SHA1 | 6815318b05019f521d65f6046cf340ad88e40971 |
| SHA256 | e652159a75cbab76217ecbb4340020f277175838b316b32cf71e18d83da4a819 |
| SHA512 | 943d8fc0d308c5ccd5ab068fc10e799b92465a22841ce700c636e7ae1c12995d99c0a93ab85c1ae27fefce869eabadbeafee0f2f5f010ad3b35fa4f748b54952 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_el.dll
| MD5 | ac275b6e825c3bd87d96b52eac36c0f6 |
| SHA1 | 29e537d81f5d997285b62cd2efea088c3284d18f |
| SHA256 | 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0 |
| SHA512 | bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_de.dll
| MD5 | aab01f0d7bdc51b190f27ce58701c1da |
| SHA1 | 1a21aabab0875651efd974100a81cda52c462997 |
| SHA256 | 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c |
| SHA512 | 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_da.dll
| MD5 | d34380d302b16eab40d5b63cfb4ed0fe |
| SHA1 | 1d3047119e353a55dc215666f2b7b69f0ede775b |
| SHA256 | fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f |
| SHA512 | 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_cy.dll
| MD5 | 34d991980016595b803d212dc356d765 |
| SHA1 | e3a35df6488c3463c2a7adf89029e1dd8308f816 |
| SHA256 | 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e |
| SHA512 | 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_cs.dll
| MD5 | 16c84ad1222284f40968a851f541d6bb |
| SHA1 | bc26d50e15ccaed6a5fbe801943117269b3b8e6b |
| SHA256 | e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b |
| SHA512 | d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ca-Es-VALENCIA.dll
| MD5 | 2929e8d496d95739f207b9f59b13f925 |
| SHA1 | 7c1c574194d9e31ca91e2a21a5c671e5e95c734c |
| SHA256 | 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df |
| SHA512 | ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ca.dll
| MD5 | 39551d8d284c108a17dc5f74a7084bb5 |
| SHA1 | 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884 |
| SHA256 | 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07 |
| SHA512 | 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_bn-IN.dll
| MD5 | a94cf5e8b1708a43393263a33e739edd |
| SHA1 | 1068868bdc271a52aaae6f749028ed3170b09cce |
| SHA256 | 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c |
| SHA512 | 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_bg.dll
| MD5 | 8375b1b756b2a74a12def575351e6bbd |
| SHA1 | 802ec096425dc1cab723d4cf2fd1a868315d3727 |
| SHA256 | a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105 |
| SHA512 | aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_bn.dll
| MD5 | 7dc58c4e27eaf84ae9984cff2cc16235 |
| SHA1 | 3f53499ddc487658932a8c2bcf562ba32afd3bda |
| SHA256 | e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98 |
| SHA512 | bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_as.dll
| MD5 | a8d3210e34bf6f63a35590245c16bc1b |
| SHA1 | f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693 |
| SHA256 | 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766 |
| SHA512 | 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_az.dll
| MD5 | 7937c407ebe21170daf0975779f1aa49 |
| SHA1 | 4c2a40e76209abd2492dfaaf65ef24de72291346 |
| SHA256 | 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9 |
| SHA512 | 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_ar.dll
| MD5 | 570efe7aa117a1f98c7a682f8112cb6d |
| SHA1 | 536e7c49e24e9aa068a021a8f258e3e4e69fa64f |
| SHA256 | e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01 |
| SHA512 | 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_am.dll
| MD5 | f6c1324070b6c4e2a8f8921652bfbdfa |
| SHA1 | 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf |
| SHA256 | 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717 |
| SHA512 | 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100 |
C:\Program Files (x86)\Microsoft\Temp\EUA3CF.tmp\msedgeupdateres_af.dll
| MD5 | 567aec2d42d02675eb515bbd852be7db |
| SHA1 | 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37 |
| SHA256 | a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c |
| SHA512 | 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3 |
C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log
| MD5 | 9b958eb28aa76c6ee9186e0a6c07c03b |
| SHA1 | 58ed717dd84b392cbac7996c0f0beb893ab40a63 |
| SHA256 | cdb63c91792e908b9afb204ff17d4b0e14b41363ef838a93f7a96d7a04149cfb |
| SHA512 | 077292442d1c46a608b7fbd3ece54e3618c88c5f9238dae89bdb506fa49174efbb48752e919662f9952da8225054d9631b3e287f93b7053b4442f76638f1ee07 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 095490024aab84dd78a15fef7e8c23eb |
| SHA1 | 1504b323ecc5ac43675fdad15099f5137db9c939 |
| SHA256 | 1f6f525e67c359c81757e68e58eda640b3944c9f644a9a619db3451deda6d670 |
| SHA512 | b6cbad9eb0496be311f2e48f24a347ca8136b84f9866f7fb1ce690ac98645d11d6f49052ae3544bc00ed8b7b502bee9f3be93d7f7df8e09cf3e5414b64a77e12 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\AlternateServices.bin
| MD5 | c97de7c36d711f8ec5a3a518b557cbf4 |
| SHA1 | 7d6d568f9929524040f7f806420266f83f9cd7cf |
| SHA256 | 02cbd801153ec5f485f090538892f7e2edb52250c28c5cb3c84c6908462c128d |
| SHA512 | cd53a95b207c166fdae936d9f0c08f04d2d48b65cb235cac8c178c1b2ec01d877bece7292a356906d9f0ceb3829759c0968c87e5fa4983efdbdb99980f74d4b2 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | a0c0753cab6d2a7142f0fa285234fc25 |
| SHA1 | 238c9f3a92802b2f897edc440c5e8a5e3acd66e0 |
| SHA256 | c30c60012e3e089bc86567ed6939bdc718e528a25ae39ada8f80ff0393f4019f |
| SHA512 | 362f0f44aa7bd8d8e3d37643577fff7f2d2379e80611c2ea0b0587cacc01bb74d3e7729e9dd6fe687e8a23f101038f662b9cbd49a205a0b781c71b966ffac769 |
memory/5672-631-0x0000000000DD0000-0x0000000000E05000-memory.dmp
memory/5672-632-0x00000000737C0000-0x00000000739D0000-memory.dmp
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 7fe1afe55b8b6dd5669e17a98849a557 |
| SHA1 | e200891b0340d18ca315915f74f4fcabfa872384 |
| SHA256 | dfaa1be97b139284efc37a358b41fad659f4a8984d86437eb4d13f654c6a5fa5 |
| SHA512 | 1dc3622b2e4791a40c05d97666d9fe2e12cd783d00e315e4e5bc2f7e14131f4dc02599fd85f2bdb084f5f82875c7054afbe5269dffba8e82ef475d23ab72ec5d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\205F688E3FEAEF1526A8C2C915F58188E0D6A2B9
| MD5 | bc9077e37aa6c06e329db24c648f27de |
| SHA1 | e1afcdb7704a87be27fbaf113d566047a6e8a2d3 |
| SHA256 | 28e4777be2772c69e5223d584c99573e42a61cbdb09523260d7f616a864a8d7a |
| SHA512 | cbb601a4af896a4c4d94cc0a40713f20514b19765be124a251817364e814c10c2dcdeb9dc5e168b7e54c845fec0e456afcb721b6b77b2c865aa0768e2e9fdb5c |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 781d85c8218e2534cd43e864b5a9cc50 |
| SHA1 | 19ee981e78ea7c489f57467cc713a614cc049625 |
| SHA256 | 7355acc0cfabd868f174ce6126fbe04a0f805f83b8adef969a6510e4dfd141b9 |
| SHA512 | 3bbee070cdfe17d87e393b8c8d8e7575efa620f9cd23ebe5cf1e3be977d3d026f743c90d43c2b7d841a03c22cf0d1a5cc5be5e7deba4e86c0a19886f9010cc36 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs.js
| MD5 | 6dca0d34c563d0921c6ee5a5dc7d5dda |
| SHA1 | 917b629abbf3edd73e0946bfd59c8cb1f0b98ade |
| SHA256 | e3ff7f08745cd497eefcc96a65d2e82eb975a80f859012b70db5b85453934d44 |
| SHA512 | 42520b1f02bc4f95fef7f6278b27da41fa6bd5afe70d2e4e8cc7aefb01c73dfe151611a29eb9f23f7975fb73ee655919a5866fd85ea67cffe0c475e95a2c5b97 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 09c7395a747fdff265eebe5cdc9aeecb |
| SHA1 | c90ccf2716def1245e35e8302f3cab620da614bc |
| SHA256 | aa73313e79583d41af854ee07086f0635a2f670bc178ae90a5612f226eaf5057 |
| SHA512 | 87adb72716d53276678d2b87d5ea3c38a1729affebf68bbd6c84b8ed7b475baf19923cd952e8b3269ef8602f5f96a7f198c72fd0c1b54e550542278912bb0250 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\25ABFFBD3350464574206F51A623A118CF97575F
| MD5 | 1f4ce0da85f0a09fb1529ad4c0dca395 |
| SHA1 | 992036ad6273a59799cab51535a7b5a45a02a10a |
| SHA256 | f41d45f4e3f104f40789464d2d6a81c6c44f22612b578524b5ba3f4fcf937c5e |
| SHA512 | 82b0680c5a8ffa375de869f6fa7eb248f5fb469fbc936032bf600ea4ecaf541b36d483d85e3be0a622e33fea14eea91ac6654f467ad3e3fb833b187a0f5c2057 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon
| MD5 | 09372174e83dbbf696ee732fd2e875bb |
| SHA1 | ba360186ba650a769f9303f48b7200fb5eaccee1 |
| SHA256 | c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f |
| SHA512 | b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll
| MD5 | 842039753bf41fa5e11b3a1383061a87 |
| SHA1 | 3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153 |
| SHA256 | d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c |
| SHA512 | d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info
| MD5 | 2a461e9eb87fd1955cea740a3444ee7a |
| SHA1 | b10755914c713f5a4677494dbe8a686ed458c3c5 |
| SHA256 | 4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc |
| SHA512 | 34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 830f29b2b5578fa18e1776a8f652c283 |
| SHA1 | e9a93b0abd9fef44fa0693727220588e58faeb74 |
| SHA256 | 599fb141038b91ffb6a5f1fbdc7dfbcd72b5c9cb2529d6a209165e0e46dacfe7 |
| SHA512 | 5ea77ad21a2e7f0a0c8ced73a439444647d5d3ae454d34ce4ecd95297d9a81b6ef70056c6055e373f5c5d31e6b632674f3a91d414a499350689a60c00c70ffdf |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\AlternateServices.bin
| MD5 | 00458afcbe518798d79c35cf41394fd5 |
| SHA1 | 3cd85b1da35b82433d873e3974a01387a0907aac |
| SHA256 | a7dc206c3e7e7a67ab009f7e815ad30e2d8a85c5d82300ec86dda200efb83c83 |
| SHA512 | 302f20a02fab905f77e24e101e99827d3bb64a7b6aa2276b4e330f81915ced48fbf06784ef4dd8288a8e5037f347bcc67d52803f09ca344cfcc58fac0b7c7bca |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | d942900b20b4ef502517ff20b156eab4 |
| SHA1 | 35cf31fefdb0d301cd20a07850f88412a190903a |
| SHA256 | cfafcf1d409b643a737deb52df10f2e1cd25356315919247946fcf8a490fdf64 |
| SHA512 | e919b341e90695d59a25364ff245640abcb2a6b2c9f7a7d8cbcaac94816ed19bd6e625a9888b1892901e2b0fec204dd25afa4ffcb1a38657c1bbbd24d19a87a6 |
memory/5292-798-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-808-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-807-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-806-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-805-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-804-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-803-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-802-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-797-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
memory/5292-796-0x0000023049EE0000-0x0000023049EE1000-memory.dmp
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 176548a8c619abe2b2ab8748afbfc59b |
| SHA1 | b952995cabe00bd3f05c58c27c79dd610f50c7ac |
| SHA256 | 1e010d12d466a7a00db188328025bf3851d5aeab2d3ad271cedf5cdab424ccf7 |
| SHA512 | ef1bf564262529aba00d5700cb864f01a18e46ff3f81a4214d7c9aaadb94e970bc8db7e1d2609ad3108a88c9434bd791dfee7833138bf6f5631ab9eb71f1f335 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1
| MD5 | 0a8747a2ac9ac08ae9508f36c6d75692 |
| SHA1 | b287a96fd6cc12433adb42193dfe06111c38eaf0 |
| SHA256 | 32d544baf2facc893057a1d97db33207e642f0dacf235d8500a0b5eff934ce03 |
| SHA512 | 59521f8c61236641b3299ab460c58c8f5f26fa67e828de853c2cf372f9614d58b9f541aae325b1600ec4f3a47953caacb8122b0dfce7481acfec81045735947d |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\gmp-widevinecdm\4.10.2710.0\manifest.json
| MD5 | bf957ad58b55f64219ab3f793e374316 |
| SHA1 | a11adc9d7f2c28e04d9b35e23b7616d0527118a1 |
| SHA256 | bbab6ca07edbed72a966835c7907b3e60c7aa3d48ddea847e5076bd05f4b1eda |
| SHA512 | 79c179b56e4893fb729b225818ab4b95a50b69666ac41d17aad0b37ab0ca8cd9f0848cbc3c5d9e69e4640a8b261d7ced592eae9bcb0e0b63c05a56e7c477f44e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\gmp-widevinecdm\4.10.2710.0\widevinecdm.dll
| MD5 | daf7ef3acccab478aaa7d6dc1c60f865 |
| SHA1 | f8246162b97ce4a945feced27b6ea114366ff2ad |
| SHA256 | bc40c7821dcd3fea9923c6912ab1183a942c11b7690cfd79ed148ded0228777e |
| SHA512 | 5840a45cfdb12c005e117608b1e5d946e1b2e76443ed39ba940d7f56de4babeab09bee7e64b903eb82bb37624c0a0ef19e9b59fbe2ce2f0e0b1c7a6015a63f75 |
C:\Windows\SystemTemp\MsEdgeCrashpad\settings.dat
| MD5 | 1b844a0fdb9fe5c7754b2e6b35f87f95 |
| SHA1 | 13229357c1ed0ed41631e2011803848cf5a5c6c7 |
| SHA256 | 2dbddc8173aaf3b5d3fd9a9f73bb6d6548fead76fb942a1439efcba298f330bc |
| SHA512 | 8c3057293fcf2cbacc48b31c10b4cb1e515087a78e1f2536df2d6ad1efe9a5445e5edceb8dbdc60c879fa8be3dc636eff40d0fc64b94cff76646ba3464740332 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\thumbnails\d888190b76b4010c8e5daf7dbea547ff.png
| MD5 | ce5f5f7eb01a867382a46c2ebe68f27e |
| SHA1 | 1675563f0b607843d0aab78475bf6355228ff4fe |
| SHA256 | 58cbe25f96284419bbf1445081b19c941d993b7aec1ce5fd8ddb0158b41c3736 |
| SHA512 | 981abc8c6093ff14aabcbc281c11290eb2a3609c4f1e3b45d0b32d8d2965877c5b0b6b8953171a619f1fb43cc111054f4607bdc3512462aa7da1e15a14e56731 |
memory/5672-892-0x00000000737C0000-0x00000000739D0000-memory.dmp
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 11a04933f4506cd88083a3439a9aa2a2 |
| SHA1 | d62ef383d56a01184b3b8fb59084779053fd4410 |
| SHA256 | e99c00b3610d7dfea508e043ae209fb93ed09cb4af9d00683cbe9bbca0963bb9 |
| SHA512 | a5b3fd8786f97f9ee530b5089b837b184a9bfeb16e96a597d8c4208aa77a162fcc8ae6c2e769e775db5cff4cca724c291e795120fe2464c27290a0ff9c68b345 |
memory/6824-945-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-947-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-946-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-951-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-954-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-953-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-952-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-949-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/6824-950-0x000001C9D6CD0000-0x000001C9D6CD1000-memory.dmp
memory/5672-961-0x0000000000DD0000-0x0000000000E05000-memory.dmp
memory/7048-966-0x00007FFEB4970000-0x00007FFEB4980000-memory.dmp
memory/7048-972-0x00007FFEB4AD0000-0x00007FFEB4B00000-memory.dmp
memory/7048-974-0x00007FFEB4AD0000-0x00007FFEB4B00000-memory.dmp
memory/7048-975-0x00007FFEB4B60000-0x00007FFEB4B68000-memory.dmp
memory/7048-973-0x00007FFEB4AD0000-0x00007FFEB4B00000-memory.dmp
memory/7048-971-0x00007FFEB4AD0000-0x00007FFEB4B00000-memory.dmp
memory/7048-985-0x00007FFEB45F0000-0x00007FFEB45FF000-memory.dmp
memory/7048-984-0x00007FFEB4510000-0x00007FFEB4520000-memory.dmp
memory/7048-990-0x00007FFEB27E0000-0x00007FFEB2800000-memory.dmp
