Menu Close

Are these two players using macros/aimbot?

What is Moss ? Forums General Are these two players using macros/aimbot?

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #7080
    badwolf52
    Participant

    Player 1:

    SHAS2 mode started at 2021-03-02 17:56:43 for Rainbow Six on x64
     ping:62ms
    update 6 
    DirectX version is 12.0( )
    OS is 10.0 64 bit 
    Real OS Microsoft Windows 10 Pro
    memory: 16326 MB
    version: MOSS 5,5,6,0
    Physical: Micro-Star International Co., Ltd.MS-7B24B360M BAZOOKA (MS-7B24)Default string
    Sign ID1: 104444700 ID2: 333605655
    User: hodae@DESKTOP-PME1GAL
    Drive: WDC WD10EZEX-08WN4A0 serial:      WD-WCC6Y7KVHPX7
    Drive:  serial: 
    Net: 309C23E1D18B /192.168.1.6 Public: 102.44.184.xxx
    Video: NVIDIA GeForce RTX 2060 driver : 27.21.14.6172
    
    Monitor: (Standard monitor types) ZOWIE XL LCD serial: 4AL01348SL000005445
    
    processor BIOS details 2904 MHz by 29.04*100. Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz 
    Directx11
    SHAS2: 7fe327ae2dd924e2318796508b6cff5fd6b70a3deb30a2b7c7403abdbd805462 process: C:\Windows\System32\lsass.exe
    SHAS2: ea098168999fb9244db8977c19a77734484c64b907f528591134ea6024c016dd process: C:\Windows\System32\winlogon.exe
    SHAS2: 346f6cc36b5633d5352ade072d1a7175037e2cbf01a5ac257a6173f12b547283 process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: 346f6cc36b5633d5352ade072d1a7175037e2cbf01a5ac257a6173f12b547283 process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: 0ac827c9e35cdaa492ddd435079415805dcc276352112b040bcd34ef122cf565 process: C:\Windows\System32\dwm.exe
    Monitor Started at 2021-03-02 17:56:49
    SHAS2: 039045bed8bdadfb85842d4cb30efe53fad1118d58e92816ae88ae7101c63c64 process: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    Windows Defender: enabled
    Windows Defender: enabled
    SteamId: 431224908
    SHAS2: 039045bed8bdadfb85842d4cb30efe53fad1118d58e92816ae88ae7101c63c64 process: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    SHAS2: 654f1b82d7c54ed268362abc23844b1cde64bc6918fad6347f3a719788c6e284 process: C:\Windows\System32\spoolsv.exe
    SHAS2: 8ee21a0ba8849d31c265b4090a9e2ebe8ba66f58a8f71d4e96509e8a78f7db00 process: C:\Windows\System32\sihost.exe
    SHAS2: fe82f2595329dbb31db8509d18cee3ceae464c0b02e9a3428b95c4705f9ad7ce process: C:\Windows\System32\NahimicService.exe
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: bd8b311fa9d7990c7fb8f36d48638f934ad50d5c99b37c8212463d85c0685b6e process: C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
    
    ping:67ms
    SHAS2: d77077d2f78e672b579079ba145c2f043ff81eaced03ef252de3f66f0a49a704 process: C:\Windows\System32\RtkAudUService64.exe
    SHAS2: d84396ccbc0c76e92f6388c75284c5ea435a6ba81ee89e587d38f81eadbebc1e process: C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
    SHAS2: a609031662be8dc5630323e758f17d9882798d7358acabb65f1eb85d6b44c428 process: C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
    SHAS2: 5cef4b53b5c349160360cd9c77cc12d059aad22e7a0ef421a2329c9612ead5ab process: C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
    SHAS2: 59c34f131dcedcc34252d2ab18754481843efb2a64a92996391330c321154943 process: C:\Windows\System32\taskhostw.exe
    SHAS2: 484fed5f039f429ed933931ba607b7efda7d1a343d79cfab60910e1843147012 process: C:\Windows\System32\ctfmon.exe
    SHAS2: fcc3962dd9c52586d108942dc2b3b5fba1ed3e667114ecb4640e6d0b6ea97376 process: C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
    SHAS2: b53f3c0cd32d7f20849850768da6431e5f876b7bfa61db0aa0700b02873393fa process: C:\Windows\System32\rundll32.exe
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: 2bc6a8de31ee747f11d8eb2dc8494b093348a7ed02a4b16c1b488fdd55205b80 process: C:\Windows\explorer.exe
    SHAS2: 03f57900a9324df23da95a46f58245649b0357f065b7f4128e387507ce9582e6 process: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
    SHAS2: 7e096e7b4f04191af2fe0cf9cbfc41e4ac4900db6455fc0fc9d6ca5bd170d612 process: C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: a749d8557d8025e9f60c4016c003a04735ff77860f1e6cd740e772c44f92a195 process: C:\Windows\System32\SearchIndexer.exe
    SHAS2: 65850f4fc09f65984e0f64aa498d93ce4df1a7f887297a847e57f2006763bd72 process: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 321656887526b439967b377c20c3ae04f48b11a77eea11f7febe47d30b3f7bc7 process: C:\Windows\System32\SettingSyncHost.exe
    SHAS2: 12bbaa82c3843b0210a32b000e0a065a8bab15ec92e41bd02f17c9d61f1aa533 process: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21012.198.0_x64__8wekyb3d8bbwe\YourPhone.exe
    SHAS2: 38c35262feae1964a324cd17cfb6053afaa025faf591f3dbb34d3d518d6d2cc5 process: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 09a916b7b1e1b29becc6e244d73bff9d05e0397643e62a30448b400f05b11755 process: C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
    SHAS2: 16c7a815a4a313d2c79816b3839376cc4d732dc0b136ee246ac77ffed543a3c4 process: C:\Windows\System32\conhost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: d4b535644848552464b6f5c9606b99c67c96dddca17dfadfbfea505c1ba63cb6 process: C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
    SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    SHAS2: 570b37a7a3ffdafcceccc33cbc1968feb857b73ca3cb4dffedc2e67e9abd0878 process: C:\Windows\System32\SecurityHealthSystray.exe
    SHAS2: f9c4fc1a73a105c0198b9bc00020da0dcf738c5cc0b2620559b839d42dff4bcd process: C:\Users\hodae\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
    SHAS2: d77077d2f78e672b579079ba145c2f043ff81eaced03ef252de3f66f0a49a704 process: C:\Windows\System32\RtkAudUService64.exe
    SHAS2: 3829f22776c931e5e0bd875cbb8b1b8170560e95dfbdb4b57a2d815dca1d29a1 process: C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
    SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\7e1385eb-d023-4297-8af6-39f00dd465d3\GameSettings.ini file: GameSettings.ini.001- Zip CRC: 2a1300cb812bf245a14b724b3e157c509a1c6cbe579158dea81a0ea61ef5ecc1
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\ce3ea754-b878-4f2e-9875-c6af1889ab85\GameSettings.ini file: GameSettings.ini.002- Zip CRC: 8ccfc0044257287cf3d3106d0664b335fc2a574cfe03e8cb2e3bc550d7ee9553
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\fd1d7654-6bc4-4a95-830c-59fd8d9795ab\GameSettings.ini file: GameSettings.ini.003- Zip CRC: 17e181d016be06bdfaa251fce6d94b296bb755c4ad7312e43eeb7a093fc1284d
    *SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 49c0b83e546dd3792da8d68fd0a0365e26acfc3cba73f909f8417bc06b4555a8 process: C:\Program Files (x86)\Steam\steam.exe
    (Mon 1) DX11(526) : Each 120 at 2021-03-02 17:56:52 file: 001.JPG- Zip CRC: 6f69e78aa2671ba1d3a1e26d57208938920f6751f320b868b92c67d270e4bbe8  
    ping:73ms
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    F
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: 20bfb0f435020ace510068753b5489381f80eca2ac9d19de005a855d74977544 process: C:\Program Files (x86)\Common Files\Steam\steamservice.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 855a66407e4917d6c4189f5f4aec73634e483a3c690e1766af4862cb67b258a5 process: C:\Windows\System32\audiodg.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\hodae\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: 399dfaa74cf9c50426a780137c6a06ba78d85e5d12cc9c8d89ff2352a0be46d4 process: C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
    SHAS2: 68ad9c0e4ce1f641816a650b51385d587c6ef394ff1032800e9fc2ea1e59b809 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
    SHAS2: e694b626f9e2321c6b56d6a5265b4244de946dcf0aee92ab19456d4eb04caa3e process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: aefd0894435d9a9f9e4987028800112601b24e62693bdb683a5127e813a04f24 process: D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
    SHAS2: 39262c34b4a81ed427dc3f981e5b2f98263f1f7678237ea20ec0ef57366893a7 process: D:\SteamLibrary\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_Vulkan.exe
    Windows Defender: enabled
    SHAS2: cf58e424b86775e6f2354291052126a646f842fff811b730714dfbbd8ebc71a4 process: C:\Windows\System32\ApplicationFrameHost.exe
    SHAS2: 29163b7ba95324898cf3aeba2a40bc77960409d2e6e50abfbf82a458fe2316cd process: C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 3fa14dca3e41c2269f965c7ca340ad2ee8a620c9c176b780be3b508f2889d79a process: C:\Program Files (x86)\Steam\GameOverlayUI.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: 55c8256d0811dce971b006391730d60d7f310eb9ffd84153fe898d3fd4f16fc1 process: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: 9520ee766d495b56baf1de89510888f4e2cb2d2efba5dc8a2739271d069395db process: C:\Users\hodae\Downloads\MossX643\MossX64.exe
    SteamId: 431224908
    
