Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 10: www1.online durch OpenOffice (https://www.trojaner-board.de/202262-windows-10-www1-online-openoffice.html)

Schmuizin 24.07.2021 12:51
Windows 10: www1.online durch OpenOffice
 
Hallo zusammen,

leider habe ich durch eigene Unaufmerksamkeit nach meinen PC start einer fragwürdigen Installation eines OpenOffice Updates zugestimmt. Daraufhin war meine Browser Startseite verändert, was ich allerdings schon wieder rückgängig machen konnte. Auch habe ich einmal Sypbot und Malwarebytes durchlaufen lassen. Jetzt weiß ich allerdings nicht, ob schon alles behoben ist oder ob ich noch etwas machen muss.


Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 19-07-2021 01
durchgeführt von jendr (Administrator) auf DESKTOP-1I15JVI (HP OMEN by HP Desktop PC 880-p5xx) (24-07-2021 13:31:40)
Gestartet von C:\Users\jendr\Desktop
Geladene Profile: jendr
Platform: Windows 10 Home Version 21H1 19043.1110 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Charles Milette) C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_9.0.0.0_x86__v826wp6bftszj\TranslucentTB\TranslucentTB.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_4950c0f0d48ae6e7\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Skutta, Kristjan -> ) C:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) F:\Steam\steam.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Genshin Impact Beta_Launcher] => [X]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6787856 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519096 2021-07-10] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519096 2021-07-10] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Windows x64\Print Processors\Canon TS5000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDF.DLL [30720 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series: C:\Windows\system32\CNMLMDF.DLL [485376 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {186FE316-5E48-4414-B1FE-A3A1B1373882} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {1A055815-A897-4DCD-BD46-AA32C6467989} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {20EC0BCF-A125-4883-96B1-B64670D462B8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [682424 2021-07-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {21A56739-C22D-4DBA-9F0E-59C2D40DEAC8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {65A00EC4-D760-4923-9BA1-B35B254E2935} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {980B8057-D6EA-4914-9B9E-4F4EFBA7F137} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D1A40124-5E76-4767-8F0B-F5145C45C6B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF8E9224-03F1-4E49-AD1F-AB771FE561FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MpCmdRun.exe [644888 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{03d0807c-f80c-47db-a029-c5e14e2ed723}: [DhcpNameServer] 192.168.178.1

Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\jendr\AppData\Local\Microsoft\Edge\User Data\Default [2021-07-24]

FireFox:
========
FF DefaultProfile: picqrk0f.default
FF ProfilePath: C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\picqrk0f.default [2020-07-30]
FF ProfilePath: C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release [2021-07-24]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\browsec@browsec.com.xpi [2021-07-20]
FF Extension: (BetterTTV) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\firefox@betterttv.net.xpi [2021-07-20]
FF Extension: (uBlock Origin) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-07-10]
FF Extension: (Dark Mode) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\{174b2d58-b983-4501-ab4b-07e71203cb43}.xpi [2021-07-10]
FF Extension: (Twitch Channel Points Autoclicker) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\{3c9b993f-29b9-44c2-a913-def7b93a70b1}.xpi [2021-02-03]
FF Extension: (gray leaf) - C:\Users\jendr\AppData\Roaming\Mozilla\Firefox\Profiles\bw1x1y5f.default-release\Extensions\{979aae3a-31db-479d-b7d5-95054b5a33ff}.xpi [2020-07-30]
FF Plugin-x32: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818288 2020-09-09] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPAppHelperCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\AppHelperCap.exe [734752 2021-05-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\DiagsCap.exe [733192 2021-05-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\NetworkCap.exe [733216 2021-05-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8e04d689d875112c\x64\SysInfoCap.exe [733720 2021-05-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_4950c0f0d48ae6e7\x64\TouchpointAnalyticsClientService.exe [489512 2021-05-14] (HP Inc. -> HP Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7477704 2021-07-20] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; F:\Origin\OriginClientService.exe [2556048 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; F:\Origin\OriginWebHelperService.exe [3474584 2021-06-22] (Electronic Arts, Inc. -> Electronic Arts)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-04-28] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [321560 2021-04-13] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-03-22] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-07-09] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533808 2021-01-29] (Razer USA Ltd. -> Razer Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 ss_conn_launcher_service; C:\Windows\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S2 Wallpaper Engine Service; C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [520288 2021-03-12] (Skutta, Kristjan -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\NisSrv.exe [2665432 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe [136640 2021-07-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 HPCustomCapDriver; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [33352 2018-12-19] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [33464 2018-12-19] (HP Inc. -> HP Inc.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-07-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-07-20] (Malwarebytes Inc -> Malwarebytes)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0065; C:\Windows\System32\drivers\RzDev_0065.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0228; C:\Windows\System32\drivers\RzDev_0228.sys [54160 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\Windows\System32\drivers\RzDev_0306.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0c01; C:\Windows\System32\drivers\RzDev_0c01.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc)
U0 Spybot3ELAM; C:\Windows\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\Windows\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ViGEmBus; C:\Windows\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-07-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [425192 2021-07-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [76008 2021-07-03] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-07-24 13:31 - 2021-07-24 13:31 - 000019235 _____ C:\Users\jendr\Desktop\FRST.txt
2021-07-24 13:28 - 2021-07-24 13:28 - 002300416 _____ (Farbar) C:\Users\jendr\Desktop\FRST64(1).exe
2021-07-20 21:07 - 2021-07-20 21:08 - 000046631 _____ C:\Users\jendr\Downloads\Addition.txt
2021-07-20 21:06 - 2021-07-24 13:31 - 000000000 ____D C:\FRST
2021-07-20 21:06 - 2021-07-20 21:08 - 000027738 _____ C:\Users\jendr\Downloads\FRST.txt
2021-07-20 21:06 - 2021-07-20 21:06 - 002300416 _____ (Farbar) C:\Users\jendr\Downloads\FRST64.exe
2021-07-20 21:06 - 2021-07-20 21:06 - 000000000 ____D C:\Users\jendr\Downloads\FRST-OlderVersion
2021-07-20 21:04 - 2021-07-20 21:04 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-07-20 21:02 - 2021-07-20 21:04 - 000000000 ____D C:\AdwCleaner
2021-07-20 21:02 - 2021-07-20 21:02 - 008553680 _____ (Malwarebytes) C:\Users\jendr\Downloads\adwcleaner_8.3.0.exe
2021-07-20 21:00 - 2021-07-24 13:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-07-20 20:46 - 2021-07-20 20:46 - 000000000 _____ C:\Users\jendr\Desktop\Neues Textdokument.txt
2021-07-20 20:43 - 2021-07-20 20:43 - 000000000 ____D C:\Windows\system32\Tasks\Safer-Networking
2021-07-20 20:42 - 2021-07-20 20:59 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2021-07-20 20:42 - 2021-07-20 20:43 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2021-07-20 20:42 - 2021-07-20 20:42 - 000001464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2021-07-20 20:42 - 2021-07-20 20:42 - 000001452 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2021-07-20 20:42 - 2021-07-20 20:42 - 000000000 ____D C:\Users\jendr\AppData\Local\Safer-Networking Ltd
2021-07-20 20:42 - 2021-07-20 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2021-07-20 20:42 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\Spybot3ELAM.sys
2021-07-20 20:42 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean64.exe
2021-07-20 20:38 - 2021-07-20 20:39 - 069300040 _____ (Safer-Networking Ltd. ) C:\Users\jendr\Downloads\spybotsd-2.8.68.0.exe
2021-07-20 20:37 - 2021-07-20 20:37 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-07-20 20:37 - 2021-07-20 20:37 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-07-20 20:37 - 2021-07-20 20:37 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-07-20 20:37 - 2021-07-20 20:37 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-07-20 20:37 - 2021-07-20 20:37 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-07-20 20:37 - 2021-07-20 20:37 - 000000000 ____D C:\Users\jendr\AppData\Local\mbam
2021-07-20 20:37 - 2021-07-20 20:37 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-07-20 20:36 - 2021-07-20 20:36 - 002092128 _____ (Malwarebytes) C:\Users\jendr\Downloads\MBSetup.exe
2021-07-20 20:36 - 2021-07-20 20:36 - 000000000 ____D C:\Program Files\Malwarebytes
2021-07-20 20:32 - 2021-07-20 20:32 - 000007334 _____ C:\Users\jendr\Desktop\OpenDocument Text (neu).odt
2021-07-18 12:49 - 2021-07-18 12:49 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-07-18 12:49 - 2021-07-18 12:49 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-07-18 12:49 - 2021-07-18 12:49 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsraLegacy.tlb
2021-07-18 12:49 - 2021-07-18 12:49 - 000007680 _____ (Microsoft Corporation) C:\Windows\system32\MsraLegacy.tlb
2021-07-18 12:49 - 2021-07-18 12:49 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rendezvousSession.tlb
2021-07-18 12:49 - 2021-07-18 12:49 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\rendezvousSession.tlb
2021-07-03 09:26 - 2021-07-03 09:26 - 002371072 _____ C:\Windows\system32\rdpnano.dll
2021-07-03 09:26 - 2021-07-03 09:26 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-07-03 09:26 - 2021-07-03 09:26 - 001393504 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-07-03 09:26 - 2021-07-03 09:26 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-07-03 09:26 - 2021-07-03 09:26 - 000570880 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2021-07-03 09:26 - 2021-07-03 09:26 - 000452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2021-07-03 09:26 - 2021-07-03 09:26 - 000097792 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-07-03 09:26 - 2021-07-03 09:26 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2021-07-03 09:26 - 2021-07-03 09:26 - 000067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2021-07-03 09:26 - 2021-07-03 09:26 - 000060928 _____ C:\Windows\system32\runexehelper.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-07-24 13:23 - 2020-12-27 19:44 - 000164696 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2021-07-24 13:23 - 2020-12-27 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-07-24 13:23 - 2020-12-27 19:44 - 000000000 ____D C:\Program Files (x86)\Java
2021-07-24 13:20 - 2020-07-30 22:04 - 000000000 ____D C:\Users\jendr\AppData\LocalLow\Mozilla
2021-07-24 13:20 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-07-24 13:19 - 2020-07-30 22:04 - 000000000 ____D C:\ProgramData\Mozilla
2021-07-24 13:18 - 2020-08-29 01:05 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-07-24 13:18 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-07-24 13:17 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-07-20 21:09 - 2020-08-01 11:49 - 000000000 ____D C:\ProgramData\NVIDIA
2021-07-20 21:04 - 2020-07-30 22:04 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-07-20 21:04 - 2020-07-30 22:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-20 21:04 - 2020-07-30 20:15 - 000000000 ____D C:\ProgramData\HP
2021-07-20 20:58 - 2020-08-10 18:51 - 000000000 ____D C:\Users\jendr\AppData\Local\CrashDumps
2021-07-20 20:47 - 2020-07-30 17:49 - 001632020 _____ C:\Windows\system32\PerfStringBackup.INI
2021-07-20 20:47 - 2019-12-07 16:50 - 000705894 _____ C:\Windows\system32\perfh007.dat
2021-07-20 20:47 - 2019-12-07 16:50 - 000142188 _____ C:\Windows\system32\perfc007.dat
2021-07-20 20:47 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-07-20 20:40 - 2020-07-30 17:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-07-20 20:40 - 2020-07-30 17:43 - 000008192 ___SH C:\DumpStack.log.tmp
2021-07-20 20:40 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-07-20 20:37 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-07-20 20:20 - 2020-07-30 17:43 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-07-18 12:56 - 2020-08-04 15:31 - 000000000 ____D C:\Program Files (x86)\Razer
2021-07-18 12:56 - 2020-07-30 17:43 - 000293976 _____ C:\Windows\system32\FNTCACHE.DAT
2021-07-18 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-07-18 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-07-18 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-07-18 12:56 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-18 12:50 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-07-18 12:47 - 2020-07-30 20:27 - 000000000 ____D C:\Windows\system32\MRT
2021-07-18 12:46 - 2020-07-31 13:43 - 000000000 ____D C:\Users\jendr\AppData\Local\Ubisoft Game Launcher
2021-07-18 12:46 - 2020-07-30 20:27 - 133422552 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-07-18 12:44 - 2020-07-30 20:39 - 000000000 ____D C:\Users\jendr\AppData\Local\Battle.net
2021-07-18 12:43 - 2020-08-04 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2021-07-18 12:42 - 2020-08-04 15:34 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2021-07-18 12:41 - 2020-07-30 20:16 - 000003380 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3267400732-2583111342-1326098953-1001
2021-07-18 12:41 - 2020-07-30 20:16 - 000000000 ___RD C:\Users\jendr\OneDrive
2021-07-18 12:41 - 2020-07-30 20:13 - 000002399 _____ C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-07-03 09:57 - 2020-08-05 22:50 - 000000000 ____D C:\ProgramData\Origin
2021-07-03 09:55 - 2020-07-30 20:56 - 000000000 ____D C:\Users\jendr\AppData\Local\D3DSCache
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-07-03 09:42 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\Provisioning
2021-07-03 09:34 - 2020-08-18 14:11 - 000000000 ____D C:\Users\jendr\AppData\Roaming\discord
2021-07-03 09:34 - 2020-08-18 14:11 - 000000000 ____D C:\Users\jendr\AppData\Local\Discord
2021-07-03 09:19 - 2020-07-30 17:44 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-07-03 09:02 - 2020-08-29 01:05 - 000003700 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-03 09:02 - 2020-08-29 01:05 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
durchgeführt von jendr (24-07-2021 13:32:25)
Gestartet von C:\Users\jendr\Desktop
Windows 10 Home Version 21H1 19043.1110 (X64) (2020-07-30 15:45:12)
Start-Modus: Normal
==========================================================