memory/7048-989-0x00007FFEB2660000-0x00007FFEB2670000-memory.dmp
memory/7048-988-0x00007FFEB2660000-0x00007FFEB2670000-memory.dmp
memory/7048-987-0x00007FFEB2530000-0x00007FFEB2540000-memory.dmp
memory/7048-986-0x00007FFEB2530000-0x00007FFEB2540000-memory.dmp
memory/7048-983-0x00007FFEB4510000-0x00007FFEB4520000-memory.dmp
memory/7048-982-0x00007FFEB4510000-0x00007FFEB4520000-memory.dmp
memory/7048-981-0x00007FFEB4510000-0x00007FFEB4520000-memory.dmp
memory/7048-980-0x00007FFEB4510000-0x00007FFEB4520000-memory.dmp
memory/7048-979-0x00007FFEB44F0000-0x00007FFEB4500000-memory.dmp
memory/7048-978-0x00007FFEB44F0000-0x00007FFEB4500000-memory.dmp
memory/7048-977-0x00007FFEB4460000-0x00007FFEB4470000-memory.dmp
memory/7048-976-0x00007FFEB4460000-0x00007FFEB4470000-memory.dmp
memory/7048-970-0x00007FFEB4AD0000-0x00007FFEB4B00000-memory.dmp
memory/7048-969-0x00007FFEB4A80000-0x00007FFEB4A90000-memory.dmp
memory/7048-968-0x00007FFEB4A80000-0x00007FFEB4A90000-memory.dmp
memory/7048-967-0x00007FFEB4970000-0x00007FFEB4980000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\4AN7W34M\BatchIncrement[1].json
| MD5 | bedbf7d7d69748886e9b48f45c75fbbe |
| SHA1 | aa0789d89bfbd44ca1bffe83851af95b6afb012c |
| SHA256 | b4a55cfd050f4a62b1c4831ca0ab6ffadde1fe1c3f583917eade12f8c6726f61 |
| SHA512 | 7dde268af9a2c678be8ec818ea4f12619ecc010cba39b4998d833602b42de505d36371393f33709c2eca788bc8c93634a4fd6bec29452098dbb2317f4c8847f6 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json
| MD5 | ea8b62857dfdbd3d0be7d7e4a954ec9a |
| SHA1 | b43bc4b3ea206a02ef8f63d5bfad0c96bf2a3b2a |
| SHA256 | 792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da |
| SHA512 | 076ee83534f42563046d25086166f82e1a3ec61840c113aec67abe2d8195daa247d827d0c54e7e8f8a1bbf2d082a3763577587e84342ec160ff97905243e6d19 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json
| MD5 | c4ab2ee59ca41b6d6a6ea911f35bdc00 |
| SHA1 | 5942cd6505fc8a9daba403b082067e1cdefdfbc4 |
| SHA256 | 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2 |
| SHA512 | 71ea16900479e6af161e0aad08c8d1e9ded5868a8d848e7647272f3002e2f2013e16382b677abe3c6f17792a26293b9e27ec78e16f00bd24ba3d21072bd1cae2 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\activity-stream.discovery_stream.json
| MD5 | d4ce9a7d6dd63cc2946c8e3c12b6649d |
| SHA1 | 68213c00323160412940742a1b4c49f60c6c7917 |
| SHA256 | 649535bef78a72713dd24c0e70fafd29ce2e71dee94e361c2aa6de6d69108593 |
| SHA512 | 7d05cee01418072b5189bd33b56ade4a0132f01a73d985585f8860886ff325e6431c97dd0d19807b04b3804d014dcc3cfa059b69a044d8c5a3266625d94b9431 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\d00b6c65-f917-46dc-80dc-a33cb188785c
| MD5 | 7b287b1cbeaf9db07e84cb1633548b9f |
| SHA1 | 55c06e2ce27a3c9d5b0e66253bd15edb3134aba1 |
| SHA256 | 1e744abb4ddb70a1a88055374e35c17e08ca503b8e085c756fdb8e2b28014362 |
| SHA512 | efb84246b1b5aba9256219668e476ef368d771b675d52092d76d18f9c65ec44de599b74eb9bdc92a4d853c2f0c5da423849be41bf9b7621e0d0a52f57b191444 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 560cdbf83d0f33e0f9c8b0b8c2651bc2 |
| SHA1 | 6abda158ed0f1d5d71bad8f1b75e1bdd994ffc60 |
| SHA256 | d15555b50ddf091e5a5320fd5ae677c861ae55f33ddda1e1457afdd8e38866ed |
| SHA512 | 7cde5e79dd3b1fbcad9abe0678c80f74819a5804ce9116a799f0bdbab5d0e2c025397b9676ff6c4c0c696a8f71b7bd1d7bab38469c7b458263701d883ab6b64e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\75bbe0bd-569e-475a-a5cd-b22b5dc352f1
| MD5 | 4399d6f5ab3768ff3f87fecd8837ee2a |
| SHA1 | 2d8e03f15836d642cb2b2576d8a589313e7a3f68 |
| SHA256 | 422d6d5268633a879222742079070b9f59b8e33a9e02bae492b0505bb8e77a5c |
| SHA512 | aa7a9fdb0fcf6912f31fe4f9aedb5065f875282c8c6f29712a7c3887c9035a9f4f83081393d2e8feca53596791f8f3ac9965f76dcb6862f245d5130a8cc43d06 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\2e0bbc8d-28dd-4515-b267-d26bd9641c3b
| MD5 | 36c74774c8e3fd65ad78557881d54419 |
| SHA1 | f68844b057ef643c1d43075dea373ac81ce171c8 |
| SHA256 | 1ee13d95f55ba90a8702e933f6b0e7760b1ba24cccf0819d50627e1bce5db582 |
| SHA512 | 34402d9040aa66d12d98e1f24bb3946e4174899365ec5c16e6a9fde4a1e4d1257e89f2a2430677671f7b5610d9f4c621181eae5fca97ff614d867b0599c5a36b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\015ea922-7664-4e91-8460-6ba93e3b3cec
| MD5 | 452bcd54d3201b63061472b44788d06c |
| SHA1 | 2ae1f4039e629b8ec4b1625e794e5dca3950aee9 |
| SHA256 | 072ae870528117f66d699296d2e22bc723ab48aff4826d96d88c3ec1b77a1b41 |
| SHA512 | f7c1338c06fb87fdd236ac3e8db7c65fa15e2b9d7361d22fd642c37f507b1bef30d50650ba5f43bf602cd7183d4960084a8eb373e55c60308feae15017b89b8e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | b4da7de8359d35c73f6d1983a6e425b7 |
| SHA1 | 3e2b6131de65fbfdd74361742cd8d6106bf0ba9e |
| SHA256 | da651a8a6b69a3cdad1da76ef2ff36e32e0d1ec4bffb15a83f86e06400c67a34 |
| SHA512 | 6dbe5a6b54f1fb1befa2bdfefc3ff374c41ff23ae5fb3fce5f702d81d8379e4ff7334b2d0f1838939cdf4a2e13845ba6fb9345bf5c00df091677b815dcb354fe |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\CEAA45F9786010FB50033008C8BB7D7980F713C9
| MD5 | 7d92b8215ed7533774d6c1eee8be036a |
| SHA1 | 4a85d789e4479b0df92a20e5e3fa5db8cbdb62d6 |
| SHA256 | 686d76aa8256595df659d2445689a402d2bf39178f223ff7bdf229c108e24eef |
| SHA512 | d2a33cd9fc3e438cac1c0aa217db68ade73468283fa29cf4bfce8e31f64c531a737de32c33a4133631648f805d298fb1a04bc1de61eec972b3d7fd306716f157 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 6ef2c58c11a843ddf5d76b206168476e |
| SHA1 | 3025c2700d432f9be7625e80395afea853a6433a |
| SHA256 | 32bd0d02f270a670af2048925279558167449a6660109ca9dd3671cf8f7ea1f9 |
| SHA512 | 67b94846700cf8fd9a1a32fee3964c031a3486e82f6cd489c4cc604f51af89c8a387e8f43072e1a713c5328048c5db3ff4c5a5334b245df26aa2efdf674da724 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\startupCache\webext.sc.lz4
| MD5 | 3880d283d4d12f218a96acc96397ae96 |
| SHA1 | 9ef4db6356135e22fa020b15bf42c254c0fb4faf |
| SHA256 | df8ff7934d91fd318c9772339bae5bf7f1ce72bcbb1b3371d5b49b9a328ac9c7 |
| SHA512 | 068b9d55f4967bbc9e5f7e21e892ecb063d623ae103715ce437db0d6fe6efb0caa826f112ab7777da4d08ec31283ec572363a94e3cedb169f47d43713f09fe68 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json
| MD5 | 99601438ae1349b653fcd00278943f90 |
| SHA1 | 8958d05e9362f6f0f3b616f7bfd0aeb5d37967c9 |
| SHA256 | 72d74b596f7fc079d15431b51ce565a6465a40f5897682a94a3f1dd19b07959a |
| SHA512 | ffa863d5d6af4a48aadc5c92df4781d3aacbf5d91b43b5e68569952ffec513ff95655b3e54c2161fe27d2274dd4778bad517c7a3972f206381ef292808628c55 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 0ac8cf10d41822d401c08105e83b59dc |
| SHA1 | 748cac627a51e8d54f98045deb40a9a89622fa58 |
| SHA256 | 8c7ae7197158bf8c9ee282b93992674c6429f7a35c84f66d37016e551419fd06 |
| SHA512 | 9dc593437b47df348fffb144c821ef904c543a9f7b6b3e98f09b42d8325ef5fb322fd26e27f155ef17132bae032f7979f3d0a3a347aef663abe0ce9caa8ed33e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\fb75f190-8758-4771-a671-60e463612a9d
| MD5 | b164d94acbcbeb11f3f3fc5f0861eada |
| SHA1 | e5bd79bce62751940167b0b8b75cde94f562b85e |
| SHA256 | 866d9cd7749eb05b01b961c7415e7784cb8c6bdd971a182375ce8eb5162c8a07 |
| SHA512 | 3b22f4df77be012b77de7c2f1b37163014d9316924cff3b5f8e46e1b29b1e09ed6f510471f58491888c4c32f64cffb725e9b9e7dafbc679c9566123c2a60d04f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\activity-stream.discovery_stream.json
| MD5 | 81bfccfb24c62f0bc86e8cdb7afff527 |
| SHA1 | a572ebe0d50add6cb09421ae63dd5012d53df7c2 |
| SHA256 | bb47052b33b5b16fac7bb98eba1f3cb8c32a2b643b9f41caa85e6785fb14b141 |
| SHA512 | 5db49f8c4f17f82e076a1bfc9dd143314f66fb57db2d057830c735f484239618985a7176fc4862d7f3c85a2c1666b28f2f17ead01dcbb4fe8c6cc62751705d60 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 0a821a7008ca7e9881099504803bba1f |
| SHA1 | dcdbcac774adb351fdf3850d3fa9827981bbd2ea |
| SHA256 | f7022581903bb3fd75f918a64e12709e142bd61235a676c50de9294f6342be16 |
| SHA512 | e83f727ed3718b1d6aca665f838a0e2bf32ad9d76d34200c06c6e4fae30bc59399020c3bddcde18184b71ff29a5ece670df116e62ecfea364f7f3da35d1f6b0f |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\972ec568-9cfb-4b47-be9b-9a5c5a062281
| MD5 | 48b95cd9ae4e51fe1e81e70c3801d47b |
| SHA1 | d7f45b234e284c8ce2f269e3d80397a8044f201e |
| SHA256 | c99bb1b6af98cc719887a681ee8bdca188d6b0392579cc57f6492f558bedf946 |
| SHA512 | 023d0db169bcd16d9a98338acbd443b6b9591a1dbce2b12d084b4fe452c20fa0233147bcf3300d00039650df11762492b42eb4109574929d0c8779e8629cb967 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\8c10c507-26c5-460d-b971-989f7cfec5bc
| MD5 | b3c8f7a50658f41b3fcf1e3317d89fa8 |
| SHA1 | 0fc87019020903a713370faaf526315b2ffe1aac |
| SHA256 | c2f51d33239cc6d45b638c1b2fe09091c4b18df96eba1764c0846f1cc3293f96 |
| SHA512 | ffd8a703df737c84426b85a8cf3d6cb6efad3847c96319bf379b727b00de2f2353d5208a2d67f8d843a1a99bd023596a9453c17da7e5377fd06bd5c2ed95f649 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 021aabe9d29b8ce4c59d2476790a780c |
| SHA1 | 5c9e5d9b5b3bf04450dc14786855daa5b7fcedae |
| SHA256 | bc747dbb880be697971765c214d2c041b179be4387ad189eb2d81300e1d1e7fa |
| SHA512 | ea46d07edc9a2c0367f4681ce26e76b34833db0043f53a3dad23acf373cb2946e5c0ea46d65e5129cb19f5162ab54acead7b76c8aaec47ba7d33816ef9ee6094 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 2b0a2bbb88c5e307325d01dd625e2341 |
| SHA1 | 80a832d3b46ac83ad60695495ecad1f149b2f074 |
| SHA256 | ec129e1572555fb6208d173f7da09b63d2c319764aa6a40ef3000e2f513e6971 |
| SHA512 | 47b98440af4aff517af2dfeb5c849a1c714fa3e8b08b887d92b2c457ef1217646e96842e9ffef7b43c8deb7cbf3bc7168f57b97af62920504795274012c40b42 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | a088c85fbfc76a42961fa095ded1da34 |
| SHA1 | b18f88003edc9e65b3c6853358deffbc0128e644 |
| SHA256 | 3c84d8a40b9b911b0540792703a527f84fccb194908cadf6f0202cb024658100 |
| SHA512 | 59c0ea9f17652e4803376947a4d8b67023283d12911e27a44901d3b1a2cd4c1e91acccaf87cf5b2be9530667da07c95de3c15e0e4cf371eea04e3c69cdc82ffe |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | feee45d0939e92b6413ef0e1cb4d6f28 |
| SHA1 | a9f3af37d4033d952232374c36ccb982c3c7a2b1 |
| SHA256 | f781e5b81da44e8cac5aca3e6c0c5658b111d51104fb20b4d7b30dc67fb7f439 |
| SHA512 | 6729dbe29dae48d9f1e822b8ab7eb1f51e6a916c2185b011770695ef025608f8b8071a096bcdbf189fbf1d5361f10167285d66617906ac9b9d60a20f00ab90dd |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++www.roblox.com\idb\3140325527hBbDa.sqlite
| MD5 | c9a27c0ce1aee89514bc50ebbf34d8d4 |
| SHA1 | 3a11a46a2c03514587b7fd18637a56d60b9eb8d5 |
| SHA256 | a39935b8b420215097cb63e27523cbb654323f15a90ba2a86dd39511b4ea9abb |
| SHA512 | a0774fa59f594f75657e5c556b72b366802a54d580f93c5d4c3ede089984646ab9274360fb36448a407976f93692725d7a5b3af2070b25f1880e48cc952954ac |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 248135af46277ab5ebef7cfc75d113f0 |
| SHA1 | a585a1234ccc23c71b095fd17cb1c992aad35619 |
| SHA256 | fe42ee6aa37d4f4a5cdd9c363ca195d370fc1ea973b2d4f046849bed6e954220 |
| SHA512 | 831cacc71b76c878347cf573f3d90c395f77015e07ddf9b397018d5a1924e0fa3a9d106707b1600addadcf5b07224a3e5175c85eaf48c9a9289dcec6a0f2b145 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\crashes\store.json.mozlz4
| MD5 | a6338865eb252d0ef8fcf11fa9af3f0d |
| SHA1 | cecdd4c4dcae10c2ffc8eb938121b6231de48cd3 |
| SHA256 | 078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965 |
| SHA512 | d950227ac83f4e8246d73f9f35c19e88ce65d0ca5f1ef8ccbb02ed6efc66b1b7e683e2ba0200279d7ca4b49831fd8c3ceb0584265b10accff2611ec1ca8c0c6c |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\SiteSecurityServiceState.bin
| MD5 | 2e9285465841a593864e3a4ccb59a7aa |
| SHA1 | a5282dea44f29c79765187ed6d001bd711add80c |
| SHA256 | 7d84aa80fdb37908d8f099c72b445f861e96c915d4a4fd049cad5b491e9a90c0 |
| SHA512 | 137414df6ed1172c7122688345b2c636850243f0472ddf48f7e8b97365eccf77f749a11eedc7a68076e9dd4c7b57970d3db76da8ed061c23082bc777bd45db1a |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | d0987e8502b556f7d4b8a36cdc1faf52 |
| SHA1 | 96f47c25a83a666ba3bf4b66702fd9c0207f1a15 |
| SHA256 | 134c16476a2a8c17a8c2c74775b1e62a23c8fdfdfae82b8ad7dfc3ad2ec2d673 |
| SHA512 | 0309bde57f1ae001eb155eb6d0f4b86bd654188aadd33ef4a63b695f343b0302244ced3fe6c132717381c108f9af03d57adc84d4935fd4a04575a446405dd189 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\195F7451EFC0C42E2ABED1EAB767FBE239F1DBBA
| MD5 | 49ec74afd5033ad35d9c40352a9cffa0 |
| SHA1 | d235f699ae84f778a2f4cb835ecae08dee4b189e |
| SHA256 | ae3c0d1f6866b5d89a6443df3b9b6bc6157f138d7c757e0a3290fc66a6628871 |
| SHA512 | 4dd0a68760b19a093e3bdf8b4ca373297a704f3c165aea892e8f19a751d53d1fcfb68130326fe8ea135244e0efe549f1463cca95bf4bd527927a314ebdfefc8d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\36BCFA23A4D04A528CE70EF12214E3995E132134
| MD5 | 347e5d9da8a75743a88fbb45198a39ae |
| SHA1 | ee39cf0bd8be9c52fa0c97861e75557d01fa5198 |
| SHA256 | 809b48ab64dcc33eb319267e7ace686b29040779d6cdb5b86bd01835b6ab165f |
| SHA512 | 7bbff6e26e54a553ab0d75af033216a72bf5246d5ed110079addc48c3b15f526548418f5272b1665f7a348c365b1859e8e25f2f72e1fcfce13b56d7f6f7e3fad |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\4E3562C55341939E493011A1EC297C2A4CAF51DB
| MD5 | bd8050b4afc3fc438003fc356b7705fe |
| SHA1 | 74052f9b70ab7ba043492c4c35cdf13ba04044fa |
| SHA256 | 30805ea2208d3318e528028fa2ea4de9ff257102a9259e26f16477050296da04 |
| SHA512 | d9a0e8474b54dc49cf1b2f993be4123a4ffc398f18709911108d9b123765592175f769ffa64a03c908196f146aa26dc7004fba977a2aaf5f117ef2c98ef4ab15 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\4C11E373FD9A73A5E61FCB5291518B290C3C15DF
| MD5 | 376b9629939a921cfa10547aa8cfcbca |
| SHA1 | a97d486c6633f5689b849c83406297d0170a24ec |
| SHA256 | 1fdc5f0e73f11fb4386b89ba6205c09376b948097a2679cdb97aca954f26b895 |
| SHA512 | f01b3b4179c4a97485397e8f33a031e50dd0a5e4b62fe85e8f05e5319dce965fcc222a6d3d509d815ab5c491765258c512484c8ecfc7ea69e5a651c2146eb32a |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\739025F062E977A263D0043D9E01EE529DEBBEB9
| MD5 | ce81128c53dd5f216f80345bc16c1b4c |
| SHA1 | a89a40ad6382e16e8cdff1dc8532c256fe3ab502 |
| SHA256 | d10e4942b2857f0d2a5b161ebb0990be389edd8b8085bd859d77c24782aa8330 |
| SHA512 | 774b29ee11271c8df50d26b8f1661fc02d32998bbec0e66b1cc77b3ea5cd8095be28f32c25c61b1b6333afd060cad224bb315682cc70518e5d9ea0deec0c2adf |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\07F6C89295188FEDE296EBCFA141FECF3D3E9655