    FileCheck start for D:\STEAMLIBRARY\STEAMAPPS\COMMON\TOM CLANCY'S RAINBOW SIX SIEGE at 2021-03-02 17:56:50: 
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\7e1385eb-d023-4297-8af6-39f00dd465d3\GameSettings.ini file: GameSettings.ini.004- Zip CRC: 2a1300cb812bf245a14b724b3e157c509a1c6cbe579158dea81a0ea61ef5ecc1
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\ce3ea754-b878-4f2e-9875-c6af1889ab85\GameSettings.ini file: GameSettings.ini.005- Zip CRC: 8ccfc0044257287cf3d3106d0664b335fc2a574cfe03e8cb2e3bc550d7ee9553
    captured: C:\Users\hodae\Documents\my games\Rainbow Six - Siege\fd1d7654-6bc4-4a95-830c-59fd8d9795ab\GameSettings.ini file: GameSettings.ini.006- Zip CRC: 17e181d016be06bdfaa251fce6d94b296bb755c4ad7312e43eeb7a093fc1284d
    *-
    SHAS2: 9520ee766d495b56baf1de89510888f4e2cb2d2efba5dc8a2739271d069395db process: C:\Users\hodae\Downloads\MossX643\MossX64.exe
    (Mon 1) DX11(515) : Each 120 at 2021-03-02 17:57:00 file: 002.JPG- Zip CRC: 231e57e5fbdcf1d7c83d18f5e60964d0e1f65884238625d5f2fd6c851422460e  
    ping:86ms
    F
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 59c34f131dcedcc34252d2ab18754481843efb2a64a92996391330c321154943 process: C:\Windows\System32\taskhostw.exe
    -
    (Mon 1) DX11(519) : Each 120 at 2021-03-02 17:58:08 file: 003.JPG- Zip CRC: f5bce842612ea0da7700785a5ea1c47a05c50a5e1dea91ad8bae36c1d0d2154b  
    ping:63ms
    F
    -
    (Mon 1) DX11(517) : Each 120 at 2021-03-02 17:58:14 file: 004.JPG- Zip CRC: 14998631e2b92df3666ad4fcca3ad91ac48bad358496c5a98cd92e3fdb659f78  
    ping:67ms
    F
    -
    (Mon 1) DX11(534) : Each 120 at 2021-03-02 18:00:17 file: 005.JPG- Zip CRC: c03e8b5efb4cbf64fd7bbed521d9c5256270b3921bbcc39aa299cd9334d9b51d  
    ping:68ms
    F
    -
    (Mon 1) DX11(533) : Each 120 at 2021-03-02 18:03:21 file: 006.JPG- Zip CRC: 764af6d95f41ecb4eb48f1bfccbb9d5dc40d7c2d7d6bc98e617b1edc0b4a3873  
    ping:62ms
    F
    -
    (Mon 1) DX11(523) : Each 120 at 2021-03-02 18:05:24 file: 007.JPG- Zip CRC: 8a806e848e0a676d84721dfed8fec11f9034df8246a07ca1ed12f525c469cc9d  
    ping:79ms
    F
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: 20330d3ca71d58f4aeb432676cb6a3d5b97005954e45132fb083e90782efdd50 process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: 20330d3ca71d58f4aeb432676cb6a3d5b97005954e45132fb083e90782efdd50 process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    -
    (Mon 1) DX11(533) : Each 120 at 2021-03-02 18:08:12 file: 008.JPG- Zip CRC: 56ff380a14e08f2d572b5d8c9d14051c6a7fa45c166d9fc1bb792623809867ab  
    ping:64ms
    F
    -
    (Mon 1) DX11(529) : Each 120 at 2021-03-02 18:10:25 file: 009.JPG- Zip CRC: 329d6a1494e463f70e013a6b523b5a8406f2fcd77e183189be3a4376b245644f  
    ping:69ms
    F
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    -
    (Mon 1) DX11(538) : Each 120 at 2021-03-02 18:13:29 file: 010.JPG- Zip CRC: 9aa6c6b5f7a6e959274330288e716b925300f3dae95e4382890959ac00e1f817  
    ping:65ms
    F
    SHAS2: aea89789bbed818a851c4dce7b027200dbc24b8f76135537d9248f2ace802fd0 process: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    SHAS2: 10f460e517081a1bc2e59bb32c0fc948f1bf7c71f9d2270ed9bfde47cf4aa193 process: C:\Windows\System32\MoUsoCoreWorker.exe
    SHAS2: 600683fb8115f433efaadf70dbe283dba4cc1a9276a47f35b17da4244c63fb59 process: C:\Users\hodae\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileCoAuth.exe
    SHAS2: 59c34f131dcedcc34252d2ab18754481843efb2a64a92996391330c321154943 process: C:\Windows\System32\taskhostw.exe
    SHAS2: 560a369c5b37bf9644da6425116341a3969bdbaffc7bf98a2b847404740a432f process: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
    SHAS2: 7b22f3ac971592ffd86bf7aa021c293d30ac897f13a233eb904c4518216c03fd process: C:\Windows\System32\SecurityHealthHost.exe
    -
    (Mon 1) DX11(514) : Each 120 at 2021-03-02 18:13:59 file: 011.JPG- Zip CRC: 3ca8f37a8a2eea8634429f063ed8927a56f11c5a411ed02475093b895abe1cbf  
    ping:67ms
    F
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    -
    (Mon 1) DX11(518) : Each 120 at 2021-03-02 18:15:17 file: 012.JPG- Zip CRC: c23aa511782abd9a34dc8a4eac1dec92f0cae541f14ce061cbb7c773f3eb8403  
    ping:62ms
    F
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    -
    (Mon 1) DX11(530) : Each 120 at 2021-03-02 18:15:48 file: 013.JPG- Zip CRC: f413665dfe9972983f590dcbe4f1856605ae9f42ae4fb11d319438881157e120  
    ping:67ms
    F
    -
    (Mon 1) DX11(524) : Each 120 at 2021-03-02 18:15:56 file: 014.JPG- Zip CRC: 80e718867715a64eef3cb8e5dbdcd5de58f8224d71f4485302dc94dc0ebcd2e9  
    ping:77ms
    F
    SHAS2: 6cc44fbee63233a379e08b2fdf451890f6fce8615878c44bc1a680a6f13c9cbd process: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    -
    (Mon 1) DX11(507) : Each 120 at 2021-03-02 18:17:07 file: 015.JPG- Zip CRC: 07a6b3f2b30fb2a8d5f0a4c31d1da2bdd2be73711a012e91fb5083d6537e5687  
    ping:70ms
    F
    -
    (Mon 1) DX11(524) : Each 120 at 2021-03-02 18:17:36 file: 016.JPG- Zip CRC: 5c53ee4afb6d5195c87d96c927bec37f24a3805a8f57edc3a4a903083ba5e15a  
    ping:68ms
    F
    -
    (Mon 1) DX11(516) : Each 120 at 2021-03-02 18:20:02 file: 017.JPG- Zip CRC: b713d9602b774cbd9c6c6506377a9a1baba2df20f48a9ac9c8d76ee165222b8e  
    ping:70ms
    F
    SHAS2: dfe51b0739ed161f69afbb736460ebb7dd37372ff0659cbc20f4a9c850fbcc8c process: C:\Windows\System32\SearchProtocolHost.exe
    SHAS2: 33051d12c4dc42c6b5dadf8016bad36570ef9029f7d5d654eafb0f1c3db616c3 process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 33051d12c4dc42c6b5dadf8016bad36570ef9029f7d5d654eafb0f1c3db616c3 process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 20330d3ca71d58f4aeb432676cb6a3d5b97005954e45132fb083e90782efdd50 process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    -
