Malware Analysis Report

2025-01-18 23:52

Sample ID 241114-xlv3fsvqbr
Target windowkill.exe
SHA256 6670aa7b50caf97cf07205907bc19a7fd233e17b6b55a2177b98941cb8101ab0
Tags
adware steam discovery evasion persistence phishing privilege_escalation stealer trojan
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

6670aa7b50caf97cf07205907bc19a7fd233e17b6b55a2177b98941cb8101ab0

Threat Level: Likely malicious

The file windowkill.exe was found to be: Likely malicious.

Malicious Activity Summary

adware steam discovery evasion persistence phishing privilege_escalation stealer trojan

Event Triggered Execution: Image File Execution Options Injection

Downloads MZ/PE file

Boot or Logon Autostart Execution: Active Setup

A potential corporate email address has been identified in the URL: 6633dd5dcff475e6fb744426_&@2x.png

Loads dropped DLL

Checks computer location settings

Event Triggered Execution: Component Object Model Hijacking

Executes dropped EXE

A potential corporate email address has been identified in the URL: [email protected]

Installs/modifies Browser Helper Object

Adds Run key to start application

Legitimate hosting services abused for malware hosting/C2

Checks installed software on the system

Checks whether UAC is enabled

Suspicious use of NtSetInformationThreadHideFromDebugger

Suspicious use of NtCreateThreadExHideFromDebugger

Checks system information in the registry

Detected potential entity reuse from brand STEAM.

Drops file in System32 directory

Drops file in Program Files directory

Unsigned PE

Enumerates physical storage devices

Browser Information Discovery

System Network Configuration Discovery: Internet Connection Discovery

System Location Discovery: System Language Discovery

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of WriteProcessMemory

Uses Task Scheduler COM API

Checks SCSI registry key(s)

Suspicious use of UnmapMainImage

Suspicious use of AdjustPrivilegeToken

System policy modification

Suspicious behavior: EnumeratesProcesses

Enumerates system info in registry

Checks processor information in registry

Modifies Internet Explorer settings

Modifies data under HKEY_USERS

Modifies system certificate store

Modifies registry class

Suspicious use of SendNotifyMessage

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious behavior: GetForegroundWindowSpam

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-14 18:57

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-11-14 18:56

Reported

2024-11-14 19:30

Platform

win10ltsc2021-20241023-en

Max time kernel

1368s

Max time network

1431s

Command Line

"C:\Users\Admin\AppData\Local\Temp\windowkill.exe"

Signatures

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\windowkill.exe N/A

Processes

C:\Users\Admin\AppData\Local\Temp\windowkill.exe

"C:\Users\Admin\AppData\Local\Temp\windowkill.exe"

Network

Country Destination Domain Proto
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 22.160.190.20.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 101.209.201.84.in-addr.arpa udp
US 8.8.8.8:53 53.210.109.20.in-addr.arpa udp
US 8.8.8.8:53 206.23.85.13.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 13.227.111.52.in-addr.arpa udp
US 8.8.8.8:53 11.179.89.13.in-addr.arpa udp
US 8.8.8.8:53 fd.api.iris.microsoft.com udp
NL 20.103.156.88:443 fd.api.iris.microsoft.com tcp
US 8.8.8.8:53 88.156.103.20.in-addr.arpa udp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-14 18:56

Reported

2024-11-14 19:30

Platform

win10v2004-20241007-en

Max time kernel

1796s

Max time network

1424s

Command Line

"C:\Users\Admin\AppData\Local\Temp\windowkill.exe"

Signatures

Boot or Logon Autostart Execution: Active Setup

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Localized Name = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\IsInstalled = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\Version = "43,0,0,0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\ = "Microsoft Edge" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9459C573-B17A-45AE-9F64-1857B5D58CEE}\StubPath = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\Installer\\setup.exe\" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A

Downloads MZ/PE file

Event Triggered Execution: Image File Execution Options Injection

persistence
Description Indicator Process Target
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe\DisableExceptionChainValidation = "0" C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A

A potential corporate email address has been identified in the URL: 6633dd5dcff475e6fb744426_&@2x.png

phishing

A potential corporate email address has been identified in the URL: [email protected]

phishing

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Event Triggered Execution: Component Object Model Hijacking

persistence privilege_escalation

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\MicrosoftEdge_X64_130.0.2849.80.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\gldriverquery64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\gldriverquery.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\vulkandriverquery64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3BE91BCB-0BC9-44BB-87E4-F65D41653D1D}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Steam\Steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\Steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-2045521122-590294423-3465680274-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Steam = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -silent" C:\Users\Admin\Downloads\SteamSetup.exe N/A

Checks installed software on the system

discovery

Checks whether UAC is enabled

evasion trojan
Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ = "IEToEdge BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\NoExplorer = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A

Checks system information in the registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Detected potential entity reuse from brand STEAM.

phishing steam

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A
N/A N/A C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Locales\ka.pak C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\Cursors\Gamepad\PointerOver.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\startup_newbp.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\Navigation\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\textures\ui\LuaChat\9-slice\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\scripts\CoreScripts\Modules\DevConsole\Components\Memory\MemoryViewEntry.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\ui\scrollbar.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\ui\Emotes\Large\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\resource\vgui_swedish.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\bin\cef\cef.win7x64\openvr_api.dll_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Lua\Notifications\Dark\Large\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\ui\Controls\XboxController\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\controller\ghost_040_act_0306.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\inbox_item.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\fonts\Ubuntu-Regular.ttf C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\controller\ghost_035_magic_0324.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\InsertableObjects\Dark\Large\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\GraphQL\GraphQL\__testUtils__\kitchenSinkQuery.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\RoduxCall\RoduxCall\Reducers\suggestedCallees.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\scripts\CoreScripts\Modules\TopBar\Actions\SetTopBarEnabled.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\InsertableObjects\Dark\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\ApolloClient\ApolloClient\core\QueryManager.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\textures\ui\LuaApp\graphic\Auth\reversevignette.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\textures\ui\LuaChat\9-slice\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\scripts\CoreScripts\Modules\Flags\GetFFlagReportSentPageV2Enabled.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\WidgetIcons\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\Qml\QtQuick\Controls.2\Switch.qml C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\WidgetIcons\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\Emittery\Promise.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\SurfaceSelection.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\advancedMove_joint.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\ui\Settings\Help\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\controller\ghost_035_magic_0337.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\Debugger\Dark\Large\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_090_media_0301.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\textures\ui\Controls\DesignSystem\ButtonL2.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\MaterialManager\Grid_LT.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\particles\forcefield_glow_main.dds C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\ExtraContent\textures\ui\LuaApp\ExternalSite\youtube.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\sd_l1.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_rstick_right_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\Collections\Collections\Array\map.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\StudioToolbox\AssetConfig\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\ui\Chat\ToggleChatFlip.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\UIBlox\Foundation.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\ui\PlayerList\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\switchpro_rstick_right_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\TagUtils\TagUtils\getAny.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\Qml\QtQuick\Controls.2\Universal\StackView.qml C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\ExtraContent\textures\ui\InGameMenu\TouchControls\backpack_slots.png C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\WidgetIcons\Dark\Large\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\InsertableObjects\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\scripts\CoreScripts\Modules\AbuseReportMenu\MenuConfigs\Players\PlayerModalSelectorMenuConfig.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\Navigation\Light\Standard\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\Dash-31ab8d40-0.1.9\Dash\identity.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\ui\VoiceChat\MicLight\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
File created C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\WidevineCdm\_platform_specific\win_x64\widevinecdm.dll.sig C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\textures\ui\VoiceChat\RedSpeakerDark\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\JestTestResult-31ab8d40-3.8.1\JestTestResult\helpers.lua C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\sd_button_view_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\content\studio_svg_textures\Shared\Clipboard\Light\Large\[email protected] C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-e0a840597ded474b\ExtraContent\LuaPackages\Packages\_Index\FoundationImages\FoundationImages\SpriteSheets\img_set_2x_14.png C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
File created C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\content\textures\StudioToolbox\AssetConfig\[email protected] C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A

Browser Information Discovery

discovery

Enumerates physical storage devices

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\SteamSetup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\bin\gldriverquery.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3BE91BCB-0BC9-44BB-87E4-F65D41653D1D}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\ConfigFlags C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\Steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\Steam.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\Steam.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\BaseBoardManufacturer C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations\C:\Program Files (x86)\Microsoft\Edge\Application = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\Main\EnterpriseMode C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\Policy = "3" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\ProtocolExecute\microsoft-edge C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-player C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppName = "ie_to_edge_stub.exe" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\EnterpriseMode\MSEdgePath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\AppPath = "C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\BHO" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\ProtocolExecute\roblox-studio\WarnOnOpen = "0" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c9abcf16-8dc2-4a95-bae3-24fd98f2ed29}\ = "IEToEdge Handler" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\Software\Microsoft\Internet Explorer\EdgeIntegration\AdapterLocations C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133760844150787806" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Edge\InstallerPinned = "0" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{C06EE550-7248-488E-971E-B60C0AB3A6E4}\ProxyStubClsid32\ = "{3316A154-AC5C-4126-9021-B201E9C33D7B}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB}\ProxyStubClsid32\ = "{3316A154-AC5C-4126-9021-B201E9C33D7B}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\TypeLib\{C9C2B807-7731-4F34-81B7-44FF7779522B}\1.0\0\win32 C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83}\ = "IProgressWndEvents" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink\DefaultIcon C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassMachineFallback.1.0\ = "Microsoft Edge Update Legacy On Demand" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{450CF5FF-95C4-4679-BECA-22680389ECB9}\ = "IAppVersionWeb" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{99F8E195-1042-4F89-A28C-89CDB74A14AE}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5135E58-384F-4244-9A5F-30FA9259413C}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{2E1DD7EF-C12D-4F8E-8AD8-CF8CC265BAD0}\LocalizedString = "@C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.195.35\\msedgeupdate.dll,-3000" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4}\LOCALSERVER32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CredentialDialogMachine.1.0\CLSID\ = "{5F6A18BB-6231-424B-8242-19E5BB94F8ED}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\Implemented Categories\{59FB2056-D625-48D0-A944-1A85B5AB2640}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4A749F25-A9E2-4CBE-9859-CF7B15255E14}\LocalServer32\ = "\"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\130.0.2849.80\\notification_click_helper.exe\"" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7584D24A-E056-4EB1-8E7B-632F2B0ADC69} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\AppID\{1FCBE96C-1697-43AF-9140-2897C7C69767} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\VersionIndependentProgID C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.195.35\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C20433B3-0D4B-49F6-9B6C-6EE0FAE07837}\ProxyStubClsid32\ = "{3316A154-AC5C-4126-9021-B201E9C33D7B}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9A6B447A-35E2-4F6B-A87B-5DEEBBFDAD17}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F7B3738C-9BCA-4B14-90B7-89D0F3A3E497}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{FEA2518F-758F-4B95-A59F-97FCEEF1F5D0}\NumMethods\ = "16" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF419FF9-90BE-4D9F-B410-A789F90E5A7C}\ = "Microsoft Edge Update Legacy On Demand" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\MSEdgeMHT\shell\runas\command C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{E3D94CEB-EC11-46BE-8872-7DDCE37FABFA}\InprocHandler32\ = "C:\\Program Files (x86)\\Microsoft\\EdgeUpdate\\1.3.171.39\\psmachine_64.dll" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2603C88B-F971-4167-9DE1-871EE4A3DC84}\ = "ICredentialDialog" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\MicrosoftEdgeUpdate.exe C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{837E40DA-EB1B-440C-8623-0F14DF158DC0}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{CECDDD22-2E72-4832-9606-A9B0E5E344B2}\ = "ServiceModule" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{A6B716CB-028B-404D-B72C-50E153DD68DA}\ProgID\ = "MicrosoftEdgeUpdate.OnDemandCOMClassSvc.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E102DC6-1EDB-46A1-8488-61F71B35ED5F}\ = "IRegistrationUpdateHook" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A6556DFF-AB15-4DC3-A890-AB54120BEAEC} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{E421557C-0628-43FB-BF2B-7C9F8A4D067C}\VersionIndependentProgID\ = "MicrosoftEdgeUpdate.Update3WebMachineFallback" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Interface\{C9C2B807-7731-4F34-81B7-44FF7779522B} C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3805CA06-AC83-4F00-8A02-271DCD89BDEB} C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\roblox\DefaultIcon\ = "C:\\Program Files (x86)\\Roblox\\Versions\\version-32f36ac944b34913\\RobloxPlayerBeta.exe" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\NumMethods\ = "17" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (int) \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3A84F9C2-6164-485C-A7D9-4B27F8AC009E}\EnablePreviewHandler = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4518371-7326-4865-87F8-D9D3F3B287A3}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3A49F783-1C7D-4D35-8F63-5C1C206B9B6E}\ = "IAppWeb" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{77857D02-7A25-4B67-9266-3E122A8F39E4}\LocalServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E55B90F1-DA33-400B-B09E-3AFF7D46BD83} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{60355531-5BFD-45AB-942C-7912628752C7}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7B3B7A69-7D88-4847-A6BC-90E246A41F69}\NumMethods C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{E3D94CEB-EC11-46BE-8872-7DDCE37FABFA}\InprocHandler32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A2F5CB38-265F-4A02-9D1E-F25B664968AB}\InprocServer32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{C853632E-36CA-4999-B992-EC0D408CF5AB}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{177CAE89-4AD6-42F4-A458-00EC3389E3FE} C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\roblox-studio\shell\open\command\ = "\"C:\\Program Files (x86)\\Roblox\\Versions\\RobloxStudioInstaller.exe\" %1" C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{60355531-5BFD-45AB-942C-7912628752C7}\ProxyStubClsid32 C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.PolicyStatusMachine\CurVer\ = "MicrosoftEdgeUpdate.PolicyStatusMachine.1.0" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreMachineClass\CurVer\ = "MicrosoftEdgeUpdate.CoreMachineClass.1" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\.xht\OpenWithProgids C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.OnDemandCOMClassSvc.1.0\CLSID\ = "{A6B716CB-028B-404D-B72C-50E153DD68DA}" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\MicrosoftEdgeUpdate.CoreClass.1\ = "Microsoft Edge Update Core Class" C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FCE48F77-C677-4012-8A1A-54D2E2BC07BD}\ProxyStubClsid32\ = "{8B15189E-5465-4166-933D-1EABAD9648CB}" C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe N/A

Modifies system certificate store

evasion spyware trojan
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\windowkill.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\Steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\Steam.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2332 wrote to memory of 1688 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 1688 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3648 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3888 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 3888 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2332 wrote to memory of 2444 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

System policy modification

evasion
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\ C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} = "1" C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe N/A

Uses Task Scheduler COM API

persistence

Processes

C:\Users\Admin\AppData\Local\Temp\windowkill.exe

"C:\Users\Admin\AppData\Local\Temp\windowkill.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x11c,0x120,0x124,0x118,0x128,0x7ffbbcefcc40,0x7ffbbcefcc4c,0x7ffbbcefcc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1936,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1932 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2176,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2036 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2292,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2512 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3180,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3192 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3296,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3288 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4588,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4612 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4880,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4568 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4572,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4540 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3844,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4732 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4912,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4520 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5124,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5180 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5164,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5168 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5224,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4924 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5064,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5344 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=5092,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4516 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5308,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3544 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5160,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5132 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=864,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1532 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=3416,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5524 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=1524,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5540 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x4f4 0x4dc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5664,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6080 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6024,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1540 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=3400,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5992 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5676,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5716 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=5344,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5700 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6060,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5136 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6012,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=5032,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6080 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5564,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5596 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5552,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5184 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=1256,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6280 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5588,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6084 /prefetch:8

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

"C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MicrosoftEdgeWebview2Setup.exe /silent /install

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6372,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6016 /prefetch:1

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe" /silent /install "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.171.39\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MDM1MzU3MDEtMzUyNC00NDhELTgyQkEtQUNDNkI0OEQ0MjY0fSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9Ins3Njc3NkUyMC1GRkI1LTREMTAtQkFDRi0xREQ0REM1NzAyMUN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iIi8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNDcuMzciIG5leHR2ZXJzaW9uPSIxLjMuMTcxLjM5IiBsYW5nPSIiIGJyYW5kPSIiIGNsaWVudD0iIj48ZXZlbnQgZXZlbnR0eXBlPSIyIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxMTMzOTg5NjM0MCIgaW5zdGFsbF90aW1lX21zPSIyMjg4Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /handoff "appguid={F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}&appname=Microsoft%20Edge%20Webview2%20Runtime&needsadmin=prefers" /installsource otherinstallcmd /sessionid "{03535701-3524-448D-82BA-ACC6B48D4264}" /silent

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MDM1MzU3MDEtMzUyNC00NDhELTgyQkEtQUNDNkI0OEQ0MjY0fSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9IntCN0EwMDA3NS00QTYzLTQyN0ItQUM4Ri0wNzdGMUY3QTcxQTZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7cjQ1MnQxK2syVGdxL0hYemp2Rk5CUmhvcEJXUjlzYmpYeHFlVURIOXVYMD0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7OEE2OUQzNDUtRDU2NC00NjNjLUFGRjEtQTY5RDlFNTMwRjk2fSIgdmVyc2lvbj0iMTIzLjAuNjMxMi4xMjMiIG5leHR2ZXJzaW9uPSIxMjMuMC42MzEyLjEyMyIgbGFuZz0iZW4iIGJyYW5kPSJHR0xTIiBjbGllbnQ9IiI-PGV2ZW50IGV2ZW50dHlwZT0iMzEiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjUiIHN5c3RlbV91cHRpbWVfdGlja3M9IjExMzUyODA3MDc5Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6464,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5884,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6068 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6840,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6356 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5176,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5372 /prefetch:8

C:\Users\Admin\Downloads\SteamSetup.exe

"C:\Users\Admin\Downloads\SteamSetup.exe"

C:\Program Files (x86)\Steam\bin\steamservice.exe

"C:\Program Files (x86)\Steam\bin\steamservice.exe" /Install

C:\Program Files (x86)\Steam\steam.exe

"C:\Program Files (x86)\Steam\steam.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\MicrosoftEdge_X64_130.0.2849.80.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedgewebview --verbose-logging --do-not-launch-msedge --system-level

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{B8C820D4-7717-446A-96F7-91CF2D53A1CF}\EDGEMITMP_BF397.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x21c,0x220,0x224,0x1f8,0x228,0x7ff63e70d730,0x7ff63e70d73c,0x7ff63e70d748

C:\Program Files (x86)\Steam\steam.exe

"C:\Program Files (x86)\Steam\steam.exe"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=14408" "-buildid=1731433018" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=0" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--enable-features=PlatformHEVCDecoderSupport" "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal,ValveFFmpegAllowLowDelayHEVC"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:4 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1731433018 --initial-client-data=0x248,0x250,0x254,0x244,0x28c,0x7ffbccd1af00,0x7ffbccd1af0c,0x7ffbccd1af18

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1572,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=1576 --mojo-platform-channel-handle=1564 /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --field-trial-handle=2320,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=2324 --mojo-platform-channel-handle=2316 /prefetch:3

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x4f4 0x4dc

C:\Program Files (x86)\Steam\bin\gldriverquery64.exe

.\bin\gldriverquery64.exe

C:\Program Files (x86)\Steam\bin\gldriverquery.exe

.\bin\gldriverquery.exe

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --field-trial-handle=2764,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=2768 --mojo-platform-channel-handle=2760 /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3212,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=3216 --mojo-platform-channel-handle=3208 /prefetch:1

C:\Program Files (x86)\Steam\bin\vulkandriverquery64.exe

.\bin\vulkandriverquery64.exe

C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe

.\bin\vulkandriverquery.exe

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3912,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=3916 --mojo-platform-channel-handle=3908 /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4280,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=4284 --mojo-platform-channel-handle=4276 /prefetch:1

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MDM1MzU3MDEtMzUyNC00NDhELTgyQkEtQUNDNkI0OEQ0MjY0fSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiByZXF1ZXN0aWQ9InsxOUM0QjdDNy0yODdFLTQ2QjEtOUQxQi1BQzlGNDQyM0YzRUV9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-PG9lbSBwcm9kdWN0X21hbnVmYWN0dXJlcj0iIiBwcm9kdWN0X25hbWU9IiIvPjxleHAgZXRhZz0iJnF1b3Q7VlBRb1AxRitmcTE1d1J6aDFrUEw0UE1wV2g4T1JNQjVpenZyT0MvY2hqUT0mcXVvdDsiLz48YXBwIGFwcGlkPSJ7RjMwMTcyMjYtRkUyQS00Mjk1LThCREYtMDBDM0E5QTdFNEM1fSIgdmVyc2lvbj0iIiBuZXh0dmVyc2lvbj0iMTMwLjAuMjg0OS44MCIgbGFuZz0iIiBicmFuZD0iIiBjbGllbnQ9IiIgZXhwZXJpbWVudHM9ImNvbnNlbnQ9ZmFsc2UiIGluc3RhbGxhZ2U9Ii0xIiBpbnN0YWxsZGF0ZT0iLTEiPjx1cGRhdGVjaGVjay8-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_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-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-

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe" -app -clientLaunchTimeEpochMs 0 -isInstallerLaunch 1160

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --field-trial-handle=3784,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=3808 --mojo-platform-channel-handle=4292 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-queries

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xbc,0x108,0x7ffbbd4846f8,0x7ffbbd484708,0x7ffbbd484718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2108,4080605092488263199,18001799285201640689,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2128 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2108,4080605092488263199,18001799285201640689,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2416 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2108,4080605092488263199,18001799285201640689,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2656 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2108,4080605092488263199,18001799285201640689,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3668 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2108,4080605092488263199,18001799285201640689,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3520 /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4428,i,17059290645113156850,12199737234209579144,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=4488 --mojo-platform-channel-handle=3808 /prefetch:8

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3BE91BCB-0BC9-44BB-87E4-F65D41653D1D}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{3BE91BCB-0BC9-44BB-87E4-F65D41653D1D}\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe" /update /sessionid "{31CCD281-5891-4E5A-8B07-3B8B5C2C96CD}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xNzEuMzkiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MzFDQ0QyODEtNTg5MS00RTVBLThCMDctM0I4QjVDMkM5NkNEfSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntFNUM4Njc3QS1DNkRDLTRBNDctODI3OC02NkE2MzMwMUQxMTN9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIi8-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_UDE9MTczMjIxNjU4MSZhbXA7UDI9NDA0JmFtcDtQMz0yJmFtcDtQND1YQWcxUzFyRGglMmJvaHJaWkZ2T3ZkVSUyYlZib3A1SUxrMWkzc21XZnAzV3NJUzdZbFZjQTg2MyUyZiUyYmQxMnd2OUlkJTJmaVhVbTRBbkxSUFZtckVIVWN4TVltS3clM2QlM2QiIHNlcnZlcl9pcF9oaW50PSIiIGNkbl9jaWQ9Ii0xIiBjZG5fY2NjPSIiIGNkbl9tc2VkZ2VfcmVmPSIiIGNkbl9henVyZV9yZWZfb3JpZ2luX3NoaWVsZD0iIiBjZG5fY2FjaGU9IiIgY2RuX3AzcD0iIiBkb3dubG9hZGVkPSIwIiB0b3RhbD0iMCIgZG93bmxvYWRfdGltZV9tcz0iOSIvPjxldmVudCBldmVudHR5cGU9IjE0IiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDg4Nzg3OTQ5NiIgc291cmNlX3VybF9pbmRleD0iMCIgZG9uZV9iZWZvcmVfb29iZV9jb21wbGV0ZT0iMCIgZG93bmxvYWRlcj0iYml0cyIgdXJsPSJodHRwOi8vbXNlZGdlLmIudGx1LmRsLmRlbGl2ZXJ5Lm1wLm1pY3Jvc29mdC5jb20vZmlsZXN0cmVhbWluZ3NlcnZpY2UvZmlsZXMvNjhkNTc3YTAtMWY0YS00MzRmLWJkY2UtMTQ4ZWRjMWU0YTQwP1AxPTE3MzIyMTY1ODEmYW1wO1AyPTQwNCZhbXA7UDM9MiZhbXA7UDQ9WEFnMVMxckRoJTJib2hyWlpGdk92ZFUlMmJWYm9wNUlMazFpM3NtV2ZwM1dzSVM3WWxWY0E4NjMlMmYlMmJkMTJ3djlJZCUyZmlYVW00QW5MUlBWbXJFSFVjeE1ZbUt3JTNkJTNkIiBzZXJ2ZXJfaXBfaGludD0iIiBjZG5fY2lkPSItMSIgY2RuX2NjYz0iIiBjZG5fbXNlZGdlX3JlZj0iIiBjZG5fYXp1cmVfcmVmX29yaWdpbl9zaGllbGQ9IiIgY2RuX2NhY2hlPSIiIGNkbl9wM3A9IiIgZG93bmxvYWRlZD0iMTYzNTkyMCIgdG90YWw9IjE2MzU5MjAiIGRvd25sb2FkX3RpbWVfbXM9IjEyMzU4Ii8-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE0ODg3OTA5NDI4IiBzb3VyY2VfdXJsX2luZGV4PSIwIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE0ODkzMTUwNTA2IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-PHBpbmcgcj0iLTEiIHJkPSItMSIgcGluZ19mcmVzaG5lc3M9IntERTU4NkYzMS1GNDAyLTRBNTItQjUxMy01QTFCRTcyMDdFNTl9Ii8-PC9hcHA-PC9yZXF1ZXN0Pg

C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\Temp\EUCF2.tmp\MicrosoftEdgeUpdate.exe" /update /sessionid "{31CCD281-5891-4E5A-8B07-3B8B5C2C96CD}"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regsvc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /regserver

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\1.3.195.35\MicrosoftEdgeUpdateComRegisterShell64.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuMzUiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7MzFDQ0QyODEtNTg5MS00RTVBLThCMDctM0I4QjVDMkM5NkNEfSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ic2VsZnVwZGF0ZSIgcmVxdWVzdGlkPSJ7MDNCNzIzRjEtNkZENS00Q0I4LTkzNkYtQjc4MzRGRjc4OUY0fSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4xOTA0MS4xMjg4IiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O3I0NTJ0MStrMlRncS9IWHpqdkZOQlJob3BCV1I5c2JqWHhxZVVESDl1WDA9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0ie0YzQzRGRTAwLUVGRDUtNDAzQi05NTY5LTM5OEEyMEYxQkE0QX0iIHZlcnNpb249IjEuMy4xNzEuMzkiIG5leHR2ZXJzaW9uPSIxLjMuMTk1LjM1IiBsYW5nPSIiIGJyYW5kPSJJTkJYIiBjbGllbnQ9IiIgaW5zdGFsbGFnZT0iMCIgaW5zdGFsbGRhdGV0aW1lPSIxNzMxNjExNDM2Ij48ZXZlbnQgZXZlbnR0eXBlPSIzIiBldmVudHJlc3VsdD0iMSIgZXJyb3Jjb2RlPSIwIiBleHRyYWNvZGUxPSIwIiBzeXN0ZW1fdXB0aW1lX3RpY2tzPSIxNDkxNDU1MjMxMyIvPjwvYXBwPjwvcmVxdWVzdD4

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=4884,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3488 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=6812,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6016 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=1536,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6892 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=6780,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6860 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=6188,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5596 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=6016,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6004 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=3692,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6944 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=6808,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6828 /prefetch:1

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ua /installsource scheduler

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe

"C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe"

C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe

C:\Users\Admin\AppData\Local\Temp\Roblox\RobloxStudioInstaller_7BBE5\RobloxStudioInstaller.exe

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Steam\Steam.exe

"C:\Program Files (x86)\Steam\Steam.exe"

C:\Program Files (x86)\Steam\Steam.exe

"C:\Program Files (x86)\Steam\Steam.exe"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=8060" "-buildid=1731433018" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=0" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\Steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--enable-features=PlatformHEVCDecoderSupport" "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal,ValveFFmpegAllowLowDelayHEVC"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:4 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1731433018 --initial-client-data=0x280,0x284,0x288,0x27c,0x28c,0x7ffbccd1af00,0x7ffbccd1af0c,0x7ffbccd1af18

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1596,i,5976230028847662345,6564872313451279789,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=1600 --mojo-platform-channel-handle=1588 /prefetch:2

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files (x86)\Steam\Steam.exe

"C:\Program Files (x86)\Steam\Steam.exe"

C:\Program Files (x86)\Steam\Steam.exe

"C:\Program Files (x86)\Steam\Steam.exe"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16064" "-buildid=1731433018" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=0" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\Steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--enable-features=PlatformHEVCDecoderSupport" "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal,ValveFFmpegAllowLowDelayHEVC"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:4 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1731433018 --initial-client-data=0x270,0x274,0x278,0x26c,0x27c,0x7ffbccd1af00,0x7ffbccd1af0c,0x7ffbccd1af18

C:\Program Files (x86)\Steam\bin\gldriverquery64.exe

.\bin\gldriverquery64.exe

C:\Program Files (x86)\Steam\bin\gldriverquery.exe

.\bin\gldriverquery.exe

C:\Program Files (x86)\Steam\bin\vulkandriverquery64.exe

.\bin\vulkandriverquery64.exe

C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe

.\bin\vulkandriverquery.exe

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe

"C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\RobloxPlayerBeta.exe"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16064" "-buildid=1731433018" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=1" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\Steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--enable-features=PlatformHEVCDecoderSupport" "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal,ValveFFmpegAllowLowDelayHEVC"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:4 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1731433018 --initial-client-data=0x280,0x284,0x288,0x27c,0x28c,0x7ffbccd1af00,0x7ffbccd1af0c,0x7ffbccd1af18

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1928,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6600 /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16064" "-buildid=1731433018" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=2" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\Steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--enable-features=PlatformHEVCDecoderSupport" "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal,ValveFFmpegAllowLowDelayHEVC"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:4 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1731433018 --initial-client-data=0x280,0x284,0x288,0x27c,0x28c,0x7ffbccd1af00,0x7ffbccd1af0c,0x7ffbccd1af18

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1580,i,7218709809589257033,7724498210479977863,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=1584 --mojo-platform-channel-handle=1572 /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --field-trial-handle=2208,i,7218709809589257033,7724498210479977863,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=2212 --mojo-platform-channel-handle=2008 /prefetch:3