==================== Konten: =============================


(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

Administrator (S-1-5-21-3267400732-2583111342-1326098953-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3267400732-2583111342-1326098953-503 - Limited - Disabled)
Gast (S-1-5-21-3267400732-2583111342-1326098953-501 - Limited - Disabled)
jendr (S-1-5-21-3267400732-2583111342-1326098953-1001 - Administrator - Enabled) => C:\Users\jendr
WDAGUtilityAccount (S-1-5-21-3267400732-2583111342-1326098953-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 21.00 alpha (x64) (HKLM\...\7-Zip) (Version: 21.00 alpha - Igor Pavlov)
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version:  - Ubisoft)
balenaEtcher 1.5.116 (HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.5.116 - Balena Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Crash Bandicoot 4 (HKLM-x32\...\Crash Bandicoot 4) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{2D833785-910B-4E02-9A6B-51BD3D2F2FCE}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Java 8 Update 301 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.4.3.125 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.3.125 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.55 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.71 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{27B34E47-68AE-4802-822A-9F0C187AF84A}) (Version: 1.0.0.0 - Mojang)
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 90.0.1 (x64 de)) (Version: 90.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 79.0 - Mozilla)
NVIDIA Grafiktreiber 462.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenOffice 4.1.9 (HKLM-x32\...\{2847E8B7-AB29-48EE-ADAF-513EC769E8A9}) (Version: 4.19.9805 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.101.48500 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
RaiderIO 1.5.2 (HKLM\...\ea53c16d-4ef5-533f-83dc-5b0c5bb40cb2) (Version: 1.5.2 - jah@raider.io)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.0715.071014 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.8.68.0 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Twitch (HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
Windows-Treiberpaket - Razer Inc. (WinUSB) USB  (05/04/2016 6.2.9200.16385) (HKLM\...\874D6B1A2BD2AE8FF3594AB704F2A4A3F8342FB5) (Version: 05/04/2016 6.2.9200.16385 - Razer Inc.)

Packages:
=========
Amazon Alexa -> C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08 [2021-07-03] (AMZN Mobile LLC.) [Startup Task]
Crusader Kings III -> C:\Program Files\WindowsApps\ParadoxInteractive.ProjectTitus_1.0.108.0_x64__zfnrdv2de78ny [2021-07-03] (Paradox Interactive)
Descenders -> C:\Program Files\WindowsApps\NoMoreRobots.GamePreviewDescenders_0.1.122.0_x64__671zbmwb2bw9p [2021-07-20] (No More Robots)
Desperados III -> C:\Program Files\WindowsApps\NordicGames.DesperadosIII_1.4.0.0_x64__46xc33nm0q0f8 [2021-01-27] (THQ Nordic)
File Browser -> C:\Program Files\WindowsApps\41824Dozrekt.FileBrowser_10.3.0.0_x64__9t528rzsjvqc6 [2020-12-22] (Neme)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-04-07] (Yair A)
Hollow Knight -> C:\Program Files\WindowsApps\TeamCherry.HollowKnightPC_1.0.3.0_x86__y4jvztpgccj42 [2020-12-28] (Team Cherry)
Human Fall Flat -> C:\Program Files\WindowsApps\CurveDigital.HumanFallFlatPC_1.2.0.0_x64__1ezqdnbhnc70m [2021-05-29] (Curve Digital)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-02] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]
Minecraft Dungeons -> C:\Program Files\WindowsApps\Microsoft.Lovika_1.9.3.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios)
Moving Out -> C:\Program Files\WindowsApps\Team17DigitalLimited.MovingOutWin10_1.1.45.0_x64__j5x4vj4y67jhc [2021-02-24] (Team17 Digital Limited)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-06-12] (NVIDIA Corp.)
Ori and the Blind Forest: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.OriandtheBlindForestDefinitiveEdition_1.1.29.0_x64__8wekyb3d8bbwe [2020-09-18] (Microsoft Studios)
Ori And The Will Of The Wisps -> C:\Program Files\WindowsApps\Microsoft.Patagonia_1.0.8978.0_x64__8wekyb3d8bbwe [2020-11-20] (Microsoft Studios)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.103.2791.2_x64__8wekyb3d8bbwe [2021-07-18] (ms-resource:PublisherDisplayName)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0 [2021-07-18] (Spotify AB) [Startup Task]
Tell Me Why -> C:\Program Files\WindowsApps\Microsoft.Breathless_1.53.3.0_x64__8wekyb3d8bbwe [2020-10-30] (Microsoft Studios)
The Messenger -> C:\Program Files\WindowsApps\DevolverDigital.TheMessenger_2.0.3.0_x64__6kzv4j18v0c96 [2020-09-18] (Devolver Digital)
TranslucentTB -> C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_9.0.0.0_x86__v826wp6bftszj [2021-07-03] (Charles Milette) [Startup Task]
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.9.0_x86__xpfg3f7e9an52 [2021-06-12] (New Work SE)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-20] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\nvshext.dll [2021-04-19] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-01-19] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-20] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2021-07-03 09:05 - 2021-07-03 09:05 - 074219008 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\Alexa.dll
2020-11-26 20:30 - 2020-11-26 20:30 - 000948736 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\e_sqlite3.dll
2021-07-03 09:05 - 2021-07-03 09:05 - 000170496 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\libpryon_lite.dll
2021-06-12 11:10 - 2021-06-12 11:10 - 008646796 _____ () [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\NativeRingService.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 001230336 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoFoundation.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 000207872 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoJSON.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 000810496 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNet.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 000238592 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNetSSLWin.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 000335360 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoUtil.dll
2021-03-12 05:28 - 2021-03-12 05:28 - 000455168 _____ (Applied Informatics Software Engineering GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoXML.dll
2020-11-26 19:48 - 2020-11-26 19:48 - 000059392 _____ (by nICO (chick80@libero.it) - 2004. Modified by TranslucentTB devs) [Datei ist nicht signiert] C:\Program Files\WindowsApps\28017CharlesMilette.TranslucentTB_9.0.0.0_x86__v826wp6bftszj\TranslucentTB\CPicker.dll
2021-02-06 22:34 - 2021-01-19 17:00 - 000077312 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2020-11-26 20:30 - 2020-11-26 20:30 - 000297265 _____ (MingW-W64 Project. All rights reserved.) [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\libwinpthread-1.dll
2020-11-26 20:30 - 2020-11-26 20:30 - 000266752 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\bass.dll
2020-11-26 20:30 - 2020-11-26 20:30 - 000112640 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\bassmidi.dll
2020-11-26 20:30 - 2020-11-26 20:30 - 000045056 _____ (Un4seen Developments) [Datei ist nicht signiert] C:\Program Files\WindowsApps\57540AMZNMobileLLC.AmazonAlexa_3.7.890.0_x64__22t9g3sebte08\bassmix.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\jendr\AppData\Local\Temp:$DATA​ [16]
AlternateDataStreams: C:\Users\jendr\Documents\Retropie:files_layoutmode [121]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\ssv.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-07-24] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jendr\Pictures\wallpaperbetter.com_2560x1440.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\...\StartupApproved\Run: => "OneDrive"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{DBFEBC31-0699-4F5F-807C-0EE2F040947D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BD6E1CA3-C4A1-4387-AA72-545374D1555C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1BDED225-FEA3-4FC1-BF8C-389471445621}] => (Allow) F:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0E1216C2-01B6-4B3A-9D28-86494079974A}] => (Allow) F:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BBE9CAEA-7EFA-4AFD-B03C-D4B2A689FC80}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{1D2E3EF6-03AF-4AD5-90DB-9259A737B628}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [TCP Query User{15B0B54B-4A92-45E7-B140-D426F15DECC0}F:\overwatch\_retail_\overwatch.exe] => (Allow) F:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{64336E05-53BA-4B96-8320-9C2D97E1995E}F:\overwatch\_retail_\overwatch.exe] => (Allow) F:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{8A435C8A-1C24-4EA5-BDC3-3D622152DEFA}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{6BFF3C6F-F094-4B57-987E-0F258568EE64}F:\hearthstone\hearthstone.exe] => (Allow) F:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{3589D0ED-5AFD-4EE2-B7D6-355A7C5E8CF5}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CAB84358-C02F-4622-99A5-217C069B3089}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E4720C89-3449-4CB3-B35F-157BEBA1AF10}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93468BE4-AA8F-4E56-907B-8DEFEB6917E4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D4BA4BB5-A828-4BFC-BE37-C5C23E2B7565}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{368E3FA1-0A03-4209-AEA4-C75E600FC5A3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{3B504ED2-1BC6-44EE-B2F0-2717BDA54BB2}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [UDP Query User{BADDC83A-E3EF-4FF4-9888-C185043A3D6B}F:\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\call of duty modern warfare\modernwarfare.exe => Keine Datei
FirewallRules: [{78238B5A-A1AF-4E5E-AB00-98B2925C08F1}] => (Allow) F:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{491018D1-7451-4BF8-B232-C51449270644}] => (Allow) F:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{AFB9A041-BFF8-4F90-AB4F-854C64119C52}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe => Keine Datei
FirewallRules: [{2832FBCE-1273-4E8D-815D-615E5357A5CC}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\RocketLeague.exe => Keine Datei
FirewallRules: [{3F0B9DFE-A041-45D0-A8DA-4ABD1B6DAFA1}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => Keine Datei
FirewallRules: [{D0DCD06E-0529-4ED5-A4E2-879A642AB9F6}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe => Keine Datei
FirewallRules: [{5632C835-DE51-43BB-AE2C-14F75A6EA436}] => (Allow) F:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{870CEBE1-E1F9-42D3-B306-0094BAD837FB}] => (Allow) F:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{72B7F1B8-FC84-4251-AD22-A4B52AC11F1A}F:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{BDC72442-9973-4887-94EE-4A06EC708FF4}F:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) F:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{6F4C024C-3904-48C6-A562-A81A3B375BC7}F:\spellbreak\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) F:\spellbreak\spellbreak\g3\binaries\win64\spellbreak.exe => Keine Datei
FirewallRules: [UDP Query User{28F69D19-198E-4C71-A17B-AC2E4A51F5DD}F:\spellbreak\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) F:\spellbreak\spellbreak\g3\binaries\win64\spellbreak.exe => Keine Datei
FirewallRules: [{1D067374-A36F-4337-841F-10421F37AC72}] => (Allow) F:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Datei ist nicht signiert]
FirewallRules: [{446F2C46-0C6B-4CBE-8F48-397764C2F9E8}] => (Allow) F:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{4CF7AEBA-437C-473B-9B33-C41CC2BCC0D7}F:\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) F:\call of duty black ops cold war\blackopscoldwar.exe => Keine Datei
FirewallRules: [UDP Query User{660BAC21-5588-4D99-9690-CF63948B9434}F:\call of duty black ops cold war\blackopscoldwar.exe] => (Allow) F:\call of duty black ops cold war\blackopscoldwar.exe => Keine Datei
FirewallRules: [{13E911FA-D607-4CB2-9242-47CF645FBCA5}] => (Allow) F:\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{2C0F1107-4BE8-40AA-A78D-2A5BA18BAE94}] => (Allow) F:\Steam\steamapps\common\Phasmophobia\Phasmophobia.exe () [Datei ist nicht signiert]
FirewallRules: [{55A5EBC4-5C80-4891-9AD6-5ADD5EABFBF0}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{A353B41D-A164-4F65-B3C4-2B6F5BF85BA3}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [TCP Query User{A4AA8E6D-3A57-4D6E-BC04-64CCD553B954}F:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) F:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{4DCDEF9B-A04D-4AD1-B21E-7899947DA191}F:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) F:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{B1E8AF8D-8DE9-46B2-83F0-8A45DE54B602}] => (Allow) F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{FEC0C5C7-E2F5-48A2-A202-599E1D2121F0}] => (Allow) F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{148F1BC2-BF74-41B4-938A-D138E86762CA}] => (Allow) F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{D478EF5F-D6A9-4D14-A9D6-9B7714A9DE7B}] => (Allow) F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [TCP Query User{73B65E85-825C-4CD7-8A12-A5262652EA05}F:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) F:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{86284329-2DC5-4C82-9DB0-4274C8799F88}F:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) F:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{0EDFEED1-C5A8-4C3E-817E-D76B48DB0426}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.309\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{08072BA9-2AE1-4C82-8F4C-3C65915A5A08}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.309\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{A01C8ACF-8DA2-489E-8E24-92879E6EA9BC}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.309\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{E6E3AABD-240F-441B-856B-AF1F96714AA9}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.309\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{74DD2FF8-C964-4C26-9842-76EC3E61C038}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.308\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{E6AE22FE-6F38-414E-ABF8-0B7CE68D90EF}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.308\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{37E0BF61-FFDE-44DC-8CC0-2DA6DE1A2876}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.308\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{3CD4887D-CE03-4CB1-97DF-87EC001D4796}] => (Allow) C:\Users\jendr\AppData\Local\Discord\app-0.0.308\Discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [TCP Query User{471DB7A2-2B73-4448-A375-54D0BB214410}F:\crash bandicoot 4\lava\binaries\win64\lava-win64-shipping.exe] => (Allow) F:\crash bandicoot 4\lava\binaries\win64\lava-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing)
FirewallRules: [UDP Query User{48EC735F-6658-4138-A155-C2AC02C56D29}F:\crash bandicoot 4\lava\binaries\win64\lava-win64-shipping.exe] => (Allow) F:\crash bandicoot 4\lava\binaries\win64\lava-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing)
FirewallRules: [TCP Query User{A29E01B6-709A-415C-8870-42F0E6A8C410}D:8\smg019\binaries\wingdk\smg019-wingdk-shipping.exe] => (Allow) D:8\smg019\binaries\wingdk\smg019-wingdk-shipping.exe => Keine Datei
FirewallRules: [UDP Query User{EB9057A4-2B21-46F7-8027-B7D5F0513D1C}D:8\smg019\binaries\wingdk\smg019-wingdk-shipping.exe] => (Allow) D:8\smg019\binaries\wingdk\smg019-wingdk-shipping.exe => Keine Datei
FirewallRules: [{65E07652-975A-4FDD-BF7A-4706E15B9D33}] => (Allow) F:\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{C8D5F3E9-3298-4506-813F-A8712FBC1586}] => (Allow) F:\Steam\steamapps\common\HITMAN2\Launcher.exe (IO INTERACTIVE A/S -> )
FirewallRules: [{7AD3063B-92BD-48D4-9346-F2CED825C4E4}] => (Allow) F:\Steam\steamapps\common\HideandShriek\HideandShriek.exe () [Datei ist nicht signiert]
FirewallRules: [{3930F677-CDA9-452D-A241-D84B90829C92}] => (Allow) F:\Steam\steamapps\common\HideandShriek\HideandShriek.exe () [Datei ist nicht signiert]
FirewallRules: [{5DD1763D-2859-4E7D-8E31-E36A6A6DA3C0}] => (Allow) F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Valhalla\ACValhalla_Plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{92A7CE35-CE10-4CD6-A921-C599CC4755EA}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{B30E6A57-0769-4081-949E-81380D73DC08}] => (Allow) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta, Kristjan -> )
FirewallRules: [{BA20CEBA-1AE8-453E-B740-99346A7E25DC}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{00B45626-2B76-4588-875C-B1189B75CC14}] => (Allow) F:\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Datei ist nicht signiert]
FirewallRules: [{AA6B79A1-D4B9-43E5-891A-52D767C4B11C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BB5FA863-D6A1-4447-915B-8326CA608378}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{50E37D40-1146-4FCE-A65B-48F1BC7C160C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7C920056-B64A-47BE-B902-2F35A176EB25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{52611288-6EF1-41A1-9113-5E87EE0799AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3C0241C5-C846-4E95-A721-2E94284760B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B301DA1B-65EB-4B4E-ADA8-7C24DF1F185B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{050FA4EF-7D75-4242-9547-2ADB0DCFA78F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.163.568.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{11065F07-8146-47F1-B679-8217436722FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.71\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