| MD5 | 9eb4e590e25a43aaebcb698171218c7e |
| SHA1 | cd24f2001625dd013dab61aeaf9d198d18fb4b1e |
| SHA256 | de461939d1734c14caff6bb415addde705276eee11a383b8fe4d3311e9182aaf |
| SHA512 | f2913b1aa253beaf8dc14e43a7ddac809d0d9055e4a4dc447ada20548ce83b3bd667d2d0097eb476e5117c258bbe58ffd81e81ab9056463af381606d5e071684 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\55E5E6FB4DA0D621CA2B27FEAF7A867987DF935E
| MD5 | bc9e1f84a6487a56a1f36ba41036e3a0 |
| SHA1 | 84c2ba99b692040c5bba5c5a159d4f95eefb2af5 |
| SHA256 | 9a75c8840bb61a4395d1eb6cd540325ce6aed9b418bf54b7193f15da50b64e42 |
| SHA512 | 51062188a118a01e48940d8e60d81395aeac9dc197887a6eff9a7c0f762fc75b68db9634fea163765d3af310d4daccf0d7fa5d89e1b348f93ed33ab9cc58c483 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\903E00CC0EDD76D57ACCBDEC95CE0B3E8C2B9C11
| MD5 | 3792ed080183a4828e19b29d40f42d25 |
| SHA1 | ce65be209c838d5cbd1e270792c85313c6e3ed4d |
| SHA256 | fc1946c5307f51ee3603df0286983c190bf611403418c9fda5089117d903e774 |
| SHA512 | 11c9dbd1b0493193784c8db8773772cbcbb01b825783c4ef8c8ee1254243b7e390d902e967457ab840e94dbc546935485354c9bbf1db68977188fdf54422b69c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\BE2D3D60C4D6C94AEDAA7868122CCB76EF5AA608
| MD5 | c7c94ce7813f4c7ab84809ddbaeb70dd |
| SHA1 | 0dbd319613142014d2ee1a2db79d41ae573edef8 |
| SHA256 | 190820a9b8321f6dca2d6da7af1700a7bf9bcb8694b46f54ba75ffd7fe45b1ef |
| SHA512 | 5cd62e2118bf016aaff60c5333741016e7ec411b7fe30bf1d9d5a6fd3ef515406fb49347246c1bfb8c266c480ddab617b9b1b962e15b4c6e7c526fcf26fb0a2e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\DA784CCDD74E697C1B9356166222C06487BCEA54
| MD5 | 6f1b47dad0bd41483aa616fafeb65b12 |
| SHA1 | 3835d3eea53f58389d05568b9e06b061bb1e37a4 |
| SHA256 | 6a10c7eb8dbfb8e76f4a79a01132c94afca031e3f8250417fac80abf0761f157 |
| SHA512 | b7869fd8ad29799e5d67677f7ac61a23af97690c26dfc1f0ff1c4723926744f4239d5ec23b9138a980b4b7ca6114403add8508f26c7a035379031a16acec8492 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\AC5B4849CAB26A6FF5E0D69715FFD2D5203EA01F
| MD5 | ef807a2192ee0b3b107336dc6746a96f |
| SHA1 | 790be70a8995def1343fc2f94d294ac1940629a2 |
| SHA256 | 1fc686d90bf519f55790dd08c967c0e6a60be46ae351afadf050ed371c04d2ab |
| SHA512 | b3d9066db54f511b8cc53a1a2bf840547b405c20e193b425b1e5bb9e6bb90028fbe3c1ca72993f4aeb5bfde5d56803f29c82bb82d4be9cfe5d5919a84f342024 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\691680DE655A62653643DE337423E895A6C63C79
| MD5 | ee36d45b8b73cdfb6ddd2cf882f1fb74 |
| SHA1 | ed7456d4675ad69ec6151368290d3255f0fe144d |
| SHA256 | 15cf22e608d5193e9c7872e9af057d69d49629941dcd05434ef7090117c1105c |
| SHA512 | c6e32362e101f63716cb1001114a134e5e7485fc75bc1551805e255d99540d79da9671a5409aebcd987d5fd83b3992e99d3ee3ef085c99f88005920b52c8be83 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\E7F03409D42C738C09929883575E953974A1C2B2
| MD5 | 8902c904c9fa4d2e77cd3ee4f382e2ff |
| SHA1 | 8d5fb95db147397f72fb27ef73b3406226d32b70 |
| SHA256 | c2046b5848b4837c04b165b650f3066ee8f885779a0ee364711b5a1594e0d632 |
| SHA512 | 2fb5dc6b7a08574acc294dcf8190c395c1aa533751025ff039ecfef6446c8ab67db041aca053d45ed70c971518b18b57dcd22be28d2cc6db4c4b5d14dad6436b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F3CAA836DF9244F44521C9C538B2099C9F5A9015
| MD5 | bb4c37fd3cf1a833b8e499d5eea5ea64 |
| SHA1 | 754473057077f67e200160632db7bc9157431f7e |
| SHA256 | 453119610a82539517ff6e093c71ed49d3442e7b0473333a530a755da80815c8 |
| SHA512 | a15f1f29291e7d18875816ece9d9eb906a0d00a9e1ffc67d35ec165f9572aa78439591b736afae1151e6875a2e6b336928979cb40af56f07ee6c66e2554af311 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\C6623053996C72C1722828ACBC7D796EE6526E2C
| MD5 | e200164c54d1612436c84d7cbbae9f4c |
| SHA1 | e215fb8df4eecef65a317bdfe2dbd7a268a6d684 |
| SHA256 | a838ff6fcb2b127aa697f967e05ed4873bca8326a82527fb353059f75d79d439 |
| SHA512 | ba85d05fc0fcf230e218d67fc0d1f1fea2adb959aa93621e323235085d03be57c982539393a80550e189e47ab9d8b0b1ab136f52ebf3b364a951fbe594a00a79 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\1336B710BD60535B2420B45191A4C651FDFB225F
| MD5 | 07db7fc8d786751321c03dd93954c171 |
| SHA1 | 9a4e4fc4226696969d18257ed1cb8cf7c0d30eae |
| SHA256 | 39b69b0a987c30b63145722717ddb67291b5ec547b29feebe1f7426a916ea68c |
| SHA512 | 1fd60dbf77764f9b2ca5cc6b60d81c11e905699a32b64e3a8321c56558884904626f02af8e97ebc0ed4a47193fde1c488985093e0fafd0f111f9a2c542901521 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\44810E676DF400511DCEDCBDE61FF7DA5294BA38
| MD5 | c6b621b882d85431f1dcbfd3efbc4460 |
| SHA1 | 6c292ec3b9967c69e32701c8999e15097c7d4bdc |
| SHA256 | 8ca42e0afddec449e47fa391507b7defafa5064829f8ebed3a0e72c2d07d9b10 |
| SHA512 | 0131d073e50debadd3040d040b225018b931ba70dc74750d414da6e29b4fd0f345f3b82430fcd0b37f9092a400b100a5e30f3df96838dc0075edac727ca1341d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\EDD04818F67F4A5894829F442600F13D6CD4DF20
| MD5 | 2b3833750d4979dfa98f394da7b2d00d |
| SHA1 | 051a25028b133b7455d00ae3ab32f3f902129e7c |
| SHA256 | 8180735fa0f8c7afae45077247cc874d73160155bccd81bdbdc05e59a9f556c7 |
| SHA512 | 4f1d37a9b221caeecdf837bfc1ba2175685a9807a2564a4d5aa05bdc9ceecd655cc8ca839f255abc2d0963860e2b4318875e99527ccded5a6ce2bda74ce9ca7a |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\965D85AA451B43231385E55B270277C284F317FF
| MD5 | b6ba8dda079cc0658bf39d4333385405 |
| SHA1 | a7c11da0fabd9aad93efadf0ffd0af778d040112 |
| SHA256 | a9cb99279951d654bea3759a23d7a26c52825c3e1768f30a426a383f6dd42a08 |
| SHA512 | 5478ac7b7ba552198993401402ac47eaa1acdafdbfdb3ac6dc8838824d646cd4ab76bf85e16c806a96ef6e2066656b88dda44ff359fc0e942b7cf146570d0856 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3CD97724EBF47B50AE59221DC942CCA5EE96ED82
| MD5 | 549f712d8c8781131817c5305048e11a |
| SHA1 | 82ab7462a708c71f3177e9e4cfe49ad133b54a6c |
| SHA256 | 644e53b30592d03ae176787d367aaec6e5a1f3629b325e9b8a45bd23ef082ac7 |
| SHA512 | 33e6cdf4e95f6b87fd2dfaccf1ce6ac521a9bffad90152da89308a8c43180416fa4cbee341c183968759544dc17f668ef49f879b9f34feb95fa8bd5bc27b6fd8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\4695A67E21DE301707E618BAC4103BFF1314CCA0
| MD5 | 4e9ba1fefa5555402fe086b66a837b1d |
| SHA1 | 4fd1d8996194ebbf6ab25a912f8b0a5b6703adc3 |
| SHA256 | df2483c2879c2170a28790b9afdcabc41ef000d329a07e7c7f979861f60e1006 |
| SHA512 | b3f7e3ece47da14b8d598723bd715662b7736810f5c4eb18d33b67e662060e90b40e6b08c0a849dc6d292ca30c7ea3cbe335ad17833d7f64e7375b9300c08e4c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F92E7D1CFA8C9E7BA6B8B6333715A43C4D60C42C
| MD5 | c0d47f5b24c6a49ce2745cf6aee51c17 |
| SHA1 | cf90efc2e7fbb87749d7a67e3abf5d80fbbd9946 |
| SHA256 | d3a23816bde08b99786c8e2ca84498a7ec4c3d8cdd3afbc09f483df79065d1bb |
| SHA512 | b52d909ed2b9f1620b90ed6e1adbca0a514560c2f9c7481b41400c8577eb31b6d50b2121864f86437229ab4df61b00e6804c5fb1f5d73bc9d62457566f9227a3 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\EAE796ACFAC58922BAADEBBF849900FE2B23475E
| MD5 | 99727510c122cbe0e8fb2b3756ae24ae |
| SHA1 | 60096c8eb07a37a423f8756f597d7af1cc1cad0c |
| SHA256 | 66bea4eeb096376a8aed9ce485be893c174f98538fbd6dfd07ffc17e43f1003c |
| SHA512 | c1374895de8bf4dc0981b55978c15531da9910c206e5a41132dcafb401b7cb356a380f1d0068548615e2f2ebc057e2a3caed55b957ff9261ff8a86ad3a87a947 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\05EB7F6F7BD0BA633716511CCCAD442933622565
| MD5 | 9d4e58cf629d804696fb2408de2f40a9 |
| SHA1 | ef8c288abb90eb502dc87cd3878b0ce888e3e116 |
| SHA256 | b4cc6e572c72051079c44ef338bf380e7b181618a7539f4306d24231b29104fc |
| SHA512 | acd1f340114fbc1358a217132ee9f57bab03a9811f450d31a47df5bb3d608847bb054e54f0c6eaba4d3224fa3267ddcdb8921e1bad29cbef5655299408a4b272 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\050DB43D78BBC79DCD9ADCBAE96500FE04597F1B
| MD5 | 74f168f897b906181e4f8da3e8f8b8b3 |
| SHA1 | 325ef6ccc9e4006324506568bbe44f6010b2612d |
| SHA256 | 987d0c42a111435c994171ddd8e9860bbb488ed3337fabd1e54542c5da88e84d |
| SHA512 | d0ad4be89741517cca8e2b488e5585af48559edc60bb578b8fbe119372d3e49ed4b01ee825db1e004d307b9e17fa303d9b84f1d197f37b4f7eea7a130218ab94 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\7D2EC7327A9ADA22C9789720F397B4A592649EFE
| MD5 | 0e54d9808fffc6cb37d44970161fd04e |
| SHA1 | 631e560fc49265208766d73fc70808aa46ea7c24 |
| SHA256 | a7608cfd34063a875b47e821438aefb17df122d972bbc2e625cd6a5633aaf54d |
| SHA512 | f6ca0ee1a2b2ecd3a9e0048fd780f32996acc798892163bfa3efc43611b8f6acb089ba27c06a13709b40269770f75eab456648ffec3c4799e286b75aef8b11c6 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3B9C0557257282CD5F41471F9C2DA8856005FB8A
| MD5 | cbbb9f21833197d2b7f7b064ad7b8e8d |
| SHA1 | 09938fdfc72d4d69fa0190dcc3a61ddfa7639df3 |
| SHA256 | a0111f2219b50b36d6f3bb93bd77ff9b7f0cb8a8dd56abc5455a21827487b3ee |
| SHA512 | 0e69ea7787e2358b5381683e7d7b6afa05fec1d1d64bf1a47030fc8111344b87caaf684497b25beedf83ded2dc0124effc493f682ef303f341d058f2b3f072ae |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\B07F2BE9092EC440B84837E3ADE0E9E90ACD7465
| MD5 | 59c82e08a1f80ec4a61a0c9b8d87e201 |
| SHA1 | d3b0bc15fcceac4d27fb60d52010a951ef4ed82e |
| SHA256 | cc7eeee91751eb8a38efd6ef2b17b7574f90333cb2523a54934be4270c1b82e2 |
| SHA512 | e2a37544cee76b276433c2e850752d843d602a17c799e726e68d5a63b4b30207a7e75e44ca76cfab7a6bf22fb735e57528c343b0ff861db433fe9f4f45924b9d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\C20E036239CAF315DF30D2CDAAC4F746820BB89D
| MD5 | 36dac0340752d02015e4bdca29ad153c |
| SHA1 | 1970829fd1a91decca86f91e2b1a13f26400ae50 |
| SHA256 | 5647e2d6cc7fceaccf1322f9f98335f40119fcb6a19e2e9130a5c6043d978208 |
| SHA512 | 833e1066ef4640890c6a568386a21e2e144877cd8a13f7e3f2d6b8e3e5e490c6065afe55c44cf74d2b974fe3aef4b19b623077c6193212253b01f7c576555d8e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3ED59BA1D59E360229BB124F2BA6B416C6163064
| MD5 | 23e08c583db5811970187c784cc4193e |
| SHA1 | b04c728c2f1439084e19e6926e57ebe2981ae5ce |
| SHA256 | f567391ac294dea32217f276cfddaf745492a13d4ba33d1ec16cba083e4e25d1 |
| SHA512 | f4a2fb8f3e9327ac39baa80a90c2793f1da49b77136f76e86aba00da756befabdeae4098bd187e635ca17cba5232c2d485782604fbb0caf0c4b282c94d08a861 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\96A0D2F1C4ECD10450EA183542E05ADB3BBB4257
| MD5 | a39a8cc0a67a80d1f27d2ff7461af7e1 |
| SHA1 | 3ed1297473222deebb75fffb2a8f88bf98edbc20 |
| SHA256 | f73a7cb2ee459c1c9012b2876012c631446730d5bfffb630f10b13723bdb4b0c |
| SHA512 | 03718557eb1ade9ed7ba091482d6d4d340ebb1c0d11f0870e1e3bee3d0c73c673c32df48564641578eb4429d6ba3b2f6bc964734c5ec19c3406e93ce81754dfe |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F27E0CDCD1C7E6F6CED7F2BE71ED722173C6CCAB
| MD5 | 0775acd2dafd44aab49a894a48ee0220 |
| SHA1 | 8282a83bb6ebde2ba68746905fd0eb347003e5ed |
| SHA256 | 03aeb2dd8a58a1c08b531d677eaca2643d07c6f1c7d8923833e1677b00476ce5 |
| SHA512 | 87e0d68159b71f9fc3df519e85c47958a7572b8aa075e6bc643c78a46bd67f6a6fea8f2397fbefffd5c81dbff9cc359ff0a8aae516490f85b17374ba8b128930 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\1AB33D663B69F4F748A08F27D06DE9DC07B327E9
| MD5 | 47985ee755029ae6af7c761447073d87 |
| SHA1 | a625ddeacfd15b4b8594c703058ab50dfff7adff |
| SHA256 | 45751fe511762ce01e5b610b233a9286e131e8041d6d4679615c254133ca0c29 |
| SHA512 | c99c5c4abe159f2485b80ad7d0d32e4c92b54a53050783c149872822277b123372a4fc0ed1cc410ce3818ad0f9dbc6324d68fe9b88067b68e8cb299e60647c28 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\65C3C1772B37E021563C6C5032EDDD50FE82D7B9
| MD5 | 19bbcc9f8ba7d7ecae1a9b8bdd8548b5 |
| SHA1 | 01802a8877f8914e5ca7155669f36facc66896f0 |
| SHA256 | 88ffaddc0eee403d495141efc90bcf146db6f2d2f08da7225f3834082f2eac02 |
| SHA512 | 6118e7d59f65e3a9056897af4eba3e27a642b008a11427da72b65df8c417d1d58c4b2b7dd3da5b7b354fef45337225f79431b3c8a704065b4be03182eeec71e8 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 7d5d3aafff2a78ca062430db29b8e0f7 |
| SHA1 | 0e24ca23476799578c9fcfb1aba930ce39e7725a |
| SHA256 | e1babadcd03381e104eced1eaa48523dc96b8f5d60452ab8664e4d5c3a274013 |
| SHA512 | a3a514725d27ee0802c8fabb39ec2a86e0c5ac8898547104afed911c9f4c960394403186068544e5c4ecf50e1c5aedcb2691c0a3275d5f516b04ee1c7cfb94d7 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | f4f125c81c0c1d1b777696c88bedaebb |
| SHA1 | 44b256695104adef2891ce0243c59eab024bddd8 |
| SHA256 | 5bfeb00a491035ec7f151ba9921445579c77bbc584629a70becf069033b87258 |
| SHA512 | e6dabda01b8a2c4d532f99cde0b75255f5b7720ff3019395b8861626531566d4dc2389b9d141e416a7a61f0b0252e977039d8a6348cf510ed49c7c01bf439d39 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++www.roblox.com\ls\usage
| MD5 | ea8bc32affe520c14343367094fa3f9b |
| SHA1 | 20bee1e5063c3311481e5f18d42f53b6c2ed5101 |
| SHA256 | d83fbc5031c6dd6f15a8add55ac06e564a190e81905e7efedd330b035a1e87f8 |
| SHA512 | 8f482e7b2d93a46d08652aba7298dc564711ad071569f9f81c9f4ee5129c83acda8c7dfd0082845c0c4480cebb794ccc92c391e1df54b5306a87dc3140e7c621 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 83ba096ff7f1897bf35f22da341caef6 |
| SHA1 | df132cde8e659cc2698f2fb5983ce5ce56676528 |
| SHA256 | 4a22dfb265e774e880673ef164ef996a9ab0a108af12f63a2fdc5276da24cbae |
| SHA512 | bdd661af595bb7fa7dbbda913189eacd4b6154d4501d98fb9903f3170551aaceced5ae0676e5d56a947e35b71a835d2d020dd994a5ced2d43053d2d17755c6f6 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\prefs-1.js
| MD5 | 2daadf6c1b673079d723d58f8a73074c |
| SHA1 | 7a3909a66d607971943f5cdb86061d476c5fd043 |
| SHA256 | e395cfc68867943a2abb855d80200c296868b9799ac0542a38bd64e6619146c7 |
| SHA512 | 49c55f6953ba80af0f4fd5698a236e66f8c2609096b8eff53cc878c49f1002674457cd5dbb709c57b14f50ecb24b4c9c2f543bdd3560faaa2954542b3341b7ae |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\39DB9E847E680B765D7B04FCCE6BF5BC0225F878
| MD5 | 81a37a8a63d5f58b16b1e02bd667d687 |
| SHA1 | 84bbeeb59d960dad084898c2b12c4804551b2603 |
| SHA256 | 0ead4106de7fd2a120586f462de5f686a9eebac59de7b9ee13fffcf952cac0ca |
| SHA512 | d6b7d9ee9d89def025af14c8fe792118bbd78c68f37ba35a56fedf5b381fb25912c45c051abb09577908d53203fad326ed2441dcbaa2cf4679e686e8cb175635 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\D500AD994A7515157BB2A6ADD5B18B754E4D2F99
| MD5 | c785883ab7d6d4b2e7d6695a7e6f15f0 |
| SHA1 | a9a409f58264bd0c3b226c8063775e085cfd3070 |
