Menu Close

is this guy macroing with ghub by any chance?

What is Moss ? Forums General is this guy macroing with ghub by any chance?

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #6990
    VendettaR6
    Participant

    SHAS2 mode started at 2021-02-13 20:08:29 for Rainbow Six on x64
    ping:45ms
    update 6
    DirectX version is 12.0( )
    OS is 10.0 64 bit
    Real OS Microsoft Windows 10 Home
    memory: 32688 MB
    version: MOSS 5,5,5,0
    Physical: Wortmann_AG1001314;2120271Z490MR6427282
    Sign ID1: 2128733631 ID2: 926594741
    User: user@DESKTOP-7430E8U
    Drive: Generic STORAGE DEVICE USB Device serial: 000000000250
    Drive: serial:
    Net: 18C04D2F90E9 /192.168.0.225 Public: 109.192.157.xxx
    Video: NVIDIA GeForce RTX 2060 SUPER driver : 27.21.14.6109

    Monitor: (Standardmonitortypen) AOC 24G2W1G5 serial: 00000EDE
    Monitor: (Standardmonitortypen) GSM 27GL650F serial: 00033416

    processor BIOS details 2904 MHz by 29.04*100. Intel(R) Core(TM) i7-10700 CPU @ 2.90GHz
    Directx11
    SHAS2: 7fe327ae2dd924e2318796508b6cff5fd6b70a3deb30a2b7c7403abdbd805462 process: C:\Windows\System32\lsass.exe
    SHAS2: 4f5d509ed0813495684a0a5ced614f234e3f595b7a83b25c0aa2940c76d327aa process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: e6f5de8bc3fc572d9a2866024c5af3a83a4d70f4d38810b9e7679a2e9f89775c process: C:\Windows\System32\WUDFHost.exe
    Monitor Started at 2021-02-13 20:08:34
    SHAS2: e6f5de8bc3fc572d9a2866024c5af3a83a4d70f4d38810b9e7679a2e9f89775c process: C:\Windows\System32\WUDFHost.exe
    Windows Defender: enabled
    Windows Defender: enabled
    SHAS2: e44fe6bd4b43b02ed2c72f0691398338fed7d88e0293cacd6f1e6cefcbf90a9d process: C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3621da861144492b\Display.NvContainer\NVDisplay.Container.exe
    SteamId: 1113397408
    SHAS2: 654f1b82d7c54ed268362abc23844b1cde64bc6918fad6347f3a719788c6e284 process: C:\Windows\System32\spoolsv.exe
    SHAS2: 2bf60db5993351ab2ec59a623c0e426a99fd6e5f2f2c3d3a492a335d3c9e1968 process: C:\Windows\System32\RtkAudUService64.exe
    SHAS2: 3cb47f5f69fdb36e6cb81560dd4b578ace0e09f9e9249e22ff884cfbf71f1d42 process: C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe

    ping:42ms
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: 0def5a70ec0e5871a10b0b356627e506ed5b5500b928e0bd4d66a4412e547d31 process: C:\Program Files\LGHUB\lghub_updater.exe
    SHAS2: 0fdd1e82bd41efb618740eadde41191d3502f99e4e2082905c79e65c6924a4bb process: C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_b93ea7bff86fc280\LMS.exe
    SHAS2: 88fd7e7e15d4c8b22c355ed56edd45734f05a55a5bdc18ec1917583194ecd981 process: C:\Windows\System32\dasHost.exe
    SHAS2: fcc3962dd9c52586d108942dc2b3b5fba1ed3e667114ecb4640e6d0b6ea97376 process: C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
    SHAS2: 88fd7e7e15d4c8b22c355ed56edd45734f05a55a5bdc18ec1917583194ecd981 process: C:\Windows\System32\dasHost.exe
    SHAS2: 2198a7b58bccb758036b969ddae6cc2ece07565e2659a7c541a313a0492231a3 process: C:\Windows\System32\wbem\WmiPrvSE.exe
    SHAS2: a46b51a6efed0098f7cefd37c241aa5904cb0826e6ffa6adbe8c7af321b6b84a process: C:\Windows\System32\SearchIndexer.exe
    SHAS2: 1570d72249437e024b7ee2dcd35f0d10d8ecb13c8152306c439e062dbb8e9ff0 process: C:\Windows\System32\audiodg.exe
    SHAS2: feadd05a5c07b4e7fe7ee2663310ab9a851b4c4afb70d3ecee82391aef3933c2 process: C:\Program Files (x86)\Origin\OriginWebHelperService.exe
    SHAS2: 1a1fe677953a31886243f5410fa08fbd12f6022cc952f6712542bed02259779c process: C:\Windows\System32\winlogon.exe
    SHAS2: 4f5d509ed0813495684a0a5ced614f234e3f595b7a83b25c0aa2940c76d327aa process: C:\Windows\System32\fontdrvhost.exe
    SHAS2: 0ac827c9e35cdaa492ddd435079415805dcc276352112b040bcd34ef122cf565 process: C:\Windows\System32\dwm.exe
    SHAS2: e44fe6bd4b43b02ed2c72f0691398338fed7d88e0293cacd6f1e6cefcbf90a9d process: C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3621da861144492b\Display.NvContainer\NVDisplay.Container.exe
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: b28eca3b53b6d3e55725bd2cf76d8a9e67fa0f85f2bc575aa39815de4ca25183 process: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    SHAS2: 8ee21a0ba8849d31c265b4090a9e2ebe8ba66f58a8f71d4e96509e8a78f7db00 process: C:\Windows\System32\sihost.exe
    SHAS2: 35ef26f4e71a40d0fd09939e29d39704e6fac8c0289d15108219228b4d3afe5d process: C:\Windows\explorer.exe
    SHAS2: 59c34f131dcedcc34252d2ab18754481843efb2a64a92996391330c321154943 process: C:\Windows\System32\taskhostw.exe
    SHAS2: 03f57900a9324df23da95a46f58245649b0357f065b7f4128e387507ce9582e6 process: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: be1c4326648531600d4edaff0383ac6d1022844557b5ab4d89bab71760113c41 process: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 321656887526b439967b377c20c3ae04f48b11a77eea11f7febe47d30b3f7bc7 process: C:\Windows\System32\SettingSyncHost.exe
    SHAS2: 484fed5f039f429ed933931ba607b7efda7d1a343d79cfab60910e1843147012 process: C:\Windows\System32\ctfmon.exe
    SHAS2: 09a916b7b1e1b29becc6e244d73bff9d05e0397643e62a30448b400f05b11755 process: C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
    SHAS2: 16c7a815a4a313d2c79816b3839376cc4d732dc0b136ee246ac77ffed543a3c4 process: C:\Windows\System32\conhost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\2f8bde3b-f7a7-4cc2-87f1-9dd3eabe0e63\GameSettings.ini file: GameSettings.ini.001- Zip CRC: 31a21d27a797fbd02fc350a390aee0578ccb3d02052217750e854acb76d170d5
    SHAS2: 399dfaa74cf9c50426a780137c6a06ba78d85e5d12cc9c8d89ff2352a0be46d4 process: C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\40b82f46-6918-435c-be66-e969806034c0\GameSettings.ini file: GameSettings.ini.002- Zip CRC: 913aec70034f06f2d3b4c747f483d39d82e69066ab0bf2cbcb30a0e86aca8d13
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\5c333c59-cfdf-4a09-be60-e6bd238991da\GameSettings.ini file: GameSettings.ini.003- Zip CRC: c01cf7d059caf3ce207718f6c9f77309d0a375c6b48653454e055d57133c78fc
    SHAS2: d4b535644848552464b6f5c9606b99c67c96dddca17dfadfbfea505c1ba63cb6 process: C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\6342605c-f276-4138-9483-7e46bbd34e9d\GameSettings.ini file: GameSettings.ini.004- Zip CRC: 625f6eb5ac961f53b439be5c0fe5d89aee75c72cede7164c09dc11b4662c7e0f
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\6e98bac1-fed0-4abb-9a82-b29e1f3665f6\GameSettings.ini file: GameSettings.ini.005- Zip CRC: daf4c13c7a1b901dda776c16e4846fafc568444174830142f22a8e1b750f0c2a
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\bc84e4a1-caa6-4edc-97f3-a885b89f3d99\GameSettings.ini file: GameSettings.ini.006- Zip CRC: 8a35947b682c0decec4d5bf59190cfc7f220f524f10aaa72d5e63f8a1b1a2924
    SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\faa7ebc5-b4a3-4d0e-bb90-b2eb65fd7d32\GameSettings.ini file: GameSettings.ini.007- Zip CRC: c2912493b8707f1ee34a470d5634a4f33700551aafb6087c7b44cadc166b4d1e
    *SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    SHAS2: 0997880ea2567a6aff19468ee2486dbbefd7e54622b449515c14c2ad7adcd594 process: C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
    SHAS2: 570b37a7a3ffdafcceccc33cbc1968feb857b73ca3cb4dffedc2e67e9abd0878 process: C:\Windows\System32\SecurityHealthSystray.exe
    SHAS2: 2bf60db5993351ab2ec59a623c0e426a99fd6e5f2f2c3d3a492a335d3c9e1968 process: C:\Windows\System32\RtkAudUService64.exe
    SHAS2: 0950c6e0047c9b1f24df077cc3c427ee1601df9e43c74070bb2b9e096c368ef0 process: C:\Program Files\Riot Vanguard\vgtray.exe
    SHAS2: 3b05e6e870c638a911f3fed6a3c85a26d7e714605d0ab81c089e9c2a339102f7 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDrive.exe
    SHAS2: ecc9382de6869688a689698321ccda588f61de936ae76a99ba68887287a0bc99 process: C:\Program Files\LGHUB\lghub.exe
    (Mon 1) DX11(544) : Each 120 at 2021-02-13 20:08:37 file: 001.JPG- Zip CRC: 8fd03340eea2d5320574190bd0dc37619cbb0cc6b2ed815105ac6fc2298a85a0
    ping:45ms
    SHAS2: 342c9c240b1b43477ba46ef3f6c11ce95ac25c9c419747fa73859355ab6090d6 process: C:\Program Files\LGHUB\lghub_agent.exe
    SHAS2: ecc9382de6869688a689698321ccda588f61de936ae76a99ba68887287a0bc99 process: C:\Program Files\LGHUB\lghub.exe
    (Mon 2) DX11(536) : Each 120 at 2021-02-13 20:08:39 file: 002.JPG- Zip CRC: 4de7177b21328736fe917d066bf89133f29c3baf81b81b9b70afa4dbbc31a185
    ping:47ms
    SHAS2: ecc9382de6869688a689698321ccda588f61de936ae76a99ba68887287a0bc99 process: C:\Program Files\LGHUB\lghub.exe
    SHAS2: 66b09191838decaedbbf78aa1abda7c1d7a86c9bd81e85e0369b6b7e3d5305fd process: C:\Program Files (x86)\Steam\steam.exe
    SHAS2: 5cd0dd3b1454b437362c87c651ee2068ac27cdb725aa1c705cf62ff325a759cc process: C:\Windows\System32\wbem\unsecapp.exe
    SHAS2: 68801373a4c6729038dfb940008d5962c2395a9b61c9411321481680d9713c9d process: C:\Program Files\LGHUB\logi_crashpad_handler.exe
    SHAS2: 68801373a4c6729038dfb940008d5962c2395a9b61c9411321481680d9713c9d process: C:\Program Files\LGHUB\logi_crashpad_handler.exe
    F