==================== Wiederherstellungspunkte =========================

09-07-2021 22:34:04 Windows Modules Installer
18-07-2021 12:47:29 Windows Modules Installer
20-07-2021 21:04:23 AdwCleaner_BeforeCleaning_20/07/2021_21:04:23

==================== Fehlerhafte Geräte im Gerätemanager ============


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (07/20/2021 08:58:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Files.exe, Version: 1.0.0.0, Zeitstempel: 0x60595374
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.19041.1023, Zeitstempel: 0x5310b540
Ausnahmecode: 0xc000041d
Fehleroffset: 0x000000000073a212
ID des fehlerhaften Prozesses: 0x37ac
Startzeit der fehlerhaften Anwendung: 0x01d77d992e0fc0ad
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 9ba485c2-43b8-4628-81cf-0b939be86c41
Vollständiger Name des fehlerhaften Pakets: 49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (07/20/2021 08:58:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Files.exe, Version: 1.0.0.0, Zeitstempel: 0x60595374
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.19041.1023, Zeitstempel: 0x5310b540
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000073a212
ID des fehlerhaften Prozesses: 0x37ac
Startzeit der fehlerhaften Anwendung: 0x01d77d992e0fc0ad
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 8a119866-8d77-4c66-8a34-361d779eb3df
Vollständiger Name des fehlerhaften Pakets: 49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (07/18/2021 12:58:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Files.exe, Version: 1.0.0.0, Zeitstempel: 0x60595374
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.19041.789, Zeitstempel: 0x2bd748bf
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000000000007286e
ID des fehlerhaften Prozesses: 0x3358
Startzeit der fehlerhaften Anwendung: 0x01d77bc3ad3e0822
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\ucrtbase.dll
Berichtskennung: 73e3ac49-4bdd-4a0d-8c1f-fea14b28aca6
Vollständiger Name des fehlerhaften Pakets: 49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (07/09/2021 10:37:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm XboxAppServices.exe Version 0.0.0.0 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 20ac

Startzeit: 01d7750200a8ae57

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\Microsoft.GamingApp_2106.1001.9.0_x64__8wekyb3d8bbwe\XboxAppServices.exe

Bericht-ID: eb67a621-249d-42fc-808c-701643ba6a1c

Vollständiger Name des fehlerhaften Pakets: Microsoft.GamingApp_2106.1001.9.0_x64__8wekyb3d8bbwe

Relative Anwendungs-ID des fehlerhaften Pakets: Microsoft.Xbox.App

Absturztyp: Quiesce

Error: (07/03/2021 10:27:38 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf \\?\Volume{11d48397-873b-a502-bb32-9165d1967c1a}\ nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (07/03/2021 10:27:37 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf \\?\Volume{53774c0f-97f3-91a6-bdd5-41ada54d852a}\ nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (07/03/2021 10:27:36 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf \\?\Volume{04e353d7-0490-f51f-2c85-9a43619a3142}\ nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)

Error: (07/03/2021 10:27:35 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf \\?\Volume{8e2009be-feaa-1de0-3bf2-787e5ae58f32}\ nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)


Systemfehler:
=============
Error: (07/24/2021 01:24:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (07/24/2021 01:24:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (07/24/2021 01:18:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (07/24/2021 01:18:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (07/24/2021 01:17:50 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\system32\Rtlihvs.dll

Error: (07/24/2021 01:17:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\system32\Rtlihvs.dll

Error: (07/24/2021 01:17:43 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\system32\Rtlihvs.dll

Error: (07/20/2021 09:09:28 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.

Modulpfad: C:\Windows\system32\Rtlihvs.dll


Windows Defender:
================
Date: 2021-07-09 22:42:25
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {C5108C2A-E634-477A-B804-D5A564C3C6BF}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-07-03 09:34:19
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {9AF11884-D9E0-419F-AD01-D0C7AD8094BD}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-06-15 17:13:42
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {C5E3B6CD-3891-4F3E-B5BD-3138803ABB0D}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-06-12 11:35:47
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {4A7D94D7-E509-4744-A054-C42443941DBB}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-04-25 15:42:13
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {4D3B1B03-56B4-4E0F-82A0-34B713D518D0}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2021-07-03 09:13:26
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.341.1086.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18200.4
Fehlercode: 0x80070643
Fehlerbeschreibung: Schwerwiegender Fehler bei der Installation.

Date: 2021-07-03 09:13:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.343.301.0
%Vorherige Version der Sicherheitsinformationen: 1.341.1086.0
Update Source: Benutzer
Sicherheitstyp: AntiSpyware
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18300.4
%Vorherige Modulversion: 1.1.18200.4
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.

Date: 2021-07-03 09:13:25
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen: 1.343.301.0
%Vorherige Version der Sicherheitsinformationen: 1.341.1086.0
Update Source: Benutzer
Sicherheitstyp: AntiVirus
Updatetyp: Delta
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 1.1.18300.4
%Vorherige Modulversion: 1.1.18200.4
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.

Date: 2021-07-03 09:13:25
Description:
Fehler von Microsoft Defender Antivirus beim Aktualisieren des Moduls.
Neue Modulversion: 1.1.18300.4
Vorherige Modulversion: 1.1.18200.4
Benutzer: NT-AUTORITÄT\SYSTEM
Fehlercode: 0x80070666
Fehlerbeschreibung: Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.

Date: 2021-06-05 11:08:40
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.339.1682.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.18100.6
Fehlercode: 0x80070643
Fehlerbeschreibung: Schwerwiegender Fehler bei der Installation.

CodeIntegrity:
===============
Date: 2021-07-20 20:42:43
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2021-07-20 20:38:41
Description:
Windows blocked file \Device\HarddiskVolume5\Windows\System32\scrobj.dll which has been disallowed for protected processes.

