Malware Analysis Report

2024-10-10 12:04

Sample ID 240613-rqadnawhmn
Target Graphing data.xlsx
SHA256 3eb94783cb0063c9fb90a79f8a157e315f627bd60e5bcfc4c426aa90b6069f1a
Tags
discovery persistence
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

3eb94783cb0063c9fb90a79f8a157e315f627bd60e5bcfc4c426aa90b6069f1a

Threat Level: Shows suspicious behavior

The file Graphing data.xlsx was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery persistence

Loads dropped DLL

Executes dropped EXE

Checks computer location settings

Checks installed software on the system

Adds Run key to start application

Suspicious use of SetThreadContext

Drops file in System32 directory

Drops file in Windows directory

Drops file in Program Files directory

Program crash

Enumerates physical storage devices

Suspicious use of AdjustPrivilegeToken

Enumerates system info in registry

Checks processor information in registry

Kills process with taskkill

Modifies system certificate store

Suspicious behavior: GetForegroundWindowSpam

Suspicious behavior: AddClipboardFormatListener

Suspicious use of WriteProcessMemory

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Checks SCSI registry key(s)

Modifies registry class

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Modifies data under HKEY_USERS

Suspicious use of SetWindowsHookEx

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-13 14:23

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-13 14:23

Reported

2024-06-13 14:40

Platform

win10v2004-20240611-en

Max time kernel

1047s

Max time network

1050s

Command Line

"C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\Graphing data.xlsx"

Signatures

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\Control Panel\International\Geo\Nation C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Executes dropped EXE

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\gldriverquery64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\gldriverquery.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\vulkandriverquery64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\x64launcher.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
N/A N/A C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
N/A N/A C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\x64launcher.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamerrorreporter.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\x64launcher.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
N/A N/A C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Steam = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -silent" C:\Users\Admin\Downloads\SteamSetup.exe N/A

Checks installed software on the system

discovery

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\system32\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\exe\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\exe\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\exe\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\system32\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\system32\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\sd_ltrackpad_up_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_mouse_r_click_lg.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\xbox360_button_select_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\public\ssa\eula_korean_bigpicture.html_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\appcache\librarycache\382030_library_600x900.jpg C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\[email protected]_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\btnStdBottomRight.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\osx_close_down_new.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\ps_outlined_button_triangle_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\shared_mouse_r_click_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\ps_color_button_square_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\switchpro_dpad_left.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\shared_mouse_scroll_down.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\icon_button_servers.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\ps_outlined_button_triangle_lg.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File opened for modification C:\Program Files (x86)\Steam\config\virtualgamepadinfo.txt C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steam\cached\icon_button_forward_disabled_sm.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\shared_buttons_w_lg.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File opened for modification C:\Program Files (x86)\Steam\logs\bootstrap_log.txt C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\controller\ghost_010_wpn_0414.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\sc_dpad_down.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\shared_dpad_up_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\sd_rtrackpad_click_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\localization\xbox_360_danish.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_045_move_0070.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steamui\images\controller\ghost_010_wpn_0090.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\resource\icon_password.tga_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\ps_color_outlined_button_square_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\sd_rtrackpad_swipe_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_010_wpn_0512.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\friends\trackerui_hungarian.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steam\cached\steamui_postlogon_vietnamese.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\shared_color_button_a_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\appcache\httpcache\40\40e8b7fc7349ea2c15881f3cd72dbf16873a7f6c_da39a3ee5e6b4b0d3255bfef95601890afd80709 C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\appcache\librarycache\250820_header.jpg C:\Program Files (x86)\Steam\steam.exe N/A
File opened for modification C:\Program Files (x86)\Steam\steamapps\downloading\1625450\Muck_Data\Managed\UnityEngine.DirectorModule.dll C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_080_input_0015.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_110_social_0301.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\ps_outlined_button_x.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\bin\cef\cef.win7x64\snapshot_blob.bin_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steam\cached\asyncnotificationsrequesteddialog.res_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\appcache\stats\UserGameStatsSchema_1240440.bin C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_040_act_0300.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\public\steambootstrapper_schinese.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\public\steamclean_german.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\shared_buttons_e_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_010_wpn_0404.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\sd_rtrackpad_ring_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_rstick_up_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\tenfoot\resource\images\library\controller\binding_icons\ghost_010_wpn_0507.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\graphics\[email protected]_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\ps4_button_logo.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\resource\overlay_greek.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\sc_lt_click.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\sc_lt_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\localization\xbox_one_swedish.txt_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_button_y_md-1.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_color_button_a.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\shared_outlined_button_a.svg_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\light\switchpro_l_sm.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\steam\cached\CreditCardReceipt.html_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\public\steambootstrapper_german.txt C:\Users\Admin\Downloads\SteamSetup.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\dark\ps4_trackpad_right_lg.png_ C:\Program Files (x86)\Steam\steam.exe N/A
File created C:\Program Files (x86)\Steam\package\tmp\controller_base\images\api\knockout\sd_button_aux_md.png_ C:\Program Files (x86)\Steam\steam.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File created C:\Windows\rescache\_merged\2229298842\2642444576.pri C:\Windows\system32\LogonUI.exe N/A
File opened for modification C:\Windows\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\exe\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\kernelbase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\symbols\dll\combase.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A
File opened for modification C:\Windows\dll\UnityPlayer_Win64_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\DLL\kernel32.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\symbols\exe\WindowsPlayer_Master_mono_x64.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\mono-2.0-bdwgc.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe N/A
File opened for modification C:\Windows\dll\ntdll.pdb C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0 C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\steam.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\steam.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz C:\Program Files (x86)\Steam\GameOverlayUI.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\Hardware\Description\System\BIOS C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Kills process with taskkill

evasion
Description Indicator Process Target
N/A N/A C:\Windows\system32\taskkill.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "205" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" C:\Windows\system32\LogonUI.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133627622382371020" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" C:\Windows\system32\LogonUI.exe N/A
Set value (data) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" C:\Windows\system32\LogonUI.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" C:\Windows\system32\LogonUI.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\URL Protocol C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steam\Shell\Open C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\ = "URL:steamlink protocol" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell\Open C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steam\Shell\Open\Command C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\ = "URL:steamlink protocol" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\URL Protocol C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink\DefaultIcon C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\DefaultIcon C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steam\Shell\Open\Command C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell\Open C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\URL Protocol C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\Shell\Open\Command C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\DefaultIcon C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\ = "URL:steamlink protocol" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink\DefaultIcon C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steam C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\URL Protocol C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell\Open\Command C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\DefaultIcon C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\ = "URL:steam protocol" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\DefaultIcon C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steam\DefaultIcon C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\URL Protocol C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell\Open\Command C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\URL Protocol C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steam\Shell\Open\Command C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\ = "URL:steam protocol" C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\ = "URL:steamlink protocol" C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell\Open\Command C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\Shell\Open\Command C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steam C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\steamlink\Shell\Open\Command C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\ = "URL:steam protocol" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steam C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink\URL Protocol C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\URL Protocol C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steamlink C:\Program Files (x86)\Steam\steam.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\steam\DefaultIcon\ = "steam.exe" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\steamlink\Shell\Open C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\ = "URL:steam protocol" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-200405930-3877336739-3533750831-1000_Classes\steam\Shell\Open\Command\ = "\"C:\\Program Files (x86)\\Steam\\steam.exe\" -- \"%1\"" C:\Program Files (x86)\Steam\bin\steamservice.exe N/A

Modifies system certificate store

evasion spyware trojan
Description Indicator Process Target
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8\Blob = 0400000001000000100000000cd2f9e0da1773e9ed864da5e370e74e14000000010000001400000079b459e67bb6e5e40173800888c81a58f6e99b6e030000000100000014000000cabd2a79a1076a31f21d253635cb039d4329a5e80f00000001000000200000003f0411ede9c4477057d57e57883b1f205b20cdc0f3263129b1ee0269a2678f631900000001000000100000002fe1f70bb05d7c92335bc5e05b984da620000000010000006f0500003082056b30820353a0030201020211008210cfb0d240e3594463e0bb63828b00300d06092a864886f70d01010b0500304f310b300906035504061302555331293027060355040a1320496e7465726e65742053656375726974792052657365617263682047726f7570311530130603550403130c4953524720526f6f74205831301e170d3135303630343131303433385a170d3335303630343131303433385a304f310b300906035504061302555331293027060355040a1320496e7465726e65742053656375726974792052657365617263682047726f7570311530130603550403130c4953524720526f6f7420583130820222300d06092a864886f70d01010105000382020f003082020a0282020100ade82473f41437f39b9e2b57281c87bedcb7df38908c6e3ce657a078f775c2a2fef56a6ef6004f28dbde68866c4493b6b163fd14126bbf1fd2ea319b217ed1333cba48f5dd79dfb3b8ff12f1219a4bc18a8671694a66666c8f7e3c70bfad292206f3e4c0e680aee24b8fb7997e94039fd347977c99482353e838ae4f0a6f832ed149578c8074b6da2fd0388d7b0370211b75f2303cfa8faeddda63abeb164fc28e114b7ecf0be8ffb5772ef4b27b4ae04c12250c708d0329a0e15324ec13d9ee19bf10b34a8c3f89a36151deac870794f46371ec2ee26f5b9881e1895c34796c76ef3b906279e6dba49a2f26c5d010e10eded9108e16fbb7f7a8f7c7e50207988f360895e7e237960d36759efb0e72b11d9bbc03f94905d881dd05b42ad641e9ac0176950a0fd8dfd5bd121f352f28176cd298c1a80964776e4737baceac595e689d7f72d689c50641293e593edd26f524c911a75aa34c401f46a199b5a73a516e863b9e7d72a712057859ed3e5178150b038f8dd02f05b23e7b4a1c4b730512fcc6eae050137c439374b3ca74e78e1f0108d030d45b7136b407bac130305c48b7823b98a67d608aa2a32982ccbabd83041ba2830341a1d605f11bc2b6f0a87c863b46a8482a88dc769a76bf1f6aa53d198feb38f364dec82b0d0a28fff7dbe21542d422d0275de179fe18e77088ad4ee6d98b3ac6dd27516effbc64f533434f0203010001a3423040300e0603551d0f0101ff040403020106300f0603551d130101ff040530030101ff301d0603551d0e0416041479b459e67bb6e5e40173800888c81a58f6e99b6e300d06092a864886f70d01010b05000382020100551f58a9bcb2a850d00cb1d81a6920272908ac61755c8a6ef882e5692fd5f6564bb9b8731059d321977ee74c71fbb2d260ad39a80bea17215685f1500e59ebcee059e9bac915ef869d8f8480f6e4e99190dc179b621b45f06695d27c6fc2ea3bef1fcfcbd6ae27f1a9b0c8aefd7d7e9afa2204ebffd97fea912b22b1170e8ff28a345b58d8fc01c954b9b826cc8a8833894c2d843c82dfee965705ba2cbbf7c4b7c74e3b82be31c822737392d1c280a43939103323824c3c9f86b255981dbe29868c229b9ee26b3b573a82704ddc09c789cb0a074d6ce85d8ec9efceabc7bbb52b4e45d64ad026cce572ca086aa595e315a1f7a4edc92c5fa5fbffac28022ebed77bbbe3717b9016d3075e46537c3707428cd3c4969cd599b52ae0951a8048ae4c3907cecc47a452952bbab8fbadd233537de51d4d6dd5a1b1c7426fe64027355ca328b7078de78d3390e7239ffb509c796c46d5b415b3966e7e9b0c963ab8522d3fd65be1fb08c284fe24a8a389daac6ae1182ab1a843615bd31fdc3b8d76f22de88d75df17336c3d53fb7bcb415fffdca2d06138e196b8ac5d8b37d775d533c09911ae9d41c1727584be0241425f67244894d19b27be073fb9b84f817451e17ab7ed9d23e2bee0d52804133c31039edd7a6c8fc60718c67fde478e3f289e0406cfa5543477bdec899be91743df5bdb5ffe8e1e57a2cd409d7e6222dade1827 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\CABD2A79A1076A31F21D253635CB039D4329A5E8 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\B1BC968BD4F49D622AA89A81F2150152A41D829C\Blob = 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 C:\Program Files (x86)\Steam\steam.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 040000000100000010000000d474de575c39b2d39c8583c5c065498a0f0000000100000014000000e35ef08d884f0a0ade2f75e96301ce6230f213a8530000000100000040000000303e301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c0090000000100000034000000303206082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030106082b060105050703086200000001000000200000007431e5f4c3c1ce4690774f0b61e05440883ba9a01ed00ba6abd7806ed3b118cf140000000100000014000000b13ec36903f8bf4701d498261a0802ef63642bc30b00000001000000120000004400690067006900430065007200740000001d00000001000000100000008f76b981d528ad4770088245e2031b630300000001000000140000005fb7ee0633e259dbad0c4c9ae6d38f1a61c7dc25190000000100000010000000ba4f3972e7aed9dccdc210db59da13c92000000001000000c9030000308203c5308202ada003020102021002ac5c266a0b409b8f0b79f2ae462577300d06092a864886f70d0101050500306c310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d312b30290603550403132244696769436572742048696768204173737572616e636520455620526f6f74204341301e170d3036313131303030303030305a170d3331313131303030303030305a306c310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d312b30290603550403132244696769436572742048696768204173737572616e636520455620526f6f7420434130820122300d06092a864886f70d01010105000382010f003082010a0282010100c6cce573e6fbd4bbe52d2d32a6dfe5813fc9cd2549b6712ac3d5943467a20a1cb05f69a640b1c4b7b28fd098a4a941593ad3dc94d63cdb7438a44acc4d2582f74aa5531238eef3496d71917e63b6aba65fc3a484f84f6251bef8c5ecdb3892e306e508910cc4284155fbcb5a89157e71e835bf4d72093dbe3a38505b77311b8db3c724459aa7ac6d00145a04b7ba13eb510a984141224e656187814150a6795c89de194a57d52ee65d1c532c7e98cd1a0616a46873d03404135ca171d35a7c55db5e64e13787305604e511b4298012f1793988a202117c2766b788b778f2ca0aa838ab0a64c2bf665d9584c1a1251e875d1a500b2012cc41bb6e0b5138b84bcb0203010001a3633061300e0603551d0f0101ff040403020186300f0603551d130101ff040530030101ff301d0603551d0e04160414b13ec36903f8bf4701d498261a0802ef63642bc3301f0603551d23041830168014b13ec36903f8bf4701d498261a0802ef63642bc3300d06092a864886f70d010105050003820101001c1a0697dcd79c9f3c886606085721db2147f82a67aabf183276401057c18af37ad911658e35fa9efc45b59ed94c314bb891e8432c8eb378cedbe3537971d6e5219401da55879a2464f68a66ccde9c37cda834b1699b23c89e78222b7043e35547316119ef58c5852f4e30f6a0311623c8e7e2651633cbbf1a1ba03df8ca5e8b318b6008892d0c065c52b7c4f90a98d1155f9f12be7c366338bd44a47fe4262b0ac497690de98ce2c01057b8c876129155f24869d8bc2a025b0f44d42031dbf4ba70265d90609ebc4b17092fb4cb1e4368c90727c1d25cf7ea21b968129c3c9cbf9efc805c9b63cdec47aa252767a037f300827d54d7a9f8e92e13a377e81f4a C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: AddClipboardFormatListener

Description Indicator Process Target
N/A N/A C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Users\Admin\Downloads\SteamSetup.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Steam\steam.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
N/A N/A C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A
N/A N/A C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4176 wrote to memory of 2884 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2884 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 4436 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 3416 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 3416 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4176 wrote to memory of 2052 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE

"C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\Graphing data.xlsx"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffc941dab58,0x7ffc941dab68,0x7ffc941dab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1716 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1964 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2252 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3112 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3132 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4408 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4532 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4676 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4900 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5000 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4572 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4240 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4540 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4484 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3980 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5324 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5336 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5240 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5580 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=4508 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4368 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5756 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=5772 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5976 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\AppData\Local\Temp\Temp1_Desktop Goose v0.31.zip\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\AppData\Local\Temp\Temp1_Desktop Goose v0.31.zip\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4604 -ip 4604

C:\Windows\SysWOW64\WerFault.exe

C:\Windows\SysWOW64\WerFault.exe -u -p 4604 -s 1276

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x510 0x304

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2504 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:2

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe

"C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\GooseDesktop.exe"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\Close Goose.bat" "

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Downloads\Desktop Goose v0.31\Desktop Goose v0.31\DesktopGoose v0.31\Close Goose.bat" "

C:\Windows\system32\taskkill.exe

taskkill /f /im goosedesktop.exe

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=3240 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5136 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=5500 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5164 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=5176 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=1656 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=5632 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=4612 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=1636 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=5084 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=5704 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6296 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=6592 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6740 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7024 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=7312 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=6764 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=7620 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7764 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=6628 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=5444 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=7252 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=7160 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=7876 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=6856 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=8012 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=8036 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=8360 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=6404 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=6380 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8740 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=9008 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=8736 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=9188 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=9312 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=9572 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=9548 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=9664 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=9656 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=9452 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=1128 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=7988 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=9316 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=6964 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=6620 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=4712 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=5896 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=8364 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=8752 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=6664 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=8276 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=6672 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=7656 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=4148 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=4460 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=9640 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=6424 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=7848 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=7532 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=8344 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=7940 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=10296 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=7128 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=3364 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=8440 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=8448 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=5196 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --mojo-platform-channel-handle=6172 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=7740 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=8232 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=8788 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --mojo-platform-channel-handle=4764 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=6284 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=4584 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --mojo-platform-channel-handle=1636 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --mojo-platform-channel-handle=9048 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --mojo-platform-channel-handle=4364 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --mojo-platform-channel-handle=10252 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --mojo-platform-channel-handle=5192 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --mojo-platform-channel-handle=9684 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --mojo-platform-channel-handle=10088 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --mojo-platform-channel-handle=7076 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --mojo-platform-channel-handle=5524 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4924 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6804 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10528 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10456 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9288 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10456 --field-trial-handle=1984,i,16721680510582696766,3193924332446461047,131072 /prefetch:8

C:\Users\Admin\Downloads\SteamSetup.exe

"C:\Users\Admin\Downloads\SteamSetup.exe"

C:\Program Files (x86)\Steam\bin\steamservice.exe

"C:\Program Files (x86)\Steam\bin\steamservice.exe" /Install

C:\Program Files (x86)\Steam\steam.exe

"C:\Program Files (x86)\Steam\steam.exe"

C:\Program Files (x86)\Steam\steam.exe

"C:\Program Files (x86)\Steam\steam.exe"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16276" "-buildid=1716584667" "-steamid=0" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=0" "-userdatadir=C:\Users\Admin\AppData\Local\Steam\cefdata" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1716584667 --initial-client-data=0x368,0x36c,0x370,0x344,0x374,0x7ffc9756ee38,0x7ffc9756ee48,0x7ffc9756ee58

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=1580 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=2232 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Program Files (x86)\Steam\bin\gldriverquery64.exe

.\bin\gldriverquery64.exe

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=2540 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --first-renderer-process --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2928 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\gldriverquery.exe

.\bin\gldriverquery.exe

C:\Program Files (x86)\Steam\bin\vulkandriverquery64.exe

.\bin\vulkandriverquery64.exe

C:\Program Files (x86)\Steam\bin\vulkandriverquery.exe

.\bin\vulkandriverquery.exe

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3500 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3708 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3784 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3916 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=1360 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=3924 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3524 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3960 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=4136 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=4232 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=0 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=disabled --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=4244 --field-trial-handle=1712,i,14910737789560710600,6911135947698140632,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16276" "-buildid=1716584667" "-steamid=76561199705694965" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=1" "-userdatadir=C:\Users\Admin\AppData\Local\Steam\cefdata" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=crashpad-handler /prefetch:7 --max-uploads=5 --max-db-size=20 --max-db-age=5 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files (x86)\Steam\dumps" "--metrics-dir=C:\Users\Admin\AppData\Local\CEF\User Data" --url=https://crash.steampowered.com/submit --annotation=platform=win64 --annotation=product=cefwebhelper --annotation=version=1716584667 --initial-client-data=0x35c,0x360,0x364,0x338,0x368,0x7ffc9756ee38,0x7ffc9756ee48,0x7ffc9756ee58

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=1684 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\steamerrorreporter64.exe

C:\Program Files (x86)\Steam\steamerrorreporter64.exe -pid=7652

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=2240 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=2532 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --first-renderer-process --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2980 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=2248 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3696 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=angle --use-angle=swiftshader-webgl --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3788 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4056 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=gpu-process --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=disabled --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=3964 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:2

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=3608 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3856 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3552 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --user-agent-product="Valve Steam Client" --lang=en-US --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --mojo-platform-channel-handle=4416 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x510 0x304

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=1264 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3608 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=1752 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3772 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe"

C:\Program Files (x86)\Steam\bin\x64launcher.exe

"C:\Program Files (x86)\Steam\bin\x64launcher.exe" -hproc 1160 -hthread 1164 -baseoverlayname C:\Program Files (x86)\Steam\gameoverlayrenderer64.dll

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe" --attach 20996 2372933128192

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 20996 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 20996 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 20996 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe" "20996" "2372933128192"

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /7

C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe"

C:\Program Files (x86)\Steam\bin\x64launcher.exe

"C:\Program Files (x86)\Steam\bin\x64launcher.exe" -hproc 1158 -hthread 11fc -baseoverlayname C:\Program Files (x86)\Steam\gameoverlayrenderer64.dll

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe" --attach 4332 2538427650048

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 4332 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=1832 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe"

C:\Program Files (x86)\Steam\bin\x64launcher.exe

"C:\Program Files (x86)\Steam\bin\x64launcher.exe" -hproc 10d8 -hthread 12b8 -baseoverlayname C:\Program Files (x86)\Steam\gameoverlayrenderer64.dll

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe" --attach 7120 2282339831808

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 7120 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\GameOverlayUI.exe

"C:\Program Files (x86)\Steam\GameOverlayUI.exe" -pid 7120 -steampid 16276 -manuallyclearframes 0 -gameid 1625450

C:\Program Files (x86)\Steam\steamerrorreporter.exe

C:\Program Files (x86)\Steam\steam

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

"C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe" "7120" "2282339831808"

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" --type=renderer --user-agent-product="Valve Steam Client" --user-data-dir="C:\Users\Admin\AppData\Local\Steam\cefdata" --buildid=1716584667 --steamid=76561199705694965 --log-file="C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-gpu-compositing --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=820 --field-trial-handle=1740,i,5120379300422612032,15853029227406186806,131072 --disable-features=BackForwardCache,DcheckIsFatal,SpareRendererForSitePerProcess,WinUseBrowserSpellChecker /prefetch:1

C:\Windows\system32\LogonUI.exe

"LogonUI.exe" /flags:0x4 /state0:0xa37b1055 /state1:0x41c64e6d

C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe

"C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe" "-lang=en_US" "-cachedir=C:\Users\Admin\AppData\Local\Steam\htmlcache" "-steampid=16276" "-buildid=1716584667" "-steamid=76561199705694965" "-logdir=C:\Program Files (x86)\Steam\logs" "-uimode=7" "-startcount=2" "-userdatadir=C:\Users\Admin\AppData\Local\Steam\cefdata" "-steamuniverse=Public" "-realm=Global" "-clientui=C:\Program Files (x86)\Steam\clientui" "-steampath=C:\Program Files (x86)\Steam\steam.exe" "-launcher=0" --valve-enable-site-isolation --enable-smooth-scrolling --enable-direct-write "--log-file=C:\Program Files (x86)\Steam\logs\cef_log.txt" --disable-quick-menu "--disable-features=SpareRendererForSitePerProcess,DcheckIsFatal"

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {9BA05972-F6A8-11CF-A442-00A0C90A8F39} -Embedding

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {9BA05972-F6A8-11CF-A442-00A0C90A8F39} -Embedding