| SHA256 | 611d047ffcc80f66903a6e09affd29d97bac3f3c8b75b9c679999fc1851a267c |
| SHA512 | e8a259e2cc7ca98afc39efc93bc341a8a2b21fcad289c8da3ec1f5aae42f1bf0e67f1b536a4c10db9af3631c2e1b891cc6644f6b497f2d739f858ed2bdfaee7f |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | c1241a9370ef731423414f5ea4ed7035 |
| SHA1 | 526ba3c49d53813fda30b9fa19ced631fa08f858 |
| SHA256 | 98d6f64a0184d9bafb311c230205ba04684e96e756f2fa164cd0ec4eddf9a1dd |
| SHA512 | 789ce1c20c1d878051a75d979ae69f9f66d2c18804454b75b196984cb0a33f115a949e0138e75654dcbeec37a8b5ed562597d13f02aa20ab9e5f01d49ea68d30 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 9071b07dd89e8b1f06148f298acff584 |
| SHA1 | c049041ef72b4b5e8add9b6f8a88fa1cb382c919 |
| SHA256 | 53afd264b587a76c1bda0b7611c09a5ff1eb51de74b9f18e84c9ed3f839a2e53 |
| SHA512 | 593c7fce342aa0b3c3503e1752fe45ac1537986efec9a57d29c99248e6746305c86cf1ee44afec355107f172779b54c2bd372cf2795e4e5cd7b9424c244cac68 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\AlternateServices.bin
| MD5 | 4b036cfd6de15b721801c5ae605e6298 |
| SHA1 | 169962e5963fff21d0b3766e67883c66c30d59f7 |
| SHA256 | 400d79913c2b741593c0d30c1ff9279de10c2db67f2f332798fa3747dca6cfe5 |
| SHA512 | d8729677d19e48d1c108443fa34436af8c87f2ad7d6f4a2a031a605a7fddce0a5eee8f8d76fc846e62c8bf73d35cf0fca7dec5cc0531228bab3b6cff92b5f320 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 49801620d9c27cc4f4c32bb4516d9374 |
| SHA1 | 44505932202d69481e0b1e559c4e8fcf487aa79d |
| SHA256 | 01766735ccb073b9678e6d4460ea96be73065b1bc0e462e3abccede281f5e875 |
| SHA512 | 48e36a94487ded99e5069ef6574de6baa0138df2928940949bc4ea1d87fb8f151e68cad16a896a35656994cbd1a3d8b448e1f411f9dec8a5f3ec07d295c26335 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\FEC88CE4335B954C53FAFB549CF02A945BE79545
| MD5 | f8720d84116cd4744b152daf8d2199cd |
| SHA1 | 69caa13d4abe215eeadb59c82b0ad349d6730a9c |
| SHA256 | b7bd4c8f7f4775b40e0cdef01c8218b40182ed790d3ec0c84564e322d038efd5 |
| SHA512 | 2e2637e06497711a0958ee6eaf920cc9e1f0566f03cda691a01f9e631173aeaffbfb28cac662ddf56d93e841b6427dc55e4da7b850700862a746d4e34efe5e67 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++now.gg\cache\morgue\208\{90ff5268-e4df-4f13-b1e5-492214e1bbd0}.final
| MD5 | ac8901790e88d95c3e1e1a352e134cab |
| SHA1 | fb6b236815d779fdddee3a54ad3df615f7f72881 |
| SHA256 | 4260b5d0f4d4bc385a668322ded61d1aae235624334e392142f946ba02e514ba |
| SHA512 | d09bf8320f1c1415653df1deb6baa448bf5828bc28d9eb6bff68bf70fc40b2564b6d60c851dc544a50e166e52d54836b88a82d4b095f109c342689531a166411 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 5f0f5059154806633ae38b11ce08713f |
| SHA1 | 99ebd5302ba1f635585c5e3274c5997bceecd038 |
| SHA256 | 1753f49df819b01757ed41664bef27d31094b0768b5518a5abdb593ed7f59942 |
| SHA512 | b1221abd7e8293b8a0a9bcf7d4ab38df58fbc332292dd854b97685e9b13fe51f0289b84164615d862e8868b74b39848d79f0591413314bac6bee5c84fecb962b |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.195.35\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe
| MD5 | dc1543edd0dcd56536304bdf56ef93f1 |
| SHA1 | 1a8b2c7791f2faa1eb0a98478edee1c45847075c |
| SHA256 | ccbb3d9a4877999a55b2ca6b8128481e91c4b56780f581226f916c0fb2db0772 |
| SHA512 | 2a6b4aa39bc3e4d234909077d5c6d75b9968c1778d505cc12431afd7aebd01eb65ed2f6f0c53c67f18eed7e97b67a93bab8c44574e3918ccd5cfcd8681767056 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 791ce1791de9875974f15ceaf6c254ae |
| SHA1 | b15a0e604a7ac1fdf31ddb46c4e08e7726189c49 |
| SHA256 | ce8dc6b4d553ead13748d6ee91e25b1973f92ac048e9cd1abea442780176875f |
| SHA512 | af30287f87620c4b8251bf1e04a4e1acd9a0c11028f9576b85fe4edeb1fefb1fa25c4909d87419372bfdca8b0fbef5b1c4f4f1b6e1566bed89a3f929ca1ab086 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 8d7d7a232c403bdcc206ed77120c89c9 |
| SHA1 | 2740f9992ce19ad566bdf1a62a20a135872d5f96 |
| SHA256 | 895dad4fb2b164a84dd291e7e28336aabaa01872a5e2d5034347a5f34a322f9a |
| SHA512 | c98ec25915e286ec462bcab7049f6084fb36f368c5c099c8e9d94538818d1427a42f9731b1b6a26863dd0cf9786e49a50e7beb70edf1c892bc09100fd0c40747 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 5709a9e70295f41263a3df25780abdbc |
| SHA1 | 5e8ab67c7f4bb02ca05f2ef7411fdc928d889640 |
| SHA256 | 12dfc2f6c530fad9a45b1eabb0a552c370118a76336d8c4876b2959da905d271 |
| SHA512 | 0fb255fccf83c1d5233737b2c39d4a84fe10de18eab1a56b67f6f17a114e76aad42f0cc061bd7e28ee5c80dc968c882675f9333baf6aff0a36e1fd65c48ccf11 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | c821531fc506932f7eb966a07b53b946 |
| SHA1 | c56356095da0786aaf0fa4292eeee1e0764c1eb4 |
| SHA256 | aa3e316584f5678fa8a1d6ba41bce196c2af5705e2ac7e0ba3500fd254e6dfca |
| SHA512 | a1f51142fe0f430c4f4d0bf814b91bccece7b318b8d6ab727cf09ee6aae81e92356d0de62fd738b19ac8aba30af7b134501a7da32f63b5a65e2b583b54b96430 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | 6233e573c2c1cb16869b7cfaae9d8dbd |
| SHA1 | 1457988da85f12bcc48aaaec11e7e944fae00cfa |
| SHA256 | 9464438f897d5c3c004a29b5ff3a09460b7103b5e051cdbe889c733d5695159c |
| SHA512 | dea662cafd7a14b2f842577e426adf9b8d096db4ed458ba7e9e9425a4e540fb57ea6a32bbe39f288c03fe81c5ef627fb971464809ca7fe170aba92eacfe8dc02 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 14172f00f69cb6a567b3e388e752bffb |
| SHA1 | a4f648483f37d4f173d6a1cdfbe8a6e64ba5cd46 |
| SHA256 | a20aadd3ae88591e18d507fe79afc80a471ce517239d2aadc9a4d97e6a25b144 |
| SHA512 | 5e4f87ab609d8d271f71a97da145fcf65bc8a47215848bcdad750c408bdc5824546f562760dbde603190efb214d81248bb9036729e1e03787e50746258aeb062 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\1FBBF79CD3C19714BC216DB831CF401F7BAACEBD
| MD5 | 74b8792821fa33b88f65d7bc3deb5609 |
| SHA1 | b3c05eef13864010419ae77bff2fd7323e75913f |
| SHA256 | 2a668ebb1d6cb91156a472d37579bff98f0e6296d8bcceb9a71e4bb85736ee48 |
| SHA512 | 1429ca3ee1ad82cfbdbb4eb82e66e7933bdf34dcb7c345c966fa8290331ad33b570aaf2f9976ea230458a07f2dea5451b735af9e297331ba31a9c89e4926665b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\cert9.db
| MD5 | 5b70a1d30ce8ffe0c50c78a14079f543 |
| SHA1 | 9e398ada9082165142b99dedc2bdc3e0d7b6846a |
| SHA256 | b46c0af76ac8e376d98819a69fcf31a7fce862474b15ba050ad84c6154ed6ad7 |
| SHA512 | 09292dedb192d483e8e315b6ce30b6a2d39b54e386d1ca225009bb00a08f18058fbf821d355ecbab21aa8130facf971d12e0df69e04a8ad6d454412dfe477dc5 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 1658f28f6127a6c9c45157bba68ea4fd |
| SHA1 | 0383df89d05b17a9dbf9881b173da982b7060edb |
| SHA256 | 1ef7ac450e5332d79eee48b041744ce15bda6f9d4981fc07e825a40829e5f562 |
| SHA512 | 55225a4733dc7958fe10969e63e9d142712e65fa721fbd705a7bb5793200e8035e9c5d82e4281b0c3422fe0146e4fb22a6916bf1e885165db1194b734bf727f6 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\2B16ACC15AA680352D12943E950AB926A085A466
| MD5 | 46aa6922ef66513bac42833ff2fc892e |
| SHA1 | a28271f900632a37f429a4a069902008d556937c |
| SHA256 | 792664c9b4572b68b9cb8b8c67200c496faf8aad8d557c66f622e1061b6c9daa |
| SHA512 | 85c5652e8b1a99b47557a915442491ad2828f9db8e4a3b14870a5b7081684e773b4a85b312b398de0e7682c372cdfe6b2998a2a66f7b39e4c942c4ab18853c33 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 61812df502de7f4b9599d9e7c761a298 |
| SHA1 | a299a92eedbc74d238caa6c91704d28433585e25 |
| SHA256 | 14f90d7ed8b3354bed62f24ec154af1fd1aab506812a6c4adbe409c27aaf2405 |
| SHA512 | 810cc26f97fc7a0469ee3252520c5c207d30d11d3afd2f565afccd2735eecb9b0a7ea67580db1592df13deed900e7c3060502edd0d2589aa89e26786782a22ca |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | ad37c321da918f3f703d80074543133b |
| SHA1 | ba06652ec763725ec34e2d81a3b3d300a7a7fd81 |
| SHA256 | 26ad776574d1d37c536ebb272a80906bf7e30ac257b1bdbcc097922840de738d |
| SHA512 | 6331de46cb443754934eb462fe68f832cffdfa37de6cda62621f4d592b54c0d4fa2fe50d7c81fc3fd84b19001ec2fb38c5192c827bc23c6bfbcbe74cd7ceaf09 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 97e105c9d938fc0ccf9157bb96a149b5 |
| SHA1 | abfa2b391f570d5a98ceb7b65b9f7a9f9dd22036 |
| SHA256 | 34b0c5f749376b88c581d942f3abc3453ce241e1810092d2f516e61e6ee590c3 |
| SHA512 | 1afd25bb3a6bf61fd233953dfb765608d26b08b38d71e09480737241c4c795353f06acdddbf325f7c0a68a80e20793f6e32872b2944859fd1fa7283bc7e4e83f |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | ef2aef09aefd398b6daf45f0ad00792a |
| SHA1 | 10ffebf00e179343d7e53651e942377f78dbefb8 |
| SHA256 | fa8beae23dadbe70afb79c78bb71d635f414e21d0ba1a9472a0dc2c3cfae77e1 |
| SHA512 | 33c0ec6f569f98bec32eaaaeed94df1730892974969715115723ad67530f1cd473625b49336854f2cc3df2e7d74c74f58606b4e0d3b706f0afb00f48dad06380 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\2D8B1A13BF4DE864309FD52B7BF93789A675C733
| MD5 | 0f2642a749cc1fadfba706bfd4893431 |
| SHA1 | e9880badf04ad503038f88f9d9bc97b8af1a181a |
| SHA256 | 81d4da2c47b69e60a3c9d58d31e5fca0b75db5e694049c5754fcc580eaf5aff6 |
| SHA512 | ff19f905dea03171be9ecf4c7f479f134099489e4eeb1be014ea7c239661425d3545189cd89df03e2b19120f6564d336c00a3c3a55fa36be71329226fe1869ec |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\C2B3B1C59E59E99E287290E8BABEBEC257874426
| MD5 | 2627c456f3159d8700ad2d8d14cbe5cf |
| SHA1 | 66b40c2b364d697210b5c2532f190038469b215a |
| SHA256 | 9a2c71b8240f63d290488c2394ba471e29408c78cd32b3ea6ec1c43c6e5a8f47 |
| SHA512 | 9822b05e11fbb65b60a8224d5a6669219b9f76c03dceb4a779ea1fd697a54f45560ecc0aeed75e57bf5c8e41616c3b4342790515ddc4aff0b26c8dc48724b39e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F56347BF2186A4A0B010C3EBAFF9B6EB6C40C8CD
| MD5 | 0e046b2f9f4c3fe5427acee4450b1d97 |
| SHA1 | 7fc8d722dab7310ef9e24e051ee77789d567f7f7 |
| SHA256 | 7eb21737842f24b482d308b5a7bb832eed95ca674183c416b7b3e92e095a992d |
| SHA512 | 1fa8ec1a1e553ce866acffc276710cd42ca284315df823e0317b095e7bd61c481893f01da6df7ae26a7f24113cf88dc327326daff72c325da63fd2eb4e2c4c4b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\02EA47444603C100469B264E9A30F63C2DC97B73
| MD5 | 7d07223cb6b2541fadc6d9a53d8d2cea |
| SHA1 | 22ed3adb5cf00eb9689b242b01bf6267e9b5776d |
| SHA256 | eeeb43c13b97932a0827d2349e4c2bcf46223a3701695638eb2fd43b5bef7112 |
| SHA512 | 7ca38faf511942951e11af0d3a6ef584fc40bd92572ac6ea17172d359b0b2bcb61ad0f2fa41c31871fc796d01237b56ff0bcd84a4b53bb6ff220f3c776fe2fc1 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\07FA863FA14461482E37ACC5215560354870582A
| MD5 | 8589eb3eccc9d9fba12e14815e02d7b1 |
| SHA1 | e295f23a1d77aa2452d565ebcde7360bc727acce |
| SHA256 | 5ef2b16f7b3db9d2c5f8679520783a51a4d703bfedddc125363f80f7cd23963f |
| SHA512 | ddeba3c74d3267ebc035fbe6c338330893d2c630bfe43239fcf2d1f813122932659c96d63acf7c79a680c9f94c6b91b4be46d5fe286b5d99141af5f6cd62e4b5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\A010627ADB95654204C32312D1B03C7B74BDB7AB
| MD5 | 7635e0d9f2503bcc298e92b2cf49cc6c |
| SHA1 | 661cb8211e402ed48ba2fb73547f6d8a0324cfbe |
| SHA256 | facd326ac80af7fd62ae96effa5339f259d4a25847b4ea7a21e61f19eb984660 |
| SHA512 | 211379e50b77b2a36e3b70f5e35197a62714ac4bf43890168537d1f5023d029241ea83d0f9e9ad9c6a2cebb7ab8f7ea6c9fc9b1ef6174e9fe8b338b6ead48835 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3955CD93FFC8BA5F29E3D5DA6400592EB90053B7
| MD5 | 471ca9cd9fde3d3abbab46291d0eae51 |
| SHA1 | c131b7c81221d4b1237c73ed345cc11968a9cc90 |
| SHA256 | 96fb055d3c640d4f0f3a0b6066d56ce301ae20d45f712da70fc42f49c02c7562 |
| SHA512 | 5591ce401671170aa635f692e51d2e79fe0cd61740d2d166a7fd1f1cfa462bcafc0d8edf8539ba35557d1ccccf3c93c4a984f003cc6775a7d62e8e61ba9211aa |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\events\events
| MD5 | d085b8c5d89da7fec51e3f79bd1720ad |
| SHA1 | e10761a7cde96f30d13f18c222d6e59f0abb0fa7 |
| SHA256 | e5c833ab81816d6d125f5fb92aa300cb2b22ebef29b293597ad5441ad4f86fbf |
| SHA512 | 84b9c06b4e7e787c59c9f1c9c4d14371a70c34eaee9c8d8c0effaa4b008e308a1d94c4673234cd6f3edf7e86f1e49eab9ebeea477c3997c0688537cf2c8e432b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++www.youtube.com\cache\morgue\237\{a8411fa2-96c4-41b8-add4-6574fa911fed}.final
| MD5 | 2a252393b98be6348c4ba18003cc3471 |
| SHA1 | 40f75302fcbe4a8ac2e33a8d9daf801abc2a9598 |
| SHA256 | 04cae3c7b208fc55b25763913d0bbdc99232942086efdf705f2a27764be6f5ee |
| SHA512 | 07af4a7b0d10f1b5e1fe0877b21abc98483d78797608a1763cfb71e25559fdce10d20f03c16f4284d7ae7ab90266f45240425e3a264de9525ec1657345b85198 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 9c4703b8c94a66209dabf6ab35ff9967 |
| SHA1 | 745421ccb086fa5cb5ed51629590a20f1dcd65e9 |
| SHA256 | 1ab94e6765f3196468431bc546ba49aa03fc1e1dcac090a164683602c12dca3c |
| SHA512 | 727bb91711e86329818b6c55ebcbf3ea378c78b296dd3582bf99c43fd2ad8ba4935e92be7f13b054523f2a119afc8d62e6d28308677f4fc0fe17cb15e04e799a |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | c5fd6bcc3945cfdcf3195f5667d97996 |
| SHA1 | 2d0e20e9eab29ee23e62c53fd82fac5f240a3848 |
| SHA256 | d46ed3ed780aa0575cdb215d852e08664d5ca324bcf8934ef5e84b6aa206956f |
| SHA512 | e516e18bab294ea772b4990100ab89f9949845b91945792151dbae45f453c8726996a9886eff8b088b688da6f6485c46851bf437c7abe33e2aee840d3895b6a6 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++www.google.com\ls\data.sqlite
| MD5 | 64cff7cc1471b2f9d991aa48cb0a31a1 |
| SHA1 | 3011b92f76ae19608a0cfa5d0f3c3334adb5f3aa |
| SHA256 | 0838161f7508af0c811b5ae2de774ac331699a8fe81b10631f5f882437ca27ae |
| SHA512 | a331afe240d2eb32e340c8354ac5118c88b2e1f886a0f17e285fd582d4a7d8e88a00277b1ffc2ec7ba73acac783e30d397c18bbaea46489c6788479352a7d284 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\0D8804A8324E17CAF859DD7CEA59FB44F124453F
| MD5 | 5a2595a34f089e7e6183e4cd97308dca |
| SHA1 | 08beb9438971841f62de75645803d13cbbffe38c |
| SHA256 | a8daf1463f1e449952bddbea8cfd3ef3b1061a7989601dc0519d7f3a0fe6cfb9 |
| SHA512 | deee622d074bfb51a4361051cd9ae782bd77fdc50e43f7cf0cee098ef0605d27b5ceae5b47a28ec85aa979c9ee42535419ac0f455da38928b1648a38041cb072 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F7B6C486855E65BCC82EA80487D23FA0EF6FD246
| MD5 | 05af88d500c2ade6df753fada781063d |
| SHA1 | 1f333f4b4305d2ce191dab2d0e62de42fd9e19b0 |
| SHA256 | b250b46a4774fabb03add90dea66a8e34f8dad6016cd61ef4eedfd6a965bb1fb |
| SHA512 | eb0c473907959c0b1f0eadc0133340e8c72d482844e6a650fc54174c8dee283ed724626a1c9aa10b9c17c125dea468c481c4d9541a9c8c5605b31a47180f2239 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\2492994A253B970917AF5CDF605580B1C2DC16A0
| MD5 | 772dbcb0e0f35279a73617b53df193f4 |
| SHA1 | 6402c8350e247981cfd1df78d900cf88d48fa2da |
