Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\facebook gameroom.lnk
- '%WINDIR%\syswow64\taskkill.exe' /im facebookgameroom.exe /t /f
- %TEMP%\2jcdeiaq.mgf\bitb760.tmp
- %LOCALAPPDATA%\facebook\games\libglesv2.dll
- %LOCALAPPDATA%\facebook\games\loaderror.css
- %LOCALAPPDATA%\facebook\games\loaderror.html
- %LOCALAPPDATA%\facebook\games\loaderror.js
- %LOCALAPPDATA%\facebook\games\locales\lt.pak
- %LOCALAPPDATA%\facebook\games\newtonsoft.json.dll
- %LOCALAPPDATA%\facebook\games\libfbgplatform64.dll
- %LOCALAPPDATA%\facebook\games\libfbgplatform32.dll
- %LOCALAPPDATA%\facebook\games\locales\mr.pak
- %LOCALAPPDATA%\facebook\games\locales\ms.pak
- %LOCALAPPDATA%\facebook\games\msvcp140.dll
- %LOCALAPPDATA%\facebook\games\natives_blob.bin
- %LOCALAPPDATA%\facebook\games\locales\nb.pak
- %LOCALAPPDATA%\facebook\games\locales\lv.pak
- %LOCALAPPDATA%\facebook\games\locales\ml.pak
- %LOCALAPPDATA%\facebook\games\locales\fi.pak
- %LOCALAPPDATA%\facebook\games\microsoft.threading.tasks.dll
- %LOCALAPPDATA%\facebook\games\locales\hu.pak
- %LOCALAPPDATA%\facebook\games\locales\fr.pak
- %LOCALAPPDATA%\facebook\games\gameroomlivestreamhelper.exe
- %LOCALAPPDATA%\facebook\games\locales\gu.pak
- %LOCALAPPDATA%\facebook\games\locales\he.pak
- %LOCALAPPDATA%\facebook\games\locales\hi.pak
- %LOCALAPPDATA%\facebook\games\libcef.dll
- %LOCALAPPDATA%\facebook\games\libegl.dll
- %LOCALAPPDATA%\facebook\games\libeay32.dll
- %LOCALAPPDATA%\facebook\games\locales\id.pak
- %LOCALAPPDATA%\facebook\games\locales\it.pak
- %LOCALAPPDATA%\facebook\games\locales\ja.pak
- %LOCALAPPDATA%\facebook\games\locales\kn.pak
- %LOCALAPPDATA%\facebook\games\locales\ko.pak
- %LOCALAPPDATA%\facebook\games\locales\hr.pak
- %LOCALAPPDATA%\facebook\games\icudtl.dat
- %LOCALAPPDATA%\facebook\games\locales\fil.pak
- %LOCALAPPDATA%\facebook\games\locales\nl.pak
- %LOCALAPPDATA%\facebook\games\outputduplicationchecker.lib
- %LOCALAPPDATA%\facebook\games\locales\ta.pak
- %LOCALAPPDATA%\facebook\games\locales\te.pak
- %LOCALAPPDATA%\facebook\games\locales\th.pak
- %LOCALAPPDATA%\facebook\games\locales\tr.pak
- %LOCALAPPDATA%\facebook\games\ucrtbase.dll
- %LOCALAPPDATA%\facebook\games\system.runtime.dll
- %LOCALAPPDATA%\facebook\games\system.threading.tasks.dll
- %LOCALAPPDATA%\facebook\games\locales\uk.pak
- %LOCALAPPDATA%\facebook\games\vcruntime140.dll
- %LOCALAPPDATA%\facebook\games\locales\vi.pak
- %LOCALAPPDATA%\facebook\games\locales\zh-cn.pak
- %LOCALAPPDATA%\facebook\games\locales\zh-tw.pak
- %APPDATA%\microsoft\installer\{58e3fb73-8b88-4807-a803-79b5ada0136f}\icon.ico
- %LOCALAPPDATA%\facebook\games\updater.exe
- %LOCALAPPDATA%\facebook\games\vccorlib140.dll
- %LOCALAPPDATA%\facebook\games\outputduplication.lib
- %LOCALAPPDATA%\facebook\games\outputduplication.dll
- %LOCALAPPDATA%\facebook\games\locales\sr.pak
- %LOCALAPPDATA%\facebook\games\locales\pl.pak
- %LOCALAPPDATA%\facebook\games\locales\pt-br.pak
- %LOCALAPPDATA%\facebook\games\locales\pt-pt.pak
- %LOCALAPPDATA%\facebook\games\refresh_button.png
- %LOCALAPPDATA%\facebook\games\locales\sv.pak
- %LOCALAPPDATA%\facebook\games\outputduplicationchecker.dll
- %LOCALAPPDATA%\facebook\games\locales\sw.pak
- %LOCALAPPDATA%\facebook\games\locales\ro.pak
- %LOCALAPPDATA%\facebook\games\sharpbits.base.dll
- %LOCALAPPDATA%\facebook\games\locales\sk.pak
- %LOCALAPPDATA%\facebook\games\locales\sl.pak
- %LOCALAPPDATA%\facebook\games\snapshot_blob.bin
- %LOCALAPPDATA%\facebook\games\locales\ru.pak
- %LOCALAPPDATA%\facebook\games\7z.dll
- %LOCALAPPDATA%\facebook\games\7z.exe
- %LOCALAPPDATA%\facebook\games\plugins\fenix.dll
- %LOCALAPPDATA%\facebook\games\fbcapture.lib