Network

Country Destination Domain Proto
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 g.bing.com udp
US 13.107.21.237:443 g.bing.com tcp
BE 2.17.107.99:443 www.bing.com tcp
US 8.8.8.8:53 237.21.107.13.in-addr.arpa udp
US 8.8.8.8:53 136.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 42.56.20.217.in-addr.arpa udp
US 8.8.8.8:53 99.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
US 8.8.8.8:53 203.33.253.131.in-addr.arpa udp
US 8.8.8.8:53 7.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 234.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.206:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 142.250.187.206:443 clients2.google.com tcp
US 8.8.8.8:53 206.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 103.169.127.40.in-addr.arpa udp
US 8.8.8.8:53 198.187.3.20.in-addr.arpa udp
US 8.8.8.8:53 ogs.google.com udp
GB 142.250.187.238:443 ogs.google.com tcp
US 8.8.8.8:53 ssl.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 consent.google.com udp
US 8.8.8.8:53 samperson.itch.io udp
US 45.79.115.66:443 samperson.itch.io tcp
US 45.79.115.66:443 samperson.itch.io tcp
US 8.8.8.8:53 static.itch.io udp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 104.26.9.198:443 static.itch.io tcp
US 8.8.8.8:53 66.115.79.45.in-addr.arpa udp
US 8.8.8.8:53 img.itch.zone udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 i.ytimg.com udp
BE 2.17.107.200:443 img.itch.zone tcp
US 45.79.115.66:443 samperson.itch.io tcp
BE 2.17.107.200:443 img.itch.zone tcp
US 45.79.115.66:443 samperson.itch.io tcp
BE 2.17.107.200:443 img.itch.zone tcp
US 45.79.115.66:443 samperson.itch.io tcp
BE 2.17.107.200:443 img.itch.zone tcp
BE 2.17.107.200:443 img.itch.zone tcp
US 104.26.9.198:443 static.itch.io tcp
US 45.79.115.66:443 samperson.itch.io tcp
US 8.8.8.8:53 198.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 200.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net tcp
GB 142.250.200.54:443 i.ytimg.com tcp
GB 142.250.200.54:443 i.ytimg.com tcp
GB 142.250.200.54:443 i.ytimg.com tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 region1.google-analytics.com udp
US 216.239.34.36:443 region1.google-analytics.com tcp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 54.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
GB 216.58.212.202:443 jnn-pa.googleapis.com tcp
GB 216.58.212.202:443 jnn-pa.googleapis.com udp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
US 8.8.8.8:53 js.stripe.com udp
US 151.101.128.176:443 js.stripe.com tcp
US 8.8.8.8:53 202.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 8.8.8.8:53 m.stripe.network udp
US 8.8.8.8:53 m.stripe.com udp
US 52.12.193.84:443 m.stripe.com tcp
US 8.8.8.8:53 176.128.101.151.in-addr.arpa udp
US 8.8.8.8:53 84.193.12.52.in-addr.arpa udp
US 216.239.34.36:443 region1.google-analytics.com udp
US 45.79.115.66:443 samperson.itch.io tcp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 23.236.111.52.in-addr.arpa udp
US 8.8.8.8:53 itchio-mirror.cb031a832f44726753d6267436f3b414.r2.cloudflarestorage.com udp
US 104.18.9.90:443 itchio-mirror.cb031a832f44726753d6267436f3b414.r2.cloudflarestorage.com tcp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 90.9.18.104.in-addr.arpa udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 itch.io udp
US 45.79.115.66:443 itch.io tcp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
US 45.79.115.66:443 itch.io tcp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 26.173.189.20.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:443 google.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 67.169.217.172.in-addr.arpa udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons3.gvt2.com udp
GB 216.58.213.3:443 beacons3.gvt2.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 8.8.8.8:53 3.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 beacons2.gvt2.com udp
AU 142.250.204.3:443 beacons2.gvt2.com tcp
AU 142.250.204.3:443 beacons2.gvt2.com tcp
AU 142.250.204.3:443 beacons2.gvt2.com udp
US 8.8.8.8:53 google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 3.204.250.142.in-addr.arpa udp
GB 142.250.187.206:443 www.youtube.com udp
GB 142.250.187.206:443 www.youtube.com tcp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.206:443 clients2.google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.200.35:443 id.google.com tcp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 archive.org udp
US 207.241.224.2:443 archive.org tcp
US 207.241.224.2:443 archive.org tcp
US 8.8.8.8:53 polyfill.archive.org udp
US 207.241.239.241:443 polyfill.archive.org tcp
US 8.8.8.8:53 2.224.241.207.in-addr.arpa udp
US 8.8.8.8:53 241.239.241.207.in-addr.arpa udp
US 8.8.8.8:53 analytics.archive.org udp
US 207.241.225.195:443 analytics.archive.org tcp
US 207.241.225.195:443 analytics.archive.org tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.179.234:443 content-autofill.googleapis.com udp
US 8.8.8.8:53 195.225.241.207.in-addr.arpa udp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 ia804708.us.archive.org udp
US 207.241.236.18:443 ia804708.us.archive.org tcp
US 8.8.8.8:53 18.236.241.207.in-addr.arpa udp
GB 142.250.200.35:443 id.google.com udp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 8.8.8.8:53 half-life-2.en.softonic.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 151.101.65.91:443 half-life-2.en.softonic.com tcp
US 151.101.65.91:443 half-life-2.en.softonic.com tcp
US 8.8.8.8:53 sc.sftcdn.net udp
US 8.8.8.8:53 images.sftcdn.net udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 sdk.privacy-center.org udp
US 8.8.8.8:53 softonic.com udp
US 8.8.8.8:53 bat.bing.com udp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net tcp
US 151.101.65.91:443 sc.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 199.232.209.91:443 softonic.com tcp
US 199.232.209.91:443 softonic.com tcp
NL 18.239.50.93:443 sdk.privacy-center.org tcp
US 204.79.197.237:443 bat.bing.com tcp
US 151.101.65.91:443 sc.sftcdn.net udp
US 151.101.65.91:443 sc.sftcdn.net udp
US 8.8.8.8:53 syndicatedsearch.goog udp
US 3.165.118.121:443 c.amazon-adsystem.com tcp
GB 172.217.16.238:443 syndicatedsearch.goog tcp
US 8.8.8.8:53 91.209.232.199.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 91.65.101.151.in-addr.arpa udp
US 8.8.8.8:53 93.82.68.104.in-addr.arpa udp
US 8.8.8.8:53 93.50.239.18.in-addr.arpa udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 121.118.165.3.in-addr.arpa udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
NL 18.239.50.93:443 sdk.privacy-center.org udp
US 8.8.8.8:53 www.datadoghq-browser-agent.com udp
US 8.8.8.8:53 btloader.com udp
US 3.165.111.23:443 www.datadoghq-browser-agent.com tcp
US 104.22.74.216:443 btloader.com tcp
US 8.8.8.8:53 partner.googleadservices.com udp
GB 142.250.178.2:443 partner.googleadservices.com tcp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 3.165.118.121:443 c.amazon-adsystem.com tcp
FR 52.84.174.40:443 config.aps.amazon-adsystem.com tcp
US 8.8.8.8:53 storage.googleapis.com udp
GB 216.58.212.219:443 storage.googleapis.com tcp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 api.btloader.com udp
US 8.8.8.8:53 ad-delivery.net udp
US 8.8.8.8:53 adservice.googlesyndication.com udp
US 130.211.23.194:443 api.btloader.com tcp
US 172.67.38.106:443 cdn.id5-sync.com tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 23.111.165.3.in-addr.arpa udp
US 8.8.8.8:53 216.74.22.104.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 40.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 219.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 notix.io udp
US 130.211.23.194:443 api.btloader.com udp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 106.38.67.172.in-addr.arpa udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 6.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 253.197.45.139.in-addr.arpa udp
US 8.8.8.8:53 api.privacy-center.org udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 id.crwdcntrl.net udp
US 8.8.8.8:53 shb.richaudience.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 ad.360yield.com udp
US 8.8.8.8:53 prebid.media.net udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
FR 13.32.145.62:443 api.privacy-center.org tcp
US 8.8.8.8:53 brightcombid.marphezis.com udp
DE 162.19.138.119:443 id5-sync.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
IE 52.17.55.191:443 id.crwdcntrl.net tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
DE 46.4.139.58:443 shb.richaudience.com tcp
DE 46.4.139.58:443 shb.richaudience.com tcp
DE 46.4.139.58:443 shb.richaudience.com tcp
US 34.120.63.153:443 prebid.media.net tcp
IE 54.72.92.11:443 ap.lijit.com tcp
DE 37.252.173.215:443 ib.adnxs.com tcp
IE 54.74.225.146:443 ad.360yield.com tcp
US 172.64.151.101:443 htlb.casalemedia.com tcp
FR 185.255.84.150:443 hb-api.omnitagjs.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
DE 162.19.138.119:443 id5-sync.com tcp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 static.criteo.net udp
US 8.8.8.8:53 7e2b24954ad6beeee0b671d4e47d175c.safeframe.googlesyndication.com udp
GB 172.217.16.238:443 syndicatedsearch.goog udp
DE 141.95.98.64:443 lb.eu-1-id5-sync.com tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
NL 178.250.1.3:443 static.criteo.net tcp
FR 13.32.145.62:443 api.privacy-center.org udp
GB 172.217.169.65:443 7e2b24954ad6beeee0b671d4e47d175c.safeframe.googlesyndication.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 ampcid.google.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.google.co.uk udp
GB 216.58.212.206:443 ampcid.google.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 region1.analytics.google.com udp
US 8.8.8.8:53 gum.criteo.com udp
BE 108.177.15.157:443 stats.g.doubleclick.net tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
US 8.8.8.8:53 62.145.32.13.in-addr.arpa udp
US 8.8.8.8:53 119.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 191.55.17.52.in-addr.arpa udp
US 8.8.8.8:53 191.36.162.3.in-addr.arpa udp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 58.139.4.46.in-addr.arpa udp
US 8.8.8.8:53 11.92.72.54.in-addr.arpa udp
US 8.8.8.8:53 146.225.74.54.in-addr.arpa udp
US 8.8.8.8:53 215.173.252.37.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 194.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 150.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 64.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 65.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 206.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
NL 178.250.1.11:443 gum.criteo.com tcp
BE 108.177.15.157:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 dis.eu.criteo.com udp
NL 178.250.1.9:443 dis.eu.criteo.com tcp
US 34.120.63.153:443 prebid.media.net udp
US 172.64.151.101:443 htlb.casalemedia.com udp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 8.8.8.8:53 match.adsrvr.org udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 rtb.gumgum.com udp
IE 52.214.151.37:443 rtb.gumgum.com tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
IE 67.220.228.202:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 ice.360yield.com udp
US 8.8.8.8:53 157.15.177.108.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 37.151.214.52.in-addr.arpa udp
US 8.8.8.8:53 202.228.220.67.in-addr.arpa udp
US 8.8.8.8:53 204.135.128.178.in-addr.arpa udp
IE 34.253.100.199:443 ice.360yield.com tcp
US 8.8.8.8:53 en.softonic.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 ssum-sec.casalemedia.com udp
US 8.8.8.8:53 ads.pubmatic.com udp
DE 51.89.9.251:443 onetag-sys.com tcp
US 23.53.112.234:443 ads.pubmatic.com tcp
US 8.8.8.8:53 ce.lijit.com udp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
IE 52.208.165.205:443 ce.lijit.com tcp
NL 89.149.192.196:443 ssbsync.smartadserver.com tcp
IE 52.208.165.205:443 ce.lijit.com tcp
US 8.8.8.8:53 eb2.3lift.com udp
US 76.223.111.18:443 eb2.3lift.com tcp
US 8.8.8.8:53 secure.adnxs.com udp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 sync.ipredictive.com udp
US 8.8.8.8:53 match.deepintent.com udp
US 8.8.8.8:53 b1sync.zemanta.com udp
US 8.8.8.8:53 bh.contextweb.com udp
IE 67.220.228.202:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 c1.adform.net udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 csync.loopme.me udp
US 54.162.33.171:443 sync.srv.stackadapt.com tcp
US 8.18.47.7:443 match.deepintent.com tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
DK 37.157.5.84:443 c1.adform.net tcp
US 52.7.90.152:443 sync.ipredictive.com tcp
US 64.74.236.191:443 b1sync.zemanta.com tcp
US 35.244.159.8:443 us-u.openx.net tcp
IE 52.49.206.184:443 pr-bh.ybp.yahoo.com tcp
NL 35.214.233.248:443 csync.loopme.me tcp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
US 8.8.8.8:53 tg.socdm.com udp
US 8.8.8.8:53 usersync.gumgum.com udp
JP 124.146.153.167:443 tg.socdm.com tcp
IE 34.247.233.198:443 usersync.gumgum.com tcp
US 8.8.8.8:53 creativecdn.com udp
US 8.8.8.8:53 199.100.253.34.in-addr.arpa udp
US 8.8.8.8:53 251.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 234.112.53.23.in-addr.arpa udp
US 8.8.8.8:53 205.165.208.52.in-addr.arpa udp
US 8.8.8.8:53 196.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 8.159.244.35.in-addr.arpa udp
US 8.8.8.8:53 131.169.93.208.in-addr.arpa udp
US 8.8.8.8:53 184.206.49.52.in-addr.arpa udp
US 8.8.8.8:53 84.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 248.233.214.35.in-addr.arpa udp
US 8.8.8.8:53 171.33.162.54.in-addr.arpa udp
US 8.8.8.8:53 19.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 191.236.74.64.in-addr.arpa udp
US 8.8.8.8:53 152.90.7.52.in-addr.arpa udp
IE 34.247.233.198:443 usersync.gumgum.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
JP 124.146.153.167:443 tg.socdm.com tcp
US 8.8.8.8:53 rtd-tm.everesttech.net udp
US 151.101.2.49:443 rtd-tm.everesttech.net tcp
US 8.8.8.8:53 secure-assets.rubiconproject.com udp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
US 35.244.159.8:443 us-u.openx.net udp
IE 34.247.233.198:443 usersync.gumgum.com tcp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
IE 34.247.233.198:443 usersync.gumgum.com tcp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 casale-match.dotomi.com udp
US 8.8.8.8:53 u.ipw.metadsp.co.uk udp
US 8.8.8.8:53 aorta.clickagy.com udp
US 8.8.8.8:53 cs.krushmedia.com udp
US 8.8.8.8:53 pixel-eu.rubiconproject.com udp
US 8.8.8.8:53 s.ad.smaato.net udp
US 8.8.8.8:53 dis.criteo.com udp
IE 67.220.228.202:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 eus.rubiconproject.com udp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
US 8.8.8.8:53 cr.frontend.weborama.fr udp
US 8.8.8.8:53 mwzeom.zeotap.com udp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
NL 89.207.16.201:443 casale-match.dotomi.com tcp
US 8.8.8.8:53 um.simpli.fi udp
US 8.2.110.134:443 cs.krushmedia.com tcp
US 34.224.114.128:443 aorta.clickagy.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
FR 18.164.52.116:443 s.ad.smaato.net tcp
NL 178.250.1.9:443 dis.criteo.com tcp
US 23.200.189.62:443 eus.rubiconproject.com tcp
IE 34.253.110.95:443 sync.crwdcntrl.net tcp
US 34.111.129.221:443 cr.frontend.weborama.fr tcp
NL 35.204.158.49:443 um.simpli.fi tcp
US 104.22.50.98:443 mwzeom.zeotap.com tcp
US 8.8.8.8:53 image2.pubmatic.com udp
US 8.8.8.8:53 simage2.pubmatic.com udp
GB 185.64.191.210:443 image2.pubmatic.com tcp
GB 185.64.191.210:443 image2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
NL 198.47.127.205:443 simage2.pubmatic.com tcp
BE 108.177.15.157:443 stats.g.doubleclick.net udp
US 8.8.8.8:53 token.rubiconproject.com udp
US 8.8.8.8:53 dsum.casalemedia.com udp
US 8.8.8.8:53 198.233.247.34.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 167.153.146.124.in-addr.arpa udp
US 8.8.8.8:53 49.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 171.78.68.104.in-addr.arpa udp
US 8.8.8.8:53 90.132.214.35.in-addr.arpa udp
US 8.8.8.8:53 201.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 116.52.164.18.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 221.129.111.34.in-addr.arpa udp
US 8.8.8.8:53 95.110.253.34.in-addr.arpa udp
US 8.8.8.8:53 49.158.204.35.in-addr.arpa udp
US 8.8.8.8:53 62.189.200.23.in-addr.arpa udp
US 8.8.8.8:53 147.128.46.52.in-addr.arpa udp
US 8.8.8.8:53 134.110.2.8.in-addr.arpa udp
US 8.8.8.8:53 128.114.224.34.in-addr.arpa udp
US 8.8.8.8:53 210.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 205.127.47.198.in-addr.arpa udp
NL 69.173.156.149:443 token.rubiconproject.com tcp
US 8.8.8.8:53 acdn.adnxs.com udp
US 8.8.8.8:53 contextual.media.net udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
US 8.8.8.8:53 sync.richaudience.com udp
US 8.8.8.8:53 js-sec.indexww.com udp
GB 2.23.204.227:443 acdn.adnxs.com tcp
FR 185.255.84.152:443 visitor.omnitagjs.com tcp
DE 162.55.233.29:443 sync.richaudience.com tcp
US 172.64.149.180:443 js-sec.indexww.com tcp
US 23.200.188.27:443 contextual.media.net tcp
DE 162.55.233.29:443 sync.richaudience.com tcp
US 8.8.8.8:53 api-2-0.spot.im udp
US 8.8.8.8:53 sync.1rx.io udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 image8.pubmatic.com udp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 cs-server-s2s.yellowblue.io udp
US 8.8.8.8:53 ssc-cms.33across.com udp
NL 46.228.174.117:443 sync.1rx.io tcp
IE 34.246.197.210:443 match.prod.bidr.io tcp
US 54.161.232.244:443 cs-server-s2s.yellowblue.io tcp
GB 185.64.191.214:443 image8.pubmatic.com tcp
FR 99.86.91.26:443 api-2-0.spot.im tcp
US 54.218.209.123:443 jadserve.postrelease.com tcp
US 67.202.105.23:443 ssc-cms.33across.com tcp
DE 51.89.9.251:443 onetag-sys.com udp
US 8.8.8.8:53 player.aniview.com udp
NL 2.18.121.26:443 player.aniview.com tcp
US 8.8.8.8:53 cacerts.rapidssl.com udp
US 8.8.8.8:53 227.204.23.2.in-addr.arpa udp
US 8.8.8.8:53 152.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 180.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 27.188.200.23.in-addr.arpa udp
US 8.8.8.8:53 29.233.55.162.in-addr.arpa udp
US 8.8.8.8:53 214.191.64.185.in-addr.arpa udp
US 8.8.8.8:53 210.197.246.34.in-addr.arpa udp
US 8.8.8.8:53 26.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 244.232.161.54.in-addr.arpa udp
SE 192.229.221.95:80 cacerts.rapidssl.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
US 8.8.8.8:53 bttrack.com udp
US 8.8.8.8:53 id.rlcdn.com udp
US 192.132.33.69:443 bttrack.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
US 8.8.8.8:53 sync.targeting.unrulymedia.com udp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 match.sharethrough.com udp
US 8.8.8.8:53 hbx.media.net udp
NL 89.149.193.88:443 rtb-csync.smartadserver.com tcp
US 8.8.8.8:53 c21lg-d.media.net udp
US 8.8.8.8:53 sync.mathtag.com udp
US 8.8.8.8:53 rtb.mfadsrvr.com udp
US 8.8.8.8:53 ads.stickyadstv.com udp
DE 52.57.239.98:443 match.sharethrough.com tcp
US 8.8.8.8:53 pixel.rubiconproject.com udp
US 23.220.112.27:443 c21lg-d.media.net tcp
US 8.8.8.8:53 cs.admanmedia.com udp
US 8.8.8.8:53 t.adx.opera.com udp
US 8.8.8.8:53 ssbsync-global.smartadserver.com udp
US 8.8.8.8:53 spl.zeotap.com udp
US 8.8.8.8:53 medianet-match.dotomi.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 89.149.193.88:443 rtb-csync.smartadserver.com tcp
NL 89.149.193.88:443 rtb-csync.smartadserver.com tcp
US 23.220.112.27:443 c21lg-d.media.net tcp
US 8.8.8.8:53 sync.aniview.com udp
US 216.200.232.253:443 sync.mathtag.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
DE 18.157.153.25:443 rtb.mfadsrvr.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
NL 89.207.16.137:443 medianet-match.dotomi.com tcp
US 96.46.186.182:443 sync.aniview.com tcp
US 8.8.8.8:53 sync-tm.everesttech.net udp
DE 3.71.149.231:443 ups.analytics.yahoo.com tcp
US 8.8.8.8:53 pm.w55c.net udp
US 52.46.128.147:443 s.amazon-adsystem.com tcp
US 8.8.8.8:53 p.rfihub.com udp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 cdn.indexww.com udp
NL 154.57.158.116:443 ads.stickyadstv.com tcp
NL 193.0.160.130:443 p.rfihub.com tcp
US 104.18.25.173:443 a.tribalfusion.com tcp
IE 54.77.130.68:443 pm.w55c.net tcp
US 8.8.8.8:53 simage4.pubmatic.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 23.200.188.27:443 contextual.media.net udp
US 8.8.8.8:53 cs.media.net udp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 35.214.233.248:443 csync.loopme.me tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 198.47.127.20:443 simage4.pubmatic.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 8.8.8.8:53 cms.quantserve.com udp
DE 91.228.74.244:443 cms.quantserve.com tcp
US 8.8.8.8:53 eu-u.openx.net udp
US 8.8.8.8:53 a.sportradarserving.com udp
IE 54.77.130.68:443 pm.w55c.net tcp
NL 35.214.174.141:443 a.sportradarserving.com tcp
US 104.18.25.173:443 a.tribalfusion.com udp
US 8.8.8.8:53 sync.search.spotxchange.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 8.8.8.8:53 23.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 26.121.18.2.in-addr.arpa udp
US 8.8.8.8:53 123.209.218.54.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 69.33.132.192.in-addr.arpa udp
US 8.8.8.8:53 88.193.149.89.in-addr.arpa udp
US 8.8.8.8:53 98.239.57.52.in-addr.arpa udp
US 8.8.8.8:53 27.112.220.23.in-addr.arpa udp
US 8.8.8.8:53 8.213.145.82.in-addr.arpa udp
US 8.8.8.8:53 25.153.157.18.in-addr.arpa udp
US 8.8.8.8:53 137.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 253.232.200.216.in-addr.arpa udp
US 8.8.8.8:53 231.149.71.3.in-addr.arpa udp
US 8.8.8.8:53 182.186.46.96.in-addr.arpa udp
US 8.8.8.8:53 116.158.57.154.in-addr.arpa udp
US 8.8.8.8:53 130.160.0.193.in-addr.arpa udp
US 8.8.8.8:53 173.25.18.104.in-addr.arpa udp
US 8.8.8.8:53 68.130.77.54.in-addr.arpa udp
US 8.8.8.8:53 20.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 244.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 141.174.214.35.in-addr.arpa udp
US 8.8.8.8:53 s.tribalfusion.com udp
NL 35.214.174.141:443 a.sportradarserving.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 pixel.tapad.com udp
US 34.111.113.62:443 pixel.tapad.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
US 8.8.8.8:53 uipglob.semasio.net udp
US 8.8.8.8:53 pixel.onaudience.com udp
DK 77.243.51.122:443 uipglob.semasio.net tcp
FR 141.94.171.216:443 pixel.onaudience.com tcp
US 8.8.8.8:53 dsp.adfarm1.adition.com udp
US 34.160.236.64:443 odr.mookie1.com tcp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 62.113.111.34.in-addr.arpa udp
US 8.8.8.8:53 216.171.94.141.in-addr.arpa udp
US 8.8.8.8:53 122.51.243.77.in-addr.arpa udp
DE 85.114.159.93:443 dsp.adfarm1.adition.com tcp
US 8.8.8.8:53 ad.mrtnsvr.com udp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 8.8.8.8:53 pubmatic-match.dotomi.com udp
NL 63.215.202.172:443 pubmatic-match.dotomi.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 199.232.209.91:443 softonic.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 connect.facebook.net udp
GB 163.70.151.21:443 connect.facebook.net tcp
US 8.8.8.8:53 93.159.114.85.in-addr.arpa udp
US 8.8.8.8:53 64.236.160.34.in-addr.arpa udp
US 8.8.8.8:53 6.163.102.34.in-addr.arpa udp
US 8.8.8.8:53 172.202.215.63.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
GB 163.70.151.21:443 connect.facebook.net udp