    SHAS2: ecc9382de6869688a689698321ccda588f61de936ae76a99ba68887287a0bc99 process: C:\Program Files\LGHUB\lghub.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: fb661f0d2b6d739b00c5f3cd56364c1e7280ac58055cb142b2ea268e53b6af6b process: C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: df89478eab1cadafc757ac6d7ab891d8410d2a479e42147d75246e3c193d2fcb process: C:\Program Files (x86)\Overwolf\Overwolf.exe
    SHAS2: 45c9b10cc7be2111da9306f31136739c290544d9789d7f5b6eff6953a5156b37 process: C:\Program Files\LGHUB\logi_analytics_client.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 50ab2dc32a0abbd158723a50bea8d655fc6344cc074b2ece2f530daa79da95df process: C:\Program Files (x86)\Origin\Origin.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: 147a7f7bd1696a948c8dbd23c66adbe34f75c838a0a71ffa0599b359a3fde8e8 process: C:\Users\user\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
    SHAS2: 147a7f7bd1696a948c8dbd23c66adbe34f75c838a0a71ffa0599b359a3fde8e8 process: C:\Users\user\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
    SHAS2: f1707608ff73a6b98d10a31e0660f5b7cf0147da46442fa3820866e0bcd9ae53 process: C:\Program Files (x86)\HyperX\NGenuity\NGenuity.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: cd3bffa7b77af382ce1274ac202538f002ff06682e84fde508c7dc4fe3072b65 process: C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
    SHAS2: 329a932a682c6340d33a706a6506341eb7dac55217302c2e284aaa0070e86954 process: C:\Program Files (x86)\Common Files\Overwolf\0.165.0.28\OverwolfHelper.exe
    SHAS2: d415e463b13fe051a7f2fc5893b5a4ba0591b3a61386131affc340e9aa5874a6 process: C:\Program Files (x86)\Common Files\Overwolf\0.165.0.28\OverwolfHelper64.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 649ac77d78a06493c24b1e9d11bb491e68b812411fd73f089efc3de991743366 process: C:\Users\user\AppData\Local\FACEITApp\app-1.27.0\FACEIT.exe
    SHAS2: 3dda9e533a3a53d71008cb7addc724b26c5b8ac176f2b005f72d3c251b96b855 process: C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: ce893f284aeca686bd85b1cd8afb082ac8756f6f5bad92f09d0a9580cf82dd92 process: C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe
    SHAS2: 87c85ba3e1a5ded00085cb80f24a725dbfbc89cda67ca29ef7fc1d3ea7e65527 process: C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
    SHAS2: d9f634f6dc7dbf4ad142ab5271907cefe816cee23c5eaf4df739db4c6593cd8d process: C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
    SHAS2: 16c7a815a4a313d2c79816b3839376cc4d732dc0b136ee246ac77ffed543a3c4 process: C:\Windows\System32\conhost.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: 18d7b92a90f1f66afc14b8a876d6c47d67b65c0711f5b7bae166442a25252dec process: C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
    SHAS2: cda3301de59c2aefe30cce519a41916455523c2685ded793730ca7d790865a29 process: C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2101.15643.0_x64__8wekyb3d8bbwe\Cortana.exe
    SHAS2: ce893f284aeca686bd85b1cd8afb082ac8756f6f5bad92f09d0a9580cf82dd92 process: C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe
    SHAS2: 18d7b92a90f1f66afc14b8a876d6c47d67b65c0711f5b7bae166442a25252dec process: C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
    SHAS2: 28a18b5d17798728d7c4d608fe73e5ef83ae2196b4242fb0ce046781bf2b3090 process: C:\Program Files\WindowsApps\Microsoft.GamingApp_2101.1002.1.0_x64__8wekyb3d8bbwe\XboxAppServices.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 99557b43cd337e46afab2d277fc0e8cfe668241780e68dd4c88c9099f65c809b process: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
    SHAS2: c2318951c8dfca9744678a0b81bd19503933f031420892b4692bddbe6667a776 process: C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
    SHAS2: cf58e424b86775e6f2354291052126a646f842fff811b730714dfbbd8ebc71a4 process: C:\Windows\System32\ApplicationFrameHost.exe
    SHAS2: 546dbcc7a073099096a027efba2598b8242476a0ee20d7026ddee2251b0edf57 process: C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 46640de5899395dcadb52d1b4982529c69a8087807494f14f6e3d177b28972dc process: C:\Program Files (x86)\HyperX\NGenuity\Device\Cloud Flight\NGenuity.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 7ef280cb31ce3b22a02afa4a2be4dea879286364ec390718089da138bedc5c29 process: C:\Users\user\AppData\Local\Medal\app-4.625.0\resources\app\Medal.exe
    SHAS2: 16c7a815a4a313d2c79816b3839376cc4d732dc0b136ee246ac77ffed543a3c4 process: C:\Windows\System32\conhost.exe
    SHAS2: 20e12b87dfb6529f0ed97c9d116f8c5d39ed7254f9305f24233fc5573520d6c2 process: C:\Users\user\AppData\Local\Medal\recorder-3.366.0\MedalEncoder.exe
    SHAS2: 6cc44fbee63233a379e08b2fdf451890f6fce8615878c44bc1a680a6f13c9cbd process: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
    SHAS2: e86870769ee6c797e09457bd99c58d9bf2303cf0193a24ef9b1222c2c3daf628 process: C:\Windows\System32\RuntimeBroker.exe
    SHAS2: a258be41b8fe8f2bed8a54384955d6b13c094dfb3f02f105beef174ae8a4d004 process: C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2104.8.0_x64__cv1g1gvanyjgm\app\WhatsApp.exe
    SHAS2: a258be41b8fe8f2bed8a54384955d6b13c094dfb3f02f105beef174ae8a4d004 process: C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2104.8.0_x64__cv1g1gvanyjgm\app\WhatsApp.exe
    SHAS2: a258be41b8fe8f2bed8a54384955d6b13c094dfb3f02f105beef174ae8a4d004 process: C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2104.8.0_x64__cv1g1gvanyjgm\app\WhatsApp.exe
    SHAS2: a258be41b8fe8f2bed8a54384955d6b13c094dfb3f02f105beef174ae8a4d004 process: C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2104.8.0_x64__cv1g1gvanyjgm\app\WhatsApp.exe
    SHAS2: a258be41b8fe8f2bed8a54384955d6b13c094dfb3f02f105beef174ae8a4d004 process: C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2104.8.0_x64__cv1g1gvanyjgm\app\WhatsApp.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: ad938c303f12ea8d164433cc7ba46fc7b9ae00f6f899e308d4317dab46e25642 process: C:\Windows\System32\oobe\UserOOBEBroker.exe
    SHAS2: e7fc40b41aa8b83841a0b96d169eaf0800aa784733e636935374d56536253f10 process: C:\Windows\System32\dllhost.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 34d5f40785a62bb26b49976212cce6673bf0cca04f50038626c704236f497e13 process: C:\Windows\System32\CompPkgSrv.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: e92947bed6357cc84e21f498b6be8bf371db5f71e2d14ebcf81cfbd072bbb307 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 531fb052f71b93bff21796a02fc9d8669bd94f5958993033640a578da95ca846 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
    SHAS2: aefd0894435d9a9f9e4987028800112601b24e62693bdb683a5127e813a04f24 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy’s Rainbow Six Siege\rainbowsix_be.exe
    SHAS2: eb25fffd8a2f22859b76c23304a6df40f5545d1402a231d4a6aaf0234d1016b0 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy’s Rainbow Six Siege\RainbowSix.exe
    SteamId: 1113397408
    SteamId: 1113397408