    (Mon 1) DX11(517) : Each 120 at 2021-03-02 18:23:06 file: 018.JPG- Zip CRC: 678487fdc7dd014cdff4ff71b3193fa80aac80ef72604793828a993ddc801ff4  
    ping:68ms
    F
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: b694796228f8e4dc920b5addf8836812a753a5f3e226c4485f6d39227164ea58 process: C:\Program Files (x86)\Microsoft\Edge\Application\88.0.705.81\identity_helper.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 2bd0f77e9482ff3affda5815f773404c1e1c360bfa9a8041c12a161dc9db66e3 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: aea89789bbed818a851c4dce7b027200dbc24b8f76135537d9248f2ace802fd0 process: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    SHAS2: aea89789bbed818a851c4dce7b027200dbc24b8f76135537d9248f2ace802fd0 process: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
    SHAS2: e2f55d7874b2b7cadcf8b2b8cdf462d1be9ddcf7f46e3c8b9dbb680a3b1d0832 process: D:\SteamLibrary\steamapps\common\Soundpad\Soundpad.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    -
    (Mon 1) DX11(532) : Each 120 at 2021-03-02 18:26:10 file: 019.JPG- Zip CRC: cf027e9294a7b45afb2020f65b7b2e5a64e437f0cc0132c70bd747ca9d41a506  
    ping:71ms
    F
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: e2f55d7874b2b7cadcf8b2b8cdf462d1be9ddcf7f46e3c8b9dbb680a3b1d0832 process: D:\SteamLibrary\steamapps\common\Soundpad\Soundpad.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    -
    (Mon 1) DX11(520) : Each 120 at 2021-03-02 18:29:13 file: 020.JPG- Zip CRC: 65754a8e8ea06238d2716e1f8e82f3a1e85f7a4fb173aa3c13a76ac4f3041d4f  
    ping:63ms
    F
    SHAS2: e2f55d7874b2b7cadcf8b2b8cdf462d1be9ddcf7f46e3c8b9dbb680a3b1d0832 process: D:\SteamLibrary\steamapps\common\Soundpad\Soundpad.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: bccef3ec82ba62eb7b7d4083a58f08f5c923fc9984b455948a3681d1f4410464 process: D:\SteamLibrary\steamapps\common\Soundpad\SoundpadService.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    -
    (Mon 1) DX11(533) : Each 120 at 2021-03-02 18:32:18 file: 021.JPG- Zip CRC: d4aa7bff1694461824fa6be659869d190b860912305eec65311b98ed840d2ada  
    ping:67ms
    F
    SHAS2: 7ed6b168f43f1283bde9b43e1fa474a59ede1b9df40c8f5b67d9577acae4b42e process: C:\Windows\System32\WWAHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: f63ebbb6c6893ee5910623bd4b17b6c9180f42225f3e901b725e72f6825cbb6d process: C:\Windows\System32\smartscreen.exe
    SHAS2: 20330d3ca71d58f4aeb432676cb6a3d5b97005954e45132fb083e90782efdd50 process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    -
    (Mon 1) DX11(535) : Each 120 at 2021-03-02 18:35:23 file: 022.JPG- Zip CRC: 5d8fd2e7dbf9fa2886e7042ac27cf71ddefecd9b7cdb406188d1a8358ba8b888  
    ping:70ms
    F
    SHAS2: 20330d3ca71d58f4aeb432676cb6a3d5b97005954e45132fb083e90782efdd50 process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    -
    (Mon 1) DX11(541) : Each 120 at 2021-03-02 18:38:27 file: 023.JPG- Zip CRC: a2ae038b31f7d90a521dec7bdac4bf5c48ef6f3795ec7932c65d35b6d396dd1d  
    ping:67ms
    F
    -
    (Mon 1) DX11(541) : Each 120 at 2021-03-02 18:40:27 file: 024.JPG- Zip CRC: 02c86a978bb67149baba6bd779baf3f13ea1edc6adc4feaa60b7bf932846799d  
    ping:62ms
    F
    -
    (Mon 1) DX11(535) : Each 120 at 2021-03-02 18:43:32 file: 025.JPG- Zip CRC: 2800d6da21d3d2a89ed47f047b15326a90fea8fdde50c1499ddf978e0b455c69  
    ping:64ms
    F
    -
    (Mon 1) DX11(529) : Each 120 at 2021-03-02 18:46:36 file: 026.JPG- Zip CRC: f87d8f0891bb281bf26576289e9add969945b090c50518b0bb44c8bcfc93dc33  
    ping:69ms
    F
    -
    (Mon 1) DX11(536) : Each 120 at 2021-03-02 18:47:10 file: 027.JPG- Zip CRC: 829230826c6f9bab0f6c4a28a0d130b67fc78853312914b624313fb1eadecf49  
    ping:69ms
    F
    -
    (Mon 1) DX11(532) : Each 120 at 2021-03-02 18:50:14 file: 028.JPG- Zip CRC: 34a8404772003812b99ea5a6f46d99c038613cb4abe87e7e2db3de6a9b51134b  
    ping:88ms
    F
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    -
    (Mon 1) DX11(541) : Each 120 at 2021-03-02 18:50:38 file: 029.JPG- Zip CRC: c5f61dd74305e454bd9ec270c434caae73f12f88dcde9a20e4c44fb8bffbe1f3  
    ping:77ms
    F
    SHAS2: dfe51b0739ed161f69afbb736460ebb7dd37372ff0659cbc20f4a9c850fbcc8c process: C:\Windows\System32\SearchProtocolHost.exe
    SHAS2: 33051d12c4dc42c6b5dadf8016bad36570ef9029f7d5d654eafb0f1c3db616c3 process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 33051d12c4dc42c6b5dadf8016bad36570ef9029f7d5d654eafb0f1c3db616c3 process: C:\Windows\System32\SearchFilterHost.exe
    -
    (Mon 1) DX11(525) : Each 120 at 2021-03-02 18:53:42 file: 030.JPG- Zip CRC: 2b45af8c1f30e08e38d8f71cb4be7ec4154e9eaa5fa6169b645d2ec9c8ffc46c  
    ping:69ms
    F
    -
    (Mon 1) DX11(530) : Each 120 at 2021-03-02 18:55:29 file: 031.JPG- Zip CRC: f86e1a0b24eb39d4027581665303bea0b7da8ec9ac8e0866f7dfedf418f85821  
    ping:71ms
    F
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    -
    (Mon 1) DX11(529) : Each 120 at 2021-03-02 18:58:33 file: 032.JPG- Zip CRC: 56f082c897713d5e22bb2d50f97e87524fead9dabceb346ba7fbc84b7b98b508  
    ping:68ms
    F
    -
    (Mon 1) DX11(545) : Each 120 at 2021-03-02 19:01:37 file: 033.JPG- Zip CRC: 0494d966124cb0c9460956bb1a6002e2ca9b58e30bd0a86e845e9829c102572c  
    ping:69ms
    F
    (Mon 1) DX11(521) : Each 120 at 2021-03-02 19:04:11 file: 034.JPG- Zip CRC: ea3200ce441d8438d23157e10a478e373f34f3160c69d98fd69b24b506561489  
    ping:64ms
    