US 8.8.8.8:53 b60237030ab87582d8f8800f4e0ea5bc.safeframe.googlesyndication.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 163.70.151.35:443 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
IE 34.246.197.210:443 match.prod.bidr.io tcp
US 35.244.174.68:443 id.rlcdn.com udp
US 8.8.8.8:53 pixel-us-east.rubiconproject.com udp
IE 34.246.197.210:443 match.prod.bidr.io tcp
US 8.8.8.8:53 sync.serverbid.com udp
NL 69.173.156.149:443 pixel.rubiconproject.com tcp
US 8.8.8.8:53 data.adsrvr.org udp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 35.214.233.248:443 csync.loopme.me tcp
US 69.173.151.100:443 pixel-us-east.rubiconproject.com tcp
FR 13.249.9.226:443 sync.serverbid.com tcp
US 8.8.8.8:53 ad.turn.com udp
US 8.8.8.8:53 match.adsby.bidtheatre.com udp
NL 46.228.164.11:443 ad.turn.com tcp
NL 64.227.64.62:443 match.adsby.bidtheatre.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 s0.2mdn.net udp
GB 163.70.151.35:443 www.facebook.com udp
GB 216.58.204.70:443 s0.2mdn.net tcp
US 8.8.8.8:53 ads.creative-serving.com udp
US 8.8.8.8:53 openx2-match.dotomi.com udp
NL 89.207.16.204:443 openx2-match.dotomi.com tcp
NL 35.214.241.248:443 ads.creative-serving.com tcp
US 8.8.8.8:53 store.steampowered.com udp
US 23.200.189.125:80 store.steampowered.com tcp
US 8.8.8.8:53 162.87.77.80.in-addr.arpa udp
US 8.8.8.8:53 226.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 62.64.227.64.in-addr.arpa udp
US 8.8.8.8:53 70.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 204.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 248.241.214.35.in-addr.arpa udp
US 8.8.8.8:53 125.189.200.23.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
NL 35.214.241.248:443 ads.creative-serving.com udp
DE 162.19.138.119:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 804f592813060f35777a25ce1242eef8.safeframe.googlesyndication.com udp
US 8.8.8.8:53 b-code.liadm.com udp
US 8.8.8.8:53 8876029.fls.doubleclick.net udp
FR 13.32.145.118:443 b-code.liadm.com tcp
US 8.8.8.8:53 12325200.fls.doubleclick.net udp
DE 141.95.98.64:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 wct.softonic.com udp
US 104.26.3.63:443 wct.softonic.com tcp
US 8.8.8.8:53 store.akamai.steamstatic.com udp
GB 216.58.204.70:443 12325200.fls.doubleclick.net udp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
US 8.8.8.8:53 118.145.32.13.in-addr.arpa udp
GB 216.58.204.70:443 12325200.fls.doubleclick.net udp
DE 162.19.138.119:443 lb.eu-1-id5-sync.com tcp
US 104.26.3.63:443 wct.softonic.com tcp
US 8.8.8.8:53 cdn.akamai.steamstatic.com udp
US 8.8.8.8:53 shared.akamai.steamstatic.com udp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.184:443 store.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
US 8.8.8.8:53 steamcommunity.com udp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
BE 104.68.92.92:443 steamcommunity.com tcp
US 8.8.8.8:53 184.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 162.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 169.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 92.92.68.104.in-addr.arpa udp
US 8.8.8.8:53 clan.akamai.steamstatic.com udp
US 8.8.8.8:53 js.adscale.de udp
US 18.245.175.44:443 js.adscale.de tcp
BE 2.17.107.234:443 clan.akamai.steamstatic.com tcp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
US 8.8.8.8:53 cd.connatix.com udp
US 104.18.41.104:443 cd.connatix.com tcp
US 8.8.8.8:53 44.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 234.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 ih.adscale.de udp
N/A 127.0.0.1:27060 tcp
DE 52.57.121.98:443 ih.adscale.de tcp
DE 52.57.121.98:443 ih.adscale.de tcp
US 8.8.8.8:53 104.41.18.104.in-addr.arpa udp
US 8.8.8.8:53 98.121.57.52.in-addr.arpa udp
US 8.8.8.8:53 cds.connatix.com udp
US 104.18.41.104:443 cds.connatix.com udp
US 8.8.8.8:53 prs.sftcdn.net udp
US 8.8.8.8:53 articles-img.sftcdn.net udp
NL 23.62.61.147:443 articles-img.sftcdn.net tcp
NL 23.62.61.147:443 articles-img.sftcdn.net tcp
US 8.8.8.8:53 track.adform.net udp
US 8.8.8.8:53 articles-images.sftcdn.net udp
US 8.8.8.8:53 147.61.62.23.in-addr.arpa udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 ads.avads.net udp
US 34.128.133.112:443 ads.avads.net tcp
NL 154.59.122.79:443 ums.acuityplatform.com tcp
NL 154.59.122.79:443 ums.acuityplatform.com tcp
US 8.8.8.8:53 capi.connatix.com udp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 dsp.nrich.ai udp
FR 51.255.68.171:443 dsp.nrich.ai tcp
US 104.18.41.104:443 capi.connatix.com udp
IE 34.246.197.210:443 match.prod.bidr.io tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 8.8.8.8:53 ins.connatix.com udp
US 8.8.8.8:53 vid.connatix.com udp
US 8.8.8.8:53 lit.connatix.com udp
US 172.64.146.152:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 104.18.41.104:443 lit.connatix.com tcp
US 54.162.33.171:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 112.133.128.34.in-addr.arpa udp
US 8.8.8.8:53 79.122.59.154.in-addr.arpa udp
US 8.8.8.8:53 171.68.255.51.in-addr.arpa udp
US 8.8.8.8:53 152.146.64.172.in-addr.arpa udp
US 8.8.8.8:53 ssum.casalemedia.com udp
US 8.8.8.8:53 cks.connatix.com udp
US 8.8.8.8:53 inmobi-match.dotomi.com udp
US 104.18.41.104:443 cks.connatix.com udp
US 104.18.41.104:443 cks.connatix.com udp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 8.8.8.8:53 sync.go.sonobi.com udp
NL 35.214.233.248:443 csync.loopme.me tcp
US 69.166.1.35:443 sync.go.sonobi.com tcp
US 8.8.8.8:53 ads.yieldmo.com udp
IE 54.170.121.32:443 ads.yieldmo.com tcp
US 8.8.8.8:53 push-sdk.com udp
DE 178.63.248.57:443 push-sdk.com tcp
US 8.8.8.8:53 imasdk.googleapis.com udp
US 8.8.8.8:53 img.connatix.com udp
GB 142.250.200.10:443 imasdk.googleapis.com tcp
US 8.8.8.8:53 uidsync.net udp
DE 157.90.33.72:443 uidsync.net tcp
DE 157.90.33.72:443 uidsync.net tcp
US 8.8.8.8:53 35.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 32.121.170.54.in-addr.arpa udp
US 8.8.8.8:53 57.248.63.178.in-addr.arpa udp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 72.33.90.157.in-addr.arpa udp
GB 142.250.200.10:443 imasdk.googleapis.com udp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 pubads.g.doubleclick.net udp
GB 142.250.200.2:443 pubads.g.doubleclick.net tcp
US 8.8.8.8:53 csi.gstatic.com udp
DE 142.250.186.67:443 csi.gstatic.com tcp
DE 142.250.186.67:443 csi.gstatic.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
DE 142.250.186.67:443 csi.gstatic.com udp
US 8.8.8.8:53 67.186.250.142.in-addr.arpa udp
US 8.8.8.8:53 help.steampowered.com udp
BE 104.68.92.92:443 help.steampowered.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.162:443 cdn.akamai.steamstatic.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
DE 37.252.173.215:443 secure.adnxs.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.169:443 shared.akamai.steamstatic.com tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 11.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 136.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 153.107.17.2.in-addr.arpa udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
DE 37.252.173.215:443 secure.adnxs.com tcp
DE 37.252.173.215:443 secure.adnxs.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
US 8.8.8.8:53 e2c38.gcp.gvt2.com udp
AU 35.213.232.93:443 e2c38.gcp.gvt2.com tcp
AU 35.213.232.93:443 e2c38.gcp.gvt2.com tcp
US 8.8.8.8:53 93.232.213.35.in-addr.arpa udp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
US 8.8.8.8:53 248.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com tcp
GB 172.217.169.3:443 beacons.gvt2.com tcp
US 8.8.8.8:53 ad.360yield.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 172.64.151.101:443 ssum.casalemedia.com udp
US 8.8.8.8:53 prebid.media.net udp
IE 52.215.212.10:443 ad.360yield.com tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
US 34.120.63.153:443 prebid.media.net udp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 8.8.8.8:53 151.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 10.212.215.52.in-addr.arpa udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 test.steampowered.com udp
BE 2.17.107.202:80 test.steampowered.com tcp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 202.107.17.2.in-addr.arpa udp
N/A 127.0.0.1:55003 tcp
N/A 127.0.0.1:55001 tcp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
US 8.8.8.8:53 ext2-lhr1.steamserver.net udp
GB 162.254.196.83:27023 ext2-lhr1.steamserver.net tcp
GB 162.254.196.83:27030 ext2-lhr1.steamserver.net tcp
GB 162.254.196.83:443 ext2-lhr1.steamserver.net tcp
US 8.8.8.8:53 ext1-par1.steamserver.net udp
FR 185.25.182.20:27023 ext1-par1.steamserver.net tcp
US 8.8.8.8:53 ext2-par1.steamserver.net udp
FR 185.25.182.52:27032 ext2-par1.steamserver.net tcp
FR 185.25.182.20:443 ext1-par1.steamserver.net tcp
US 8.8.8.8:53 ext2-ams1.steamserver.net udp
NL 155.133.248.39:27030 ext2-ams1.steamserver.net tcp
US 8.8.8.8:53 ext1-ams1.steamserver.net udp
US 8.8.8.8:53 83.196.254.162.in-addr.arpa udp
US 8.8.8.8:53 20.182.25.185.in-addr.arpa udp
NL 155.133.248.38:27036 ext1-ams1.steamserver.net tcp
NL 155.133.248.39:443 ext2-ams1.steamserver.net tcp
US 8.8.8.8:53 ext3-iad1.steamserver.net udp
US 162.254.192.71:27036 ext3-iad1.steamserver.net tcp
DE 46.4.139.58:443 shb.richaudience.com tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:53 52.182.25.185.in-addr.arpa udp
US 8.8.8.8:53 39.248.133.155.in-addr.arpa udp
US 8.8.8.8:53 38.248.133.155.in-addr.arpa udp
US 8.8.8.8:53 71.192.254.162.in-addr.arpa udp
US 8.8.8.8:53 4.4.8.8.in-addr.arpa udp
DE 37.252.173.215:443 secure.adnxs.com tcp
US 8.8.8.8:443 dns.google udp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.232:443 store.akamai.steamstatic.com tcp
BE 2.17.107.232:443 store.akamai.steamstatic.com tcp
BE 2.17.107.232:443 store.akamai.steamstatic.com tcp
US 8.8.8.8:53 232.107.17.2.in-addr.arpa udp
GB 142.250.178.14:443 google.com tcp
BE 2.17.107.232:443 store.akamai.steamstatic.com tcp
BE 2.17.107.232:443 store.akamai.steamstatic.com tcp
GB 142.250.178.14:443 google.com udp
GB 142.250.187.196:443 www.google.com tcp
DE 37.252.173.215:443 secure.adnxs.com tcp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
GB 142.250.200.14:443 www.youtube.com tcp
GB 74.125.105.103:443 udp
US 8.8.8.8:53 14.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 103.105.125.74.in-addr.arpa udp
US 8.8.8.8:53 beacons3.gvt2.com udp
DE 37.252.173.215:443 secure.adnxs.com tcp
GB 216.58.213.3:443 beacons3.gvt2.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 e2c56.gcp.gvt2.com udp
ES 34.0.206.140:443 e2c56.gcp.gvt2.com tcp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 140.206.0.34.in-addr.arpa udp
DE 37.252.173.215:443 secure.adnxs.com tcp
DE 37.252.173.215:443 secure.adnxs.com tcp
US 8.8.4.4:443 dns.google udp
GB 142.250.187.195:443 tcp
US 8.8.8.8:53 195.187.250.142.in-addr.arpa udp
DE 37.252.173.215:443 secure.adnxs.com tcp
US 8.8.8.8:53 123.35.104.34.in-addr.arpa udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
GB 162.254.196.83:27017 ext2-lhr1.steamserver.net udp
GB 162.254.196.83:27018 ext2-lhr1.steamserver.net udp
FR 185.25.182.52:27018 ext2-par1.steamserver.net udp
FR 185.25.182.52:27017 ext2-par1.steamserver.net udp
FR 185.25.182.20:27018 ext1-par1.steamserver.net udp
NL 155.133.248.38:27018 ext1-ams1.steamserver.net udp
NL 155.133.248.39:27018 ext2-ams1.steamserver.net udp
US 162.254.192.74:27018 udp
US 162.254.192.87:27018 udp
US 8.8.8.8:53 87.192.254.162.in-addr.arpa udp
US 8.8.8.8:53 74.192.254.162.in-addr.arpa udp
US 8.8.8.8:53 ib.adnxs.com udp
NL 185.89.210.122:443 ib.adnxs.com tcp
US 8.8.8.8:53 122.210.89.185.in-addr.arpa udp
NL 185.89.210.122:443 ib.adnxs.com tcp
US 8.8.8.8:443 dns.google udp
GB 142.250.178.14:443 google.com udp
US 8.8.8.8:53 beacons4.gvt2.com udp
US 8.8.8.8:53 beacons2.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 173.194.194.94:443 beacons2.gvt2.com udp
US 216.239.32.116:443 beacons4.gvt2.com tcp
US 216.239.32.116:443 beacons4.gvt2.com udp
US 8.8.8.8:53 94.194.194.173.in-addr.arpa udp
US 8.8.8.8:53 116.32.239.216.in-addr.arpa udp
NL 185.89.210.122:443 ib.adnxs.com tcp
GB 142.250.187.195:443 udp
NL 185.89.210.122:443 ib.adnxs.com tcp
NL 185.89.210.122:443 ib.adnxs.com tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
NL 185.89.210.122:443 ib.adnxs.com tcp
US 8.8.8.8:53 ib.adnxs.com udp
NL 185.89.210.20:443 ib.adnxs.com tcp
US 8.8.8.8:53 20.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
GB 162.254.196.83:27032 ext2-lhr1.steamserver.net tcp
US 8.8.8.8:53 ext3-lhr1.steamserver.net udp
GB 162.254.196.68:443 ext3-lhr1.steamserver.net tcp
GB 162.254.196.83:27025 ext2-lhr1.steamserver.net tcp
FR 185.25.182.20:27034 ext1-par1.steamserver.net tcp
FR 185.25.182.20:27022 ext1-par1.steamserver.net tcp
NL 155.133.248.39:27031 ext2-ams1.steamserver.net tcp
NL 155.133.248.39:27023 ext2-ams1.steamserver.net tcp
FR 185.25.182.20:443 ext1-par1.steamserver.net tcp
NL 155.133.248.39:443 ext2-ams1.steamserver.net tcp
US 8.8.8.8:53 68.196.254.162.in-addr.arpa udp
NL 185.89.210.20:443 ib.adnxs.com tcp
US 173.194.194.94:443 beacons2.gvt2.com udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.187.206:443 clients2.google.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
GB 162.254.196.68:27035 ext3-lhr1.steamserver.net tcp
GB 162.254.196.68:27038 ext3-lhr1.steamserver.net tcp
US 8.8.8.8:53 ext4-lhr1.steamserver.net udp
GB 162.254.196.84:443 ext4-lhr1.steamserver.net tcp
FR 185.25.182.52:27021 ext2-par1.steamserver.net tcp
FR 185.25.182.52:27034 ext2-par1.steamserver.net tcp
FR 185.25.182.20:443 ext1-par1.steamserver.net tcp
NL 155.133.248.38:27028 ext1-ams1.steamserver.net tcp
NL 155.133.248.38:27020 ext1-ams1.steamserver.net tcp
US 8.8.8.8:53 84.196.254.162.in-addr.arpa udp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:443 dns.google udp
BE 2.17.107.243:443 tcp
US 8.8.8.8:53 243.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 crash.steampowered.com udp
US 208.64.203.140:443 crash.steampowered.com tcp
US 8.8.8.8:53 140.203.64.208.in-addr.arpa udp
US 8.8.8.8:53 186.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 ad.360yield.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 brightcombid.marphezis.com udp
US 8.8.8.8:53 prebid.media.net udp
US 18.245.199.156:443 aax.amazon-adsystem.com tcp
DE 37.252.171.52:443 ib.adnxs.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
IE 34.253.100.199:443 ad.360yield.com tcp
IE 99.81.207.116:443 ap.lijit.com tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
US 104.18.36.155:443 htlb.casalemedia.com udp
US 34.120.63.153:443 prebid.media.net udp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 156.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 52.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 116.207.81.99.in-addr.arpa udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 s.richaudience.com udp
DE 178.63.241.79:443 s.richaudience.com tcp
US 8.8.8.8:53 79.241.63.178.in-addr.arpa udp
US 8.8.8.8:53 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
US 173.194.194.94:443 beacons2.gvt2.com udp
US 8.8.8.8:53 api.steampowered.com udp
US 8.8.8.8:53 ipv6check-udp.steamserver.net udp
US 8.8.8.8:53 ipv6check-http.steamserver.net udp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
GB 162.254.196.83:27031 ext2-lhr1.steamserver.net tcp
GB 162.254.196.83:27020 ext2-lhr1.steamserver.net tcp
US 8.8.8.8:53 ext1-lhr1.steamserver.net udp
GB 162.254.196.67:443 ext1-lhr1.steamserver.net tcp
FR 185.25.182.20:27034 ext1-par1.steamserver.net tcp
FR 185.25.182.52:27034 ext2-par1.steamserver.net tcp
FR 185.25.182.20:443 ext1-par1.steamserver.net tcp
NL 155.133.248.39:27024 ext2-ams1.steamserver.net tcp
NL 155.133.248.39:27028 ext2-ams1.steamserver.net tcp
N/A 10.127.255.255:27036 udp
US 8.8.8.8:53 clientconfig.akamai.steamstatic.com udp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
NL 2.18.121.142:80 clientconfig.akamai.steamstatic.com tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
US 8.8.8.8:53 steamstore-a.akamaihd.net udp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.232:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.232:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.232:443 steamstore-a.akamaihd.net tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google udp
US 23.200.189.125:443 store.steampowered.com tcp
US 8.8.8.8:53 steamcommunity.com udp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 2.17.107.146:443 tcp
US 208.64.203.140:443 crash.steampowered.com tcp
US 8.8.8.8:53 146.107.17.2.in-addr.arpa udp
BE 2.17.107.243:443 tcp
US 208.64.203.140:443 crash.steampowered.com tcp
N/A 127.0.0.1:55003 tcp
N/A 127.0.0.1:55001 tcp
US 8.8.8.8:53 store.steampowered.com udp
US 8.8.8.8:53 store.steampowered.com udp
US 23.200.189.125:443 store.steampowered.com tcp
US 208.64.203.140:443 crash.steampowered.com tcp
N/A 127.0.0.1:55003 tcp
N/A 127.0.0.1:55001 tcp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.4.4:443 dns.google udp
US 8.8.8.8:443 dns.google tcp
US 8.8.4.4:443 dns.google tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
US 8.8.8.8:53 152.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 147.107.17.2.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 2.17.107.234:443 clan.akamai.steamstatic.com tcp
N/A 127.0.0.1:27060 tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 104.68.92.92:443 steamcommunity.com tcp
BE 2.17.107.147:443 tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
US 8.8.8.8:53 steamstore-a.akamaihd.net udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
US 104.18.41.104:443 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
US 8.8.8.8:53 pubads.g.doubleclick.net udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
US 8.8.8.8:53 e2c66.gcp.gvt2.com udp
SA 34.166.9.70:443 e2c66.gcp.gvt2.com tcp
US 8.8.8.8:53 beacons.gvt2.com udp
GB 172.217.169.3:443 beacons.gvt2.com udp
US 8.8.8.8:53 70.9.166.34.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.210:443 clan.akamai.steamstatic.com tcp
BE 2.17.107.210:443 clan.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
US 8.8.8.8:53 210.107.17.2.in-addr.arpa udp
BE 104.68.92.92:443 steamcommunity.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.210:443 clan.akamai.steamstatic.com tcp
US 8.8.8.8:53 steamcloud-london.storage.googleapis.com udp
GB 142.250.200.27:443 steamcloud-london.storage.googleapis.com tcp
US 8.8.8.8:53 27.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 clientconfig.akamai.steamstatic.com udp
NL 2.18.121.134:80 clientconfig.akamai.steamstatic.com tcp
US 8.8.8.8:53 134.121.18.2.in-addr.arpa udp
US 8.8.8.8:53 cdn.steamstatic.com udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 api.steampowered.com udp
BE 104.68.92.92:443 api.steampowered.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 8.8.8.8:443 dns.google udp
US 8.8.8.8:443 dns.google tcp
GB 216.58.204.67:443 tcp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.147:443 tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.152:443 cdn.akamai.steamstatic.com tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
US 8.8.8.8:53 clientconfig.akamai.steamstatic.com udp
US 23.200.189.125:443 store.steampowered.com tcp
US 8.8.8.8:53 cdn.steamstatic.com udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 api.steampowered.com udp
US 104.18.41.104:443 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 lancache.steamcontent.com udp
US 8.8.8.8:53 cache7-lhr1.steamcontent.com udp
GB 162.254.196.6:443 cache7-lhr1.steamcontent.com tcp
US 8.8.8.8:53 6.196.254.162.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 cache15-lhr1.steamcontent.com udp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
GB 162.254.196.25:443 cache15-lhr1.steamcontent.com tcp
US 8.8.8.8:53 cache1-lhr1.steamcontent.com udp
GB 162.254.196.3:443 cache1-lhr1.steamcontent.com tcp
US 8.8.8.8:53 25.196.254.162.in-addr.arpa udp
US 8.8.8.8:53 3.196.254.162.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.248:443 shared.akamai.steamstatic.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.184:443 steamstore-a.akamaihd.net tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.147:443 tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 api.steampowered.com udp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 8.8.8.8:53 api.steampowered.com udp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
BE 2.17.107.200:443 cdn.steamstatic.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 104.68.92.92:443 api.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.138:443 tcp
BE 2.17.107.138:443 tcp
US 8.8.8.8:53 avatars.steamstatic.com udp
BE 2.17.107.146:80 avatars.steamstatic.com tcp
BE 2.17.107.146:80 avatars.steamstatic.com tcp
US 8.8.8.8:53 138.107.17.2.in-addr.arpa udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
US 208.64.203.140:443 crash.steampowered.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
US 104.18.41.104:443 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
BE 2.17.107.136:443 cdn.steamstatic.com tcp
GB 172.217.169.67:443 beacons.gcp.gvt2.com udp
US 208.64.203.140:443 crash.steampowered.com tcp
US 8.8.4.4:443 dns.google udp
US 23.200.189.125:443 store.steampowered.com tcp
US 8.8.8.8:53 avatars.steamstatic.com udp
BE 23.14.90.90:80 avatars.steamstatic.com tcp
BE 23.14.90.90:80 avatars.steamstatic.com tcp
BE 23.14.90.90:80 avatars.steamstatic.com tcp
US 8.8.8.8:53 90.90.14.23.in-addr.arpa udp
US 208.64.203.140:443 crash.steampowered.com tcp
US 23.200.189.125:443 store.steampowered.com tcp
BE 2.17.107.138:443 tcp
US 23.200.189.125:443 store.steampowered.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 ad.360yield.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 104.18.36.155:443 htlb.casalemedia.com udp
US 8.8.8.8:53 brightcombid.marphezis.com udp
US 8.8.8.8:53 prebid.media.net udp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 34.120.63.153:443 prebid.media.net udp
IE 34.247.129.145:443 ap.lijit.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
FR 185.255.84.150:443 hb-api.omnitagjs.com tcp
IE 34.246.39.119:443 ad.360yield.com tcp
NL 185.89.210.180:443 ib.adnxs.com tcp
US 178.128.135.204:443 brightcombid.marphezis.com tcp
US 8.8.8.8:53 156.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 145.129.247.34.in-addr.arpa udp
US 8.8.8.8:53 119.39.246.34.in-addr.arpa udp
US 8.8.8.8:53 180.210.89.185.in-addr.arpa udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:53 dns.google udp
US 8.8.8.8:443 dns.google udp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
BE 23.14.90.80:443 tcp
GB 142.250.187.196:443 www.google.com udp
BE 23.14.90.80:443 tcp
BE 23.14.90.80:443 tcp
BE 23.14.90.80:443 tcp
US 8.8.8.8:53 80.90.14.23.in-addr.arpa udp
US 23.200.189.125:443 store.steampowered.com tcp
US 18.245.175.156:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 shb.richaudience.com udp
IE 34.246.39.119:443 ad.360yield.com tcp
NL 185.89.210.180:443 ib.adnxs.com tcp
IE 34.247.129.145:443 ap.lijit.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
DE 46.4.139.58:443 shb.richaudience.com tcp
US 104.18.41.104:443 capi.connatix.com udp
US 104.18.41.104:443 capi.connatix.com udp
GB 142.250.200.2:443 pubads.g.doubleclick.net udp
US 23.200.189.125:443 store.steampowered.com tcp