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --field-trial-handle=2860,i,7218709809589257033,7724498210479977863,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=2864 --mojo-platform-channel-handle=2856 /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\htmlcache" --buildid=1731433018 --steamid=0 --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3144,i,7218709809589257033,7724498210479977863,262144 --enable-features=PlatformHEVCDecoderSupport --disable-features=BackForwardCache,DcheckIsFatal,DocumentPictureInPictureAPI,SpareRendererForSitePerProcess,ValveFFmpegAllowLowDelayHEVC --variations-seed-version --enable-logging=handle --log-file=3148 --mojo-platform-channel-handle=3140 /prefetch:1

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2720,i,12489639404086091982,5984982878123769948,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4712 /prefetch:2

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuMzUiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NkJBM0U4MUMtQjE0Ny00MTkyLUJCRjAtNDg4ODZFNDgzQTdCfSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ibGltaXRlZCIgcmVxdWVzdGlkPSJ7NzgzMjMyMDctRTY1MC00RDE5LUI3QjItNzZGQUJERTcwRjQ2fSIgZGVkdXA9ImNyIiBkb21haW5qb2luZWQ9IjAiPjxodyBsb2dpY2FsX2NwdXM9IjgiIHBoeXNtZW1vcnk9IjgiIGRpc2tfdHlwZT0iMiIgc3NlPSIxIiBzc2UyPSIxIiBzc2UzPSIxIiBzc3NlMz0iMSIgc3NlNDE9IjEiIHNzZTQyPSIxIiBhdng9IjEiLz48b3MgcGxhdGZvcm09IndpbiIgdmVyc2lvbj0iMTAuMC4xOTA0MS4xMjg4IiBzcD0iIiBhcmNoPSJ4NjQiIHByb2R1Y3RfdHlwZT0iNDgiIGlzX3dpcD0iMCIgaXNfaW5fbG9ja2Rvd25fbW9kZT0iMCIvPjxvZW0gcHJvZHVjdF9tYW51ZmFjdHVyZXI9IiIgcHJvZHVjdF9uYW1lPSIiLz48ZXhwIGV0YWc9IiZxdW90O2xoVmkxMlFjazZTbDB1VTFPQjZZMTUyOWJSNmJzZXk0K2N1N2RIeHM2Y2s9JnF1b3Q7Ii8-PGFwcCBhcHBpZD0iezhBNjlEMzQ1LUQ1NjQtNDYzYy1BRkYxLUE2OUQ5RTUzMEY5Nn0iIHZlcnNpb249IjEyMy4wLjYzMTIuMTIzIiBuZXh0dmVyc2lvbj0iIiBsYW5nPSJlbiIgYnJhbmQ9IkdHTFMiIGNsaWVudD0iIiBpbnN0YWxsYWdlPSIzOCIgaW5zdGFsbGRhdGV0aW1lPSIxNzI4MjkzNTczIiBvb2JlX2luc3RhbGxfdGltZT0iMTMzNzI3NjYxMzQ3NDUwMDAwIj48ZXZlbnQgZXZlbnR0eXBlPSIzMSIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMjE3OTg2MiIgc3lzdGVtX3VwdGltZV90aWNrcz0iMTg0OTY1MzM4ODkiLz48L2FwcD48L3JlcXVlc3Q-

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\MicrosoftEdge_X64_130.0.2849.80.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\MicrosoftEdge_X64_130.0.2849.80.exe" --msedge --verbose-logging --do-not-launch-msedge --system-level --channel=stable

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x228,0x22c,0x230,0x224,0x234,0x7ff78042d730,0x7ff78042d73c,0x7ff78042d748

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --msedge --channel=stable --system-level --verbose-logging --create-shortcuts=2 --install-level=1

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x224,0x228,0x22c,0x200,0x230,0x7ff78042d730,0x7ff78042d73c,0x7ff78042d748

C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --msedge --channel=stable --remove-deprecated-packages --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --msedge --channel=stable --update-game-assist-package --verbose-logging --system-level

C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x224,0x228,0x22c,0x200,0x230,0x7ff7dbcfd730,0x7ff7dbcfd73c,0x7ff7dbcfd748

C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\MsEdgeCrashpad" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=130.0.6723.117 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\130.0.2849.80\Installer\setup.exe" --annotation=plat=Win64 --annotation=prod=Edge --annotation=ver=130.0.2849.80 --initial-client-data=0x224,0x228,0x22c,0x200,0x230,0x7ff7dbcfd730,0x7ff7dbcfd73c,0x7ff7dbcfd748

C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe

"C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgdXBkYXRlcnZlcnNpb249IjEuMy4xOTUuMzUiIHNoZWxsX3ZlcnNpb249IjEuMy4xNzEuMzkiIGlzbWFjaGluZT0iMSIgc2Vzc2lvbmlkPSJ7NkJBM0U4MUMtQjE0Ny00MTkyLUJCRjAtNDg4ODZFNDgzQTdCfSIgdXNlcmlkPSJ7QjNDRjgyNDAtN0QzRC00RDQ2LUI5OUYtQUE0NEI3ODYwNDgwfSIgaW5zdGFsbHNvdXJjZT0ic2NoZWR1bGVyIiByZXF1ZXN0aWQ9IntDNjMxMTVCQy00MEQ2LTQ4M0QtQkM3OC04MUFGQTE3NDlBQTJ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IGxvZ2ljYWxfY3B1cz0iOCIgcGh5c21lbW9yeT0iOCIgZGlza190eXBlPSIyIiBzc2U9IjEiIHNzZTI9IjEiIHNzZTM9IjEiIHNzc2UzPSIxIiBzc2U0MT0iMSIgc3NlNDI9IjEiIGF2eD0iMSIvPjxvcyBwbGF0Zm9ybT0id2luIiB2ZXJzaW9uPSIxMC4wLjE5MDQxLjEyODgiIHNwPSIiIGFyY2g9Ing2NCIgcHJvZHVjdF90eXBlPSI0OCIgaXNfd2lwPSIwIiBpc19pbl9sb2NrZG93bl9tb2RlPSIwIi8-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-PGV2ZW50IGV2ZW50dHlwZT0iMTIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE4NTEzNTMzODE3IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTMiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE4NTEzNzE0MDAyIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTQiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE4NTU1NzAzOTQxIiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-PGV2ZW50IGV2ZW50dHlwZT0iMTUiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIHN5c3RlbV91cHRpbWVfdGlja3M9IjE4NTcxNzE0MTQ3IiBkb25lX2JlZm9yZV9vb2JlX2NvbXBsZXRlPSIwIi8-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-

Network

Country Destination Domain Proto
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 73.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 68.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 228.16.217.172.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.178.14:443 clients2.google.com tcp
US 8.8.8.8:53 clients2.googleusercontent.com udp
GB 216.58.201.97:443 clients2.googleusercontent.com tcp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 97.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 roblox.com udp
GB 128.116.119.4:443 roblox.com tcp
GB 128.116.119.4:443 roblox.com tcp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
FR 18.245.199.38:443 css.rbxcdn.com tcp
FR 18.245.199.38:443 css.rbxcdn.com tcp
FR 18.245.199.38:443 css.rbxcdn.com tcp
FR 18.245.199.38:443 css.rbxcdn.com tcp
US 8.8.8.8:53 4.119.116.128.in-addr.arpa udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
GB 2.22.144.95:443 static.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
GB 2.19.252.155:443 js.rbxcdn.com tcp
US 8.8.8.8:53 38.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 95.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 155.252.19.2.in-addr.arpa udp
US 8.8.8.8:53 metrics.roblox.com udp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 apis.roblox.com udp
GB 128.116.119.4:443 apis.roblox.com tcp
GB 128.116.119.4:443 apis.roblox.com tcp
US 8.8.8.8:53 apis.rbxcdn.com udp
GB 23.73.136.97:443 apis.rbxcdn.com tcp
US 8.8.8.8:53 locale.roblox.com udp
US 8.8.8.8:53 images.rbxcdn.com udp
FR 18.245.199.38:443 css.rbxcdn.com tcp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 2.22.144.69:443 images.rbxcdn.com tcp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 97.136.73.23.in-addr.arpa udp
US 8.8.8.8:53 69.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 56.163.245.4.in-addr.arpa udp
US 8.8.8.8:53 18.31.95.13.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 assetgame.roblox.com udp
US 8.8.8.8:53 ncs.roblox.com udp
US 8.8.8.8:53 arkoselabs.roblox.com udp
FR 18.245.175.18:443 arkoselabs.roblox.com tcp
FR 18.245.175.18:443 arkoselabs.roblox.com udp
US 8.8.8.8:53 18.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 81.144.22.2.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 19.229.111.52.in-addr.arpa udp
US 8.8.8.8:53 90.65.42.20.in-addr.arpa udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 arkoselabs.roblox.com udp
FR 18.245.175.6:443 arkoselabs.roblox.com udp
US 8.8.8.8:53 6.175.245.18.in-addr.arpa udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
US 205.234.175.102:443 static.rbxcdn.com tcp
FR 18.244.28.99:443 js.rbxcdn.com tcp
US 8.8.8.8:53 static.roblox.com udp
US 8.8.8.8:53 102.175.234.205.in-addr.arpa udp
US 8.8.8.8:53 99.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 metrics.roblox.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 auth.roblox.com udp
US 8.8.8.8:53 arkoselabs.roblox.com udp
GB 142.250.179.234:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 42.200.250.142.in-addr.arpa udp
FR 18.245.175.87:443 arkoselabs.roblox.com udp
US 8.8.8.8:53 87.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 ncs.roblox.com udp
US 8.8.8.8:53 roblox.com udp
US 8.8.8.8:53 www.roblox.com udp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 apis.roblox.com udp
US 8.8.8.8:53 apis.rbxcdn.com udp
US 8.8.8.8:53 locale.roblox.com udp
US 8.8.8.8:53 auth.roblox.com udp
GB 23.73.136.106:443 apis.rbxcdn.com tcp
GB 23.73.136.106:443 apis.rbxcdn.com tcp
US 8.8.8.8:53 106.136.73.23.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 172.217.16.228:443 www.google.com udp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 discord.com udp
US 162.159.138.232:443 discord.com tcp
US 162.159.138.232:443 discord.com tcp
US 8.8.8.8:53 232.138.159.162.in-addr.arpa udp
US 162.159.138.232:443 discord.com udp
US 8.8.8.8:53 ajax.googleapis.com udp
US 8.8.8.8:53 cdn.localizeapi.com udp
US 8.8.8.8:53 cdn.prod.website-files.com udp
US 104.22.21.64:443 cdn.localizeapi.com tcp
US 8.8.8.8:53 64.21.22.104.in-addr.arpa udp
US 8.8.8.8:53 234.212.58.216.in-addr.arpa udp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
GB 142.250.187.234:443 ajax.googleapis.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com udp
US 8.8.8.8:53 d3e54v103j8qbb.cloudfront.net udp
US 8.8.8.8:53 cdn.discordapp.com udp
US 8.8.8.8:53 117.161.18.104.in-addr.arpa udp
US 8.8.8.8:53 234.187.250.142.in-addr.arpa udp
US 162.159.129.233:443 cdn.discordapp.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com udp
US 162.159.129.233:443 cdn.discordapp.com tcp
US 162.159.129.233:443 cdn.discordapp.com tcp
US 162.159.129.233:443 cdn.discordapp.com tcp
US 162.159.129.233:443 cdn.discordapp.com tcp
US 162.159.129.233:443 cdn.discordapp.com tcp
FR 52.222.153.27:443 d3e54v103j8qbb.cloudfront.net tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 104.18.161.117:443 cdn.prod.website-files.com tcp
US 8.8.8.8:53 233.129.159.162.in-addr.arpa udp
US 8.8.8.8:53 27.153.222.52.in-addr.arpa udp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 3.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 geolocation.onetrust.com udp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.200.46:443 www.youtube.com tcp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 72.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 119.155.64.172.in-addr.arpa udp
GB 142.250.200.46:443 www.youtube.com udp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 172.217.169.10:443 content-autofill.googleapis.com tcp
GB 172.217.169.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 10.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 steampowered.com udp
GB 23.62.192.121:443 steampowered.com tcp
GB 23.62.192.121:443 steampowered.com tcp
GB 23.62.192.121:443 steampowered.com tcp
GB 23.62.192.121:80 steampowered.com tcp
GB 23.62.192.121:80 steampowered.com tcp
US 8.8.8.8:53 121.192.62.23.in-addr.arpa udp
US 8.8.8.8:53 store.steampowered.com udp
GB 184.25.193.136:443 store.steampowered.com tcp
GB 184.25.193.136:443 store.steampowered.com tcp
US 8.8.8.8:53 store.fastly.steamstatic.com udp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 151.101.131.52:443 store.fastly.steamstatic.com tcp
US 8.8.8.8:53 136.193.25.184.in-addr.arpa udp
US 8.8.8.8:53 52.131.101.151.in-addr.arpa udp
US 8.8.8.8:53 cdn.fastly.steamstatic.com udp
US 8.8.8.8:53 shared.fastly.steamstatic.com udp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.195.52:443 shared.fastly.steamstatic.com tcp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 8.8.8.8:53 52.195.101.151.in-addr.arpa udp
GB 184.25.193.136:443 store.steampowered.com tcp
US 151.101.3.52:443 shared.fastly.steamstatic.com tcp
US 162.159.138.232:443 discord.com udp
US 104.22.21.64:443 cdn.localizeapi.com udp
GB 142.250.187.234:443 content-autofill.googleapis.com udp
US 104.18.161.117:443 cdn.prod.website-files.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 a.nel.cloudflare.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 1.80.190.35.in-addr.arpa udp
US 8.8.8.8:53 52.3.101.151.in-addr.arpa udp
US 151.101.131.52:443 shared.fastly.steamstatic.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
DE 142.250.185.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 195.185.250.142.in-addr.arpa udp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 remote-auth-gateway.discord.gg udp
US 162.159.136.234:443 remote-auth-gateway.discord.gg tcp
GB 172.217.169.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 static.rbxcdn.com udp
US 8.8.8.8:53 css.rbxcdn.com udp
GB 2.22.144.81:443 css.rbxcdn.com tcp
US 8.8.8.8:53 js.rbxcdn.com udp
US 8.8.8.8:53 234.136.159.162.in-addr.arpa udp
GB 2.19.252.155:443 js.rbxcdn.com tcp
US 8.8.8.8:53 static.roblox.com udp
US 8.8.8.8:53 metrics.roblox.com udp
GB 128.116.119.4:443 metrics.roblox.com tcp
US 8.8.8.8:53 apis.rbxcdn.com udp
GB 23.73.136.106:443 apis.rbxcdn.com tcp
US 8.8.8.8:53 images.rbxcdn.com udp
FR 13.32.145.114:443 images.rbxcdn.com tcp
US 8.8.8.8:53 114.145.32.13.in-addr.arpa udp
US 8.8.8.8:53 setup.rbxcdn.com udp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
FR 3.162.38.49:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 49.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 128.116.119.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
FR 13.249.9.45:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
GB 2.19.252.150:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 45.9.249.13.in-addr.arpa udp
N/A 127.0.0.1:63924 tcp
N/A 127.0.0.1:63928 tcp
N/A 127.0.0.1:63943 tcp
GB 2.19.252.150:443 setup.rbxcdn.com tcp
GB 2.19.252.150:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 150.252.19.2.in-addr.arpa udp
US 8.8.8.8:53 store.fastly.steamstatic.com udp
US 8.8.8.8:53 store.steampowered.com udp
US 8.8.8.8:53 cdn.fastly.steamstatic.com udp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.16.228:443 www.google.com tcp
GB 172.217.169.10:443 content-autofill.googleapis.com udp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
NL 4.175.87.113:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 113.87.175.4.in-addr.arpa udp
US 8.8.8.8:53 msedge.f.tlu.dl.delivery.mp.microsoft.com udp
US 199.232.210.172:80 msedge.f.tlu.dl.delivery.mp.microsoft.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 162.159.138.232:443 discord.com udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.180.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 ecsv2.roblox.com udp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 cdn.fastly.steamstatic.com udp
US 8.8.8.8:53 store.steampowered.com udp
US 8.8.8.8:53 steamcommunity.com udp
US 8.8.8.8:53 help.steampowered.com udp
GB 23.214.143.155:443 help.steampowered.com tcp
GB 23.214.143.155:443 help.steampowered.com tcp
US 151.101.195.52:443 cdn.fastly.steamstatic.com tcp
US 151.101.195.52:443 cdn.fastly.steamstatic.com tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
US 151.101.67.52:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 52.67.101.151.in-addr.arpa udp
US 8.8.8.8:53 r11.o.lencr.org udp
GB 2.18.190.73:80 r11.o.lencr.org tcp
US 151.101.67.52:443 cdn.steamstatic.com tcp
US 151.101.67.52:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 168.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 73.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 test.steampowered.com udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
GB 23.73.136.138:80 test.steampowered.com tcp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 138.136.73.23.in-addr.arpa udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:53 api.steampowered.com udp
GB 23.214.143.155:443 api.steampowered.com tcp
US 8.8.8.8:53 4.4.8.8.in-addr.arpa udp
US 8.8.8.8:53 cmp2-atl3.steamserver.net udp
US 162.254.199.184:443 cmp2-atl3.steamserver.net tcp
US 162.254.199.184:27018 cmp2-atl3.steamserver.net tcp
US 8.8.8.8:53 cmp1-atl3.steamserver.net udp
US 162.254.199.165:27018 cmp1-atl3.steamserver.net tcp
US 8.8.8.8:53 cmp1-dfw1.steamserver.net udp
US 155.133.253.36:27018 cmp1-dfw1.steamserver.net tcp
US 8.8.8.8:53 e6.o.lencr.org udp
GB 2.18.190.80:80 e6.o.lencr.org tcp
US 8.8.8.8:53 e5.o.lencr.org udp
GB 2.18.190.73:80 e5.o.lencr.org tcp
US 8.8.8.8:53 cmp2-iad1.steamserver.net udp
US 162.254.192.99:27019 cmp2-iad1.steamserver.net tcp
US 8.8.8.8:53 cmp2-dfw1.steamserver.net udp
US 155.133.253.52:443 cmp2-dfw1.steamserver.net tcp
US 162.254.192.99:27018 cmp2-iad1.steamserver.net tcp
US 155.133.253.52:27018 cmp2-dfw1.steamserver.net tcp
US 8.8.8.8:53 184.199.254.162.in-addr.arpa udp
US 8.8.8.8:53 165.199.254.162.in-addr.arpa udp
US 8.8.8.8:53 36.253.133.155.in-addr.arpa udp
US 8.8.8.8:53 80.190.18.2.in-addr.arpa udp
US 162.254.192.99:443 cmp2-iad1.steamserver.net tcp
US 8.8.8.8:53 cmp1-ord1.steamserver.net udp
US 162.254.193.103:443 cmp1-ord1.steamserver.net tcp
US 8.8.8.8:53 cmp2-fra1.steamserver.net udp
DE 155.133.250.20:27023 cmp2-fra1.steamserver.net tcp
DE 155.133.250.20:27020 cmp2-fra1.steamserver.net tcp
US 8.8.8.8:53 99.192.254.162.in-addr.arpa udp
US 8.8.8.8:53 52.253.133.155.in-addr.arpa udp
US 8.8.8.8:53 20.250.133.155.in-addr.arpa udp
US 8.8.8.8:53 103.193.254.162.in-addr.arpa udp
US 8.8.8.8:53 p2p-dfw1.discovery.steamserver.net udp
US 8.8.8.8:443 dns.google udp
GB 172.217.169.46:443 www.youtube.com tcp
GB 74.125.97.72:443 udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 72.97.125.74.in-addr.arpa udp
N/A 127.0.0.1:60403 tcp
N/A 127.0.0.1:60402 tcp
US 8.8.8.8:443 dns.google udp
GB 23.214.143.155:443 api.steampowered.com tcp
GB 23.214.143.155:443 api.steampowered.com tcp
GB 23.214.143.155:443 api.steampowered.com tcp
GB 23.214.143.155:443 api.steampowered.com tcp
GB 172.217.16.228:443 www.google.com udp
US 8.8.4.4:443 dns.google udp
GB 216.58.212.227:443 tcp
US 8.8.8.8:53 227.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 123.35.104.34.in-addr.arpa udp
US 8.8.8.8:53 p2p-dfw1.discovery.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
GB 23.214.143.155:443 api.steampowered.com tcp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 cmp1-vie1.steamserver.net udp
US 8.8.8.8:53 cmp1-fra2.steamserver.net udp
AT 146.66.155.84:443 cmp1-vie1.steamserver.net tcp
US 155.133.229.4:27020 cmp1-fra2.steamserver.net tcp
US 155.133.229.4:27019 cmp1-fra2.steamserver.net tcp
AT 146.66.155.84:27018 cmp1-vie1.steamserver.net tcp
US 8.8.8.8:53 e6.o.lencr.org udp
GB 2.18.190.80:80 e6.o.lencr.org tcp
US 8.8.8.8:53 cmp2-fra2.steamserver.net udp
US 8.8.8.8:53 84.155.66.146.in-addr.arpa udp
US 8.8.8.8:53 4.229.133.155.in-addr.arpa udp
US 155.133.229.20:27024 cmp2-fra2.steamserver.net tcp
US 155.133.229.4:27024 cmp1-fra2.steamserver.net tcp
US 8.8.8.8:53 cmp2-vie1.steamserver.net udp
AT 146.66.155.85:27018 cmp2-vie1.steamserver.net tcp
DE 155.133.250.20:443 cmp2-fra1.steamserver.net tcp
US 8.8.8.8:53 e5.o.lencr.org udp
GB 2.18.190.73:80 e5.o.lencr.org tcp
US 8.8.8.8:53 cmp1-ams1.steamserver.net udp
NL 155.133.248.42:443 cmp1-ams1.steamserver.net tcp
US 8.8.8.8:53 cmp2-ams1.steamserver.net udp
NL 155.133.248.43:27018 cmp2-ams1.steamserver.net tcp
US 8.8.8.8:53 cmp1-sto1.steamserver.net udp
SE 162.254.198.68:27021 cmp1-sto1.steamserver.net tcp
SE 162.254.198.68:27018 cmp1-sto1.steamserver.net tcp
US 8.8.8.8:53 20.229.133.155.in-addr.arpa udp
US 8.8.8.8:53 85.155.66.146.in-addr.arpa udp
US 8.8.8.8:53 42.248.133.155.in-addr.arpa udp
US 8.8.8.8:53 68.198.254.162.in-addr.arpa udp
US 8.8.8.8:53 43.248.133.155.in-addr.arpa udp
US 8.8.8.8:53 p2p-vie1.discovery.steamserver.net udp
GB 216.58.212.227:443 udp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 128.116.119.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 client-telemetry.roblox.com udp
GB 128.116.119.4:443 client-telemetry.roblox.com tcp
N/A 127.0.0.1:60954 tcp
N/A 127.0.0.1:60957 tcp
US 8.8.8.8:53 developers.google.com udp
GB 172.217.169.14:443 developers.google.com tcp
GB 172.217.169.14:443 developers.google.com tcp
US 8.8.8.8:53 14.169.217.172.in-addr.arpa udp
GB 172.217.169.14:443 developers.google.com udp
US 8.8.8.8:53 apis.google.com udp
GB 142.250.200.14:443 apis.google.com tcp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 78.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 client-update.steamstatic.com udp
US 151.101.131.52:443 client-update.steamstatic.com tcp
US 8.8.8.8:53 r10.o.lencr.org udp
GB 88.221.134.89:80 r10.o.lencr.org tcp
US 8.8.8.8:53 89.134.221.88.in-addr.arpa udp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 52.252.28.242:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 msedge.b.tlu.dl.delivery.mp.microsoft.com udp
US 84.201.209.106:80 msedge.b.tlu.dl.delivery.mp.microsoft.com tcp
US 8.8.8.8:53 242.28.252.52.in-addr.arpa udp
US 8.8.8.8:53 106.209.201.84.in-addr.arpa udp
US 8.8.8.8:53 p2p-vie1.discovery.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
GB 23.214.143.155:443 api.steampowered.com tcp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 crash.steampowered.com udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 208.64.203.173:443 crash.steampowered.com tcp
DE 155.133.250.20:27019 cmp2-fra1.steamserver.net tcp
DE 155.133.250.20:27020 cmp2-fra1.steamserver.net tcp
US 155.133.229.20:27024 cmp2-fra2.steamserver.net tcp
DE 155.133.250.20:27024 cmp2-fra1.steamserver.net tcp
US 8.8.8.8:53 r10.o.lencr.org udp
GB 2.18.190.73:80 r10.o.lencr.org tcp
US 8.8.8.8:53 cmp1-fra1.steamserver.net udp
DE 155.133.250.4:443 cmp1-fra1.steamserver.net tcp
AT 146.66.155.84:443 cmp1-vie1.steamserver.net tcp
AT 146.66.155.84:27018 cmp1-vie1.steamserver.net tcp
NL 155.133.248.42:27018 cmp1-ams1.steamserver.net tcp
US 8.8.8.8:53 e6.o.lencr.org udp
GB 2.18.190.73:80 e6.o.lencr.org tcp
US 8.8.8.8:53 173.203.64.208.in-addr.arpa udp
US 8.8.8.8:53 4.250.133.155.in-addr.arpa udp
US 8.8.8.8:53 p2p-fra2.discovery.steamserver.net udp
US 8.8.8.8:53 p2p-fra2.discovery.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
GB 23.214.143.155:443 api.steampowered.com tcp
AT 146.66.155.84:27018 cmp1-vie1.steamserver.net tcp
AT 146.66.155.85:443 cmp2-vie1.steamserver.net tcp
AT 146.66.155.85:27018 cmp2-vie1.steamserver.net tcp
US 155.133.229.20:27020 cmp2-fra2.steamserver.net tcp
US 155.133.229.4:27019 cmp1-fra2.steamserver.net tcp
DE 155.133.250.4:27024 cmp1-fra1.steamserver.net tcp
US 8.8.8.8:53 p2p-fra1.discovery.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 p2p-fra1.discovery.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
GB 23.214.143.155:443 api.steampowered.com tcp
US 8.8.8.8:53 ext2-scl1.steamserver.net udp
CL 155.133.249.164:27032 ext2-scl1.steamserver.net tcp
CL 155.133.249.164:27029 ext2-scl1.steamserver.net tcp
US 8.8.8.8:53 ext2-eze1.steamserver.net udp
AR 155.133.255.164:27032 ext2-eze1.steamserver.net tcp
US 8.8.8.8:53 ext1-eze1.steamserver.net udp
AR 155.133.255.100:27022 ext1-eze1.steamserver.net tcp
US 8.8.8.8:53 ext2-lim1.steamserver.net udp
US 8.8.8.8:53 ext1-lim1.steamserver.net udp
PE 155.133.244.50:27035 ext2-lim1.steamserver.net tcp
PE 155.133.244.34:27019 ext1-lim1.steamserver.net tcp
CL 155.133.249.164:443 ext2-scl1.steamserver.net tcp
US 8.8.8.8:53 ext2-gru1.steamserver.net udp
BR 155.133.227.50:27023 ext2-gru1.steamserver.net tcp
US 8.8.8.8:53 164.249.133.155.in-addr.arpa udp
US 8.8.8.8:53 164.255.133.155.in-addr.arpa udp
US 8.8.8.8:53 100.255.133.155.in-addr.arpa udp
BR 155.133.227.50:27031 ext2-gru1.steamserver.net tcp
PE 155.133.244.34:443 ext1-lim1.steamserver.net tcp
US 155.133.253.36:443 cmp1-dfw1.steamserver.net tcp
US 8.8.8.8:53 cmp2-ord1.steamserver.net udp
US 162.254.193.75:27018 cmp2-ord1.steamserver.net tcp
US 8.8.8.8:53 50.244.133.155.in-addr.arpa udp
US 8.8.8.8:53 34.244.133.155.in-addr.arpa udp
US 8.8.8.8:53 50.227.133.155.in-addr.arpa udp
US 8.8.8.8:53 e5.o.lencr.org udp
GB 2.18.190.73:80 e5.o.lencr.org tcp
US 8.8.8.8:53 p2p-ord1.discovery.steamserver.net udp
US 8.8.8.8:53 75.193.254.162.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 172.217.16.228:443 www.google.com udp
US 8.8.8.8:53 discord.com udp
US 162.159.128.233:443 discord.com udp
US 8.8.8.8:53 233.128.159.162.in-addr.arpa udp
US 8.8.8.8:53 cdn.prod.website-files.com udp
US 104.18.160.117:443 cdn.prod.website-files.com udp
US 8.8.8.8:53 cdn.discordapp.com udp
US 162.159.129.233:443 cdn.discordapp.com udp
US 8.8.8.8:53 chrome.google.com udp
GB 142.250.200.14:443 chrome.google.com tcp
US 8.8.8.8:53 117.160.18.104.in-addr.arpa udp
US 8.8.8.8:53 geolocation.onetrust.com udp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.14:443 www.youtube.com udp
US 8.8.8.8:53 gmail.com udp
GB 216.58.204.69:443 gmail.com tcp
GB 216.58.204.69:443 gmail.com tcp
US 8.8.8.8:53 mail.google.com udp
GB 172.217.16.229:443 mail.google.com tcp
US 8.8.8.8:53 69.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 accounts.google.com udp
GB 64.233.167.84:443 accounts.google.com tcp
GB 64.233.167.84:443 accounts.google.com udp
US 8.8.8.8:53 229.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 84.167.233.64.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.178.10:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 accounts.youtube.com udp
GB 142.250.200.14:443 accounts.youtube.com tcp
US 8.8.8.8:53 play.google.com udp
GB 142.250.187.206:443 play.google.com tcp
GB 142.250.187.206:443 play.google.com tcp
GB 142.250.187.206:443 play.google.com udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 206.187.250.142.in-addr.arpa udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
DE 142.250.185.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 cdn.fastly.steamstatic.com udp
N/A 127.0.0.1:52814 tcp
US 8.8.8.8:53 ecsv2.roblox.com udp
GB 128.116.119.4:443 ecsv2.roblox.com tcp
US 8.8.8.8:53 client-telemetry.roblox.com udp
GB 128.116.119.4:443 client-telemetry.roblox.com tcp
GB 128.116.119.4:443 client-telemetry.roblox.com tcp
GB 128.116.119.4:443 client-telemetry.roblox.com tcp
US 8.8.8.8:53 clientsettingscdn.roblox.com udp
N/A 127.0.0.1:52817 tcp
N/A 127.0.0.1:52822 tcp
N/A 127.0.0.1:52825 tcp
N/A 127.0.0.1:52828 tcp
FR 13.249.9.54:443 clientsettingscdn.roblox.com tcp
US 8.8.8.8:53 setup.rbxcdn.com udp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 54.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 106.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 73.31.126.40.in-addr.arpa udp
N/A 127.0.0.1:52833 tcp
US 208.64.203.173:443 crash.steampowered.com tcp
US 8.8.8.8:53 client-update.steamstatic.com udp
US 151.101.67.52:443 client-update.steamstatic.com tcp
US 8.8.8.8:53 test.steampowered.com udp
GB 23.73.136.138:80 test.steampowered.com tcp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
US 208.64.203.173:443 crash.steampowered.com tcp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
FR 3.162.38.106:443 setup.rbxcdn.com tcp
US 208.64.203.173:443 crash.steampowered.com tcp
US 8.8.8.8:53 msedge.api.cdp.microsoft.com udp
US 172.169.87.222:443 msedge.api.cdp.microsoft.com tcp
US 8.8.8.8:53 17.242.123.52.in-addr.arpa udp
US 8.8.8.8:53 222.87.169.172.in-addr.arpa udp
US 8.8.8.8:53 setup.rbxcdn.com udp
GB 2.19.252.150:443 setup.rbxcdn.com tcp
N/A 127.0.0.1:53400 tcp
GB 2.19.252.150:443 setup.rbxcdn.com tcp
GB 2.19.252.150:443 setup.rbxcdn.com tcp