    Monitor stoppped at 2021-03-02 19:04:09
    ping:63ms
    
    Processes statistics  ping:63
    PID	Running Time	Kernel Time	User Time	Name
    832	00:01:57:56 	00:00:01 	00:00:01 	lsass.exe
    908	00:01:57:56 	00:00:00 	00:00:00 	winlogon.exe
    456	00:01:57:56 	00:00:00 	00:00:00 	fontdrvhost.exe
    468	00:01:57:56 	00:00:00 	00:00:00 	fontdrvhost.exe
    1140	00:01:57:56 	00:01:30 	00:03:19 	dwm.exe
    1824	00:01:57:56 	00:00:00 	00:00:00 	NVDisplay.Container.exe
    2564	00:01:57:55 	00:00:01 	00:00:03 	NVDisplay.Container.exe
    2928	00:01:57:55 	00:00:00 	00:00:00 	spoolsv.exe
    3140	00:01:57:55 	00:00:01 	00:00:00 	sihost.exe
    3364	00:01:57:55 	00:00:00 	00:00:05 	NahimicService.exe
    3400	00:01:57:55 	00:00:00 	00:00:00 	nvcontainer.exe
    3444	00:01:57:55 	00:00:00 	00:00:04 	RazerCentralService.exe
    3492	00:01:57:55 	00:00:00 	00:00:00 	RtkAudUService64.exe
    3500	00:01:57:55 	00:00:00 	00:00:00 	GameManagerService.exe
    3524	00:01:57:55 	00:00:00 	00:00:00 	RzSDKService.exe
    3588	00:01:57:55 	00:00:00 	00:00:00 	RzSDKServer.exe
    3696	00:01:57:55 	00:00:00 	00:00:00 	taskhostw.exe
    3092	00:01:57:54 	00:00:05 	00:00:03 	ctfmon.exe
    4204	00:01:57:54 	00:00:00 	00:00:00 	jhi_service.exe
    4872	00:01:57:53 	00:00:00 	00:00:00 	rundll32.exe
    5452	00:01:57:52 	00:00:08 	00:00:04 	nvcontainer.exe
    5472	00:01:57:52 	00:00:01 	00:00:14 	nvcontainer.exe
    5756	00:01:57:52 	00:00:31 	00:00:17 	Explorer.EXE
    6700	00:01:57:50 	00:00:02 	00:00:06 	StartMenuExperienceHost.exe
    6920	00:01:57:50 	00:00:01 	00:00:04 	Razer Synapse Service.exe
    7012	00:01:57:50 	00:00:00 	00:00:00 	RuntimeBroker.exe
    6904	00:01:57:50 	00:00:00 	00:00:01 	SearchIndexer.exe
    6964	00:01:57:50 	00:00:03 	00:00:08 	SearchApp.exe
    7620	00:01:57:49 	00:00:00 	00:00:00 	RuntimeBroker.exe
    7672	00:01:57:49 	00:00:00 	00:00:00 	SettingSyncHost.exe
    7960	00:01:57:49 	00:00:00 	00:00:00 	YourPhone.exe
    840	00:01:57:49 	00:00:00 	00:00:00 	LockApp.exe
    8308	00:01:57:48 	00:00:00 	00:00:00 	RuntimeBroker.exe
    8976	00:01:57:48 	00:00:00 	00:00:01 	NVIDIA Web Helper.exe
    9024	00:01:57:48 	00:00:00 	00:00:00 	conhost.exe
    8892	00:01:57:45 	00:00:00 	00:00:00 	RuntimeBroker.exe
    9036	00:01:57:44 	00:00:00 	00:00:00 	nvsphelper64.exe
    9072	00:01:57:44 	00:00:02 	00:00:02 	NVIDIA Share.exe
    6612	00:01:57:43 	00:00:00 	00:00:00 	NVIDIA Share.exe
    6032	00:01:57:39 	00:00:00 	00:00:00 	SecurityHealthSystray.exe
    9244	00:01:57:39 	00:00:00 	00:00:00 	nahimicNotifSys.exe
    9264	00:01:57:38 	00:00:00 	00:00:00 	RtkAudUService64.exe
    9348	00:01:57:38 	00:00:02 	00:00:04 	Razer Synapse Service Process.exe
    9824	00:01:57:36 	00:00:00 	00:00:02 	NVIDIA Share.exe
    10000	00:01:57:35 	00:00:38 	00:00:49 	Discord.exe
    10028	00:01:57:35 	00:00:31 	00:00:06 	steam.exe
    10076	00:01:57:35 	00:00:00 	00:00:00 	Discord.exe
    10236	00:01:57:34 	00:00:22 	00:01:47 	Discord.exe
    9252	00:01:57:34 	00:00:03 	00:00:07 	Discord.exe
    10396	00:01:57:31 	00:00:00 	00:00:01 	steamwebhelper.exe
    10428	00:01:57:31 	00:00:00 	00:00:00 	steamservice.exe
    10544	00:01:57:31 	00:00:00 	00:00:00 	steamwebhelper.exe
    10652	00:01:57:31 	00:00:00 	00:00:02 	steamwebhelper.exe
    10720	00:01:57:30 	00:00:00 	00:00:00 	steamwebhelper.exe
    10904	00:01:57:30 	00:02:11 	00:25:22 	Discord.exe
    11032	00:01:57:30 	00:00:20 	00:04:22 	AUDIODG.EXE
    11004	00:01:57:28 	00:00:00 	00:00:01 	Discord.exe
    1092	00:01:57:26 	00:00:00 	00:00:00 	steamwebhelper.exe
    1280	00:01:57:26 	00:00:00 	00:00:00 	steamwebhelper.exe
    1316	00:01:57:26 	00:00:00 	00:00:08 	steamwebhelper.exe
    11648	00:01:56:43 	00:00:01 	00:00:01 	TextInputHost.exe
    6464	00:01:56:36 	00:00:00 	00:00:00 	UbisoftGameLauncher.exe
    11968	00:01:56:32 	00:02:09 	00:02:32 	upc.exe
    5828	00:01:56:28 	00:00:00 	00:00:01 	UplayWebCore.exe
    1164	00:01:56:16 	00:00:00 	00:00:00 	RuntimeBroker.exe
    10592	00:01:56:11 	00:00:00 	00:00:00 	RainbowSix_BE.exe
    5580	00:01:54:36 	00:00:00 	00:00:00 	ApplicationFrameHost.exe
    4732	00:01:54:36 	00:00:00 	00:00:00 	WinStore.App.exe
    8100	00:01:54:35 	00:00:00 	00:00:00 	RuntimeBroker.exe
    2952	00:01:54:33 	00:00:27 	00:00:06 	GameOverlayUI.exe
    4220	00:01:54:33 	00:00:00 	00:00:00 	steamwebhelper.exe
    10192	00:01:54:32 	00:00:01 	00:00:13 	UplayWebCore.exe
    3900	00:01:54:32 	00:00:42 	00:03:48 	UplayWebCore.exe
    3728	00:01:54:29 	00:00:00 	00:00:00 	DllHost.exe
    3988	00:01:27:54 	00:00:00 	00:00:00 	Video.UI.exe
    5040	00:01:27:54 	00:00:00 	00:00:00 	RuntimeBroker.exe
    12416	00:01:07:57 	00:00:33 	00:00:15 	MossX64.exe
    14672	00:00:47:39 	00:00:00 	00:00:00 	ShellExperienceHost.exe
    14808	00:00:47:38 	00:00:00 	00:00:00 	RuntimeBroker.exe
    13700	00:00:31:30 	00:00:00 	00:00:00 	RuntimeBroker.exe
    14452	00:00:31:29 	00:00:00 	00:00:00 	backgroundTaskHost.exe
    6928	00:00:31:29 	00:00:00 	00:00:00 	LocalBridge.exe
    13080	00:00:27:56 	00:00:00 	00:00:00 	backgroundTaskHost.exe
    13052	00:00:00:03 	00:00:00 	00:00:00 	wmiprvse.exe
     4552 keystroke, 135 Patterns found
    
     sequence [LEFT CLICK] [LEFT CLICK] : interval distribution
        ^  42 events
      6 |                                                                                                                                 X          
      5 |                                                                                                                                 X    X     
      4 |                                                                                                                                 X    X     
      4 |                                                                                                                                 X    X     
      3 |                                                                                                                             X  XX    X  XX 
      3 |                                                                                                                             X  XX    X  XX 
      2 |                                                                                                                X      X     X XXX X  XX XX 
      1 |                                                                                                      X      X  X    X X    XXXXXXXXX XX XXX
      1 |                                                                                                      X      X  X    X X    XXXXXXXXX XX XXX
      0 |                                                                                                      X      X  X    X X    XXXXXXXXX XX XXX
       ----------------------------------------------------------------------------------------------------------------------------------------------> 140 ms
         000000000011111111112222222222333333333344444444445555555555666666666677777777778888888888999999999911111111111111111111111111111111111111111
         012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678900000000001111111111222222222233333333334
                                                                                                             01234567890123456789012345678901234567890
    
     Mouse down moves ( no recoil )  
        ^  events 3  
      10 |                                                                                                                                                      
       9 |                                                                                                                                                      
       8 |                                                                                                                                                      
       7 |                                                                                                                                                      
       6 |                                                                                                                                                      
       5 |                                                                                                                                                      
       4 |                                                                                                                                                      
       3 |                                                                                                                                                      
       2 |                                                                                                                                                      
       1 |                                                                                                                                                      
        ----------------------------------------------------------------------------------------------------------------------------------------------------------> 150 px moves
          0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000111111111111111111111111111111111111111111111111111
          0000000000111111111122222222223333333333444444444455555555556666666666777777777788888888889999999999000000000011111111112222222222333333333344444444445
          0123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890
     
    
     Mouse fast moves ( aimbot )  
        ^   events: 194 over : 0 
      67 |   X                                                                                                                                                   
      60 |   X                                                                                                                                                   
      53 |   X                                                                                                                                                   
      46 |   XX                                                                                                                                                  
      40 |   XX                                                                                                                                                  
      33 |   XX                                                                                                                                                  
      26 |   XX                                                                                                                                                  
      20 |   XXX                                                                                                                                                 
      13 |   XXXX                                                                                                                                                
       6 |   XXXXXXX                                                                                                                                             
        ---------------------------------------------------------------------------------------------------------------------------------------------------------->  px/s moves
          0000000000000000000011111111111111111111222222222222222222223333333333333333333344444444444444444444555555555555555555556666666666666666666677777777777
          0011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445
          0505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050
          0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
     
    Global log CRC: 781aeb53f840130e973ac8ccdcd4defe289bfef0c069616eab0d812eca166c86
    

    Player 2:

    SHAS2 mode started at 2021-03-02 18:28:27 for Generic Game on x64
     ping:63ms
    update 6 
    DirectX version is 12.0( )
    OS is 10.0 64 bit 
    Real OS Microsoft Windows 10 Pro
    memory: 16320 MB
    version: MOSS 5,5,6,0
    Physical: ASUSTeK COMPUTER INC.System Product NameEX-A320M-GAMING180425723900006
    Sign ID1: 8981552 ID2: 1216101735
    User: eyad@DESKTOP-I2SILA3
    Drive: GIGABYTE GP-GSTFS31120GNTD serial: SN200908975412
    Drive:  serial: 
    Net: 4CEDFB9979B6 /192.168.1.3 Public: 156.208.144.xxx
    Video: Radeon RX 580 Series driver : 27.20.14501.28009
    