Files

memory/3912-0-0x00007FFC7ACB0000-0x00007FFC7ACC0000-memory.dmp

memory/3912-3-0x00007FFC7ACB0000-0x00007FFC7ACC0000-memory.dmp

memory/3912-2-0x00007FFC7ACB0000-0x00007FFC7ACC0000-memory.dmp

memory/3912-4-0x00007FFC7ACB0000-0x00007FFC7ACC0000-memory.dmp

memory/3912-1-0x00007FFCBACCD000-0x00007FFCBACCE000-memory.dmp

memory/3912-6-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-5-0x00007FFC7ACB0000-0x00007FFC7ACC0000-memory.dmp

memory/3912-8-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-9-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-7-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-10-0x00007FFC78AF0000-0x00007FFC78B00000-memory.dmp

memory/3912-11-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-12-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-14-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-13-0x00007FFC78AF0000-0x00007FFC78B00000-memory.dmp

memory/3912-15-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-16-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-19-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-18-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-17-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-25-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-26-0x0000027DF2760000-0x0000027DF2902000-memory.dmp

memory/3912-27-0x0000027DF5370000-0x0000027DF7DD0000-memory.dmp

memory/3912-29-0x0000027DF2150000-0x0000027DF21AC000-memory.dmp

memory/3912-28-0x0000027DF2BB0000-0x0000027DF2E44000-memory.dmp

memory/3912-30-0x0000027DF2E50000-0x0000027DF3012000-memory.dmp

memory/3912-31-0x0000027DF05C0000-0x0000027DF05E2000-memory.dmp

memory/3912-32-0x0000027DF3DB0000-0x0000027DF4B40000-memory.dmp

memory/3912-34-0x0000027DF0610000-0x0000027DF061A000-memory.dmp

memory/3912-33-0x0000027DEBA00000-0x0000027DEBA10000-memory.dmp

memory/3912-35-0x0000027DF0960000-0x0000027DF0982000-memory.dmp

memory/3912-36-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-37-0x0000027E00000000-0x0000027E04316000-memory.dmp

memory/3912-38-0x0000027DF0990000-0x0000027DF09B8000-memory.dmp

memory/3912-39-0x0000027DF0A10000-0x0000027DF0A60000-memory.dmp

memory/3912-40-0x0000027DEC370000-0x0000027DEC380000-memory.dmp

memory/3912-41-0x0000027DF0620000-0x0000027DF0638000-memory.dmp

memory/3912-42-0x0000027DF0AC0000-0x0000027DF0B1A000-memory.dmp

memory/3912-43-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-44-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-45-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-47-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-48-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-49-0x00007FFCBACCD000-0x00007FFCBACCE000-memory.dmp

memory/3912-50-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-51-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-52-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-55-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-56-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

\??\pipe\crashpad_4176_VEUZYAVJTBGBAPGF

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

memory/3912-87-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

memory/3912-94-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 99f52dc3f253b74d0c2e3da820ff6642
SHA1 7916c8ce308b62aaaf2910c6440bb3e34cb25bbd
SHA256 a50b88c4433b4dd56ab9b2b59bc07541387aeb28c131d8458cef8c2ce72e1748
SHA512 a31e5b481cd7725ea8db6681809baa08521ac827b6e7f62509e9ac6204390dd9a69122c2d104cffba54a5c25e42625d25b12d61e6a0f209c44860afbca70b2b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a6d3b3fc0a9e4444a87baaf396f1a02e
SHA1 f306a09c9cd8b2107adce34f32a61692bc55e979
SHA256 8f8814851e3cd389209b8d3ffa3148030769f264532f4346a34e7bdebc187e81
SHA512 f313ebe347d23d0f74cb7319c1d0d4cc20432cfd8f3757e9fc8d5a29f1bd34f88bfe70cada377a8ebdf8d6cf7792911f909df4a561dac651f129558a2c689474

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b2e06794e655f94f609f22e83499d4d2
SHA1 d0802743a2ff28be068af519035c6539b1eb7793
SHA256 d02b59b0fbd32ce0e0a191aa638ce14babb6158335123c016c58575b79f5d7ad
SHA512 302697db6be08489f072bf21505387f23ae839ccee42becaaf380cfd06400d3a9c641af828620b4bdfaa7fa4357ebed4a7ad106aca780889c423554d2996b385

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\724b879b-0abb-4509-99dc-92b47b1fc39c.tmp

MD5 d79856ec3d046fe24969a935858b7f50
SHA1 b03b9ac8598da88ef9b49da6569cab07caa8dd5e
SHA256 2925fdc9cd595248fadd78d9b1742a8fc52a6993b706f13a9248f14749295f0d
SHA512 a227c7623ca2b512a0483d788c2614708eac848b64831c8a98729c66328d2abdb3b352ac5e5134227e500ae3afe5a2f229948a932c73a949cfd5d29e1e8649d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 94275bde03760c160b707ba8806ef545
SHA1 aad8d87b0796de7baca00ab000b2b12a26427859
SHA256 c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968
SHA512 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe58077d.TMP

MD5 1af7dfd6a5930270a16c77f8064299e9
SHA1 6c8d75aadcc720ddee568dd72c2212ade97f5fdb
SHA256 bc26a8711811c343107e76be9e32f9fcea89d4dc033645f91df7e5f530645d9e
SHA512 ee79da702717b7d60fb8804936c819e75e1799db491f14c638c32fb59fc92334db969084959b77e36f52113f5ba1de6c4bc3f25057bd3d9f61dd2dcd7a4b0131

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 3431086f715a8b907c2aa42d7d575dd8
SHA1 8307693a5f3bfccb12e9e4a41c65cd29d107ff8f
SHA256 5021f2f1fd07aaa07ac47f9d6465699cc883ddf3906534d655ad7f087a390850
SHA512 3bdd1f56710f27826d055f43baa61b77cebcbd0466e17c95b740ca67d037290b7ca39daed1efcf131375f1ca1c93956deb12b323e91e1719af721737569cfbe9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d9c5527af34fe2fd69136013b2f8c220
SHA1 6b9624b60c1dd0841bf82101ab2e5cf0d7e07aed
SHA256 dbadb7bf2b28b6ce7ca5ef4e1207e3b8c45c9b8cc59ed0e0681eaff7b4e6a771
SHA512 4dc9a5ac338d3c66a59fcb168915be7fdd3fc404c792e46f4337daf802670cd3c5266f4841229384b2e1a98f63826caa84107ddabc525562b97703fa1f5e8aa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 3c539e2b1f0060454831b02f4730bc9c
SHA1 4383dfed02ae1056e6eeefa77ccc7d90dcd583c0
SHA256 869e6e61ab04e223b1d3f4d8f48bf86af8f08081f5f9d6b1123d3b17598b462f
SHA512 ef35b1907a2aa5bf37d722c9a66c7b430605b1b03c017f00f78a8275c2c71e14aa3ae7a29abcbe7d70dfa137a30c446af8576eb5b5e797409f75465bdd5affb4

C:\Users\Admin\Downloads\Desktop Goose v0.31.zip.crdownload

MD5 eaad0961b52b14d9a323f092ef307d8a
SHA1 feb3aedf16432b063ff93c90623a865a1fd5214a
SHA256 e66264065923676807fd6d7b36f7c9dc52db9ef1c5399b2811738eb5e22a30f6
SHA512 fc42d2ed6a8a8efee0898236526dbe46218dbec657caa5e70bcb18433345d56a010903c155c726a5c9e117e1759cae42560e18da49d5bbfe4e99048fbd326330

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000044

MD5 c52f3521639f61d058b371c90f7340a0
SHA1 26cda00aa74d363215fe8e5de80878cf767d9747
SHA256 98dadb40ba05b9079b6c7cfdcdce83a11764b15cee748e1d6b06ef13e94f1736
SHA512 ead5c9d264cb85f32a1e4e7ca84df51b2d8fcad89abe35b8a9e461cab914224e5ee9c3b0cbcaf720ffaf43566b9d9c958667024e0e6988f948640fd782ff3f23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 0b23bf47d405b218360a0f2a1f79cb6f
SHA1 3c915de5af5dd05d5742fa63a3dd5109bd5afd74
SHA256 6a5bb3c57de64de07266bbb871e6b8eb1a8ab65392ffc4ed2292f66cce146355
SHA512 d54e95fefaa01eaf70614a8708d15fa5d2a25df80594a993b1299651763b03f2bd09ab98fb86f6b58c55f9967e3d3c03be70529415b6e2e269af196d53ca0d45

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 29f7969271d5a48854cdaf9d09d8718c
SHA1 94b68f07eaa57a0dd9c5a5c39c3914636a1d2315
SHA256 5e23a124b42435a4e2cde7b15c877323b2f7ad48c3bd31b09a4068dbf45f4c03
SHA512 096990e5eadcae65ab72b5976e2a3e96edcf9acfb3dd6f4b72bd73e05a8571e9366258586569184eea4fb822e981a5a5e6080a61fd12a690eb361f79586dcb6b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe589016.TMP

MD5 81ae34655ae06415c62cabd976682d79
SHA1 88e840d9aad17692dcd9322bdafaf8cd247e553b
SHA256 f00d55d6865a6fadd3ac25f8beeaa3f7803df149408ce88329f0766eb72611fd
SHA512 318749d8bfbdc8248af663d2d06d983385eed1a217add0d5439824e173790677af3750918e6d88e64f68522cc8bcd5a462d86105fcdc1950fbff0cf62b7ec8f9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 81a9f88e082056e22e284c08c72d897d
SHA1 6456fb924ff2cdaba79c67f2512cb04b8ee0c0f8
SHA256 fd3973f3370d5f5fe2a0b03baa29d31f52cc30985bb2b58db9ecc26a4434c487
SHA512 c40ecdf6d406e27d32980f4128e4a0e7bcb6df6c50ca3b1b56200a7263d13aed538ccdd1a094d857d1a9998b9d1103672d57092c116655051a78c503f0373d44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5b98a3f73a4747c035a27974bfe12003
SHA1 eb4229feb2598a3e31e87ba2de06aa29c3842103
SHA256 839005d4d2540219f1b5791a6a431f99c30dec23ec5ae0b3815e5cfec8a06eee
SHA512 7431acd849c77d4f8313156b9aab97bcc1d2df9c673a0eab0239371b39f545b82fa0975dbace7f03abd8ce872231b94a6a26d56aa658eb7946b42a23aea4c18a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3cc5c3f37850d3064b585608b7be1e6b
SHA1 6b19fed2dd662edc2867c2ca6230a0fb4942d9fc
SHA256 a8e5de0915a59aa043e5fdeb0a22a8d22d2ece3e9d122b430b5548577fbcae17
SHA512 d631b485c35c10cc0fb9783d3a5f2bed6ef51c3e64a1388810f8fbb79cc12afc367487cbbf6919fcce0317baaf087662309d823564604a9f8497b99b35fa6df6

memory/4604-514-0x00000000002A0000-0x00000000002DE000-memory.dmp

memory/4604-515-0x0000000004CB0000-0x0000000004D42000-memory.dmp

memory/4604-516-0x0000000005380000-0x0000000005924000-memory.dmp

memory/4604-517-0x0000000004D60000-0x0000000004D6A000-memory.dmp

memory/2840-518-0x00000000058C0000-0x00000000058CA000-memory.dmp

memory/2840-519-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-520-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-521-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-522-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-523-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-524-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-525-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-527-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-526-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-528-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-529-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-532-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-530-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-531-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/2840-533-0x0000000007B90000-0x0000000007BA0000-memory.dmp

memory/4892-534-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-537-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-536-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-535-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-538-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-539-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-542-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-543-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-541-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-540-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-544-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-547-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-548-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-546-0x0000000007300000-0x0000000007310000-memory.dmp

memory/4892-545-0x0000000007300000-0x0000000007310000-memory.dmp

memory/2388-549-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-552-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-551-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-550-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-553-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-554-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-557-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-556-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-555-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-559-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-558-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-562-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-563-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-561-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/2388-560-0x00000000069E0000-0x00000000069F0000-memory.dmp

memory/1764-564-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-567-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-566-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-565-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-568-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-569-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-572-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-574-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-573-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-571-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-570-0x00000000077D0000-0x00000000077E0000-memory.dmp

memory/1764-576-0x00000000077D0000-0x00000000077E0000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 b4ad90b91f357974ac7490c0e8832f6c
SHA1 ebaee53ec8471fb444c2bdf6848e6e6f9910e2e8
SHA256 871372f88d1c43104a913832e9ac5aabd41337bcf5c6c559f5c612520ab5bb3c
SHA512 5e71a161ca17cb72eaa97847aa9e1e1629bf88a45178e044f0b5105bafd7d9f554f9066261cdbcd189b2caad249c250c99843d18caffa803ebb4759e2b05046c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 131f9c6d4cc2f189c20fce2d5e6aa236
SHA1 73c818eaba86be51bc4612524dacd76f1f3eaf72
SHA256 1aa2257f9536a7c8bbd49df93316e06521c6981a063bba0dc59a621677b24663
SHA512 9c503c2bf1db8e08b5b6cc6eab2d08ed4b6f97d0b97e0fae234475cffd25202d226ecb5d047764262ea90be39a1d2255f7f2074b7cf0a4466ff664da2f88d5e3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 87a181d904c2f0c87daa5f408e921689
SHA1 121843649e88e1a4642e6005faaca9a550debaef
SHA256 77c87a4dec9250ad4ab7b476c1121fd75550b2790aa95ef64675f0991eefd1d0
SHA512 ed6ae8332066629a459dd9ab4102778c11c024c2b9e66b0af50e47f14d539efe15877ed33e9cb70072414a64e94cfaf8cecbc2a2fde7a5918232e5d61047d9d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e4b399941ba7182694c280f5fb224b6e
SHA1 eeb5d8a8ed73e8f3099307eb3e43b465bacd4f78
SHA256 378211c051ec5c0cd1a9f1ed200e487a5e846e8b0f83637dd92ed2ee2c76af5b
SHA512 a0e33a1c1f501e1c79bc3bbcea2c259c44af1a80774c687d8d8f9fe5d0d65b7d86d22232aceab3efb2f5b475929d7c9ed5f50c07b1f9f40657ad5456f97f2c32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 136aa87081c90f40d7cd978091d1908f
SHA1 cc5d8addde2718aee37b9ebe1e6574bcea7b5fb4
SHA256 3950e1ec0d2b21c413db4966ecf53f4d987380b0a173e9fc67ce450ab0e3eb60
SHA512 f6ca78cc7d4cddec49925adfd05a7ea36c7bdea251ad261c63e4a330aee4e0d77d64229923916d5e72ab3d048f3d3ea94f302b1b252dc140e71e2168f2e03f44

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b

MD5 f0c27286e196d0cb18681b58dfda5b37
SHA1 9539ba7e5e8f9cc453327ca251fe59be35edc20b
SHA256 7a6878398886e4c70cf3e9cec688dc852a1f1465feb9f461ff1f238b608d0127
SHA512 336333d29cd4f885e7758de9094b2defb8c9e1eb917cb55ff8c4627b903efb6a0b31dcda6005939ef2a604d014fe6c2acda7c8c802907e219739cf6dab96475b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c

MD5 44b61714a0a375e6b47a2b31498ca97f
SHA1 11a5f7fe05ce28f629c112286743aba619bf68e4
SHA256 aaf29714a1383399c08dd0fe6ad0e9a41bf838415a7b7db4447d52be46859f9e
SHA512 cc1384e1e49f6ac7afa9b5c202900ad9c87d656c827a45230df466e44b7b46cf62fc8de97c271f1f88e676e031cb5bec6f336bc8a5ec49184d91f286f76fe275

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d

MD5 0e2b345bf937675dbc7ba1462103e71a
SHA1 bf6b81943b16f169aa6cd27a9f8a0c8bef71fd05
SHA256 316ea92bf330b658063c3ee6c695e00193da10b9a21fceba514a4f94fdf302cd
SHA512 b9143b1a52462907c99e06a3c47b16f28177c51e298c1b3d6054ad7700333d66cdc3ab97194e0465e9263306e50b639ab218cd49a2bde17aefad862b56bde3f7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004d

MD5 9f2de3ffaa60a53df447d559ce022c9f
SHA1 ab0359e97a17e67246319b75a7c2c3d457d6f4c1
SHA256 903a56cb61d9e5125d67778d144ee77a481ff9d72418bcc4a9556c9a76363bbd
SHA512 7988fae380100bfd2679148f2986744c6a9a9f0164a188d50494af8522e11f50da783c0a159d3f8943311d1a2f2ed6ec9a11dc306e79966d8b2e1fbc34278c7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e

MD5 dad7a5308e1fd3432341651cf1052af9
SHA1 b86d934f26b18018508900eea3e0f0d3c862a77a
SHA256 ef131cbb23332b9e184b4a8ae912c61ab5a32be432fc7c7def443c3c7eba3099
SHA512 8b67aa7bd406e2576aacaaae048b6faaafa0af0526ff2ba5816af8fc26289f363f351c5dae95d713cb6396b3f34e20aab1b7032f8bdf3f3c8e33d5b32fd47bfe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f

MD5 a802ed5c611a07c1fd14edd19ada70df
SHA1 688b81f39175b538215d915fe02510e08a1ac08f
SHA256 4fedcc34c8fc2e96eaae5c856f022fd80ac3c7333da7d98283683ec2d3dab744
SHA512 c6b28e6c0717d11b5dd93d748c8caf4b931020207ea48656d1a6008b6edd578146d9a400072655af087ed2a088b120f5bdee3a691cbfa267420963ef96b7d107

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e5338a2eddb87d3e0cd644f0affc7de9
SHA1 e3ccdeb1c5546de42ed8f2ac04891d5e1f0a0ab5
SHA256 bf8d3ef9779fa3e53293c374e086d1d816f4d16a3e3ed6bc890a9fc77cb464bd
SHA512 d232402848065221e28808a2a98e05aa68df89f9d93e8e932f3cea858b7c65d5818cd75587a116d4fe6eb55f60ce0b653c6aa9834db75c69b5a699ee82d4c498

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1f37d6f626ad279d7d00833820ccc611
SHA1 241338107521906dca3975f0ad131529c2fdde45
SHA256 4e4bf9527bd3e4bb12b1216e6af51a91b096ef9169cfd3d74cee5445bc6eccd2
SHA512 628f1f60778366222e213bdd273872ceb204c90af2381be188a3a11a1dd3a3b36f0d4a59d1c3a9afbcd5b2124d6aa179a6bfdf0dfdcb8406f714465665c631c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000075

MD5 92356d0513ca1b8d064a32ed5c03f331
SHA1 9d115a0eef9a38663c9df6c8f3fae605edb37114
SHA256 0033a94154e5b25943ce930a90d066f29c49e174e1feaf241d56c1be3514514a
SHA512 631d8da4b0df3143a2910ea82355718fb8c926600b3bdabaf19953f5209ec26df7710bb5cb64d420a40a635f93fdc90ae7c9e8b00f80bbeae4eaa9a620526013

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 340315f2db8bf956a7e861b724b5bcd1
SHA1 c9a8690c80ebd52e299b6d483c5402e066bd79a2
SHA256 909801df34d0aee2de5069fc4e19afb373db193f028a9467db0665129a127872
SHA512 164da62e908340d78d0c69869754054c83075db040166a083e680335bfceb0d04fd64aeeb7ba30466af580b819024a45d1db72fab4f624179e8a610fa0cf52d2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005f

MD5 f18d4246fc5423e9031f844d080da486
SHA1 74cece4848c3bbd8713725d352fcf9539958e636
SHA256 955ea2967b4b2e13a1877aaa86aeac46b3471b34ba482fc9d901731524399226
SHA512 df615f5bae69cb0b1364b7d2d93553c45760da6fbac10bc86d479cacf8a7bf4a99b3a9b6b419508d437837024c0f3bdc39026a5b04badf24fee82143671e044c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000064

MD5 c4776799202c112889657721ef20e2fb
SHA1 dc257e3e66e1224507fce76fd5f85705913f2747
SHA256 9ca609f4e338850edb15557b59f092b2baff9daa3a662960e2b7b3b5caeb8834
SHA512 973072e1cd04d10d8374640e9cc0d1775f2611bb8b054a77926fbf6f806de44201254c29c914268fb8b525e54883acd9874d7ae0b779cdcaf2338fe274acbae3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000060

MD5 67e30bbc30fa4e58ef6c33781b4e835c
SHA1 18125beb2b3f1a747f39ed999ff0edd5a52980ee
SHA256 1572e2beb45d2de9d63a7e7fe03c307d175b2b232bad2e763623dceb747729ba
SHA512 271d4a65d25b0a5d2ff2fe8f3925fc165d9b4345893abfd919061d78ffc5ffe8890ded35e41274ad8b860f06264b027cfea6030ec9411a4e03bc6d7cb4d4d228

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005e

MD5 2155f385101771026a23f3dc2808c97e
SHA1 550ba8b46e714011059de97b0f672f0349dcf8de
SHA256 4641db11da9224b6da70ab3719915060084de315ad9037ca51c566d7d161dcd1
SHA512 653fa69902507e82f884910143a60305e2b3c6e4d7ef411273c4ca2a67cb144ef9a367963bdefb1f45e21af4193393bfcc16ea599289b6f45c923884b3fe39f8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000063