Date: 2021-07-20 20:37:56
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Speicherinformationen ===========================

BIOS: AMI F.52 06/15/2020
Hauptplatine: HP 8437
Prozessor: Intel(R) Core(TM) i7-9700K CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 16271.98 MB
Verfügbarer physikalischer RAM: 9927.12 MB
Summe virtueller Speicher: 21135.98 MB
Verfügbarer virtueller Speicher: 10333.21 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:237.85 GB) (Free:155.45 GB) NTFS
Drive f: (Volume) (Fixed) (Total:931.5 GB) (Free:294.56 GB) NTFS

\\?\Volume{f4669877-fcb4-43d7-9180-2a06514b63ce}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{173a1446-e6b0-5583-be64-c00bb043ddb3}\ () (Fixed) (Total:1.56 GB) (Free:0 GB) NTFS
\\?\Volume{4d900679-1e48-1e27-40a2-3da57c41247e}\ () (Fixed) (Total:7.65 GB) (Free:0 GB) NTFS
\\?\Volume{b103b603-9b74-ed5a-137e-1244589ecf8b}\ () (Fixed) (Total:7.4 GB) (Free:0 GB) NTFS
\\?\Volume{04e353d7-0490-f51f-2c85-9a43619a3142}\ () (Fixed) (Total:0.63 GB) (Free:0 GB) NTFS
\\?\Volume{53774c0f-97f3-91a6-bdd5-41ada54d852a}\ () (Fixed) (Total:5.48 GB) (Free:0 GB) NTFS
\\?\Volume{4aa1a03e-1f9e-ea3a-6ce5-297eb250d3b6}\ () (Fixed) (Total:12.41 GB) (Free:0 GB) NTFS
\\?\Volume{11d48397-873b-a502-bb32-9165d1967c1a}\ () (Fixed) (Total:11.34 GB) (Free:0 GB) NTFS
\\?\Volume{dca75219-d25d-b417-816c-a33637205a88}\ () (Fixed) (Total:22.08 GB) (Free:0 GB) NTFS
\\?\Volume{f463bbe8-c4b3-2bb2-fc60-2ccec3d777b6}\ () (Fixed) (Total:0.69 GB) (Free:0 GB) NTFS
\\?\Volume{40e29b8b-da97-edc5-ead0-c18cd8393fb7}\ () (Fixed) (Total:4.02 GB) (Free:0 GB) NTFS
\\?\Volume{15ab7b66-5e87-4275-bb5c-5de34b9d2556}\ () (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: A080AD80)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 4.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 5.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 6.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 7.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 8.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 9.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 10.
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 11.

==================== Ende von Addition.txt =======================
Code:
Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 19-07-2021 01
durchgeführt von jendr (24-07-2021 13:33:11)
Gestartet von C:\Users\jendr\Desktop
Start-Modus: Normal

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe (Epic Games, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaiderIO Client.lnk -> F:\Program Files\RaiderIO\RaiderIO.exe (jah@raider.io)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> F:\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX\FINAL FANTASY XIV ONLINE\FINAL FANTASY XIV System Information.lnk -> F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivsysinfo.exe (SQUARE ENIX CO., LTD.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX\FINAL FANTASY XIV ONLINE\FINAL FANTASY XIV.lnk -> F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Create System Report.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDLogReport.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\File Scan.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Immunization.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Rootkit Scan.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Spybot-S&D Start Center.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\System Scan.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Tray Icon (Live Protection).lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2\Uninstall Spybot-S&D.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Base.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sbase.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Calc.lnk -> C:\Program Files (x86)\OpenOffice 4\program\scalc.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Draw.lnk -> C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Impress.lnk -> C:\Program Files (x86)\OpenOffice 4\program\simpress.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Math.lnk -> C:\Program Files (x86)\OpenOffice 4\program\smath.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice Writer.lnk -> C:\Program Files (x86)\OpenOffice 4\program\swriter.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.9\OpenOffice.lnk -> C:\Program Files (x86)\OpenOffice 4\program\soffice.exe (Apache Software Foundation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher\Minecraft Launcher.lnk -> F:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe (Mojang)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Java konfigurieren.lnk -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net\Battle.net.lnk -> F:\Battle.net\Battle.net Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk -> C:\Program Files\7-Zip\7zFM.exe (Igor Pavlov)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip\7-Zip Help.lnk -> C:\Program Files\7-Zip\7-zip.chm ()
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\Spybot-S&D Start Center.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\System Scan.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe (Safer-Networking Ltd.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\jendr\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\Links\Desktop.lnk -> C:\Users\jendr\Desktop ()
Shortcut: C:\Users\jendr\Links\Downloads.lnk -> C:\Users\jendr\Downloads ()
Shortcut: C:\Users\jendr\Documents\Retropie\balenaEtcher.lnk -> C:\Users\jendr\AppData\Local\Programs\balena-etcher\balenaEtcher.exe (Balena Inc.)
Shortcut: C:\Users\jendr\Desktop\Files.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\jendr\Desktop\Sea of Thieves.lnk -> [LF=4BEM84V'!APPS1SPSMԆi<D*TFFF9Resources\Logo.pngAResources\SmallLogo.png1Sea of Thieves-1SPSwlE[([8װ11SPSmDpHH@.=xdM1SPS0%G`1Sea of Thievesf1SPSU(Ly9K-]%Microsoft.SeaofThieves_8wekyb3d8bbwe:Microsoft.SeaofThieves_8wekyb3d8bbwe!AthenaClientShippingTC:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.101.2052.2_x64__8wekyb3d8bbwe HJQOI6+t.7Microsoft.SeaofThieves_2.101.2052.2_x64__8wekyb3d8bbwe] (Keine Datei)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\balenaEtcher.lnk -> C:\Users\jendr\AppData\Local\Programs\balena-etcher\balenaEtcher.exe (Balena Inc.)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lokaler Datenträger (C).lnk -> C:\ ()
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\jendr\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch.lnk -> C:\Users\jendr\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Ubisoft Connect.lnk -> F:\Ubisoft Game Launcher\UbisoftConnect.exe (Keine Datei)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\UbisoftConnect\Uninstall.lnk -> F:\Ubisoft Game Launcher\Uninstall.exe (Keine Datei)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Ubisoft Connect\Ubisoft Connect.lnk -> F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft\Ubisoft Connect\Uninstall.lnk -> F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uninstall.exe (Ubisoft)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online\Uninstall The Elder Scrolls Online.lnk -> F:\Steam\steamapps\common\Zenimax Online\uninstall\Uninstall The Elder Scrolls Online.exe (Keine Datei)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Battle.net.lnk -> F:\Battle.net\Battle.net Launcher.exe (Blizzard Entertainment)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\EpicGamesLauncher.lnk -> C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (Epic Games, Inc.)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Origin.lnk -> F:\Origin\Origin.exe (Electronic Arts)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam Client Bootstrapper.lnk -> F:\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Ubisoft Connect.lnk -> F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftConnect.exe (Ubisoft)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\FINAL FANTASY XIV ONLINE.lnk -> F:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe (SQUARE ENIX CO., LTD.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\Users\Public\Desktop\Minecraft Launcher.lnk -> F:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe (Mojang)
Shortcut: C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe (Safer-Networking Ltd.)


ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OMEN Audio Control.lnk -> C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) ->  /LAUNCH_BY_STARTMENU
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch\Overwatch.lnk -> F:\Overwatch\Overwatch Launcher.exe (Blizzard Entertainment) -> --productcode=pro
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Auf Updates prüfen.lnk -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Info zu Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_301\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc\Discord.lnk -> C:\Users\jendr\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\jendr\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\jendr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Discord.lnk -> C:\Users\jendr\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\jendr\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Besuchen Sie Java.com.url -> URL: hxxps://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Hilfe aufrufen.url -> URL: hxxps://java.com/help
InternetURL: C:\Users\jendr\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142

==================== Ende vom Shortcut.txt =============================
Über jegliche Hilfe bin ich dankbar und noch ein schönes Wochenende!

weitere logs von anderen Programmen:

AdwCleaner
Code:
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build:    06-29-2021
# Database: 2021-06-29.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    07-20-2021
# Duration: 00:00:03
# OS:      Windows 10 Home
# Scanned:  31965
# Detected: 4


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Fake.OpenOfficeUpdater C:\Users\jendr\AppData\Roaming\OpenOffice Updater
PUP.Optional.WebsucheDE        C:\Program Files (x86)\Browser Files

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

Preinstalled.HPTouchpointAnalyticsClient  Folder  C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT
Preinstalled.HPTouchpointAnalyticsClient  Registry  HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build:    06-29-2021
# Database: 2021-06-29.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    07-20-2021
# Duration: 00:00:00
# OS:      Windows 10 Home
# Cleaned:  4
# Failed:  0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted      C:\Program Files (x86)\Browser Files
Deleted      C:\Users\jendr\AppData\Roaming\OpenOffice Updater

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted      Preinstalled.HPTouchpointAnalyticsClient  Folder  C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT
Deleted      Preinstalled.HPTouchpointAnalyticsClient  Registry  HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1756 octets] - [20/07/2021 21:03:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

cosinus 24.07.2021 13:01
Solche Nacherzählungen bringen nichts, bitte alle Logs von Malwarebytes mit Funden posten.

Schmuizin 24.07.2021 13:20
Spybot Search and Destroy cleaning log:

Code:
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        CasaleMedia
[+]        21-07-20 20:59:44        Moving into quarantine        Cookie (Edge (Chrome based): Default).casalemedia.com/ (CMID)
[+]        21-07-20 20:59:44        Moving into quarantine        Cookie (Edge (Chrome based): Default).casalemedia.com/ (CMRUM3)
[+]        21-07-20 20:59:44        Successfully cleaned        Cookie (Edge (Chrome based): Default).casalemedia.com/ (CMID)
[+]        21-07-20 20:59:44        Successfully cleaned        Cookie (Edge (Chrome based): Default).casalemedia.com/ (CMRUM3)
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        DoubleClick
[+]        21-07-20 20:59:44        Moving into quarantine        Cookie (Edge (Chrome based): Default).doubleclick.net/ (IDE)
[+]        21-07-20 20:59:44        Successfully cleaned        Cookie (Edge (Chrome based): Default).doubleclick.net/ (IDE)
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Log
[+]        21-07-20 20:59:44        Moving into quarantine        C:\Windows\Directx.log
[+]        21-07-20 20:59:44        Moving into quarantine        C:\Windows\setupact.log
[+]        21-07-20 20:59:44        Moving into quarantine        C:\Windows\DtcInstall.log
[+]        21-07-20 20:59:44        Successfully cleaned        C:\Windows\Directx.log
[+]        21-07-20 20:59:44        Successfully cleaned        C:\Windows\setupact.log
[+]        21-07-20 20:59:44        Successfully cleaned        C:\Windows\DtcInstall.log
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        7-Zip
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\7-ZIP\FM\FolderHistory
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\7-ZIP\FM\PanelPath0
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\7-ZIP\FM\FolderHistory
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\7-ZIP\FM\PanelPath0
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Internet Explorer
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Internet Explorer\TypedURLs
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        MS Management Console
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Microsoft Management Console\Recent File List
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Microsoft Management Console\Recent File List
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        MS DirectDraw
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        MS DirectInput
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        MS Wordpad
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Windows.OpenWith
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BIN\OpenWithList
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BPS\OpenWithList
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BIN\OpenWithList
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BPS\OpenWithList
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Windows Explorer
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Wallpaper\MRU
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\Wallpaper\MRU
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Windows Media SDK
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
[+]        21-07-20 20:59:44        Moving into quarantine        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID
[+]        21-07-20 20:59:44        Successfully cleaned        HKEY_USERS\S-1-5-21-3267400732-2583111342-1326098953-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Cookie
[+]        21-07-20 20:59:44        Moving into quarantine        Internet Explorer (Benutzer) (jendr)Cookies
[+]        21-07-20 20:59:44        Moving into quarantine        Firefox (jendr (default-release))Cookies
[+]        21-07-20 20:59:44        Moving into quarantine        Edge (Chrome based) (Default)Cookies
[+]        21-07-20 20:59:44        Successfully cleaned        Internet Explorer (Benutzer) (jendr)Cookies
[+]        21-07-20 20:59:44        Successfully cleaned        Firefox (jendr (default-release))Cookies
[+]        21-07-20 20:59:44        Successfully cleaned        Edge (Chrome based) (Default)Cookies
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Cache
[+]        21-07-20 20:59:44        Moving into quarantine        Internet Explorer (Benutzer) (jendr)Cache
[+]        21-07-20 20:59:44        Moving into quarantine        Edge (Chrome based) (Default)Cache
[+]        21-07-20 20:59:44        Successfully cleaned        Internet Explorer (Benutzer) (jendr)Cache
[+]        21-07-20 20:59:44        Successfully cleaned        Edge (Chrome based) (Default)Cache
[i]        21-07-20 20:59:44               
[i]        21-07-20 20:59:44        Product        Verlauf
[+]        21-07-20 20:59:44        Moving into quarantine        Internet Explorer (Benutzer) (jendr)History
[+]        21-07-20 20:59:44        Moving into quarantine        Edge (Chrome based) (Default)History
[+]        21-07-20 20:59:45        Successfully cleaned        Internet Explorer (Benutzer) (jendr)History
[+]        21-07-20 20:59:45        Successfully cleaned        Edge (Chrome based) (Default)History
[i]        21-07-20 20:59:45               
[i]        21-07-20 20:59:45        Summary       
[i]        21-07-20 20:59:45        Errors while cleaning        0
[i]        21-07-20 20:59:45        Files moved into quarantine        38
[i]        21-07-20 20:59:45        Files successfully cleaned        38
für Malwarebytes habe ich leider nur einen MBAMSERVICE log vom heutigen Datum, nicht vom 20.07 als es passiert ist. Soll ich einen neuen Scan durchführen?

cosinus 24.07.2021 13:20
Spybot ist wirkungsloser Unsinn, das kannste gleich deinstallieren. Poste bitte die Logs von Malwarebytes.