    Monitor: (Standard monitor types) SAM LC24RG50 serial: H4ZMC00049CW46
    
    processor BIOS details 3400 MHz by 34.00*100. AMD Ryzen 5 2600 Six-Core Processor             
    Directx11
    SHAS2: fea3f1f82ac2109b5abd187d7a8c1688d99dc356f9f40dc904ac0b524f28b428 process: C:\Windows\System32\lsass.exe
    SHAS2: 80e0fa4a5e7c1ea9295ad0bb1894e6e1e0552eca417de2979ec9dbd2074130f9 process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: 64d72e908672f11740d65de92367e0f159d1b0d66dbba27783c96535bbc1b40d process: C:\Windows\System32\amdfendrsr.exe
    SHAS2: 60b0e8571c6a8e9a4b51f79e9a1abf55c629e115a9acfa5571b3f466fe3f90cc process: C:\Windows\System32\DriverStore\FileRepository\c0361901.inf_amd64_e0351ea22e7ad253\B361909\atiesrxx.exe
    SHAS2: a609031662be8dc5630323e758f17d9882798d7358acabb65f1eb85d6b44c428 process: C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
    Monitor Started at 2021-03-02 18:28:33
    Windows Defender: enabled
    SHAS2: 5920a4ff90eb8f2260023ea93c1f4312f6b7ace7f27b94c225a96b770105b932 process: C:\Program Files\Haste\UserEdgeService.exe
    Windows Defender: enabled
    SteamId: 1008469975
    SHAS2: d84396ccbc0c76e92f6388c75284c5ea435a6ba81ee89e587d38f81eadbebc1e process: C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
    SHAS2: c949a7bb236c6c03e197ef7f9a6df53e34ec35d925034351b5fd5d7db62a770e process: C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
    SHAS2: 5cef4b53b5c349160360cd9c77cc12d059aad22e7a0ef421a2329c9612ead5ab process: C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
    SHAS2: bd8b311fa9d7990c7fb8f36d48638f934ad50d5c99b37c8212463d85c0685b6e process: C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
    SHAS2: df0effdafa441b3a4fa7b1167ef22ba4d2130a5cb239f23d8f5d612c189992fe process: C:\Program Files (x86)\ExpressVPN\bootstrap\amd64\nssm.exe
    