MD5 f3a88ccf0ed09bce753f2165d6185415
SHA1 262a7c8dfbfb47c95019295f96f64e5e5d265e68
SHA256 b4c82b5ee32e24af3ee0fd5591b385a4523de67d960f061d0e3986b87cdfb1fc
SHA512 46a411171e3f1da9230e0508281ffce342977c28b4ae1b170c8241b649f7453231306f89c399ac9e1007f9ce2e8b764fcd2a47647fef20b79c1690121fc0916c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000061

MD5 7651b1187bb58ac4c7be625337b35e5b
SHA1 307d969ef4137a66fe2793737dc1c546587c7f43
SHA256 0632850d01a46bc2f8c223155a4bf6c398b33596bb711e098440623f118c3968
SHA512 a81d2f768af155bdc642941404e7ddf95a2cea33c9374acb5fe32f6f5266e337fbef32f904551f61fcc9f9ab5a1c6a5ad130ab85b38bc2258e2f82c0ca1e9c7a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000062

MD5 a29cd59ad98949b9395f338fa14bfc4d
SHA1 b8a4f6455f10162e3e4c6284f71137e670ef8751
SHA256 d90d81039762ddc657a215045cbfd8224a8c9ccbe226189aa2ef4dd1d0249e03
SHA512 b8185fc7635af676d2e832ccfd6e4b035242d46249ea069f9429b6e558d91763889dae254f472bdf0ca33460fff92485176efc75c2842b65880c663eeef5eea3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000067

MD5 bcaaf03f57b1083a622461f28c1a6dcb
SHA1 b64ab77c2748591d5b637a1995940fae80e61d9d
SHA256 785589296a3eabf9b15a28a497192b8af5db14c0ea06ebaba3a2d0fd4b8c00ad
SHA512 4e8ba4e66c3c37f08237b336b81bf0eaba797cf1c68d71415d393c7ca285382cc431a71b9d35cb9970b7b3aaee7b82167784a2d036ad7ec3abb4f69926a80ba0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000066

MD5 d99bfb8407adbdda2ef65a84ce69ea9e
SHA1 48038e90e047d8014e297f92d729fb0230cefa20
SHA256 e5e59035f8e12d522c18189034bdded86f2573717b9c6c3789204243237d421f
SHA512 4b029a93aca316e30c16a5152e1780b4b218f708be1d0d3583e06ffadcbc52980cd83735d091069b1f4682a55f0cdf5523eb523e71078432a7b8cacbbde0bb1b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068

MD5 0b3ef86f400193a96073b5d56171066e
SHA1 d47776a49bdcf7d7f274df37db76789adb18af72
SHA256 6c8378ace037c18ba69e75b237243ed18b2582042866e15e774b8d0cdd4f4994
SHA512 f10e6c1d085fdccc824c6a87ae8c4196b38d41ada8279dcb58aff71658b3794857e6ca72aec10333123226a74ac43c67fe4fe3a72002510040dfa4ee9d1e4762

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000069

MD5 67d5e4749e49ad727e568dbfd868f1d4
SHA1 ef6bb509615ccd996069bd00219a7cf83981e824
SHA256 23e11da450bfaf9a8157bbd8912835ef41cd862f0a83546d04d233fcdd09f428
SHA512 fce6ce96b0c68f11d16580ce2ff2771918031605e01095ecf24196e6e59928bd83294a57e075438facd4ac62b877fc5f1f36b8c8ad6c24a9f59aa96dcb896182

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000065

MD5 e607a23ddec4b03e62fd78bf27866275
SHA1 e0cd76f80a0d2d40bc54ec4be8de5c392ddd4c58
SHA256 9b24f245d320b658c99e3aea786ea7a65b45d3fdb79ae25a68bdc509739ae62a
SHA512 fd883bc89a60302d6a3eb1a1733efc9df54c01b06580ad2a9552476c68c2c009f14355d259fd8cea86b1c512c2720ab293e2ebd7c241201d562923f6b7ece00d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006b

MD5 b20aa323cc40714a5c7f6c136ed7e6d5
SHA1 338423d25893565290866c3f8f79bbfbc0b7f7df
SHA256 73189d896573869befb24659e53ca2cf9171d2600dc1ead051f59a9acbd18dae
SHA512 0ffd6b31ff5740064786ffe6a2be12834d621971df806def5b0684b757a9d994530078209a8ad222c780febde9172a7d451012ce9d171a30dd44c214878ca3f2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c

MD5 9519cff03f3481635ee3eea90c2eb56a
SHA1 c9d9e82a8aa9864cf76bcfaff770582b8c7f9fff
SHA256 32415d1c70e7a363ddfdffdf57dec75bebebdd76b359edd1667815b5530d67a2
SHA512 93cf77d41440e857a32fcccb929a1bc972b08fb40deb5b7b85825011ac977fb7b708348a2480da9a2a8198e31059e80c18983070792292239ff44b0ebfce8a02

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006d

MD5 f07644c10cde3060251549eca564d8ce
SHA1 af233fc2b0760f64e69712bd3023598fdc056eb6
SHA256 1beb7b61002cf98df998dc41fd5bceb01860b9c037b6ee9a514da33fa021c331
SHA512 4186c3db281b5a189b1a9ed9f6d98a7fb269421136bf9455f1bc0de8721a3e885b1a3b7b7efa2cd1383ebebce29e1a9a9de3ee704849ea91ca871a7f8c5752a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f08ad4f9ab3163f9_0

MD5 81c931a34f31e2704418eb84a7da985d
SHA1 5425ad7da932991f65f3017382ed19b72c048d0b
SHA256 df4c81e359c3629e4be2b8c70d242b6e83723c28ac10f0fa9cbc071e6d2c05a8
SHA512 ce47cf2b835436204eecf3fb7c957c941968b99ba11779d5de867134e080710c53a6f0d653d0a817d407f9654e784ffe3de31cca9479274f73fe3da21795d670

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\df7d5999ec8fcad4_0

MD5 232e8a37552d5ad4401ff2ed2f346b44
SHA1 45ee1f77ec28813adde6506f38cd753b11d313ee
SHA256 2e6addcd5947b542b31fc778f5b36d4a363e4003fb5031fb27c6532406dac5f2
SHA512 17dc4158d36f74fd43d6148628e8512d86e76d1fc1c12fd7c6d71f2a04bb2be933c604c4b62ea82205f7cb29b838ea59f210a808698c769d80e715bd3697049e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c27276e4b567a8f5ca00769c9d8c3c01
SHA1 11dd6d15109ddea072ac3d5189666a242500c104
SHA256 6a766a55db9afe40f5f1628d26001f22509230fa2b497198a54bb71fa1b93aa9
SHA512 841b426747b564bd0d7f7a09b22345c93149572485f3f11fa53ecca1a67a163ddf3b03724fe59738f9fe604e35a76ad1294fadd9fef93a64286210ff176e5749

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000081

MD5 9c6b5ce6b3452e98573e6409c34dd73c
SHA1 de607fadef62e36945a409a838eb8fc36d819b42
SHA256 cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
SHA512 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c2705af9a16a8f718e1d4318411dce05
SHA1 47a86609cc799d6c53092359db4528d1a4ec7bd1
SHA256 a074a07283cab0c0ae65e5918cd507cafb4f12be7084e58c04853cbd7b6f2bc8
SHA512 7e82c4fec7a0c61e9b2c23a48c856b2149b1ff163a0d6ae2f33404eb5e4567475c83a247f558afea55a5e2771e719ada8af2462c21fe8b4222b54a8ae6af1329

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 e22233fa4ea850b830ff9a4b5f388519
SHA1 cfd01de37eb01009487a6cea8b730b734262eb7e
SHA256 ffa05ca3883bdb7478303047e0b85890e81214a583b20b5ff3bdd4fafefc74d3
SHA512 fa944b1897bb76bf590db9e8e88defc9db9750c3a2da38c6484d084233b5e633481073d0b19a388376bb68d683b80c3b2f2df5625c32767167806ed8b483cbb8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d2

MD5 40f2fe967034678cdb39a1f87c7a1ae6
SHA1 6923b995c9bffa303b1d9d356a29398b3c4b297e
SHA256 19c1fab4197fdc86d1e1ef90c4f0719621bf2cd815152680418ca8525d1524dc
SHA512 bd45e306e37fe1a329fbb5d85865b66a7763f348652542069ef94129411e9c834e4e54bbafd7334fa1c84a30ea4a38d77463b03997b10b5dfd4b8e84a11a4fc4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 feb32fa218c2fae190a3e396d60342d7
SHA1 9fdf1594e7e812bf25343f274b0dba32ab463b8a
SHA256 5b313b6e53844cf50166038cab34381191e557d5588b6c13115b5781b6873fc3
SHA512 9d1126f9339818837e2efc5cecc30f864b10dcb05b2734299b1b202fbedc53bc19673e636f1467e4c0b692b1ecac8b95b2313c51f7abc2183bcc56a11d325eb4

C:\Users\Admin\Downloads\Unconfirmed 610402.crdownload

MD5 1b54b70beef8eb240db31718e8f7eb5d
SHA1 da5995070737ec655824c92622333c489eb6bce4
SHA256 7d3654531c32d941b8cae81c4137fc542172bfa9635f169cb392f245a0a12bcb
SHA512 fda935694d0652dab3f1017faaf95781a300b420739e0f9d46b53ce07d592a4cfa536524989e2fc9f83602d315259817638a89c4e27da709aada5d1360b717eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 eac754bc06529c6fb037d89aff05f1dc
SHA1 52a9f818a130a7eec8235c6c68a3d84a5a9289af
SHA256 c5843164419e25b3d890a06aa93942f84c61fad72d3a373e4cebdd5f0e4ba992
SHA512 3c727918562ccbe81cb6b525fa3acee90b089ef93cb9840258ac0952996a699a736eeeca94d3b69eddbe19438b7ea6f0a695061ed46daf0538f4e81a843c41dc

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\nsDialogs.dll

MD5 4e5bc4458afa770636f2806ee0a1e999
SHA1 76dcc64af867526f776ab9225e7f4fe076487765
SHA256 91a484dc79be64dd11bf5acb62c893e57505fcd8809483aa92b04f10d81f9de0
SHA512 b6f529073a943bddbcb30a57d62216c78fcc9a09424b51ac0824ebfb9cac6cae4211bda26522d6923bd228f244ed8c41656c38284c71867f65d425727dd70162

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 24e85b92bf27f181d3131976da3b08c8
SHA1 20179cfe8ddd6eaad51521624d82217f582a208a
SHA256 c57892deb08926d525a32ceee7f07df83b97a1eed949c71e0592fa44f16a470d
SHA512 62fe046ec5d77c017ed4cfa867a410519856e30a3e2ff542b78b2771b8df9c8fafe6582179d4331707ce6600a55c6e2c4ac56c3d5b28b7f3c71ed89a20d9e6aa

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\e117c50d-cc93-4e60-9ac3-651e14bfd43c.tmp

MD5 7cfe71b1714963ae861af11e665289f5
SHA1 18c9fed36fdc362b8ef7a1a557a5762e66cf098a
SHA256 fe7ce1f6e27de1aebf0d45ac2f0e2cf48a9d5cd0ab52845bcc627d8b30f340f2
SHA512 11cfcac598222e98f0e96af5b9c28ef33e601b9173b2a76e7beb21a1a05c005877a8d920551a8faf8dc4f0adc49ba89e04f7c29bcbbdf435603a29b7630e00c9

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\nsProcess.dll

MD5 08072dc900ca0626e8c079b2c5bcfcf3
SHA1 35f2bfa0b1b2a65b9475fb91af31f7b02aee4e37
SHA256 bb6ce83ddaad4f530a66a1048fac868dfc3b86f5e7b8e240d84d1633e385aee8
SHA512 8981da7f225eb78c414e9fb3c63af0c4daae4a78b4f3033df11cce43c3a22fdbf3853425fe3024f68c73d57ffb128cba4d0db63eda1402212d1c7e0ac022353c

C:\Program Files (x86)\Steam\Steam.exe

MD5 33bcb1c8975a4063a134a72803e0ca16
SHA1 ed7a4e6e66511bb8b3e32cbfb5557ebcb4082b65
SHA256 12222b0908eb69581985f7e04aa6240e928fb08aa5a3ec36acae3440633c9eb1
SHA512 13f3a7d6215bb4837ea0a1a9c5ba06a985e0c80979c25cfb526a390d71a15d1737c0290a899f4705c2749982c9f6c9007c1751fef1a97b12db529b2f33c97b49

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\nsExec.dll

MD5 2095af18c696968208315d4328a2b7fe
SHA1 b1b0e70c03724b2941e92c5098cc1fc0f2b51568
SHA256 3e2399ae5ce16dd69f7e2c71d928cf54a1024afced8155f1fd663a3e123d9226
SHA512 60105dfb1cd60b4048bd7b367969f36ed6bd29f92488ba8cfa862e31942fd529cbc58e8b0c738d91d8bef07c5902ce334e36c66eae1bfe104b44a159b5615ae5

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\modern-wizard.bmp

MD5 3614a4be6b610f1daf6c801574f161fe
SHA1 6edee98c0084a94caa1fe0124b4c19f42b4e7de6
SHA256 16e0edc9f47e6e95a9bcad15adbdc46be774fbcd045dd526fc16fc38fdc8d49b
SHA512 06e0eff28dfd9a428b31147b242f989ce3e92474a3f391ba62ac8d0d05f1a48f4cf82fd27171658acbd667eaffb94cb4e1baf17040dc3b6e8b27f39b843ca281

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 08772e60c0bf401cec76e7e967c5ac71
SHA1 3391ba027e537535c57344e351aaa2177f30bb7f
SHA256 52f0716a049a22dbb2506bed90e6e0dac2333cb3b106da1a6568c6505ab95b33
SHA512 731162438db4e632abba6ef3559d783edffb52097f45e64f55f72d55dc2eaa0ca16a0fa65e181eed8fa5e132e97c59fa50ef63cb16ee566a090fed9fe00b24fa

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\System.dll

MD5 a36fbe922ffac9cd85a845d7a813f391
SHA1 f656a613a723cc1b449034d73551b4fcdf0dcf1a
SHA256 fa367ae36bfbe7c989c24c7abbb13482fc20bc35e7812dc377aa1c281ee14cc0
SHA512 1d1b95a285536ddc2a89a9b3be4bb5151b1d4c018ea8e521de838498f62e8f29bb7b3b0250df73e327e8e65e2c80b4a2d9a781276bf2a51d10e7099bacb2e50b

C:\Users\Admin\AppData\Local\Temp\nsx7251.tmp\StdUtils.dll

MD5 db11ab4828b429a987e7682e495c1810
SHA1 29c2c2069c4975c90789dc6d3677b4b650196561
SHA256 c602c44a4d4088dbf5a659f36ba1c3a9d81f8367577de0cb940c0b8afee5c376
SHA512 460d1ccfc0d7180eae4e6f1a326d175fec78a7d6014447a9a79b6df501fa05cd4bd90f8f7a85b7b6a4610e2fa7059e30ae6e17bc828d370e5750de9b40b9ae88

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b086c7a29b5939f2527e65ea6d6e317a
SHA1 d579c7c43a810e1a186d24e05e7a1cfd30f81861
SHA256 9c7f53692252e8f37c5ecdba497f5751fa0850e349e0998b8447a0a36e51de44
SHA512 05adee5345bd5481c171efcba2dba64356bb94d759b9e18cf114ab3b34cbdf33f9b1d19f200e076ddb8e899259e23548d72fc0c70ad037c24022ea57cff5a514

C:\Program Files (x86)\Steam\package\tmp\graphics\icon_button_news_mousedown.tga_

MD5 00bf35778a90f9dfa68ce0d1a032d9b5
SHA1 de6a3d102de9a186e1585be14b49390dcb9605d6
SHA256 cab3a68b64d8bf22c44080f12d7eab5b281102a8761f804224074ab1f6130fe2
SHA512 342c9732ef4185dee691c9c8657a56f577f9c90fc43a4330bdc173536750cee1c40af4adac4f47ac5aca6b80ab347ebe2d31d38ea540245b38ab72ee8718a041

C:\Program Files (x86)\Steam\package\tmp\graphics\[email protected]_

MD5 577b7286c7b05cecde9bea0a0d39740e
SHA1 144d97afe83738177a2dbe43994f14ec11e44b53
SHA256 983aa3928f15f5154266be7063a75e1fce87238bbe81a910219dea01d5376824
SHA512 8cd55264a6e973bb6683c6f376672b74a263b48b087240df8296735fd7ae6274ee688fdb16d7febad14288a866ea47e78b114c357a9b03471b1e72df053ebcb0

C:\Program Files (x86)\Steam\package\tmp\resource\filter_clean_bulgarian.txt.gz_

MD5 836dd6b25a8902af48cd52738b675e4b
SHA1 449347c06a872bedf311046bca8d316bfba3830b
SHA256 6feb83ca306745d634903cf09274b7baf0ac38e43c6b3fab1a608be344c3ef64
SHA512 6ab1e4a7fa9da6d33cee104344ba2ccb3e85cd2d013ba3e4c6790fd7fd482c85f5f76e9ae38c5190cdbbe246a48dae775501f7414bec4f6682a05685994e6b80

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\282cb36bac9e2171_0

MD5 815a7c43d478c289b5616cb845dd2ab7
SHA1 25f8ec1a12e899ce9cd833849a8dacde8a26e31a
SHA256 aa5ebea2a8d53268d89250ed1d55b151786eb937b75229cbe42ea8bef9cf728b
SHA512 7eebbfe4a607c6c41828e06c6035848c57560538213df2d9387f5155885548e7348e997bc100464e33d4e67b3d7e130f70f302a2457826df5a9d0dd36889af7d

C:\Users\Admin\AppData\Local\Steam\htmlcache\Session Storage\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007a

MD5 c71f4918e30e9f33a8dae6f2fc310aa4
SHA1 140393044f00fb631362437cc50c52249c3bc2d4
SHA256 946774e2ac996727c276423d7fc1943c0cc4ceec4b65c86dea45de57f49fdc0b
SHA512 4563611a0cdab69eeadef077fc7856217079b2f219578931123a660f1c9b1f6bc3dcab1c1643790d4ec7cc21026ef50f58c5230edec38a8e2e4c3fbe80a901d1

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000002

MD5 56b913703255a5987243bf1b083b3c39
SHA1 e25f12d9db1649ce7cfc55eed5aa8b7cb2a5539a
SHA256 3d71468bce1f70a7b97618b2d56204dde76749656661408247ba261598ff67e1
SHA512 e5ffea041e8a67eac45c887593efe185a5047558400079bf0ea440089e41b367b579b1623dded7fb3c36b423f74ebd12e4d256750addc64b161b95edf44a3a80

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000003

MD5 62f898fd6992a6036362cb6940826c3a
SHA1 3af7ca24e728670e522b97bec16f7d1118f29f12
SHA256 be3af12f5b2d95630d99f2deda5ec78e8d4886f8abcbe0910735f123fe1dcdf4
SHA512 72db97e1193cf9c554b363a118d054606807e2c470f9fbd7e996eb202216d7cf7ac2e03da075e028c42ad5ec606c3d867ee61d8276f23efb576d32b13b5c4a13

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00000d

MD5 64278a903ff04d2e4ae7b7f36dbaa54e
SHA1 c1cba04e7e769f9d8bb34de57d3d363652385cd0
SHA256 64b2cc1ce8325a40ddbd2347471d3adc1a358e0cbd7d6cecaef0c375f4eb8e7f
SHA512 a42d8b937f944f85ef1611d62c1a0ef87846f83dcfae6fba3e324bd9e3d056a85d008ea7444228ff0b3484fcfebc43f638967b78a28072c10ac68c8945e19519

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00000e

MD5 e6e15f63a20a10ba6a821621af2e5da4
SHA1 24c54049f5e069516a99cf59accedd0852bc4731
SHA256 c0258f150582f1e7fef221f62a58053ab3dd01d8b9bc76f2e0a7480fc9155cbc
SHA512 5c28cb5e9119663f5375ddd2c5f6550bc4abeec36d85c0c6c8abceca57eabe4fe0674cef18791bdc23eee26d3ca857dfc93f1ae237c4cec634f9d98e3771ada5

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000012

MD5 99916ce0720ed460e59d3fbd24d55be2
SHA1 d6bb9106eb65e3b84bfe03d872c931fb27f5a3db
SHA256 07118bf4bbc3ba87d75cbc11ddf427219a14d518436d7f3886d75301f897edaf
SHA512 8d3d52e57806d1850b57bffee12c1a8d9e1a1edcf871b2395df5c889991a183a8d652a0636d5452068f5ef78d37e08ce10b2b2f4e05c3e3c0f2f2230310418a8

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 b8608fd7542cdce82fe31a1729bd4c55
SHA1 9eba846419ca42e40376a812224e8c923aa38533
SHA256 6d102abf16715bf448e039d377250eac1a18946104a050af81bfa3a7ad119288
SHA512 9db88eb7dea184f2c0bfffd7798d00c3d0d822ec3c229a2cd31573fed893d50f0c0825d27a77bf6625f0831aecb88dd2c15c1facb8cd2e99d000546b16ad5000

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity~RFe5f962e.TMP

MD5 2c023600f2c9b31b12769e9256f7227f
SHA1 fbbfba90a26df3512c72cb4814edcbe381233817
SHA256 300effa34c9b25e98bacd640ffd773c361aaccd87edf70b580a7c14882920753
SHA512 e85b789b1ee7944fefa9c46c0fa828023560d75165f7007ffcd2116613202906432fa4ea5b6b3e967546427ff4f0b78595a05c56c230d0abbae9f7947c87d38e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 4a88ba9307300d052c259e9e5fa53513
SHA1 2b318f18764c65bceb2cc52a0f95f86b389cb0c7
SHA256 767124a54a179b6bb109e961f8bf86244c95643da348eef58d01331598e21ad9
SHA512 2c359d7b05a8a63afa97998ccac97959ee541be5a1ed6eee3b9ff3f7795afd7cb1c1fbe2ef69181e8606b6f2d2f6bbc33eef4c24761a4af91c95a828bbc09ce6

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 6d45c78d7f7644145648b59e927bb77e
SHA1 de7abc9ef6fda96c45c0bd5a0ecc19379e26daee
SHA256 2e5cdc3a2b92367a7513c99f0092979376135a02e6c4b44538f65440eb2f5220
SHA512 0176bd62841d40fa788a21a20dde8784709cd6bbbeaae1f844bca69cee0f6bde465534162ddf7f24fcd3a4248405afe3228a54931514bea9fb3f97fe23daf123

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 cbefae8110f2fee39239fab51589eb71
SHA1 eb4f3551d6fb3ae9c0c7212498f3d5f4eb90e35e
SHA256 6a40fa0fb4e6326f519fb3260c41ba462b2bf91680d962d3e1b6d9a449a16a4b
SHA512 6727fc508c300642f6026b2392d2b21d5b45ce34b8dd8ba62a701099aad439577da32cae45a74970a26558d0b533c328b323d9d8c1ac1a910b482e7d42b69136

C:\Users\Admin\AppData\Local\Steam\htmlcache\UserPrefs.json

MD5 129d4abc43e97a8ba29e732d0e7afcae
SHA1 d79e02f64dc2dc6abe5abd31015da8c9d2c12e7e
SHA256 bc0977748860e50fe97d2c8c8fc9549aa0a949d5403c89c1a914902190a06506
SHA512 b008bb9b2b910b47788b7acfefc708a518b4939be2e05c7d92c1a8141aae57d744bfebee8c0c249d33333df12fbaa15d7d80492493d32e10dd582777ddbc952f