Files

\??\pipe\crashpad_2332_MUXICRGGXCZLTHHN

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Temp\scoped_dir2332_798154961\f64d7019-48a7-4353-9633-a5f128195c1f.tmp

MD5 da75bb05d10acc967eecaac040d3d733
SHA1 95c08e067df713af8992db113f7e9aec84f17181
SHA256 33ae9b8f06dc777bb1a65a6ba6c3f2a01b25cd1afc291426b46d1df27ea6e7e2
SHA512 56533de53872f023809a20d1ea8532cdc2260d40b05c5a7012c8e61576ff092f006a197f759c92c6b8c429eeec4bb542073b491ddcfd5b22cd4ecbe1a8a7c6ef

C:\Users\Admin\AppData\Local\Temp\scoped_dir2332_798154961\CRX_INSTALL\_locales\en_CA\messages.json

MD5 558659936250e03cc14b60ebf648aa09
SHA1 32f1ce0361bbfdff11e2ffd53d3ae88a8b81a825
SHA256 2445cad863be47bb1c15b57a4960b7b0d01864e63cdfde6395f3b2689dc1444b
SHA512 1632f5a3cd71887774bf3cb8a4d8b787ea6278271657b0f1d113dbe1a7fd42c4daa717cc449f157ce8972037572b882dc946a7dc2c0e549d71982dcdee89f727

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\dasherSettingSchema.json

MD5 4ec1df2da46182103d2ffc3b92d20ca5
SHA1 fb9d1ba3710cf31a87165317c6edc110e98994ce
SHA256 6c69ce0fe6fab14f1990a320d704fee362c175c00eb6c9224aa6f41108918ca6
SHA512 939d81e6a82b10ff73a35c931052d8d53d42d915e526665079eeb4820df4d70f1c6aebab70b59519a0014a48514833fefd687d5a3ed1b06482223a168292105d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.83.1_0\_locales\en_CA\messages.json

MD5 07ffbe5f24ca348723ff8c6c488abfb8
SHA1 6dc2851e39b2ee38f88cf5c35a90171dbea5b690
SHA256 6895648577286002f1dc9c3366f558484eb7020d52bbf64a296406e61d09599c
SHA512 7ed2c8db851a84f614d5daf1d5fe633bd70301fd7ff8a6723430f05f642ceb3b1ad0a40de65b224661c782ffcec69d996ebe3e5bb6b2f478181e9a07d8cd41f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 b32d475b33041e9690d00f13aa48e3b0
SHA1 3852c6ba84f8df78fa30b2ead6ee3397eb92ee23
SHA256 7f5bd7507c1487004174594db51e6c83ffeb73f297e8e29ee499e1c2eb576a48
SHA512 7dc5a749a5cd1a18559792acee89ba024517658541cf90595cd765998e6192b58a85bc45fd7f2769519ca6ea3d1976dcd5618bf828c5ddaa6c910c3ac7920e68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 1760e53df218c925653fa8626034eca8
SHA1 7fadabf001ae4ae3d6e4f35132a40b808597c728
SHA256 45d3245137d383421f1b364bba5accfebcfd53cad0e23675a213c9facc6b61b1
SHA512 19ac3216b85ddaf9c8f1cf80f99acf31f9a48a5b5acfd3ed197b1d27cf80eab7062e65de9c15b4f2c5ad068f34b1faeb8a15dd06d506d678d87dea3dcbeb0607

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e86429ba177fc8289c3b20b405b2b52b
SHA1 5bd2d752d966ab4a443f30cc9593c6eeefbf50a3
SHA256 7d80515edb6f0d5ee80fc4a9cb0e90c64a26c149d312c24d7bfa1f53b5b7c548
SHA512 21a3ff9114fb4d14546ebd9af248b69baf3d51f2ae433a7b7971212aff1252fbfa51fb7f284f8997084eeab29e1a74c1238d4e6a7e873b5de724420930d42900

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 96cd567fd25ce26bebaeda7039998df5
SHA1 58cd98fe672c6d27d0872df4a59279912ea1aaf5
SHA256 faa35ccbf6e3891a3092dc5e074e9ca0abe164f93e4919fbdd951ef688247fa0
SHA512 785aa23f9f37afaf3d9b4aa6aeb267fbe0c39e075016cd5e1c18fe55fcf1c38af2212fdd4fdb3cc3e8e8dc6d2a05cf28bd1b2b745a034e9a6578b5ca6dbe3aee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 1214a8a9390efa5d47f4250094ce5450
SHA1 5d2a9a642e2cd5d73f74cd28220a91b875c62416
SHA256 fe3d54f290a4bccda3b86d6881e8405919e4392b09118dc7dab0443b46f0d9c8
SHA512 209df50536445cc26dd53f65af4188f02c1bfc82266cbcd98affd6cd12117769b4ba20fb4aa7abdaad615f30997aa998b57db70fa78d975a0b9ffc10b42d784d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 962d3420c12a33f19c490291e0f88161
SHA1 294e5731015af953d9dc32084594e7e5bbc4b913
SHA256 7749d2595b93f10c8da8a82cda084ccc968d52efd465be344eadd80a1a7fa72a
SHA512 9f2db19121b09357352940e099028fe0b341ee7fa9f98df1d3a3fceb368e30bdba0ddbfb0248ae26cdf7c365b0588bae9ccef4f88195d7068d863206204d0564

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c9e327a56cbcd1571285aa242180a9a8
SHA1 b445a5cc1bd8ff1f772251ceef9684417c595d8c
SHA256 07aaa1f4c3b631f5324f9383e5a26cbe7af92e403b85b0c13773a1632c5f755e
SHA512 4e14c3d74e1e52642b899371786f07f43176af6b41bb346cee0499e8da5b47fade54f35e3ba34675d8b5487af4d606dcc53a12010987bd421f2b61ed05f0855d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 604d07add62b811b951aa4a2d0b30ad1
SHA1 738259ca11140e70c01fb8aa0da70bbfbdcc5431
SHA256 2fdfb68acc074f12e1abeadb096746b65d17c790116783894d8c9f4caf379fa3
SHA512 da5901a0ebbadd3d3fe80400d3d301d009d610163ecf204e4450e9d2997ab9cd9b20f086860cf53a5e4b332d3851ae759147a13d2098cde6804b57c374050950

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 22bc7b4eb2e381468773e5d7a81d83d7
SHA1 45568d1ebc43297a830f6166a5ef0c1c61c0ead3
SHA256 be1e025ebdda80b60a0ee38e6329b5c850e5c9f8371bef50f3235d8ab3298f1e
SHA512 65d9e63d6ff2061b4eaf999f1db482486d811bf49b72cffe1c00a0d1e38882e0acf18c4ab572955295c6ddaae770a335d40af3f237a5cfc7e853b3d21b80b7c2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 53d4c090ae141855e2a5fe9dee81496e
SHA1 31cbb8c96b8106dee7191d3a0e9f71d244944d1f
SHA256 ff349e822bf0977b0e9c8541831e440ddc772c1e03867db0f6783ed6edc38170
SHA512 49ae3ca970067834d922d027b5731200257e03c62f362340008e5f97189aa510e6f09b0718c2627038a8fe474555548926ee3d62d6fde001316346bb641fa942

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ccc56f508cfc1d51074c3c73010d2793
SHA1 9f498053e75fc40808ad6c5597c6149708c1493e
SHA256 1957008efbf172bd3520df656d7b96da8d29276b29a42901b1b7420f1e7792c9
SHA512 5cb4050435078c276b3ed4c8713eecef6add0fb858e8342be964fc2c79b432ee7223bcc602b4a0ccf423463cfadc5e53a1cf526fcbc5120054856e40ded96261

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 02aea764bb11327e5843bf3a704b326c
SHA1 5c6f51b82f4ad16db168274783eef18dca2933b0
SHA256 901957b17f632ddc1d4c143211b94bdd9e6a0ea20645ccc3e80a120e7f4cf898
SHA512 23769f585cde8795fa8408b098acd9115d484a7b0dc98b94e7ecd52b08914be4691721e9471dba449f8dc6e9c9d77988fb514d325f89ce541900ef31c824e237

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a262d60c5be53b005ce8f5e0ba8c1f6a
SHA1 84d674dae16689fc1758fd56d28e8e48afc5b323
SHA256 adc0f23fb9fd2fab1c0d4f82066e7fb5bcd4bf2378321233344df81761e63364
SHA512 3ed94f488667ae6caa4d9ffcd3de06781051265e8014115f72a8f03b64d8d58df29f269eb25b87d275fa8298eadae3c7408379fec07b43a18f68d197e6220611

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 950f2ea3ca5e490cadf506c164bdea08
SHA1 5d3b5033c230ec330b9fecc2bf012668baed29c8
SHA256 82e43ba49675fbb6a6ca8c910b5663fb35b1076493dfdac903919c58503fcca7
SHA512 c3d45bd366614788b036a8d1e8571fbefe42225603aaca0612589f90bec64948cd7f6ce28e0164d5cabaac46eeda7d63b39633a6650554f7e9693199c7c4c0db

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ceb9c2a70fdca299d48f6d225dbc082b
SHA1 02af0ac66ecfcc0c63475845d23dce187c13bb30
SHA256 c99a0844e7357e2c1c9cdc01aacd0b4dc7d8ef81b3d9412b688b31efbcbae7d0
SHA512 00f6fb0b1d483939948d915f9d6998239238ce456e2d2cc3b9fe1a9870647c0c58735d9c8c9d4c4b457d11fcc2f5a31639cc4fb1d02f78a365e3c1065a51e70c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3bad4c3bc76d45313c0a48c27bb13650
SHA1 0bcb00469d14aaf8f401feee1fd91e9bae367ffd
SHA256 728fb61ade61dacd2142710e18956304a459be942652aa4529b6fd59c199a30a
SHA512 5a5ab952b7381b77548ee24a49349dd42fd57b7f01a3bef9d3601e84f459786e1999cc439e92167ffd56dc6a47fe808c8c5c29a4970e16f73e25ad49a396cc90

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 aa5be1d6c825daef7c1482cbaed44c4a
SHA1 e529f6738be05dde6bef5f3a7b5e14e2893aa7a7
SHA256 89428f3a2b380883207d978e80c6b875cd1002ac0ea72d6575e9f180c04240df
SHA512 7473fe488e81fa45bad4b8f09e6e629dc09107eec78298823850babd438714f1574b0e9cc89a03d53e17a44c489be9347339a6fb0f0bfd1ea4e007d143090013

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b17e859e35a2b663ce5f43035f604157
SHA1 019da03af84267000d60a249d956fa239a7d0369
SHA256 a0655698334455bfff5134139324b0c5168aa42c066a9058cff545b4b308fd21
SHA512 f7f52607690bd692f032ee19cb3eaa93ceb6e0be53aba697107405e93c26ad71b9d1fe4daaaa5b54a3016ed6c0239200da65affcbd0eb30354472c729ec24c63

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3b866d8903e5d6e0c531890eeeedf340
SHA1 9d8c355707dd980e34023b20c7e5d55dcd8db0bd
SHA256 1d18563a05ef6f0eea9981b8f9d50f88af5432fbd80c84ecfb7d328d72111200
SHA512 e85f62ab5996d5e6a5ad658a24afcff846dfb6318bd7d1992cb587fe032ae1731579a4eb84061da0ec006b0f2abe3e2f4bb1e7d9c545f5d42a486b99c856f1d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9d3ed6474280f3ed2fedb36b74a5c441
SHA1 5354429dd775dd1492f8d852088eaef5973db916
SHA256 e365e17713defea66e5bf6c74de75d84e0e0f19aafceb8e4d169324091cad9d1
SHA512 263badf59ecba6e9ada43e968c67b857580eb98e1eb6ab26dd5b3691ab4520e34e67a183802dddcbc20b9dd70ff269a205a9a77adb88db6d061e096d577fa2fb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8a50f424a2b630ee46d631d408777a2a
SHA1 b7fee1587fcf8373f1ea4ce9529fc70258453140
SHA256 b130db716aa77d10a77a755c66a78452300eab489ddff899d872b122eebee442
SHA512 55d57e81affd7494cf781711bc97eeac65417ee629a40f560b067adf92de4ee0a03d5f88d5b98bac9d56f98a26e33e69b26f1e6206e64ec192b9e6d6b105bdb8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ffbb5ea9c962b2aed7f9b54047f887d6
SHA1 4df1cab17a83ee6d37b96019912190fd6197d9b3
SHA256 72736c8b7c29cdb387be1fca12df994a02836349e6ed558a4252a88af165f382
SHA512 454290f9d92e3789499df9013f1a33f4251f40db76f34d452ce9e2bc84c979caa0ebf52f585093c39cd9404f61f41cf45ea946c78ee0fce7510547e05f4b207e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 53dd5d37fc3bab381852a26352dcc6c6
SHA1 bbe3d29f7233dd26336be926d7f14689ae2243c1
SHA256 08e855e695d1b16fd7c2b9e4c6ad82c5938cd4d25188270e796d85867fd6feff
SHA512 72901490a10e27544fa6fb5b2ccdc170b575f9b7e869d02131b038e67ace9a0996a542841cc14673647be85e7ae5c7423e5ec2ac3380c2832898e83c01e0f564

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 69f28815bf98af1fe27df23c5d57d217
SHA1 b2bbd7d0106996009d116717dec4d75c42dbf3f8
SHA256 6ad5c2d48f53ee719ff1e796b824b1655a3d9acb7f630e1894e3e1d4ba7d03d0
SHA512 e6fac5d2579f8186e62b70ad722337fcabe453a98255cd5a0e62351b58e7540066350f41a68e1b79e9b87243390ac02a93c6c7cd2fa8b22e6e0b3129b6d9506e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7b42b85fdfb7bd8e5a5e7ad320046244
SHA1 c3938af95e8392709335ec19dfdfbae45fd9370a
SHA256 a6ebfe9d84a458b3bf427565ffc5a9894619e909c18f46bae010518db87738b8
SHA512 dbadad007765755b8cc89cd134634fc60e5a61c2370bd53730e949b50e55ee76f1eea60428a868e5f6e8266e5878e2350bdee24b09018c8742803fda0b06f1d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 25b25f6a5b1d81d0892e83b1d65d12dc
SHA1 5f00358a4bab85b3b479da86a50cbce39c89a564
SHA256 19f5d1a2562ba6689b84033eeac2192f602f6c512ee6b765d127776122470d17
SHA512 331dce4331ebca2ba54a26f44c6ad8d70468b2b0b748ad1a387bebe0acccdbc8a6de3cd9d7573da9a7e25d879a4deb92360dd2a8aef9c0c58cc2f0a08dd39f30

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c5d0208bcda6a7ad6bac46de6ffdb379
SHA1 b7404c46bf2a3c0f604bef9fdde7bd891a588422
SHA256 6f752d6e0af24c416dc14f99140211a34f41833f03b2b846b95ab54af2f2302a
SHA512 0fe0e0f461b7cbffaa22f72beb1a32fd1f8887ff86bbd9528408ab61deb33a5ca594101897d2279265e93723b3dabf985c239deff5a3ba5238ed90e9939905b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ec16f90674c65e96f18e7bba3a191f9c
SHA1 997bf34fc535b207516636f38c8d0b6587565b45
SHA256 b83512efadaa8efc0b67ee51e01e795607a68fb1bbaa8b337a5ba340bbcbab34
SHA512 0dea8d350e2d637ee8de7baf3a10591666202c22da74bdb7e84a47b7fe56b4945f811d91266a7ad7623709983a2f5e67dc3081bbaaeb20f6b8b97c7c678eccae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 a150d575cc36d1da8f507cf9d59f9f3c
SHA1 188819c2ca3af24da9b94f31df1e0f5644c47cb0
SHA256 bd4e5bf142b32ff4fe92fdefd8feb0b8fac16f14adee78678caf40edfada58c8
SHA512 521170e4be552ebdbf20968b2be20cd30a11321a97f8cefae49280ad55066d83442cd1d931c9b1740337545f51abec282d5ef16e650471518ce0a076343539f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old~RFe5ad850.TMP

MD5 0ddf1e096c520d434c566868c2649bdb
SHA1 d350d5017eb6223cf4d4ac835dbaef540fa38be6
SHA256 0870fe93cb14284b6f6a1f78de3f48348c086862733a79a4b8df98fbede08fdb
SHA512 cd19ebad766144f046aedbf9b1ba92e2ca998befbaa1903f076433e9f343b998b97bb350fad51dab8086cd7c86fa60f9136033812c0e6984fa81f735b7cb907d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d

MD5 66e255d64273467cb15d55c884a72f60
SHA1 1490c48e53877dc6a65593088158a04fc07214b6
SHA256 39808623b7274283cf711b9e5f11cf3a59cdee15d5f858b89bab72867398a0ee
SHA512 4c71b3984643d7577c12c24012def36e4abb47b9d5199f8c1a58981879270ff0f76c65b2e2371bf36235fec4920178d3ab0bf77ef111ef991710f485ed1c7015

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f

MD5 0654d3fada1f1d0473eec1b0307cd5d5
SHA1 c10547a29c8ae5be2d442f48f46e9759ee256210
SHA256 24f7937ef51d5d77301ac1b1199050c47680b2743467eb57ab50dab265399d2e
SHA512 35550185bb28374b0c19a0c638b02bc1f262c965b0c2943807f20c0114b35ecc57bf7e6be3fdec7eee66f310424e9283998ce44135ff1d13876d069efa7d4298

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

MD5 7709df8d1b6e4a7c63a277a0be2148b4
SHA1 00095ad0403200a706477182c9396124ac780893
SHA256 f01d23a26eb64617f657fc3cdc84828636896a024c1c5b56c75af8984041add6
SHA512 807f4c9cb4aee50c37ec411eb21855c262e165f4159be021b533d96601a1ff52d6c2a210cd7cd54e5676979fd332b3ed6a6772db308dad333afcc99720f4cbe7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032

MD5 3315a2f404f093d0965f7f8a408fe0a8
SHA1 fbb58e17237b5433c0396c6db7d651269628f2b4
SHA256 94fa01c66fd00f3c66c5fda6d06b737176a21c4f37e685158cd2676fbd0e2901
SHA512 d393b27f8d4bc134058b12a3bda2d6442375da304ec3242ef1023fd47c558ffb3264f0a4d6cbdb2d2d6a6ba3b22a5d4fa8ccf4ec7cf26cb569544eadf9920a8a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 ef5fcc83ee6fb28f06e5503b2b016806
SHA1 9e571e76dfe624d7210aad95d78781cbf15a7079
SHA256 32007d4c9efc9889da70175f2624321aa8fddd12a5dd92ecf49de941d966e7fe
SHA512 4d260e5ea65f189a97637d04bd237ead2709567c7b31ff48688bbda82cc0240d0063f9c9036d79cf8879103c0bae0f288ddb1a156af30f85cb14a57fc83677f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 28dea9a5a4492fcd5011d08eb61c4542
SHA1 9f3fcb422f5b77f49fd093a9cca4882f7e5ad6c0
SHA256 d0ae48f70dea07ddc72cebfab98cf0613552750422affa3d157e7f66b702b5a4
SHA512 78a84ddee64d5cc2155202c7686b126d44dd4c5affcc939f992e0a39f55bbf577c05ace6df3ed4e28e7f05b3dd1c8712802442704465dd2674d58348b0ad1cd8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035

MD5 80aba2ba842854f328fd9426915f42d2
SHA1 b8704e7b5c9015e2c49ca111106a1322f9d15adb
SHA256 961679b8eb5e1585d303b6c90b2442dfc3df040bb4334a55fd499b6d3d10f08d
SHA512 14578bc21d158f408b78101362e4eb5e6a0eed028c4ed971f1f32abfae0278244cd662305f43d9791e8f121560c7ca960f659fa21879484f5d72a997586e69d4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000034

MD5 75217847a8b2918fbebc05d2dc06dfeb
SHA1 fd1248be3efadfe1b0d467223378025d68a39dab
SHA256 3dfe65902adadaf1d8c16ef685241c4d58cdef1813c2e5f565da4ec2bc6c2041
SHA512 f884c14907388d0768e349d4ca70ad4ac49d4f100c5a6dc163b88d829aa16ba7c6b87e8638a800acff92a6d25fa9421a9c1da18d1681f4918d2a7087d3ef12e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 084639749ecb933d0cbad77a03d9d4b7
SHA1 947425b78907b3ef6f8c4e409f7fffa1bb484501
SHA256 55ee56c79c821657acc924e77398ce10fff5aadcc4a45f45b4372b953d8184ed
SHA512 2d94123686a550f54af49dbfc352a83939916bd07f13172d2ec488487612d29b18f68688708a6c4ca960bad45680c236b6b73190fd72df71e7bfa1451d1081a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a6db1023925cebaa50f74c5bc5dbcf0d
SHA1 baf076ba44a450296f4bf95d958144a5cc009a2a
SHA256 23fbb8c991cbfd60d71d5cdc91854f7fe4b9b4dad4d97c1c08c35ad06a3e0aad
SHA512 1690862b84e8a7dbcfbd4cc0659417db63543d52d21c5b197be6241d6dd533672c51eb3edec7f4693c91ec9e90026ded4fe4bd288af55fd463f3782b56d006c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9695590015f1ed0647e0b850d557cf01
SHA1 31f9efd8ae05470fc26f345619ffaaaaf57468ba
SHA256 6d211f49b96d80e527c72e998dad392d2b6ac836d6d815e389703c8fd7cf46e8
SHA512 539ec9a53fa7aacf29f5000ae051546574c3bb54dfd34cbbbe312707e78d35511ce1e5a6e5e73d52ab30e6f3509cf7eb3383b4d889997f4d4205c63b124782fa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b2d0200b4747c05e8b40bc90731ad68a
SHA1 1db3952d8cfb52a77e1bc43389b222b7a13810b2
SHA256 f3f48756a29980ae808dfd8293683d70f06fc3f66487e2a76b14d94ea3710f05
SHA512 ab1482c5e8a778c1ab90b97b12809b6df0d2e15b3052a8b40c32ec6f2e089d50322929b85897f33b1f2a70b9d5427a86811da7975f1f3bb083d72c8bc7bc4fc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 388a2f9b2a16d5f6dafd2d315e49bd9e
SHA1 03ff14b33d213cd3d0123ca2dddb25f63ae86ad0
SHA256 f84df4bfcfe68e1764d29d52ed68ddbfad4bbfb99856e2296c571b27e84dc78a
SHA512 c8e6b8d92ac1e84bb098490f2853ece9c3238ddbdba362fb41908e6a59eac559944a73eb2625c17ed546ca2a69b9a797d80ce3bfb08aff56393d8d72395a99a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7678ee2592c48f32d104573657b4057d
SHA1 0509c6ed71a4ace2a9097c5559a665e8fb416cb3
SHA256 fe45456b4e67131e19627bb0b13c4da1c04f32c12600fe8c5ef32fd1ffed21c7
SHA512 5103fbbef4af1679a1e249067ca3c9c11eb30c4c10c5d71ad4f103ce5c5e6a86955afa74394bfeba2b28fd7cb1fe28401e374ca69af2c735db15e9fbc86d9167

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fbc0359dc77c332b65aac307b2969876
SHA1 e37f4d2d3f646dcc8b5c179c45c5d987387b7cdd
SHA256 6280c4db68aa581461c09ebea37fa6b461cb814b9515a32fa359c77c737fdae9
SHA512 bc1f6bcf482a62b0715e23fb7b615cade39d397c32447d3810e80ba5ce3b48fccb676c238f2dd1ef54cec3766633cb1e657600b27de99ec78f3c531c919880c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 367fc2121a4578c53dff8b100f9864e4
SHA1 d4fc2ab9bcae4e4cddf00fb8fd29968da3dd0889
SHA256 67cce2b1187ec3183a419fa8e5e33f60ee3217c7f52701b50746409892442872
SHA512 54ff8d14091db3188adc3185065e0ed66bd7ed07d49cb6ca9269e647cac2366e46d7f2e057236d57dc183d6ff590588ddfe69bba3f863b7686f46370319b5e59

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2d9a4577057486e1a64a2512feecee4b
SHA1 0d52e95fa8fcb2d7dfea3e581580c0b1a0f9f35e
SHA256 e3965318d62b7af31a5676ab8de699ca11d4212bc752473ff793d04aeecce53f
SHA512 25521aa3bdc7758b6439fbf7e0678a6cf1421c6dd74ef852d34f04681c5ca0ccefc021c72c06e6c38159cf387ec56d162969dfa7baa3da183a888acf45672863

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 c80a744119f0297bfabfc4d3ff9b2237
SHA1 a8988436a2bc88549645c46b3528b73cafc5dd61
SHA256 4e57b29cc68a744d846a03cf4e89c5380dca81cf4372ae67a23023e1f00d83a8
SHA512 8abb38c1dddc105962840079dd1f38ebc633a460e0958c2011858ac06a0c6e59212c80b3592730114dd04635aeab2926ab14e5aa936f81a65d1f4ebdff27d645

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 44976e95609ba34c3ec2154ae3ad0dc4
SHA1 531a4a5fca927fc7d49cfb3bb7c1edbd09c99c1b
SHA256 476a346abe2028b6a4e85022b1e3dc34a86963d62bf6944c5739f60416f3aabc
SHA512 360a5ae4863e572535acec95321b5fbf61b36d3a08e9764771dda7c541810ecac03911e09b4b200294bb4fbbbcbce22346b8723da234d1cfc604693144219593

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\000005.ldb

MD5 80ffa8a44af10947645fc13fdae55769
SHA1 19902aa5680e7cdd9c3cee8f63c4e99f3153f55b
SHA256 b85d4f18de90243cb47a1ba103665cd437c0367e3cab2e7afee8f537e1047df0
SHA512 d631c6e2b0154663988e3e7c4cdd9dae1ebbc75258d510ed45367f4c1743cb5f5d324d5a26c32466b9b51e4c69f87ce83d051b893e43bc18848be4a1e42dab2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005

MD5 bfd9031786ea04b64b5a183d5207527e
SHA1 cb9485e6f785315c3f8cbd9ccc0b210d20167668
SHA256 33664a2bb1dd0a28cf0323960a2233024d3a5cb0c103b786ec17334b3b982292
SHA512 5c8bc93e404b254281d06c8f2ebcb53e7fd25f7971741a142d532731a2246ff7b69ca9e5defac075eedc87f9bc4f0990873b155d3c6ea50b534f36908b2be379

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9678ebf28d10d406dc26cca39f19181d
SHA1 11772915f423a1df8c4333338e3f700bf329d5d8
SHA256 cbf913df91970935e8de1b5cec21e1f100d91c95428583afd089df5302204264
SHA512 adbd01c54fb7b1de702196d1eddf1b3fe123e0b2d3883a70b1e0ea209938e39850b0b1e6210b800caa070f9657a32be0d2218a1e3e5222cf5bee322ce66b793b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f28a2c8d2c79e0f426eadeda3be1a752
SHA1 e78830135596e709ddf0dcb9d7b98ce216caf89c
SHA256 950b46ea05cba48686d97c039f1d88984f119b4fbb9151eb63c4558e53fb9549
SHA512 f99a472fc7f9b3e15059faeeeac241d657e8bfa2edae3cf03a490b0165ef81ca4ca9ee59cda996cdaef4b46cb5f66c708ed0911d810a36b42fea7c87dd39ce39

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 dd575e6e97f75928f8bb3c58363b88b2
SHA1 31953ef661af494288bd45c1654bc573ddd3f65a
SHA256 6f31f423703e086a42ad138e192a8a8a9bbc3f861d715e009fdf513847b5faff
SHA512 9b3ba95185d9674ad5f1da7608c93fad32277c5d857ea81e9132920176579466e47ae63a743fbf863c380de03f48e7dde271a1f5b11e8b482a18c0dfbc385217

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 47b4652ab5ebf850f3325292c4f4e4e1
SHA1 05fabfa8cb6e18092c617d16bf2534f1b82abc88
SHA256 7f7e55f717e4a17a0ce8e6a300dd9e384536a3dc44be70d17babc57727024f40
SHA512 46a3b9d2a71dade2b064f49e6e89eb1206c901e4a471eb8250071d7e504985d2f8663257bdc43f8b865cbf86648eb5018b8685b9481c8cb053776cef639e7847