    ping:68ms
    SHAS2: 0be5c376ad5c0ee8a477148243f4deb9707b4f92a1a4bbc7de4ab3ec26bd3511 process: C:\Program Files (x86)\Windscribe\WindscribeService.exe
    SHAS2: 5d336098251ed4e50d3eab55a37cd9486f0479893a2d9b5fb849d1486fa63fad process: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    SHAS2: 7d9c62b44493487c69ebae35c660edfab691af5bc40a29b0efc0c935dbd809eb process: C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
    SHAS2: 2e2c037709bf30b432b5f8885d07d21ff989ea893d819015f9fd2adc7c0f3c4d process: C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe
    SHAS2: f07e5ba7feeb9a18810d72e6a3a9b769c5a3d88064d71f92784fc8ea0f22491a process: C:\Windows\System32\dasHost.exe
    SHAS2: 58ecf27b27ccd58ab6d125d20cbbd30818f3a6a4459b0041eebcfe0d8f52f78a process: C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    SHAS2: b0ce201a00b81114d9acdb40ccab72f2eef19922c3ae565075846cd32548db4f process: C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe
    SHAS2: cbf4e68cf6b87cf968cab23aafd33b787e0ff590f5c98c7f626d93c9b8e6c627 process: C:\Program Files (x86)\ExpressVPN\expressvpnd\expressvpnd.exe
    SHAS2: baf97b2a629723947539cff84e896cd29565ab4bb68b0cec515eb5c5d6637b69 process: C:\Windows\System32\conhost.exe
    SHAS2: a75c85f3b089993e9c042fb82ecb7757e8f460ed8065fc7991caa38a6de0f50c process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: d609080f190fe1f83fb2c5d0a3bfae291da91170452a67d16de58d18e5a060b7 process: C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
    SHAS2: 918895e81e7dc4ea70c2077e4728d88b5b8e48df75c7c5acc04b62754199d553 process: C:\Windows\System32\audiodg.exe
    SHAS2: a75c85f3b089993e9c042fb82ecb7757e8f460ed8065fc7991caa38a6de0f50c process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: b5f534eae4225f72c3c704293bedf15a4e557e4cc44217a1eb57e27a8d98b5f2 process: C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe
    SHAS2: fda3c2af104981925a1e911596a9432570a333c88c6ba6112b29a96cb8d1ecc2 process: C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
    SHAS2: d6df7bbd93e84f5e9aec4f2d36fb04b8168e62010eae617f386c10c73b9136e6 process: C:\Windows\System32\winlogon.exe
    SHAS2: 80e0fa4a5e7c1ea9295ad0bb1894e6e1e0552eca417de2979ec9dbd2074130f9 process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: b39d76814ba92435f5dd5bcccd7faabcc814e1c51d92cdaff4fc011f0415812b process: C:\Windows\System32\dwm.exe
    SHAS2: a78fec78ef0cdcdfe6a3f365e9614eb4f1ae832855c4176de417433a56b5ca7a process: C:\Windows\System32\DriverStore\FileRepository\c0361901.inf_amd64_e0351ea22e7ad253\B361909\atieclxx.exe
    SHAS2: aa2a4b9c9390a3b0b768cf0aba62f88034062d33a385caf7499a2e6a62234825 process: C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe
    SHAS2: da523c85d11c9e63005196bfcf39b9b9127a375ed44ca3218a51ebaafe81cdb1 process: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    SHAS2: 6004199481840dd554aae886526d72d600e2938be23ca1ccdbeeb057b4549f58 process: C:\Windows\System32\sihost.exe
    SHAS2: abca3394728697205dead7c9b7b9076cdd28bee84e7a3c84514478bc033e531a process: C:\Windows\System32\taskhostw.exe
    SHAS2: b0a4e407d70ec5074768f5e8c0b066186dc443a245296ec3d0c3b408614c70cc process: C:\Windows\explorer.exe
    SHAS2: d67f4fd3d91d465332e17aa2613cc3559871866351dd0c756c8ecfff0cf00062 process: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    *SHAS2: fbe09550af2a8e83c25acb86586aded77b60b3e231ae71dc247587b3d90438a3 process: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: dcaa04cb25620bb9ef93a72a97867000b97ec6f98e792c5c7c780f2c644fed95 process: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21011.127.0_x64__8wekyb3d8bbwe\YourPhone.exe
    SHAS2: a0df21d82daa60f8181589f4ce96441891b6e13716f353e9d71c8b303cf398d2 process: C:\Windows\System32\ctfmon.exe
    SHAS2: 079831017cfbf64e7cee1c17c399417c7c559daaf629eb04da145296eaeeef49 process: C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: a29f894306963f80651343ad4817176b9328f64a13aad3d715c962f247af4912 process: C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AUEPRyzenMasterAC.exe
    SHAS2: baf97b2a629723947539cff84e896cd29565ab4bb68b0cec515eb5c5d6637b69 process: C:\Windows\System32\conhost.exe
    SHAS2: 7f2fe5ed8fa26f044dbbb0db6b633c8feaa2c683880d5c3842a5927f85a2d3be process: C:\Windows\System32\SecurityHealthSystray.exe
    SHAS2: 49c0b83e546dd3792da8d68fd0a0365e26acfc3cba73f909f8417bc06b4555a8 process: F:\steam\steam.exe
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    (Mon 1) DX11(798) : Each 60 at 2021-03-02 18:28:37 file: 001.JPG- Zip CRC: 2f531fdbe468d141766c46d06c4a7ee588175a8d83cca8fe2e843f81f81dde53  
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    ping:60ms
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    F
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    SHAS2: d408f0ba45eab58876240059d7a7a789d2042589762fd634d989d6c538b8d1f7 process: C:\Program Files (x86)\Overwolf\Overwolf.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: a51f1efe98aff2023bb00574a77c7e8acb0f7c051aa443cb21c7d70b189dbe5c process: C:\Users\eyad\AppData\Local\Discord\app-0.0.307\Discord.exe
    SHAS2: 20bfb0f435020ace510068753b5489381f80eca2ac9d19de005a855d74977544 process: C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: bfe0f09e97f2a15f2914be214df5ce2119dd4ad507d65d01c5eb6f37fa94a326 process: C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
    SHAS2: b4fbb6394d75076484d1234c9efb5f4a9c04abdeaf761948c12efc86cf312b63 process: C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: bb6e36305ef1c29a3d11028b44b75a1c0753bb46674379ab2b2d4b1fce46ee47 process: C:\Program Files\AMD\CNext\CNext\amdow.exe
    SHAS2: 1bbc867dde0023f92513fbf27a00e2f7b7473117456ab9bc5055887992ca9a0a process: C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe
    SHAS2: 546dbcc7a073099096a027efba2598b8242476a0ee20d7026ddee2251b0edf57 process: C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
    SHAS2: 0b899508777d7ed5159e2a99a5eff60c54d0724493df3d630525b837fa43aa51 process: C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
    SHAS2: 329a932a682c6340d33a706a6506341eb7dac55217302c2e284aaa0070e86954 process: C:\Program Files (x86)\Common Files\Overwolf\0.166.1.16\OverwolfHelper.exe
    SHAS2: d415e463b13fe051a7f2fc5893b5a4ba0591b3a61386131affc340e9aa5874a6 process: C:\Program Files (x86)\Common Files\Overwolf\0.166.1.16\OverwolfHelper64.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: c26a734de512eac9b3371c50fb71648a19d558d66a2377a3a3ffa5cfb7ffd6b1 process: C:\Windows\System32\SecurityHealthHost.exe
    SHAS2: 8e5c5a816ae4c90bf4aea39d1c6b69b4172a876b0e1af6f635ea539823a4af10 process: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 6a8f00c4bf7ce696edeba9e6c401ff9dd7eb59f34af25d7eee591b4837d67c7c process: C:\Windows\System32\dllhost.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: 559f86061e36e7e20341d174bbeeb8f94448c46ca8ea6aa064c7edae4d9b3851 process: C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
    SHAS2: 33735d2ab7cbf34128905757ab2e5dae7035ba2f7ed7dfd8eea3e2ead9a61c3e process: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20110.11001.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: aed6fbb9a6076ba39db669c9402e7340c2725eaffe3411ec3b246d0c8569ac75 process: F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: 68ad9c0e4ce1f641816a650b51385d587c6ef394ff1032800e9fc2ea1e59b809 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
    SHAS2: e694b626f9e2321c6b56d6a5265b4244de946dcf0aee92ab19456d4eb04caa3e process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: aefd0894435d9a9f9e4987028800112601b24e62693bdb683a5127e813a04f24 process: F:\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe
    SHAS2: eb25fffd8a2f22859b76c23304a6df40f5545d1402a231d4a6aaf0234d1016b0 process: F:\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: 60073e8e7c912be70f0898361f1fd0a92d170d53f6951113159de99c05d2246f process: C:\Program Files (x86)\Overwolf\0.166.1.16\OverwolfBrowser.exe
    SHAS2: 9aabf3334ab30e1fba734634937405d400c9511ecd6c53d23a38c5b62350e37e process: C:\Windows\System32\GameBarPresenceWriter.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 9520ee766d495b56baf1de89510888f4e2cb2d2efba5dc8a2739271d069395db process: C:\Users\eyad\Downloads\Moss3\Moss.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: e960c6422249ae265a694c9b2535e0e6567912be8cbde540b57f0e2756351413 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    *(Mon 1) DX11(504) : Each 60 at 2021-03-02 18:28:47 file: 002.JPG- Zip CRC: 5ed801bf1a64cd90291f9bcddf9348e511cd986a9d4d9fe152f601a3207fbe2e  
    ping:61ms
    F
    F
    *(Mon 1) DX11(494) : Each 60 at 2021-03-02 18:29:10 file: 003.JPG- Zip CRC: 434a0d81ef3a995d4040013de5dfc409a6bdc6ba24dacedec754420b77574796  
    ping:60ms
    F
    F
    *(Mon 1) DX11(503) : Each 60 at 2021-03-02 18:29:35 file: 004.JPG- Zip CRC: c837494d84a430bdb5cb599ea57338d5f39deeb9a040b3b68469f2131c662d1b  
    ping:61ms
    F
    F
    *(Mon 1) DX11(492) : Each 60 at 2021-03-02 18:30:05 file: 005.JPG- Zip CRC: 42d093c12154dadb5628860d037f9149ae638522450da4a555d8fec52328270b  