    FileCheck start for C:\PROGRAM FILES (X86)\UBISOFT\UBISOFT GAME LAUNCHER\GAMES\TOM CLANCY’S RAINBOW SIX SIEGE at 2021-02-13 20:08:36:
    SHAS2: 08d0ad2ffadedcd9167d77f200ea14458cda0b98bd67420087b0b4f7fc944e52 process: C:\Windows\System32\SearchProtocolHost.exe
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\2f8bde3b-f7a7-4cc2-87f1-9dd3eabe0e63\GameSettings.ini file: GameSettings.ini.008- Zip CRC: 31a21d27a797fbd02fc350a390aee0578ccb3d02052217750e854acb76d170d5
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\40b82f46-6918-435c-be66-e969806034c0\GameSettings.ini file: GameSettings.ini.009- Zip CRC: 913aec70034f06f2d3b4c747f483d39d82e69066ab0bf2cbcb30a0e86aca8d13
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\5c333c59-cfdf-4a09-be60-e6bd238991da\GameSettings.ini file: GameSettings.ini.010- Zip CRC: c01cf7d059caf3ce207718f6c9f77309d0a375c6b48653454e055d57133c78fc
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\6342605c-f276-4138-9483-7e46bbd34e9d\GameSettings.ini file: GameSettings.ini.011- Zip CRC: 625f6eb5ac961f53b439be5c0fe5d89aee75c72cede7164c09dc11b4662c7e0f
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\6e98bac1-fed0-4abb-9a82-b29e1f3665f6\GameSettings.ini file: GameSettings.ini.012- Zip CRC: daf4c13c7a1b901dda776c16e4846fafc568444174830142f22a8e1b750f0c2a
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\bc84e4a1-caa6-4edc-97f3-a885b89f3d99\GameSettings.ini file: GameSettings.ini.013- Zip CRC: 8a35947b682c0decec4d5bf59190cfc7f220f524f10aaa72d5e63f8a1b1a2924
    captured: C:\Users\user\OneDrive\Dokumente\my games\Rainbow Six – Siege\faa7ebc5-b4a3-4d0e-bb90-b2eb65fd7d32\GameSettings.ini file: GameSettings.ini.014- Zip CRC: c2912493b8707f1ee34a470d5634a4f33700551aafb6087c7b44cadc166b4d1e
    *-
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    (Mon 1) DX11(508) : Each 120 at 2021-02-13 20:09:11 file: 003.JPG- Zip CRC: 1deda5d199d376b93205ea1c594b09f4903a22b1d968a946ad4750643a75d64b
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    ping:45ms
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    (Mon 2) DX11(543) : Each 120 at 2021-02-13 20:09:13 file: 004.JPG- Zip CRC: 60c895d0f5bf317c6cb9d897f2ed510cdc845ffd47adbe76fb31dcea0bfad676
    ping:42ms
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: abdcabaf84bd57ba51b4869a788013dd7d3481d3c639773d833e372416704d8e process: C:\Windows\System32\GameBarPresenceWriter.exe
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    SHAS2: 3b45100a52fabe524a2fbce0af2b7171b3a20a6d5c1a0048bf3ad0fedd39c589 process: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe
    F
    SHAS2: 21ce0c67be3233a903718c60ab9d2c1ebbabb52f014d40d71024aafa6f694f0c process: C:\Users\user\AppData\Local\Discord\app-0.0.309\Discord.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: 8aa9f609843412a16e06839dc42c723380ffed0d05b990040fab6e7277f4bb5d process: C:\Program Files (x86)\Overwolf\0.165.0.28\OverwolfBrowser.exe
    SHAS2: fdcbc0be0d89ebfae7d10e442d511e22695e9be6077434b3645a3845432deefa process: C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5004.0_x64__8wekyb3d8bbwe\GamingServices.exe
    SHAS2: fdcbc0be0d89ebfae7d10e442d511e22695e9be6077434b3645a3845432deefa process: C:\Program Files\WindowsApps\Microsoft.GamingServices_2.50.5004.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 93e3f68c57e5ec54b42b593ab2d1d66088ae6f4b74a6e9589c2137d46778bad4 process: C:\Users\user\OneDrive\Desktop\MossX64.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(494) : Each 120 at 2021-02-13 20:09:25 file: 005.JPG- Zip CRC: 08955a64ba864e9163b37e712bbffee6cb3f74a4741d4490c68ebc4627782dc9
    ping:59ms
    (Mon 2) DX11(527) : Each 120 at 2021-02-13 20:09:26 file: 006.JPG- Zip CRC: 331a6f364df892800eece0290099ac7db02909128d2027e885ebd66cc54060d7
    ping:42ms
    F