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 dd8d17c3f8bb30219750a9341615ec48
SHA1 a6312d2282f5560f207112c451ebf7b7dab3d623
SHA256 3a278863790ca29a1ec4b798e208e2043c0823adc101c0a97806098512292c9a
SHA512 e6f8560b04835400667fbcc23f028479b2b98347bb9360f62d77fa3fb306f27ee496b0883083aa115901f414c7422482cb2955e68c63fadaacd39c4ca4d8dab3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 70505cef72185565ce9bf5b4e9f55170
SHA1 f90ebad1271e046ba3a46ee54f47a396d75d90ef
SHA256 1d62fbee54b15f125dbf3e14b0f58ec3f089558b2891acbd4722b638c92a8391
SHA512 b7fa58ce372ab8b9a203d7d006d1603ae94d655c4735abd1a3b8ebb1a8d2379cfa02b0ac52df7620b5f38df201e79dc571ab9f53b03cfc312fa20cee95105e8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 67be9cd579ca780f65f46eaf04b7cbfe
SHA1 d79df43d91acc999910eb48bbda0f2ae7c83b4e5
SHA256 94c606a81612c017d2db2f404d5e10a87e06c4ac8188c0e11145c78a94626acd
SHA512 cc6f2d5d7a3ea343d25b857c65bde65b93323d8bfb0192ced55e4370e00993cd31b095d588f70dae949e085a45174e2c9d96bb69e5f23fae691fc619f52b9974

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e7baff16e01368a2d48fab7d31590e29
SHA1 6464be07f1f4407523afbd72e1de7eaf7dae870d
SHA256 1496572481f45d56e32f4de5bf5b6fb7b3245c443a8b00b83777e80875e4e6ab
SHA512 5ec1d180be9288492d92ba2b86934fe7c3adb2794205e80cbfb3b5325d40122da11831b1955e86075bd577808c3bdfe6f76a3d685b4a8bbe1e14202eea0af72f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3c46bb99f74d1741c932c2abeef31a7f
SHA1 d526cb78bde6d16bd891ab73c30fd1eb64f1f97b
SHA256 3bc240aa8e3cd4e49a2e5c6e388e8678d886153aabcbf6857d9b09e0da4df6f7
SHA512 82cea54d83b7b1ccaa27e3c469ba29b64d44014475f6bcbf0ad8740ebf014f8bec4bc26418342376bcaeb36ce72e402fb47796509027bec981e2175ba2f211a2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.roblox.com_0.indexeddb.leveldb\LOG.old

MD5 abc6946677269c93d938b3b7264ea0a6
SHA1 3af5c3e3365ec3e038906647f12058632316c5cf
SHA256 6d5ed29fc1da3348f132b9c3382bc9a4638cac278a1454cdd19bc8e97c713bdd
SHA512 d0857a69327ec12f7a8a8b070b6185ad5822481c65a74f4d67fbbe8cdc0fb53f20ec9561be64203668e8f09b45a764fe24ca85995ab1fd2d7abd23342f17fc79

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f049e2ebd30512f79fd3cd52ab475dff
SHA1 93b73cc52e96a0476a21829aaac158a66e86837e
SHA256 04feebdaecbfe42465503a2d7db42667c72e1abf9942ac0187a94c004ac3ab08
SHA512 8a49e067dd401d7e2fc0a84f5f56b91e28cabf608096e5cdeba34e3ef80329e16aabca1d064df6e4d08d04f5b8e6a5c7172cabbe9e4e50939cf79f40373d9e5f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e

MD5 b670e46beaa7d56a14f51cb645585d7c
SHA1 d21976797ef24a8ee946e08cc06c3afd165784f6
SHA256 5aca64bc4c64dc39350fe5f6b1801ef03f0982f623e562932b792de37b95e04c
SHA512 f9302c454adc4e2b0ec9c046543523d733ca81f31ad0abdf3c7633a272857fd010122583afe0511306fd77074ae967431fe990580b9e184775c128929342faf0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4d34260dd2efda3bc5c4e3d0c600036b
SHA1 e7b1e05350675047b76f542ec809b534e0ef1347
SHA256 76345f6d93ddc15dacc9a9945f3baaad6ea767ff68a7a00b26c35fb35961f9ec
SHA512 81cb8ce9f4bac5913bbdae27e96f8768004a355e61b7982df6421877f467db27b1c7c9c8d215e0f83a37c8bb98f4ecb2da6726be5a67a7080bc1529c68fbb34c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9ce4fcb7a12265b3_0

MD5 63711d1026b17c2c5f369f8672f892ac
SHA1 79e97576a10493cacc9f18c9d631c1b2fdc98f56
SHA256 79ca232f18415bf67fe43b975e93a4bb0ffd0c958d29144299ef9c526135ae66
SHA512 8453eedd4e74099446f74cf8e87310f6c7f2855d7baa7fe37c2f6ace3a461deb550dcbc37dd5b25f82d09e704d30a47b4beefbc5c6bee04dedb38cb794c60f2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e70fb0b6d70f05f1_0

MD5 180eae00ab454e70e6baa14dd02e5634
SHA1 118ef715d24f681760038368336de29cf4dda696
SHA256 32dd67700dc02474ec8e1fa52b57b12a73116f7c528992acf2996c726b5520a7
SHA512 16a21a59ad8feb2ee51984582904794eaf51604fa87cdaa2de9af4f2bff9ac5c71999546e2a68d2ff7b136f2849cf890a903b6842edc867d15f647c78b847ee5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3a14719686e568de_0

MD5 545273e8085affdcba53aa6b794933f1
SHA1 4fc7924b620945da4b0a1f66bdcb59dcd026ab39
SHA256 ef7d72c4691bfc3ae214d493a9af08c1afc32a8e3df0a60be566817c5a5b7667
SHA512 c114ba57c457b0a2576b73d7f7de4bcddcb810ee949c2be37de5a116dc9a0770c1a15b85239d0711f01b610055ca5a147fbe005e41c4fda72a21c9ed5da659c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\637a7010c8a11550_0

MD5 e352f03ffb773a3ed9df59abf9918cb6
SHA1 733561b7cadf539391a41d8a31d6b64d70861d91
SHA256 deebaa14a61ed7125ea92715e7b7f907fe6b95a1a1af0f4e1f796e99f8aab1fe
SHA512 b623d704fd1bec5def552248df964518d31d8c6a1568fc8f540941dad8a34d449661675166d90cffec612d0db252b6558f2a62b9abbed5cdb3f1473403266b68

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7cef5de4f13776c9_0

MD5 783c6623821142b467c997c1dc539e96
SHA1 694788bd02f199e92c0c4a49b51f06c0b23f8d23
SHA256 dd06475296a5d423e7f2e9ef97fceac156d26815cd5b51234337c6bb8335fc59
SHA512 f1e82d0a02ceee1b436082f0bd2ef2092e7b76769cbea1e5deb05a70377fb98032772794ae39daf7a214f1bccd74644296821f530f8cfbf0ab515ac86b70299e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c95b7650bfa7bcbca73a083eeaf72792
SHA1 dd5015a236592061942a651a96b38fec9d43ca7c
SHA256 cc991fe8191efdf6e04b13189d5029984cebc92fc893f36b8b7f4f4c77bc378f
SHA512 9a3e2ac6212196f698ea192c1fbd482b637e689b64bb09f3501e1fb064f6a40bbdaaa2e1edb60d896a6ad990d3b9568ba6bd6613465f9f364001c98830a481dc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4f164320e12270ff478fe8c0c99c42a8
SHA1 6a17efc6e9a8a8885bb4b52708d5761bd1e24764
SHA256 666e1641e7fb56bdc4b8761f4dce0393ea0075646cd6af7abd76b3576f812090
SHA512 22534a9d976f3d1d85e37da3132f8b02d98258a21c2d3b03629c6e097b9f2751fda02522b6399b1a2342549eb3f173f0552b90377137242f87ef9f5dd33bef3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 7d08d4b3ee8e9246a181529f3e9b2f2b
SHA1 31210b01edb01b056d318b94ae683e2504969b2e
SHA256 369a74e647231c0a1b39ef80c6b47c72a8727cabf6a5d06b517ade6129e8478c
SHA512 7b6b8600ef688ab739aab8ae139f08740d0c9288cbda262d7c0117b5cff539d59d054412e47860668ce9c89355f2a0e217b4f308058e9e872c57438ce7132995

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3026581717e9c7dbb1226616ad848914
SHA1 7420f47cc228873c9747e58e1a737999791e4ed5
SHA256 2e397ff60e123a8254ec0e565e75178864758d6de1fff9ebe23060bfca63c147
SHA512 25e976dfe303547ebec4cfb76b028eab792b2bfad650a903c69f1171e100dd5e3030d8929edfde633fe18f69ebabf64f5ac01c3432250be000aff722176cf522

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 75a1eb664a39af9925a4d8c0f3bfb754
SHA1 7fd7b463a950407e2c89ed8f0dd909481ea81206
SHA256 0987bae74e2a31c3f2a7b5f74fab385af80574bed2396638bd4a4953ce556366
SHA512 e28be60d5cf7d4e77f6265f4d7bb54c7feff19ac106a222ece1236f15592b29be3e0cdc3888b0da1a338f071e0c03a1678e7bda0f2d12fe531047c84735143a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9066ca667dc3426fac1ff1ae7e3c1241
SHA1 a7382c4a4df003d58bc6244a91023a71c352d862
SHA256 269253eb939db87da30e1047ef8dda2b7f65b2f983a20ccc835cfb10f042d961
SHA512 451f64a5814982cf2e35592b52a2f48963bf5f6b53910b192bade49d1c396ced9acfb79f6b2abeca8d6419a0f419b58baa31c859c718f5e03739dace940bed46

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 5a58cc2829cba9ce488345724fc5fc7e
SHA1 5a69a23cb91a0a3ac37f2a99920c8ebdd81b29b6
SHA256 e31b4aaa68363c531558ae15e602c94d8d7853aad492edec083f1f14a9f80bf8
SHA512 7a1a893bfd1e1e6656dbff04a8b3edd67555f1ee6b5d15ebfc91d00e044d408d1a644c88276bba4a19884ca2ac63fcfc31ffbe2428efe5022ad10e6452db35f1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8c4e8fad23b6d6be6cc5b097a821f22c
SHA1 aa629aa657480d3c3213cfb4a451a160287c7d80
SHA256 12881ecc5554411bd1e48e6cece1a51959f983009f88d352deb8c4fb3811c236
SHA512 4afb421c44b4446149f0970b223c98a8999e2c9d533ba6bdf9e082050feb87c3bb521282e7630c74276c63ee115fab86dc9353dbe79c4718dd79ff6c2b8763af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b71a0b6db2bb1d325923ae7dbb8eb735
SHA1 202135c7910c05830b17b21b32b492a780dbc393
SHA256 24c41d9c24f2558a7e3b132b1dc6353afc0b65f678e7d8eb6b173b2c1f090dcb
SHA512 d38ca10d26da84afa633487d53e3f1308356b114175e6030601c13e47bce6b2660bd9048aca12710edb00de2f437bf5889c8f4053a73f49080643ad23d9bc7c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 381ffb4977f5cd62cf2231a6462b4410
SHA1 cdfb482b093ba43b43e5985b0ffe9aa7055b2180
SHA256 e24485d8e9aa712751566e2b9a1f984b97c2a788dcd70ae98e39481919a84289
SHA512 43ffa511a4695aba5f943f959b3a01cb50ac3bcb9dae101fc19954ef83a7dbf0d4f5d03301bf65ac2b51dc6d2a715fe29264c8ed2f2e4a2504026eb361878656

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0658bfff0bb4f90811d67674d931a5cd
SHA1 387bbaadca02c0c7cfefa74572adaf1d6d9cbc52
SHA256 0f82a7db6de900d27b60f71d7c82a23932ce221b74ca5af7f73e5f5682740e14
SHA512 390a009bdc6533659fc98d84789332ca6efd85f94a8edba4b43c6d72ccd96a652e36dfe45bc08b0ff3fab9a041a32c922244af4f7f55eee2c400c0ede2888794

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a124b642e98f0991_0

MD5 c9fe2c5727c5148e660d152163bd4295
SHA1 312087145a56d69adf9580ccc876ced00fdad944
SHA256 1e8869b80484e639c3e96837fd78d134e0e5c81f565bf18ab463c44b02efc03b
SHA512 e5e806de4f5659f9ee7e25ef17c4a575d2c73e92f2634202a05821535f03309f24164969ccf6cd8114317de31851e52fb3be2ba2ae72c4d9fbfdac524feb81cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1ba74ee44dbd1c73_0

MD5 b406af7abc0f3cd100e6a8cf0381813e
SHA1 a35df959f426aef29d7b8746eaf6dd5d351ef4bc
SHA256 dad3f9916a1c8789325dc8a2f6ecf12cad462049ec5c2faeacadeedc8bea2080
SHA512 02da6ab15cf609183d105f6214b69ba0478992d81af6b34d96132479c7e36dd84a373505a4bd83c8508599728e1c9752d105de8b9cf456b236c8714e14b4f19d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a3e95d77cc56aa1b985aa2862aaf1284
SHA1 f3efc460b80f871963fa9ccd1a6fdc4faf446cc0
SHA256 1ebea7e20904961c80d434eb1f8d5df7d8744ae84eda7ce46ba39fe3e76b8c44
SHA512 60e8cd701bd49a16062ee74ca782906aef766319ec942b12f455c544efbd6f48a51cfeef04b4726b42d61a5dc26b71bced31ffa785e5348a30b429b91e527ed4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c7c7dc98cf0f9d535dcd577ca9fc2614
SHA1 c57d49f032ab2b50b70fbc4b495721aeb2ffc348
SHA256 6c42d1a58680bc8250a82656d6ea3fbb24386dcbabed21e0a50a0ce8fae574d4
SHA512 db16fc764235217d7563d460d8e89c30b85416bdba53d05cbf006efdef1ba13b8813f3fb3212043102de3cd4a8544bb8d4666f5f071799057cb8ceda3c581de9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 67d230c0c12d039ad1813f98e571f5ca
SHA1 84337e649aa1f595a3bd709c6cc0343d21ee7c04
SHA256 3b563ee633eb9475200eeb07ab9b75a7f957ee5cc4ddb990e1c29aaa24c8f397
SHA512 30c010fad5c05883a05cef3db2f1e2fd4cf6ac70bbe35f6ed01856fdf0291c064b73676aafe40e30f63791d8df95cf28f7376ea0388a8ce6c30879b2d65b1e97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 eeb0380e7f823b7888136235f9af0439
SHA1 c3da562a82eabce9460c2b2e5b7b51db7e962cdd
SHA256 a146d3fc47da7f4c9e4667ded93f6f548af12544b89b0ce37b694ce0d0861207
SHA512 9fa787d4d2bf8fa5b42ef9f109ae98c4b962f5fa3373ab89991cda943340d3b9d52d7096fbaa3606b66cb6563f54cb93b37a5872e5fd9f0935723202327d5224

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 d0062a46df0a2ecf2e24f9d4a735e95d
SHA1 cb1b6b00cdc9b2a1ca9fd93329561d8f77ff3fe2
SHA256 5e190ec033a4287382fc3429775ee29470ff34e75bd7b7ae3da605bf91b7b846
SHA512 7ee0104f224a0f782e6aeaa707fe1bd5914a35f3c580c3d7a2f00ec1c9b6f66cee5f5d68fd08be40ddd76c24b52c98dc719fbb1b0d6e514f7f34eac3dd5ef1be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7b9c77690f9239bc948c3246641999f5
SHA1 caba38979c076249e57695ffc29ac61964362473
SHA256 853a14b4513be4bcf43284191b002b1dde30dcf1f10ec78dc44d3b9a821c9cd3
SHA512 54a9fc490a57915dcb4e3f5f9708172e20b5a69b2f32848f8ea6f1b2d0a66390021637236eb61ddde257976fd4e23cef79e5d59aa1a1eb942acd1c65dc32a1a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 896fc113739fbbc52672881f7fa98504
SHA1 edb45928faebd67268402cd3068321f8b6463afb
SHA256 98a1d5c5555df14cc937126efcf3e25e21374bd80e0ad3f77dcbdb36273c8e22
SHA512 a059a80a74d6341588e382238cf701b25abd36ce9ab084b990db0301eb1c21b4d23faeebafd84f7508926c5cc459642ea06cd6ab2e6c3f5a6d197c5ad735ae4b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1d447ec3559fb02886999b8381acd863
SHA1 30a8f2b50bdf0c2bfc574ccbdf4787dadea5f306
SHA256 ca499dbfa04b863482aa89b676e700e7347d2e5919ab3fbdf7471d66240febdb
SHA512 c0e0266c99a0e00fc784373e109a6990c4eaae77e7a2e0706ab686edc46c0fa6e1582bf8c9fae31708e2467a53551020e34151837280f4ce1a3944b5bdf4a1c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 adffff4c9b8f82a06f6989d83b445cbf
SHA1 d791e76df9c45bb35bc225e23ad788888dad19be
SHA256 0b4ad3881f4f873f6fad3581f6d9783fbed35537e799e374d5fefb41c8d3fddf
SHA512 d070476dc9cb3efda4dd4639ec886c501b732b5bf2e3bcb89007e65cc8af65a903e0919cfa2b7d576923b0aaff3791e5ce7b8d8d72b4781a44fab3211792c7fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 74dd0b956ea12fba007425dd8a464b6d
SHA1 de7d331aacf8d44bc47a02eeca5ca05d457ce9c3
SHA256 fec69ed78c4ad46c8f307253a002b8dc013f0ed65dd68b6fc554a48bbe04fc6b
SHA512 db830fdedc86d261cbe7354a55f71898d9fa50b258f882381d276a821043d0a5271b425f8181a383b30db0f2ea0539b1197feab6bce65d0f300beb4637cd6428

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ffb8587dda5e809898ec6b5191bd1d3f
SHA1 1477a55c8eefa322eb86c7a90ba685960e220e85
SHA256 1649429421b9afac7bfa3c5e7baf6b9a9dae998f384aa5ebbec5665a2348b9a9
SHA512 6afdc14a22d0d60e36c4f9be3c7256f777cb9e1a4299d1c0108ec0ebcf2ef8f45142ff2a46d144a7e5d073d84383fdf0139adfb40b166a11b3f0082836186e92

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a7b5929332c8917401c0fe52749667bb
SHA1 fee4c61031c0117ff09c4b19d0fb3c826edc12bb
SHA256 8000a71f5bd8bdc808b2655555e8c651c9075a11832d98a07d0842a8031ca700
SHA512 f206ce2abc8a9490389736db091cae49585fb0c0355d04b041ea042238bf5e46744aed5d53e68714e5b169d0b42f9523a16b6af118adcb7358046126169ff0a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 84206282e4331ed9823ef83a4c18490d
SHA1 0f64d453da0f90b398c9545ed5572394f45e3c0b
SHA256 caf9aa4bc80e12140b5e436e7e0d446b61f7af40b6e0d660b4395a4b7249c1c2
SHA512 7ed3fefd9d6d367139340476286f8be8a5a7ee4482de4e7f22bc28d58dc367c341424dba282928d51947c855a63721fd7865d27e0cadeb539eacc6c8072cc87c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0cff7cc8419e039a5f80550075a69ba8
SHA1 a8d777b75578cd2b17b35b178d6420a8ca661a34
SHA256 d9ee784a3324893298458e7d776998b583bfd5b1c13061ade9cd96e4562a8702
SHA512 0942791163f9758aedfd9367c0c76d6a6f4cf6117d9f1a5dab5f2ae2ff28e9a40e92bf634c03fb25ffe778fd50472814192f65184092842bd10302e0c69dfc44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 68c0714e3a9846c4b6ff4d2eacc77c01
SHA1 ae9587be1a965384998169d56f65fd318b1a1f0c
SHA256 eca8d455da9ad3e00acfdff05c74c7dc3fa607520ccb6ad6089169652bb3285c
SHA512 0a489e3bd35407d1fd810632c53953b10fc6d094139a9562101afa150df1c93a95f57daba52bb4beae6e18bda2a9d825de9cd6cd927ae88c6d223f7cfc28d3bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 22057d99eb9f5cc323529b07fb015461
SHA1 8aac6df759dac85617bf08e8c089908c0091f604
SHA256 f97a334d8db4e0e5816caf24c9655a71facfd17226148eff216af604ed8335ca
SHA512 6884467bf1c7e398535f928b04a4e88514d83a6438d5a1e2929f6050bfd1c2a75d4fe880217e4c584d58a2fc67f9ec2080a76eab03ebc759678891ad8a946d3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c470284b7262dd83b58202c07b3c37de
SHA1 7ec8d9a8ae35bbedba61148d746802e359f2e110
SHA256 e6098adbabf8a1d383505b75b1dc20aed389deaf31fcc4f8edb4e7c0eab52c0a
SHA512 efd45b70aef3a10dfed13a308786d31b0e965aba1f3ce6241cb7d46473cbb4710657b09401fc3bd501dd1032044f589f24afab4415e7b4e16c56d0bd8dd289d5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000074

MD5 e579aca9a74ae76669750d8879e16bf3
SHA1 0b8f462b46ec2b2dbaa728bea79d611411bae752
SHA256 6e51c7866705bf0098febfaf05cf4652f96e69ac806c837bfb1199b6e21e6aaf
SHA512 df22f1dff74631bc14433499d1f61609de71e425410067fd08ec193d100b70d98672228906081c309a06bcba03c097ace885240a3ce71e0da4fdb8a022fc9640

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8e1e2e99485c683339c009cf79534cb2
SHA1 e689e6eff91fd866be65bf4edf3b3d0eb7371799
SHA256 c0de5766484a8b90bf4e173f3a9e0e3fc6235ea3aa2a66b1d15ec89f54b4e170
SHA512 1e44c579f5eb417abf5fede89f8639ac41cc228716ad594201eb98d535627016d8f0c006d9730a0352570a7250e95e8903a8fefca2c66c4c4a232ce722cb9ff2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8fce0ad5421ac2a1a981f8ddee9954f3
SHA1 5d5612f9841c45f7b5648f783f17ffd5c196bec2
SHA256 a02415f052186c3e2a2c2ed967a67dbfe225ff1e9e9290cd81fe36ebf1f795ef
SHA512 5463f54b16c30f4a4b50e86008542b6713e66c974721274161761710820e633d935b7777dfd0204285f1526d4f0a2b8333c2205120cf7f18ecc642289cf60aa2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 817dfd07726d0367ed45592f69e26ea2
SHA1 f1c3a8f6069b5adb5aa0eeee3eb4e30e62abfe22
SHA256 15b40d1b49bad2d397a308b4d22d99fa02dd099fd0ac8d84eabc75390e704fe9
SHA512 87dbe1b88861c7dd29d92a1281fd415964ef7bf83cd37e060cac7b7ff7c227b03cd9e079c4a54f0cc72c74a6acfdd0779c23f83431519ba166640d6a0e4ca9da

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0384a3216213e55c811f07c0b905823b
SHA1 2d510902a3b657cd9b9783639687d988c1c8a94a
SHA256 76756fc256f0ce0f17bffc0f46e2a0259ec9335cc5c21d406882f33c02c6b3ce
SHA512 e73be9b773271ddb3ce49cb7e4c64d618ab848ddd44a20426d705c72970bd206895b2c0e63b6a27c4a13428c536814abd9fbb7ef346127a18bb65792bacc1be5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f0e0d00298d44180afdaa2064bd50de1
SHA1 a86ca522aa2bb3d0239bfb24f2298d064b673fd3
SHA256 d32bd074910376253903ec63cd98b07cfdd363f4c5ca650582865f8d05cc24f3
SHA512 1b78480001d6b1b3dc3b5735077d49ed244b8a94f5c19d8297abfd58fafbcad51d200e4f31e2fe3eb66741f22b91658bce9a9446f194e48908afe39a3021e403

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8305bae0ee91b4ce7e4b2860a3634670
SHA1 953474deee84030cdcc9f7d85487cca28240481a
SHA256 45412632ea5edc975b5a74b267c444c7841d8d187cd62159b1184b4f228f56e2
SHA512 0ac5ec829ce669529506b337a043cb7b65b9c3579eccd271d1d1b2a2eb07090e5736ef03f30cdc51e5a78fe7117dd196e8375548871a6805bb960f07b8b1049e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f27243a65884234954ffe126af89335b
SHA1 72e543c656e2b400ec9f5ebbcf4b7739795e5e5f
SHA256 2b6bfb0b4f5a28342bf7a9e72dc8699f45d082f6c6158879f8e1f04ceca98d2d
SHA512 23b8bd65db31fcd68ee8d3ae775f91373a87391793065b3d95e6d9a1de735b2aa23b042e02f3a11b4ec98e556e415a0b8a6a83b6625856031f6386fcef01a87d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f20eb5eef68684bec2e65871065ee3d4
SHA1 8761371877b762da7e54c6ff5d6c283f43f17e52
SHA256 8b989d2e3235a510ef27aaa5a4b19feb2492bea3e8cfa75b5705045fdad1828f
SHA512 b86c61e278e045ce245eea7b994a2c536d4cbbe5be28074a0bd2ab4db01a7ce8319e1360d7541fa7b14ee43b36697da9bbcd791561f678f9d43f0b7dbf81eb79

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 76e06bfffce0863296d46913d3b6b85f
SHA1 ae155b0498f379bba0d39dbc648792c99e0c88de
SHA256 a576c9f95d76ef06a747be92b9cbfb74c4285df5a2b6f80d81cef4e236152851
SHA512 39a76b7d88a05776b70ee9c59af1cdf01a6503f0f6fbf100ca922023ebcc8ce8eba87cecdf6d3bfa739ca775cde901504d956df651117957fed4a88ff2cf5835

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f482939c2b8d7ef9a4f3a40244901086
SHA1 ef5e856888b0953d78166d4aff306ac75065a1a4
SHA256 bb3db41bb6c7b913f59ba2dc8b6af434ba02ac471a508c945da4e2c379ebab84
SHA512 a3236a3042368f52a64d71d1f5815349b944d8b963feebb5f16e007a4ae54c1efa93dec252c52f84b9f7f7331f249c2996959bf322d5cf4fab7adc361c863244

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b68218dcdd403d2800c5dc962dfd9b98
SHA1 6507828018278bc718ae705d83deb3009329bc7d
SHA256 c891349af5d8da1689ccc60671be373accafbf485691c34c9d47b7b22db65d48
SHA512 c0595b9b7dc11f800d949ae2888d1bb40a51ccaed1cadaacf3127259cde64c4ea54fb115fd983b5953b0e692ad413a9403990d8699d45051ed34be0cc9804c7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9847e0d5442007bbd02d5a81854bb349
SHA1 9a8ad9ad6a3adcde6132d017fe13f116a90c231e
SHA256 b3f521faab822df0331158aa43190fca2dc7074bfa203eccc275735877d97626
SHA512 7e5155a0960bd0a04f872b80b6291e232b78df63912f8fb59e090cc43918c49b1c87a36e48e216069f78d2a3baea8e539a34ca7d9fe2e0e411f82736eb354c27

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4108d125dbf9b2a8cbc6f55c0075da27
SHA1 43e389bdaa0c81f1c6f609891d65b339d367be3c
SHA256 3415ac5d50bad8e82ba6d460d8fdc299f66e75c0dd3354fe11354b513091fbf7
SHA512 1cac94428f76a809cc179f05ae87de5a889fa7c0c4e8c5840a5f79489c7f7d3fe92f51c037e1eba338695357ab40842fd518596981f8a3d3bc38f3eb05b695dd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e8cc14707cae65f37756f870da778e1d
SHA1 077e5eb14011f3bae2d04b2ded1dbed7334cf2aa
SHA256 0d30a35ac11f541fba68fc9400f0a7493e78c04d0df3b98ea3d8a0063484f136
SHA512 07fea7a920c802685e3e9c2dcf965fd5c71ff0ca9ea153715007d545ef870eb3204dd293e35a54d1e2c3e91d38116d93849dcc3fafd92c80c4aa093a8346defc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dc351630437352200eb417a2dbab66f6
SHA1 6a770144cdc561d831ddcddf30681644d36a7d59
SHA256 3a16f9e6e3112e653efa5f9240f91b0be7bb39945ba0e7a828cd5139f66be5b6
SHA512 6f1801dbb4d1cdaba3081abb002b319c72dedfdaa6d79322598af89952a0107cf441edefafdb3c428808afeae6726df451ca8e4bbd7db6b8741580194967ce1f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008

MD5 70f6a1e1f287ec962c89fb8e4ed38bce
SHA1 65fc137952b567815f00e45e5c1bf7e1de661b72
SHA256 1b455a005fd6d5dc5d8239834e08a68437761ad748ae521df0504c7b2f134907
SHA512 bc21c6d2a568b410d1ebf9d3c7313c06dc7106d0dad4cb2dce050c6de6775fd0cd5183a71b8e3c6cd4dc7d1cf2fdef34e790bebef50b5419ac5ca6eb9abb4820

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

MD5 0eb85925bd5a3e685d5cdfc482fad198
SHA1 c00b9cba0d988f4a66b71166f55f1924265e6425
SHA256 b8d6db24cd3d57746bfd5965eec1f25c4732f0db83104134832bf1618210f658
SHA512 633b18af25ff914c7eb346eae4b43f4cca3f41487b114ce47bf053c72aa4e598e7f59f4ac8614cdba07593cf43027cbe32142b5bf28c0e7abfe7c390afdfd6e7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024

MD5 1c0855f1be21f499eb7a4027e5dd1d86
SHA1 e6ed4d7fe3cd0a8ab318139e185bb3dd8230bbe1
SHA256 22e535eaaf874306552b8ec2683073504976ab14ecbc9939fca4ac53e60066c7
SHA512 e8307c98600bf5817163ee91895cae89bff946c2c151645969f469262d90385e5556f3b6da0c24dfdc4b64a07e84e0a9418b259afd821b142c6bd8f95546d685

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021

MD5 31d4e713ead43eb25da2aea42b6e36e9
SHA1 f30ca6f9b4b5f3bbbf27bce20d88dc155f924057
SHA256 410f12a76d6da2005dedb821a310d072c07c988f736c20a4b3bfe7791c3530b6
SHA512 3700c090ba16c21f155c49e49399471cb019beb9a5f7bc7f0da9b5a975009d5499bccfd4da7887ecb8a123d7c3b1e0d1800b9412233e245e09aa7cd318629916