C:\Users\Admin\AppData\Local\Steam\htmlcache\UserPrefs.json~RFe5fcd7a.TMP

MD5 40449a6c96eb38e50ecc7b977f5afbc7
SHA1 3c8be1a49d3c8ad8252785b8e3946fa8a99c51c0
SHA256 66adba58470da7faab0055000f1cc277bdee4fe53f7a3b978ce908567db96361
SHA512 d1009db0f244079390854e8c915dd199daf0ee206c6fcdeef1fcc971ad8888366d245fca5a1fd24ac1238a93f3bdcd05d4506c395dacf8601563c03277e00aed

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 48bdf6525979767965045d3fe565e56c
SHA1 d3c01459fee6e6eb352a340ffcd6b62bbb059c0a
SHA256 9780c0949dd0735b9d547ccb0cfbea76e1191d535b05fed36b02ce9943b0194e
SHA512 23713f21dfc05c0aaa13675d61e22ca02232d81b00291dbc1bc999c94aa61da22c4671ae82d5bb26b3cd22590a240ebcce5e3c5ba9c92481f5d205a9f6ccc9dd

C:\Users\Admin\AppData\Local\Steam\htmlcache\02a04dd8-29b3-4e64-bbad-b3bdb7bfe78b.tmp

MD5 6a6357a0b93423ea8b0a25a08bd57f7b
SHA1 b8a0746a44e030c1a5f0f87bf39db5916744f8e8
SHA256 e848df494bb089f3ab9f76fa9598a8d63025863e93f6f84d1e1b4801a5bbb6fd
SHA512 451d50feec0579729a5f70c077f71a0baeb7a4a8d4c55eb258346d51bf2e8558b87934803012fde99e10e000c3144314aa53deb273a8412972c8e173f8037d7b

C:\Users\Admin\AppData\Local\Steam\htmlcache\LocalPrefs.json~RFe6044be.TMP

MD5 8ab0dc1c9de359309ef0e320542aeefa
SHA1 76fe719c1bd2bd808aaafb12ea6b947f6f7900fd
SHA256 006ad43693a0d32aa888c374aed822318620302a04c01f3244d90e0146c476d0
SHA512 565f29ff19401d08474c9f28f0df4e6a58249d4309d45cc4b84bc757d2c6bd579f629b4b7d4ac1ad8d1d1465b895d3797339f1f710d75296cfde822391fc6508

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State~RFe605807.TMP

MD5 2800881c775077e1c4b6e06bf4676de4
SHA1 2873631068c8b3b9495638c865915be822442c8b
SHA256 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974
SHA512 e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 9ba50113c172f9df8d2aeae16f9adb14
SHA1 a67b6042b703e3de5f2f48f97d0f8b69627d6a2c
SHA256 b88e31f08fe10e9d526eb0bfb8c8e23f23b048ff3da77ea0fabfd2a8d67fc9dc
SHA512 b5704f1e55511dbef1961e3002d972f6a39258b0a3b34bab1bb4a19218b5ae0830d52efa2e724a27221105632484aa0f0449a0d8cf017a752381be6980646626

C:\Program Files\chrome_ComponentUnpacker_BeginUnzipping10340_120456679\LICENSE

MD5 f6719687bed7403612eaed0b191eb4a9
SHA1 dd03919750e45507743bd089a659e8efcefa7af1
SHA256 afb514e4269594234b32c873ba2cd3cc8892e836861137b531a40a1232820c59
SHA512 dd14a7eae05d90f35a055a5098d09cd2233d784f6ac228b5927925241689bff828e573b7a90a5196bfdd7aaeecf00f5c94486ad9e3910cfb07475fcfbb7f0d56

C:\Program Files\chrome_ComponentUnpacker_BeginUnzipping10340_120456679\manifest.json

MD5 2648d437c53db54b3ebd00e64852687e
SHA1 66cfe157f4c8e17bfda15325abfef40ec6d49608
SHA256 68a3d7cb10f3001f40bc583b7fff0183895a61d3bd1b7a1c34e602df6f0f8806
SHA512 86d5c3129bec156b17b8ebd5dec5a6258e10cb426b84dd3e4af85c9c2cd7ebf4faea01fd10dd906a18ea1042394c3f41a835eae2d83dc8146dfe4b6d71147828

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 1cb2d5cdaf7a8d38cc20231e139bbc9d
SHA1 0e3df7beb1d51d77028a96d8cd55b8d982769489
SHA256 5500b8bb7fe0dd45f4288c81fe9330f519eb02c398e04d231c969526e36cdd91
SHA512 02518ee63a8d9277f8d40112bf177931e713efdff3a3c0d606bf2de67b96c2c2eb552835333e822fd0bc505b78be3ae80da8921cb30304199e3d89eb7a04709d

C:\Users\Admin\AppData\Local\Steam\htmlcache\LocalPrefs.json

MD5 c4453916113098fa83c56daa131dc6a7
SHA1 88d1fba2c7d24e317dda28e2695ba359ccf7131a
SHA256 50fe099dd86a3aca771dc95cf8ae5b4125ef5ea955526d1323de0f2a06bb9fb8
SHA512 8c518c8dcb66444db49ed80279e2c7032c9e0f60a84fc67e7ccd29d8cfed0251bac7b5ebae6374a68ec0e6fe694117b97f80289d19809fcb4eb52158b64bb5e4

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 b430472404cf61eb89cc81d7d16049c4
SHA1 9be693c96d046413a0167cd864fdef9cc42eebe6
SHA256 db8d726aefc4851f70d449d3ec71813609abe03dd3006f955f6e220f69c30c2b
SHA512 ae34b50f5b5894ff1a4c9eef80f96f828ab6d4eec4cd21d288cb3af5936772263ef5f01848f8b7ed6f77773e97db5ce336008b84c9066c243e1f2f0d2b0dc502

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3d682ad6567b34146dc9a182ed8da96d
SHA1 d0f2b7a2ce04f2d105aeb9db069136daa47776af
SHA256 e1e272c4c2bced9eee8d93a4a81ca30f4bd79ddd50c1123d7db8b97e75645878
SHA512 13676ce3f2d7cad4dfada2fc36d19d74c4561955b21e955298b3d8649f6579791726a419e6a9f93250b04f39ad7fe668613c2bbb49c6261a55cedbe6c2d4dee1

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 33a242a46ff401a573da9ac725620ce3
SHA1 444291ab263a338c72234c9023aea31b762b7740
SHA256 e22de9a53b577e0bf1bc12274e501147ca648f80de7e9e5a2ceeb4a90394c113
SHA512 9cf6aa7f30d651983a1fc2b571621866964d481f0c2a91a43737e4ea7036fcccf11d89b0583e8c5995008e08ea813fc7b0aac934ab04769b27257a4156e93a8f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 07f0a1c359b724035e6def65a1292814
SHA1 36430910976f255575be0cdaa59c584b86880dcc
SHA256 bfcb623739bfc9a28a997e0153104f438f5da2f1657cca23df436d70c1a2f1e1
SHA512 1b909cfb3e2cb81e1c42ec3552de48a7eaac67c6436b3451d4151fe8f52c47ea501f528bfc13842a5449cda2b8178b02aad54c0c0f994098711ee098b701903b

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 8c7901357522bf6f68d8f52d583e9994
SHA1 feabcb8a4a2ac7104dad249e15979e1e4a76e715
SHA256 7352dc4ff3f2263dd80fe89312befee871750c3581232a34d9825207fe98b1a1
SHA512 25795201486e711259f64b79ff3fa7b74a6102d7cb60e2d0bdbf2b1957b9363bab69ae706e012b190bd253ad2fd23674913b18faa2c120268882233d021e5435

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00001b

MD5 02c4cc6d759709eba3f82adc2fac19dd
SHA1 769074f793e9913f2921582368b86f0b32269d89
SHA256 1109318670f3f0ed4881ef4d85ec2fbb9fec253df4e67259064af2dec0b97e1e
SHA512 cc73116fcf0f6671458a0cf46577f6c6acfdb53ab01db09fccc04df6196d78551e4b03593cfd034ad0950d0abc587173e74bb734ae62f9dac726eaf959b8e919

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00000f

MD5 b7f4239b69d60053612374bf3e4d9b98
SHA1 077b6286b5e86a25d172c286a6def398e2a0dc33
SHA256 87f62b966cd8316a4467efb5c1873abf038e8a930090667e1d2dab18afe41c23
SHA512 5cfcc48d52d790e589a13bdaf1dff6b5aa6d3c33450d7d8a06ab3d028e047c934e8238e82246bc1b5067477235c763608fe3b84acb3837d23ab533cad99982da

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 4b3cff6f23558c08e0ca013de19850d7
SHA1 4db6ce8708b8f661c02680a95d21b16fb0facf0e
SHA256 c2acd7372286177ec79f0dc0d219abf611ec2e58d04990daced09adaa0e0ef8d
SHA512 9f256ecea3b25ba57b46d642558419e8ea25acdd34b04bf23a260f5de961301d643e3f2638b0660c4497f8889916800f2b8df7aef1c9e049c1dccf95c106e5ab

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 df03470fd2b279c76095741464f34c6f
SHA1 dcaea0296c3f40d88b5d4b3197c740c972b70c1e
SHA256 beffb2f2273ab9214f508a981e680f3c652a1d606bb96e756d8186d1a9b1d744
SHA512 b28a1ccecc60a94b4653cfa504dba4023ed833172e33b46b3829b29d5faf24b06e2ed50b7a576ac600611f86ecc55b9783367f3caeeba3f7a93b32ca5e3094b0

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 c44bb6851909c4fae0533bc9407f8341
SHA1 4905d32f8b7875e6c737b904b54f688ed02af124
SHA256 3e3dacdae325cd395fc2ae1ea3dcf833a11072258e3626654e7dfa83f224610f
SHA512 bb6bd9a7fa00dd3989788e094b534afb480854c564c3d61924f54a2f2aa035f7ed8dde1e8dbadaecde5943747f0ec07b27d1bf3f158f84398c727af6d0811684

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 0ac6c98a07b5d73b03580b7a5e080a66
SHA1 4780f7c0db82315e54176c266851b4c9f0227588
SHA256 018c9c2f3836c644df89edc2594c01ab835b8491e91a0cb6f4d98a9c7e18f6e6
SHA512 9e39f903aacffddac6c53a500bdad3ba04f0b8880cc67de62883dc7904daced6ef606c6e201c69da9b7f9ddf18515be2df9bd66383f44636df3043f3050ef952

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 db44648e80695adf2437112a4dfdf5bd
SHA1 7d03a1d2f515530515bcabf47ebba4c990b31bb4
SHA256 143a14e2217a8f48e64550898c738e6de58d52f181a4ad817c7d850da1d78e88
SHA512 f2d296a3d2d424271dc714b266cc754beace3ac0998939fe80b3f7907167b9e41c53d01dedf5402f68ac8ca67a49dfde44e3c34d61243fc703b883a327b71aaf

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 4e3d7fb279d010a348218ac5cb0e2758
SHA1 df0c3b25ec2f350495ca609abd33a3aeb7af6c29
SHA256 cf4c906df9809b2e3050855d686c73e2a2e54693e8ea0cb47b4768e117f07ba6
SHA512 bbf2009b654b7169abdb51223f97fb55a12c13da1a9558c281dfe7bf39e649a086e26cd3bd09f1998aba2728d141dd35de055410d891508df5e9572de4de70da

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 03a7cabd317f78de77a270bb7485da58
SHA1 2b6700d577767578eae5639fe64a3aa553a5b809
SHA256 f4ed7524d58ef5017d7e7728ab6b4b308e5fc58bc181d67fdb6097b7c1164bbb
SHA512 8bcd2f74dab593646a6225cea3e4cb4188ec642e1e473c2d94dbf7c0ac4fd1208c2f28d6137fd666bba67e9f7bc8396e9c687bad37832d9fe19af5325f4d9225

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 68d52c7f04e1e792806cba0e6009ba44
SHA1 fb2c1b98c2201b7a5c1a7544f27da9d8f1221111
SHA256 eb6c4d9264a72e9f6ddacec80735a214638cb1c214204a269f881811a06749eb
SHA512 b2a6d814c88dd19e54cf0e1893a8b91d0efc97b38d1012528e12042f3f5ed8cbe72770f58b460bc8da1183a7477009243ec049210ff843190be1a6dc8543156d

C:\Program Files (x86)\Steam\config\config.vdf

MD5 f8fbc03acf72232ad0b8cea896b22b12
SHA1 eaef2fba583f3146255e1c512df142bad35f9ce1
SHA256 4db0d1e1e5a5acf88adcceeb90066dce64aa7850bca391b7dce9d96f4f0bc071
SHA512 0754cb9f84d84f8d49ed0caf7a69e86b4f27cce4fd6640f56c28fd9e769b39cdc79a67900f8c013a19d4cbdba8b97efd14d7d95724594d76163000a76da814ab

C:\Program Files (x86)\Steam\userdata\1745429237\7\remote\sharedconfig.vdf

MD5 74e2ecc97a24f0d4f643b66915171e05
SHA1 dacb832064560c56ebfa8d76e4320242a191f678
SHA256 5436c3473a04c45b88c83c30c2af0e49a09f6951da9a8251d7cf1732d2e13ac3
SHA512 01a030c99bff97d0902ffc7e0c5eec799e29848ebba6f1a3d3eed70ecdb50175fd10afef2569d54a5a1059f062f25d5a6af0aac2a833ae54366985ddbc6f7bc8

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 9d8352c030840088d3f7082ee24a6b56
SHA1 98def02b5eb0166110d25f4d126d22cee1d77dc0
SHA256 da812fbe7cc8dcfc546fb6c460d76a36e3345c75c4aebeec10ebfe5115f55856
SHA512 84c2a494ac56d4b0918aeba716173ebf9adf3403d1242200b65456777a5432fc4c33779b3d124e05a7a96d6017f7013981cabb19d73fb8a6ca2a4dfd2a89b12e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 e856b3ada25b1796f264e113359446ce
SHA1 13a8177d5cf05fec5aab9f42185e37e588be666e
SHA256 3eef5bf913f2454429fd46a79cab0a87fb458b16d3e6fe193825df748a967ac9
SHA512 cd862e31b15d6921f46f14ffa1eb88d84150165ec5be9ab630cae73d542ec39c2fc90e9d3451bbe265099953d3fd5fabc5deb989be732c438a902840bf78b43b

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 d1f6e2ef1014612b3a02220712104c57
SHA1 869176e12319d1b7d29b7aa628af18f9c5e4da21
SHA256 be68ed8d24be7c7110e6bf7c71a5f62000f6c64e855369514936e5596089a834
SHA512 136e5a57a78824fafc3a8a1a58836ad350b0a57688e160fd2967a5a26ef4ecfa378d86d26b774adce2201c921efcbc9b771c6a14892c28b7597fb68015b7c0f9

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 9fdbf13910680f52402e8f4b902af0a7
SHA1 5825b2ca323f4f17d1b98221637d2939160fdfd6
SHA256 e2b7e335e9165491f9d1be591677a0b60c677a513797d117f34bafbc92218756
SHA512 c29e41368092f5005c6245d9b355cf0b4663cd66838d20893d6a91e4f97935a9ed2627f19d86fd75fc8ee9be4fa68bb514fb1b18c495f7f0fcd0e52b72541e89

C:\Program Files (x86)\Steam\appcache\librarycache\1887720_icon.jpg

MD5 7ecdaf8a54ec52b20640a88527512903
SHA1 3133a4d748ad3be61fe9db759339cd5de73339b5
SHA256 7bd8b75aec0a4d4a377f3ca3a023fd8b7c5fc7dc6a2a66d17f8cdfe5b731ab0c
SHA512 60ae2031eed0c38264f0d8db22a9b6efeb3f80c791e916e15a1730853162d56e0da014dbd93a5479bae4f3bdd5705ca89be70c90574a524abd1c276ed5c55a2d

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\CJU1DLGIE4R7ANY2RWXM.temp

MD5 b68b47cb5a10331ab29b4600d6dd305e
SHA1 e5bd85824a36615070c176a488e24c5a680802f0
SHA256 8c9f192332f6761e2a39e499b2b2db6dab7b2ce7954276c80446dcfdd3b38f0b
SHA512 69491bd3cd1a358b486c11a52e004c2cfcee7703693acd3de3b5fd31a076b8c5ccb0bfde0ed6fe21d8214f3acd0c4779e2e4f0eeb1210d50041e7604cea5733a

C:\Program Files (x86)\Steam\userdata\1745429237\config\localconfig.vdf.async16276.tmp

MD5 53a6d1d890b51cab4f50732ab55dce56
SHA1 4aa8da48539d63ec5db8944358be17e2d32d3fae
SHA256 e3f47424ed9928dd40eb5ef695881576408a1ac3c8d71d753b2ff61604d8e613
SHA512 32fa67d92d24e70f76a63b8e99e56ff0f274f980a96c56227ef501f91ecdf4f56b83db2f96be8d05d23ee145d60d8e795b77a61e7f5d9bd8bcd6702fb82c3a9d

C:\Program Files (x86)\Steam\resource\filter_banned_english_cached.txt

MD5 009ca439b8e68dbdb83850d51b07c736
SHA1 b8dd1986d15aef3dcba09c954577c780b549c582
SHA256 4bfbbfd0114ee78d7795835c64aae6dc6b525547748c5dd1150d7d1ff8757c43
SHA512 25e90b8b737b30879ec9073457cc7b30bdc46ed71b8885ce14f9c1946476d65c6bbdd0ddc19bb09c406cd9439837aec5c8ad007dbb5a4378842e1634429b093e

C:\Program Files (x86)\Steam\resource\filter_banned_english_cached_timestamp.txt

MD5 57f1d11cb14648e9a4a7a87adb75786e
SHA1 8666ac56b6f4dc4c8bc939413aac28ce23f6749f
SHA256 ad681e0f07eeb847f45d1d5553766f42238c7cc2a461993441aa24bf9ff932b6
SHA512 6249afa434425107827b91ceade61b4517b475687722c769bae8ff88c670bd1f79a028550d261f4f94885d3d240e423de7266c69e578a097cf834159625f10c1

C:\Program Files (x86)\Steam\resource\filter_profanity_english_cached.txt

MD5 61d18907a85f6f263431e335d6ef5504
SHA1 24b135bf8a2e8fed724e0738f823051f87769f54
SHA256 a99f8dae7d1acac74fb32d07cfe0915f38f5bb3bae8b6d8161c3a515c6484070
SHA512 76e327b6cc6e70a8bc3b95e9bfb649eac89616592a8e9f473b574a0584853769f2ad99595de5e9fa85a324d03a5c0f00450a32efc84c5eca0fddff1f079b5ef2

C:\Program Files (x86)\Steam\resource\filter_profanity_english_cached_timestamp.txt

MD5 0f05a9326e45df956fe606a840e8612a
SHA1 93dfdb35f1bf0e3bd44c90cd616a3841b408f088
SHA256 4725552dc2405c6b7f86b3c053f691b0ded93714002854092150695a06a2627e
SHA512 84bea476ca1712db6901cc87742295c92c151b2fececdac4b92c49305c1158bcf302b10275cb19fac9e85ab816849ae0060ad0487a2b88acedb6bb2aa97739ea

C:\Users\Admin\AppData\Local\Steam\htmlcache\GPUCache\data_0

MD5 cf89d16bb9107c631daabf0c0ee58efb
SHA1 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256 d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA512 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0

C:\Users\Admin\AppData\Local\Steam\htmlcache\GPUCache\data_1

MD5 eb66b72e8078131dbca57a9c03c9fc19
SHA1 c5c8e1b96cc5cea3aabc15100ebb39c96a058c02
SHA256 9f57283c084ae86157820593724183befc65a82d8db86cb749a1086355ae8f7d
SHA512 a0822dd23d677a4d5fd1dde47b4a4d779e6a597e108b8b8177add4e9b267e99eb3043381454dc3500aeee0efb34b08f8d58c4160fd061853f2e9aaa729565cf0

C:\Users\Admin\AppData\Local\Steam\htmlcache\GPUCache\data_2

MD5 0962291d6d367570bee5454721c17e11
SHA1 59d10a893ef321a706a9255176761366115bedcb
SHA256 ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512 f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed

C:\Users\Admin\AppData\Local\Steam\htmlcache\GPUCache\data_3

MD5 41876349cb12d6db992f1309f22df3f0
SHA1 5cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256 e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512 e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e

C:\Program Files (x86)\Steam\dumps\reports\89548ad0-191c-4db9-b82d-67fb707fd9f9.dmp

MD5 a3a9399d08bbf6188829519db7876f0c
SHA1 58ecc5644577aacaa0251ee951feed451ca17a30
SHA256 7171512add073150fdfaa10a72d46b0b64bdf2a879cc58dd45d105f010c17848
SHA512 01ba603807cf81a16770e549759664349f7f74e884c25f7fb096c367fc0fb56a9f30dab37c4a0a8dc510b31c7ebf86ecdb9f0338a2aa4036581cf9255cd5060f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000004

MD5 e13edde4a25e96e573f37bdd11e020aa
SHA1 84a0c3cc6cd74b149cc27de2b0fe48bc2acb70d2
SHA256 45b526e6aa5356b278aa37e67593a25d09c9653e8a0e71fb8e155111d3b7a515
SHA512 9ba4cce47994f949731e594538f56f423ee46a8e602fe922ab6e1d173b87831ae5a80d967d695fc45a08b25aef5c494518b43cde6b4709db690e904b2cc1c053

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000005

MD5 c5e39337f681f1c40f0efa29366109b6
SHA1 3df6cdfb2a6ef5d2e0b0b2832154986629dc3e70
SHA256 70707407660a3f4361c5b197db2be83f96fe74e2f1f95f0753e985ee30b7b84e
SHA512 f73d25aa88d2ff3bdfc4d569d20c327883b16600f76410c883e07eba51715cc65d8983cebfb681f2a0c6f888394749f9975ecbf5c9af428ec5f3e433874d6534

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000007

MD5 6f882cfc18469731fd8ebeca69365f7f
SHA1 78ad386807dbc130b1fbe5e1a97389e1e0e2981a
SHA256 b81ddb468e5604f1b5ddce3c1e15e0298432841752cd6be0c497b05fae7cc346
SHA512 75855a2b09abfab3476fc16b18d996e4a705980a1dc2c4f84688c9b8c7b4c1a6ed0a4dd7f6c57eb28838ba1999012a96253a1288f9445056bb2f7386b2315128

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000008

MD5 80957d40038edbf006e7d2f5656009d4
SHA1 d5a187dfe53774c0162a8635fd0f6dcb14b481cc
SHA256 7f888bc3edc1df60155af5c126f56a67f5f19b4a53421b2df762a146249fd289
SHA512 8cd093ab4c70c8f60f0facb19c6a4805f630de8d868b1bd2a6e985e45ddfd335050b6c0ab9765c87937228a69c8547f6b940e9abe43a14d630e41e1dd679318f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00000c

MD5 258f9d88ee5a22b75b254cb9b1748f4c
SHA1 5d3258de7b64f938f2de6f7c625d3d831e944617
SHA256 28547cef0e1ed10e3bc81837436d5a10ec68a6af336c7aace1496742b959e6ee
SHA512 c1ada12c2192b07e6bab354e601197cb4796560279949abdee52982916631fa16fbf922d49895ce2916e260b5d2d1a398b533d99f09757a7711b31869e0270fa

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00000b

MD5 e86e0b208bace33f1c570998675062d5
SHA1 919bd1458f0d72cf554d0f726db05c673845503a
SHA256 af885e69dec1e2789dd7d3333ce49d67710c8aa230ee30ef3b7f9a82f79f4ce3
SHA512 5126675d112f1b27f710b82f9fc04bee899652761a4ab409384d5d6bbf2a29f22976b105671a57ebd1c335ccf38e5e8769a846d4124a8dccb2a78530eaab0c39

C:\Program Files (x86)\Steam\dumps\reports\c7c28221-222b-4462-beaf-a8ceee975e7b.dmp