Schmuizin 24.07.2021 13:27
MBAMSERVICE log (Teil1/x):

Code:
Date        Time        Tick Count        Process ID        Thread ID        Log Level        Context Tag        Function Name        File Name        Line Number        Message
07/24/21        " 14:07:07.456"        321999125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:07.461"        321999140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:07.467"        321999140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.476"        322000156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.477"        322000156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.486"        322000156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.489"        322000171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.490"        322000171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:08.495"        322000171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:07.469"        321999140        1220        14a0        WARNING        MBAMChameleon        HandleFileCreate        "fileprot.c"        389        "FileFilter: Blocking access to \Device\HarddiskVolume5\ProgramData\Malwarebytes\MBAMService\LOGS\MBAMSERVICE.LOG.bk1 from mode 1 - process \Device\HarddiskVolume5\Windows\System32\svchost.exe"
07/24/21        " 14:07:09.499"        322001171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:09.499"        322001171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:09.505"        322001187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:09.508"        322001187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:09.512"        322001187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:09.517"        322001187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.514"        322002187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.514"        322002187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.516"        322002187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.518"        322002187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.529"        322002203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:10.532"        322002203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.137"        322002812        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64051 Action=Filter"
07/24/21        " 14:07:11.459"        322003140        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53275 Action=Filter"
07/24/21        " 14:07:11.484"        322003156        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64423 Action=Filter"
07/24/21        " 14:07:11.489"        322003171        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:49984 Action=Filter"
07/24/21        " 14:07:11.521"        322003203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.522"        322003203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.524"        322003203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.525"        322003203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.536"        322003218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:11.538"        322003218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.533"        322004203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.533"        322004203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.536"        322004218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.540"        322004218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.547"        322004218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:12.551"        322004234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.548"        322005218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.554"        322005234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.564"        322005234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.564"        322005234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.570"        322005250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:13.573"        322005250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.573"        322006250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.580"        322006250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.589"        322006265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.589"        322006265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.595"        322006265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:14.598"        322006281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.342"        322007015        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54408 Action=Filter"
07/24/21        " 14:07:15.598"        322007281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.606"        322007281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.614"        322007296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.615"        322007296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.620"        322007296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:15.622"        322007296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.622"        322008296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.628"        322008296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.637"        322008312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.637"        322008312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.642"        322008312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:16.645"        322008328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.639"        322009312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.645"        322009328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.654"        322009328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.659"        322009328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.669"        322009343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.676"        322009359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:17.774"        322009453        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:60738 Action=Filter"
07/24/21        " 14:07:17.906"        322009578        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:55200 Action=Filter"
07/24/21        " 14:07:17.934"        322009609        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61202 Action=Filter"
07/24/21        " 14:07:17.939"        322009609        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57538 Action=Filter"
07/24/21        " 14:07:18.666"        322010343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:18.673"        322010343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:18.682"        322010359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:18.688"        322010359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:18.699"        322010375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:18.704"        322010375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.690"        322011359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.694"        322011375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.706"        322011375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.710"        322011390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.729"        322011406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:19.732"        322011406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.714"        322012390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.720"        322012390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.729"        322012406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.733"        322012406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.746"        322012421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:20.749"        322012421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.741"        322013421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.746"        322013421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.748"        322013421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.751"        322013421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.762"        322013437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:21.771"        322013453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.761"        322014437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.761"        322014437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.765"        322014437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.768"        322014437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.788"        322014468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:22.791"        322014468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.785"        322015453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.785"        322015453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.792"        322015468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.795"        322015468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.815"        322015484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:23.820"        322015500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.809"        322016484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.809"        322016484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.815"        322016484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.818"        322016500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.839"        322016515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:24.844"        322016515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.823"        322017500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.823"        322017500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.826"        322017500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.828"        322017500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.855"        322017531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:25.862"        322017531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.836"        322018515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.836"        322018515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.841"        322018515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.843"        322018515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.866"        322018546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:26.870"        322018546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.470"        322019140        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:55285 Action=Filter"
07/24/21        " 14:07:27.516"        322019187        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50705 Action=Filter"
07/24/21        " 14:07:27.521"        322019203        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:49324 Action=Filter"
07/24/21        " 14:07:27.845"        322019515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.845"        322019515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.848"        322019531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.849"        322019531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.877"        322019546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:27.881"        322019562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.864"        322020546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.865"        322020546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.870"        322020546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.874"        322020546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.894"        322020562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.899"        322020578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:28.936"        322020609        0ad8        4144        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Irvine/O=Blizzard Entertainment, Inc./CN=Blizzard Entertainment, Inc.>."
07/24/21        " 14:07:28.940"        322020609        0ad8        4144        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2616        "[idx=0] BEGIN ClassifyObject: 'C:\PROGRAMDATA\Battle.net\Agent\Agent.7380\Agent.exe' "
07/24/21        " 14:07:29.060"        322020734        0ad8        4144        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2695        "[idx=0] DdsClassifyObject(0) FileScan Veredict(2)/VeredictMalformed(2) sigcheck(-1): 'C:\PROGRAMDATA\Battle.net\Agent\Agent.7380\Agent.exe'"
07/24/21        " 14:07:29.060"        322020734        0ad8        4144        DEBUG        DDSIG        IGPrefilter        "igsdk.cpp"        2181        "[idx=0] EXCLUDED FLT_BIG_SIZE: 'C:\PROGRAMDATA\Battle.net\Agent\Agent.7380\Agent.exe'"
07/24/21        " 14:07:29.060"        322020734        0ad8        4144        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        3296        "[idx=0] END ClassifyObject (IGLaunched=0)"
07/24/21        " 14:07:29.060"        322020734        0ad8        4144        DEBUG        DDSScanner        DDSScanner::Scan        "ddsscanner.cpp"        522        "DDS classification completed successfully: Unknown Object - C:\PROGRAMDATA\Battle.net\Agent\Agent.7380\Agent.exe"
07/24/21        " 14:07:29.890"        322021562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:29.891"        322021562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:29.896"        322021578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:29.898"        322021578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:29.920"        322021593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:29.925"        322021593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.221"        322021890        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:58055 Action=Filter"
07/24/21        " 14:07:30.247"        322021921        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57567 Action=Filter"
07/24/21        " 14:07:30.270"        322021953        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:65010 Action=Filter"
07/24/21        " 14:07:30.908"        322022578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.908"        322022578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.912"        322022593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.913"        322022593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.936"        322022609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:30.939"        322022609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.390"        322023062        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62199 Action=Filter"
07/24/21        " 14:07:31.417"        322023093        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59903 Action=Filter"
07/24/21        " 14:07:31.930"        322023609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.930"        322023609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.934"        322023609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.937"        322023609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.945"        322023625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:31.947"        322023625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.952"        322024625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.952"        322024625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.960"        322024640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.964"        322024640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.967"        322024640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:32.973"        322024656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.976"        322025656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.976"        322025656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.981"        322025656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.984"        322025656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.989"        322025671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:33.994"        322025671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:34.993"        322026671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:34.994"        322026671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:34.997"        322026671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:35.000"        322026671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:35.009"        322026687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:35.013"        322026687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:35.103"        322026781        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:07:36.006"        322027687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.012"        322027687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.022"        322027703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.022"        322027703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.030"        322027703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.035"        322027703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.393"        322028062        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\DllHost.exe), cmdline (C:\Windows\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5})"
07/24/21        " 14:07:37.028"        322028703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:37.034"        322028703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:37.043"        322028718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:37.043"        322028718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:37.048"        322028718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:37.050"        322028718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.048"        322029718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.054"        322029734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.065"        322029734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.065"        322029734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.070"        322029750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:38.072"        322029750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:36.393"        322028072        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\DllHost.exe"
07/24/21        " 14:07:36.393"        322028072        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:07:39.061"        322030734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:39.064"        322030734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:39.076"        322030750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:39.079"        322030750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:39.091"        322030765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:39.094"        322030765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.087"        322031765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.088"        322031765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.093"        322031765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.095"        322031765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.102"        322031781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:40.107"        322031781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.112"        322032781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.112"        322032781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.117"        322032796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.119"        322032796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.126"        322032796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.131"        322032812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.144"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.144"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.144"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.152"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.156"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.158"        322033828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.525"        322034203        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe), cmdline (""C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe"" /ua /installsource scheduler)"
07/24/21        " 14:07:42.573"        322034250        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\backgroundTaskHost.exe), cmdline (""C:\Windows\system32\backgroundTaskHost.exe"" -ServerName:Microsoft.MicrosoftOfficeHub.AppX54h2e8jwdm50fj5ha8987vz1etpx7czd.mca)"
07/24/21        " 14:07:42.586"        322034265        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe."
07/24/21        " 14:07:42.652"        322034328        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\RuntimeBroker.exe), cmdline (C:\Windows\System32\RuntimeBroker.exe -Embedding)"
07/24/21        " 14:07:43.164"        322034843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:43.164"        322034843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:43.165"        322034843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:43.174"        322034843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:43.176"        322034859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:43.178"        322034859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:41.444"        322033115        4444        297c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004444 (\Device\HarddiskVolume5\Windows\System32\dllhost.exe) is exiting"
07/24/21        " 14:07:44.195"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:44.196"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:44.196"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:44.201"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:44.203"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:44.206"        322035875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:42.517"        322034188        0614        42f4        DEBUG        MBAMChameleon        VerifyFile        "fileverify.cpp"        479        "Opening \??\C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe for verification"
07/24/21        " 14:07:42.604"        322034275        4038        4570        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004038 (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe) is exiting"
07/24/21        " 14:07:42.526"        322034205        0614        42f4        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe"
07/24/21        " 14:07:42.526"        322034205        0614        42f4        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:07:42.573"        322034252        0264        3408        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\backgroundTaskHost.exe"
07/24/21        " 14:07:42.573"        322034252        0264        3408        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:07:42.652"        322034331        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\RuntimeBroker.exe"
07/24/21        " 14:07:42.652"        322034331        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:07:45.221"        322036890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.222"        322036890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.222"        322036890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.224"        322036906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.226"        322036906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.229"        322036906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.745"        322037421        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe), cmdline (""C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe"" -Embedding)"
07/24/21        " 14:07:45.798"        322037468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.798"        322037468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.829"        322037500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.830"        322037500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.830"        322037500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.836"        322037515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:45.836"        322037515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:46.246"        322037921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.247"        322037921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.247"        322037921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.252"        322037921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.254"        322037937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.256"        322037937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:46.424"        322038093        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe."
07/24/21        " 14:07:46.425"        322038093        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe."
07/24/21        " 14:07:46.908"        322038578        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53144 Action=Filter"
07/24/21        " 14:07:47.264"        322038937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:47.270"        322038953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:47.279"        322038953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:47.279"        322038953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:47.286"        322038968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:47.289"        322038968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:45.745"        322037424        0264        3408        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe"
07/24/21        " 14:07:45.745"        322037424        0264        3408        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:07:48.257"        322039937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:07:48.287"        322039968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:48.292"        322039968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:48.303"        322039984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:48.304"        322039984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:48.312"        322039984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:48.315"        322039984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.302"        322040984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.308"        322040984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.332"        322041015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.332"        322041015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.336"        322041015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:49.339"        322041015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.325"        322042000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.331"        322042000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.357"        322042031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.358"        322042031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.363"        322042031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:50.365"        322042046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.339"        322043015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.343"        322043015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.371"        322043046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.376"        322043046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.387"        322043062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:51.390"        322043062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.354"        322044031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.361"        322044031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.386"        322044062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.388"        322044062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.402"        322044078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.406"        322044078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.975"        322044656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 18412."
07/24/21        " 14:07:53.380"        322045062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:53.388"        322045062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:53.410"        322045093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:53.416"        322045093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:53.425"        322045093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:53.432"        322045109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.407"        322046078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.411"        322046093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.422"        322046093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.424"        322046093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.437"        322046109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:54.440"        322046109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:52.985"        322044656        47ec        0ec4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000047EC (\Device\HarddiskVolume5\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe) is exiting"
07/24/21        " 14:07:55.426"        322047109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:55.433"        322047109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:55.440"        322047109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:55.445"        322047125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:55.456"        322047125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:55.460"        322047140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.446"        322048125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.451"        322048125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.462"        322048140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.465"        322048140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.477"        322048156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:56.483"        322048156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.466"        322049140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.472"        322049140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.482"        322049156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.488"        322049156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.497"        322049171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:57.505"        322049187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.484"        322050156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.489"        322050171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.498"        322050171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.504"        322050187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.514"        322050187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:58.519"        322050187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.504"        322051187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.508"        322051187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.519"        322051187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.522"        322051203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.535"        322051218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:07:59.539"        322051218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.524"        322052203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.529"        322052203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.539"        322052218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.543"        322052218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.555"        322052234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:00.557"        322052234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.542"        322053218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.545"        322053218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.557"        322053234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.562"        322053234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.573"        322053250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:01.576"        322053250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.554"        322054234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.557"        322054234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.569"        322054250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.571"        322054250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.584"        322054265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.586"        322054265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.563"        322055234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.566"        322055234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.577"        322055250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.580"        322055250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.592"        322055265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:03.595"        322055265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:02.035"        322053706        45e0        2598        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000045E0 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:04.573"        322056250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:04.582"        322056250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:04.590"        322056265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:04.595"        322056265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:04.605"        322056281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:04.610"        322056281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.604"        322057281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.605"        322057281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.608"        322057281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.612"        322057281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.619"        322057296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:05.626"        322057296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.619"        322058296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.628"        322058296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.630"        322058312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.634"        322058312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.645"        322058328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:06.650"        322058328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.483"        322059156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4640."
07/24/21        " 14:08:07.640"        322059312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.640"        322059312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.645"        322059328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.648"        322059328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.671"        322059343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.675"        322059343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.760"        322059437        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.266.841218156\1144839618"" -childID 37 -isForBrowser -prefsHandle 8388 -prefMapHandle 8608 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 7256 tab)"
07/24/21        " 14:08:07.766"        322059437        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.266.841218156\1144839618"" -childID 37 -isForBrowser -prefsHandle 8388 -prefMapHandle 8608 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 7256 tab"
07/24/21        " 14:08:07.830"        322059500        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:08.663"        322060343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.663"        322060343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.666"        322060343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.668"        322060343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.694"        322060375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.696"        322060375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:08.720"        322060390        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61803 Action=Filter"
07/24/21        " 14:08:08.738"        322060421        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61551 Action=Filter"
07/24/21        " 14:08:08.750"        322060421        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54786 Action=Filter"
07/24/21        " 14:08:08.770"        322060453        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:60217 Action=Filter"
07/24/21        " 14:08:09.100"        322060781        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59882 Action=Filter"
07/24/21        " 14:08:09.124"        322060796        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53280 Action=Filter"
07/24/21        " 14:08:09.128"        322060796        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59689 Action=Filter"
07/24/21        " 14:08:09.593"        322061265        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61880 Action=Filter"
07/24/21        " 14:08:09.679"        322061359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:09.679"        322061359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:09.681"        322061359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:09.682"        322061359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:09.710"        322061390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:09.713"        322061390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:07.760"        322059439        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:07.760"        322059439        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:10.696"        322062375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:10.696"        322062375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:10.701"        322062375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:10.703"        322062375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:10.726"        322062406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:10.731"        322062406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.722"        322063390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.723"        322063406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.728"        322063406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.730"        322063406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.754"        322063437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:11.759"        322063437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.750"        322064421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.750"        322064421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.755"        322064437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.759"        322064437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.779"        322064453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:12.783"        322064453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.777"        322065453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.777"        322065453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.781"        322065453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.784"        322065453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.791"        322065468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:13.795"        322065468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.790"        322066468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.795"        322066468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.807"        322066484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.807"        322066484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.815"        322066484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:14.819"        322066500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.816"        322067484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.822"        322067500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.831"        322067500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.832"        322067515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.840"        322067515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:15.843"        322067515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.843"        322068515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.848"        322068531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.857"        322068531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.857"        322068531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.861"        322068531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:16.865"        322068546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.868"        322069546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.874"        322069546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.884"        322069562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.885"        322069562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.888"        322069562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:17.892"        322069562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.883"        322070562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.890"        322070562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.898"        322070578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.901"        322070578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.910"        322070593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:18.915"        322070593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.900"        322071578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.905"        322071578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.914"        322071593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.920"        322071593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.933"        322071609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:19.939"        322071609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.916"        322072593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.921"        322072593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.931"        322072609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.937"        322072609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.963"        322072640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:20.968"        322072640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.941"        322073609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.946"        322073625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.956"        322073625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.960"        322073640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.988"        322073671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:21.994"        322073671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:22.961"        322074640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:22.966"        322074640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:22.978"        322074656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:22.982"        322074656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:23.006"        322074687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:23.008"        322074687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:23.979"        322075656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:23.985"        322075656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:23.996"        322075671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:24.002"        322075671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:24.024"        322075703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:24.029"        322075703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:24.998"        322076671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:25.004"        322076687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:25.015"        322076687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:25.019"        322076687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:25.043"        322076718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."