    (Mon 1) DX11(504) : Each 120 at 2021-02-13 20:09:57 file: 007.JPG- Zip CRC: 9d15164880a6c525ee188ae7e4ab54b95e853709e8a057e91a96c7582f0ea45f
    ping:39ms
    (Mon 2) DX11(526) : Each 120 at 2021-02-13 20:09:58 file: 008.JPG- Zip CRC: 30dc9e9ee9561e4068e7a9e30d5d0fa5441c2aa546215662c2261e12ec39222b
    ping:61ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 08d0ad2ffadedcd9167d77f200ea14458cda0b98bd67420087b0b4f7fc944e52 process: C:\Windows\System32\SearchProtocolHost.exe
    SHAS2: 08d0ad2ffadedcd9167d77f200ea14458cda0b98bd67420087b0b4f7fc944e52 process: C:\Windows\System32\SearchProtocolHost.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe

    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    (Mon 1) DX11(495) : Each 120 at 2021-02-13 20:11:14 file: 009.JPG- Zip CRC: 4ed8293128e0b13d934620deb6d708f00a608c0edfe4d6f7c1c91c9a13fd7fc9
    ping:36ms
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    (Mon 2) DX11(546) : Each 120 at 2021-02-13 20:11:16 file: 010.JPG- Zip CRC: 1af08810412741eab059726b88d831f4fd8243a1c0202e14936abd0ee046a5ad
    ping:37ms
    F
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe

    (Mon 1) DX11(558) : Each 120 at 2021-02-13 20:14:19 file: 011.JPG- Zip CRC: 3b1ffe99aacc28b9de7a9bc9ff21eb12ec3d0fb32c9874b4de0ca13946957437
    ping:44ms
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    (Mon 2) DX11(571) : Each 120 at 2021-02-13 20:14:21 file: 012.JPG- Zip CRC: 7f6d6d744e224e1852f97bcdf4bdece35597b0a109e78d612c8d72e11456d976
    ping:37ms
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(565) : Each 120 at 2021-02-13 20:17:07 file: 013.JPG- Zip CRC: 2ee093dbf0129b97e7645997c5543dd0cdb441827260bc4bdffc7827bde90316
    ping:41ms
    (Mon 2) DX11(577) : Each 120 at 2021-02-13 20:17:08 file: 014.JPG- Zip CRC: 461fa0868995e5d66d41ca003bf944b8b06584b2e5d7aa665231a0906b8627f5
    ping:55ms
    F

    SHAS2: 424f70a83c7d8d2d47ce250004a3e0314c5ca5baf3abda2772ea6bf4ada2b07e process: C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
    (Mon 1) DX11(553) : Each 120 at 2021-02-13 20:17:22 file: 015.JPG- Zip CRC: 1a62dbdb9f3f859ae46a9d102eefa5aef4e76a9dc315b87f9687f4c4bba3f559
    ping:45ms
    SHAS2: 424f70a83c7d8d2d47ce250004a3e0314c5ca5baf3abda2772ea6bf4ada2b07e process: C:\Users\user\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    (Mon 2) DX11(3471) : Each 120 at 2021-02-13 20:17:27 file: 016.JPG- Zip CRC: db83201a0a104f6f5a522c005d5d7c44959d7f445dbc54949f233634fe0f03db
    ping:60ms
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    F