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000020

MD5 319095e8b40952b12b266eb47a2b2c40
SHA1 1ac8f74ec55f61066a241e5e4e7fb063ff0239e4
SHA256 a8de00bf5dc0b0f5c64627adcb24e8a39c938aad90a37e7108dc8bd2c773ab24
SHA512 20c72b91e7ff900a4ddcd93ff306b32778dbbf065bb67b3e4b4141a144612e4abc1f30936fa38362db484155a0fd9a87e5e5cb2ab0fbbba5823bbb40d397da1c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7aa29ef76959424a87f113842dfa5248
SHA1 c8d0d3762b85ae39b4eba6e922bb4615565fd3b7
SHA256 5cc96124d7203933d0c3b49352ddfc8a5089c98041f8494aa92fe8778656a257
SHA512 be4821698fbab4b42ac93df4690119d23ca9ce3ea44941a60bc6c123e87d59ae02fee27dd728753be0a73e6cc8a859066713982c8cb0483bcd84fe464d67c6c1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 97e4961af7e39a42109d01f08840af43
SHA1 832b6577c605fdc508fa631e9635ea7e39a5f310
SHA256 d610dbd498ddbb28c1e33972a76d560fcba050cbd06f10ea3fb1361e45406261
SHA512 6196d30b44b8366c12a89490116110cfdf27b5b6668b4bdbf6694f427e65e5e5266c80eb87260bc7a3b8269b9b95bec806d19fb0c09ab4426c5b6c4fe8633d6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 97aa6d5a14f9bfb39d631647bf893abb
SHA1 f4f106919a26fc88d4ef64059cf29bef03f6ad89
SHA256 6305faefd1a9ffcd91c19bc9bc15fd1cb027ae54fd9b7daeab153fda3f2839e8
SHA512 b27b27043817193269e2482934a4a2daaced1cb9dc8bc876293cfedab29544ac7dd3c75e35241a00e073e19249f3abb67b58653dee7b49bdba585b03eefa7984

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 511191d8c59fd8dbca7e2e601fc79421
SHA1 68a4e6a30f9e75c7f9b383564aacea5831cb5a85
SHA256 7c5fb69813cb85201a6716ddf5c14b9ca9269f1e362ed8a17690b10889339855
SHA512 ef59ac6a268346bafccb3cae115d53ffcf5ae04b16fd1809b09ba0985b8f7b4f23e52c3a7c83dafb827bbab74021ebdf710f312086c1b518510e5227eac6012b

C:\Users\Admin\Downloads\RobloxPlayerInstaller.exe

MD5 91563396f82674c0b8a13a5bd4faa2cc
SHA1 becfde376e3053a2593640e8fbb743890077ed07
SHA256 c4e4b832dfab883152602b2ffef83f57281ebd8d08b3b8b12540f580fe0526d0
SHA512 07ee5e4084c24885ce735e93c314700dfaad96bf1b65e63a36a9c14c9f91a14fb6d4e26a534627e6a0df9416ce6a80f0539af3e50d5606489638a36b6da95e09

C:\Program Files (x86)\Roblox\Versions\RobloxStudioInstaller.exe

MD5 7478745f2ffdcebdb1c5ccbd482312b8
SHA1 6f754125fdea66ca783875f7c6c0f96be14211d3
SHA256 ae19ae02450f9e885abbed2e40fbabf9992acf61fd206d6ec0da8fcc2ecfeecb
SHA512 9ff8e19eb3471d69654a9a83fdc62f9d340dfee344a1cc89802ab4924921edc2c4b1e4f6573143ac61cb61d970d6150ae694369c90ba453cfeb63966d85bf352

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e5c5a56d5451c75b891c6391ff55f908
SHA1 295d9d6c976124c82def08ee170450a9b2080717
SHA256 31a8e760806e4e25fafb803a37ada03abe163ab8e216adfa9b7d09d9864f43a7
SHA512 d4fd88ad611d505eab9db6c434876d52e0025a3ba488991a074be98eeb3c0933f3766c909751b1755233aa18f65ca9a52e7aaf3813eb5bb07b2c0d3d2e07d5a9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e8e78833d04d6dd2569fea395afcbbca
SHA1 128cb9ee7706714cddec7320ba30abeb98cb19f1
SHA256 99e438b0b1144fcbc096cd73bf90354fe781b1d4b1f378bf9ff9261468f689ae
SHA512 16fad6a4b456e39409097817d89353d6d2e756863b81dc475ce42bb60bd3547cacb24116e5d982b03abfc46afdc6ba0100d4107c316d2c3567e9c2bd07ce380b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 ce6d77211ce4a08096c56ee008c5fb22
SHA1 8904013ebb2f4b47422d166a6ee2d759c16ed513
SHA256 2f3f183cbef8adf0b43fe4264660e036f1924dcbd21ae2b64c46df151617aff2
SHA512 bfca74dbcc345a82c78cd496e9b3f97a58ee5a062b48d0c516ca003a4844f9951842245b9650a74ecac4b434f75d56c60144c0afbd3947a87e384ded3def0b6e

C:\Users\Admin\AppData\Local\Roblox\Downloads\roblox-player\c261fa92769bc5ab6443aade831bdc18

MD5 c261fa92769bc5ab6443aade831bdc18
SHA1 60c313b138fdc767d1b6108e6ce5c800ac1f4bf1
SHA256 c6f1c59442953fb894b7414e2bc7c494d379df20a81bef8a974afec150e0cab5
SHA512 85f433f98441707bffb7d071e8dd20c77766244cc649b6887f43cc01e6d791f70a87f83d836a6f20d35c148327f466e184b3db7ae8db20fab9d3f36efc675e35

C:\Program Files (x86)\Roblox\Versions\version-32f36ac944b34913\WebView2RuntimeInstaller\MicrosoftEdgeWebview2Setup.exe

MD5 610b1b60dc8729bad759c92f82ee2804
SHA1 9992b7ae7a9c4e17a0a6d58ffd91b14cbb576552
SHA256 921d51979f3416ca19dca13a057f6fd3b09d8741f3576cad444eb95af87ebe08
SHA512 0614c4e421ccd5f4475a690ba46aac5bbb7d15caea66e2961895724e07e1ec7ee09589ca9394f6b2bcfb2160b17ac53798d3cf40fb207b6e4c6381c8f81ab6b4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000aa

MD5 503766d5e5838b4fcadf8c3f72e43605
SHA1 6c8b2fa17150d77929b7dc183d8363f12ff81f59
SHA256 c53b8a39416067f4d70c21be02ca9c84724b1c525d34e7910482b64d8e301cf9
SHA512 5ead599ae1410a5c0e09ee73d0fdf8e8a75864ab6ce12f0777b2938fd54df62993767249f5121af97aa629d8f7c5eae182214b6f67117476e1e2b9a72f34e0b4

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdate.exe

MD5 4dc57ab56e37cd05e81f0d8aaafc5179
SHA1 494a90728d7680f979b0ad87f09b5b58f16d1cd5
SHA256 87c6f7d9b58f136aeb33c96dbfe3702083ec519aafca39be66778a9c27a68718
SHA512 320eeed88d7facf8c1f45786951ef81708c82cb89c63a3c820ee631c52ea913e64c4e21f0039c1b277cfb710c4d81cd2191878320d00fd006dd777c727d9dc2b

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdate.dll

MD5 965b3af7886e7bf6584488658c050ca2
SHA1 72daabdde7cd500c483d0eeecb1bd19708f8e4a5
SHA256 d80c512d99765586e02323a2e18694965eafb903e9bc13f0e0b4265f86b21a19
SHA512 1c57dc7b89e7f13f21eaec7736b724cd864c443a2f09829308a4f23cb03e9a5f2a1e5bcdc441301e33119767e656a95d0f9ede0e5114bf67f5dce6e55de7b0a4

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_en.dll

MD5 4a1e3cf488e998ef4d22ac25ccc520a5
SHA1 dc568a6e3c9465474ef0d761581c733b3371b1cd
SHA256 9afbbe2a591250b80499f0bf02715f02dbcd5a80088e129b1f670f1a3167a011
SHA512 ce3bffb6568ff2ef83ef7c89fd668f6b5972f1484ce3fbd5597dcac0eaec851d5705ed17a5280dd08cd9812d6faec58a5561217b897c9209566545db2f3e1245

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_bn-IN.dll

MD5 a94cf5e8b1708a43393263a33e739edd
SHA1 1068868bdc271a52aaae6f749028ed3170b09cce
SHA256 5b01fe11016610d5606f815281c970c86025732fc597b99c031a018626cd9f3c
SHA512 920f7fed1b720afdb569aec2961bd827a6fc54b4598c0704f65da781d142b1707e5106a459f0c289e0f476b054d93c0b733806af036b68f46377dde0541af2e7

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_es-419.dll

MD5 28fefc59008ef0325682a0611f8dba70
SHA1 f528803c731c11d8d92c5660cb4125c26bb75265
SHA256 55a69ce2d6fc4109d16172ba6d9edb59dbadbc8af6746cc71dc4045aa549022d
SHA512 2ec71244303beac7d5ce0905001fe5b0fb996ad1d1c35e63eecd4d9b87751f0633a281554b3f0aa02ee44b8ceaad85a671ef6c34589055797912324e48cc23ed

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_es.dll

MD5 9db7f66f9dc417ebba021bc45af5d34b
SHA1 6815318b05019f521d65f6046cf340ad88e40971
SHA256 e652159a75cbab76217ecbb4340020f277175838b316b32cf71e18d83da4a819
SHA512 943d8fc0d308c5ccd5ab068fc10e799b92465a22841ce700c636e7ae1c12995d99c0a93ab85c1ae27fefce869eabadbeafee0f2f5f010ad3b35fa4f748b54952

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_en-GB.dll

MD5 d749e093f263244d276b6ffcf4ef4b42
SHA1 69f024c769632cdbb019943552bac5281d4cbe05
SHA256 fd90699e7f29b6028a2e8e6f3ae82d26cdc6942bd39c4f07b221d87c5dbbfe1e
SHA512 48d51b006ce0cd903154fa03d17e76591db739c4bfb64243725d21d4aa17db57a852077be00b9a51815d09664d18f9e6ad61d9bc41b3d013ed24aaec8f477ad9

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_el.dll

MD5 ac275b6e825c3bd87d96b52eac36c0f6
SHA1 29e537d81f5d997285b62cd2efea088c3284d18f
SHA256 223d2db0bc2cc82bda04a0a2cd2b7f6cb589e2fa5c0471a2d5eb04d2ffcfcfa0
SHA512 bba581412c4297c4daf245550a2656cdc2923f77158b171e0eacf6e933c174eac84580864813cf6d75d73d1a58e0caf46170aee3cee9d84dc468379252b16679

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_de.dll

MD5 aab01f0d7bdc51b190f27ce58701c1da
SHA1 1a21aabab0875651efd974100a81cda52c462997
SHA256 061a7cdaff9867ddb0bd3de2c0760d6919d8d2ca7c7f889ec2d32265d7e7a75c
SHA512 5edbda45205b61ac48ea6e874411bb1031989001539650de6e424528f72ec8071bd709c037c956450bb0558ee37d026c26fdb966efceb990ed1219f135b09e6e

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_da.dll

MD5 d34380d302b16eab40d5b63cfb4ed0fe
SHA1 1d3047119e353a55dc215666f2b7b69f0ede775b
SHA256 fd98159338d1f3b03814af31440d37d15ab183c1a230e6261fbb90e402f85d5f
SHA512 45ce58f4343755e392037a9c6fc301ad9392e280a72b9d4b6d328866fe26877b2988c39e05c4e7f1d5b046c0864714b897d35285e222fd668f0d71b7b10e6538

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_cy.dll

MD5 34d991980016595b803d212dc356d765
SHA1 e3a35df6488c3463c2a7adf89029e1dd8308f816
SHA256 252b6f9bf5a9cb59ad1c072e289cc9695c0040b363d4bfbcc9618a12df77d18e
SHA512 8a6cbcf812af37e3ead789fbec6cba9c4e1829dbeea6200f0abbdae15efd1eda38c3a2576e819d95ed2df0aafd2370480daa24a3fe6aeb8081a936d5e1f8d8ed

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_cs.dll

MD5 16c84ad1222284f40968a851f541d6bb
SHA1 bc26d50e15ccaed6a5fbe801943117269b3b8e6b
SHA256 e0f0026ddcbeafc6c991da6ba7c52927d050f928dba4a7153552efcea893a35b
SHA512 d3018619469ed25d84713bd6b6515c9a27528810765ed41741ac92caf0a3f72345c465a5bda825041df69e1264aada322b62e10c7ed20b3d1bcde82c7e146b7e

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_ca-Es-VALENCIA.dll

MD5 2929e8d496d95739f207b9f59b13f925
SHA1 7c1c574194d9e31ca91e2a21a5c671e5e95c734c
SHA256 2726c48a468f8f6debc2d9a6a0706b640b2852c885e603e6b2dec638756160df
SHA512 ea459305d3c3fa7a546194f649722b76072f31e75d59da149c57ff05f4af8f38a809066054df809303937bbca917e67441da2f0e1ea37b50007c25ae99429957

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_ca.dll

MD5 39551d8d284c108a17dc5f74a7084bb5
SHA1 6e43fc5cec4b4b0d44f3b45253c5e0b032e8e884
SHA256 8dbd55ed532073874f4fe006ef456e31642317145bd18ddc30f681ce9e0c8e07
SHA512 6fa5013a9ce62deca9fa90a98849401b6e164bbad8bef00a8a8b228427520dd584e28cba19c71e2c658692390fe29be28f0398cb6c0f9324c56290bb245d06d2

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_bs.dll

MD5 e338dccaa43962697db9f67e0265a3fc
SHA1 4c6c327efc12d21c4299df7b97bf2c45840e0d83
SHA256 99b1b7e25fbc2c64489c0607cef0ae5ff720ab529e11093ed9860d953adeba04
SHA512 e0c15b166892433ef31ddf6b086680c55e1a515bed89d51edbdf526fcac71fb4e8cb2fadc739ac75ae5c2d9819fc985ca873b0e9e2a2925f82e0a456210898f9

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_bn.dll

MD5 7dc58c4e27eaf84ae9984cff2cc16235
SHA1 3f53499ddc487658932a8c2bcf562ba32afd3bda
SHA256 e32f77ed3067d7735d10f80e5a0aa0c50c993b59b82dc834f2583c314e28fa98
SHA512 bdec1300cf83ea06dfd351fe1252b850fecea08f9ef9cb1207fce40ce30742348db953107ade6cdb0612af2e774345faf03a8a6476f2f26735eb89153b4256dc

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_bg.dll

MD5 8375b1b756b2a74a12def575351e6bbd
SHA1 802ec096425dc1cab723d4cf2fd1a868315d3727
SHA256 a12df15afac4eb2695626d7a8a2888bdf54c8db671043b0677180f746d8ad105
SHA512 aec4bb94fde884db79a629abcff27fd8afb7f229d055514f51fa570fb47a85f8dfc9a54a8f69607d2bcaf82fae1ec7ffab0b246795a77a589be11fad51b24d19

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_az.dll

MD5 7937c407ebe21170daf0975779f1aa49
SHA1 4c2a40e76209abd2492dfaaf65ef24de72291346
SHA256 5ab96e4e6e065dbce3b643c6be2c668f5570984ead1a8b3578bbd2056fbad4e9
SHA512 8670746941660e6573732077f5ed1b630f94a825cf4ac9dbe5018772eaac1c48216334757a2aeaa561034b4d907162a370b8f0bae83b34a09457fafe165fb5d7

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_as.dll

MD5 a8d3210e34bf6f63a35590245c16bc1b
SHA1 f337f2cbec05b7e20ca676d7c2b1a8d5ae8bf693
SHA256 3b82de846ad028544013383e3c9fb570d2a09abf2c854e8a4d641bd7fc3b3766
SHA512 6e47ffe8f7c2532e7854dcae3cbd4e6533f0238815cb6af5ea85087c51017ea284542b988f07692d0297ebab1bad80d7613bf424ff532e10b01c8e528ab1043a

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_ar.dll

MD5 570efe7aa117a1f98c7a682f8112cb6d
SHA1 536e7c49e24e9aa068a021a8f258e3e4e69fa64f
SHA256 e2cc8017bc24e73048c7ee68d3787ed63c3898eec61299a9ca1bab8aeaa8da01
SHA512 5e963dd55a5739a1da19cec7277dc3d07afdb682330998fd8c33a1b5949942019521967d8b5af0752a7a8e2cf536faa7e62982501170319558ceaa21ed657ae8

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_am.dll

MD5 f6c1324070b6c4e2a8f8921652bfbdfa
SHA1 988e6190f26e4ca8f7ea3caabb366cf1edcdcbbf
SHA256 986b0654a8b5f7b23478463ff051bffe1e9bbdeb48744e4aa1bd3d89a7520717
SHA512 63092cf13e8a19966181df695eb021b0a9993afe8f98b1309973ea999fdf4cd9b6ffd609968d4aa0b2cde41e872688a283fd922d8b22cb5ad06339fe18221100

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\msedgeupdateres_af.dll

MD5 567aec2d42d02675eb515bbd852be7db
SHA1 66079ae8ac619ff34e3ddb5fb0823b1790ba7b37
SHA256 a881788359b2a7d90ac70a76c45938fb337c2064487dcb8be00b9c311d10c24c
SHA512 3a7414e95c2927d5496f29814556d731aef19efa531fb58988079287669dfc033f3e04c8740697571df76bfecfe3b75659511783ce34682d2a2ea704dfa115b3

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\EdgeUpdate.dat

MD5 369bbc37cff290adb8963dc5e518b9b8
SHA1 de0ef569f7ef55032e4b18d3a03542cc2bbac191
SHA256 3d7ec761bef1b1af418b909f1c81ce577c769722957713fdafbc8131b0a0c7d3
SHA512 4f8ec1fd4de8d373a4973513aa95e646dfc5b1069549fafe0d125614116c902bfc04b0e6afd12554cc13ca6c53e1f258a3b14e54ac811f6b06ed50c9ac9890b1

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\NOTICE.TXT

MD5 6dd5bf0743f2366a0bdd37e302783bcd
SHA1 e5ff6e044c40c02b1fc78304804fe1f993fed2e6
SHA256 91d3fc490565ded7621ff5198960e501b6db857d5dd45af2fe7c3ecd141145f5
SHA512 f546c1dff8902a3353c0b7c10ca9f69bb77ebd276e4d5217da9e0823a0d8d506a5267773f789343d8c56b41a0ee6a97d4470a44bbd81ceaa8529e5e818f4951e

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeComRegisterShellARM64.exe

MD5 7a160c6016922713345454265807f08d
SHA1 e36ee184edd449252eb2dfd3016d5b0d2edad3c6
SHA256 35a14bd84e74dd6d8e2683470243fb1bb9071178d9283b12ebbfb405c8cd4aa9
SHA512 c0f1d5c8455cf14f2088ede062967d6dfa7c39ca2ac9636b10ed46dfbea143f64106a4f03c285e89dd8cf4405612f1eef25a8ec4f15294ca3350053891fc3d7e

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdateComRegisterShell64.exe

MD5 60dba9b06b56e58f5aea1a4149c743d2
SHA1 a7e456acf64dd99ca30259cf45b88cf2515a69b3
SHA256 4d01f5531f93ab2af9e92c4f998a145c94f36688c3793845d528c8675697e112
SHA512 e98088a368d4c4468e325a1d62bee49661f597e5c1cd1fe2dabad3911b8ac07e1cc4909e7324cb4ab39f30fa32a34807685fcfba767f88884ef84ca69a0049e7

C:\Program Files (x86)\Microsoft\Temp\EU8EC2.tmp\MicrosoftEdgeUpdateCore.exe

MD5 c044dcfa4d518df8fc9d4a161d49cece
SHA1 91bd4e933b22c010454fd6d3e3b042ab6e8b2149
SHA256 9f79fe09f57002ca07ae0b2a196e8cc002d2be6d5540ee857217e99b33fa4bb2
SHA512 f26b89085aa22ac62a28610689e81b4dfe3c38a9015ec56dfeaff02fdb6fa64e784b86a961509b52ad968400faa1ef0487f29f07a41e37239fe4c3262a11ac2c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3ac0f723b7eaca72825d7b6c5240b40c
SHA1 799ce952d1fb4c1e8b39c67e5fcbfffa70572e20
SHA256 c872d58fce30826094c50515256e4fe82f61f297d10ba5506535280e72140381
SHA512 9786534bef5188e4f20c07ed91dc7636372513e30f9cf5265be6a45d7b40d281388dfb4bf239e056bd796fd11be5c15f07fe7a47cd7ed36f8f2a944672932a87

C:\ProgramData\Microsoft\EdgeUpdate\Log\MicrosoftEdgeUpdate.log

MD5 66614d60e5dbcbcf03a0695eac4d2bcc
SHA1 5992bf2b6c0e8ce2b3583bcd5b0c0c2683f78bb2
SHA256 71eda60b4b6f36c04e8892ccf969430083efce179f70663e2a6dab7a61e5ca06
SHA512 2c3dd3e1081859b9d5e06a4c23f04a1b3234ceff466051eff146d63036deb6f279647d0fb4e1cc5f92750a793d60146ccb8fc48c1330a95a742a5bdb396a530a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 804b9da6def30df7d80a99edcc1b07cc
SHA1 632484cfdf39dd9d43790fdb47b6b5612576f9ac
SHA256 903b977ab28279dd0fb4d17d00f24a2cde2236f8155fccffaec9df26503f40f4
SHA512 98f812ce7af71f594904b3aa331610c4887e36e121d420cf9b1b5acc246b745d62358c7820f8b07faa22373584dca11cfbbed0b48a58f12a21fa23b14aee401f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 7f67944303103cc7e2a56ccd2a852206
SHA1 4c2cf6f3da96d133a4214b5c5789ec92afa14c5d
SHA256 319f4c0b13bbbc40b252c43ec4c7421f8b3a75cec87e784a7c9350df25760cb9
SHA512 d2c32d84d84bd2e2907d512b6dbd82bae670b16e04bbb416c0ca3de6ad1e5e3f190d0709273847de08f7c6fe30f40c8400ff9f57c16eda94b3c870b23eb88148

memory/3152-2800-0x0000000000AD0000-0x0000000000B05000-memory.dmp

memory/3152-2801-0x0000000073F40000-0x0000000074150000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d2d7a0651dcc6fe83b7180f58ec2931a
SHA1 8b4f3897484a4070dafd312fe8d05d5a7320ee47
SHA256 9fa853bfa27477777c177678226a09439648931662e000618719e4d91348bd02
SHA512 2a3ae1bb3f3d634f9029df52371fecb5af931b328f7a852fa541941bc121a3d9702b77bb6e312940ef3e9c3aa959fd8ed6f714ddd1784cedd6af205bdfe18b56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 33d89ab8132e6ccbd337af548e3ea18f
SHA1 11fc39e46b2b1bf6fcccba84cbbccd171a55d7e6
SHA256 97c76876b1a3ce432b15401ca058b0f13e89e77b5845da540409891cf56eac3e
SHA512 9aaffa7e7b717bdcb75a4d10c23502dd06e94eac2b9faf167c0b308d9fa1d7accf1c068450e1d01aa112d5e3f73a49f0cb4ad7afad11c41c9d0ac6454f63a491

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index

MD5 efe7eb7be1120c67935d77a70fd4b1eb
SHA1 46afaa30c28edac3d533ba4fa9ab3ac732add679
SHA256 e3e04460f75f0e71ece917fd271f96958d9cd9f94d0f98e1a5a3e998cc40a182
SHA512 9fc883f458a496614c017aa4774f7c2bbe4c39c80edeec945789bd433bc16c6d39ca9e9486a8fb9cac91108b29d6d1b8fb01d45cd1b8d18ed91134fcdec9b243

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4c88b551ded262932c20eb54bccfa01c
SHA1 112c02f910b2e7070347bce620f2a25359cc4546
SHA256 b686f2dfe00aba7e2a49cdc91cebf2d21a66e2ffbe4824d8fd14123faac128cf
SHA512 13ba7880cd204a0541c7fd5a1d410200e1b687d561979f6bb07846302ec2eb025ce55793b1095d82973deb2e85ac9c47dd5fa2d68267e606ee46f7592282f5fb

memory/3152-2847-0x0000000073F40000-0x0000000074150000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2e02b6e035166f548b1dcb639df832e5
SHA1 6097bdfb836b9093b4f4c99ef2668cb9454df945
SHA256 74139e86511cbe945c98af8ac28277ec4ed8d82903675e79054ce0d6b9af6a4e
SHA512 17e8f673a79b138ac1f813254a352fc9ebe9e0b6c7ab87a5e27c648ec1141019b1febcd209b9b4081658fd0b78a3b0f506be2e5f64347f9195403b160192f282

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6925b087841bd9a3885231bd9dde1e39
SHA1 3a6600dc500903859155c4057b5cd71d7c72cff1
SHA256 81e55e8254aaf5ca5262c1ccf4e3bd4036abe9b480c52953e5c83761cc9be0f8
SHA512 b00d97006043013274306fc193e8e94f889813fa7de67b730118bd9163e393ebc90b002b3f09263a9d2e5f72e1a8ee4a6dede8e7c1333e16d49696c2f7c47528

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 122ee635d8f63c10fef317a46a3300c0
SHA1 a726d44ef13bc9fac4bc63b206e5c007f4c58d4a
SHA256 671db2849e72e531b46a494fb44226dc7298261d5d203cb0b45a37a2cea11e92
SHA512 4cf183a6374650af0c65c3be1e75566dac8f044734f00a35146aeff5ba8b77773188bbf5f15ed7e500050b7a04a67d5b05141cc1c344d38ad56d891789bcad3d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b1

MD5 98eaf699f517ff88bb2f595bddb2c5d8
SHA1 eae1d3e4c6e6a8f9636c0efb0a04ecbabe8b63ca
SHA256 7aa34824dbe8dbfd8011576a365dcd057127406d61702634d69f0240325cc582
SHA512 7d9623ca066012a200a01bf48e0617fcfb35cad0efff091bc3b7931e98b72b95df66205cfa904ae9b84d92c9fcea421b366d9ef3023c023488cdabf91b5ef8c5

C:\Users\Admin\Downloads\Unconfirmed 131784.crdownload

MD5 1b54b70beef8eb240db31718e8f7eb5d
SHA1 da5995070737ec655824c92622333c489eb6bce4
SHA256 7d3654531c32d941b8cae81c4137fc542172bfa9635f169cb392f245a0a12bcb
SHA512 fda935694d0652dab3f1017faaf95781a300b420739e0f9d46b53ce07d592a4cfa536524989e2fc9f83602d315259817638a89c4e27da709aada5d1360b717eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 bef7f482e0726153367f9835b8c1f72c
SHA1 455c647deefb2e22f5126ab0a438b214796cd7ad
SHA256 237f99f8e17789ac8db9da5c99f968a3dca7c98e1a64ec98c8f7223cac068f40
SHA512 c8b049d7196e017cb1f1bd09c2682c0a68e95d1f1cc1d41a2f1999216d256ba7464d16b628f1a57f702bedc79cf7481069fbcbbbd6cac322685350aa6f7d2b57

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3bbc966647cddf474f212824331de652
SHA1 91f2f6f0606bb3c2f5c80687c5e9a2d58693fb6b
SHA256 7df35b9a77c29828109fc7ed6a88502ea9e39880394a1705d5f978fe5625e4db
SHA512 b164fc7410a2d4887a07a64f9bb74e0d1ce22cf0ca1a801a6a8598a611e915d23a554b13d6178353e0336e65f79b724aeffd49de3777558fac5a13df49a592b1

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\nsDialogs.dll

MD5 4e5bc4458afa770636f2806ee0a1e999
SHA1 76dcc64af867526f776ab9225e7f4fe076487765
SHA256 91a484dc79be64dd11bf5acb62c893e57505fcd8809483aa92b04f10d81f9de0
SHA512 b6f529073a943bddbcb30a57d62216c78fcc9a09424b51ac0824ebfb9cac6cae4211bda26522d6923bd228f244ed8c41656c38284c71867f65d425727dd70162

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d008c70319ea359d75bf19f8799c97c7
SHA1 9a3f30a8c75c89c4ba04731136a0ca5a2ac9f506
SHA256 9d4f0741232fd62742372b6a1f6f6b627a3b28c9a55627d434fc559410783d4f
SHA512 5082a728ebf203077fc1211f970e3292ee6f012a7b916b386c6e41d55dc294a096de4308cc31f77550af60cd0153257d6fcde29c4db50fd4cc35a26c9f0cfbc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7ef9ffe5f6ef8e0df96c3b1c49d1afe1
SHA1 975b5373194fffc6f650ccd8a773e36238b16008
SHA256 c7798c950e638553067cb713bf92486520fdad51067506cfbe298de04909b76a
SHA512 e7a3d52ebc20e4bb3b41f8ea83edb9d16d39b34df01ff626724818120f8a1535a20c67d241740c7c85f60c7465296b0dd979b5e49004a6dc713be305e8257b88

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\nsProcess.dll

MD5 08072dc900ca0626e8c079b2c5bcfcf3
SHA1 35f2bfa0b1b2a65b9475fb91af31f7b02aee4e37
SHA256 bb6ce83ddaad4f530a66a1048fac868dfc3b86f5e7b8e240d84d1633e385aee8
SHA512 8981da7f225eb78c414e9fb3c63af0c4daae4a78b4f3033df11cce43c3a22fdbf3853425fe3024f68c73d57ffb128cba4d0db63eda1402212d1c7e0ac022353c

C:\Program Files (x86)\Steam\Steam.exe

MD5 33bcb1c8975a4063a134a72803e0ca16
SHA1 ed7a4e6e66511bb8b3e32cbfb5557ebcb4082b65
SHA256 12222b0908eb69581985f7e04aa6240e928fb08aa5a3ec36acae3440633c9eb1
SHA512 13f3a7d6215bb4837ea0a1a9c5ba06a985e0c80979c25cfb526a390d71a15d1737c0290a899f4705c2749982c9f6c9007c1751fef1a97b12db529b2f33c97b49

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\nsExec.dll

MD5 2095af18c696968208315d4328a2b7fe
SHA1 b1b0e70c03724b2941e92c5098cc1fc0f2b51568
SHA256 3e2399ae5ce16dd69f7e2c71d928cf54a1024afced8155f1fd663a3e123d9226
SHA512 60105dfb1cd60b4048bd7b367969f36ed6bd29f92488ba8cfa862e31942fd529cbc58e8b0c738d91d8bef07c5902ce334e36c66eae1bfe104b44a159b5615ae5

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\modern-wizard.bmp

MD5 3614a4be6b610f1daf6c801574f161fe
SHA1 6edee98c0084a94caa1fe0124b4c19f42b4e7de6
SHA256 16e0edc9f47e6e95a9bcad15adbdc46be774fbcd045dd526fc16fc38fdc8d49b
SHA512 06e0eff28dfd9a428b31147b242f989ce3e92474a3f391ba62ac8d0d05f1a48f4cf82fd27171658acbd667eaffb94cb4e1baf17040dc3b6e8b27f39b843ca281