| SHA256 | 48a2a0cf418f117ebb0efba9578dcb50675db2b45257ebd6ce0e79ef29cb16a2 |
| SHA512 | 96d133d61861c2789c5ae19774f4af82197e49a0915f88de833bdf6fc140cd50fcc45e7436b333accb548bc97dcc10ec18f5472933666a6ea2f32c590f2527c1 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\8ADF0B8FE76015F32F4AD7D4AC02D58AE5922581
| MD5 | 9075670de5dbc7355f3095c27e2d99cc |
| SHA1 | 25439b8b5be7f17d32c079a65f0999f8e5591831 |
| SHA256 | 762ea7a525873d0adc5662340e849ab2bb5212550734a4be05524ae483544bd8 |
| SHA512 | a31915172be0dfb882eb61d3b5cad3fb58c431417aa79ac47bf8f72ff77506a908de962f426ccc6916c5d8cfd5e913823bcad5e8df25d7346b5cd557efb9ab0e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\549C94847E35BE89DCE95DF86EA39378F22E5078
| MD5 | 7c47a81c92ad5c1d06117de7345e0e3d |
| SHA1 | 50fc71025a754346fa876a164e1c0f5f46c43d2d |
| SHA256 | 588443c479e01915e162e255cada47b61d2d63b6a777644c5375b2da39ff494c |
| SHA512 | 32b33715b506e83299e90c5fbd73415ac5e4cb058f9c4e519519ab1bfd8c53c1aecf7a3c814e0493c687d0a5dc4040353112400e39c3bb3c7d175546f769d9e8 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | efaef54e49601cb063d94e6520770594 |
| SHA1 | 2e09d59e0be895d31a669a637605fd0813ac8cdb |
| SHA256 | 207190454799f69e6884671b6e81e5917be37983aaeb11a442b52e440140c21d |
| SHA512 | c3aeab101c26a5e7e9f46c2c995211e83bf168e5edf8c801def8a5483bb648d7139a65f1256cdaa68d1c3ce5168cfbb95ada7006b5545c432d82500b9740acbf |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 7b1f89eb87d2d5eb6e041833cdbc36e6 |
| SHA1 | 5dad239ee5e9298c616f352d22e5528b41d4c1b8 |
| SHA256 | ca5a1da1ec0d62d6f7f63eea489d3a37e9b1160687a5e25e76e9617cfced786d |
| SHA512 | 89f8b2d4931fbbe4bfc2b762a582e7795fc4bcb4db983caf3fd60c734b34aaa1c7c3b8f20e247dbaa89e5416ad77bd5d5b388ea92d985740e5d1e9bb05c34024 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 35ebcbbcb8e6d09dc10aa06a771857c7 |
| SHA1 | a6c59913fab0aa1081bff8fe7abf397584c56bb6 |
| SHA256 | dabb36bf9e6796cb28ca6efc9bf8e9bdfe559144d2880ff963a395d9225bb8ea |
| SHA512 | 4ae48f29fb8fc98f118b28c824999ecd08487fe6acda1feab00490f8ee5abf72b186dbdd205763e429f765b45f854d4e2fabdcf1a612b2ed08da085d249d5950 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\c59351d4-f82d-4c15-b61d-8e7f8cb01139
| MD5 | 2ebde47d3f2b9b73f87e58e0cc79154a |
| SHA1 | ea74ea24d6841eda3b534836950f72527c50d025 |
| SHA256 | d25efd111d21971437613982028707853fe5c9c5b4c9555b6d930e1045f6555d |
| SHA512 | ef2e21071201dad29c1118aba9df068fe97200d1bbc39f8ea3c908a0dd47d1c86604431890acda9088a9294fe1acd8648408374fa845e7987c0424a55ceb9482 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\pending_pings\0060deb9-4079-4adb-98b5-a6e76d834aad
| MD5 | 2a8ed6a488b9b94227e0ba5387337eb5 |
| SHA1 | 1881767c2d2d9910212a5036d9ce3ce8aabdaba4 |
| SHA256 | 090e78ffbc496c612a6f49c050c5f29c3c8c1e22cf7ea815ad867f7e076b5558 |
| SHA512 | 3781f8df14f4101a4b40a3c58adfdeca8428f0a53f95b9fa0777c3b2913b412ecc925925085f5e28d3c6ee10d573e237f0679e4fbb6447d8669b9b9faa904c30 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 9f5ce648a1b74b5a80cdfecca0e02fe7 |
| SHA1 | d0670f603943fa0d60e5a273211a160596a16bc6 |
| SHA256 | d437955875e3d0183b21cd7e092c0547d56fa070dd2db1399d7ee8282424f0f1 |
| SHA512 | 3258677e67c844d735bd100014e52bc91b38d8ebb714be34533130d0993236dedfaf7e4e682673cf48c2dd0fba2ba973be349c1786c882af12d4ef4c3231d3a6 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | b263ad5d84f2baa44af6ec7bed0b23f0 |
| SHA1 | 2f5b4f51e0f35faa0b2dda79fc7a7c9989f0d9cc |
| SHA256 | 5a03201eac2f1fca250c8c9b9f1c11630f6b4fd5e1687f6f1ee4ee481a8d89ed |
| SHA512 | 19cf41598e86e413a9c8ebb45984858b62714c5d83034da90322b86e521f20d3d5f05e502cc9a248fbd06ead3bb97e8ace919e9cc41291881cc7f6ba95441736 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\setup.exe
| MD5 | b621cf9d3506d2cd18dc516d9570cd9c |
| SHA1 | f90ed12727015e78f07692cbcd9e3c0999a03c3a |
| SHA256 | 64050839b4a6f27d896e1194e902a2f7a3c1cab0ef864b558ab77f1be25145d6 |
| SHA512 | 167c73cf457689f8ba031015c1e411545550f602919c35aff6fd4d602bd591d34e8c12887a946902b798bf4cf98aadfce3c2de810bf16c7c24a216bfd8abec19 |
C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{AB31938D-33D9-4A28-BE60-75D43982A685}\EDGEMITMP_77E2F.tmp\SETUP.EX_
| MD5 | 958befee6afc25fa51e4bf538d0894c7 |
| SHA1 | 70a2f157988f6cef27048bc2b3c81e8ab4b41552 |
| SHA256 | 5422f0b35bac6fc926c6f537d42cfa4aaa7985e89e4e680acc467d804071a006 |
| SHA512 | 7ecf452f007d849268b4cc2644ecb239b2a4309a80f4350dfb215f6fc34950cabf1bb233f43bc6678547931af7b427517ed8c88cd214aa0358122777a5a8cce2 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\0305BF7FE660AF5F32B4319E4C7EF7A7B70257A3
| MD5 | 75e45530ab6cbae4606a591dcbae7bc5 |
| SHA1 | cd866d43c73bb8e735375efed31f3b8562a3513f |
| SHA256 | 80f935f8438afb93b052625e7230e09cea223f56cb8d97740a795b274f5ed579 |
| SHA512 | 86143c47509ab3cd1093ba935d04c74ee4e5e635bfdacbfeb4393f57fdbe9e394e8b997915fe0cda42ddfd1d529bc02978758908863545efca2dadfdd506935d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F831BCC013AE2D7181740F5A8256ADD968D6EC27
| MD5 | b1cd82d20ffb39c9fc7fa0791d10fd6e |
| SHA1 | 56de4e59dfcc79176ffb83ca900a4fa22ecf8099 |
| SHA256 | 0f335f16b5ff537201b016667b2a5efbd31a8ef9a395d35ffaf0ebc7c17a6ce8 |
| SHA512 | 328bf8aef7166c8978d47279d1629f21f8581da8468b347f63256cec6054432b2a3996ad2d87bf5a290a53d19c8f2ae0e36bce958a1b02f20adf5a9b3a1a6f64 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\99B7A768562ED937E944E0C022D22B7AC3360D4A
| MD5 | af8148733ce0118d3d9b83c0ca72fdff |
| SHA1 | 9e287b656c527931cdfd6cdf5806da18068361ff |
| SHA256 | fb584fb79a86fd3a67262c6e86f835fecb4fb027769c45c38dfc05ecdf9f8099 |
| SHA512 | 345dc64de4b5b088f68d9947caa33c29f9bafc91a6d14a18ea0e8ce21af7f213a9a89c15c308a3806f1b1f0300beb923a24c7e1de083bdc668ebcd7ed48da85d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F2226C9F294E25F3D33D3C04A313C0C374CEB3BA
| MD5 | 12d294f28722ebafc707a26cdfb3bece |
| SHA1 | d55eddb48a45bc60d4351e3036c72bff6fabae69 |
| SHA256 | 7707b1a967144fb8171b82c28a29133c518bb985f96728b484b161ebff7c9f68 |
| SHA512 | c58920dacdcd475b55653ec8cd387d914618349979caa7f730b8f677a6f1ff7943e15aa91033727d474d9f681703c134ff4e0035a88fcafe28280e863c29e1cf |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\D0A16C5C3BA9D8947A2086D03F85C4584CDCB63B
| MD5 | 29d78683e5e050e67b9e8d6886caab2a |
| SHA1 | 6d67d68f719394caa352c1b04ec696417110caf6 |
| SHA256 | 6fd2469cab9947ab071f4981b53be692caf0a55409e1a1d664d99db261ad8f23 |
| SHA512 | 4ef3a1f074568b614265abfcd6e013be38d6fa93c25f743fcf350228df0241e4683d9b15e89c6ed6107a8f6369555a77bae259a166d6116640e38dac703b3146 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\9D319635CD10DECB0D5A84BF79F7E670DEA41DE1
| MD5 | fa5102823e204d6b59c2d7cbc9ef4458 |
| SHA1 | 66c5852ea33d4b508a6f637b73dcf7611e184fd1 |
| SHA256 | 73688f8eddedc9d911f0474497b27e7bfa0d6a47c19a3dbdc24c8d7bfc80b8c4 |
| SHA512 | 1cf54226b55d811590d2d89c36b7e46668d53bad80104ca8d0e5dae4790c0b205c36c549424247ebb72be4b7367fae57107a70e495dcd1de06652c7fe9e57697 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\7FA8B25BD672748A496C370286D9EA389524606B
| MD5 | 6687a19cac34ccd76b70bca60238510d |
| SHA1 | 1998f8ceb2473107a6ec14fa09028d2e101ff1ec |
| SHA256 | 3f0b98f18c00faaef523e65543a6350f63ff3f1011701590a25015df1a5b9cd9 |
| SHA512 | 9b3fcdb7c5d03cb644e8b6b556e7c7aea50351a1be2a87229ad82d36c8c7df113621e8f48a949a038e5c2ce23192764d8c327c8f5d1f8cd1da0e60e3bae218ba |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\4DC8F91AE42AC2746A419318BB9EA6F9A6879CCF
| MD5 | 3f78af9339b68b3bb393140065f32d67 |
| SHA1 | df59b6495592f22da81e33a96c1828fd0551eaf0 |
| SHA256 | 0f344cbd471e98008019ba15e35c5458f5353abc2f77bd01c568e9cf6b33c031 |
| SHA512 | ff498c4f209c3cc1bb8e65f15fbcfd1a4a8be913130b397a1d3029754816c42e57533c89d343d5867b7e805801977ce4fa0d73c8236f7fa1d238d1671607d450 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\755C5E21902B85B047E204DC57E22B0E2EC33924
| MD5 | 0cbf5708687f59ac297e23a904d60e11 |
| SHA1 | 40501ab025586baf7edea81c026d34ac10e9dcc3 |
| SHA256 | 3d27a28311a8facbe2381af1c0b3eaa50582f5277b19a3c40a6178d8d162692a |
| SHA512 | d5dbbab0028dd693aee71f7a72b2404e3d3ca749fc1dc89b0c44e374c6606cd574234985bffbd7775656135ab2921c446ddb612461bfd820beecefd7c06886f5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\6D89348819C8881868053197CA0754F36784BF5F
| MD5 | 662797c6bd9703284814398837e3d506 |
| SHA1 | b0e67d52521fb4364d49edd833014200d8ebe81d |
| SHA256 | a35361b8f461222d109778a5ff00355833ff87138d733d231e1eef6e17dc3601 |
| SHA512 | a6285aff55e5d8fbe06993fae070cf2a92041af9fb4706dc9eeec2a570e75b2b75a70a816269609d0629dd3eb45d043237066a37418697d4d715438e7b3489f5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\recipe_attachment.json
| MD5 | be3d0f91b7957bbbf8a20859fd32d417 |
| SHA1 | fbc0380fe1928d6d0c8ab8b0a793a2bba0722d10 |
| SHA256 | fc07d42847eeaf69dcbf1b9a16eb48b141c11feb67aa40724be2aee83cb621b7 |
| SHA512 | 8da24afcf587fbd4f945201702168e7cfc12434440200d00f09ddcd1d1d358a5e01065ac2a411fdf96a530e94db3697e3530578b392873cf874476b5e65d774a |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\F84B6A34B56CEC15C1942664FFAB6B65E0D2588F
| MD5 | 3647e3b7f46f55589887483571698f23 |
| SHA1 | eea7f2fcf6dbb95583bc6b537b9b6d2b6d91e53e |
| SHA256 | 0be05218e887f6af0b53dd3e00bb64d0e5cbe0606507ca6c7e28213cc6671d00 |
| SHA512 | a8ed45602470b95baff55f472aa82ce4fc0b9da91b6c76820b52c14d4a1781963b1bfbcfb9cdab05572be1746fff9116b3780d256c8dddc25f7a4ea2a698a603 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_sports.json
| MD5 | ce4e75385300f9c03fdd52420e0f822f |
| SHA1 | 85c34648c253e4c88161d09dd1e25439b763628c |
| SHA256 | 44da98b03350e91e852fe59f0fc05d752fc867a5049ab0363da8bb7b7078ad14 |
| SHA512 | d119dc4706bbf3b6369fe72553cfacf1c9b2688e0188a7524b56d3e2ac85582a18bbee66d5594e0fb40767432646c23bf3e282090bd9b4c29f989a374aeae61f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_computers_and_electronics.json
| MD5 | 6ccd943214682ac8c4ec08b7ec6dbcbd |
| SHA1 | 18417647f7c76581d79b537a70bf64f614f60fa2 |
| SHA256 | ab20b97406b0d9bf4f695e5ec7db4ebad5efb682311e74ca757d45b87ffc106b |
| SHA512 | e57573d6f494df8aa7e8e6a20427a18f6868e19dc853b441b8506998158b23c7a4393b682c83b3513aae5075a21148dd8ca854a11dabcea6a0a0db8f2e6828b8 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_science.json
| MD5 | 7a8fd079bb1aeb4710a285ec909c62b9 |
| SHA1 | 8429335e5866c7c21d752a11f57f76399e5634b6 |
| SHA256 | 9606ce3988b2d2a4921b58ac454f54e53a9ea8f358326522a8b1dcc751b50b32 |
| SHA512 | 8fc1546e509b5386c9e1088e0e3a1b81f288ef67f1989f3e83888057e23769907a2b184d624a4e4c44fcd5b88d719bd4cca94dfb33798804a721b8be022ec0c6 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_jobs_and_education.json
| MD5 | 2d69892acde24ad6383082243efa3d37 |
| SHA1 | d8edc1c15739e34232012bb255872991edb72bc7 |
| SHA256 | 29080288b2130a67414ecb296a53ddd9f0a4771035e3c1b2112e0ce656a7481a |
| SHA512 | da391152e1fbce1f03607b486c5dea9a298a438e58e440ebb7b871bd5c62d7339b540eed115b4001b9840de1ba3898c6504872ff9094ba4d6a47455051c3f1c5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_real_estate.json
| MD5 | 9899942e9cd28bcb9bf5074800eae2d0 |
| SHA1 | 15e5071e5ed58001011652befc224aed06ee068f |
| SHA256 | efcf6b2d09e89b8c449ffbcdb5354beaa7178673862ebcdd6593561f2aa7d99a |
| SHA512 | 9f7a5fbe6d46c694e8bc9b50e7843e9747ea3229cf4b00b8e95f1a5467bd095d166cbd523b3d9315c62e9603d990b8e56a018ba4a11d30ad607f5281cc42b4cd |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_shopping.json
| MD5 | 97d4a0fd003e123df601b5fd205e97f8 |
| SHA1 | a802a515d04442b6bde60614e3d515d2983d4c00 |
| SHA256 | bfd7e68ddca6696c798412402965a0384df0c8c209931bbadabf88ccb45e3bb6 |
| SHA512 | 111e8a96bc8e07be2d1480a820fc30797d861a48d80622425af00b009512aacb30a2df9052c53bfbf4ee0800b6e6f5b56daa93d33f30fecb52e2f3850dfa9130 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_people_and_society.json
| MD5 | b1bd26cf5575ebb7ca511a05ea13fbd2 |
| SHA1 | e83d7f64b2884ea73357b4a15d25902517e51da8 |
| SHA256 | 4990a5d17bea15617624c48a0c7c23d16e95f15e2ec9dd1d82ee949567bbaec0 |
| SHA512 | edcede39c17b494474859bc1a9bbf18c9f6abd3f46f832086db3bb1337b01d862452d639f89f9470ca302a6fcb84a1686853ebb4b08003cb248615f0834a1e02 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_autos_and_vehicles.json
| MD5 | 39b73a66581c5a481a64f4dedf5b4f5c |
| SHA1 | 90e4a0883bb3f050dba2fee218450390d46f35e2 |
| SHA256 | 022f9495f8867fea275ece900cfa7664c68c25073db4748343452dbc0b9eda17 |
| SHA512 | cfb697958e020282455ab7fabc6c325447db84ead0100d28b417b6a0e2455c9793fa624c23cb9b92dfea25124f59dcd1d5c1f43bf1703a0ad469106b755a7cdd |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_internet_and_telecom.json
| MD5 | 36689de6804ca5af92224681ee9ea137 |
| SHA1 | 729d590068e9c891939fc17921930630cd4938dd |
| SHA256 | e646d43505c9c4e53dbaa474ef85d650a3f309ccf153d106f328d9b6aeb66d52 |
| SHA512 | 1c4f4aa02a65a9bbdf83dc5321c24cbe49f57108881616b993e274f5705f0466be2dd3389055a725b79f3317c98bdf9f8d47f86d62ebd151e4c57cc4dca2487c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_pets_and_animals.json
| MD5 | 5b26aca80818dd92509f6a9013c4c662 |
| SHA1 | 31e322209ba7cc1abd55bbb72a3c15bc2e4a895f |
| SHA256 | dd537bfb1497eb9457c0c8ecbd2846f325e13ddef3988fd293a29e68ab0b2671 |
| SHA512 | 29038f9f3b9b12259fb42daa93cdefabb9fb32a10f0d20f384a72fe97214eff1864b7fa2674c37224b71309d7d9cea4e36abd24a45a0e65f0c61dc5ca161ec7c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_online_communities.json
| MD5 | 37a74ab20e8447abd6ca918b6b39bb04 |
| SHA1 | b50986e6bb542f5eca8b805328be51eaa77e6c39 |
| SHA256 | 11b6084552e2979b5bc0fd6ffdc61e445d49692c0ae8dffedc07792f8062d13f |
| SHA512 | 49c6b96655ba0b5d08425af6815f06237089ec06926f49de1f03bc11db9e579bd125f2b6f3eaf434a2ccf10b262c42af9c35ab27683e8e9f984d5b36ec8f59fd |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_books_and_literature.json
| MD5 | df96946198f092c029fd6880e5e6c6ec |
| SHA1 | 9aee90b66b8f9656063f9476ff7b87d2d267dcda |
| SHA256 | df23a5b6f583ec3b4dce2aca8ff53cbdfadfd58c4b7aeb2e397eade5ff75c996 |
| SHA512 | 43a9fc190f4faadef37e01fa8ad320940553b287ed44a95321997a48312142f110b29c79eed7930477bfb29777a5a9913b42bf22ce6bb3e679dda5af54a125ea |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_games.json
| MD5 | 4182a69a05463f9c388527a7db4201de |
| SHA1 | 5a0044aed787086c0b79ff0f51368d78c36f76bc |
| SHA256 | 35e67835a5cf82144765dfb1095ebc84ac27d08812507ad0a2d562bf68e13e85 |