    (Mon 1) DX11(528) : Each 120 at 2021-02-13 20:18:27 file: 017.JPG- Zip CRC: 77905a116ba83c0988a7238a1e8ea4f9d1357f977576c0ce6729b34e5f122879
    ping:50ms
    (Mon 2) DX11(565) : Each 120 at 2021-02-13 20:18:28 file: 018.JPG- Zip CRC: 5c1c274f012bd938243651b1ec8e1a9f052e6b0353f9ebb0e278d23042071e01
    ping:46ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(552) : Each 120 at 2021-02-13 20:19:54 file: 019.JPG- Zip CRC: 319f9baf106a3e5ea38ebf33dbb4a786e8b7296a0a661449d5473ef38a3e18e2
    ping:41ms
    (Mon 2) DX11(576) : Each 120 at 2021-02-13 20:19:55 file: 020.JPG- Zip CRC: bfc26082a06a0f1c60411075c825f952ae94a0d8ef70b49c4e403ea4df3113fe
    ping:43ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(550) : Each 120 at 2021-02-13 20:21:52 file: 021.JPG- Zip CRC: 3d4d588858f5057c7c6cb5778e7478589ccd356edd9c608bc7fcc3efad28ffb3
    ping:43ms
    (Mon 2) DX11(578) : Each 120 at 2021-02-13 20:21:53 file: 022.JPG- Zip CRC: b13b5f97f5dbc9ad31120389c2aa8b30bec2e7d2e52b3d257d8d866321cca2ac
    ping:47ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(552) : Each 120 at 2021-02-13 20:24:35 file: 023.JPG- Zip CRC: ddb0342e060ee6f3130f43b6843bbf8386872751b1da63522b95af3aeed676e7
    ping:36ms
    (Mon 2) DX11(577) : Each 120 at 2021-02-13 20:24:37 file: 024.JPG- Zip CRC: f702d50494e6dd32769f9f97a6a9ea4b39b8aeba1d660f1cbc4a76a964a27f51
    ping:49ms
    F
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(552) : Each 120 at 2021-02-13 20:27:27 file: 025.JPG- Zip CRC: 4e76ab42efeb480e4b8c9d925b36ca8046442b1714198cabea11407bbf849a56
    ping:40ms
    (Mon 2) DX11(593) : Each 120 at 2021-02-13 20:27:28 file: 026.JPG- Zip CRC: 46cce63e6d999511239395027a19be0bf09d5418e412054fd48ab6a11491d129
    ping:44ms
    F

    (Mon 1) DX11(572) : Each 120 at 2021-02-13 20:27:42 file: 027.JPG- Zip CRC: b441a5290f203a99d9392ef5c74fbb0e68546dc8bcaeceddaeddaa38bdcb6187
    ping:46ms
    (Mon 2) DX11(626) : Each 120 at 2021-02-13 20:27:44 file: 028.JPG- Zip CRC: b1b1e3f97665a3862925a59da703b306da3c89187b7e0d199a98530f13335350
    ping:49ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(525) : Each 120 at 2021-02-13 20:28:47 file: 029.JPG- Zip CRC: a5b25b127fbaa50a7b9a12e66956ca07455cb7d5ed63908dfa70d49df3cd6458
    ping:41ms
    (Mon 2) DX11(565) : Each 120 at 2021-02-13 20:28:48 file: 030.JPG- Zip CRC: b8f15f3f8d414fde4553c179bfdf7ae50e86face807bdb0832f2dd4602f71324
    ping:44ms
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    F
    SHAS2: 9a0fcc749687b495ca7b432c1ae37293ed6f2dae6ebbba03b9e3e4700e48dc24 process: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

    (Mon 1) DX11(543) : Each 120 at 2021-02-13 20:30:03 file: 031.JPG- Zip CRC: e566303571b08f3167651cdb0021c7c0ef76028510e8110cc73b574d63979037
    ping:48ms
    (Mon 2) DX11(811) : Each 120 at 2021-02-13 20:30:05 file: 032.JPG- Zip CRC: 990c982d1f7f7d6e6344405334456f3efa06471a067b4e960fd0741526baf838
    ping:42ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 2743093b45aed67ccd8babd14ece7cc7c24c7b0f1612d134821ccc4e3ff79b56 process: C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
    SHAS2: 2743093b45aed67ccd8babd14ece7cc7c24c7b0f1612d134821ccc4e3ff79b56 process: C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe

    (Mon 1) DX11(546) : Each 120 at 2021-02-13 20:30:54 file: 033.JPG- Zip CRC: d02b3f78f6062979e037dd860a4be86229a895e8251167e2b8ce1717ac398536
    ping:47ms
    (Mon 2) DX11(580) : Each 120 at 2021-02-13 20:30:56 file: 034.JPG- Zip CRC: fd00d9143b512cb08c5b9948b7e1a537d06b9745599e12d3d8a5f5aefcfa1ebb
    ping:52ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(551) : Each 120 at 2021-02-13 20:33:59 file: 035.JPG- Zip CRC: 0f9e7daa71a50a755a6b598a61d6791f3f7642a2d8a60c70a75ed58ec6be6a8a
    ping:55ms
    (Mon 2) DX11(578) : Each 120 at 2021-02-13 20:34:01 file: 036.JPG- Zip CRC: 9af6431d04c7e15f699cf3576444d4cdaf3513b771309e9d8070c8922b1ad36f
    ping:49ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe

    (Mon 1) DX11(539) : Each 120 at 2021-02-13 20:36:42 file: 037.JPG- Zip CRC: b1d421f357181761e2f9ef147529d7a8c7ebd327c774cfb4ffce588a1c3a0f27
    ping:53ms
    (Mon 2) DX11(1268) : Each 120 at 2021-02-13 20:36:44 file: 038.JPG- Zip CRC: 8562e13c1cd23ed84dd81d7de4a17e673ef77313707e0a3f8929afe57fbf2e1b
    ping:44ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(534) : Each 120 at 2021-02-13 20:37:31 file: 039.JPG- Zip CRC: ff4b8cb7a8addf9cd45c477ff659e0c426aa9ec4c5aa5eda60a9d2f66476efa0
    ping:46ms
    (Mon 2) DX11(570) : Each 120 at 2021-02-13 20:37:33 file: 040.JPG- Zip CRC: 408672c395c63e9c6052d2a346107b745f228a76f00dd37fa9a1c32fa74339ab
    ping:43ms
    F
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 8ae65245c36726d7ddadd62e4c4f372272f308b41ef5a447dd8985973542bc64 process: C:\Users\user\AppData\Roaming\Spotify\Spotify.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(554) : Each 120 at 2021-02-13 20:40:36 file: 041.JPG- Zip CRC: c71876974f28ae70c48994a7b11347829ffc1c98b93b26647e412261adaf9528
    ping:43ms
    (Mon 2) DX11(4492) : Each 120 at 2021-02-13 20:40:42 file: 042.JPG- Zip CRC: 640915a8fbc40aa169d220f86741cf731ce4a845ffaa5684e84a89fe196e7cc7
    ping:43ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(550) : Each 120 at 2021-02-13 20:41:49 file: 043.JPG- Zip CRC: 006e08d46d7729bf01446fb6c36b7b193b96085598941da975f2ab6f0dc03a4c
    ping:44ms
    (Mon 2) DX11(593) : Each 120 at 2021-02-13 20:41:51 file: 044.JPG- Zip CRC: af0ac067783e82fded7507174b587268434000063dbf29acbb7387acb69a2906
    ping:38ms
    F