- %LOCALAPPDATA%\facebook\games\fbcapture.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-string-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-synch-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-synch-l1-2-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-timezone-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-util-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-processthreads-l1-1-1.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-private-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-processthreads-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-filesystem-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-heap-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-locale-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-math-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-multibyte-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-convert-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-conio-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-environment-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-namedpipe-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-handle-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-console-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-datetime-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-debug-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-errorhandling-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-file-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-processenvironment-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-process-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\locales\am.pak
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-heap-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-interlocked-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-libraryloader-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-localization-l1-2-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-memory-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-file-l2-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-file-l1-2-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-core-rtlsupport-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-runtime-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\locales\cs.pak
- %LOCALAPPDATA%\facebook\games\locales\da.pak
- %LOCALAPPDATA%\facebook\games\daybreaknative.dll
- %LOCALAPPDATA%\facebook\games\locales\de.pak
- %LOCALAPPDATA%\facebook\games\locales\el.pak
- %LOCALAPPDATA%\facebook\games\thirdpartycopyrightnotices.txt
- %LOCALAPPDATA%\facebook\games\concrt140.dll
- %LOCALAPPDATA%\facebook\games\d3dcompiler_47.dll
- %LOCALAPPDATA%\facebook\games\locales\en-gb.pak
- %LOCALAPPDATA%\facebook\games\locales\et.pak
- %LOCALAPPDATA%\facebook\games\locales\fa.pak
- %LOCALAPPDATA%\facebook\games\facebookgameroom.exe
- %LOCALAPPDATA%\facebook\games\facebookgameroom.exe.config
- %LOCALAPPDATA%\facebook\games\locales\en-us.pak
- %LOCALAPPDATA%\facebook\games\locales\es.pak
- %LOCALAPPDATA%\facebook\games\locales\es-419.pak
- %LOCALAPPDATA%\facebook\games\connection_error.png
- %LOCALAPPDATA%\facebook\games\chrome_elf.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-stdio-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-time-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-utility-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\locales\ar.pak
- %LOCALAPPDATA%\facebook\games\locales\bg.pak
- %LOCALAPPDATA%\facebook\games\locales\bn.pak
- %LOCALAPPDATA%\facebook\games\locales\ca.pak
- %LOCALAPPDATA%\facebook\games\api-ms-win-crt-string-l1-1-0.dll
- %LOCALAPPDATA%\facebook\games\cef.pak
- %LOCALAPPDATA%\facebook\games\cef_200_percent.pak
- %LOCALAPPDATA%\facebook\games\cefsharp.browsersubprocess.core.dll
- %LOCALAPPDATA%\facebook\games\facebook gameroom browser.exe
- %LOCALAPPDATA%\facebook\games\cefsharp.core.dll
- %LOCALAPPDATA%\facebook\games\cefsharp.dll
- %LOCALAPPDATA%\facebook\games\cefsharp.winforms.dll
- %LOCALAPPDATA%\facebook\games\cef_100_percent.pak
- %APPDATA%\microsoft\windows\start menu\programs\facebook\facebook gameroom.lnk
- %HOMEPATH%\desktop\facebook gameroom.lnk
- %TEMP%\2jcdeiaq.mgf\bitb760.tmp
- from %TEMP%\2jcdeiaq.mgf\bitb760.tmp to %TEMP%\2jcdeiaq.mgf\facebookgamesarcade.msi
- 'fa###ook.com':443
- 'sc#######ams4-1.xx.fbcdn.net':443
- DNS ASK fa###ook.com
- DNS ASK sc#######ams4-1.xx.fbcdn.net
- ClassName: '' WindowName: ''
- '%LOCALAPPDATA%\facebook\games\facebookgameroom.exe' /id 100004366215252 /n SZItZmR5 /h AZWP0wUWMVjL-NLB /r 222 fbgames://gameid/
- '%LOCALAPPDATA%\facebook\games\facebook gameroom browser.exe' --type=renderer --disable-browser-side-navigation --force-device-scale-factor=1 --no-sandbox --service-pipe-token=3F58EB6F84B00890AC6F4B9C82B3D470 --lang=en-US --lang=en-US --log-file="%LOCALAP...