MD5 c3446f4de3f02920219663adade9c0c9
SHA1 df54bb7e1b37f5ab80bb69fc64f22411e06817bd
SHA256 64deafb7b0baee26c57cf084cbafbc578d8ef2f19a5b1ff4beaac9956ba112b3
SHA512 893e6c92676ccdca2cd44d82a731af40eb31ae285cd8d88278809067bcf89ce7757975e949623872066fa5ec2c8f8bc9aeb082ca8ddf79612bd736240f87e951

C:\Program Files (x86)\Steam\dumps\settings.dat

MD5 f45474569a928efe0cea64c4f4e12cbc
SHA1 ea605ab4b61560751b2293735ef4a805fb378124
SHA256 560293602e2752cf6a3da28665f9a7ab6452bb77150ea57e6c9fe340236d70a6
SHA512 594451c66821ca673a0e86537788e8bc98ac343bfc2c3c038120d205ea9a45d792d6b81a72420f9beb67febafa1a943f6e2a015ddb97d8270f7575d9de2e9a86

C:\Program Files (x86)\Steam\dumps\reports\61894652-16d5-444b-ad83-cdd451857758.dmp

MD5 d381d0010dc5ee5c6c87d23a3d103d0f
SHA1 cf91daf9cac235c1c51a2d514fda2acc78e743f3
SHA256 dc25a5a1a5117764a0396ea1fbdf8464eac8a128298d85496596931b893bbdb7
SHA512 18cc3534a261853088c6ef4912f84b64f5b12efd61fe02aa872f867e1dca0af841d57facb4f8a95183c817f54f6bef45e91395ceb12570bbb06b04ce0517eb68

C:\Program Files (x86)\Steam\dumps\metadata

MD5 c4642ed0597873ce3ed1e7b6c79d4172
SHA1 0a7419c7130cdd43ccada803063ab3e7c10f5404
SHA256 15fb61be3d27915da433c5dfefcaaa80f0099b786d12647288cb679beab16258
SHA512 6b7bfd76e80e6424636919052be0218fee5bd7491d1b41a869d53e537e739048f7cf9312ec07c29c00f4fca34a81fd3bd882bfb421ef7d0b927c4a93cfefecc7

C:\Users\Admin\AppData\Local\Steam\cefdata\Dictionaries\en-US-10-1.bdic

MD5 4604e676a0a7d18770853919e24ec465
SHA1 415ef3b2ca0851e00ebaf0d6c9f6213c561ac98f
SHA256 a075b01d9b015c616511a9e87da77da3d9881621db32f584e4606ddabf1c1100
SHA512 3d89c21f20772a8bebdb70b29c42fca2f6bffcda49dff9d5644f3f3910b7c710a5c20154a7af5134c9c7a8624a1251b5e56ced9351d87463f31bed8188eb0774

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 0cf0df0146265d72da7d5c2deb170d60
SHA1 93c1eddec29ac7197681949f65409ced046b3330
SHA256 1dd423d8e7c6859b6b03d3c9e154e8ffa19f0c441ef9b3c572e6b620483c7613
SHA512 809778b8d34ca6ef6ddf99c2683fb7c9f65c12403c024bb84510c911ec2b1902d44a965b33a2527e301f2f778207fb210750849b552a1fda1b66ee378fc3425f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 15ba735c20bb756d5d381b113bcc9afb
SHA1 3d8e9809ddc42b7c916566e0a3f51f00e748338f
SHA256 9059e01f2ed437af29f9a3d8823342619b663b30f9dae672c7302726d7adcc45
SHA512 aca978e86a1d5e9aca8abc2f61c30ff89e7703a41800e905e13471ca71735ce4e3bb7a2b5b478dbde798d112236678e5c09594b59f29ce3c17b6ff1907624c3c

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 feb43d023a18d8320e5d3219658f8169
SHA1 c9aeec8d3f1cc2173dcd3903f9cb8988c8461492
SHA256 8897f3f0e8a610e33fc72cb6e5c099d2062ab219143e452c351e50eaf97ff53f
SHA512 6231ff1178d8758f69058313c39ff11339f140286ed9ac364ea0088c574cdce93c24870a2c0b108105d0e7276ae1c6a6759f602d3c25c1bf5bad434c9a629cba

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 819f4fdceac58f0ea87eec42e85da4e9
SHA1 b6e774b854491b25b58231f92dc023edf11c5538
SHA256 53be656942206c63e7d3b85b5f0545326dcda9c631656671943967d9791cb3d9
SHA512 df58819ac636c67ab6434961c11523d7918446cbd8f6e6870a6cd820367614e06951f4e8c105fbd7aca6099cc9fb3fc4efdb07ceede324d2d0c2fbade3b90a8d

C:\Program Files (x86)\Steam\dumps\reports\8827428a-240b-451b-af5f-2c4d0103bfee.dmp

MD5 8e9f2c2b2d0f0cb16b305041d4ffc1b7
SHA1 ceedeedb16e4fd6a641ddd8e5ab8130ec3c1364f
SHA256 17cc34a0c6b7919188472c67e9d956868924344e78272dbd36a303db36dd3e3a
SHA512 d2d65109d37cc16b4ac250f240ce1fe429d5c7024c039d856d0f87dd147e595f6ae35f45c816f9c5adb66a65e8a6f5605a56cd750b9aa20b24178ffb292b7c6c

C:\Program Files (x86)\Steam\dumps\reports\3c818e1c-347e-471f-af2e-2b8b317179d5.dmp

MD5 20dcac71a72e76d7b92f4f54a8e2d9d7
SHA1 24cb4406c71aef5befd52bd8f89663fa62ca5f27
SHA256 08c0dae152ace78d1b4939a24f68784b86ddf0e8336f532f5a50035efba81de3
SHA512 bbe11c2b329040073c8c41b46a68b48d5ecbf7f8cf8d9f2508c574f620c60e629581df2608342fd045373ae2d7028ffce8f26c9a2c7b552fbfb903f9b91b7eba

C:\Program Files (x86)\Steam\dumps\settings.dat

MD5 3ea837d2123df482a8f1ea356db74233
SHA1 fa22ea2e8dedef48bc41da7a8d21f6620fd43241
SHA256 2f68b26ffcd814b28db94fbeb4bd6e95cbeb060d67c9ce0b4189b981c9e91f71
SHA512 086a603e81ee81ea534cf63e340a0a99ba2c5be404567ecc6b8b09457beeea04e5c3ebdc9d402bb3de14fa9fbb91ff52989c5df078ade416d775ad5af3f19fe3

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 7be5db07efc242a55422c9dd0825fdaa
SHA1 a3679b26892b2dfdad7a122920f08d195ce45190
SHA256 910433efb8a9832409e7c01ad884ebf131a85e5ab1105456b72034060e762256
SHA512 dfce57dbf1aa16155c6f5f00e834a2d026cd3536fb38748009484cde937fbef4453532d8b3903139af13d2598aef07d698fb5d6c45057fa8b9bac71bbb721e6e

C:\Program Files (x86)\Steam\dumps\metadata

MD5 7dc5a370aabf6816e4987ef15ac0e9c5
SHA1 9db00de6bf035caad900324fee519ed959bb0b87
SHA256 72e82435dd51c0ccb8db92dce845631a30cf338af811a60decd5bc052b51c3f5
SHA512 f798bf8438c2b009a37520a49a66ac426f4b0d35b9178d7abe480f86bd42d4699d788e5e429e049e89197b1e446e0e63c7c82f98ee9af500cf1118e9f98cf98b

C:\Program Files (x86)\Steam\dumps\reports\e1f112c3-663a-4392-aefa-9478d62a45b9.dmp

MD5 45c6192932ab924264c74eb44b6f393b
SHA1 4a9778c59eb7c1b1c5ecd756503b9039cf04dad3
SHA256 39b77fba19a2009869b20705d5198b2763ad74b51891716bf3ae3f27c34de378
SHA512 1a15480d176b989ed37e5447615c9edc2f2d2ff800182651b3164bc240af4df880448157a05ebc3f4fb87ac568a8b4933ec71f215e500dcae601764e9b2c3160

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 0c705fe9083d7ac84d3857f573fd10e0
SHA1 d3b1db39726eee96c58fd1522d7b764666509b3d
SHA256 8a14571ce5700479c3f2ffcc2e036d1bfd1d401f60ef5b872ae5c08ac6d2199c
SHA512 5a8cd7316dd34678d95d37c1ddda9476d0ae88df5c3fb2dec4df096412833633af4d36b8ab0bc955504746220468c8782bf5296799e471358f5417c7e7e2e9e2

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 026de7fad10df9280f57abf34dc4713a
SHA1 0d8024e1a021374e5284a6361a10fad5de90d2f2
SHA256 2f3fbb201624b51783df6014d6265dd7e0caeaeea1b4897cd0c09950ffff449d
SHA512 030bfeefc566b7b20cf8bd7039d76a2b99084f9b5f55d990b245f4e671fd0156be6fa520cafe3a19c53f7b8626b99a563d11c0615d8769727a3b709072cc1ae6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 52de9da260d5b7e04a2d1c666f689dca
SHA1 93e0eae689d132f967151ed57a3c8924850bda99
SHA256 a4355a9b6fd84719e9f3d40d1d502bf864684f894c27507faad9b7ed235b4ce7
SHA512 20d4976ab6cfb932bf75fb1f5c482ef46c704e7b4d3131960234e0cbbaf40cd0b3b3e7c524acdd12a81fdc654f8058344af97f70654ed6be6044dd04d27800d8

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 017e4df460763881968fdf961d23a37e
SHA1 a901c9890ecf45446153fe9b40ea887f337f093d
SHA256 9cd1aa9c8fad177dcf9c92783aefdf5fe391c7e0e0959fb3c7bbf1a587b390aa
SHA512 f80863b69fd17665474592ec41a8062d2828a09dc19ca409b8996ffcf91b12b4cb609bec429f25f94b3a5e6fb0ec95e393c03dfbc2dab91a29121f2f15eedd58

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 99f115f7107bae78e99b7656b1cf21bb
SHA1 b37a2a7a58845e9232b07d08f451c9c85db1a693
SHA256 da5d7d803de31564b8b95210ea283740761502ca9d65348bae1e6f7ef9f304af
SHA512 318af6fe4f6406b26a8846c0d3ee01a28228312fff5d2885e7e9372dc0c4bdfa44e2816d02863c1f7993ad68b7021e327e6e437f97ff48a979d015509f97295f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 8aa2b34002e89098d641933902c7995a
SHA1 f168803b4a9746f4dd1efe4219bd2d751715f590
SHA256 1cd3c032adc15189e4217ffe11456a84b28d1e98d5fd53e550a9e3ca1b33ede9
SHA512 f0b96473ac6a7393494de6fbfb1b49a168fd0c0528db2f2ea0cbf7c3f0f3c33c2ed1f05640d4fb90f9af84ee32e61f129ebd5021e20550c04b68957d99d8b6ba

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00002c

MD5 07247cbd12d4e4160efd413823d0def8
SHA1 517a80968aa295d0a700a338c22ba41e3a8b78a7
SHA256 41464efd9a32a5967b30addc21fe16cd0a35870fda56658b531a9a2434b4d829
SHA512 27e0e7505d41891e70bd06733f96e82e45061d621a1d20bbc524fc89c5406a799cf53d98c0fa256cb4ebfc19750c9a05531a8d273cebc260d48948edffdf6244

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00002a

MD5 d45f521dba72b19a4096691a165b1990
SHA1 2a08728fbb9229acccbf907efdf4091f9b9a232f
SHA256 6b7a3177485c193a2e80be6269b6b12880e695a8b4349f49fccf87f9205badcc
SHA512 9262847972a50f0cf8fc4225c6e9a72dbf2c55ccbcc2a098b7f1a5bd9ea87502f3c495a0431373a3c20961439d2dae4af1b1da5b9fade670d7fcaed486831d8c

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00002b

MD5 2d64caa5ecbf5e42cbb766ca4d85e90e
SHA1 147420abceb4a7fd7e486dddcfe68cda7ebb3a18
SHA256 045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f
SHA512 c96556ec57dac504919e806c7df536c4f86892b8525739289b2f2dbbf475de883a4824069dbdd4bb1770dd484f321563a00892e6c79d48818a4b95406bf1af96

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000053

MD5 e4aed0cbc14dcf36a3a7f7178c4399f0
SHA1 df7e94618bb59b707543a2522f6707801b757c5a
SHA256 2b9ad359928842cd82d8ef3f70948f3b50bf7871bc07ffa3de490dd7b52ef6f7
SHA512 5b0bb8c57a3a6e411d20257979b42b4152ee44dc6fb694709d824ffcfc0fb2582520338215cce6fc883b63c8603c4d09a8bc86668c56b21da9f45ad130594415

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000052

MD5 dedacc2785847f326b586c427b50c117
SHA1 bcb8a27228fc5743b30f68da0e0f9bc013981e34
SHA256 03a88a355e910f96633130188501096ac784646d78c8e919ce83d069b8764451
SHA512 7e54324278d4d85c5fb60eba5c795ef9ebec662d8947518d6cc2828c7ec43f23d1e94f09a18c5b43cd8b219801982cbdc7cbdda381e9be17cb8bd88be51dbf8b

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000056

MD5 16ad64d369caaf165edfb49fe2f7d2da
SHA1 a00ac5223395901332bf3d2beedfccda0ad58e26
SHA256 5d1e0a5eef26ba6b7cbc03020428efb89f3df0b7a06516befe3a25918f385104
SHA512 dce7ae59da16e07fd7ebeab3ec7ddc460066a9858240a1ca63e6bf6a5904e37874b139031c093a25b2d216039adf75c68aeb3c7d4f2b190900c1de7020392ad4

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000055

MD5 ffbc132e5a51e84b5122f3f5afc3bb2a
SHA1 2b99d3bdc19a7cd6fe09e3ea87a509ba0de37086
SHA256 b6854005b0f21f426a2c70635593d9c2385a791b320f57b7e2989ee5d21c6692
SHA512 664e753ea81c2c2d56fd6a3629e626d64288befdbd3e66bb2ae6bf558fbba3613fb2d0ca9635e62e9fa5f779c2bb62577eb07c0d23d3a14166e33b1017ecb76d

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000054

MD5 d86462dc6e941107cf4990235da0f50d
SHA1 ea956072ef27f75f2946611491aa9b9e3f0b6215
SHA256 e3fb039bc2b33024ea72c9db91136b2e21ef27d8bfd92f6ea2b2ed0c17bbd9fc
SHA512 b2dcdb1bc600eec48b1e868677b4df9a22a99bc2222ee29ef107a40fc7e622382a56029d7207a498c5a6de9eb5e6790210d0504fd45055ce51666abced8af06e

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000096

MD5 220d457252003a47bd6c120b059c2a92
SHA1 35f68a1017339b27c98a64d87540d7adcd241ad1
SHA256 4d1f5f98d7e42ba4338d0388fb386344d5c374a47d45fde1ef5b3606080f5e8f
SHA512 7768d3c36cc77be7088a1ff5529e6cde2ccc1b0715c8f3dfbf7447685414e7982aa0202e85fb913eaae8be4ec70d3a8c5d09953e7f3ce524b97ba8d266f91d5c

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 2b5aa50097411331cbc5391903d7b3e6
SHA1 d6d33a0fa2dbb3f17827acc1658928dc3e1ff225
SHA256 26d577cfceb396269f13e04ee7b67717474b5c90122e7b69b0755cd057c9289f
SHA512 f375c15ae304f231dc52c4d173dceed68165f8c8bbcfcf7922605d387022877808e4c44d6241d56562f4e64b333836acf98e62633be1e5066ea2fc2ec5b55583

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 a568cac48dc7c90af9e1e52d20e9e490
SHA1 d7f0391703f4b9f23a8fc0237bcd802604d4b1ca
SHA256 245e72b3a43274a5ac9b2f6e06105865a5f02a41c2b356b7a6287137e1b0b306
SHA512 19d4f9a53998e0d952c8d01c8f7bbf8eb8a1c0674131bd813587a0595fc62f5bdb1103fb012e86c3eb2f6a4b5c23ba49d260a4fc4f117a45611540005b022906

C:\Program Files (x86)\Steam\appcache\librarycache\1240440_library_header.jpg

MD5 a905c283ea4e091704de2b966a91fe18
SHA1 fa793cbf255ae2b3e52916893a2131538cac81c0
SHA256 7d2f04db75fdbeab47e62769b00bee2985621ca1cb29057c53c500430b67528c
SHA512 885dfe866cbc6781c1d2b93030112c130520671a2dfd642a4e96bd85c23f9df69988c65415431897232cfd6e0d3699cc167736bc1ec56afe2705efc5ab14cf83

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 a5a0ca28af38407bba4c907e83b32020
SHA1 d74d1c688af31d4966444c71238d270836c3fe03
SHA256 9c720b53eb0e9716d06ce401d25833c4c8ee8f63381df5d5957e1e738e7da49e
SHA512 cdb06d8cbc76f881d0639cd789ec8ce7fcaa249e329914c722d16ea48b68f02c21cb9386b450ed8ba6ed41193a28f03fd94dd8cc1845676153f1842ad2e1f5de

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000078

MD5 cfdfd0db5076a97a980adccc9b7f249c
SHA1 0effa41d34e96b210276f2cfd414703f1c6f555f
SHA256 c4ae1786c0126e9352c72125e0fd6e43a398b2cdc9f35d7bf47d61db9bdd3494
SHA512 4d5d8d91145b7411f9792cf551e32f2df3bb9313e75993553458332b6cc055aff7735c29a3f956ee60de104b448e0227af938689e3ecec154e583198658be86d

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000089

MD5 3321babc8588c8a19e4be397a128c8f2
SHA1 64a03a20a33e9de9f180241c1241100f7b9fd260
SHA256 4cd6adb94c2e7081463172307efb0498e4c7f88dea7ee732a1e80cfdbd4aa598
SHA512 b7f92b875dcd79dcc0cf1bb4eb28e3370cf6b03fa81839fb55c3c9ba45f5aa35b3a582569ecf91218cb8e0634dd7555548a36f1802c355d4831cebbd1dc09112

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00008b

MD5 c818e5dbec3d4253525a132d96ea5ac6
SHA1 caab9fd7a2a358dbead8aeb89b1fa27b51136e64
SHA256 6b7a3d4029da31b859158064e32c13e3c385d88c1cf9431ac00fc8ec3dbd8f4f
SHA512 3b29853d262f5849c9eaddbeac9f48bde88e7b44ccdece2f8ae578b0c8840214d85aca6f3c76b388dc151e2c23ef5d51c5e5ec859f84361928293b4cd34cac76

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000087

MD5 f2cadc56c91f6baadf23aa08a11c0f15
SHA1 a7d73abfbc962c6d5965d3ab1f72ed315914a153
SHA256 86fcd26dde8fdfc03c0a64959dc029efcd207379c13c464a39ce35d87ef6d6f1
SHA512 d7a80fa84cb87c333a74953820f71d8b7cbc1a7da76071246a0062a188a7dd84bf195d4cf540754852218cd8a253d3515294d555c4b708bcb77223e3e743e8fa

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000095

MD5 56d2d47eae45fcbf5b8df228603bb173
SHA1 b5ce5ee684fea1be871a97ad42be75206e062244
SHA256 d7a3b17c2910feddd889a833191783cfd53e203dca6e79b8095c9816924f9f6d
SHA512 0b959653fd9188c58b2569ca88365c7b47d4beb0f9d4f56ba65ab8de80a76a73cf032ee813e3fdcf428aacf8d7e0edd22a391e14203ec5c4278f9c04112a4fa1

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000094

MD5 87f7bc3c30b2f94b27079e7ca386bb4b
SHA1 e115036d9248baf668877f06b7a95a23ab038b81
SHA256 8245dae7b1c0b598d87f2ced6ab949776ac26763a59707a004f2befb3fea5ee2
SHA512 0d62ebbbaedfaf8c0b156226daf12078ef88d6eae1059bb71508281292ced7b628737fb83c2698c5bad5fbe03e67568c0926a57049ea8be90003fe81bfd07f40

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000093

MD5 81bea6adaa37f21217e8cb0bcf20d691
SHA1 c188b3089ab07a08ef1fe285851df6f3775eb3c3
SHA256 7ab33459957bbe8d6d3ae6f12df06e6f7c2368259f5f41f0ac2065e4e8b8ea07
SHA512 a87a206945cff9752271ac34335adf51286b7ca6f1cb363918e562969328ee7df1e2a87e384b90cfcf2226d6981b2bcbe607a896470d6d5f9c1438c253be3f7f

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000090

MD5 9bab343e771f91d80d452cf971b7b8df
SHA1 12288b5d42a0cc2330aebe355581dcadb5951e34
SHA256 8c7a2e251637cd99ad210d757feb2dc1b4348a56da99b53b0fb76e7d1cfefc11
SHA512 9f512c5300f73dbe6b4fee330f37d79183bb6332ec97e5350a6a52715ed44d620497fb703241086ae7645a7fcf80740855426f7c1c169b931ed6d264b28236e2

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000091

MD5 024e408044ed4c1bba319029953f9ae8
SHA1 babffe0814834e516183d2270abdb7fd27916aa9
SHA256 5fd022e8b2787b1776180a976d66741ceef3c2c94bfa287bc554904dab9cf794
SHA512 9e010aa4dcb95d62acb938c809fa6a361218ff0f997ffc51ad405007739aec7032bc9968934a72cd27edc3c8ca67921338952773b1033d5cd0fa9c355a837e2a

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_00008f

MD5 522eaca5d9a75fa4c82693545963e004
SHA1 952285f2f69f4792d0e997b5bbb7dbba94b4480a
SHA256 2384a7f6dddd688985d578d352cc0c778efbb34975f43007dbcef6b9c4cb6b86
SHA512 2778120bbbd25bf8ac8f80dbb08f38f9e52397a132c219f90a8ed928f91138afc1603ad1ec3fdb6dea33d13cf0ee3b8cb244747788ca0ef7bfd4ba297c8023fc

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000086

MD5 4d9cb1497bcaa30031134f8045d15204
SHA1 d049bc6210477eef4936b55656578fdf4299ec28
SHA256 95cb1089ae1ed1799bb6d2d9509a4b16b09c10c1644c6d7d8490e4292b3838c8
SHA512 2b15d8b9ed572fbeaa93da8bf650f11bb4e7896595a7e36689c2e389976b0ba9f0e5b07d3b3a8e9b8233f1eb24f96ecb744eae166eefddc434e721505e4b2e62

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000088

MD5 cb05f82c5aa86dae7a8269a5928e5828
SHA1 b414fe0aecb6762d3d21c938d91b3bb77fa7fb4b
SHA256 3679e75dfdc37def6e25956d70240f73e96b30dd2008dee3f724ed2e897188fb
SHA512 fa7ed385e1bc9bef453c86c13b33482aa6d6ccf085406d40b7d896bf4b8e8c32bcae3523ac6cc59e1ffba97338c4d535de75b8315f691b00658053a45f56d909

C:\Users\Admin\AppData\Local\Steam\htmlcache\LocalPrefs.json

MD5 f62cf5d3e48c2207173ee2dc17313ec5
SHA1 66240f0803fd47c4a99e5f19db2d00a054cb7fbe
SHA256 9defd9ba366f4a739663669909c92d9b6545712fd26e909b8894ee16550bce1d
SHA512 b101e38807e42f2115565c1890b1d733bb20c1c9f4b99074b4d6457f8284284a605ee593b3a921dfdf86d5afdfbd43701b4e23518e0c180a6e8b63bac8b34fc0

C:\Program Files (x86)\Steam\appcache\packageinfo.vdf.async16276.tmp

MD5 9d99ca2bdfd43d99a35fa8928291b6e2
SHA1 40b7c44680f78371fd0aa1e2834e76915dc704d2
SHA256 7756e05e60e5e086539c0c09533390639e2a5cd704a1b0cc2ddf9cdd4217ff15
SHA512 4aec8693c29b9618718c06ed05af9736cc8ba92c6919f5782089d96420da4d12831648befe30a664aa191cf20da00e95a7088cc873e375fae04ca605cd8d9db3