    (Mon 1) DX11(515) : Each 120 at 2021-02-13 20:42:20 file: 045.JPG- Zip CRC: 46cda08695ea0dcd469836e76c9ad322dd9e79290511665679be83aadcebce18
    ping:39ms
    (Mon 2) DX11(555) : Each 120 at 2021-02-13 20:42:22 file: 046.JPG- Zip CRC: d8bf5e0c241ddd242067dc0beb30769d83045196566a464eeadbc34fb9333444
    ping:46ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(571) : Each 120 at 2021-02-13 20:44:29 file: 047.JPG- Zip CRC: 81707d1318034c64c9cd917e33e222a375a6fa695812f0f8e23414ffc8dcd37a
    ping:43ms
    (Mon 2) DX11(590) : Each 120 at 2021-02-13 20:44:30 file: 048.JPG- Zip CRC: a1a884965b7caaf9cb4a8451636379e331183babe18fccdca9fd8fee5223f74e
    ping:44ms
    F
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: e99da87423ff5df22da6a5d470930a8d5ac188f62013fcc68ffb92c7b02a67ff process: C:\Users\user\AppData\Local\Medal\app-4.625.0\Medal.exe
    SHAS2: b99d61d874728edc0918ca0eb10eab93d381e7367e377406e65963366c874450 process: C:\Windows\System32\cmd.exe

    (Mon 1) DX11(531) : Each 120 at 2021-02-13 20:47:34 file: 049.JPG- Zip CRC: 21a02b3432f25d6ddf29a008a20d5b7a471cfb50b094ab2a47ea93b69d078478
    ping:39ms
    (Mon 2) DX11(919) : Each 120 at 2021-02-13 20:47:36 file: 050.JPG- Zip CRC: 01dffb7333595e2323d989e19f79ce2982309dc4873dfe2b94aee2500369d16b
    ping:46ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(529) : Each 120 at 2021-02-13 20:50:39 file: 051.JPG- Zip CRC: f4033274748c8819c6dff4bfa74a8c56b22f03ec4150ede372709b8e777dd8e5
    ping:53ms
    (Mon 2) DX11(565) : Each 120 at 2021-02-13 20:50:41 file: 052.JPG- Zip CRC: 2219db2f2bb28da78dc4cd0faeb54e11ed93984f7462a682653f5bb72e195b0e
    ping:53ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(554) : Each 120 at 2021-02-13 20:53:44 file: 053.JPG- Zip CRC: b67ee36414d086f46199afd15b4b9a62a9ce050c3e84a980608b79c773d94da5
    ping:40ms
    (Mon 2) DX11(572) : Each 120 at 2021-02-13 20:53:46 file: 054.JPG- Zip CRC: b5bd08ef5f1931409b3d5ccfad546e885321716c467b8cf54bccc89865b14ce5
    ping:55ms
    F
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(528) : Each 120 at 2021-02-13 20:54:47 file: 055.JPG- Zip CRC: c9f2c15acd26704218400d2739a64458a83b845d04eac1d46383eddaab3a5d39
    ping:46ms
    (Mon 2) DX11(569) : Each 120 at 2021-02-13 20:54:49 file: 056.JPG- Zip CRC: fa0cdc368d9dded2266bd16d91331df40d32ca3cb308bca91f13f7aed29caf82
    ping:46ms
    F
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(559) : Each 120 at 2021-02-13 20:57:52 file: 057.JPG- Zip CRC: 7d9df2ccff68e01e2c5aa56a6876c533c88ad74b0ed23fb04e281ed18988277a
    ping:55ms
    (Mon 2) DX11(932) : Each 120 at 2021-02-13 20:57:54 file: 058.JPG- Zip CRC: 24b210c9c293bc424cb50c38a94fc49cf95a3524fbffb29630cbbd596adfc7b1
    ping:67ms
    F

    (Mon 1) DX11(557) : Each 120 at 2021-02-13 20:58:52 file: 059.JPG- Zip CRC: b08b6daecf5698a91372bc1cd592bcd2252cccec8f77409a20c2d85de47df61b
    ping:43ms
    (Mon 2) DX11(2339) : Each 120 at 2021-02-13 20:58:56 file: 060.JPG- Zip CRC: 148b04edf80b7f6886dcd245b2bd16a97a642329a7c86e2229f14fa63adae4a4
    ping:39ms
    F
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: c8d3bca1cfa293377e98c5d4d01a9f1af738100f38a1d8c8a40e326fd99cfb56 process: C:\Users\user\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileCoAuth.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe
    SHAS2: 66add601df49516881ab167768452026d9c6601cf758d2eab8f82c766dec280d process: C:\Windows\System32\SearchFilterHost.exe

    (Mon 1) DX11(545) : Each 120 at 2021-02-13 21:02:00 file: 061.JPG- Zip CRC: 48a4367ba1dc5ab742094e58a956c93a27d8a94516c9757af35f8624128f40c4
    ping:57ms
    (Mon 2) DX11(584) : Each 120 at 2021-02-13 21:02:01 file: 062.JPG- Zip CRC: a9a6830b9af42b5036e8daf27f2091d7aa057572e66acd34e613943af6f43740
    ping:41ms
    (Mon 1) DX11(537) : Each 120 at 2021-02-13 21:02:05 file: 063.JPG- Zip CRC: 63a889fad6bf3316c9086ab1bb2f91bd64a6366e9aa6e1bd06f9f4ac65845d86
    ping:38ms
    (Mon 2) DX11(582) : Each 120 at 2021-02-13 21:02:07 file: 064.JPG- Zip CRC: f4d3e2bfbc1918a94faae5266896ba39655c0864bdcb0351c46e38f04ad94539
    ping:46ms