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\System.dll

MD5 a36fbe922ffac9cd85a845d7a813f391
SHA1 f656a613a723cc1b449034d73551b4fcdf0dcf1a
SHA256 fa367ae36bfbe7c989c24c7abbb13482fc20bc35e7812dc377aa1c281ee14cc0
SHA512 1d1b95a285536ddc2a89a9b3be4bb5151b1d4c018ea8e521de838498f62e8f29bb7b3b0250df73e327e8e65e2c80b4a2d9a781276bf2a51d10e7099bacb2e50b

C:\Users\Admin\AppData\Local\Temp\nshA823.tmp\StdUtils.dll

MD5 db11ab4828b429a987e7682e495c1810
SHA1 29c2c2069c4975c90789dc6d3677b4b650196561
SHA256 c602c44a4d4088dbf5a659f36ba1c3a9d81f8367577de0cb940c0b8afee5c376
SHA512 460d1ccfc0d7180eae4e6f1a326d175fec78a7d6014447a9a79b6df501fa05cd4bd90f8f7a85b7b6a4610e2fa7059e30ae6e17bc828d370e5750de9b40b9ae88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cadfc7d992e7ebd5bdc0f5178237c05f
SHA1 29ea3b5bf960e16867bd822d4120a5e3a93ffa2f
SHA256 b8da7acaa09be05d9880eb7071896c1d8b2438dffd187bcf0e774c45ece0fad9
SHA512 f5820f9149fd65c1affebe1438f6a50267ab234d615f0ba6863804acde8a28e86f4b1874ad14b3efb6fa30c223eca820b4cf5b599670527fc40b61bf4a4137f1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 825df53383888a32afbc5034f6ca7f1c
SHA1 9a80265782645880c06b1f765b1b857b0fe07e2d
SHA256 e83d2bd2bcd4079abb867c7cf1146b923e56ae0da05a6f556acdb4a307a44374
SHA512 352a872bbb45af9e8557187a4ca563e031770176c7bf63656c70429fbdf0a5e1b7c849c43b3526e6dabedfda91d5fd3dac0cf0a926f29b85f96a5cdfcb280e9f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 39cb70502a442d36c5528f798c51f35a
SHA1 6b1217b1732f5590cf6f0f2f7cb14a88b6b947ce
SHA256 56ff98d08af2d13a9934c20b8947d8841722741d1773d9fb6fd5a9eff4281ca9
SHA512 bea43f2cb80f34b12332577ddbe0b15085305bce128534e7c6b624cc7feee95137b37622059ec89a96572d2a7adfca495c8b62b9f70bd1d15c18f55b4a87b542

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 be53811f482d5d88d533a371d2088947
SHA1 935799b52d652ea508c14cc17d5c926fb615b998
SHA256 227fec4f5cf1df789892e8f11c50602c72f8d4e031b4c0650ff8a2acae92519c
SHA512 30cf212b6d172823716f9bc98f316c08a94ad30925fb6e1e1310aa5d6fddc395de6a1e8850a10412e01a97ca3a200a758102d9b6048775efb6f3a03b0aa38f28

memory/3152-3132-0x0000000073F40000-0x0000000074150000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a1130c766dad80a8a27ff798fbae8e5b
SHA1 81f0e8a4b24e51379d996af9b9ba554270c71bd1
SHA256 5921ca44f76946fe7ec6ae7272cfd62eace32693c5b9da05d699f0ea108734c3
SHA512 36adc3ac88ac528eeb6df38439a74643203c4dc8ac45d0634e82de700eac450d8631b1fc63e2c4453fc34f3e7ce28bb123f4f81064f6fdacb6b7336c8cee2733

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 7388ee8693d0e0d7c7a7870eb5c43ddc
SHA1 2ca24539f785cd20cf5e2c46933e679252b406e8
SHA256 1dc6bc88db6509dbf2881b4ba643b443ed34bc49129b5e95d52f064b8c624f20
SHA512 aab7bd6111e52dfc9b8eabdc2bad5a7eddc910516ca06279dbb5fc89dc983d8855cafa204c6fdc3b955fcbfd14a343a6fbd8887a498b47d323ac030325997950

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f4cd3dc52bb89e6cf0a0cc6a6af152d6
SHA1 c6f59de0c12a998a333f0f65381377dd504763df
SHA256 5f5ac7a5e58006b66c70b6aa1d69ce23378154a3b52c57b26879edc07f1e9926
SHA512 3c502510b36fe33a324ec934a5fd6b0d5d56878f6cd330296efdafae3221305373338328d91c513e67ae21da4ef5a1a26480090805a34fea0679b03eae537368

C:\Program Files (x86)\Steam\package\tmp\graphics\icon_button_news_mousedown.tga_

MD5 00bf35778a90f9dfa68ce0d1a032d9b5
SHA1 de6a3d102de9a186e1585be14b49390dcb9605d6
SHA256 cab3a68b64d8bf22c44080f12d7eab5b281102a8761f804224074ab1f6130fe2
SHA512 342c9732ef4185dee691c9c8657a56f577f9c90fc43a4330bdc173536750cee1c40af4adac4f47ac5aca6b80ab347ebe2d31d38ea540245b38ab72ee8718a041

C:\Program Files (x86)\Steam\package\tmp\graphics\[email protected]_

MD5 577b7286c7b05cecde9bea0a0d39740e
SHA1 144d97afe83738177a2dbe43994f14ec11e44b53
SHA256 983aa3928f15f5154266be7063a75e1fce87238bbe81a910219dea01d5376824
SHA512 8cd55264a6e973bb6683c6f376672b74a263b48b087240df8296735fd7ae6274ee688fdb16d7febad14288a866ea47e78b114c357a9b03471b1e72df053ebcb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2b3d54c6a6698d0353ffea7ba22897a2
SHA1 cc33ab55400952a7eb3678dea5863af150565333
SHA256 4abd2fbe738d8d80a01b06ab36f073ef7e3dca431481c7d77cb2f90750c054b8
SHA512 07fe18f1291a8ff92c3260d1344196d129f293513a340ecb6588726262ef5021fd89dd0471b24df8fbd7baa47b4fef974ae347e2e3a52e24f26785a7f826dfcb

C:\Program Files (x86)\Steam\package\tmp\resource\filter_clean_bulgarian.txt.gz_

MD5 836dd6b25a8902af48cd52738b675e4b
SHA1 449347c06a872bedf311046bca8d316bfba3830b
SHA256 6feb83ca306745d634903cf09274b7baf0ac38e43c6b3fab1a608be344c3ef64
SHA512 6ab1e4a7fa9da6d33cee104344ba2ccb3e85cd2d013ba3e4c6790fd7fd482c85f5f76e9ae38c5190cdbbe246a48dae775501f7414bec4f6682a05685994e6b80

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e0e30cd6f79de2086c075944131c350c
SHA1 c7434cb827b7d1b5172f877cf01bc584e99e7a10
SHA256 59450af33db85665349252415bc7626eb64fba5671470fbc47bc1c752f3b99d5
SHA512 9643dd2176ccc7d7a8f6034228b2a806d0bc28d3c4a31085f3d0f8df573cf1a3b66552ed777271670acdc3fefe9a9f174b556dd0bdb5190bb4cea8295c6dfb83

C:\Program Files\MsEdgeCrashpad\settings.dat

MD5 1025dc63fe734ef97c7692d8b3bd1e5d
SHA1 f2419e466f9af24c4b952a9d5455be68416bcb6b
SHA256 1f25b8ebf884d6b922e18b96a909e013de0a7d13a256b665f555b90a9b8f9e69
SHA512 64161b7ca8e3b85a660429cfed3ece3d252a6d4d42e6dd8a542801fb6f8f521c63f84e08afa5b1c3e26da6841e7e11100aebcde1bc75376a5d81ad09a5f222b6

memory/4504-15216-0x0000000000A40000-0x0000000000EF2000-memory.dmp

C:\Program Files (x86)\Steam\config\config.vdf

MD5 3cdebc58a05cdd75f14e64fb0d971370
SHA1 edf2d4a8a5fc017e29bf9fb218db7dd8b2be84fe
SHA256 661f122934bbc692266940a1fe2e5e51d4d460efb29d75695b8d5241c6e11da7
SHA512 289c40fae5ec1d3dd8b5b00dd93cf9cada2cb5c12bcfefea8c862ddf0a16dced15d6814dad771af9103b3a5d3016d301ee40058edde3fdea30d9767146d11cd6

C:\Program Files (x86)\Steam\config\config.vdf~RFe64f231.TMP

MD5 b46cdf246adb25dd32b81a328e154f53
SHA1 181a1ead2bf44bfafa67339153c4e446863b450f
SHA256 a3d8a2cba6e356e02c0f33b50e3a9e61d2f9dfb6a26b5983e30e7786da95dba7
SHA512 9230a9ca314bc2ab9dfffbf2ff069e7fb7ab9f57f130cb20e44776b7a82060fb0c2f93359b91d7be95f50ddfedc203a58a623cafbb07170c5822dd06f8a549d3

C:\Users\Admin\AppData\Local\Steam\htmlcache\Session Storage\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Steam\htmlcache\DawnWebGPUCache\data_0

MD5 cf89d16bb9107c631daabf0c0ee58efb
SHA1 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256 d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA512 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

memory/13172-15267-0x00007FFBDB9D0000-0x00007FFBDB9D1000-memory.dmp

memory/13172-15266-0x00007FFBDA560000-0x00007FFBDA561000-memory.dmp

C:\Users\Admin\AppData\Local\Steam\htmlcache\DawnWebGPUCache\data_3

MD5 41876349cb12d6db992f1309f22df3f0
SHA1 5cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256 e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512 e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

C:\Users\Admin\AppData\Local\Steam\htmlcache\DawnWebGPUCache\data_2

MD5 0962291d6d367570bee5454721c17e11
SHA1 59d10a893ef321a706a9255176761366115bedcb
SHA256 ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512 f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

C:\Users\Admin\AppData\Local\Steam\htmlcache\DawnWebGPUCache\data_1

MD5 d0d388f3865d0523e451d6ba0be34cc4
SHA1 8571c6a52aacc2747c048e3419e5657b74612995
SHA256 902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b
SHA512 376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17

C:\Program Files (x86)\Steam\config\config.vdf

MD5 6e6a2b18264504cc084caa3ad0bfc6ae
SHA1 b177d719bd3c1bc547d5c97937a584b8b7d57196
SHA256 f3847b5e4a40d9cf76df35398bb555117dfe3626c00a91f2babdedb619d6ad53
SHA512 74199ff275400b451642cde0a13b56709735676959d65da11ac76dd645ab11dac5de048ff7ede0cb8adb3a3056b3ecbeb3dc7481bac3768d02051e564c74b679

C:\Program Files (x86)\Steam\config\config.vdf

MD5 a2ec2e91c3ef8c42e22c4887d032b333
SHA1 e2c738a2e9400535b74e2263c7e7d1ecefe575f2
SHA256 8f9f970835f133258a7f740126012439385bbaa5a1d6a9d0d967a390977441c3
SHA512 b069d241efb19e09ec8b5e60ef6c43e00d5cc0f774b9340127c2180356dd1964ac625c1afdfaee5f99e72b26f56046fc329aadbbc365b403af765a55e9c9aab3

memory/14408-15364-0x000000006D120000-0x000000006E460000-memory.dmp

C:\Program Files (x86)\Steam\config\config.vdf

MD5 a11f261fc990cae40e746b7471a79752
SHA1 bc4af2d1f847cdf513055db1dea7e4703b8613ec
SHA256 588f6f9c917eea442021d24676552429b67c72883fbb702031b8ad43ca59aee9
SHA512 0f0079ca5c837bf600641a70529b1d85b093f93ec786b8d9bb9d6912893dde7813465cb6a7404e17d63c1068f60b9761955c6781bd92663b7ac8162682014870

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e7c3907dd82b075e6c4965ef8c01e41b
SHA1 80254f1b9b63f3811fe4bb7a3acb15e4e0a9cd52
SHA256 ab0bb137ab93164fb8ce444d70c027d9eb53ad7d4297488eaf1b9b8504d24375
SHA512 df6c239f2fa32e6c2cef8e90b134df72c276c984717bbeefac1c6e09490b836ba4d9bb6e3148f3efef5d2644913ce5fabe3f97955cd516f2f8681c8228f26c8f

memory/14408-15404-0x000000006D120000-0x000000006E460000-memory.dmp

C:\Program Files (x86)\Microsoft\EdgeCore\130.0.2849.80\Installer\setup.exe

MD5 b621cf9d3506d2cd18dc516d9570cd9c
SHA1 f90ed12727015e78f07692cbcd9e3c0999a03c3a
SHA256 64050839b4a6f27d896e1194e902a2f7a3c1cab0ef864b558ab77f1be25145d6
SHA512 167c73cf457689f8ba031015c1e411545550f602919c35aff6fd4d602bd591d34e8c12887a946902b798bf4cf98aadfce3c2de810bf16c7c24a216bfd8abec19

C:\Users\Admin\AppData\Local\Steam\htmlcache\UserPrefs.json~RFe6547e2.TMP

MD5 68b20851ccb9834d21fb32615e42bd43
SHA1 88fab935f0b9484994097c08f785e9ecb7d68127
SHA256 a954b528dd65ad6c4c2091fa32f17abdb7a49454ce88e10bb6c377734c70c26f
SHA512 dcb0771120c8fe35213d60e9abf4b242af807324759e3c99e9b2569c00a941d885d53ef6fadfe69e6b740e0b52a6008602605d643801190a2d29175a7d065e15

C:\Users\Admin\AppData\Local\Steam\htmlcache\d4d95ef8-79e5-4a32-9c57-5ac95ab3f40c.tmp

MD5 602c49f9246967bdcff45b4f43cf2fb0
SHA1 4c5796e0c724bbd7a9244cc8a0fc9e8f40181f2d
SHA256 a3ad9649c1038078038be1abd591cdba73b4b4f5cf30e11bb6cb7a432b746114
SHA512 2f273c0dd0127071f4c768cfe7277c6efff84c1ef4f4271c1326db3658c84261794b106af3198717f349fbaaaf276163700bbb50ae20fe52ed0a88a192d46f77

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 455f1658a34c8a1f1af9850fb395fa80
SHA1 61928e2bed18e8d5d9ac3e58ed96e69ad97f201e
SHA256 5e2897b664e413e58cff318ded8c0f2a07056175ea04d2aa6b9dabdc086d09dc
SHA512 235982e1830b5b5d807bd4647abf6c139398724278bede5839d734c25a3f98b557e700c36902fab006327d36ed3a989d8b366cf9414183b848aebe6943c43ee6

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index~RFe6548fb.TMP

MD5 7d51493a8ae2f07ef1a15c6af2158a9e
SHA1 bb3ffb5f95ba7be51cd01304ddb187b897b41da9
SHA256 6b33d3586e10a882b9512ff4b2aede8244404dacfe6dfbfd52562dc7555a4272
SHA512 05aed53d02553919531a13acf2b4e7a1df462edce4d7a36b220931d5ccb2408ee161076f3999d69d6f90993f41fc6a7f4c12f25b1cb6a3887f7f3fb78acfcc04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 49b92beaaea049dd970bafedb9c12d68
SHA1 1246a81d55f9cd68a6c24b6541ca600428f3ddcd
SHA256 2a3a91b42e1d530b2e3dd1a43e358958bef911ad271a95000ce45bdc365ecdea
SHA512 5d6975bbdd8a750c844525aeb782ee6b7d45093594f39d00ec024e4a9733367d1b2d9e6540ef79b7b1ca0e00824711cc7d806f3fc104aff54b47039fc632c308

memory/14408-15447-0x000000006D120000-0x000000006E460000-memory.dmp

memory/14408-15450-0x000000006D120000-0x000000006E460000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d8e86d5c340639f0d67b9a71a9d9c42c
SHA1 7bb8869d6619ce0bc69203f9146266241193435f
SHA256 698ec2e4d93bda2b4b64f03251f80faf826fd0cab1a04e96a528689d74098ed3
SHA512 cc06e2c1eca2c836406d5645302676a84cab649e58a3cc7639969558335fc6e2920ae1cd123c646761813ab1a41988e3f1c414b7dea0cf30fa6511da48f8f9f1

memory/3152-15461-0x0000000073F40000-0x0000000074150000-memory.dmp

memory/14408-15462-0x000000006D120000-0x000000006E460000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 928284aa801f7507eabf6c83d1982374
SHA1 1bba687c13d144f4cc40c200bfcdc2d74ccbb24f
SHA256 36ebfcb2b20b5e36e859a70dca45268a0515cf91a2ebe74f22e49f3dafcdddda
SHA512 c0ee29903474801a32071400e3453a19e9813e68845f2f8c5c022d4507dbcbb19a08400c20ae2d2d211ec855b3c4fb7419804e885cac07a5774711764dfec492

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity~RFe65d618.TMP

MD5 65b532f73775dd1ade46dc2696c300f2
SHA1 5ef27ff021e5fc710ff83a421390929b7bad7d8c
SHA256 47b7a0a92a1d4c26d7b56e6231ecfadd65c788717dd1eceac8bb27e41263ed85
SHA512 165493800ff2ac5f9a06c2d785fe679005f27962b766b59428042404c4f2dd066840693c637cae23148b982c1e80eb251b355db04937b5ee6a827df09c86454a

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 e2ed652dc54390f131bbf5578f5f1df8
SHA1 e6c3b5ca5043535a8e779b2107af1c05fec13187
SHA256 25b37eb9edf6e16095d55a2ba7f672a460046a55ed447eb1af5b87da08c5d945
SHA512 358568b187eb44e03b78914de6c6a1131bdcedf7f6711c97bff4cbfb20dfced620cf5f024df83ce8e03dab817cdff04f442e93bdf19d523cf817598606752fb3

C:\Users\Admin\AppData\Local\Steam\htmlcache\LocalPrefs.json~RFe65fcea.TMP

MD5 06d0a414d8580a79de8e94c3cb930b0e
SHA1 369c860bef019e7e94571b4d0139359338de0cb6
SHA256 5b54a13804c11695d490d2cca889d0c0e2e5b68945790a540d6e8f278654308f
SHA512 a83713d63633d3f7fb3b4f751c888d74316bbbda455d85821ccffd0088f0a67beae0c2d70e0c463b20f9129463be0b5dc3915ed9ad0da6e95e3d9cbac806d5fa

C:\Users\Admin\AppData\Local\Steam\htmlcache\bfb4731d-e144-4ed2-bf76-2188376ab566.tmp

MD5 1b112a0124ecaf373ede158c0e956fc4
SHA1 261be9bd48ee16c5c5b58db9ec5d506b4d5bfc9a
SHA256 aabdabde1af39281804d088610d56b170a665de7a279dab97e4a8412a7df7818
SHA512 bf5fe1ba2df86abaad7e04745981ee0bcdb39918b1044159c4d49987ffab0ed7dbbb4f8b88acd8ac9c664f0c065efc2ba629cb24471e1c29368297fc71bd932c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 151dd74da02c5d3f4aad538184306044
SHA1 486790cef13e40ff928304faa5a4d08f56ce5184
SHA256 5d03823b9e663974abcfca8d7de81e24268975831e67370ee4d4c7e2603538c9
SHA512 bf3d91a3a8c51163a291f1438545a94ed19ab7749fb5dbfaae14a6a4db743d376150454832c7a3c2fa1d4585d7236508b86da2667dd262b930ebc86cf92608ce

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 402ba57b435b9d57762b00df1af2f91b
SHA1 d795d7a910e75be3bb0b89cb43bb33f8ac83648a
SHA256 d88ca0f96730707fd1286356db43af25d1417eda438be11028f76e1a3ff967cc
SHA512 5faad8c193722291563e3f77b7fdd9c42dd006c0abbcb828978030454bf9ac76b280143a038cd26c92b3432f51fb52293af2d0234759a61c41e05bc7911f586b

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State~RFe661091.TMP

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Program Files (x86)\Steam\config\config.vdf

MD5 5f8ea4c71c9110f97984fd15f1e729ca
SHA1 ce9c67727ba63f2cb0fd67f0e0769a20986feaab
SHA256 1aad9b798e7438876cce3d5aa32e25a91e6cdf0a0c04b689b3e5a457ac68a6ae
SHA512 71849e19aabc80a9d452aa2b53ff8fc7f8cbd578f673d0998219e363c15f5bf0947ecbe789778e186386a53a4c824760e38c44e28a202eccb747eb0ea470169a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8ad3147ffcd4d67bc1518f5456983dd4
SHA1 e3a61c098d2aca97940cba382b0727fe1faeefd2
SHA256 dd121a33453c5b33ffd0d932f9d8c790f3249b1a41e5e4b865e9cbeb4027caed
SHA512 886d9a8ec1c6e3974281d6086bb1398592e2016e5bedee7f7063e4168ed9aab645f09c8acfb122442b1cc8fb6db41ead4b0a34199d26e0cd8af24a443131b300

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 abab833a51605b63fece8aeaeb15d622
SHA1 c2f270fe57ccdb82e931771e697e59cc3b5df132
SHA256 81a19e53b2c90cd9e0d5f4beb3951e4bf4919c1a997cf4a99e38c277ce43c34c
SHA512 0ab2c307ee713471a69f545ef7b62d4934d797420584c0c5565d0d240baf8f6717e6a3c0a6ee17a4ea5ce42e9f22412087325d4429a5c380ed66952b01f6bd5b

C:\Program Files\chrome_Unpacker_BeginUnzipping14248_269415636\manifest.json

MD5 2ff237adbc218a4934a8b361bcd3428e
SHA1 efad279269d9372dcf9c65b8527792e2e9e6ca7d
SHA256 25a702dd5389cc7b077c6b4e06c1fad9bdea74a9c37453388986d093c277d827
SHA512 bafd91699019ab756adf13633b825d9d9bae374ca146e8c05abc70c931d491d421268a6e6549a8d284782898bc6eb99e3017fbe3a98e09cd3dfecad19f95e542

C:\Program Files\chrome_Unpacker_BeginUnzipping14248_269415636\LICENSE

MD5 f6719687bed7403612eaed0b191eb4a9
SHA1 dd03919750e45507743bd089a659e8efcefa7af1
SHA256 afb514e4269594234b32c873ba2cd3cc8892e836861137b531a40a1232820c59
SHA512 dd14a7eae05d90f35a055a5098d09cd2233d784f6ac228b5927925241689bff828e573b7a90a5196bfdd7aaeecf00f5c94486ad9e3910cfb07475fcfbb7f0d56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f366d910d0b459b82420b612af5d99a2
SHA1 805d0cebf17c4188ca090c87d5c1cf0b875682fb
SHA256 b9ff95cbbc956e621e3376a154c9b66503f2dc3d999e679b95ae32e18ba0297a
SHA512 e45d1101f7eb7b97a02af1ece79fbcf77a560e4a330ef811e758c22791ff166ea863dc4356c49e3ec31c7cf723a56f269489d6f1aa2d7480827fce271e122158

C:\Users\Admin\AppData\Local\Steam\htmlcache\LocalPrefs.json

MD5 c13219056fa7b23ff833fb48d7a725cb
SHA1 c1909e936d9b9869b411853fb794b619c2eac5df
SHA256 cbce7ca650f51929a0054c3ddfcdcd2a41b548bb3e9c999b2872af5276c69932
SHA512 5774637b208be778f6744645b695e99eb0837481c7b5e8ca8f4c16a8034bd60c4afc1c1fdb119821f888734105d1a2158dd15b8a8ccba6ce265b330251672f4d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 443a627d539ca4eab732bad0cbe7332b
SHA1 86b18b906a1acd2a22f4b2c78ac3564c394a9569
SHA256 1e1ad9dce141f5f17ea07c7e9c2a65e707c9943f172b9134b0daf9eef25f0dc9
SHA512 923b86d75a565c91250110162ce13dd3ef3f6bdde1a83f7af235ed302d4a96b8c9ed722e2152781e699dfcb26bb98afc73f5adb298f8fd673f14c9f28b5f764d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\3333a9be-4aab-4ee3-a0ac-472bcccb7ade.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 d545b57e5830b16d3cf3f12b367f124c
SHA1 5328a047bdb16e675a950b0f1f0f69bbbb7d03aa
SHA256 355061973be74f3d1bc8e3a8a4ef0fbd2b07bcc92bf99b7efa1e5157450ca6e1
SHA512 142e8c14d2d12f1cf20bae01a764aa5ff7697f5a18bff62e7102f9b9ad51e8608fa2d6c2b3c9bac549377f4463df365c9df74c52070cb12f14282f22de87a710

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 11756bc0a3335c37782bbe627e084ec4
SHA1 c92851052a13f361cb74fedeeba47c7889f4f6a5
SHA256 5b9c5f7ebcfb2b53bfb39ac8dd027c73fe48d6b19556cfa09b3fdcfc8ad0f276
SHA512 918086be22a1482a46256afc24252a07db48e0a91d534fc609164865588d56124b99d82e8b7268a10dbd97fc37a43951ba02a53997e5707db084662bc073ab0c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index

MD5 54cb446f628b2ea4a5bce5769910512e
SHA1 c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256 fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA512 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\5ce50966647b163092d864b9f37d981f5bccd871\index.txt

MD5 ab6791bc6e2600a2b3b5d0f887ab7385
SHA1 9c856d45c68affde073ca9f8f3d254d3e94462b6
SHA256 4da72b434bfddee3025a4b66422d3ed2249cb250d2e79131f2b205d666c26480
SHA512 8bbac28a8afb56d84fdfffb4f71803e3af823e066e08b631d7a01aa291d06d1eb6ba6f5c5f8c2f9d291c69533f4212e69e718f2b8bd66a28948f7be1c72d0065

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 99afa4934d1e3c56bbce114b356e8a99
SHA1 3f0e7a1a28d9d9c06b6663df5d83a65c84d52581
SHA256 08e098bb97fd91d815469cdfd5568607a3feca61f18b6b5b9c11b531fde206c8
SHA512 76686f30ed68144cf943b80ac10b52c74eee84f197cee3c24ef7845ef44bdb5586b6e530824543deeed59417205ac0e2559808bcb46450504106ac8f4c95b9da

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 8820294c49aa1cc9a60039ee3cedd439
SHA1 ce2407d46810ac66bd44eb9d99ecd460b76c61f8
SHA256 f9298531f1d4d40bdc68a6b294ddebf8f92685f08f60b6dd16884a420ce01d31
SHA512 e6951b152ab28a03a8df2f21d730915ec127a7d9d0983615a1308b105e1f6457b678cf71eeb2adb8419cd622c35efcb78e70cb0a005c9ab75632df9fafa05881

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 45f35636433be8899670691a9d26ec8d
SHA1 a5af50c37f1a3b6610800ab3aea009301bc84a87
SHA256 b32fc3163b72f09972d7f7cd67bed40f8cfeafb518386c62f562761e75f74927
SHA512 0e05f5ffe39ec7909644409db4dddd52f0149b05604310b9a41b9de7dc4dd5fcb4a98cc71fd1b8811b8dc60a7a111c2ce031e32ce40f51c6f1ccecda97792ce3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\5ce50966647b163092d864b9f37d981f5bccd871\index.txt

MD5 bb205fd3786a2c3d285ae4e9113a71e1
SHA1 aaf42f10ef855239db33d1a344bb4f8736cd5a3c
SHA256 6f290b8913467154df8ce107832454bfe062a25bd0409a262fbb418acc7a9b23
SHA512 7eea1ebc99bd9c8cb5dad0bb5d5394247269a6831dc96892d64d04240216756b4023f325583a5697233ce87a86ac6d67988c13920b744254b4f329521949250f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 52aa6d9b6938b8eea5c833627f1d0ca6
SHA1 72844a98e2d47679bc878a8fb06b6ed559da461d
SHA256 7da37bc78993fb5b0564e438b23741addefb2ed2a2d4fa9241a7371918f24fab
SHA512 16a068cef7e9c1cca5626dc9a189d3267fc42a47607311df304ed1c14c3ec03383134e6b627b4db69c97d9f624f648ab9c9defe152a794d5dc720941877eafe2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 1ea58e9144e6f0d3440978be83212afc
SHA1 509737483646ae0f0ada1119de8216af53442519
SHA256 36c4ece8e3633675bc08be4821074e0c4d14d6ae4653719cf3ec29fc173d97ee
SHA512 b95ccf145074d3dd7bcb6a91c88ca77f1e4af87526b9d8126f3c7273c2fc8ccae3ac3aa418a2f17a7b74a4be8253fa5b1c82c99dca77c079a42c8d8de1776f5b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe66b4e0.TMP

MD5 48cffed2741fc4c816f8e7aab52d34c0
SHA1 253c514d0e33169c42fc7b3350094a09b9841fbe
SHA256 9dff0892f3d71e1826d33b9f3db12989fbebe77b867b8eda35ce4a37d8a37eca
SHA512 769d6e3b40ba374fae4563d291803965fdee7ddf14d38e028b90383321025f972e8fc335739e1b58f07f60eb94c0570918f94b5750c0f9d0d7490a1520202003

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\5ce50966647b163092d864b9f37d981f5bccd871\89166951-56e3-43e2-8d05-a275b1a49725\index-dir\the-real-index

MD5 1da2c5e60182c1d15c9463936efd2e80
SHA1 359f49bfdd862c7247d8ae6669a2249e91071b96
SHA256 14533f78a224f67ec3c9038d0169669d1bb98cb9753d129076bbb5b5a4e3c6c0
SHA512 3866164cd83882518f3d63f4868b52bbe7e732f0edac2aa088d1ee5bad559f90b8087414d8abf50502cad2f598926596aeb622b44616ee721f9bbda54a123d0f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\5ce50966647b163092d864b9f37d981f5bccd871\89166951-56e3-43e2-8d05-a275b1a49725\index-dir\the-real-index~RFe66b4ef.TMP