Schmuizin 24.07.2021 13:29
MBAMSERVICE log (Teil2/x):

Code:
07/24/21        " 14:08:25.047"        322076718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:25.496"        322077171        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59318 Action=Filter"
07/24/21        " 14:08:26.008"        322077687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:26.011"        322077687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:26.024"        322077703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:26.026"        322077703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:26.053"        322077734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:26.055"        322077734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.023"        322078703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.030"        322078703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.042"        322078718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.048"        322078718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.073"        322078750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:27.078"        322078750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.036"        322079718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.040"        322079718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.068"        322079750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.075"        322079750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.098"        322079781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:28.103"        322079781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.054"        322080734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.060"        322080734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.082"        322080765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.084"        322080765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.114"        322080796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:29.119"        322080796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.071"        322081750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.079"        322081750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.101"        322081781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.104"        322081781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.134"        322081812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.137"        322081812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.467"        322082140        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe), cmdline (""C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"" )"
07/24/21        " 14:08:30.917"        322082593        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:08:31.086"        322082765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.089"        322082765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.118"        322082796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.123"        322082796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.150"        322082828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.152"        322082828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:31.621"        322083296        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:08:32.097"        322083765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:32.103"        322083781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:32.129"        322083812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:32.133"        322083812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:32.161"        322083843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:32.164"        322083843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:30.467"        322082146        16c8        09bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"
07/24/21        " 14:08:30.467"        322082146        16c8        09bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:33.114"        322084796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:33.117"        322084796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:33.145"        322084828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:33.148"        322084828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:33.175"        322084843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:33.177"        322084859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.126"        322085796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.130"        322085812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.155"        322085828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.157"        322085828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.187"        322085859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:34.195"        322085875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.141"        322086812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.147"        322086828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.171"        322086843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.177"        322086859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.218"        322086890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.223"        322086906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.660"        322087343        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe), cmdline (""C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"" )"
07/24/21        " 14:08:35.663"        322087343        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 16644:14584 - ""C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"" "
07/24/21        " 14:08:36.167"        322087843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:36.173"        322087843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:36.202"        322087875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:36.206"        322087875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:36.233"        322087906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:36.238"        322087921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.189"        322088859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.194"        322088875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.220"        322088890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.225"        322088906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.250"        322088921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:37.255"        322088937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:35.660"        322087339        4104        38f8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe"
07/24/21        " 14:08:35.660"        322087339        4104        38f8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:35.746"        322087417        257c        4608        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000257C (\Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe) is exiting"
07/24/21        " 14:08:38.208"        322089890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:38.214"        322089890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:38.241"        322089921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:38.247"        322089921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:38.271"        322089953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:38.276"        322089953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.225"        322090906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.232"        322090906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.257"        322090937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.263"        322090937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.286"        322090968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.294"        322090968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.449"        322091125        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\firefox.exe'"
07/24/21        " 14:08:39.452"        322091125        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\firefox.exe'"
07/24/21        " 14:08:39.453"        322091125        0ad8        0ab0        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Mountain View/O=Mozilla Corporation/OU=Firefox Engineering Operations/CN=Mozilla Corporation>."
07/24/21        " 14:08:39.453"        322091125        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\firefox.exe, CertSubjectCName: Mozilla Corporation"
07/24/21        " 14:08:39.454"        322091125        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -osint -url ""hxxp://www.safer-networking.org/dl/donate/"")"
07/24/21        " 14:08:39.458"        322091140        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\mozglue.dll'"
07/24/21        " 14:08:39.461"        322091140        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\mozglue.dll'"
07/24/21        " 14:08:39.461"        322091140        0ad8        37cc        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Mountain View/O=Mozilla Corporation/OU=Firefox Engineering Operations/CN=Mozilla Corporation>."
07/24/21        " 14:08:39.461"        322091140        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\mozglue.dll, CertSubjectCName: Mozilla Corporation"
07/24/21        " 14:08:39.463"        322091140        0ad8        264c        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2616        "[idx=0] BEGIN ClassifyObject: 'C:\Program Files\Mozilla Firefox\msvcp140.dll' "
07/24/21        " 14:08:39.480"        322091156        0ad8        264c        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2695        "[idx=0] DdsClassifyObject(0) FileScan Veredict(2)/VeredictMalformed(2) sigcheck(-1): 'C:\Program Files\Mozilla Firefox\msvcp140.dll'"
07/24/21        " 14:08:39.480"        322091156        0ad8        264c        DEBUG        DDSIG        IGPrefilter        "igsdk.cpp"        2194        "[idx=0] EXCLUDED FLT_PATH_MATCH: 'C:\Program Files\Mozilla Firefox\msvcp140.dll'"
07/24/21        " 14:08:39.480"        322091156        0ad8        264c        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        3296        "[idx=0] END ClassifyObject (IGLaunched=0)"
07/24/21        " 14:08:39.480"        322091156        0ad8        264c        DEBUG        DDSScanner        DDSScanner::Scan        "ddsscanner.cpp"        522        "DDS classification completed successfully: Unknown Object - C:\Program Files\Mozilla Firefox\msvcp140.dll"
07/24/21        " 14:08:39.481"        322091156        0ad8        264c        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/OU=MOPR/CN=Microsoft Corporation>."
07/24/21        " 14:08:39.489"        322091171        0ad8        264c        DEBUG        PEDigisig        mb::common::pe::Pkcs7SignedDataImpl::IsValid        "pedigisig.cpp"        412        "Successfully verified digital signature."
07/24/21        " 14:08:39.496"        322091171        0ad8        264c        DEBUG        ObjectScanner        ObjectScanner::ScanFile_OnExecuteShuriken        "objectscanner.cpp"        1432        "File has been filtered by a WhitePolyShuriken rule. FilePath=<C:\Program Files\Mozilla Firefox\msvcp140.dll>."
07/24/21        " 14:08:39.500"        322091171        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1983        "Trying to extract file as an archive, filepath=C:\Program Files\Mozilla Firefox\msvcp140.dll."
07/24/21        " 14:08:39.502"        322091171        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1985        "File extraction done, filepath=C:\Program Files\Mozilla Firefox\msvcp140.dll."
07/24/21        " 14:08:39.503"        322091171        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\msvcp140.dll'"
07/24/21        " 14:08:39.507"        322091187        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\msvcp140.dll'"
07/24/21        " 14:08:39.507"        322091187        0ad8        264c        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/OU=MOPR/CN=Microsoft Corporation>."
07/24/21        " 14:08:39.507"        322091187        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\msvcp140.dll, CertSubjectCName: Microsoft Corporation"
07/24/21        " 14:08:39.508"        322091187        0ad8        3c04        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2616        "[idx=0] BEGIN ClassifyObject: 'C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll' "
07/24/21        " 14:08:39.511"        322091187        0ad8        3c04        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2695        "[idx=0] DdsClassifyObject(0) FileScan Veredict(2)/VeredictMalformed(2) sigcheck(-1): 'C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll'"
07/24/21        " 14:08:39.511"        322091187        0ad8        3c04        DEBUG        DDSIG        IGPrefilter        "igsdk.cpp"        2194        "[idx=0] EXCLUDED FLT_PATH_MATCH: 'C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll'"
07/24/21        " 14:08:39.511"        322091187        0ad8        3c04        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        3296        "[idx=0] END ClassifyObject (IGLaunched=0)"
07/24/21        " 14:08:39.511"        322091187        0ad8        3c04        DEBUG        DDSScanner        DDSScanner::Scan        "ddsscanner.cpp"        522        "DDS classification completed successfully: Unknown Object - C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll"
07/24/21        " 14:08:39.511"        322091187        0ad8        3c04        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/OU=MOPR/CN=Microsoft Corporation>."
07/24/21        " 14:08:39.517"        322091187        0ad8        3c04        DEBUG        PEDigisig        mb::common::pe::Pkcs7SignedDataImpl::IsValid        "pedigisig.cpp"        412        "Successfully verified digital signature."
07/24/21        " 14:08:39.522"        322091203        0ad8        3c04        DEBUG        ObjectScanner        ObjectScanner::ScanFile_OnExecuteShuriken        "objectscanner.cpp"        1432        "File has been filtered by a WhitePolyShuriken rule. FilePath=<C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll>."
07/24/21        " 14:08:39.526"        322091203        0ad8        3c04        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1983        "Trying to extract file as an archive, filepath=C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll."
07/24/21        " 14:08:39.526"        322091203        0ad8        3c04        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1985        "File extraction done, filepath=C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll."
07/24/21        " 14:08:39.528"        322091203        0ad8        3c04        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll'"
07/24/21        " 14:08:39.530"        322091203        0ad8        3c04        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll'"
07/24/21        " 14:08:39.530"        322091203        0ad8        3c04        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/OU=MOPR/CN=Microsoft Corporation>."
07/24/21        " 14:08:39.531"        322091203        0ad8        3c04        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\VCRUNTIME140.dll, CertSubjectCName: Microsoft Corporation"
07/24/21        " 14:08:39.539"        322091218        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2616        "[idx=0] BEGIN ClassifyObject: 'C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll' "
07/24/21        " 14:08:39.561"        322091234        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2695        "[idx=0] DdsClassifyObject(0) FileScan Veredict(2)/VeredictMalformed(2) sigcheck(-1): 'C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll'"
07/24/21        " 14:08:39.561"        322091234        0ad8        0ab0        DEBUG        DDSIG        IGPrefilter        "igsdk.cpp"        2194        "[idx=0] EXCLUDED FLT_PATH_MATCH: 'C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll'"
07/24/21        " 14:08:39.561"        322091234        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        3296        "[idx=0] END ClassifyObject (IGLaunched=0)"
07/24/21        " 14:08:39.561"        322091234        0ad8        0ab0        DEBUG        DDSScanner        DDSScanner::Scan        "ddsscanner.cpp"        522        "DDS classification completed successfully: Unknown Object - C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll"
07/24/21        " 14:08:39.562"        322091234        0ad8        0ab0        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Santa Clara/O=Malwarebytes Inc/CN=Malwarebytes Inc>."
07/24/21        " 14:08:39.569"        322091250        0ad8        0ab0        DEBUG        PEDigisig        mb::common::pe::Pkcs7SignedDataImpl::IsValid        "pedigisig.cpp"        412        "Successfully verified digital signature."
07/24/21        " 14:08:39.576"        322091250        0ad8        0ab0        DEBUG        ObjectScanner        ObjectScanner::ScanFile_OnExecuteShuriken        "objectscanner.cpp"        1432        "File has been filtered by a WhitePolyShuriken rule. FilePath=<C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll>."
07/24/21        " 14:08:39.580"        322091250        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1983        "Trying to extract file as an archive, filepath=C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll."
07/24/21        " 14:08:39.581"        322091250        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::DispositionObject        "rtpcontrollerimplhelper.cpp"        1985        "File extraction done, filepath=C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll."
07/24/21        " 14:08:39.583"        322091265        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll'"
07/24/21        " 14:08:39.589"        322091265        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll'"
07/24/21        " 14:08:39.589"        322091265        0ad8        0ab0        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Santa Clara/O=Malwarebytes Inc/CN=Malwarebytes Inc>."
07/24/21        " 14:08:39.589"        322091265        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Malwarebytes\Anti-Malware\mbae64.dll, CertSubjectCName: Malwarebytes Inc"
07/24/21        " 14:08:39.630"        322091312        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\nss3.dll'"
07/24/21        " 14:08:39.631"        322091312        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:39.636"        322091312        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\nss3.dll'"
07/24/21        " 14:08:39.636"        322091312        0ad8        37cc        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Mountain View/O=Mozilla Corporation/OU=Firefox Engineering Operations/CN=Mozilla Corporation>."
07/24/21        " 14:08:39.636"        322091312        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\nss3.dll, CertSubjectCName: Mozilla Corporation"
07/24/21        " 14:08:39.640"        322091312        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files\Mozilla Firefox\lgpllibs.dll'"
07/24/21        " 14:08:39.642"        322091312        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files\Mozilla Firefox\lgpllibs.dll'"
07/24/21        " 14:08:39.642"        322091312        0ad8        264c        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</C=US/ST=California/L=Mountain View/O=Mozilla Corporation/OU=Firefox Engineering Operations/CN=Mozilla Corporation>."
07/24/21        " 14:08:39.643"        322091312        0ad8        264c        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files\Mozilla Firefox\lgpllibs.dll, CertSubjectCName: Mozilla Corporation"
07/24/21        " 14:08:40.254"        322091937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.258"        322091937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.283"        322091953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.286"        322091968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.296"        322091968        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:08:40.314"        322091984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.317"        322092000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:40.381"        322092062        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54687 Action=Filter"
07/24/21        " 14:08:40.408"        322092078        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:55944 Action=Filter"
07/24/21        " 14:08:41.267"        322092937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.273"        322092953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.299"        322092968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.301"        322092984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.329"        322093000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.332"        322093015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:39.450"        322091129        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21908), Timeout (60)"
07/24/21        " 14:08:39.450"        322091129        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21908 to 60 seconds"
07/24/21        " 14:08:39.455"        322091134        4104        32bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:39.455"        322091134        4104        32bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:39.458"        322091137        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21910), Timeout (60)"
07/24/21        " 14:08:39.458"        322091137        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21910 to 60 seconds"
07/24/21        " 14:08:39.464"        322091143        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21911), Timeout (60)"
07/24/21        " 14:08:39.464"        322091143        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21911 to 60 seconds"
07/24/21        " 14:08:39.509"        322091188        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21912), Timeout (60)"
07/24/21        " 14:08:39.509"        322091188        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21912 to 60 seconds"
07/24/21        " 14:08:39.539"        322091218        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21917), Timeout (60)"
07/24/21        " 14:08:39.539"        322091218        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21917 to 60 seconds"
07/24/21        " 14:08:39.629"        322091308        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21927), Timeout (60)"
07/24/21        " 14:08:39.629"        322091308        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21927 to 60 seconds"
07/24/21        " 14:08:39.640"        322091319        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21930), Timeout (60)"
07/24/21        " 14:08:39.640"        322091319        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21930 to 60 seconds"
07/24/21        " 14:08:39.677"        322091356        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (21931), Timeout (60)"
07/24/21        " 14:08:39.677"        322091356        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 21931 to 60 seconds"