| SHA512 | 40023c9f89e0357fae26c33a023609de96b2a0b439318ef944d3d5b335b0877509f90505d119154eaa81e1097ecfb5aa44dd8bb595497cdecfc3ee711a1fe1d5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_beauty_and_fitness.json
| MD5 | 0ed0473b23b5a9e7d1116e8d4d5ca567 |
| SHA1 | 4eb5e948ac28453c4b90607e223f9e7d901301c4 |
| SHA256 | eed46e8fe6ff20f89884b4fc68a81e8d521231440301a01bb89beec8ebad296b |
| SHA512 | 464508d7992edfa0dfb61b04cfc5909b7daacf094fc81745de4d03214b207224133e48750a710979445ee1a65bb791bf240a2b935aacaf3987e5c67ff2d8ba9c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_finance.json
| MD5 | e95c2d2fc654b87e77b0a8a37aaa7fcf |
| SHA1 | b4b00c9554839cab6a50a7ed8cd43d21fdaf35dc |
| SHA256 | 384bf5fcc6928200c7ebb1f03f99bf74f6063e78d3cd044374448f879799318e |
| SHA512 | 9696998a8d0e3a85982016ff0a22bb8ae1790410f1f6198bb379c0a192579f24c75c25c7648b76b00d25a32ac204178acaccd744ee78846dfc62ebf70bf7b93a |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_arts_and_entertainment.json
| MD5 | 6c651609d367b10d1b25ef4c5f2b3318 |
| SHA1 | 0abcc756ea415abda969cd1e854e7e8ebeb6f2d4 |
| SHA256 | 960065cc44a09bef89206d28048d3c23719d2f5e9b38cfc718ca864c9e0e91e9 |
| SHA512 | 3e084452eefe14e58faa9ef0d9fda2d21af2c2ab1071ae23cde60527df8df43f701668ca0aa9d86f56630b0ab0ca8367803c968347880d674ad8217fba5d8915 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_law_and_government.json
| MD5 | 80c49b0f2d195f702e5707ba632ae188 |
| SHA1 | e65161da245318d1f6fdc001e8b97b4fd0bc50e7 |
| SHA256 | 257ee9a218a1b7f9c1a6c890f38920eb7e731808e3d9b9fc956f8346c29a3e63 |
| SHA512 | 972e95de7fe330c61cd22111bd3785999d60e7c02140809122d696a1f1f76f2cd0d63d6d92f657cdec24366d66b681e24f2735a8aabb8bcecec43c74e23fb4f5 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_health.json
| MD5 | 11711337d2acc6c6a10e2fb79ac90187 |
| SHA1 | 5583047c473c8045324519a4a432d06643de055d |
| SHA256 | 150f21c4f60856ab5e22891939d68d062542537b42a7ce1f8a8cec9300e7c565 |
| SHA512 | c2301ed72f623b22f05333c5ecc5ebf55d8a2d9593167cc453a66d8f42c05ff7c11e2709b6298912038a8ea6175f050bbc6d1fc4381f385f7ad7a952ad1e856b |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_business_and_industrial.json
| MD5 | a92a0fffc831e6c20431b070a7d16d5a |
| SHA1 | da5bbe65f10e5385cbe09db3630ae636413b4e39 |
| SHA256 | 8410809ebac544389cf27a10e2cbd687b7a68753aa50a42f235ac3fc7b60ce2c |
| SHA512 | 31a8602e1972900268651cd074950d16ad989b1f15ff3ebbd8e21e0311a619eef4d7d15cdb029ea8b22cf3b8759fa95b3067b4faaadcb90456944dbc3c9806a9 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_food_and_drink.json
| MD5 | 70ba02dedd216430894d29940fc627c2 |
| SHA1 | f0c9aa816c6b0e171525a984fd844d3a8cabd505 |
| SHA256 | 905357002f2eced8bba1be2285a9b83198f60d2f9bb1144b5c119994f2ec6e34 |
| SHA512 | 3ae60d0bf3c45d28e340d97106790787be2cc80ba579d313b5414084664b86e89879391c99e94b6e33bdc5508ea42a9fd34f48ca9b1e7adfa7b6dd22c783c263 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_reference.json
| MD5 | 567eaa19be0963b28b000826e8dd6c77 |
| SHA1 | 7e4524c36113bbbafee34e38367b919964649583 |
| SHA256 | 3619daa64036d1f0197cdadf7660e390d4b6e8c1b328ed3b59f828a205a6ea49 |
| SHA512 | 6766919b06ca209eaed86f99bee20c6dad9cc36520fc84e1c251a668bcfe0afcf720ea6c658268dc3bbaaf602bfdf61eb237c68e08d5252ea6e5d1d2a373b9fe |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_home_and_garden.json
| MD5 | 250acc54f92176775d6bdd8412432d9f |
| SHA1 | a6ad9ad7519e5c299d4b4ba458742b1b4d64cb65 |
| SHA256 | 19edd15ebce419b83469d2ab783c0c1377d72a186d1ff08857a82bca842eea54 |
| SHA512 | a52c81062f02c15701f13595f4476f0a07735034fcf177b1a65b001394a816020ee791fed5afae81d51de27630b34a85efa717fe80da733556fdda8739030f49 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_blogging_resources_and_services.json
| MD5 | c82700fcfcd9b5117176362d25f3e6f6 |
| SHA1 | a7ad40b40c7e8e5e11878f4702952a4014c5d22a |
| SHA256 | c9f2a779dba0bc886cc1255816bd776bdc2e8a6a8e0f9380495a92bb66862780 |
| SHA512 | d38e65ab55cee8fef538ad96448cd0c6b001563714fc7b37c69a424d0661ec6b7d04892cf4b76b13ddbc7d300c115e87e0134d47c3f38ef51617e5367647b217 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_hobbies_and_leisure.json
| MD5 | bb45971231bd3501aba1cd07715e4c95 |
| SHA1 | ea5bfd43d60a3d30cda1a31a3a5eb8ea0afa142a |
| SHA256 | 47db7797297a2a81d28c551117e27144b58627dbac1b1d52672b630d220f025d |
| SHA512 | 74767b1badbd32cacd3f996b8172df9c43656b11fea99f5a51fff38c6c6e2120fae8bdd0dd885234a3f173334054f580164fdf8860c27cbcf5fb29c5bcdc060d |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\personality-provider\nb_model_build_attachment_travel.json
| MD5 | 48139e5ba1c595568f59fe880d6e4e83 |
| SHA1 | 5e9ea36b9bb109b1ecfc41356cd5c8c9398d4a78 |
| SHA256 | 4336ac211a822b0a5c3ce5de0d4730665acc351ee1965ea8da1c72477e216dfa |
| SHA512 | 57e826f0e1d9b12d11b05d47e2f5ae4f5787537862f26e039918cb14faff4bc854298c0b7de3023e371756a331c0f3ee1aa7cebbbf94ec70cdfc29e00a900ed1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\bookmarkbackups\bookmarks-2024-11-13_11_aXSkNlDTkCBFIVlrZ626AQ==.jsonlz4
| MD5 | 97ecd7e8548881056bf1bd26a0fadcd1 |
| SHA1 | 871fbdf04e7aa35605adaafd8971a42a55fb893f |
| SHA256 | 1f091cd8b06d34894bec25cdc6bf5e189d5a4cec82689f9ffc25f2e59e854c8f |
| SHA512 | fa172e712c278f518ad85ee3bf0f7d0dd321ddde267bad20c8885d60b043dcbc5b905e9148dfb1d1a39a227dc693406682093bf4e75e54336aa0717f72597ebc |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\storage\default\https+++www.roblox.com\ls\usage
| MD5 | b9be9d7140a38d1241fa5753d6fdc56a |
| SHA1 | 466b7ad1c0783eaab51328ffe66dc3f0fd75880b |
| SHA256 | c4da80219e7df88b476972e23e83dd1614c811cc87d7a29a6911455891f17a04 |
| SHA512 | ea453b84a4204a97d4118a9c34a2ce172b5937f5b4a05362022ff51039d5744a2ae73004f6764f8c0a9e58ae75398310a305b08eb8fdb5f9f8bdd5b6b1ae9cfb |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | bff4847cebd86f900ca05f4d57c431c8 |
| SHA1 | ef183a68575e78cd8fdd3b2b5c3c72eefe4a9d06 |
| SHA256 | 4ed86ec83d3fe15259a694c4122c7a31eba189a08f87702eee967d5aed8c43ba |
| SHA512 | 42c7e876882dcbf2e224b6336ad7db77467f822f4c813785b7087b0095c4375410897916c5d7877dfa58ddc703f985641a1440e9e2b3355814a5e1e91b8c00f2 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 56e1e37ad7b82161733c025f0087ec47 |
| SHA1 | 0b1dce0cd988a46a4ae65d15e8e85f6c47ebdfbd |
| SHA256 | d46c25f3e691db116878281400d057f15a84667a031eda6cd0ca885244e6bd78 |
| SHA512 | 5a4c45b2b5e91407ed3426ba5389096f433b2c1ee4e87626171804bfd36e7c52288abdcb4079badee166636d51fb42e26b77cbf1c609117dbef3c14b17149884 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\datareporting\glean\events\pageload
| MD5 | b72cc961fa0b82fc9cdf57a52b59b080 |
| SHA1 | 78bef5d53c572eee22818d72b6dfe0f148023189 |
| SHA256 | 60cd7beb43a0ca636e4e431ea770c1f82e65d29c8c26e0a784eb9f272ddae329 |
| SHA512 | fe869becd5bf02290a6803854442b756dcf41275f265fd50852d822e9566a5a2b3fe9aa10a3ad4bb22af362557b0061fc59594d67608dac48ef478849a9692f9 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\B19628F39F39F1124AAB76DBF53B55E92E77E2A0
| MD5 | dc3ac75a1948bb101e37ba2968059b7d |
| SHA1 | 5f9c43416b9dbb44dc10dff7f86e9448aef54527 |
| SHA256 | b91470d7125207e3ad2c67092d9a5e9df786a14c1b334dbb91a6f0e2e0e6e96f |
| SHA512 | 8de0c8577cf33a9add56fcc19efdebf02807fe83b69319100884e558d3850cd937d54546b99d98fb56b3042085f5ee80fc558f54c1274183fd9f988fac7d97a0 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3DDA16BC6DDABAD758EAAD1BB9028434BF62D323
| MD5 | 41ff383c517401f739f316b76f5b3027 |
| SHA1 | 8294db8862c7c61cd9d8415eea08c65907927126 |
| SHA256 | ed623a80e38166576cc6f50a83ebbc8305351203232f09945a292abd64aae758 |
| SHA512 | 2556ce521fdb30ef678785f0a1af93433ec5ce0d0b5b3c89a14bf2e5aa51809167d32b23b826ccdae47380123fe7ee77dacc00e9f36fc3bac0b1d4b46fb45c29 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\386EAC11CA4B921A58AF901DCD97B7FA5108EE6F
| MD5 | 91e176cbf0afdc691b0ba0f89f611798 |
| SHA1 | dcfb99f07cf3cad04df83d80b6132bcb3f1c1340 |
| SHA256 | 1ee53d9f8eb99a9c7d4648d91839dace7f0631294bbe79fcd4096838e7b5fe11 |
| SHA512 | 58006c57b459c96e802ad7807c7f3f2a1dc542d670effd1040d2d37b7eaf58c17e5e97de731596d3d0f420122746eb87c3572887d0755c2ed19cfec9df83c059 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\0A7E7594E69C439CD52608F096A141AF3C4BD6DD
| MD5 | a0da4dfafc38bfbc60c569e97f07f1fd |
| SHA1 | 53c4de850f246e0254794bd67ff781d12a6d740c |
| SHA256 | 7d7c3961985e82b4430a9a03f32bdfbe8fdec737548472d6d4afdf314a832761 |
| SHA512 | 0260a3e6def586b6e69f6f0e7d809569e977e0ece37c4ca56157f27e4b916e7f27276d0a30aa50ad4689165cee469d256f4ea365a2d47af271e6e292acaf5f49 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\25E61D0F193C12CBBBE09A429B66070577263AAA
| MD5 | 36f207173f8153e01a6c9694975940b4 |
| SHA1 | f82bab587efa7c66735353c87f226527d2d6ac56 |
| SHA256 | f4060e84cbb89db918b0d2c23ed25783dbc7c3db8358597bd1e6ef0642c31b26 |
| SHA512 | abf20d1bbff1fffca9fdb617989346cdcf961920cb7951530752baff8bc21542bb240bdb575b9f1f356a8d86c709288d2cdfe2c6c6aa3ebeb1598e71c7cd9042 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3281DD4C79ACB61B312FD94931181EE61FD498DC
| MD5 | 1db566aea609bde74237b00b4ebe857b |
| SHA1 | 2229145aa25db160ba3d4176530988c90cbb9e44 |
| SHA256 | 3c82d47ba27bb26f757dba5bfb73f99e248e19083921712cde93f825faea184d |
| SHA512 | 3307c218b5d2f0b115361317c5ecc001e89c2a3865740cad06dae818cf3b702cfe900cbf2586223270293583ebbbd966085248b71910924c378518ed45ce84db |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\5A4328DD39865162DC61D5C65DE504821E18F607
| MD5 | 02e314c5a976a611507b9093b5a4f1c5 |
| SHA1 | aab06858fd8bfe8e98c67f9ddbaea6ff67e6d11e |
| SHA256 | 68b6f0dc7e9135fc0bb93dd239e03f44f49aff1ecd79481fe59e1fa8ee4c8546 |
| SHA512 | 57947c47f15d61f3dc2ee6610ef252a88fca503682ac5cba4f1a865680076a01f741993ea9080d2fe4f57a88f280e1126a0b080eba3f233f43642820f796ca05 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\D0AF9688BF547CD0A8E3B588F816B3FD56561337
| MD5 | 90f8e97ea87fe4e5ee377cefe0555173 |
| SHA1 | 7f091b568e709dd364dbc707f1cfe091e2e30bc5 |
| SHA256 | 6e863a2f6250f3056473bd381e99122782e2c0b2b2a2398ed3e193b4b64227a8 |
| SHA512 | 061450b4d5ac4c50b63a3d638bd61623028d1ccb05315dc0d262c6b057f5807eaff2e3913fce335073363b6e12a9d15ef58d2606b5306f544dca52ec8bcf5d82 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\EDD42E779146D7662580E5461828C119E694A3F0
| MD5 | 9df6d0a814e415960ce47e0aa462dca2 |
| SHA1 | b0b4fb2ca33ea131a9f3d1339d85d2d89f9c9623 |
| SHA256 | 012f1eb50a029f0fc25ca9e43b1b5a853ec0692ade1a42a26e96e85e0606e3e0 |
| SHA512 | c8a9c3f3bb61603c3e167ee5a59dc2fbd58627bf5d4708b21f8a54d50b101026480d952e02925a3a595e90c86af82b4b7bb567cc8ce1b8ee2949bd7b1f74a82e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\AF5185404BE87661DD7DCD70161C6C7FBFCDD32F
| MD5 | b892314b9d2b8e11975f7c402f960264 |
| SHA1 | 4f66251acb344c750aa2f72f8d683fff12e1b736 |
| SHA256 | 2b5bd7ffcacf9cacf04612c4bcff2d080ff9d94ca84a4a2b8440611c9fa278f2 |
| SHA512 | ea0501c476385ed3f8a38bf1102b1adf86bd2bf3908ba6c7beeadd4c824307d152838a3de69204996f6051e08f2e513d7aeded6285250cc91f1282987869e1ec |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\C63D2277AFB9D33AF6C3CFCCB684D58B42F37D12
| MD5 | 18a34527b90e6067d5de331b73915d83 |
| SHA1 | fa269d6c93962905560592c0877595350b6d92a5 |
| SHA256 | 18b589e7f7087f36000258591624dba3beeec01b4167b33465288d47531ecf12 |
| SHA512 | 88d09bf0b074b2d64546276d9af80453d4e51e9ebb3e3fad49d0ead3e23769e89166e058b2f2035da5a02e7591e6bc0d3a4ebc507dd0fff8c53a778cca2b08e3 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\E6C22A3DFCD18E3C6145370266896FF76AE3F7EC
| MD5 | 2fe59843609085339712652fc26c89b1 |
| SHA1 | 5e4bbd12f2f308604007c2030f0075aebf2dea02 |
| SHA256 | 5a2a8c59b1c24b901cc678ff49f540f3bc2655311eb72bfdfecb82e797cbf83d |
| SHA512 | d7f049d731f06b6e7e21088e7158408786d9381f22884ceeb142d4e2c4e6c85366bd8a97553a83aaabde36c6928d6339216fd5391dd9e5cd7b81221b92aadc00 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\7FB78C9D4678D3E57F04D54F36A2847939730A90
| MD5 | 0d1e18669a9f425c056606deaef9f8af |
| SHA1 | 60ca0deb5f8a3b096bbe2d50b862e0a4832bbf55 |
| SHA256 | 5f11866ed233dab2c856a218d21ea8efb2943f32bd9153b054c31b225eff079a |
| SHA512 | 1bd866b62ba67613db7e51cecfd9a31fdba39cd910bf7d3ac24189ef27fa14bef7d69c4cf839428f6950296ad705a81d12a02da2ea8fe32beae83b39ec13277c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\78FB1882E3C788A5D7A6AD94CD03786590B04212
| MD5 | 6fb57af222ddcf0bf1066acb629b6ee8 |
| SHA1 | 45c9849b03c3fd825bbadceb8ad08753dd85c1c6 |
| SHA256 | ac453603109943d54d259065aa3cb880a8475c9ddf4f40eef86282caa3009080 |
| SHA512 | 26cd99ed8a7719f0733313399556229aa30d2a0df4e0ec6f60417c681d55098620655297b86bdbeaf1b2a8b5a7bf68dc5caa8a6536313e598c11315810802d77 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\71BF779DFBCE1307F42244F92E6190F178BC7120
| MD5 | b0535021be3fdc2e04dfd7db43b3b4eb |
| SHA1 | 952914cc9327d1ea089bf44ed864346d4ae8f885 |
| SHA256 | e37d82042ac8344a13ea000df3776e20b781723743c51e0f993270fa133367c5 |
| SHA512 | 0399e9900e90a82954e582b9d8cf79b35090a5ae644dc3b44922da67564d0cea1f408bfcd8166d647b36942733d78fa210c8ff395a808b80c71d107ec83352e4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\6586F7B38489859730F9ADC10B28BFE43E7639AA
| MD5 | 6b09baac3e31765443f13d88f7e88df7 |
| SHA1 | f6eceaa50c05b2b92e692c8b19b1a7f0fd26946a |
| SHA256 | 0f40bd094c94b3337613a3310efa29a08df88133680c4a79802eb3d82d9001e7 |
| SHA512 | 7c4269b82450a977cbb1de06a8a94888cf768452054abb0adaa78ed74dd094959d9c4dd20131bb5d017b97682497370c9801e52339c7d79cb3b1c23752d44861 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\BEA4DD767DBD7BEF2D1146F1A7C7B6DBEC858F1D
| MD5 | 1a940d80015edc76c5b371ea715ce450 |
| SHA1 | b3c02847eab133b3ecd0f26f5cfea971622c5dd7 |
| SHA256 | 8bcaa672a0645ffe9d3606282f26a6bb7eddd1c0b97f28c2243d015e25a6b869 |
| SHA512 | 13473aada38775c7a872f44bdd964dafc26a5e66f4adb44873d883d48eeaa6763418e93e1fb195860fac6adcf6a00a80bfb822c28f3e619d467662fbb460d616 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\0A14640657965B8513D3F26C8B0E6802EF353192
| MD5 | 50117b43a4b80a77ab01b09ec8602bf7 |
| SHA1 | 4326e70f4d5279b0082fdfd61c59b2a8b99bccc4 |
| SHA256 | 0d7928d6446daf1da9dbd200387763597ea09e1282472188bf8b6e4840d75a43 |
| SHA512 | 84b74d2e716d39e2f556a9f90df782651f7eabb7316c2cc3c0614ae4c935a94b7ef730aa6b57f2d48440b3e2b9f844ae48a3619f99688df340a8f861dda98baa |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\56FDA3007C5480249CD0AE47ECF329A23B46AC74