    ping:60ms
    F
    F
    *(Mon 1) DX11(497) : Each 60 at 2021-03-02 18:30:59 file: 006.JPG- Zip CRC: 5d96f0f1b0c6a869ca1e374def2f1ad5f9623f0e460c3e75043d5e28cdb807fb  
    ping:61ms
    F
    *(Mon 1) DX11(497) : Each 60 at 2021-03-02 18:31:20 file: 007.JPG- Zip CRC: 052775a9e638b5421445c011d23fb163303223b4e565e467f5942f4b1f4d510c  
    ping:65ms
    SHAS2: 6a8f00c4bf7ce696edeba9e6c401ff9dd7eb59f34af25d7eee591b4837d67c7c process: C:\Windows\System32\dllhost.exe
    SHAS2: 6a8f00c4bf7ce696edeba9e6c401ff9dd7eb59f34af25d7eee591b4837d67c7c process: C:\Windows\System32\dllhost.exe
    F
    F
    *(Mon 1) DX11(496) : Each 60 at 2021-03-02 18:31:43 file: 008.JPG- Zip CRC: 00bd0146357873f7c69f83a744853e54e00a35e4757492021a0ba0fb7319c828  
    ping:59ms
    F
    *(Mon 1) DX11(482) : Each 60 at 2021-03-02 18:32:02 file: 009.JPG- Zip CRC: 6f69e78aa2671ba1d3a1e26d57208938920f6751f320b868b92c67d270e4bbe8  
    ping:68ms
    (Mon 1) DX11(538) : Each 60 at 2021-03-02 18:32:10 file: 010.JPG- Zip CRC: ffb257203972630b509698c05fece24328e67cec5d57ea345f0b2e31bf003ba4  
    ping:67ms
    F
    -
    (Mon 1) DX11(659) : Each 60 at 2021-03-02 18:32:17 file: 011.JPG- Zip CRC: 37d42c1538d6872c474b7a46ce1166b5f4f17daa2e7101536d5f051539d37e8f  
    ping:68ms
    F
    F
    *(Mon 1) DX11(476) : Each 60 at 2021-03-02 18:32:46 file: 012.JPG- Zip CRC: f779b0378749be20925074f45ab9f2f0303ea2951c33ce05009294427ad15c22  
    ping:60ms
    F
    SHAS2: 4791132a7c5723d3e82d95e027d0546c09dbe9d9fe12016730b77759c19ed515 process: C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
    SHAS2: 4791132a7c5723d3e82d95e027d0546c09dbe9d9fe12016730b77759c19ed515 process: C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
    -
    (Mon 1) DX11(530) : Each 60 at 2021-03-02 18:33:50 file: 013.JPG- Zip CRC: 1637adb60cb6180a6815aee458b92dcf0c906e230068c30d5a4c9da26a12dfc8  
    ping:70ms
    -
    (Mon 1) DX11(556) : Each 60 at 2021-03-02 18:33:59 file: 014.JPG- Zip CRC: e1a6f0c16cf6fc7149e45a2adeadce2c63fed5e4787ad99ea06060de7c3a0739  
    ping:66ms
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    *(Mon 1) DX11(493) : Each 60 at 2021-03-02 18:36:26 file: 015.JPG- Zip CRC: 55dcd5a5c0ab2d99cff72ec1416c417ff743feb4b8560429fb55d86494557dfc  
    ping:59ms
    (Mon 1) DX11(577) : Each 60 at 2021-03-02 18:36:51 file: 016.JPG- Zip CRC: 50b68a202dc26752d47c41554e478028bcddbb29e72c2c2f4a4340f13f36ff1e  
    ping:74ms
    F
    F
    *(Mon 1) DX11(499) : Each 60 at 2021-03-02 18:37:23 file: 017.JPG- Zip CRC: 6f69e78aa2671ba1d3a1e26d57208938920f6751f320b868b92c67d270e4bbe8  
    ping:66ms
    (Mon 1) DX11(996) : Each 60 at 2021-03-02 18:37:39 file: 018.JPG- Zip CRC: 3081bc4fee58d212b41b904c6ae76a047e881cf68b929e031b4c9ae9795a6a10  
    ping:64ms
    (Mon 1) DX11(592) : Each 60 at 2021-03-02 18:37:47 file: 019.JPG- Zip CRC: 75075819dc9f10437615dc774a92fcdf2f3cfbcf85ab389fdef0f7171a2d3209  
    ping:60ms
    F
    SHAS2: 74b3323405cdfb85cfc9d5c1cd29c816c80361df154801e44f14863c9058906e process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    F
    *(Mon 1) DX11(494) : Each 60 at 2021-03-02 18:39:06 file: 020.JPG- Zip CRC: 4b5a44e389b43d28a0de4d207a49654c8e864588bbb0c0ff55120ee1c7de5e71  
    ping:69ms
    F
    F
    SHAS2: 74b3323405cdfb85cfc9d5c1cd29c816c80361df154801e44f14863c9058906e process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    *(Mon 1) DX11(497) : Each 60 at 2021-03-02 18:39:38 file: 021.JPG- Zip CRC: b01843d3d9d077477bc958859c294162071bbc6e2a1c83e4ba2442ea94b5cf72  
    ping:66ms
    F
    F
    *(Mon 1) DX11(502) : Each 60 at 2021-03-02 18:41:35 file: 022.JPG- Zip CRC: 4f394ecde52923228a4321c7262b34c8311b2598dec2bbbce73ace77f2f3a5c1  
    ping:68ms
    F
    F
    *(Mon 1) DX11(490) : Each 60 at 2021-03-02 18:42:06 file: 023.JPG- Zip CRC: e24568d869e1c79f0dde19ce4d79d16dbbe0972375a597f00268b243c6767ca2  
    ping:65ms
    F
    F
    *(Mon 1) DX11(496) : Each 60 at 2021-03-02 18:42:33 file: 024.JPG- Zip CRC: 6f69e78aa2671ba1d3a1e26d57208938920f6751f320b868b92c67d270e4bbe8  
    ping:63ms
    F
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    *(Mon 1) DX11(495) : Each 60 at 2021-03-02 18:44:58 file: 025.JPG- Zip CRC: 6f69e78aa2671ba1d3a1e26d57208938920f6751f320b868b92c67d270e4bbe8  
    ping:60ms
    F
    F
    *(Mon 1) DX11(492) : Each 60 at 2021-03-02 18:45:51 file: 026.JPG- Zip CRC: 33176626c498fc069dff0bb4a70e14efe4cbdc045dfb4e950d5917f75146f938  
    ping:62ms
    (Mon 1) DX11(490) : Each 60 at 2021-03-02 18:45:54 file: 027.JPG- Zip CRC: d6e471a62d6ccf5b6e3fe8a5af6b407951ce00b7692b3ddc880a0a6ecf1b9a96  
    ping:61ms
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    F
    *(Mon 1) DX11(495) : Each 60 at 2021-03-02 18:48:05 file: 028.JPG- Zip CRC: 143fe2227b473f101c87983a39ea91f1371d2d5a4d9bcdab15ba1be586fd0065  
    ping:70ms
    F
    -
    (Mon 1) DX11(502) : Each 60 at 2021-03-02 18:49:08 file: 029.JPG- Zip CRC: 0bc41719103d6339d2e0f6fb290167b1c7e5dfa6774d29ddfe34bc9994a50031  
    ping:59ms
    (Mon 1) DX11(577) : Each 60 at 2021-03-02 18:49:50 file: 030.JPG- Zip CRC: 2971dccacd0b48ce78b623538d74f3fbda965c6d8869c987dd5b91f8e3277b5f  
    ping:116ms
    (Mon 1) DX11(1109) : Each 60 at 2021-03-02 18:51:17 file: 031.JPG- Zip CRC: 11d3c5391f07b6b07618290b04bab2d826df6c1f723b065992db8d50bdfae21e  
    ping:65ms
    -
    (Mon 1) DX11(717) : Each 60 at 2021-03-02 18:52:55 file: 032.JPG- Zip CRC: 31cd83898e784cf7b26d6195123d7e23fa7da7793728069a12600d23cc6e9f5f  
    ping:67ms
    F
    F
    *(Mon 1) DX11(608) : Each 60 at 2021-03-02 18:53:19 file: 033.JPG- Zip CRC: d36de0f1418bbd6826f90b548ac2a2481f16ff302a37d25d2e5dd68044134b83  
    ping:67ms
    F
    F
    *(Mon 1) DX11(1229) : Each 60 at 2021-03-02 18:53:50 file: 034.JPG- Zip CRC: 3b77a06664d03f2ab04e68519c05367455e07c26ea5966c24015835d76656ce6  
    ping:61ms
    F
    SHAS2: 95af07f6596a7397b147b9dd3f819d21e2c65bf97b1aca6cd34a8755da3669b1 process: C:\Windows\servicing\TrustedInstaller.exe
    SHAS2: fb635da83596c09cda2e8cb25b5b4b3078005736cce030e8fa940cfbd13f8c84 process: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1370_none_16ff43832a27f5c0\TiWorker.exe
    SHAS2: fb635da83596c09cda2e8cb25b5b4b3078005736cce030e8fa940cfbd13f8c84 process: C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.1370_none_16ff43832a27f5c0\TiWorker.exe
    -
    (Mon 1) DX11(556) : Each 60 at 2021-03-02 18:54:39 file: 035.JPG- Zip CRC: ee0a59b3770609f24904724a9cf3968f1ec6f15a0e96f2f71cda49879cd35af0  
    ping:60ms
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    (Mon 1) DX11(772) : Each 60 at 2021-03-02 18:55:27 file: 036.JPG- Zip CRC: 9909fc0c64d1f0db70d530f814d1aa0808d9867aa03d2d15a693668793053887  
    ping:66ms
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    F
    SHAS2: dced25f0869853ea0273a672669f813c7eb541ceeb82c956364428ea555dfc81 process: C:\Users\eyad\AppData\Local\Google\Chrome\Application\chrome.exe
    SHAS2: 74b3323405cdfb85cfc9d5c1cd29c816c80361df154801e44f14863c9058906e process: C:\Windows\System32\backgroundTaskHost.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 4d81cb82c4c5ea303570d7d4abb2562993600a478464a18264bf29f79dd535b8 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: b06e53f0b66f7fef0978dba47b943e3b1a3efd0bdcb398104d96bb1f88a46acc process: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe\LocalBridge.exe
    F
    *(Mon 1) DX11(678) : Each 60 at 2021-03-02 18:56:23 file: 037.JPG- Zip CRC: 1e25f804d703746d4d3f66d447ef07a15115f9dc921aca8956500f4bb85a6e5f  
    ping:66ms
    (Mon 1) DX11(487) : Each 60 at 2021-03-02 18:56:26 file: 038.JPG- Zip CRC: a6ba0613f4953e8bc0e0ab3e3d300bcf40087783e238fd3ce7f901d0b35a8972  
    ping:65ms
    F
    F
    *(Mon 1) DX11(569) : Each 60 at 2021-03-02 18:57:45 file: 039.JPG- Zip CRC: ed06bd927bae5ab6b60835ba16204b3568ca0d491959ff71e6f6952cc7f86217  
    ping:60ms
    F
    -
    (Mon 1) DX11(1006) : Each 60 at 2021-03-02 18:59:28 file: 040.JPG- Zip CRC: 40c0d9a78ba6a33cb8611b43fd60b3e5d68f518c16e286a8b2f6ae8931f78743  
    ping:74ms
    F
    F
    *(Mon 1) DX11(497) : Each 60 at 2021-03-02 19:00:16 file: 041.JPG- Zip CRC: 8d919aa2ca435d900ecb4735fca1c3fdd19d1d903a518801cf3471c306b9cad1  
    ping:66ms
    F
    -
    (Mon 1) DX11(2587) : Each 60 at 2021-03-02 19:00:28 file: 042.JPG- Zip CRC: bc3f86ae77aa2721f8a70569f83a45bdbc98cca9267ac78c3f77b32abc2878aa  
    ping:61ms
    (Mon 1) DX11(542) : Each 60 at 2021-03-02 19:00:34 file: 043.JPG- Zip CRC: 4420a0877c734ec681dcf0cf5e1f4104364c101d5630e420617697b429d737d7  
    ping:74ms
    -
    (Mon 1) DX11(966) : Each 60 at 2021-03-02 19:01:49 file: 044.JPG- Zip CRC: 774bb9e8628ffdf242d8cd9e00fdb5cee212f02bf9865f078b88678d09862601  
    ping:67ms
    F
    -
    (Mon 1) DX11(573) : Each 60 at 2021-03-02 19:03:34 file: 045.JPG- Zip CRC: 8685cd92ad4c27a7e6b2e8bc16437c4dda27040e0ff8236258e279e47f208118  
    ping:67ms
    F
    (Mon 1) DX11(533) : Each 60 at 2021-03-02 19:04:08 file: 046.JPG- Zip CRC: 7460f284c2242c80bf7f4dcdebb29be9ce2cb27013d51342d4f7d771a5089e63  
    ping:61ms
    