07/24/21        " 14:08:41.724"        322093406        0ad8        100c        DEBUG        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoNotifyCallback        "aecontrollerimplhelper.cpp"        2647        "Unrecognized notification type - (2)"
07/24/21        " 14:08:42.282"        322093953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:42.288"        322093968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:42.308"        322093984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:42.310"        322093984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:42.339"        322094015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:42.342"        322094015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.308"        322094984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.312"        322094984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.324"        322095000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.329"        322095000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.354"        322095031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:43.357"        322095031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:41.826"        322093497        0788        2500        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000000788 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:42.700"        322094371        4590        1afc        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004590 (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:08:44.319"        322096000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:44.322"        322096000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:44.335"        322096015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:44.338"        322096015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:44.367"        322096046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:44.369"        322096046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.337"        322097015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.344"        322097015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.353"        322097031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.357"        322097031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.382"        322097062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.388"        322097062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.363"        322098031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.363"        322098031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.369"        322098046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.373"        322098046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.395"        322098078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.398"        322098078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:45.215"        322096886        2258        46f8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002258 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:45.593"        322097264        1398        3ca0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000001398 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:47.247"        322098921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 1832."
07/24/21        " 14:08:47.391"        322099062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:47.392"        322099062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:47.395"        322099078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:47.397"        322099078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:47.405"        322099078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:47.414"        322099093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:46.309"        322097980        3840        22ac        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003840 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:48.415"        322100093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.415"        322100093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.417"        322100093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.419"        322100093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.430"        322100109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.435"        322100109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.434"        322101109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.436"        322101109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.440"        322101109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.443"        322101125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.447"        322101125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:49.450"        322101125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:48.436"        322100107        4714        3fe4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004714 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:50.456"        322102125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.456"        322102125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.457"        322102140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.460"        322102140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.462"        322102140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.464"        322102140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.531"        322102203        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.273.1645023039\759333687"" -childID 38 -isForBrowser -prefsHandle 10144 -prefMapHandle 5840 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6312 tab)"
07/24/21        " 14:08:50.537"        322102218        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.273.1645023039\759333687"" -childID 38 -isForBrowser -prefsHandle 10144 -prefMapHandle 5840 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6312 tab"
07/24/21        " 14:08:50.545"        322102218        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52216 Action=Filter"
07/24/21        " 14:08:50.570"        322102250        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52678 Action=Filter"
07/24/21        " 14:08:50.593"        322102265        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:51.476"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.477"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.477"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.481"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.482"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.483"        322103156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.556"        322103234        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.280.779753276\412000948"" -childID 39 -isForBrowser -prefsHandle 5820 -prefMapHandle 4688 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6976 tab)"
07/24/21        " 14:08:51.561"        322103234        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.280.779753276\412000948"" -childID 39 -isForBrowser -prefsHandle 5820 -prefMapHandle 4688 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6976 tab"
07/24/21        " 14:08:51.614"        322103296        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:51.691"        322103375        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62757 Action=Filter"
07/24/21        " 14:08:51.715"        322103390        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:51405 Action=Filter"
07/24/21        " 14:08:51.969"        322103640        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:60667 Action=Filter"
07/24/21        " 14:08:52.005"        322103687        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64585 Action=Filter"
07/24/21        " 14:08:52.010"        322103687        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:51158 Action=Filter"
07/24/21        " 14:08:52.202"        322103875        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.287.1637950516\1845769647"" -childID 40 -isForBrowser -prefsHandle 6976 -prefMapHandle 7284 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 5960 tab)"
07/24/21        " 14:08:52.209"        322103890        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.287.1637950516\1845769647"" -childID 40 -isForBrowser -prefsHandle 6976 -prefMapHandle 7284 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 5960 tab"
07/24/21        " 14:08:52.273"        322103953        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:52.488"        322104156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.488"        322104156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.488"        322104156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.490"        322104171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.491"        322104171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.492"        322104171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:50.532"        322102211        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:50.532"        322102211        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:52.672"        322104343        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:49610 Action=Filter"
07/24/21        " 14:08:52.688"        322104359        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.294.2114983350\2083058161"" -childID 41 -isForBrowser -prefsHandle 7084 -prefMapHandle 8660 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 7260 tab)"
07/24/21        " 14:08:52.694"        322104375        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.294.2114983350\2083058161"" -childID 41 -isForBrowser -prefsHandle 7084 -prefMapHandle 8660 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 7260 tab"
07/24/21        " 14:08:52.696"        322104375        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62190 Action=Filter"
07/24/21        " 14:08:52.699"        322104375        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61695 Action=Filter"
07/24/21        " 14:08:52.704"        322104375        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.295.31113479\1379359617"" -childID 42 -isForBrowser -prefsHandle 7072 -prefMapHandle 7076 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6052 tab)"
07/24/21        " 14:08:52.710"        322104390        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.295.31113479\1379359617"" -childID 42 -isForBrowser -prefsHandle 7072 -prefMapHandle 7076 -prefsLen 10690 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6052 tab"
07/24/21        " 14:08:52.717"        322104390        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62273 Action=Filter"
07/24/21        " 14:08:52.740"        322104421        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63090 Action=Filter"
07/24/21        " 14:08:52.744"        322104421        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61847 Action=Filter"
07/24/21        " 14:08:52.753"        322104421        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:52.771"        322104453        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:08:53.153"        322104828        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:58996 Action=Filter"
07/24/21        " 14:08:53.176"        322104859        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64468 Action=Filter"
07/24/21        " 14:08:53.199"        322104875        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53740 Action=Filter"
07/24/21        " 14:08:53.499"        322105171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:53.499"        322105171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:53.499"        322105171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:53.505"        322105187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:53.507"        322105187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:53.509"        322105187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:51.556"        322103235        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:51.556"        322103235        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:52.202"        322103881        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:52.202"        322103881        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:54.511"        322106187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:54.515"        322106187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:54.527"        322106203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:54.528"        322106203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:54.530"        322106203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:54.532"        322106203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:52.689"        322104368        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:52.689"        322104368        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:52.704"        322104383        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:08:52.704"        322104383        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:08:52.832"        322104503        32b4        36e4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000032B4 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:08:55.534"        322107203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:55.539"        322107218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:55.551"        322107234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:55.551"        322107234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:55.555"        322107234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:55.557"        322107234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.563"        322108234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.563"        322108234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.568"        322108250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.570"        322108250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.577"        322108250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:56.582"        322108250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.578"        322109250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.578"        322109250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.583"        322109265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.586"        322109265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.593"        322109265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:57.598"        322109281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.599"        322110281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.599"        322110281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.604"        322110281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.607"        322110281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.613"        322110296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:58.618"        322110296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.428"        322111109        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:08:59.429"        322111109        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:08:59.623"        322111296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.623"        322111296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.628"        322111296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.631"        322111312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.637"        322111312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:08:59.646"        322111328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.643"        322112312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.644"        322112312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.650"        322112328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.653"        322112328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.658"        322112328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:00.663"        322112343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.656"        322113328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.658"        322113328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.671"        322113343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.671"        322113343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.674"        322113343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:01.676"        322113359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.669"        322114343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.672"        322114343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.682"        322114359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.683"        322114359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.685"        322114359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:02.686"        322114359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.017"        322114687        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2616        "[idx=0] BEGIN ClassifyObject: 'C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe' "
07/24/21        " 14:09:03.082"        322114765        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        2695        "[idx=0] DdsClassifyObject(0) FileScan Veredict(0)/VeredictMalformed(2) sigcheck(-1): 'C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe'"
07/24/21        " 14:09:03.082"        322114765        0ad8        0ab0        DEBUG        DDSScanner        DDSScanner::DDSSdkClsResultCallback        "ddsscanner.cpp"        408        "DDSIG GoodObject classification on file C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe, DetectionName=Goodware.AI.1500799884, RuleString=0CE273D7DE7AAD135974638C."
07/24/21        " 14:09:03.082"        322114765        0ad8        0ab0        DEBUG        DDSScanner        DDSScanner::DDSSdkClsResultCallback        "ddsscanner.cpp"        439        "ClassificationMode for DDS detection name: Default."
07/24/21        " 14:09:03.082"        322114765        0ad8        0ab0        DEBUG        DDSIG        IGSDK_ClassifyObject        "igsdk.cpp"        3296        "[idx=0] END ClassifyObject (IGLaunched=0)"
07/24/21        " 14:09:03.082"        322114765        0ad8        0ab0        DEBUG        DDSScanner        DDSScanner::Scan        "ddsscanner.cpp"        522        "DDS classification completed successfully: Good Object - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe"
07/24/21        " 14:09:03.084"        322114765        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe'"
07/24/21        " 14:09:03.099"        322114781        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6553        "WinVerifyTrust, the following file has a valid embedded signature, file='C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe'"
07/24/21        " 14:09:03.100"        322114781        0ad8        0ab0        DEBUG        PEDigisig        mb::common::pe::DigitalSignatureParser::Parse        "pedigisig.cpp"        541        "Successfully parsed PKCS7 signed data. Subject=</businessCategory=Private Organization/jurisdictionC=IE/serialNumber=377893/street=Unit 5 Watson & Johnson Centre/C=IE/ST=County Wicklow/L=Greystones/O=Safer-Networking Ltd./CN=Safer-Networking Ltd.>."
07/24/21        " 14:09:03.100"        322114781        0ad8        0ab0        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe, CertSubjectCName: Safer-Networking Ltd."
07/24/21        " 14:09:03.123"        322114796        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe), cmdline (""C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe"" /scan)"
07/24/21        " 14:09:03.150"        322114828        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\consent.exe), cmdline (consent.exe 11344 502 0000017240C523D0)"
07/24/21        " 14:09:03.377"        322115046        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\consent.exe."
07/24/21        " 14:09:03.423"        322115093        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\consent.exe."
07/24/21        " 14:09:03.425"        322115093        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\consent.exe."
07/24/21        " 14:09:03.451"        322115125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:03.451"        322115125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:03.451"        322115125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:03.451"        322115125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:03.691"        322115359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.697"        322115375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.707"        322115375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.707"        322115375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.717"        322115390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:03.720"        322115390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.375"        322116046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:04.377"        322116046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3316."
07/24/21        " 14:09:04.709"        322116390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.716"        322116390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.724"        322116406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.724"        322116406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.726"        322116406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.727"        322116406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.900"        322116578        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:03.013"        322114692        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (22553), Timeout (60)"
07/24/21        " 14:09:03.013"        322114692        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 22553 to 60 seconds"
07/24/21        " 14:09:03.123"        322114802        4104        38f8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe"
07/24/21        " 14:09:03.123"        322114802        4104        38f8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:03.150"        322114829        2c50        4110        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\consent.exe"
07/24/21        " 14:09:03.150"        322114829        2c50        4110        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:03.102"        322114773        4104        38f8        DEBUG        MBAMChameleon        VerifyFile        "fileverify.cpp"        479        "Opening \??\C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe for verification"
07/24/21        " 14:09:03.145"        322114816        45a8        10a0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000045A8 (\Device\HarddiskVolume5\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe) is exiting"
07/24/21        " 14:09:05.119"        322116796        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56591 Action=Filter"
07/24/21        " 14:09:05.131"        322116812        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61105 Action=Filter"