MD5 42c75f70861df2428487894e270e49a7
SHA1 49d09f25251dcc826d4f35e5ef51b6407e49eadd
SHA256 d699a9f958a3cbb54de0040e672d570f41503e0c393d256f79493a9bf2052ddc
SHA512 3c051a71d817bb988724d74975fdc52eb5f5eca11be808c015069fdb7c16491c69859ce8635c158843ab9fc66705ef3ae41aabcf932642156460a1c331367c6b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 5a11abf3e7fc2f95d3329af9aec3bcf5
SHA1 3d17d239448e414c06ead52d9d4bcc102544a27f
SHA256 813519ce2a182dea0574347a1147ad9862ea17dc6ec97a96f54c5ef15f381d23
SHA512 efed47d31fcde61799e5475b140830037443b7b2ff1c820cad2fdc69145f1dc850df768aa646a2357d2b5b6f97a62958b9952413e7b471e157133aafa54ca11c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 918de369c9daa6cd84588301353644cb
SHA1 ecf7903efe2c204ad29c33bfd845bf86dee30651
SHA256 5b51136793172f8a43d695a431ce41972df1f11dadc8a83f831adaaaa576b30b
SHA512 243e70caee7f479b0b0818c9aa12c45086fa135646b3522121636d48c50f3abac677e364f4d541f42e6ba531dcafb7dabb0241f216f8890d831450b8ab1ae756

C:\Program Files (x86)\Microsoft\EdgeUpdate\Download\{F3C4FE00-EFD5-403B-9569-398A20F1BA4A}\1.3.195.35\MicrosoftEdgeUpdateSetup_X86_1.3.195.35.exe

MD5 dc1543edd0dcd56536304bdf56ef93f1
SHA1 1a8b2c7791f2faa1eb0a98478edee1c45847075c
SHA256 ccbb3d9a4877999a55b2ca6b8128481e91c4b56780f581226f916c0fb2db0772
SHA512 2a6b4aa39bc3e4d234909077d5c6d75b9968c1778d505cc12431afd7aebd01eb65ed2f6f0c53c67f18eed7e97b67a93bab8c44574e3918ccd5cfcd8681767056

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d142e96a25a48afeeb5652357a63d5d1
SHA1 361b895215c00e5993f3faa9f8da3aa5ad0901f9
SHA256 f65025e9995a577c90379176427a82b9536eb18e8fb403099caa5b3d543dfaa3
SHA512 b1dbab226a7e0128fce5cdb1e571e49417b13727e477908802ca37c1ec2c8749b1e910416af2b78692ebfbfb41a20899d4dd161f0a54a609ea697f64abf5f660

C:\Program Files (x86)\Steam\config\config.vdf

MD5 50630e6d8fbb7935719cfa9b372fc04b
SHA1 6602511ed1e23ca4ba5829511dbdb57a91635022
SHA256 a2b9ffaf04841d5b7a84c9d4175d082e7705fbb1fa32567bba3174df41dee092
SHA512 a73a78a14929c274c95d501ef9ec7878b4f1c8730f83abadab2241fe065fcbc1d99394975a199d28e2d7aa8fab082a659dd188169b0b7bf4b4b19e4f4b172d22

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 0229d7d0e6006e723a27b7265740bcf6
SHA1 5aaada361e40eb5b2597c5497fde7dcae6981158
SHA256 41635c3198db1185afcf2b7a6beb6ff9ee268ebd1f3b0fa5b5d0fb0fd48aae9b
SHA512 5bcf401fd72495b43f277e2784c5b731f46f7fa3c97d6c7762bbc0623c30d57268a229214ea36fe2990982595711be0f2b9eba5bd32d2027897b05bc237971ff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 9738f75da37db36413f7a9cf017c81d7
SHA1 a411aa93e1a70314bd5dc92583b853621f416cde
SHA256 090d095ae3647668edadb88bef6eec42f063dfe9fe3433f7607da7b9714fd77f
SHA512 d3e513ad3bd55306cf9d4d652c5472d2cfafa78a7008391aacac336b90c890ac4f328aa730fd7db77997f414e7a3e985d87989f0298137f27a690b412a601031

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d6046257ddeffdf9492506f2c417f6f1
SHA1 6518248892510894b9c380bdf534ed6a8a051f58
SHA256 5d251fcccda00a7c878d56531ffa50dedb6c62bc852d3084288dff1ce9d1f1cc
SHA512 b4b32b9ac1673b05432ab72c7589bd2ccb3439d13f559de04e7e6e90e8f6a02aa6f5bb99ae0c67f2c606e0a9d2e41560378d1c8c6c0ad585852f38777f30cdfa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2afefe6272aaea425ed62e780a2088e1
SHA1 da33220c6b45f252a048bab07bd94ae284435e63
SHA256 37e0f19ed25a8994dcf93bb416baf886596a833ae5efb49f6a13af28dfe9e02d
SHA512 e35463d037c74b11451e9d8c3cfe21369aaf6c895171fa4850a55444ce4d9d2f3c37e41483526106d81a9b77182167155b602a90dd9254b54e1c0931778bef6d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c8b11506a602300c7cd76ba53ca7e2d2
SHA1 be7043c024961b0d72ddc7272ef6efdca06e9340
SHA256 5d76ca082c587e25b74ae7a5ada3d32aa7f107a1814570153c39c2353d5d39aa
SHA512 04bcc880583cb45e189ce489f7570f0c0f7fba8b1a2921e814a4a7426e721d9e13d7bc6590fce0be8148fbb95d57a2233811b7fe07023f09c114f4bcab862b83

C:\Program Files (x86)\Steam\config\config.vdf

MD5 e2d07f55c035d0ca6708bf1e251772d3
SHA1 30d12fb71495fbe7b638099f6c4594aafed4f979
SHA256 8656e0c0385cb22b2f3932cc60b60e0a449cdb5f1a6fc80e9d16672eebc74282
SHA512 f74d5fa04e536afb1b2c4e4a6c6c93f5d57e032b450149de50ec0f5952e5ef937c276b67a7a4ce97c21240c34724bd25aba8ebc046604ebd84e8c24781c5e360

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 b3ac40a46b734c7deff6268121029343
SHA1 30ea06364b188f971523a0a552074a64d59c1066
SHA256 27daeb1d2d3fa1b243ea900657c195f1702c309e877f1cf03114167b189e4005
SHA512 fcdc608f8d9dc08cba2349c17f5ae4ca13390697eba3f5ad015dc3e071ead43d9470c907603941b02bc92da8b12d23617c83ede67a6e35fee6e9cbac65de941b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 523d9bd1a69d575c59d8073e38c59d29
SHA1 329f5dd47058e6247328bcb0ddb907b59fa97f2c
SHA256 0d5ac1a48f350860409f6929df322594e964ba8047cb9b76a84532ab5a1c247a
SHA512 dd2c38701d355994c75aec2b2412d514c3dac43fbf8afce3ad0f4f5e7d4569bd0cfb9d7a076dfda9693a36815416014c0f67c8735f3571fdfa46fa8e072cbfc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 2e371b16673d87877bd9a0e3aecedd5d
SHA1 4eb0cf32b417e33607a34826d2c443451728463b
SHA256 e8cb7a5b5de6641b3fdab6aa4066e2c2edfce853740b8562165bdc09ec07d485
SHA512 984610b3c982f87220eda879666ab1b3cfb03b635da9210e6a021dc3cfa78f05d4df7a4460a9193081e0f1ea538b0ee04a923c2f0b7f96d4e95a5f5d9b155740

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 41ba3b775d02ad770315f8251e0fbc95
SHA1 a49ccffad7dc00734853de1e4f30389b5059b729
SHA256 c292990fe1504267202a62378410c2afc5c37ae05002f6e5e2d89906c830e1c1
SHA512 edcef99ac11a0cad7be16d69b8927d9e3d3a6ae4839d32d290a1c0dc01e39e8e62dd15cbd9e1548fef438f3df8683ffc7cc24f1d659f9b9613ff15f2fd6d137b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d4310d40345d385ffc7f1595724365a8
SHA1 66916ffab113084a480d97321401ccacc4a5a712
SHA256 f9a9f5fae289112bbb67ced83eaeb30b5d1f19a2444394206a2a012093daab10
SHA512 40333bfdaa90ebc5b25e55be6807d3267a55785989b4367e807299afeaf81637c7761f601f6aa51ab2fe2c5d06dcd9ef5ac2d604bf28001328338257b2945913

C:\Program Files (x86)\Steam\config\config.vdf

MD5 7541b06085a05c485001757ebfcb60cd
SHA1 d88b05bd683217936527a041faa43cd2f24735e3
SHA256 58bf1c6c48f4b21a54fdabe391d9fb83729966fc13922221fe0b4c3169bb04ee
SHA512 4bad032e6d3c20188b1439c4483c63b4058933b2ac69e31a5d2b622ce14386973d4f68f71ee03b371e95591f722ea7ef9cdca30922c576b32b731765a54c42ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 89bda54aa3acb65bfd1e53ace37acdd5
SHA1 62f0f90a7f00203212df42f979ca02cbf49d27b7
SHA256 8018f2b00840288eea5f5ac4c7daf0841d12779330fb2a8596200759b3cc71ad
SHA512 086d8cf42bf4219dcb48da63dc41e8d14cbbc659ff32231c1c88966b9414183379e02b7bf45425d28535e61e8c49d9271dd005907eda5638560d818f9c9810f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 768fb577a4bcbc78128357b346cf1d58
SHA1 62692f91032ee4b29e5edba04e8cf8ee92a042a2
SHA256 9b86d25850a4ba18a5e7272ad0e7b09ce365ee785edf79015566c389de1a69b3
SHA512 a11b13637638d161001570825ed4a27c6395859fdc83b7fe5c249068f565673d6589e71a9c2e45335244ac02019d7d8317c292416b47407b21be1f8a2b250f43

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8778ad577b44a4802860c0fb4b36bc8c
SHA1 6f226d20372aa16aba015fed5f8076c5d25cd72b
SHA256 a23103cc40d0a571dc89593d899a83e5efbf9fb56faba005658bf5a286ae5e31
SHA512 22bdaff42d4430473e28f37e122f8df99f0dcf96bb8bc1737a50c26d17c81d3eba193d15f82f169285fddf56832f801599c8d45b3a3ba78e135519063094d8ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 51ecdc00a167f5e79741c3293874acf4
SHA1 6f94d49e67fd0a14590a610697c83151e4eb0066
SHA256 45a70ae120d811936459deeb58a2aba75e9c8099965c662bb260f75d3c45f15d
SHA512 c7e2e3a76b2bda016c31afc2ff6894c10f42d43932473f27d862875f09a71701b69a34756ea7c3007a614564c22aa2d59e57ac7c619b016f92a2300c2f97fa86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000045

MD5 9e4b05cc926a7a7cc99e603bbb850227
SHA1 993ad6b2cc6ea80ef619564386848c625cb12e13
SHA256 dd0394d264a4045a72094b3d0007682765d636829e8f806f1c9f4147a3832e12
SHA512 dbbb76821caa2bfb05c0de38c2a1f1c8763580a92c04214b1d42e7259dd09cefe47e7cdf4466ee8cb032abb0de11150f89e694e846c6a63a590a50ee0563e0b6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046

MD5 32e478d6dd0c8b4d0aa3780402ae2eaf
SHA1 c923899a53bbdecc0bd5cde1b6c42afdf1168af0
SHA256 858c6fbcca290193b349f01f0dd8b24e314ff2fa8b810a5238efb2c7e9160b91
SHA512 74387ad60a803f91d18be213b937e5a00e9549fdea63b8d893d36060cbc3f3dc1e5ca9f4950544653918836184a866be6455d799ef005a84975fe94224d5ae4e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000049

MD5 b0585848552575aa2800d8017d99f100
SHA1 55990f339a27d4e572ed20b1d668e14f34e3fb27
SHA256 fba63fdb15198836c96f698e2a346fad03e1a6394393838df7ddacae566b8cc5
SHA512 cab8eefd041d21852df0c529ac3401e724bc3f3bedc5262523ff1dc86242c5e421b52feb65f63c6acbc4b8fd4cba7a472aa7ae74adaa40af5ee4833625d0b916

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3

MD5 1d556959d741aa85eedbc14e9a7119a4
SHA1 07987766f6b6b5ee359d43275a0b3d2e7619dd59
SHA256 52073d6772dd47314df0037786638236f6eb8e940613f22e777b65f0a488fef8
SHA512 49cb7ab4a75f0a809ae6ea66bd07dabc241adf3d6fe625a9be293b19f2a6e3f9088f468c4f109643bab1bf75ce2e7716a28615d8a400b9aea5248001794b13e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006f

MD5 c7947f7c50de3d5f0e7b3bf4b9a230cf
SHA1 c74114c4c0b47ca32952704baa84e05609c305a8
SHA256 45da04fed13c3518e36a43e8b9a692be13913d4c58ba21546740c463d2653d48
SHA512 b5560a2f3213980174615e755a10543e5a0c21c893ea7d5da5d46cde779922efbc9ea25d26eacb6cf54b7f2e7277301d677d8dce0ddbe0497197bfc1b57f2bda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000059

MD5 78359c7db662235a04c72a7f5ad41731
SHA1 0dd0873281974009b86d85b322d973681910a1d8
SHA256 6609ccfc0f1f332df2c73a3bc1125e746065f1d95c6172d0382d0ad330ff4da6
SHA512 48a8150e694c0349f3f4cb9c16763c548786bf6aad44ea86203abee8160e0bbfda69fc698492e5cebf70584f4ea2004c7f979891c37de3fef0ed0e56edb5b413

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000048

MD5 f6e99fdf009c8c9aaa1e3ea2fba63a06
SHA1 ce7a76ea013f623b880646ecdbd6c919ae5fe93d
SHA256 222cd2dbddff682f5a25d4df684b471c201ab8f7e2804311e0482415104a688d
SHA512 8d29cd0c89af9b77ff577b95b2a603949e355eb77982a4f296aa886dde6bd750f5c7b9adfc20e261ae61055214ab53ac855c0307769b7e8e7e6871238f162973

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c

MD5 19e1213a210e4d0862c2f45b1ef6d6ea
SHA1 729f84d031a180b69dfef5e1529783eaafb51415
SHA256 188a9e6042a366abdb1cfbdbd4096512a636f001e353f9912de60a0666a091df
SHA512 c38323181b005a0d8e69c5f55cd891170c3a6f3a528f199e5006319822c98a8fb363663ec04887f8610e3ba0cc5b39179a7990fbcb1338bac620c4251a0e11bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b

MD5 f1876fb0d085d65d3857d64155e7bc31
SHA1 f261eb2d8ed5be7b8f6e1a585e9c57e0788836e9
SHA256 5c7d4bb631ef7a8d330caf079dc075253342d16a79f0fbb5b834a1055a27cf96
SHA512 ef384754d1c77343514da1fd52b5ab68824b37c15946f1c86523f685c44886c854fb3abc260e2c54aa12c8f20fc8b37c47ef4eda362509f6e5c8347b47bae1c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000065

MD5 890a9ab504c3657183ff118b1aff212b
SHA1 127609df5d04fc779da4a9e90d8d09bdbb390149
SHA256 d472a71a0f92855881ce2c2334df77a333461f6936f1f0388f952fedb056fb3e
SHA512 a662c708882ac3d5a7bfa64f16becf750ffadc333784a72350c71513cf2261a8cf63b67da989bb5c1fa78589d570eadf45a9d9590286e764520fdc3144e6349e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006a

MD5 db6b320298071092b190ca887d06e95c
SHA1 8016461ca1131ea676cff368c4405d79f52c7867
SHA256 9f97ff47d66b2f3cdd1aa40988382749ef90ac9051d1a548b12a1260d10c1e6e
SHA512 7cec34499c90daf790d0fd4879f1282d90a1694881a87318ecb418fc65cf084f66bd127dd3c6b99bbed8ff2822ad70b947ed269afd27aa8b60e723c16fdc6a7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068

MD5 3d07f5abf272fbb5670d02ed687453d0
SHA1 5ba49c861917331a4d29d2a81ed4f93e94f62212
SHA256 3afc8b61c01534f04c628962b34e53104e0487b010f197a54d2e9ce357bf9733
SHA512 b60507b188022163686e29e2a670d51d62deac4a2450c71de5ef943a784b680ed1626f87d5803a7d1175d55aee3122c6c9060113bbd9bb41a95c91196cd1fced

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000067

MD5 6db712e9212169e71d90c9999b5d98f6
SHA1 dac145a44f8530b801f8fa525742ebc93efce6ba
SHA256 d68a183592ac8ad34c6a0649690b01946cfd17762dc317e0ca31791e707a2d84
SHA512 3ec5022affc61a10f67e4a7df21be4dd2bcd9798d38d2599aa4270577e1769acd4f7c59430cbb787ad81f23ccfe8309350ae090b860d9acf2f52026a5b9d5579

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

MD5 ef78ef4e179e7e1766882d2f044cb39d
SHA1 ff3734cda8426368beb9deee703344815817e987
SHA256 88fba47546b0201525b02b5f65c8af1b09367d470fff48aca932e7b43e3fd67d
SHA512 0e8f4e5989b731d4623666e164338119bcb0243aeaa8d18297a31274d0bf2c5c6edc7ff1d1482c69fb89976fad03f93a88e9e5f59141846af02169fe8926fcdc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dae98d988a81f4baa379428c41adafe7
SHA1 9c6ff3ee0cf49daee06bbc6bcbe9cb1fce9fe479
SHA256 8c6ad648b9cc4dbaa3e207f30544fc71ebabfacd7f2e2291a4b51ba1fa6e3340
SHA512 878c1599d19cf9faabe00ffe2db49d3b6ecbc055e5ef69c85a46414b1a66fd11e65a95a81ccf921863a3d12dd8fa62ea14d746eeec3ee3b2c1bcad292bc29508

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000057

MD5 4e75052ca2e233ebcb31b75c37573430
SHA1 bbe7832fd0f1ff6adaf8d994da3ac6c471ca02fd
SHA256 ebb6b8567312b9a348a22fa39617d19eb8c5ccadde2a6572b6dd742ea610ab30
SHA512 9ce24174e2a7e244177cba6a45747acfa12f3f2ec5c7c5bbcfe03f8bb76a07284a66788cc9f6f5fc904e37ee9404741951df28705ae4e17d1ef4c55215568abc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005b

MD5 2dc8eec5f1054e84a532660ed2780265
SHA1 9703285cbe98093baa661687f97754000a0af8ee
SHA256 4f5d89e46e4848e495148e99deae088d3b90ecc677462ae3d1941bff93259b2b
SHA512 ff5a48e96c430703fde7030d66385d41c7aa85dc3112dd241ce6edb230b8455071e31bcceaea0d6c676d41d69dc58931402621a528e3930e5463578562beee52

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000051

MD5 088f3f4e13d04ce0f336c4d3263ce01c
SHA1 f6b583acd3d5208e006703f115e1d8a05e5a011f
SHA256 e5c80d093ecad9c0fa404cde0fdadccbdf566c777b5330af55a01b390e119763
SHA512 be76dfe50394f16b482f6736bd76c7e215f1278f8b519844265b8c23d6d63ec524c52e3c3f9c0dc8d0598320d484dbeccadd5fea0693ad91921696c2f04669ad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005a

MD5 24a37d55daf5006c2fab6b76ae68f355
SHA1 dbe27f2bc7843496b892f8138b2abb6cd996a012
SHA256 12b7132b113c4d1acfeb648efda4e1ebedc4bbe63d61b87ba54e59f9b7169748
SHA512 4c70ba7a00aa78024fd5dc3d0e74c4acdfcc01edb7475b835acec4972a4755492a9a5081c02865ef930f9481e5168edffb2ae9d86990986cac40783d6b581564

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c1

MD5 a6bfa82b66039107453e93f41ee0215d
SHA1 3b0b84f01cb70aa6ae8942426e4dbb5f66dd0b2a
SHA256 fbaddab0f27cab09d1e3a4578973f4bad51c82823a63b1a8fb92977837fc03fe
SHA512 69827503f864326fbe0d277cc727f6fb4d0c2dedbc3348adbf8eb89fbbf4d3d979e9cc94dffe7744ad7d82d3bb9996ee8ce06769fa78ed1387eac6a9e9dac180

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000052

MD5 b20f0e23716fbde0dde0b0067dc7a3b3
SHA1 a025e36c9ac03237ba908642ac896135fe5f6a32
SHA256 dfe12b7b047023788c2663bd9a46fefbefc7d82eb4840fb2e2e8ba0ebd59adb1
SHA512 236ca9475b142acf7bbbc8af2906e198026e0af1be53b902341a78f376a201e0d8b0ab2161b27175f50636c0b722d5dc04188dc55cd807ac0aa084cf6671c533

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005f

MD5 9a61d0fea04c86a6cb7609579938b36b
SHA1 2a2fe758644197f62c368b86aa7e90154cd87f43
SHA256 f64aa535c07e27df3d5d821625947e0db082707d28734ab03a71a4b23ce776ce
SHA512 b8741ae5420ec41f4ca30f44f24cd5af05e19edc50737f0548cfb848820be9bcd3af86ed61839dc652773fa4bd8eb8fc403e74f92e7524c0bf233f6ce579ab9d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053

MD5 8aa64b92fd5a550d242d3a9623a54bbb
SHA1 90dbc209c28f1613cf52b26607053c6565a2ec16
SHA256 8bba840859e428e8d3594944481a016b91e291d8603b7bdef96cfd0d2f655d30
SHA512 8b18bc9776c9b711d35ee17f6028df9a15b380fac5359e6c77e8691404d4e3a8cea9cbfbfdc0cd639fd7339a33321539b44abd218246f4138d54692480c002fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000063

MD5 a1b568b9d3343a0697cf781440d99633
SHA1 19654ae936093654ce401ada3f18c27449e454e9
SHA256 553f304042dc1b0945a4ddeee3818e6f47c2b9c85f4e85444522d5f3bb4a940e
SHA512 b5014d020ed055b1c77cd1f536a6915ba9a5a750cb872a0a0a7ee102086f0827cd2dc6002bc03c736623768e2ccf458c0f2bdc1788408942cedf49ddd6d14f3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000054

MD5 6051b766f54bfc9365c56c7914512b3f
SHA1 74caeb16593aa3375f84afb3fef021bb2509a34a
SHA256 e53029f08f354d0c489db39d46b8ae18ec2a522a0299d1a2331c345634e4fb1c
SHA512 f667d01d2c69765140e6da3d55839c67c2e234bcab8c49c23353ffecdf0852d2c4c1235a52cad834ad46d397e1a23b12440d90b566237d2dc8d6d1c609090a9e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000062

MD5 9f50295e51b7698182655797512f426b
SHA1 e9d3935dda7ee3261eac9f3d092fba04c51f345e
SHA256 8e7fc5bd0d2e6dc8f34c6277df4698a416c78ebcabfc4ce53a135c123a5b3ece
SHA512 2e350f894aa56911e883a92cd491e10e511872a3a61545037e2fafa55403446bbdca813480a547f31d6ba343d5c9f00d428e1bfb02ec60d4da63a97802122629

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000055

MD5 c2fa79f7f4801517ad874b59777f9f78
SHA1 a945c3aed0f8d9043dcbde770954a0474429584c
SHA256 48ff17a790f255eb3ddea815dc901f87feb580ef24db3a5a86e1aa554960b23c
SHA512 b4f8d3c07b4d3d7303b1f2a2047cc259eb4b31b1c7f74b065cc6e6814375074154d052d77711fd4d111821f7b27c6a1ebc65543e5bdcdb9d7494ab407a275a3c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000064

MD5 8628159d6a04443092d5b5283085e299
SHA1 047382b7238216ef896d8adccd4a541b74cb683f
SHA256 d7d3ce8ca60be7a4c1d7aa1b09aad505c564452945b77c92ec18fd704160451e
SHA512 4773bea53af06bf004c9145f7eeb113995429d43ba9b8088399f180bce710c9a9a6c26cad2f30a5cb7d0393cb4a5b162f9ed89155c1f8e454ae8450cd12978c4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000056

MD5 2fd291e55aa40c3975c7a257f70d7abc
SHA1 e0de8a2c80818cd36fb75645a7fd3671871d56ed
SHA256 78b8c70bf82a4784fdacf671f94fb7550b0cbec3e8c1425c1db6dbdfbbe5aa85
SHA512 a4b7dca65d1c25094514b5a6a8ce6c9c556ae1d4c828409bdcc7bec33114fadda4ea0a287f93f21a1669bd1716a17cd64423ed14dcdbfb0c2b6d88cc25449cf3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000069

MD5 a304b3f47fc6229667b7d2321d7b28d5
SHA1 9e68b65aaa99e0e6a36daa8047f40df20bcc1717
SHA256 82a4a9fccfa2d1abae2dfb61f9d5bfb758211c638b49279707b1ddd5ce198dd4
SHA512 ea1d4d6128df1eb8309dc9afdf42f184dbdb68828f516cb64ccd8d5fa15b6c46118d23483793febf96a6ebafd71e914d5f6e706e32e785a2f96f8cf81e87b1bd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000058

MD5 5bbbc6ab7da9d8deb6faa942ca96da95
SHA1 c7416f4e38b391f139c3fa2bf0ea036c3f5ebd86
SHA256 7f51f469a4f3aa13344cbaa65c3457229e2120cc5355872dac9b87fc98cf8c84
SHA512 bc54fe60bba2c9bf22ace5a31e1b00356e092532ca72b8edbd881c1c099bb6c80b27021806d377e56fc7bbebcc71bf1cd99cf526e17c49aab1f141c6964baf3b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006b

MD5 5a59b814eccc283062d3ea87d4181f0b
SHA1 0450b45e46db58712e6022b27d8caab78cd3ebea
SHA256 5e7809d94ef8512fc56b637e6fb5ca8d85f1d24dc3a0534f25b1dafbed6c5ae6
SHA512 7d5de877cca35a979760f9e06237106fb3585a187d2a73fce2ffa5b452a17c4b822c02331a63cae3c2335fbe8eae008fd63bbbc9c46d93212d670bb1dbf7cdc6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000073

MD5 9f80ec14e1a5ece628b5fa85696738cb
SHA1 1eb59b2c121dfd0a4b7f8365d655958eb36c3754
SHA256 bbd843112c61ef9ee9ae301c7d151626e32a696a9e77f849dfd9c4b9aad73787
SHA512 2ff51024048ca0e1f8bd5bba7d90e58bfe8bdfc7fcc7442d3ae5e24d0c96da90b078b4d8add32db35fb5c6cb6fbd394d02b3267e8607c441a18b308472454978

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c2

MD5 1ba457d3a03291a1c6385e53e389d883
SHA1 44e9998630a4989aa38206abeb9a327085aac88c
SHA256 48be8a8622b8bd20756192729663930b909ad98d3012cd0b70407c3a7547aef0
SHA512 82f0a14e09a65ddf8753f91c913136b058c8e04acd8e252c523a4b54c57ceb468793bdae067e9431757bdb4c245b36eace078087e7ae773d5a3f7a4998f60eb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c3

MD5 3312c810ec0024398fa10e03b01ac92c
SHA1 cb18fd32a059b1c59e5808e0ea89b46bfdddf1c3
SHA256 bfe1c7f7ab32ef20fa55ac7e85dae1fa92c5a4252ca70c019ed2bb284f4f4484
SHA512 d7adb34390ab5fb17ced9cec6a4aebb48035f84774d79a11520cd9d8f07716aed76f670f6533279b9ac7d132f75ec67ffeae9fcfe596bc563ddb0f5ccdf3ed33

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 87fdcbc90b70be1bf31b47b2d783ffcf
SHA1 a13a16faf0fdf3b7ddbba4be6f3943b8901fcce0
SHA256 826158ab1f285c46f0bbb83993a14e6f6eae22b179f165750686fc9cfc218cdb
SHA512 594847505c3ef2d9b9324ac03b719af13b88e1a0c8f6c91dcdfd1dc3af1376017cf865de958eb4d236ad9637b6c7a3563c4b956c0252c7bed9333bb3c620b258

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 529788a8df561ed8f8e5d0479b1017e6
SHA1 cd597be90e2514e3467c7af452a7f4fb5c877095
SHA256 7f19802cac7484f7c5f60e7fe63c89c1380d97d5a68a39a02d3a4e8151655101
SHA512 0222969efdb009cac1d776cbefb176039ed87b97d47859f0ed101b0085d21156e0be0b2a0ee68ba5376e71f959a8de9a4c96ffc08824c8bd44a15234da0c40f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 274d04818330b3d37a78b8b6ead07699
SHA1 5bf468a59f55789812e43bcda88d0751c6ddcc58
SHA256 552b4ee90f630213d0576a2c45af8a21a02afc362405ccaa5b120cc830745c21
SHA512 21611b765217dcabc6c48d00996391f23a536424107979a3c422590c57a7918a8d4b2eec80ca3cd2c2066b59632d5756c376a3b9608f48228fcb0325a7e02458

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a0930a852bf55b11c306cd64347c0089
SHA1 c8140944edf4f22e835bdf3ff55383d724e165ec
SHA256 e0f96a54725d99ba1b599eec8e6de8b5eef2b8f5afd7912fa6683c630c760b27
SHA512 3ad5be1c5b14c5c87dc2045e9cfe34c833035bd6582427c66beaaf998befc91abb3b9847db9cd0660c6ea3250bc40f70f57340de19d48ff11b673f48a5c5db75

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2468cc6d8196cdce43e91f376f5262d5
SHA1 863077aedc719910181628e89462da3df4b40871
SHA256 44ff6424a7108da68ca44e41f2e9c10fef29d7fd17afd542f8d7059d5a7df03c
SHA512 d1b743a05c0155f9b3532e7b1f1ee6f780fd70a60db5ff86c3f18941b9eae870f11fc996354c628634621cf7c9861d749ceaa8032344320ad3b167a3f0e8f18a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 5291dad41fe39592785e3b5ff67c72e7
SHA1 536cc5d71a6cc89181a891eb285d746d585cef40
SHA256 b3516d413d4103b77ac94a02c4774aa37491f3d51b71653721f5c70192d13624
SHA512 86894ed4bb661d59345c7c0b767e55fc61574e6e055e9c572d59c653481de1c70beadc28f498b003439d0b1efa67ecbe43c8c62bbfdabb9fac664f05994b9a6a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 64f8635d22ac03c5c75983654e216eb0
SHA1 46012b0e8af7a8b79ffe6f78633879bf61676f5d
SHA256 3a08618b16663d68860d50f6d779ae468e5964094b4b9040f4de26b72fe758ea
SHA512 b145278e829a244a19faefc2906e449d7d0dfc3e5b5b6c777cfa94473bc1664c7e60a0ebab89233da0ff5ea8de074188b2b3109b614789c5a606d6102cd02f55