| MD5 | b71553f74da7cac2bd272bdab834b6aa |
| SHA1 | b5c70a2317379434d361f2da8f3bfc13e59e232c |
| SHA256 | 5ab40de08f1ed0b0aabc64282572b56a937b655ca501c6f95c86ea895e072acb |
| SHA512 | b544a7a037b03c7c305f2ad21c44fd12e5d5ef55dcc3c359175976b2aeb2c50d2ba607b8f3120f8a645dc0de4bf6a5d6147e7f1ae4ca8f10aca7ea649d122242 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\EB469AD047A8F9ACF947485E2259971BFA26CA5E
| MD5 | a9e413afbbf716924d4ac1fd19fb5573 |
| SHA1 | 73defb6bb5ad035efb8cf5c564e832108ddd89e9 |
| SHA256 | df5862506e05e3c0815794c0c4dfd15ba62cbf987dd4a70d3b5eb9cbfa924f13 |
| SHA512 | 5d0974ea865637a60548739c63de20a982ed016aeaf37ab800059e4a1e29a70cf32358ee376d354237364ba58d089d7752e84449fa03a5dae02ce2643e4862eb |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\7195E941FCA64BD10F45300A01536208EE70B587
| MD5 | 066f136c633ef264b7a9dcf162ca84de |
| SHA1 | 4118a6a113799b7604f753b98af247af0cebdf64 |
| SHA256 | e28fbc1a0dc730ee60b2290ba9d3e1fd146391844dd631444aa71165a0b8b3e7 |
| SHA512 | f3821ed13ddab980f7163e5f51ad04476aa7b98ea90eb31e926417a57e394b663d6725a97a2bc8afd250d0295c698f71466134218aeab88902b2abdf063dc42c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\51B7F3E61A4958EF2CD262BAEEBBC1CF8785743E
| MD5 | db2087ab29a0cdbc6b6a2f3078712424 |
| SHA1 | 3c10d4a15ba4f0cb29ca02fc1ca3c8009b3d5f77 |
| SHA256 | c8093b7a46549cfbb1412a8b8f4d4bcffdf2414cadae10c9cac6fabf5237627f |
| SHA512 | 21814529831d4dd6fdd832fe444e7fdffdc9ed7441c65a4807bbd1c6f635dc59183e95cff2cda8c3e643bdf1315c51ad7e410a004ce8ad46bc3fb2df963a6914 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\9D7E9CBE75BB4D0216A8D7883B26F2F0AC422E4A
| MD5 | 73ec305528319ea9c352703e17a66acf |
| SHA1 | 1bb74f03b49df0eaca8298c6421671281d7f90bf |
| SHA256 | bf162ed825091fb69082d601f39eef4c2970f2b94ca41a5f1d6234984f059e95 |
| SHA512 | e930e678103546871aa87be173a9c4d6660b095c6a50264b7b048090daf5a890f65d6758aed13de4579a1b9ff46ff720738e3f2af5d35142e625e1db6d81e45a |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\D207CA89781848E7ECA4C658F22D4AEF1B168DD3
| MD5 | ef5de1bfd59292cad2626b68e1f75fed |
| SHA1 | fd4c4416141581f26386403a72b94b86d2a6378a |
| SHA256 | af6b2620d05a24a4090c4e11f573e38ffbf243e07777b8208e9fb087df982ad7 |
| SHA512 | 7c75b8a200775d71b2465873a5fadcb574d6ba562913d6908ebec011eda779bebe0466644e466d4ce663bac6cfa324198fef3637c3991886d4685fda1bfe42ee |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\0BD799F06774C25EE2120FCFC2A12A0C35A43228
| MD5 | d55bbc9873f2286322ecb2186958ea29 |
| SHA1 | d50d27de41cc62ba2b5b56f2c296d72644ddb654 |
| SHA256 | c53329dd74d5ed9d4c2ffac3030ff6afb0afc697bdeed458b2cad24139d30e38 |
| SHA512 | a503f9210221bb9e5d16e5a2f7e8d2c796b7beee98f1a771cc2747e9cb9ba12c784a0ae3752a84b1cd2a756355e6fa1812e352aaabd6ac616097a2927a0b166c |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\090C33A752B2CF29929CB40BE0A77866C92C2420
| MD5 | 74bc891bbe75706d89c12bc53918dc74 |
| SHA1 | 67878611618599108ae567222a1270572d1bd6db |
| SHA256 | 45ffaeceb2470198bcbbe38d4e302ef3d6a2b59c8ea5a97ca200333bc7f33d05 |
| SHA512 | 6117e76f4c1322b473e4b257b0755ee1a94d2cac06d80ca080952d61df47f47ecef361df541424676acd8b4ca3728d3b6f33ac15aa7b6112d978effd8fe21560 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\8E58DBA2B6132702384B07933B0AB38634C3B389
| MD5 | 494e05ea8deba1198db6fb1dabfa7eeb |
| SHA1 | d8dd3367d244d4f5aca52878aa25d92dfa0c3631 |
| SHA256 | e8ded6abdbb95c2be07ffd2a59928f5fc325b30429b75615f0852316d952cb11 |
| SHA512 | 3df8aa7314c0d6f16d7ecf80b1f5ba68c7764cb8842e6d0af1a4921c01bc0d30eb392bf3bad3dec6d89f9b50d7354f51ad822378a94992efd64f28dcb9d0573f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\B8342474273D37A8A890CF968C26F05C940C66F0
| MD5 | 19e2f7a3c7579515790dd0140245bca9 |
| SHA1 | 5b784d04240ed008dcab83ca50a6820920b7c970 |
| SHA256 | 9fca75727f31559bc5affdced91e64a4900d4fbcedb59960dd8d2cbc4f7b3fad |
| SHA512 | b62ac8d0c74aee89a7e2230517bc42536cb8298bb53399641145f55a09846e4fd1dcd7b1d180be641236e6802e26eea68d0dbf2336056ab420d58d43a2fc444f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\1D52868987624849DB6BBFD502AADC6A5B458D0B
| MD5 | 888b7d75f21e67f11f06a5b10beecc74 |
| SHA1 | a4ec7f9203c8d02a928c17a31d4ea60fe4b5c1ff |
| SHA256 | 53a3797a7c8b3eff121ca365c85f98fbb502446fd0939568e9b7176f4adcdd3e |
| SHA512 | 0bcfe717f4a71a34e6a0536e246cd0a9e584451ee0f45b50aea8eb58a763875f0eb2b2a6413571049622de16facf79503ce07f9957ef2ec24a037aa3121be280 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\AA760A3DBDC90071E7345327E1D0D2D023C9E436
| MD5 | 9bed25d748a9d2188c253bb44db2100c |
| SHA1 | 214d1dd0b7539e102922122113faa07a4476e70e |
| SHA256 | 37d974774157d43cdcb9dd69df8e7d13060aac737815b222652ebb6b51ebec73 |
| SHA512 | ed44fe9f6567667b6abd73b6dffdce552dc1342c44b9e37af20d62737c9a39419f236252ca34c9b5a9a87922a345fd65e673ccea4795c8bc2a68d8cabdf8c071 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\9F73202CCBC4D299254FA58CA5A84115CD3120AA
| MD5 | e4e643fb42ad4219be5bbdd1c52b3110 |
| SHA1 | 995a4f09f77e43d02044c3b4c800eda01b20ddfa |
| SHA256 | 6a780c1e420e63ad3e3be321d4f2a8248374b3075926fa2a0a8e4b3dd6bf0731 |
| SHA512 | 9e82ae77d8b890ccd1a815948412f8142ba724b86f8ee29b06575ab92046adbf85720321fca7aa1c88c4306483ce82d8f8277ae3f4373501554e62c5e696dadc |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\26437DB3B2D92E31130C551E8407D509A5692A9C
| MD5 | b4dcebc19d382b3e9023ab9469c7af1f |
| SHA1 | a6ae7ec841890a52c518547592794c62e10c9867 |
| SHA256 | aaf88c9b9fe71c013d49f6b6c3bb78787c6f59d7173e8c9f05c743aee1ac9d51 |
| SHA512 | 2b6755fffd2cdc987f7de4c87bc9598986aec6b676f1efef75933824cc87302c69dce11849a7743e4f4b2fc14ecd6f17322ce5ebf58b22bf9aeb00ca663202f2 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\3930490DF197F2E8AA8F589EC09C30B6CF1E614F
| MD5 | f182e66f97eb0defb7f88e121a6ab333 |
| SHA1 | e664a11a63cd209e6a5f371f9747223f332bf058 |
| SHA256 | 262867885d0eceb6e758400b13c4ba37430063451e6a5e0d698f11b86316cf14 |
| SHA512 | fd91230b4e4c6631ec96478dbfc1d9459723b99729ee93d00d9ceb2edcffa9fc1a5f0ab5dea3225503791c3651678b2c5000c1f6745bd9e1227749e2a10d1719 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\2CFCC364A7B2E7A8E9AB96BD93785B6E9759AA7A
| MD5 | 2ab9b0ef798510113a866284e8e439c7 |
| SHA1 | fb9195c347e93878219413b8a4ba45006c85a7fc |
| SHA256 | 9a51fda27f5616bca19166502cbc08037e44e43e2e12b1761fd13e1bb81ad81d |
| SHA512 | c2a416e445dfd2f8c46cc4f9f8fbbf759eb267afa904ecbe119d9386bec852d7d3bde3bfb84ee6f349b8618496f27dc236c65a55d09dba065e4c90c71300b215 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\dly1kncb.default-release\cache2\entries\A6C74BC2260EAFF823C7AED38BBA607C962CCB55
| MD5 | 6debb71c00141eed947c0558ab131d90 |
| SHA1 | 6568c820effebc6ff12ad667c4edeb9be91f6aa7 |
| SHA256 | 133a71d4cd29a5271bd868e15f344545f49f83afdf8c347998d752ee9fd56f4f |
| SHA512 | 1fe62e0d2c32610d879734acee3cc4e465f063a3bb7ab63c6771c5294a69ac5a781366315960718bc72077464d2dbd9d583aa76754709aff8879505e14007365 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 2070f38a69183d3718738b5e7ff988c0 |
| SHA1 | 27045c95810250003ee758481baada711a9cf46e |
| SHA256 | 931e6277364c6c2c6b5d6f61be38a72ef01d774663ed17826dd6ecb18e66fa16 |
| SHA512 | 69fa6964fcf4942596d9026a46034629d839b4783472f0d04f5ccf507585974f449ca7a68cad17452d27a1c989dc3dcd85ff9e365afd49e5eb514d8fa1c93ccb |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | da1f813f861db0e615cbfb9d7a40a3b9 |
| SHA1 | 92139d4f906963bd2591d5ea2c5c0c42b3f439e6 |
| SHA256 | 868201792e32b5e5ff1b23917ad6c00ccfb94a128b0966a07fc899f376b57361 |
| SHA512 | 29024d2814a0ff6df84c6cae71991e4abf656e6c7b10617ad98f430c67931891f2b4a9ad90d011368bebb615356b7da3972610031e178fc35d29fb8dd14f51d5 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionstore-backups\recovery.baklz4
| MD5 | dcfdd4eab508248123a0b2bb24af9500 |
| SHA1 | 1f8078ff95926dbb66c96d5f1b8a04efa5ff0c6b |
| SHA256 | 365f765ee3b67385b8be1e3f15a0fed08fa46501d75c178c35b028eeafd94a3f |
| SHA512 | 43db0dc93462ccd4769eee1af558aa5bd453fcb36ff8c4689ee5362450a2f84fd2afdb4938b92ebddbf26c449186b493fbdc5988c22b40c6835289ee313d2e61 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | 739b614ddd7a50c17484b181e922c565 |
| SHA1 | 8eb0c3263eb8e8cd71529ac66d3459910a1470a6 |
| SHA256 | 64918195031262d15d7db5f550b216ef8b63339cce17f2a8528f488194da4294 |
| SHA512 | f391f31a259ecb6406b39af08c81b8ee54ffad2ef65a79a5b4c3e8a8063c3b0fb8ee19a8eaadb55c2a04e8d66fbfd9bb6d73945e2e8ef08945df8a9949e7afce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 84545b173864239b85df78b98ff89266 |
| SHA1 | 5c8a574727045b37a6ee3650e96d280565e6f43a |
| SHA256 | bcf16f22136d278e9df39e7a3441dc1162e09e589f73cd50aad71b1581d079f9 |
| SHA512 | 7adf48713de7c8e6f951cec7e210166a306a33792101eb62b772dfbdaac381385eae6a1959d92894251058997bc6960aceba5be064c6e2b3d9e48cedeb3b2e4e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 728ede23d47300e631767cedf5ca213c |
| SHA1 | b34f05d1149a720c777732b97aa328bb565e773a |
| SHA256 | 74f0103dd73833c23853939128eb4335a86d36d7da174583ecefa9430b2fae77 |
| SHA512 | 17c89321711cd0830f6cb1872f69cbf59cff8f293c404fb4f5ab7e612572adc26134fc2f361d3e96844efd1e24a959cec5661893a8a87260fedef3cda6b4e85c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 96f2886e2097d41d8870c2b5be7b026a |
| SHA1 | 10ce82bbcf74b1be2c9f58a90a2843b9a1f4bf59 |
| SHA256 | 8ee392c8b53be88894b05d9617afc2fd715d430bd5a4b7b0f53270cd704e0868 |
| SHA512 | 87c6bfb3a3ba27a7f038072ea599aef4f6cdd8a9a826bcc349d0ed7309950dce08836ed58fc8d1d97cb676faba8d5f37ece7f8677deda946c4f90750fbda54e0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5ebeea3e920bd1c54228835c01e74b91 |
| SHA1 | 125681d0623dd7794000c7c65fa38e123b26bf14 |
| SHA256 | cf29d447858207e030f20ab511da4077d4b42e0f91ae9e6d6d20007147f5fdca |
| SHA512 | 6f5b1381e1d66250cdc1989f52c6a5519b430a55fb9f955d243400abb737854094da8994fc491e2be869dd66394b85db44c18bca2c257be66ca32011f45d440f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 693a04400303af80dfe7e639ab2f4625 |
| SHA1 | 92b08b90070f357bffc2509e798f6cac8e1536db |
| SHA256 | cac81b5ec0c0e2a799848b72c2fbcee2f085e93333876f1a7e5f1eac969cd5d8 |
| SHA512 | e81d3fa04372d67adf38f42d873f0da1437d6825e4db1575bc6cc1e961a1b2726ca3b97f90f2f7f5c67000f0249489f3235da4b45007aa9901cce582847c58b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | 503766d5e5838b4fcadf8c3f72e43605 |
| SHA1 | 6c8b2fa17150d77929b7dc183d8363f12ff81f59 |
| SHA256 | c53b8a39416067f4d70c21be02ca9c84724b1c525d34e7910482b64d8e301cf9 |
| SHA512 | 5ead599ae1410a5c0e09ee73d0fdf8e8a75864ab6ce12f0777b2938fd54df62993767249f5121af97aa629d8f7c5eae182214b6f67117476e1e2b9a72f34e0b4 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json.tmp
| MD5 | 648ea624280e409ac3a7f120b5e9000e |
| SHA1 | 168bd9dd85eb0603e0db6bef23a0df64f916bf83 |
| SHA256 | ea208bf36fe4e150165db9ff5972004c6f468114058d6dbe5d0350f85e8fc08a |
| SHA512 | 49520e85cd86cdb0b9fcefecaabc99ba3915ed5ce0b622ffe752de94df6d1fbf3f2fbae13ee18397b32477aadfb23280e42be6f92ec1c74feb4f246c60eb7e32 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json
| MD5 | 65690c43c42921410ec8043e34f09079 |
| SHA1 | 362add4dbd0c978ae222a354a4e8d35563da14b4 |
| SHA256 | 7343d5a46e2fca762305a4f85c45484a49c1607ede8e8c4bd12bedd2327edb8d |
| SHA512 | c0208d51cf1586e75f22764b82c48ecbb42c1ff54aa412a85af13d686e0119b4e49e98450d25c70e3792d3b9c2cda0c5ab0c6931ebaf548693bb970a35ae62b9 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\sessionCheckpoints.json.tmp
| MD5 | 948a7403e323297c6bb8a5c791b42866 |
| SHA1 | 88a555717e8a4a33eccfb7d47a2a4aa31038f9c0 |
| SHA256 | 2fca1f29b73dd5b4159fa1eb16e69276482f5224ba7d2219a547039129a51f0e |
| SHA512 | 17e2f65c33f47c8bb4beca31db2aff3d4bbb6c2d36924057f9f847e207bdcb85ffcbb32c80dd06862ffc9b7f0bd3f5e2e65b48bb1bc3363732751101d5596b1a |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\favicons.sqlite
| MD5 | dce062ab2b674a86cff5e184ea6805f7 |
| SHA1 | 0e3acb9a616d6364a9a691669e86d3d771dc161f |
| SHA256 | c32924a1bf9c6905371b0153d0f12795c678ae0a0b23ed86b5b4b99baa27f152 |
| SHA512 | e3b15754be75224ae6a0782263672b1290513d4d9f5f28ca080aa46297c1a5faf145857a3eebb33a2a36ceda72c45bfe87b3256fb691deb0b9100f7998e529f9 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\favicons.sqlite-wal
| MD5 | 67e0466102328554b4aa37a9e7775fd1 |
| SHA1 | bb498d42d12254e02d4b1640f5efce63339bc2a7 |
| SHA256 | 86c12b82bde24a88620bfa98ee8c737411b4bed58c74e444f1f5910831af084a |
| SHA512 | 1f48a2c06a0674ca087341f198b3806b66af412d3d14bb813a022fd759fe632b292fb24eaca25a46aefcb6238191ef4ae5e1f92fec9771fbaf33a804ca0b9c08 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\dly1kncb.default-release\places.sqlite
| MD5 | 7c99144782e00cef75c45652103e3ea1 |
| SHA1 | cd7b96254fe99c75f9c3ffc594ff0dd080b7e1d9 |
| SHA256 | cb2a50fccdc43c759a1a21b135702d3a127ea4cd0b0c1352a10f4516c3c608ad |
| SHA512 | 1a6803c8c25c7f81449a1a4f65db28b31edc0b18fda1426ae21bb9066a6dc5da429cfdc71d4b7a68ed5ea5aba795076ea77a7f55e27245462b8f843ae90ba5e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a7e4f05d37f61d1163463734bd6bc16b |
| SHA1 | c73b9b83f05ba4012b9dbf0e1fff1e58eaf3f42a |
| SHA256 | b90c7b052d3fda7bf2268b3ab472c8caa3c34791ac2e6fbd750065f9d8d31400 |
| SHA512 | 81aa5fc8e4283a3498e3cf5a4b86dd9509ca970e634118e2dec70acd891f012fbc82be7f0ec52cc77c3965b45924b6260ccadcb449ab4cd854cb4c12e6d4ac78 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0a7fdd59e3fb9039de28fe82f71e616e |
| SHA1 | 2b14af7f02f0fdb2a294911bdc8d3a6a04ee1911 |
| SHA256 | 633dd0dd4abd988c64a654f71b57b6d058d26120c19c50d71d264044f6220b21 |
| SHA512 | 25c18c2301455a9b23359176b31526291170be4e815da2a34e1950ad7259758091d66cc8003e2fec3f83aa8e4a7e165a96645f3cbbadba8f5c9a35c37fcc6d1d |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d71b0f6709fe07147032a9f314b24ab0 |
| SHA1 | a870c3b7f72bba92d40fddf5533d991a8d9d0f2d |
| SHA256 | 7e3dffd2b89fbb4019512f6cad2c0284105d5c050cb5be21759c56a37372db9f |
| SHA512 | b9bbea553ca048f6cff82e8c242fd512fab285930caf79ab97916fb834d3e40649a1bc19c4e6a18935299c40f25e0d7d6158a30658d3a31c0b09ac50d7422d98 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000028
| MD5 | 257a24423f34967fa8b45ebba76b8f83 |
| SHA1 | 0e9845e5748b38e55e0aca482bafbdc02de623d9 |
| SHA256 | 94142cb2b15fde8534b13c5c60735f4601ac8add379521b5c341e1da6843a0f0 |