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 08bcef97fdc5ccbc2ec7456174596eed
SHA1 cfcea347cde5a890281809f383f79e6f173a1265
SHA256 dcb8a7758e0e0d7c56e8f1a660690167fc8da970673f3d55520bbe1b562182de
SHA512 bc4ab4de854b7d605ab9aab9a41655b152acb2b2d8232e50c709cf6fe2b74c21607eef3d01541daddf3a8873bf710b219ccf05405a47bad7d6c7994b43f27a61

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 f618e328c8a6198063f2f05f813cc452
SHA1 fe376b7dec767391d46a0a312b0b8c47903ff79a
SHA256 ec237108c63c7e19fb9f92df6bb751e7e5389c9fcf57052c8e7bcb67594d806a
SHA512 c683e6dc0f7f54d666bc31bb4133c7657ee6f7a7684afe04b1c25dff022ae9758aa7f8aabbd8a005dbaa7bba2d2b8fbdd66c5150e715a4f2ea19b86d0a57a98a

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 ead9311e06b30a8665526c87c13cc37e
SHA1 90ea6ec0859b9a3a6b212ab2faaf8699d0312226
SHA256 94e1e15bc24e6c5dd40e2d35b211e7e0aa64f27efcc169523990b64a898d6682
SHA512 341530d5fb57e4143dc1b90260487e71e9ca9f683278365f6dbd9716d750f480cc59ea05d24e945f0c03533dc4550a5e493089efad7f2c40a9028c85dce9d468

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 7e53338d984231cd685eea7dd473c754
SHA1 ddc0d65ba8ed3dbc648dcaa4522c394448409d6c
SHA256 f8fd5d7d3576cc3ca37cd97077a1ffed921f44e697705586c20cf813b2c4ff43
SHA512 1f3949492a31a2620a6ca1e1b70360bf3299b8b962442210d56390eca2ae99cbdbbeefb1f6de483606a768bb57c415cddd8843017218d7eca7b378a75004efcd

C:\Program Files (x86)\Steam\appcache\appinfo.vdf.async16276.tmp

MD5 275b713a9effc395e980dd970c374470
SHA1 c49e039ea74ed3370cebf4b06b774dc782185720
SHA256 c9645d0603f4ae84d4a9dfbfec70b46c3cc49fd6b30507fef4a97485c3045682
SHA512 f450443c76278528903ae95d1fdb9438094be93e18f0b5710a2afaf7f4c6592b424507f26795aebfad0b45f86d80e8f19f0ea466201d93da2a79d14c21ee6029

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 6de0350de366efdda11f8866dc9a532b
SHA1 b3aea937d0fcfb4463cf19729738955bc201a21b
SHA256 fe212496b87f1a2e76d8053e5488a2589a1ea0390fc05a11fb9c5999eea9edbb
SHA512 9f3b202b35c6ef908d88701c3e7d1861aed7d767f890fc926666d46d3835335024e0d50e3dbe50fb69eafc51d8f7209032750d52623b4711f21c62f39cefde6d

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 fac27c59a0de1fbb9f0bd379e6a2a4c3
SHA1 31e29c579754a2cd890e5088f47b059964936ae1
SHA256 390786e97a4d98f4825312cc27006f5ae78fad58a7f14aa08adff4a56e85a91f
SHA512 8bc477e47ea8062109227a5635dac5f22b18af2a370a6a02ddb6f4e5950f34c008b59287fe5e30c6a849364e18dd24d32f0e87440df1c4eea2d321abbf9f00e4

C:\Program Files (x86)\Steam\steamapps\downloading\1625450\MonoBleedingEdge\etc\mono\4.5\settings.map

MD5 ba17ade8a8e3ee221377534c8136f617
SHA1 8e17e2aec423a8e6fb43e8cbe6215040217bb8a3
SHA256 ce1db1ad8a9512073164e3eccdc193f7eda036e1a9733caec4635de21b2865c8
SHA512 c18bcbcbd4b9a20a72b1a934d70db1eafef047f34f3ba2c6357d8e3afed07ecaab861e5571ceb58c22d4d3e5ebb34b51e366a0553c3153fbc263d1d80472e297

C:\Program Files (x86)\Steam\steamapps\downloading\1625450\MonoBleedingEdge\etc\mono\4.5\Browsers\Compat.browser

MD5 0d831c1264b5b32a39fa347de368fe48
SHA1 187dff516f9448e63ea5078190b3347922c4b3eb
SHA256 8a1082057ac5681dcd4e9c227ed7fb8eb42ac1618963b5de3b65739dd77e2741
SHA512 4b7549eda1f8ed2c4533d056b62ca5030445393f9c6003e5ee47301ff7f44b4bd5022b74d54f571aa890b6e4593c6eded1a881500ac5ba2a720dc0ff280300af

C:\Program Files (x86)\Steam\steamapps\downloading\1625450\MonoBleedingEdge\etc\mono\4.5\DefaultWsdlHelpGenerator.aspx

MD5 f7be9f1841ff92f9d4040aed832e0c79
SHA1 b3e4b508aab3cf201c06892713b43ddb0c43b7ae
SHA256 751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
SHA512 380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5

C:\Program Files (x86)\Steam\steamapps\downloading\1625450\MonoBleedingEdge\etc\mono\4.0\web.config

MD5 b127480ee9f0b8dab6a3f73ad79dd332
SHA1 7d776d730cbd253564713f36573dd8366782788c
SHA256 f1a6416eeedd9d040387fd85dcf7d6e074b6644c6829d08be220ff9fc32efb31
SHA512 00ddca43ad38127cf71477810c46617fc2ccdc33f197e26ba761151107eff701fec2caa51e43575fb5b4fbc11f640f525ba70b6b3e97811cecabc63773492401

C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck_Data\Managed\System.Data.dll

MD5 d314b95fb863cdd6119abc7e28e7c1fa
SHA1 5996b5c782631a2e7f276f5f660809c421810916
SHA256 23dae8379e8c412f69caa0668be411c87672a775ce473e18faf01f56c114e079
SHA512 bd74f8a6d19bbf45ae67117ad3fa8eafc397c16657197eb4dcbad3829ffa6096fc29c692b7dc8649a75c9d6078c8ed123806de27db290a9ecf445143187801a9

C:\Program Files (x86)\Steam\steamapps\common\Muck\Muck.exe

MD5 838db05b38f0acf5937f6240eaeb3bb3
SHA1 0b0b0449b51295976842576a2066975f46269b84
SHA256 d9e788d3e0ac8c17ac852aa423dfefd5768c9670d2dc55ef5e5bdc3f4e1b6427
SHA512 cb43fb99b8c36e94bbee700bcdc5965afe8625ab44a99732a7870c912b66619711e78b8665e0fb578d5a2139fdd88624663023d6d7bba072b6a5a439f318f411

C:\Program Files (x86)\Steam\userdata\1745429237\config\librarycache\1625450.json

MD5 5216ef382c2d09e344ae46f2c073acab
SHA1 91040770b2b51d00e6b7c32a37315eef249a55bd
SHA256 2200afe5bd5dccc0cfe9d34b29eedc49014dd673e5b9b2d1797e3f52a14b5617
SHA512 0a5bc2a98fec77d33e0aca0934d547746883d5ce2b6cfe23e36dc9afe5fbd51dfe12d955213cd0123b4ca004e225182bea6722d0870ea65ba5a808756e893f7a

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000071

MD5 a442a83bfe6698c7fd9568d542b26bb4
SHA1 7e6d163fd9eb28a9949e1bf2c607dad375d92114
SHA256 2bc2287d01309f26c232c7bf87b51c8577d0dccfc41b960daaee1de7fa2ab1ec
SHA512 6e454b9a8fda16e03019d515d49821ec2296ea01c88234681370fe110efc28b8fad1ed9afd0241c77c100ced72e19263bd19cf5df63fbe9acac418c16215864c

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 1b5d9d6acc5b8ef63a5659917742b664
SHA1 f8d2e1d0b205911874291a1501aecd765e43de00
SHA256 1a61a590701546665997b083bcf7487d8e6e4f9768c5e95c933f4359ae27d819
SHA512 4f9ca6ca707129a5dd8b99fe54724b2f4eef672e3caa75e7fce08f5689c81ade2eebff7a9be797c58f9f2692226a62786a0717a015363b7c1bfdb72a345a9bf3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d431c7db13e2dec6ad11a465fca14652
SHA1 5ce8eec6e78ab744877b7bfaa967cfc1a11ecfd7
SHA256 5c09d7d2e8bf75ec41fa4a271e7c2368b974abbd139a7d4bf4e8f9871f4a1862
SHA512 4488b2198f6f65d3c7c311140448adb2ecd4b436cbd17ae81744301e6398a45d00bcdc649c074bc1031e9e49d8168bb4f1a61a498846c770c4c49148285153dd

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 4d39881d1ad44aabb0c088e31040792d
SHA1 d79177d2912256d31bd85d9cbd9e911693a0df54
SHA256 74972deefd10244a44da976186e77cb466888de71c0cc05bdad8373fef2047b6
SHA512 136eeca1d86221299549f84e23816ca8db0757ea0b89924f1bfbc0a71e5a10cb6102d557cf5a5d296e93ad18693ee61289ab6f60a0cf3380ddf68ca85b560d80

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_0000b4

MD5 21d4e55f4dba82dea70cf28d2ee62b3a
SHA1 0d292c61844deface508dc52057ac0f696152883
SHA256 330047c5eb7e414467c45f77493a21f67a4dc0d67c481d5bbf48fea973b921b0
SHA512 ef5e1321c7ff7dfe1a49b359aec9dc2ecd790b61829aa24d6589c968fa16bcf80e32af8c9aeea9a34989c596d915069f0e8f5a9939a5459425d0a2757497570a

C:\Program Files (x86)\Steam\userdata\1745429237\config\localconfig.vdf.async16276.tmp

MD5 c4476e96f734b23b590d46283a512604
SHA1 3813fab02ae6ac78876c8f7c3be860e76c6f4a81
SHA256 0a4c5e6a8def16b34e415092ab82c644e716259de9263912a4f02ee5a8b18f64
SHA512 90deb1db5a33d231340343ce4ab0696a95e580803fec6b1b5d2bfbfd59a8f3d2182b30b657be1e20db39a588a3c1c18e87d2fccfb71167d518d584904cb626bf

C:\Program Files (x86)\Steam\userdata\1745429237\config\librarycache\1625450.json

MD5 51024f8abdb32c5728419b313f70d776
SHA1 c53463d4f49fa07c78cdb0d601072b2141a87ce7
SHA256 e646c693a965691df32733982c2e0a04fb5dd563d83a5982644ab848c77ccf4f
SHA512 518517cd5397e0b9dbe8a14e6011c96a9e98f67c82195a232c35b9c36daffd34f80965afcde193602ec4bae01f96e0df36b2ddbd3257f57576f6b73f8c0fceff

C:\Program Files (x86)\Steam\steamapps\common\Muck\UnityCrashHandler64.exe

MD5 54b76f1c17dbf9b0bd22ba98f077f5c8
SHA1 e4209736cf4f1c40f308e70be9e6e5c7c3670aff
SHA256 5b9d577e3a820e823f949277cb63180a68766e02982facc3c3370f9637924cb2
SHA512 ae65b5e61d8f3eaac100b6c7dbcc9b64bad306bfeaa790887cf8fbd5fb78fe0c60ac0b411c74602d48d14b50f56925c35f3e7f72883a1aed1fa531fc7787e4a9

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 862599830ffa9a5e9a728402660a8f37
SHA1 7b1d0b40c7350efb9985c4ced31da844fd777fd0
SHA256 dc34b3f2896273a9d08dbd025e591d6f008e77fda327a8a9e32780c7d34353ca
SHA512 b76f089da92e521abb1b18a91da2c80c459910637de804527b3001fdc6c061e3722ca2f6ad472e758f4878e5d2bb4a5e2e21334f2b9e420126b2c6b0a09b52ed

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 19f508cd5753e83ea8294a0014a8b571
SHA1 45313f3a70f64754b205bea7834cb72ed4813173
SHA256 0065fdd8796c67db27063f6f9a979a2f7241dde5284ad798cb3f1d1a4032b825
SHA512 ccadd70750c8ded3ea322e71449cbeef38f9d1d56f68dd709a013c7bd62c30847408ccedfbb3e354a4df4a44f21ced7e5722f4c7b6471736aeda64dceb781e43

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 466dbf1cb6f700e861f3013db0467194
SHA1 c7e5a6adbd8e16800d0eb683bca53b9e302eeab8
SHA256 fb999e3caa34368b89ab9449692c7f7f2bfd24849be50e7eb21a5386bec008cd
SHA512 5630729ff3dacd4eb3031268b4f56608f51b12c545972ff77d1cff261d467f3ac68dfba969935b70c5f28dcdef7f4a3bbf11bb68a274f60c7deae364eb3dcf1e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 a20600da4398caf2a36543e43f65e96e
SHA1 e931af42ca12f80ea797dcd8b1ddad3e3d07d896
SHA256 f3cd0bd0d52b66152807bf50f740ff99c46900bbece4cd605417cc1fa6500ac8
SHA512 b475e375f019e92f64cca1352f7dd103b8b5f52fcc379780ce957d763393397a3a544db8690ec9662b5f6bbf8aef26105baba14fca066e747c1211270dc23a84

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 809e64bcf1c36760efa10600828e014e
SHA1 a388b8afd98ffa396f10067269c33f23deb90c5e
SHA256 f5cb55e4690de938f97958535af397edfcf4c5449b5abd3c0cac79e3848852e5
SHA512 5add487e8b320cc0bdfc3f758967043300c37c8b66c7b220abb2a03942a81ed7d8c80ad83a81d38027a0fd862193684975aa0ad196b84fd45b76158115bcd50b

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 4818bf6c3b9279f990a5b92aedd6e8f9
SHA1 bf26f4f7a3748350a60d214d2ad1d8be58d31876
SHA256 64b7b37930f5b971bb5972e805fbd33cff59d7ace952eb1b81318bc991554f24
SHA512 725790e5b99165acdb7efedc33d439b3d8ae70aac5bc6d6a0310e5c7056b39dfb2c5a3659a34ff1e6efbab94b4ca81edb6252e44da3e0c0f85d657669c3f5ac9

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Muck.url

MD5 247f05969b5f1913df0529420cd0d380
SHA1 3053d153d199ab553e4d05e98e929c30619e32bf
SHA256 a639dc6b3abc36471151706017a5ed1f869f6bbfede94c59de1325028d913622
SHA512 1fb900110986907112cfc628314b5a45cba1544df1ae91b0970efbc625930e768cd0c28ecd4c229b05e77f9d39a2bbc39f876071c18df697414ce1081a699bd5

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 c165abd09b84d4d2bad0a9a32298cb0d
SHA1 6c1713fdda0806a82819dbf88d4a5dea9282651a
SHA256 e4e5ccb429cb1ccb800536d0e224ddd529aa73aa428dde127f8c0c8b52226048
SHA512 2f27ff7788f9c21fa7d280cef001a7f6c067e2332740da536227aeadf66a6e03ba001789bb93ed5a89a29fcc078c2208ece804b30eba7443ffbc9fdc46e2bdd5

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 3df64e4b4ef44a7e782fded2ab1305a9
SHA1 0e21ceeb7048d63509dadba350320c3eb43900e5
SHA256 51918cf1c8848e64acf113de69373dd2592e6456a76d4c68275e4038b6a3a707
SHA512 bddd2771aa2dc6a69e6459cc789f1cb7e2235ef7d2b4da271f76dd2de64d5a0a603f98ee9ad8a8672452f52d9af52c52124019dff8dd017689ce2b7f0942f91c

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 7d6adabfd0e525a39e4cc1d1a4865790
SHA1 fa92ee8a6342ba44919256e6a1157aad65478d66
SHA256 6e969015e985c50e5b02a28d151ac874a91cabe5afb179c944db0a426f177a47
SHA512 a71cce0f5a2dfbc1beb9bf2f715b73e5025c942763e6edc464c2a3b3521e2529267714bd5e699cf173ab3d0b0dca63079fde0da10e59d24552984f254fa21a28

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 f944f0a05465212c20da9dc0662f6b15
SHA1 63d72ca67d6f7dba7fb3d7a32c6b2c08fdfb369a
SHA256 a49e251d8ec36de7a2ac0cebc548fb5dfdfdbdc22840cd6d14fa9ccb773cedcc
SHA512 2d7675d660c6387e69c407e7f3651a9806580a15a2812d19fed09dd913bfbc012c4d877c844b4ddce6390359a2e05dae7d1e81bc1c6d4953196d2b9ddc38bf3b

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 a547547844d21a8205d6c2b86c703df0
SHA1 80fa388cab97e51e1c1a51ec080c78aa7a82862c
SHA256 c1a296ba9bf9b6a9edfbb43e1cb208612cbfaca43fcc26aa7eca9eb618284191
SHA512 d74fe083d15c11c8f2d30580f9132514fa78799216e5dfcaa4fad550254f9f11d6df4868bd674f9db5a0dac06bda1025cd9ca3f5f010a8c6e40907de4120ae39

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 9e6fa10eeb15a1ff6f0f8f44a2d33640
SHA1 52f0347fbdf27fcee2026defb1a6a95316467573
SHA256 e18d8af3610df5ea72053d8ecffa53c45ae2bcfb9e1134e0bfc366f14bb25600
SHA512 c5231f0227c44c3d3c8cab873de8dace44c22217c1f7dd921bf599ee92812e58f3b25ae6ee967badf2fde017fa09357110fcd3639a574fd7d7af3d36ef1980f3

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 f00b5bc352ffd635b81143ca862c1bd3
SHA1 daad98d0ca9854448ce062f07bfd5d95058fb698
SHA256 6854a14862f7784a6660ac82f098d83f0f2720bbf5c533b60aa02932189e22ff
SHA512 b9a271c0934cce3d2abfe720f77f971cc8e8612a9d6d42d62b8998f54ba68dcbfbd837657b97f81014299f32ebb022e3abf68e9b3b92c4aef9d2e10774cf431e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 b64810f37cc220a2f66a865924c8d5a1
SHA1 7963438285f7d7b844f37a753ac5c69c6ba063a5
SHA256 572241ac08518d36567e9d6d0f84feb320f552c6fd02e610a2e2bbba6a5a8573
SHA512 2749174c1d61c0b428737c89cc6d61430c97addcebb344f4b2fca09ca3e93a3ea57f362ed3eb438282b1f759d56a1a0b047c5f3b8e1aac6cd037ea51574a8a7a

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 00467fcad95161ff947374c2c7ad49e6
SHA1 50160b4e242976684c52153bdda647e8e7a6db16
SHA256 badf0f3700950a2c8d3336bd5921b99c643bf5962f3ca4ead960ab17d157aabb
SHA512 8c73b134851823e7611e638934fb02b7378aad80a03749aa960ab4967be6222a7c608421f5a8d85d509896da195a6aa2cbcd23508596ff493af9ee638e1702dc

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d356105fac5527ef.customDestinations-ms

MD5 4e8dd21d35cd4793a7276ece18e1b903
SHA1 1609eb54afdc8445f8456c819967e6a1198040ad
SHA256 38880c021cabfd4666b8ee61f8d6069078059852f4d2387b1411b20513ea020c
SHA512 50a50fffbdfc5bfc1bd2c3cd3d82f9b9d2896dbe3d994cfa70475dbca8f416558aab88faa04d79036f855c0cd4dba8e0e547ecb9073878cc72a0e45b5eb86dc5

C:\Users\Admin\AppData\Local\Steam\htmlcache\Cache\Cache_Data\f_000072

MD5 7bc1837717cdc49c511ebdd0e75122a2
SHA1 d31e0df252328b946984c6bde94f7b2f7c72d964
SHA256 97c39175b9c8c46a5f2be987c00be2ef556421fcdada1ed3b327c50cc36cc78b
SHA512 53b31bdecde75e8f50f82db69728f6f831d6a3452062ac6e419f9369ffe88f0ea6ace3a501d89501ff86fe47e05900ed5b482221d215898e28a0a4bb1f1b6a85

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007f

MD5 7212b8514839da2eacb1f55e12b6c620
SHA1 2ccc4302ec750623febf666847d18abe6a89673b
SHA256 78ae09581c4bb82783f10468b58ea220682c347cb065fdfd9290c1c8a23737a4
SHA512 9fab50ad356728efcf27075d5e9b1a0fc501b0c0e70f3940aa50211a2d5621e1628eb25dc4ee498cf02bfcd68c4c281be31f17b79f3ce0470ddbe01093d4c3fe

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 37dc2bdc5b98d787544feeb68c15d7f7
SHA1 20f6f28c8b131911e7238034737e8c0f106c2f8a
SHA256 74ce1fff8b3e355c6be4effa99e7cb209593b061c67e007e09e38441514463f2
SHA512 c1c41b734ef41559ff58da4ee3b1ccb5215f7843617643d0231345dbec4b42aa799db6cc9ce2e4d5280442411a270a68a0b3ec0d7a2bfc1191898af2a83d50ad

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\Network Persistent State

MD5 586078fab3408f4738dca4249558b580
SHA1 d524eac955ea2007b47f9b8ffd7c161c7ef0f9a9
SHA256 5dc13f10f2ab4c3f02ca6cd0ab63259bdabbbd331695c0dbf07a4c64a1bd7a59
SHA512 0cf9f7d94a2f4b408057fd6a87c0798d53ed79cdffd24f947856dce7eda8b5c7ca57fdd277571f986ec0d62a92cc930f62a8f160778ef6d85a5bb9dcac35e425

C:\Users\Admin\AppData\Local\Steam\htmlcache\Code Cache\js\index-dir\the-real-index

MD5 725d9e17acc1631ccf68ea653efb9feb
SHA1 65980650bbf3abea6c43874cfc8acfe11fa0b28a
SHA256 64c7c863899b08413ad8f794da8d6d05848f9bd458e93e073ed7c485df1cf617
SHA512 60ffbdbfd9dbe31be423710c7f12cb5d6acfeb1bf251bb700f65c0f82225743b4ab13111458f11380d0b0b90f7e000e9e20fbc2b094f83775859753cd55645f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3d311c257c30ce6fbb4ffb711d18e43d
SHA1 f643a853e706c424f54efb2033a04d6ebcfb1df8
SHA256 5222503cd5d2c0571256f391e3c3aa229caaeb16a4c000ab9a844fc8435361c5
SHA512 f16fb66d60065269e80ef77fdbda9029d516d78815d45a49032df1085aaba5688b0a43ed4b5fee049e5a7e3cbc6f409059a72e9c47871aebca4cf7351e30c132

C:\Users\Admin\AppData\Local\Steam\htmlcache\Network\TransportSecurity

MD5 478cfceb062e3ab937424f067422d0a3
SHA1 2dd9eedfe05bdcccb47407dd222809769852f3ba
SHA256 567834f8346b537b80230b85ba3497a8b3a7397eeebcd482ecec40c092fd1641
SHA512 da41af0f327ae3ed5c314da492ec912568778ae77607d9fbc2225a1bd2a1c506e85d722f4e4875cb08ddb738ea84f6b3ed52eb203227f743e44073d5b525174a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b60c39423154473e23334d6ce645c0e6
SHA1 f8b1ba3b9182a8d75ee4f46965a9b8a833b3d565
SHA256 0c753a608f48c746dd6f8dbfedcac9e52bd329128bb8f5dba616be9bca9cfaec
SHA512 d1b43a4ae2ac609ab3d967e435ef7a018bdb25f693b482bc6de62d48e80a07bd7092c05cf1fddf9d4c49a9fd45cbb9aa97eb49faed33f89da59de58605cfa497

memory/3912-18104-0x00007FFCBAC30000-0x00007FFCBAE25000-memory.dmp