    Monitor stoppped at 2021-03-02 19:04:07
    ping:60ms
    
    Processes statistics  ping:60
    PID	Running Time	Kernel Time	User Time	Name
    940	00:20:04:18 	00:00:19 	00:00:14 	lsass.exe
    596	00:20:04:18 	00:00:00 	00:00:00 	fontdrvhost.exe
    1820	00:20:04:18 	00:00:00 	00:00:00 	amdfendrsr.exe
    1828	00:20:04:18 	00:00:00 	00:00:00 	atiesrxx.exe
    3672	00:20:04:16 	00:00:01 	00:00:00 	RzSDKService.exe
    3712	00:20:04:16 	00:00:29 	00:00:04 	UserEdgeService.exe
    3744	00:20:04:16 	00:00:00 	00:00:00 	GameManagerService.exe
    3752	00:20:04:16 	00:00:00 	00:00:00 	AsSysCtrlService.exe
    3792	00:20:04:16 	00:00:00 	00:00:00 	RzSDKServer.exe
    3804	00:20:04:16 	00:00:00 	00:00:00 	OSPPSVC.EXE
    3812	00:20:04:16 	00:03:03 	00:01:02 	RazerCentralService.exe
    3828	00:20:04:16 	00:00:00 	00:00:00 	nssm.exe
    3848	00:20:04:16 	00:00:00 	00:00:00 	WindscribeService.exe
    3856	00:20:04:16 	00:00:00 	00:00:00 	armsvc.exe
    3868	00:20:04:16 	00:00:00 	00:00:02 	Lavasoft.WCAssistant.WinService.exe
    3964	00:20:04:16 	00:00:16 	00:00:03 	RvControlSvc.exe
    4316	00:20:04:16 	00:00:53 	00:00:21 	dashost.exe
    4336	00:20:04:16 	00:00:01 	00:00:00 	TeamViewer_Service.exe
    4628	00:20:04:16 	00:00:21 	00:00:04 	warp-svc.exe
    4856	00:20:04:16 	00:00:00 	00:00:00 	expressvpnd.exe
    4864	00:20:04:16 	00:00:00 	00:00:00 	conhost.exe
    6868	00:20:04:13 	00:01:33 	00:00:38 	wmiprvse.exe
    3212	00:20:04:12 	00:00:04 	00:00:08 	Razer Synapse Service.exe
    11660	00:20:03:46 	00:02:23 	00:07:57 	AUDIODG.EXE
    11800	00:20:03:21 	00:00:10 	00:00:04 	wmiprvse.exe
    12324	00:20:01:58 	00:00:00 	00:00:00 	AUEPLauncher.exe
    13832	00:20:01:58 	00:00:17 	00:00:10 	AUEPMaster.exe
    6720	00:07:51:53 	00:00:00 	00:00:00 	WinLogon.exe
    13524	00:07:51:53 	00:00:00 	00:00:00 	fontdrvhost.exe
    2220	00:07:51:53 	00:03:27 	00:03:52 	dwm.exe
    9276	00:07:51:45 	00:01:14 	00:00:12 	atieclxx.exe
    10908	00:02:09:55 	00:00:04 	00:00:00 	AUEPUF.exe
    17236	00:02:09:55 	00:00:01 	00:00:00 	mbamtray.exe
    13968	00:02:09:55 	00:00:02 	00:00:02 	sihost.exe
    8084	00:02:09:55 	00:00:00 	00:00:00 	taskhostw.exe
    7352	00:02:09:55 	00:01:34 	00:00:37 	Explorer.EXE
    15872	00:02:09:54 	00:00:04 	00:00:05 	StartMenuExperienceHost.exe
    3704	00:02:09:54 	00:00:00 	00:00:00 	RuntimeBroker.exe
    7620	00:02:09:53 	00:00:09 	00:00:17 	SearchUI.exe
    8692	00:02:09:53 	00:00:01 	00:00:00 	RuntimeBroker.exe
    2400	00:02:09:53 	00:00:00 	00:00:00 	YourPhone.exe
    15664	00:02:09:53 	00:00:17 	00:00:05 	ctfmon.exe
    7012	00:02:09:52 	00:00:04 	00:00:05 	Razer Synapse Service Process.exe
    1484	00:02:09:50 	00:00:00 	00:00:00 	RuntimeBroker.exe
    16800	00:02:09:49 	00:00:01 	00:00:00 	RuntimeBroker.exe
    13252	00:02:09:48 	00:00:00 	00:00:00 	AUEPRyzenMasterAC.exe
    6228	00:02:09:48 	00:00:00 	00:00:00 	conhost.exe
    9564	00:02:09:43 	00:00:00 	00:00:00 	SecurityHealthSystray.exe
    1532	00:02:09:41 	00:01:48 	00:00:10 	steam.exe
    9844	00:02:09:39 	00:01:29 	00:01:28 	Discord.exe
    13232	00:02:09:39 	00:00:33 	00:03:17 	Discord.exe
    15888	00:02:09:39 	00:00:05 	00:00:09 	Discord.exe
    13600	00:02:09:37 	00:00:00 	00:00:00 	Discord.exe
    6292	00:02:09:37 	00:04:47 	00:41:08 	Discord.exe
    6692	00:02:09:36 	00:02:25 	00:01:07 	Overwolf.exe
    6544	00:02:09:35 	00:00:02 	00:00:01 	steamwebhelper.exe
    14708	00:02:09:35 	00:00:00 	00:00:00 	steamwebhelper.exe
    11324	00:02:09:34 	00:00:00 	00:00:01 	Discord.exe
    2616	00:02:09:34 	00:00:00 	00:00:00 	SteamService.exe
    8928	00:02:09:34 	00:00:02 	00:00:08 	steamwebhelper.exe
    10152	00:02:09:34 	00:00:01 	00:00:00 	steamwebhelper.exe
    10320	00:02:09:34 	00:00:43 	00:00:10 	Radeonsoftware.exe
    13508	00:02:09:32 	00:06:17 	00:05:17 	AMDRSServ.exe
    5796	00:02:09:31 	00:00:00 	00:00:00 	OverwolfBrowser.exe
    15480	00:02:09:30 	00:00:01 	00:00:33 	OverwolfBrowser.exe
    9812	00:02:09:29 	00:00:43 	00:00:46 	chrome.exe
    12456	00:02:09:29 	00:00:00 	00:00:00 	chrome.exe
    4256	00:02:09:29 	00:00:05 	00:00:07 	OverwolfBrowser.exe
    8076	00:02:09:29 	00:00:07 	00:00:31 	chrome.exe
    9424	00:02:09:29 	00:00:06 	00:00:13 	chrome.exe
    16524	00:02:09:28 	00:00:00 	00:00:00 	chrome.exe
    16304	00:02:09:28 	00:00:00 	00:00:00 	chrome.exe
    1468	00:02:09:28 	00:00:00 	00:00:04 	chrome.exe
    6708	00:02:09:28 	00:00:00 	00:00:00 	chrome.exe
    2316	00:02:09:26 	00:00:01 	00:00:00 	amdow.exe
    15124	00:02:09:25 	00:00:21 	00:00:04 	Cloudflare WARP.exe
    15520	00:02:09:25 	00:00:00 	00:00:00 	WSHelper.exe
    11500	00:02:09:24 	00:00:02 	00:00:00 	Lightshot.exe
    9236	00:02:09:22 	00:01:04 	00:00:02 	OverwolfHelper.exe
    16972	00:02:09:22 	00:00:50 	00:00:00 	OverwolfHelper64.exe
    572	00:02:08:06 	00:00:00 	00:00:00 	steamwebhelper.exe
    1460	00:02:08:06 	00:00:01 	00:00:18 	steamwebhelper.exe
    17240	00:02:07:53 	00:00:00 	00:00:00 	SecurityHealthHost.exe
    2564	00:02:07:53 	00:00:00 	00:00:00 	ShellExperienceHost.exe
    14628	00:02:07:52 	00:00:00 	00:00:00 	RuntimeBroker.exe
    2628	00:02:00:44 	00:00:00 	00:00:00 	DllHost.exe
    5832	00:01:59:33 	00:00:06 	00:02:02 	OverwolfBrowser.exe
    8640	00:01:52:06 	00:00:00 	00:00:00 	AMDRSSrcExt.exe
    6532	00:01:40:34 	00:00:02 	00:00:04 	Microsoft.Photos.exe
    11216	00:01:40:32 	00:00:03 	00:00:03 	RuntimeBroker.exe
    16448	00:01:33:02 	00:00:00 	00:00:00 	chrome.exe
    15452	00:01:25:40 	00:00:00 	00:00:00 	steamwebhelper.exe
    11184	00:01:25:28 	00:00:01 	00:00:00 	UbisoftGameLauncher.exe
    12780	00:01:25:28 	00:03:18 	00:03:30 	upc.exe
    9112	00:01:25:21 	00:00:05 	00:03:05 	UplayWebCore.exe
    10244	00:01:25:05 	00:00:00 	00:00:00 	RainbowSix_BE.exe
    8380	00:01:24:41 	00:00:00 	00:00:01 	OverwolfBrowser.exe
    11680	00:01:24:41 	00:00:00 	00:00:02 	OverwolfBrowser.exe
    8144	00:01:24:27 	00:00:00 	00:00:00 	GameBarPresenceWriter.exe
    7464	00:01:24:00 	00:00:02 	00:00:17 	UplayWebCore.exe
    12692	00:01:24:00 	00:00:16 	00:02:02 	UplayWebCore.exe
    5260	00:00:41:54 	00:01:33 	00:00:19 	Moss.exe
    16700	00:00:39:53 	00:00:00 	00:00:02 	UplayWebCore.exe
    632	00:00:39:53 	00:00:00 	00:00:01 	UplayWebCore.exe
    9848	00:00:39:53 	00:00:01 	00:00:12 	UplayWebCore.exe
    9892	00:00:08:00 	00:00:00 	00:00:00 	chrome.exe
     3351 keystroke, 161 Patterns found
    
     sequence [MENU] [X] : interval distribution
        ^  48 events
      6 |                        X                                                                                                                   
      5 |                        X                                                                                                                   
      4 |                        X              XX                                                                                                   
      4 |                        X              XX                                                                                                   
      3 |                        X              XX                                                                                                   
      3 |                        X              XX                                                                                                   
      2 |               X        XX             XXXX                   X X  X                    X                                                   
      1 |               X  X   XXXX           X XXXX   XX              X XXXX                 XX X               XX  X                  XX X  X      
      1 |               X  X   XXXX           X XXXX   XX              X XXXX                 XX X               XX  X                  XX X  X      
      0 |               X  X   XXXX           X XXXX   XX              X XXXX                 XX X               XX  X                  XX X  X      
       ----------------------------------------------------------------------------------------------------------------------------------------------> 140 ms
         000000000011111111112222222222333333333344444444445555555555666666666677777777778888888888999999999911111111111111111111111111111111111111111
         012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678900000000001111111111222222222233333333334
                                                                                                             01234567890123456789012345678901234567890
    
     Mouse down moves ( no recoil )  
        ^  events 1  
      10 |                                                                                                                                                      
       9 |                                                                                                                                                      
       8 |                                                                                                                                                      
       7 |                                                                                                                                                      
       6 |                                                                                                                                                      
       5 |                                                                                                                                                      
       4 |                                                                                                                                                      
       3 |                                                                                                                                                      
       2 |                                                                                                                                                      
       1 |                                                                                                                                                      
        ----------------------------------------------------------------------------------------------------------------------------------------------------------> 150 px moves
          0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000111111111111111111111111111111111111111111111111111
          0000000000111111111122222222223333333333444444444455555555556666666666777777777788888888889999999999000000000011111111112222222222333333333344444444445
          0123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890
     
    
     Mouse fast moves ( aimbot )  
        ^   events: 371 over : 0 
      71 |   X                                                                                                                                                   
      63 |   X                                                                                                                                                   
      56 |   XX                                                                                                                                                  
      49 |   XX                                                                                                                                                  
      42 |   XXX                                                                                                                                                 
      35 |   XXX                                                                                                                                                 
      28 |   XXXX                                                                                                                                                
      21 |   XXXXX                                                                                                                                               
      14 |   XXXXXXX X                                                                                                                                           
       7 |   XXXXXXXXXXXX   X                                                                                                                                    
        ---------------------------------------------------------------------------------------------------------------------------------------------------------->  px/s moves
          0000000000000000000011111111111111111111222222222222222222223333333333333333333344444444444444444444555555555555555555556666666666666666666677777777777
          0011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445
          0505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050
          0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
     
    Global log CRC: d2d37f2cdad317b4992c3fb9453d350f1985eea4b061099a22c1bc6cb1f194b4
    
    #7081
    ADM_nohope
    Keymaster

    I discussed with Dulan about the first one

Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.