| SHA512 | d33e899e3a4f4512ae3a2c4917ee694327420da06e3e3e4b17be3948326f06c5c3cf579ccafb62c9156627235742b02ac857d39a58659cd2367320c62efe1fc8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a
| MD5 | 854e4b0072b8fdd48c3374d6dd47fd1c |
| SHA1 | f6b76f85a878bc72d0b8c5ab897cd89efac94e78 |
| SHA256 | 44391250513388cb67b990b80a0469d2a83ecd77fb62769cd8e582f300f4d75e |
| SHA512 | c64febc1e388a7c1c5bf9403d7a0b58c347a03c9d0cd048f72377da269eff7567081d5dd4e6867fbb3731f54854503ef71225f8f5dde4372a6529aefe70070a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b
| MD5 | 42d18b064002ba46bf9fab295eaa3fd1 |
| SHA1 | 94f2c37d5d50644c95ab6b4727268a2afa4c914e |
| SHA256 | f83f906db90a63bc8188321b25c71fa0d12a7ab8ccdf0548d543a8d981ae5dfb |
| SHA512 | 47f4e3747f21a473ea3c62d359bf380c2e9347a72a736d5c469cd4a508fa6fbdc1902feb3fcf11321ab0baaf49fa1837422716a447d53d3d4da59c8fa674534a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d
| MD5 | 53ddc11bff6a6988ee00bd60b3a0559d |
| SHA1 | 2262daf9604e06edb14a391a6b3138ed694f4a63 |
| SHA256 | 62f48bbd45ed2ce895d62433c2f791e8f046bd4dd694e51ac0e551c99e73f5ba |
| SHA512 | b2dc91411ad8d0c1809a1501c4815854c94912553bc32982554fa766a2940d8defadb050242953f0e3d186c468d5ee8498f518e757e75983206e581102513d50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c
| MD5 | fa297e1a0e8134bf2e4e9daf7f597ff5 |
| SHA1 | 540ad0f380d851358aff3a3ce87b862fc1c067c6 |
| SHA256 | 490b5cf81776b3b1a005c98a63c3bc97b975585bb207bf5bfb89c174238b241e |
| SHA512 | dbe102d2b9d8b6fbb447e043bbc5f120df01a3c827a960de129b46eba1a3e1260c31763dfc1483ae1674f4700f3ae0ec05364477ba741a6b7e55c1f9130725ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f
| MD5 | ca1b1ead9e584bf34488b6fbbb075d41 |
| SHA1 | 43ca1d59185dc1a70c4719c42a6954c769977d72 |
| SHA256 | 9fa59a1938d53b235e03e2d7222c0d2085cbcb1ba2f712c7c5c3c6a097ef2094 |
| SHA512 | be64e16616b9bac57ce2c95ca69d3ded25ba85b7a691a887a1ef50461b3d6be10ff230f7013664ea83378a6492b05bcec206e57d17f20f432c004ea5ed3dfb94 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030
| MD5 | 859aba891e32b946a1e25ad36420800b |
| SHA1 | 07ba93f5dd23d916c30b6bd388cf3d0572584594 |
| SHA256 | 8881ab7b2a85331d7e94f64a54b0aa4226573f1f670ffedee92cd2742d5ae061 |
| SHA512 | e27fe742ec73be24e9136adb990344668ba19ba660a5298fa31c385f255f446a38db0aead26c63f6d97157321794e372b9c4c6027c753725bbed16d6923f1639 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031
| MD5 | 45c8c97dfb2363b100b8b24127dc2930 |
| SHA1 | ca83bc20a2dcc0355adb137c873c07215d66c369 |
| SHA256 | e272a14f98686af25e429790c5575695af9f65a1eac4cf0af7d2a8d4f22ace6b |
| SHA512 | 1fcd7ffcf9e1ff5b4fcde292a1dd68994e2f38e9ed6c0064e609f63ca3c1e0000bb8af06a09729cf09d629883bea49e1ee07125ce8367a0345005ca90effd3a1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032
| MD5 | 77ea2a36cfb1366d7239c9e58eb26e8a |
| SHA1 | d130cc6c0183f8ef2b521d254f1bd1744e83f017 |
| SHA256 | b65c1769e390442e8f1a783d17264d4b914a7ff1ef254c8033738fc2de5923dd |
| SHA512 | f394440a802dd7db0c43d7ebc826bca9e8bde579f846297a484f4e1ee194daa12a33e7712e9407d886715bcd8f874e41db1a7248ad33323cd481565ab9cc87d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b8fcc7f66a36ff5e137200e0fb858ccf |
| SHA1 | a27424e6a893ba492c72a9345a05c303e2079aa1 |
| SHA256 | 961347326eafc9c1286a5cf02f355aa5d8c23fd7a3610ac3816057d1ab6fbefa |
| SHA512 | e311252a87cde0a20f08bb476d083c60f7244999ef53aae711f1a95dc7cd4a2737899f0bfe52efd4a31383ee17fe0e6781383ba0cecc655e552fbd32ea752901 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f3b4f7bbd0cefc4fb0c873854fdab3ae |
| SHA1 | c8195131d9718370cca0fc59f4d84aa8b1a54149 |
| SHA256 | d092353709446572c167120a40e7717703e1b3c4050c8d6845dd9bf82ac9099a |
| SHA512 | 43b0c8ce5a689630e2d7ca5706bcb76417e65231300d1fe88fc1ddd765d1601d28a95ef8868402f9b14a4e77a2e62e18bd42f87f45d1bcbe37b7fa8e3c4f9328 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035
| MD5 | 4e786ef6de6d058a7ee21d714b5878f8 |
| SHA1 | a25cf3a4ef2c4208064a295fc00bf84be1557e8d |
| SHA256 | fd7a0097dcdb4360e99e3131665aaf1cdddb65f638323d8dcd86832ac1c65b57 |
| SHA512 | 79f32a2fe5204c324bcdfd5b11b3d7423cb8961e61350ef8b1a40390212bb1f2125be11aa9a8761edb2fd4c760a39c9f18394a8bd8bc55148ff2937b4ea67bac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036
| MD5 | 084a7c45c750134bc52120929e4adfa2 |
| SHA1 | 7caa207a66cb97095da77cb26bc03c05e3e3e3ef |
| SHA256 | d897e13540624694573d596496a442f317069973a8bd8f9464b2ee91406fb990 |
| SHA512 | 6aac3796f0435096a86e81ef9bdcd0186ecf74d35a38dbcd9d5c08662fe707c50d015453bf7eef1cbdbade8fca2779aded56bf3a2407a5ae97fb2a6eb1092f2f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b
| MD5 | aa9d4b0371cd9ae330d7b131493f54c5 |
| SHA1 | e83c2b6b6f023a6e00d18f0c9ed6b8ae9bab1459 |
| SHA256 | 1ffe9b8b344a25a19f33e5900aadb00e53b8bf1a22210ab66c7b50bbcbea45a1 |
| SHA512 | 337e27650c4b534683c8589dc4787eb9bcfecae020bcb1a507a1530b1fd7562ba8d185157e8af23b06e80cc70136f51bbc0fc0ac63e581e34e410c6d08d398e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000041
| MD5 | 50fee96b020979b5d3b1ef885b1f8d83 |
| SHA1 | c063d6883c0f8ca599c66847cea88109aba8cb6d |
| SHA256 | 6f16b4d447c08c895e2ead7983cbe0e615945a76c4ce4a3e54470eae33576464 |
| SHA512 | 1899d6eb265cd53ab6c60d90131a127ca9bdbd3dc741d3eec4c680adcbbb44583d03de4fd6bbabff4e8b08d6c9e10ab6290af1ce2270c87a0496db8980dbef49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000042
| MD5 | 46c65c348f90aa174bfc5f9dbacbc3a1 |
| SHA1 | f3f1cb408e89e48b14532730632dba27858d2676 |
| SHA256 | 0b36587fac66193c3e84fc32c4edfecf3b9a8717aafea51178f5480239bfa008 |
| SHA512 | e18be3c74e039ff4297313b12abae8719e26eb852724a46f119121d008a7165e249bc17d17b3275a108e6de14b1bc443a7827589bc4fd46d616de699b8294ada |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bd1b6b38a4fc7725b36125b561e60dfb |
| SHA1 | cc2a04e748662082479eec3848830ff4f9f95ad8 |
| SHA256 | cf507bedd0215badc96e4314d760860ce7c9299c590a4ab76c65a00afaf65ad5 |
| SHA512 | 59bd051d29612f3c94d704c574c6745d6f7c0acf91398971c5ff76187eaa36e3e872d46a36c157d71076c7ab9232deec2e0694e044b8083e26dcc84ee4394259 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | de348f36678d8a1217a9eb6150956e51 |
| SHA1 | 9dd32ab1c1bd3e4a3fa8f46e9bf67497776c2e8f |
| SHA256 | 68ceb094fce2c8f23839ae2d6c64029f3e900b745a8f208de76d84c0e770b1b5 |
| SHA512 | 13e8a938c863e239b9795faf23403812c97171cf4c3d1dd77b30c38dd8f842b711eadf1d109db95c24871dee2a37d7b7d52638bb66633df4edb8cc4be0c9d304 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7b528d5a94af851d0f7d9e3bd57d9dec |
| SHA1 | 5993cbc6fa742305a3161d1f863278412f6cc4de |
| SHA256 | d93208aed92806d212d22fc9450a1748310657c123fa178bf4ed90402223c574 |
| SHA512 | ee7aa345cefaed6c44167ff20ab9376d21298c852cee107b1709d91b86abcfcfe653aa208af2adecf28ec24a31285f5394fde14f1699e92a18ce6f9fbca1da1b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fb198ff33a71a1a3c9c6e9adbb15ec08 |
| SHA1 | cb337774f4a02d51ad403250c14892685ca39b34 |
| SHA256 | fb6d2a251837c01abcc438b8d8a4da001b5bd113e1568a38cc854702a72c330a |
| SHA512 | 167fd2d37ac5c917a5b71ae2360eb43bcb995d55fe6fe1593f7d9ed587614d00409538225127c4ec99bdd57469257ce9db6f0f384ba006097b3a91512e23b455 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4243abaaeda0f3f923f13fb81c75abaf |
| SHA1 | 6756eaab637df18ad1ea4cd9d02871a275332cff |
| SHA256 | a59cbfbd0858be86ad0e1e08ac6f96acc0e118ca81188ade9e7b6f7aa0bcb599 |
| SHA512 | 41d0cbe37f568207ddf12a56e393078792fa7df418ac0472eeb1d476254f80f671d303bda5cdde77560df5eb1c45f515d572857d955d60b8c1fab38fe74a4878 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | fe2752d2a68c7d306286c347de5cc732 |
| SHA1 | 88baed8f5c41bb99325e640f44d8bbb26621ef01 |
| SHA256 | 4e1518c5040507eb57f49990e82aa1ded405701c9014b667c7448273249384d6 |
| SHA512 | 562f8bcfdf49be64dfde6e91b7c82e803dc592c11e56fce9e217cdb557758671e678a8f941ada582b5e678e597d9b6bffcbdc6fb6ed3336f15f874f587d19435 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 488773a61a23888f684c8d8d13f2f2f4 |
| SHA1 | 90f15f6a71c2682d83eee60f12f4b12efcfdbab1 |
| SHA256 | d4bd4691f95095a2698b7c327edc991445aec778ebeddfc7db2cebaf33688dc6 |
| SHA512 | 24bedd6a9659527cf52b44b075555ef0cb5a18d913dfb8edf412af8d435edcac4af583ed760f84e0cdf2bc355c17a6c293dd4b45ac6c35aefc315e44c9511107 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c29b027bc668f18c9c217a110b8fc423 |
| SHA1 | 9f63200ad138abee882300abb15c99caa91e700b |
| SHA256 | 9ea1e2a168317ecd59e92f048a6bf0f4b75bea69e305fcd709c4101dabed163a |
| SHA512 | 5eea81d0141005612dacc656d5a0ffd7ced73c325d0d1d2941bbfc0a52d14da8933e9e66953e4b14d53236ba64cd35ddfb83732feeeff801bfb877f0c9399cf1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 90e8abafd48a4754d6f7a34419fccc68 |
| SHA1 | 16a8a74a87a7dfc9bfa2d5a7e449ae6c413bbdfe |
| SHA256 | f622fca4aacf041e2662449fb1cc0b1b44da4c4329859aa09c53113b7b1fd7f0 |
| SHA512 | c12d86641f42dbc7a4ad703b72486e0b51bb5a0986cd3bd0f54e298bacf87eaea1b5f0b208f19464dd037c9e4d09a587f63929387ec8a69ea3cfa1614aa61417 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 89cbf1cab8e10e442b44ac63c56459e5 |
| SHA1 | 3db8d5fa7ab135ff2f118cf6ac6dbe5829b09431 |
| SHA256 | 1ff64f10b3d89ace186654c8321c1af40edab48951d85606cd4200b8e03b7585 |
| SHA512 | d9a3c1f4b1676787dcf36e894f0be49fa73429ae232c31c268730ab7234cb80a1aac2f28015758c70cf66c3412dcacbffda172efcb2dd0b4f4743fff8a17421e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c861ad741980c974aab7beb3cbf1c969 |
| SHA1 | 083d39127ca5b18ac1ce73c7c4210ac3a05b1a47 |
| SHA256 | dc487d83f188f652d96ff319fd1a87cf73e3a6c23cca985ba669486622f4fcb6 |
| SHA512 | d47fdf3f2b8624ab74bf291f953bfcaf540621df5def31d5a69f32258c10858a373e9a8d57cdcc4c17aabb1328d29c4e5a7c480b7cd9207531d87ea3fd593677 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bd351bc635bf2866caebb3877ea95bd0 |
| SHA1 | 30e3076a4e4cf13105c68112617f8393b4c09c27 |
| SHA256 | 95a8012284bc72459c95a9e44d71d59b8a00dffc149a47c6aa71ec2ca74f70dc |
| SHA512 | afe29327d2d4559a7502aa003eb561549b98e20c57c974bcab1497668ada3e993b525e0f13f36ddf5c58bc2db011d8baa31d61c22f26f26ce4fba735913322ce |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 369698e5c94cbfb47df2b57ee6586208 |
| SHA1 | 38fe4dad6a3deaa64d5906e272d62649cd9fda75 |
| SHA256 | 518c7e2c4267982c3e9f868a710222fe74c97c5af1d0f73240285246fc31800e |
| SHA512 | 6bc372b9a64149bf27749b36c92704f962f4a5302e4d8c7ff001af3d003f36390fb729b87267e6d508f350901d5afd2fa137bff5a00278d39c4614f94c9a25c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | afb7c2fe77edc81de522482a77608195 |
| SHA1 | eb41980f8b5ecee6059864972c6d988a62282f10 |
| SHA256 | 4a656c9723085c50603430eef1dfafafe802a4ebcf2e416dc80af75d0b49dce4 |
| SHA512 | e6c4ad4597840b683da4a21b70bdeca506796a15960ed2c13736bd4c88e8bdbd909bcb686e40a5cc2c23733ebc8a04178008e300d3ce2889e621ca72900e94d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 57217f3bb67ca348cfbdd2e255a2479c |
| SHA1 | face5688f7532954d055669899a046959d2cbfd1 |
| SHA256 | b736d2f9f407b87a52e5bc3512913194edf6ff8712ad5f5d86d13fdac2ad9246 |
| SHA512 | 8923bcad585ba4da794242e2cb171fde2b5a7d5f0e72de3c5203e80d0211470055ed52b792d0bf24b0da8d767d14ce992d2dad9fe82f921af7a5dee85e68b7b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\178946e7-7cc7-480d-9d4b-4755754eac4f.tmp
| MD5 | 2df6eee58d074ffec9bb52eeb2120b84 |
| SHA1 | bc46d0f12388d10a6dc20d4e95e04a76c83b0f11 |
| SHA256 | 727c0b68681f4f1bbfe8036e45d34198180289cd2492af7eb4c440ac25b75971 |
| SHA512 | 377f762f876980b395824718a9fec57e0f297633ff47901ef56519038cab4c075b0df1a72f97a91f2b5cb441ccb5df295c49df1028454560615c78f65acd2372 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c7547449a83334f124d50b6033e52eeb |
| SHA1 | b543e833050dfbae3ef0f1b73558766f0d048be2 |
| SHA256 | 8c2cba54638d00a2a3aba432c0274de2fc27ef5fd0792e7b85eb7843c1e51f57 |
| SHA512 | 5b58c892ab265224797af4aa4bf5cc91340a49cda4ccbf0b18cd85498ae21b0d47cdcff75dc188f091455f97ef17874ae93cf96c0e86fc51b215e4a77934e6f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 625e393f84defc81f90e3284d6705f81 |
| SHA1 | 8d8bf73ad7840084f5d4e5083c28d242a5c89015 |
| SHA256 | 63657061b655d7f5710d02141f60124484f8a047639c9c37ca3cd3e644312c69 |
| SHA512 | 809dc1f8441c5c733fe1583d243bd39aa815ccc6518d6f8531c41f83a23cec2da45c8b01517ff6bc5855108f7f24c27c1d2999b69a3e9ebd69b24088215e2bd9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5ad58234a65fb10e67483ac92e417671 |
| SHA1 | 27274bee5c234d215db4f686d2ce6a9b93ededd2 |
| SHA256 | d130994bf31fb2e9ecb460786c4022b76158e2b4c413c76a8ac40615557895e2 |
| SHA512 | 793153edbf3ee9adb57ce4374a756cd6b0c614676ae2a770931a0f121ea9204bdfe89f052ea63ab51219dd21d562d58ade914c36785d7f45ab5ecd820fb7357b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ffc8103446ce7ee0a14d65edb0c7e7b3 |
| SHA1 | ce65a06db878ec642d12c0355ed844bdd8301047 |
| SHA256 | 57d9da5a327776661b6b3988e23b98e2a6ebbcd4803e382e023f66e4ed54766a |
| SHA512 | 9bd6bb7985f504af81fbe7435ab16b9ab73abecb51d1b7eab0d2bee0c037153958cae5f8f06f94584b0bc8fd69a42da8f5691c240c8d1f3f784b44c6698e93cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004a
| MD5 | 913e0bdc0124f415b1e99bc7c1a2e31b |
| SHA1 | 00a443e70039641d1ea3dc92c306c4e2c75733ad |
| SHA256 | dea3dcae56acabada707a1c3ee0422fefa1f280aa3ca2c28c52714e16db060d2 |
| SHA512 | ba0257002023ae1b575356000cfcb96dafa5ca3bdea489872218508987397e62162862ef0ecd9713d579452a0a56d2988e5b9efd2566fc54f60ff94c14e5ede8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | dd57b5ed3890421ad7aaec48b1f3eeba |
| SHA1 | 2d16782af01f92b027f8bbc04f2d89e540cb4cbe |
| SHA256 | 7c0244f618f486cdfdc9d17c875cfcbf7d035fb51fa6d7e5ffabb44134ee310f |
| SHA512 | bb563d119bc9fa87b506e7d70371c589e2cd980e5fd2db7e03f30c6407a7de4c85813a4d62cf2df5edbfb09c93ad72e0d109842ba0e3dd9ad75003c6360a138a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 575efbff183d154b847a13c504b1bc28 |
| SHA1 | 81b141aeb69e8c0f9048f624e76f0ab38cddfa0b |
| SHA256 | 23ab296c61c6ee5dd5e22c25a05c848b252154472283c6c91eaa0abe6cac8385 |
| SHA512 | f5b309f15f0991a6105949b5b04097a35518b9d27759c66904ea9645d0524f88c05ebc755681bb52102fd259ced252afb2e220b1b8252d58bf690386a688b599 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2e26a65442148d4c3962efa7d1a18796 |
| SHA1 | f28d2797727319772797e11b2d713bf9d45800da |
| SHA256 | 78b27bf94a2edeada84487e4e863f08aced3d1a130e618db65ab785d738bfae2 |
| SHA512 | 98f1fe34f4d7961dcd44deb026d201c50968009c531706ef9cfec86642790d5d84bb1b45dd0cd152d47d971d0c8cec8041bee5b743e581c033c749747b6eacd7 |