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 411e1f696fac65967d77221f1f725890
SHA1 bc8d0f810b94f37a0543e33e2aee1c4f398eef8e
SHA256 7d6d0a1829d92faa572e0547dc3338c290d7c8078b66eb69d303a63dfc9f2709
SHA512 33d00b76efd87bee3e9713593195ba4de4e42cbf826131c1babcc8b93308cfbb1e2c85faf2dc4b180c89193aff7ec745a6308d655b78f5f6aa87711576166948

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 835dd78f37cb93daab998f02b07d0908
SHA1 4541b37e9f7508a0995005bc65ae50ee9145cb32
SHA256 f0525e71c60db66afb7f10c968423d20379e5581be9d9cc885312fba205d5274
SHA512 631066e8e10ed588ff2c8286d4c78881bc7c9646107b7203613ae88b605ab00665901ace5f65a5299fb95b32b753108a135eed9a2a84968db2e33c1030d51da7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 6a49dc0f895018a0fd7c8f946c1967f2
SHA1 20290b176efb934881da4b0cbb0664622cb0a49f
SHA256 1b195cb3eb005b9a920e421aeee725ea07481f388903f23d42cbefe854a2eac9
SHA512 552fd3825766bc56f4cd5bb7591aef0bb326990528d3c14dfe45891c90b387f0a7e2987eeddcf3f49e08ef8a106c20dc6c1f0c0eb06add93cd3c4e5880524f76

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 161f553c5300149c3436433585b83bbb
SHA1 d63f30214ca83d2029fa4c5772d67dcece1f6814
SHA256 8c336eb25e79a39a09e63654780464a1b863cd0f13dd26336465a1d04f82825f
SHA512 b8ed4c53edb2bd1537a948a830b2275a00c970db31c4ac00b2782b80f9336d4df96eb3ff52ad4ae5fb8e8059d5418f21d0265e42be45cc886ebc22246b421c74

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 11a818ae46daea2745b394ecb2ef26b3
SHA1 481f7158adfcf50918ba0f0f598a52864fe980fa
SHA256 7572562cdc4b36c81c4899f31016ee7e067e124ae694a8f30f413bcf0fa57a2e
SHA512 9a9cfd6b9383bd89c3c1383dc71fdf98e75f2fd2bc04aec481051b8186c3707c51740b09d0dbb18c8c7be5886aa41f80efcea1267ed6a7b256a83d8bcb3df7e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 d870f0bed9314d48d9ee38ad0efaef71
SHA1 6c0942fcbdafd738fdd805226ca9101689622193
SHA256 30e47e3b7ad752d158ab27861ffbe06870de8784ad87bfef8bde3ecabc9f5320
SHA512 acd7d399f4e8b612d074f3a5a445f0bff6806e05bb8d64d1f8f31c7896511ba82e4c27f748beb727b959ad0148885ab4b310fdaf5d5372076ecc28c310afe691

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 78bb5e09c2f0f97610fc957b4f48d34b
SHA1 db2ba49e1471f2db045f4c0b62084d636a56eda6
SHA256 d8fac72e961237a2d7e947621854a4c16a5cce7fc7415564fca5a0dbb05f32b1
SHA512 3698bf2f562f351216123efc2391833ee5ed0d09a8a1d45bb39488490ae52f8331e709c189244369ae9fcaeb226075957bf4cb745a3ed5e44a4977261c32b1f6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 db9550fcdda0d740bf61b2cd5b2718a7
SHA1 9277e651fa4f1b9e69fd1719b696561091aca922
SHA256 a99584262210d63a1a9f7a70c5222865739bb84411afa011b340dc7469b75692
SHA512 c5a8fa383d96a955beb6e87a91b2196576942d02759e282ed9dd5447896a44fe3273c62fd97d2e77744ce4f9c6184924b9f63b2fc505fb928056e7990312ee38

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ea39f44d608c363cfcc21b9aa954703c
SHA1 f6dc1edb0c0399fab4b6437b3929729930acecee
SHA256 3f629389a9148118ed17048423db740e7444f55688653bc2b4566f4da7c57eb4
SHA512 4194f8cc9bc10990da081adc73da9f4bb69b1456fce04b90a1652bb71434102c3d5f13fb026e732e201e5ef1bfa7c882246032900a1010a08ecaceb2fbe32bbd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 de01252195f0749462ca8b8d32901efe
SHA1 c02629db922ec48f4e8ec8a00960a12a254f4848
SHA256 73b6841a56cde3740b291fc7f4f9b5b9670ff6b1d98e20b71b9f9723a5a768c2
SHA512 62a5c138f371215200805325ca9e28c8093369d9fc8b66797a28b30b712fcaf64724497205d1808d045018b115846583c89f606833e2e812c73322e4b7399044

C:\Program Files (x86)\Steam\logs\cef_log.previous.txt

MD5 b379b66200fd30eec04f9e927271a05a
SHA1 7faa3a2957aed50a10822ddef1b50927e2726db3
SHA256 4090f6d0005460ea30376a1d750405ac1e0483f0148759254419a7b409890d7f
SHA512 62ca0afe056355e448bcccba38ac88ffeed7fd07742c7be2da5b45e1faf7ce8da0839a0c5d80ca8cafce933a26c85ba4e36bace461981ed4b53518bce4bb4941

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 aef1d455b052e2c3d421e8632c423410
SHA1 f11a83422994f6feb6cfb0c467429eb1781816a0
SHA256 d3dfdec99915328380eb183345c504c1c6537d7ebe0907007be37ff5bd605f95
SHA512 21f2588549f8514ebfe19a619675ead2c536901bfc487e68804718b2dc75c92389f285e8441e693bade9111dc18f05bb359435419adc43cb7a786c8f3a5b3863

C:\Program Files (x86)\Steam\dumps\settings.dat

MD5 295931a97b413cf60d7bf88b9a4ac9e4
SHA1 4a6e0f9137b15e3a6d74f2f23666de496c527c20
SHA256 1885d02aac5a111474cd5accb0555db5c080d3000196f051d25d671a896b84e2
SHA512 b7863c23020d5b0aeab89b2ebd1b2222cdbe8d9ebe5c1813f207dbccf29ae00280eec4851878dfa739cd536e79c316ae49f52b3644336f458b2a5da0a7777829

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 36248875c3b5d7ae1b20d5b7d761a49c
SHA1 653114decbc326dd596ffa2e85776cf77a0118d6
SHA256 d9abeada74b5830837f26488eb564bafc1e05af11cfd3da0e9559358af32796f
SHA512 7a99090c25fea130dc29a4d3c42c4ca8700b0e40e09e8e9ad3bb50bb89990c31e676e415b116f6fb8c85694b453a0d5e4b24eb936198aa5c0074032310103773

C:\Program Files (x86)\Steam\logs\cef_log.previous.txt

MD5 98ef66d07f78c4dfd8029049be96a3fd
SHA1 5278e00960e1687a90c533732b00856cd6ead091
SHA256 ec4bda18b2678e5a0378511da0ca2df320dda27896371097b19c68e62e216542
SHA512 94ac0d157056d108736c4bf8bd0f6268cb53006ae1338918df9c09352e4aba670ef5075e81c18702ca1eb44887bd5bc1ca92bfec43d81f1b971a123df0795e0a

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\crash_reporter.cfg

MD5 65cde83bd897111ef66965daa1990c90
SHA1 a4c2a137d80142a7e5eec61c107e196558395de4
SHA256 84b0829a1a670da6ec97df57e506b5a95761df516f3aeec21af1bbad1d7476da
SHA512 0d091aa44958a28f6a924c85993e907a80e6f65c0038ff7f0ec2a3b94553b1763fdf2e8470eb4ee33667e7a66944ebf42a7863f080f5332cd6978846f9af90b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000028

MD5 6544a7e13348481d3353df65c5ea1b16
SHA1 476e6bb81df96cd332d3381ef78ba043bb62b86e
SHA256 17bba07e74454bfaa9bd5960e7a3e09e7a104d45684954925ae0ddeafe147905
SHA512 af5355d83245866894f57a9abaf1a2d51263baf5e6885ea65afcecebad384f1982cb0d06944548b826a94559e316bd451831fbe1fd7f4bb2f53425cf8c03f909

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000011

MD5 a19df3e086b56f3960fceed34370a8c9
SHA1 8052554293c009282df5062c421cb99f6f375aea
SHA256 0d9abf5b5189815525d415cb9a72df2ea2e94215b2f2b8f0fbafaa069f712e7b
SHA512 2c9f1d4cb2980b16c5345cd5198ffcd237776331f892014f18985b73adfa8c4abea0f43169f4be677fa8944bfc3d8b4bd8bcb49255d486b5066900d101b1e4b9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000c

MD5 4e0dcda1379dc3e8bd7dce0da4077305
SHA1 66df66e64af08029200490c0866da47454d5b678
SHA256 36f376bb8794163de5a75189e485824a1fbd2630cf5a4cb0ce7f1e8f42349b5c
SHA512 42ad231df4e6bf9ccdb7f261b7a59bf28df1376e1c4dd2262823497c8497b201bb15e2f856d1979bb307a43109b220c057906dab2650ea65cc3944795922d685

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000027

MD5 f8daff449f348fc613620094b2213fc2
SHA1 349760b37c75287f5394738bc09f981a7311633c
SHA256 2fa5a81f45baeddc9c0f18e7f0b79dde393d49ea87825cafd45cf7becf3dc25a
SHA512 02044dfdc1d8e05a2e3df02237e569cc853e7c5a7350538261fd434ea9c76d8419e8efb783d40b7c2f71ef2c6e945f67b7df20f474cbb8d918ddf55144a0bad0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000001

MD5 2f80e8ba143c984fe5f84a1c9868f7e7
SHA1 4d37bafea21bf7d0add97400fb6a3910b3c1663d
SHA256 1d5d2f5c2222516a2277bcfc762b2463c119dff0c072cb5c87478755732a7084
SHA512 56766d7e881d95f0e73514ba046917577c2c61923c815680fae8fd66a90826e04d74c05ae77a18912f18b472cec97b8fc27a7f42e03369401c888827b461e919

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000002

MD5 870247563f2cfd3716fd59a07b2be359
SHA1 d86856cd69a42cd5ae43c31ff5089527528ef1c9
SHA256 48ecf0fcd12e0fc283477ac4bc30c3d4950b526b92f5bbf87e2eaeea534a9f70
SHA512 fbf5a7ea172b48033c8486d2f59121e853083b0490903e39ff07bb00de47742e45fe313640863affd4a55371092342a19547c37b0341dbf52c39c1c9965c290e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000003

MD5 2866c8d6b6c9848854ea37f7c18c049e
SHA1 f7bba7e5e2371f94b9ace0538a578765d74657c9
SHA256 670b3dcb653ff2e77bf80e5adee317a0b343d5c982a60c73b38277184b64b685
SHA512 bbbdc8934aee02a457566dc07eff3eb64469863e09c95b112b6ade861d91cb5708f425b965d25031f725703cfc64fc49b494c7ca1ba38f0a345564897abd11e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000004

MD5 79d06bf63608fe66ca635a580e60abb6
SHA1 5f985a033497c370dd4321f6f910e368e729d017
SHA256 9b904473c54816463fa3ed0419a25360a4e1a1c0f533207a646656941a006dd7
SHA512 356d95318cc0e5602ac6aa5d50a11d638e6fe45e3fb4012b5774f0fe4a24365f170852b629c508b2ecc9c0431614edf1592e02dd665bfe884be5612ad9306de8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000005

MD5 ff8ebabbdc826d93353b4b1c2686f057
SHA1 cb16beb47cc518ae0604d778adb1ab6039614573
SHA256 96ac162fe3cadaf24cd8c160e64f30a7de3b0d1e1e3c199930403971342f5736
SHA512 d4bc95f78bf51bd7f836f40f5a2475be20e71847506b1c7a3cc0fc58f883d40098a8322bc4bf3a0bafe93cfe14aeab711de63f6de771f07e23d2c4b49284933b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000006

MD5 308d0bc449f5402ea7d1adc537c0fb6d
SHA1 117d0b2f0616dfcbd6bcb2dfc92015be49507c95
SHA256 aee0fe468fa08437e8ba3c97c2459cfa5b008fcc7abf6a702e157bd4f4a35d60
SHA512 c5f2c7c2c82c78b790ddbf60424cd1566fedee2c11e337ad6c544e6474e61bc54843f3586ffec0249164abf49d2fdb770da463d0ec053ae28fe94d4b25e9309b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000007

MD5 8c2f98a8fbd87246d5acf659f62d4bdd
SHA1 997edaa85be877a97f0d01abb9514d088ef658c6
SHA256 333a698a25c72c4217eee6edf01e72d0f94ff555b6a2b717faf8eb0be780552c
SHA512 53e4ed321951a5d18e298a55b136cf457c8dc0fd107ffecb7efec0903b619772c1012e958b99875d05f97f1a8093b4102f67f0aabe094ba92a9e1d750711a735

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000008

MD5 d0252ea4598dc836f17a4a3688feea7f
SHA1 6687bc1e38ba878b26e86d8cb66174f5ddbc9a8b
SHA256 6dccaebe3d4b82e2e8374556d48fd8327c11d45d4ca97562eb2a16526ea37a27
SHA512 f9c31efa8a0ad57c608af2d2d01823c41fb0037b0fd9d0e55ec25e7d62efae717fecf0eb2674a5bbe9d4c4dcc4e7144e29fadbfb754a14ccaf56708f8f104baf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000009

MD5 43d4fa5203ec9fba988616d5f3cbf5fc
SHA1 9a84102c0fb2146494277364d1130c31514d20a8
SHA256 f9fffdfb9aacde423b2a7773ed7ace61fada54091c63d896e732acac05056b43
SHA512 cb74ab334d25e03ebb141f8462b26e3fbf696289fae24d4792e125f236c0697efc5b2e56e9901174d5d9a78964ed9ee576e5cb5ea4d810a4dc1374b099bfe2e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000a

MD5 5f7eccdce651a9928c8414811b77bcb8
SHA1 cb7a789258b3ce987a5d411f3dd604489df5e654
SHA256 9a6f4f07ed1cf01c01f0fa230d8e1c75bcd40d27d16c1776c33f4512ff65bd55
SHA512 f5c67399d7c22828fb3e5ae7bade7e36283563705a15c4a9ee5d5370951b676c9ace1219a98eefc5ad53b917b47adc791072dd672eadebd2afec1aa78c6c809e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000b

MD5 d137f684aea94f3d8f8bb3b14e6927d2
SHA1 8693f88c476670995dbce56d883a089049e20ab0
SHA256 62c551732bcf61d1a12ffeec731d7ca1e01ba8d964103e74b2ed29a55b3081ee
SHA512 760910caa502673abfea29e33eb0622c9b084606f927e395b91cafe6b74bf7eac079ca5e33dfba4bd20dbfd92bed42cefe15c7c8d64d267ab2175807bbde2d64

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000d

MD5 45c7c0e71d2953430e57139abe2eae18
SHA1 325fb3777d6ccb2b92eca075cf60cf87ca2714ad
SHA256 21f65983c67f8f0647cb9d8551c202a4ea19e42b1a36d4324bdbfa19de78aa5a
SHA512 e1924fff5b77cbc4fd47b8e4b4e24938df89afce702745440480ca0d82e51712fa5287de1d3679184cc76d067d9f42a22b283058a2fbf9f7f04c0c3ad9dc1cd7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000e

MD5 a97318b898f1f10796e1485a89d34773
SHA1 729b67466a111b4374d7f8c07ba75166710d1f75
SHA256 f0f8e82b4081ae3131ff87a4b3a3a3c1a8049f72fae6eaa46debc11e8fe4d8c5
SHA512 1bf31e7628b86701512e2c36293badb9b9de9bcb86f72aa14b66123c5624afb17d23c390b55435593d39c119103afb457fbb2355ddb367bbe335bfee6308c198

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00000f

MD5 77e68844af89b02dc887824f8b1442fc
SHA1 dcc8abc106f8ee539c65b5fe1d6c21e224ee9cc7
SHA256 830ed2350a90cbfdc2837e79f78962c1766d745ffdef1a71680084bd09624114
SHA512 c9fd23d649df4eb4d26b54190e9c65767c2dcb6614723e31c1b9a0e1fe94193c18bdf3502195b2852bae1c520fe76d6e6f9e670a8f212ac8feaa2f88705fddda

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000010

MD5 c6c299228445ad007ab8ec2d9a9fbdb6
SHA1 2d8c7dde6e4eb42b214096360875a11447451ff5
SHA256 bc86be942dc61a0bb6a17036d1d977ef7fcb49ffabeb3a5c0d7613bb9d34c87e
SHA512 306ccdcdfe4cd6de907cb91684a653736bc1ab096c57ff56013da2a07af5ce978cc5a2b715c02fa11b6dee2b8e5a65b5206eb668581852351801f41679b2227d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000012

MD5 814f2934a993083e15bb53565388fe16
SHA1 4a7bee0f53d313f8ec22cb43840aa795a6905374
SHA256 c113ce1d3228742396901ab2f6dcfca2385f0647028806023b875816e737fc40
SHA512 dbb78ec41d29eb095cd361694ee26a8757c6cbd0a54d350f6164ce1aaa6fbede213d72d87c2b3b56f26c409c23ba3b914780536f53a010c114f379b1900a77e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000013

MD5 78a1d0ed01d34f7a9b6a92c06841975c
SHA1 cffb5ec06d4e258b0613a770fd783f1be8be481b
SHA256 3b0e125ab054883e7ff5f1cd595bdb6a6ecc9771c010e8a3b18a42517d488870
SHA512 d1a71f70bf1d47a2bd3ac91b3e9ad79a79a06791b97f3702b85b414adf05a2b6bc235a3e178ece9278911e93c2db0574f51ddc6dbfd0538c4a5b7652fd78028e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000014

MD5 7d7924538199f74c971efda3e02b923c
SHA1 58ddd0e715ad5582954221d06049ef6dc0b756ec
SHA256 e175c0838f724ab438da25919ba663fbd056d77124887a91a3ce6a34623b4cca
SHA512 249d050a9e22e725585aa24531183e48e3925d0f3e04c1b47559b5be018822aaa36c49f924fddf81baecf1bed51f04c6b14aa3892649b14300076f2219c3aeb1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000015

MD5 99d78b9787cd6791a934014e5d6e38a4
SHA1 39e76086a2d0e9a5142aa6893c56586b83e7e6c6
SHA256 916934c6a8f846067571dc993a0a58b29da5270f173ec505ac2038a19b84a3c6
SHA512 bb31874394fa52058b1ea7af07598900e3822e5b833fd7902a0f5ed944f520dc0f9c71ed38c5af364c9f123bc8e56518cfda88c11da6b5e6a3705a2fe4b63a09

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000016

MD5 35a87ec5b4e9ee66a71ce7b28e4cd623
SHA1 f4ebd6d0346c683c64041b7caea0d16ce6894522
SHA256 5a8e5f38b76aae963315fee578e919c0272b7d50df29366faa3b498bd9bb5acd
SHA512 5ce2a92f316b9471ac68a9dac98c6d59a420d4f7813d8e346c0b972a722243018188ad27fdae6c7089cf4b3e4a59855ac52d9c9eb0e6e837af3e757404ed339f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000017

MD5 141825c482387210f1b16691168de867
SHA1 b6c30a1663f67a313885caa20e6e3a8914ca66a7
SHA256 6474da556202e87d5de22ba37562944eae33bead8cf9b0a9edf4080c74bae5d0
SHA512 276733152e54ee11475786821c3c1217b1abec60870b33db8448b7cca6df6d8447608d92acda713cb21e0b1ed19e98f20f11288fd9ec225d497b180bae2ccf07

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000018

MD5 dea789348f24b596cf21f67b2152c27a
SHA1 18b5c7f4c20338b7754911ff8daa572afc3905b1
SHA256 283cd296a8152856d2e8d08a5eec17fccf59b582b88964e81344e089cf752bbf
SHA512 d71a21ed613694419befe43cc22dc5d0c7b66b70cf73ec29971f0694cba80cf40182d409db577bc5f7ba50b1d9a7ee574d140c956780e7b7e135cc3acaa5e675

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000019

MD5 08047a28214dc224c2cda8ee8d379418
SHA1 134a9d8367cb843806a696954633d3c9aae8d481
SHA256 04e35512483e1fde6497655a6b24a5d68a6260544d5ae3ee87c72af91403bc69
SHA512 2ce9aa9de6f1ba97fc8e23c47ac41301a0c699bb8d7a526fb929619bffd1916d8eaa046f9d8601772ddb96399097ebb91b0f2325169e30ea20c95daad4f99f93

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001a

MD5 0a2f439f6dd0dac5cdf5ff3693cc2699
SHA1 326d9e31db4ea084190e7f5c5e203e581b02f396
SHA256 c510ee8fca8cefb74a34ecbda092e1bbc88712f46e7ddf0d08ddbed7753e2146
SHA512 e7c8cd79c5fd5075cc81bbab93aa8255993b66e7eb1281666b4d23fa76cdd3d5f500935d2c7660c62a808962720b2519ea7f5dc5abe714be50896aec51539aa1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001b

MD5 f380ebb46917936b10c3b152be7db931
SHA1 9b716915ab5610f911ee4bcc0a6c35889e2ad4e6
SHA256 50e37b14b9e9455bd2ad1bb8f38a7981032b845a531cde01eec2b71c6ef013d6
SHA512 aad68253b2b9f5ddf6d8d50c8ced548e8d06b387c4604e9ccd616264dbfe63a71099c3853cdd05f341b6f067128c055eccaed261d74cd24ba5012ba8d2da94e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001c

MD5 b1e447886221c5dd741df8e70d52977d
SHA1 d1f77f7235202df49dbc728978b0a482df33bd72
SHA256 3b2b40d8dcc1113726f07c2bf3c476a72d193b65b26dcb3ad60ea827e3ff4b60
SHA512 94cd828bc62aa2cc04d0a2de2071de04537520cbfbc85867157f75f494d1ebc95c69fa703fd80f2a3f18d3518d543497d34244eeb84af3a0e2a4a9ce368ac3d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001d

MD5 803f2a8a5916f151a62a724547f7c382
SHA1 24eae007919448f0d5b75c99afd96a175720d44a
SHA256 74a436dbb5dcdc529ce8bad1b1a6b72ccebe2fbbca7c1b02ec449ed535fcc140
SHA512 902cce9d7745ac533d25591fdd70750baa22c9678b439a2a700f1ce2b22b63dded08590be5392a8cd1b3cfcdf3d41c2adde40de29f8294dba2905f60ab3839c9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001e

MD5 c2ff79fbea3a3c89a845ad030249242b
SHA1 9f769765764e0b06027ffbe3a6322e6476015c73
SHA256 ed0d8cd768a11c50e394d8f9bc5f84a98413456f705539e904b40397f3868a78
SHA512 1960258d1833b1379827c246efcae6861d7434a32114817b78e002256e5f19c19f33ece1eb8ffd7f133205fada80aead5ad4e43973d579844ed004e966d7c938

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_00001f

MD5 95c71cdff487f61c1d2a67c6bfafb9e3
SHA1 7f77fda2cf2a5fee9fd31c45c2f2292adbe8405d
SHA256 2fd311ece0dcc00fcc88f87c678e194cb1286752c1c91ef7ca30ce292fff4b8c
SHA512 1dfcec9620996caacb28d7436a813e8afee9c3383e76a7193ebd1118fd2c94a57e1bfa9899a0ef40e5ce002aeb01c815dd785d6d8f5616f47d58ef600fb4bc56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000020

MD5 93ee123a4fced119a94ca0060d76b745
SHA1 5fe177a4da728bbd13aeebcf9c268ad673d0e534
SHA256 4ecb3b5ad7ca8df4abbfdd8148ef1063bd4c9e6b49f48efb93b6f0f091f43e28
SHA512 22c9ecc604ad4aaadf2fa4d8ef6bb5bbedc760422c638743b01522fe87b49f4bf203dcf3192c7c3fd2f9cf28c605913ec4a853424cb222a75a17555e8118f8e1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000021

MD5 7fb62753b13f2f290218690529319054
SHA1 29e971ed3202b6a2afefb855ddbb651695fcdf91
SHA256 5009aaa8753c894998e28f148f2f35672c1a194d7fed698d58ae896e7a8ec0b8
SHA512 b5688c9e0a6bc08714da5abf3d99c78f215e4bae0f67899843c96d4c38c43cb1cfb2ff3f685a713ce9d0f5ffbdd80ade24d55b3a4607c88ba5e375da3d505d85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000022

MD5 910c2ccfede50ec5126b888ecb0d30f2
SHA1 08385d68577a7a69926d1cdf9688023730b2c9df
SHA256 a14efe7001c4913afd9feb2cc85bab7a85d7be82ee572b06195e8e6d7f8b7828
SHA512 5f796d4caad4c3b2556ad553dbcb266e8d928e64cf6620ba3b5d4e83964f0637308ef1276d63c0f1501864cb8e9b2996b41a67f8c5457681cb5369277fac6ce3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000023

MD5 00e919b2469e7b316f1b72bc59d3c773
SHA1 c57957b57be625c80d5fb7621b545259fed3c354
SHA256 0e6943fd1feb66ab430868d4f9874165cb909b0b23960f952f55094e8058b268
SHA512 81529a9b55a1c2cacb7cfd7954401c08b56ddec6d3f73a6eacb17d22ab2222c8bf2366391f68d9478ad94a82856e6a86f0d8bef91f4cf07f884feae21a85b681

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000024

MD5 9f16e40d5c1a7ea525c1add12f293eb1
SHA1 975aded868b5d932bf54e2d14ce5a32b8f8077b5
SHA256 91e7ce8b9a8f0f051c13c3e06dd02c22b69789d3d3366de9b45d16212da7b397
SHA512 45d527fbafd0a736f3e8ae31b9be4dbe721da2a106450d2e41f3cdb7095a1db98a3c24ab10d5110268c07f59d3403cc59aaa9eed10cf0ccb6c930fac13bb4aad

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000025

MD5 4693b964f8be2f495d11874d56644574
SHA1 3c2565066a12c208961bd04b4907b741d12b0e27
SHA256 91144b77e1072ddd38d13dc2577d92022a18ba8252045aafdb2f020cc52ee93a
SHA512 3e1907cb74b61dff9041937c29883e836cb7fd1149dff4145eeca9b1837b8634b815ef5bd095579f42c88c6f177495c81e76a3b1619995c7a61470f12a06c456

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\f_000026

MD5 24f9f74389e17d5884f0d3682c0b8f00
SHA1 c9aee1bce454a4f427e9f5e2cc04656023498cf5
SHA256 e50254b4aff0f4b6e60557d364a9b573312284bc37f8c922276d52db66377cd5
SHA512 2e0fc6f7732b06d035e390b29238117c246b5766f67c2b3e494055e803e813c6ce35773ba1a87005afbee1e23372c75bfba55d5beac208152cc7b908da245d46

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 5d82ac4abfaf9b42c1e3d20c2b5897e9
SHA1 7a785486aa633baa0957adaf0589d9f54ec2061a
SHA256 b29d90d7472e359db0262a109205911b6b27457002505a5ca9f783d0b6e0a36e
SHA512 739c41e66fae998c722aa417e273cca51ae30b847540a229229e51a1946c3cb1b8f5aec1f2e895bf12e21f4ec408b5ccddf285c516b906c1823d0c777cce0fb2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 612ba8929273db318a0f5a1cba283a8b
SHA1 90efe8f27d29edebff60fc8e89fd45f22348bc07
SHA256 76eb09a86b5daf69acc59c63417cc45699b62bd2a966d374a6b7fb77d3014e03
SHA512 efe0ebf46ae402668dd076b0f33e5406ea9380c7f430c2cf51ec10133e2896818c5940770f3b21918b1ea773a7f959cae7eea4f4eb2a46ee7732c8dabc021484

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 bcd1304297084439c686fcb23b0c10fe
SHA1 9f50e4d562c3621462de17b43e9c391ef9e460a3
SHA256 4cbdb7529c6aea237adcaf7f5c200204f6f6afda897852204fc927c6bf737288
SHA512 8d5f3213f81bd31de8318a1277cdee5d045428e2779ef735c4c2c48980b0ff12d64b09c0216777996c5731ff059c06d42bfc69ffc7ca0af8871d5a85c9985836

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

MD5 47e456fb3d95c1eba8158fc001747a7e
SHA1 1dc43359c9e823abacc4e4f4b050c0e4ce213c5c
SHA256 7797fe9b41d33e398a6c30996ad42a5abbadf2ecec387eef961fa0303a30cc35
SHA512 4e6612bab3bca6674215b6aea6ff62f48c763d89533bf0198d71f4a0bdde630e8d3efb17db35c3e960c050d6b17a9192c3fcb79abab2fef44f2f5171cb273205

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_0

MD5 daf527f28b9c73c1f4891e715cecd06e
SHA1 fa2070394911a7f9c4781a6c168eb8ab9b32fa61
SHA256 63ac52eeac3ffe1adf90fd5d70d275219e6330789fca778fc17f9753844f9c38
SHA512 b0f38fd9006ed2d183b4c3033f0746f5389db09e128da57f7c728772d718f4348c1dd7f0ee34f0b8506453bd33129c4efac36e55bd404d42f48a6a853270c99f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_3

MD5 04be4aab569a003b03c10a9ec2e0f158
SHA1 83ae9d22ac8938bbfc54054693dda803537b4a98
SHA256 0ed71ec0c35e2dc98ec661f3e76e924d91cc5455495b776e01318e7b853d6104
SHA512 d372f770d9d4f299207d6dcd223781c5950a2543da78a256e403b04669a0a390c78780eae3d8dd99d322c084200a7d9db7e5f5b4f0b179eb97243744104fe526

C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{0F5C75E7-5C5B-4791-BA99-2833067C2AFD}\EDGEMITMP_B4FF2.tmp\SETUP.EX_

MD5 958befee6afc25fa51e4bf538d0894c7
SHA1 70a2f157988f6cef27048bc2b3c81e8ab4b41552
SHA256 5422f0b35bac6fc926c6f537d42cfa4aaa7985e89e4e680acc467d804071a006
SHA512 7ecf452f007d849268b4cc2644ecb239b2a4309a80f4350dfb215f6fc34950cabf1bb233f43bc6678547931af7b427517ed8c88cd214aa0358122777a5a8cce2