    Monitor stoppped at 2021-02-13 21:02:04
    ping:50ms

    Processes statistics ping:50
    PID Running Time Kernel Time User Time Name
    952 02:05:31:00 00:00:44 00:00:47 lsass.exe
    1136 02:05:31:00 00:00:00 00:00:00 fontdrvhost.exe
    1184 02:05:31:00 00:00:00 00:00:00 WUDFHost.exe
    2196 02:05:31:00 00:00:00 00:00:00 WUDFHost.exe
    2548 02:05:31:00 00:00:00 00:00:00 NVDisplay.Container.exe
    3792 02:05:30:59 00:00:00 00:00:00 spoolsv.exe
    4396 02:05:30:59 00:00:00 00:00:00 RtkAudUService64.exe
    4416 02:05:30:59 00:00:00 00:00:00 RstMwService.exe
    4436 02:05:30:59 00:00:04 00:00:03 nvcontainer.exe
    4492 02:05:30:59 00:00:02 00:00:01 lghub_updater.exe
    4500 02:05:30:59 00:00:00 00:00:00 LMS.exe
    4848 02:05:30:59 00:00:01 00:00:01 dashost.exe
    4884 02:05:30:59 00:00:00 00:00:00 jhi_service.exe
    6652 02:05:30:58 00:00:00 00:00:00 dashost.exe
    6876 02:05:30:58 03:57:15 00:42:19 wmiprvse.exe
    9480 02:05:30:53 00:00:20 00:01:40 SearchIndexer.exe
    11344 02:05:30:46 00:36:03 00:16:07 AUDIODG.EXE
    17048 02:05:30:04 00:00:03 00:00:06 OriginWebHelperService.exe
    19680 00:16:18:50 00:00:00 00:00:00 WinLogon.exe
    27392 00:16:18:50 00:00:00 00:00:01 fontdrvhost.exe
    6372 00:16:18:50 00:05:09 00:11:18 dwm.exe
    13360 00:16:18:43 00:00:01 00:00:02 NVDisplay.Container.exe
    23948 00:04:36:46 00:00:18 00:00:13 nvcontainer.exe
    14352 00:04:36:46 00:00:04 00:00:37 nvcontainer.exe
    9060 00:04:36:46 00:00:01 00:00:01 sihost.exe
    15780 00:04:36:46 00:01:03 00:00:45 Explorer.EXE
    26020 00:04:36:46 00:00:00 00:00:00 taskhostw.exe
    7624 00:04:36:46 00:00:02 00:00:06 StartMenuExperienceHost.exe
    11944 00:04:36:45 00:00:00 00:00:00 RuntimeBroker.exe
    8788 00:04:36:45 00:00:02 00:00:05 SearchApp.exe
    3592 00:04:36:45 00:00:00 00:00:00 RuntimeBroker.exe
    18132 00:04:36:45 00:00:00 00:00:00 SettingSyncHost.exe
    16928 00:04:36:45 00:00:03 00:00:01 ctfmon.exe
    21540 00:04:36:45 00:00:00 00:00:01 NVIDIA Web Helper.exe
    12296 00:04:36:45 00:00:00 00:00:00 conhost.exe
    24520 00:04:36:44 00:00:00 00:00:00 RuntimeBroker.exe
    27720 00:04:36:44 00:00:00 00:00:01 TextInputHost.exe
    16148 00:04:36:42 00:00:00 00:00:00 nvsphelper64.exe
    21684 00:04:36:42 00:00:03 00:00:02 NVIDIA Share.exe
    1712 00:04:36:41 00:00:00 00:00:00 NVIDIA Share.exe
    23404 00:04:36:41 00:00:00 00:00:02 NVIDIA Share.exe
    28132 00:04:36:35 00:00:00 00:00:00 SecurityHealthSystray.exe
    2224 00:04:36:35 00:00:00 00:00:00 RtkAudUService64.exe
    30492 00:04:36:34 00:00:00 00:00:00 vgtray.exe
    30992 00:04:36:34 00:00:09 00:00:10 OneDrive.exe
    9268 00:04:36:32 00:00:00 00:00:00 lghub.exe
    16692 00:04:36:32 00:00:06 00:00:18 lghub_agent.exe
    3760 00:04:36:32 00:00:00 00:00:00 lghub.exe
    3468 00:04:36:32 00:00:00 00:00:00 lghub.exe
    29776 00:04:36:31 00:02:52 00:00:11 steam.exe
    31420 00:04:36:31 00:00:00 00:00:00 unsecapp.exe
    21460 00:04:36:31 00:00:00 00:00:00 logi_crashpad_handler.exe
    10592 00:04:36:31 00:00:00 00:00:00 logi_crashpad_handler.exe
    1336 00:04:36:31 00:00:00 00:00:00 lghub.exe
    24252 00:04:36:30 00:00:00 00:00:00 steamwebhelper.exe
    4948 00:04:36:30 00:00:00 00:00:00 SteamService.exe
    17980 00:04:36:30 00:00:00 00:00:00 steamwebhelper.exe
    31404 00:04:36:30 00:00:00 00:00:00 steamwebhelper.exe
    20224 00:04:36:30 00:00:00 00:00:00 steamwebhelper.exe
    988 00:04:36:30 00:03:21 00:01:02 Overwolf.exe
    1472 00:04:36:29 00:00:00 00:00:01 logi_analytics_client.exe
    20372 00:04:36:29 00:00:01 00:00:02 FACEIT.exe
    7880 00:04:36:29 00:00:04 00:00:08 Origin.exe
    17436 00:04:36:28 00:00:00 00:00:02 FACEIT.exe
    13072 00:04:36:28 00:00:00 00:00:01 FACEIT.exe
    9900 00:04:36:28 00:00:13 00:01:10 Medal.exe
    16720 00:04:36:28 00:00:00 00:00:00 browser_assistant.exe
    22116 00:04:36:28 00:00:00 00:00:00 browser_assistant.exe
    24348 00:04:36:27 00:00:03 00:00:06 NGenuity.exe
    17964 00:04:36:27 00:00:00 00:00:00 OverwolfBrowser.exe
    14940 00:04:36:27 00:00:00 00:00:04 OverwolfBrowser.exe
    7152 00:04:36:26 00:00:03 00:00:07 OverwolfBrowser.exe
    29824 00:04:36:26 00:00:08 00:00:44 Medal.exe
    22308 00:04:36:26 00:00:00 00:00:00 Medal.exe
    28472 00:04:36:25 00:00:03 00:00:47 FACEIT.exe
    25072 00:04:36:25 00:00:00 00:00:01 steamwebhelper.exe
    15412 00:04:36:25 00:00:00 00:00:00 steamwebhelper.exe
    16896 00:04:36:25 00:00:00 00:00:01 steamwebhelper.exe
    20672 00:04:36:24 00:01:41 00:00:03 OverwolfHelper.exe
    19540 00:04:36:24 00:01:09 00:00:01 OverwolfHelper64.exe
    7096 00:04:36:22 00:00:00 00:00:00 FACEIT.exe
    1428 00:04:36:22 00:00:00 00:00:00 FACEIT.exe
    17876 00:04:36:22 00:00:00 00:00:00 FACEIT.exe
    8596 00:04:36:22 00:00:00 00:00:00 FACEIT.exe
    27400 00:04:36:22 00:00:00 00:00:00 FACEIT.exe
    15140 00:04:36:22 00:00:07 00:03:01 EpicGamesLauncher.exe
    18048 00:04:36:21 00:00:15 00:01:05 Spotify.exe
    9092 00:04:36:21 00:00:00 00:00:00 Spotify.exe
    19488 00:04:36:21 00:00:03 00:00:18 Spotify.exe
    12832 00:04:36:21 00:00:01 00:00:01 Spotify.exe
    17384 00:04:36:21 00:00:02 00:00:53 Spotify.exe
    29440 00:04:36:20 00:00:00 00:00:00 EpicWebHelper.exe
    1968 00:04:36:20 00:00:00 00:00:00 CCXProcess.exe
    8208 00:04:36:20 00:00:00 00:00:00 node.exe
    28988 00:04:36:20 00:00:00 00:00:00 conhost.exe
    31320 00:04:36:19 00:00:48 00:01:01 Discord.exe
    17136 00:04:36:19 00:00:05 00:01:46 Medal.exe
    8456 00:04:36:19 00:00:00 00:00:00 QtWebEngineProcess.exe
    27384 00:04:36:19 00:00:00 00:00:00 Cortana.exe
    20644 00:04:36:19 00:00:00 00:00:00 EpicWebHelper.exe
    26364 00:04:36:19 00:00:00 00:00:05 QtWebEngineProcess.exe
    20804 00:04:36:19 00:00:01 00:00:00 XboxAppServices.exe
    23296 00:04:36:19 00:00:00 00:00:00 Discord.exe
    12416 00:04:36:18 00:00:48 00:05:20 Discord.exe
    10040 00:04:36:18 00:00:00 00:00:00 RuntimeBroker.exe
    22360 00:04:36:18 00:00:04 00:00:11 Discord.exe
    15392 00:04:36:18 00:00:00 00:00:00 AdobeIPCBroker.exe
    27636 00:04:36:18 00:00:00 00:00:00 SpeechRuntime.exe
    6496 00:04:36:18 00:00:00 00:00:00 ApplicationFrameHost.exe
    29032 00:04:36:18 00:00:00 00:00:00 WSHelper.exe
    27564 00:04:36:17 00:07:29 00:51:41 Discord.exe
    30840 00:04:36:16 00:01:01 00:00:56 NGenuity.exe
    22336 00:04:36:14 00:00:00 00:00:01 Discord.exe
    29940 00:04:36:12 00:00:02 00:00:04 Medal.exe
    9212 00:04:36:12 00:00:00 00:00:00 conhost.exe
    3520 00:04:36:12 00:06:57 00:25:17 MedalEncoder.exe
    12068 00:04:28:49 00:00:01 00:00:01 ShellExperienceHost.exe
    8516 00:04:28:49 00:00:00 00:00:00 RuntimeBroker.exe
    1724 00:04:28:04 00:00:02 00:00:12 WhatsApp.exe
    9492 00:04:28:04 00:00:00 00:00:00 WhatsApp.exe
    26012 00:04:28:04 00:00:02 00:00:05 WhatsApp.exe
    20064 00:04:28:04 00:00:00 00:00:00 WhatsApp.exe
    31208 00:04:28:04 00:00:01 00:00:18 WhatsApp.exe
    23316 00:04:28:03 00:00:00 00:00:00 DllHost.exe
    20088 00:04:26:45 00:00:00 00:00:00 UserOOBEBroker.exe
    31716 00:04:26:21 00:00:00 00:00:00 DllHost.exe
    10344 00:04:23:41 00:01:50 00:03:35 msedge.exe
    7196 00:04:23:41 00:00:00 00:00:00 msedge.exe
    6232 00:04:23:41 00:04:06 00:16:34 msedge.exe
    13020 00:04:23:41 00:01:17 00:02:40 msedge.exe
    22532 00:04:23:41 00:00:00 00:00:00 msedge.exe
    22960 00:04:23:41 00:00:08 00:02:05 msedge.exe
    16172 00:04:23:41 00:00:05 00:00:30 msedge.exe
    17904 00:04:23:37 00:00:38 00:08:25 msedge.exe
    31724 00:04:23:35 00:00:00 00:00:00 msedge.exe
    3728 00:04:23:32 00:00:00 00:00:00 msedge.exe
    17112 00:04:23:31 00:00:02 00:00:06 msedge.exe
    22020 00:04:23:17 00:00:00 00:00:00 CompPkgSrv.exe
    28208 00:04:20:50 00:01:30 00:25:05 msedge.exe
    7248 00:04:13:41 00:02:56 00:04:19 upc.exe
    4672 00:04:13:37 00:00:01 00:00:16 UplayWebCore.exe
    20884 00:04:13:20 00:00:01 00:00:14 UplayWebCore.exe
    9728 00:04:13:20 00:00:00 00:00:00 UplayWebCore.exe
    12872 00:04:13:15 00:00:03 00:00:53 UplayWebCore.exe
    12096 00:04:12:54 00:00:00 00:00:00 UbisoftGameLauncher.exe
    19212 00:04:12:45 00:00:00 00:00:00 RainbowSix_BE.exe
    6168 00:04:12:25 00:00:34 00:01:27 Discord.exe
    23884 00:04:12:25 00:00:00 00:00:04 Discord.exe
    3608 00:04:12:25 00:00:00 00:00:00 Discord.exe
    23848 00:04:12:25 00:00:01 00:00:03 Discord.exe
    10192 00:04:12:24 00:00:00 00:00:00 OverwolfBrowser.exe
    6268 00:04:12:24 00:00:02 00:00:45 OverwolfBrowser.exe
    26252 00:04:12:24 00:00:02 00:00:43 OverwolfBrowser.exe
    18268 00:04:12:24 00:00:00 00:00:01 OverwolfBrowser.exe
    31160 00:04:12:22 00:00:01 00:00:20 OverwolfBrowser.exe
    14112 00:04:12:20 00:00:00 00:00:00 GameBarPresenceWriter.exe
    24304 00:04:12:18 00:01:12 00:06:05 Discord.exe
    29628 00:04:12:17 00:00:00 00:00:01 UplayWebCore.exe
    10268 00:04:12:17 00:00:11 00:01:12 UplayWebCore.exe
    11716 00:04:12:10 00:00:00 00:00:00 Discord.exe
    15740 00:04:12:09 00:00:00 00:00:00 OverwolfBrowser.exe
    8036 00:04:11:49 00:00:00 00:00:08 OverwolfBrowser.exe
    28872 00:03:18:02 00:00:01 00:00:00 GamingServices.exe
    13148 00:03:18:02 00:00:00 00:00:00 GamingServicesNet.exe
    8084 00:02:22:00 00:00:02 00:00:18 msedge.exe
    17260 00:02:06:21 00:00:00 00:00:08 msedge.exe
    6404 00:02:06:21 00:00:00 00:00:02 msedge.exe
    19328 00:01:48:06 00:00:03 00:00:31 msedge.exe
    3068 00:01:48:00 00:00:06 00:01:17 msedge.exe
    26972 00:01:42:32 00:00:50 00:00:46 MossX64.exe
    22076 00:01:37:02 00:00:02 00:00:23 msedge.exe
    19000 00:00:51:27 00:00:00 00:00:00 SearchProtocolHost.exe
    15460 00:00:33:18 00:00:00 00:00:00 msedge.exe
    23656 00:00:00:56 00:00:00 00:00:00 SearchFilterHost.exe
    4202 keystroke, 148 Patterns found

    Mouse down moves ( no recoil )
    ^ events 0
    10 |
    9 |
    8 |
    7 |
    6 |
    5 |
    4 |
    3 |
    2 |
    1 |
    ———————————————————————————————————————————————————-> 150 px moves
    0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000111111111111111111111111111111111111111111111111111
    0000000000111111111122222222223333333333444444444455555555556666666666777777777788888888889999999999000000000011111111112222222222333333333344444444445
    0123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890

    Mouse fast moves ( aimbot )
    ^ events: 338 over : 0
    71 | X
    63 | X
    56 | X
    49 | X
    42 | X
    35 | X X
    28 | XXX
    21 | XXX
    14 | XXXXX
    7 | XXXXXXXX X XX X
    ———————————————————————————————————————————————————-> px/s moves
    0000000000000000000011111111111111111111222222222222222222223333333333333333333344444444444444444444555555555555555555556666666666666666666677777777777
    0011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445566778899001122334455667788990011223344556677889900112233445
    0505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050505050
    0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000

    Global log CRC: 1c77f1653c022fa7db2d93edbeff1a85bceb16628df071e2691de3639390f601

    #7034
    ADM_nohope
    Keymaster

    no

Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.