Schmuizin 24.07.2021 13:29
MBAMSERVICE log (Teil3/x):

Code:
07/24/21        " 14:09:05.725"        322117406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:05.731"        322117406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:05.741"        322117421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:05.741"        322117421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:05.745"        322117421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:05.747"        322117421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:04.126"        322115797        3488        28a4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003488 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) is exiting"
07/24/21        " 14:09:04.378"        322116049        1968        40d8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000001968 (\Device\HarddiskVolume5\Windows\System32\consent.exe) is exiting"
07/24/21        " 14:09:06.742"        322118421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:06.747"        322118421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:06.758"        322118437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:06.758"        322118437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:06.763"        322118437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:06.765"        322118437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.750"        322119421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.754"        322119421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.765"        322119437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.767"        322119437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.781"        322119453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:07.785"        322119468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.758"        322120437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.760"        322120437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.772"        322120453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.774"        322120453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.787"        322120468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.790"        322120468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.350"        322121031        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\svchost.exe), cmdline (C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc)"
07/24/21        " 14:09:09.583"        322121265        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:09.767"        322121437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.771"        322121453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.781"        322121453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.786"        322121468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.797"        322121468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.800"        322121468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:08.582"        322120253        2ba8        2f88        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002BA8 (\Device\HarddiskVolume5\Windows\System32\SearchProtocolHost.exe) is exiting"
07/24/21        " 14:09:08.591"        322120262        2f00        0d10        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002F00 (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:09:10.779"        322122453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:10.784"        322122453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:10.795"        322122468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:10.797"        322122468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:10.810"        322122484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:10.813"        322122484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:09.350"        322121029        03a8        3c7c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\svchost.exe"
07/24/21        " 14:09:09.350"        322121029        03a8        3c7c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:11.788"        322123468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.793"        322123468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.804"        322123484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.806"        322123484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.820"        322123500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.824"        322123500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.090"        322123765        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:12.806"        322124484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.808"        322124484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.819"        322124500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.821"        322124500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.835"        322124515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:12.838"        322124515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.619"        322123290        37e0        27a4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000037E0 (\Device\HarddiskVolume5\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.Launcher\FilesFullTrust.exe) is exiting"
07/24/21        " 14:09:13.818"        322125500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:13.822"        322125500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:13.834"        322125515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:13.839"        322125515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:13.849"        322125531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:13.851"        322125531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:11.627"        322123298        3684        2368        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003684 (\Device\HarddiskVolume5\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.exe) is exiting"
07/24/21        " 14:09:12.712"        322124383        2e24        1664        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002E24 (\Device\HarddiskVolume5\Windows\System32\RuntimeBroker.exe) is exiting"
07/24/21        " 14:09:14.828"        322126500        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:14.833"        322126515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:14.843"        322126515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:14.846"        322126515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:14.858"        322126531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:14.862"        322126531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.692"        322127375        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:15.848"        322127531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.852"        322127531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.864"        322127546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.869"        322127546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.874"        322127546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:15.876"        322127546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.868"        322128546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.871"        322128546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.883"        322128562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.883"        322128562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.887"        322128562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:16.888"        322128562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.884"        322129562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.891"        322129562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.901"        322129578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.901"        322129578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.907"        322129578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:17.909"        322129578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.911"        322130593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.917"        322130593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.926"        322130609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.927"        322130609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.933"        322130609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:18.936"        322130609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.927"        322131609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.937"        322131609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.943"        322131625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.949"        322131625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.959"        322131640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:19.964"        322131640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.951"        322132625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.959"        322132640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.967"        322132640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.971"        322132640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.980"        322132656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:20.983"        322132656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.978"        322133656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.978"        322133656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.981"        322133656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.982"        322133656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.993"        322133671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:21.995"        322133671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:22.995"        322134671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:22.996"        322134671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:23.002"        322134671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:23.006"        322134687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:23.011"        322134687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:23.017"        322134687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.026"        322135703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.026"        322135703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.032"        322135703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.034"        322135703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.040"        322135718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:24.046"        322135718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.039"        322136718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.043"        322136718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.054"        322136734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.054"        322136734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.057"        322136734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:25.059"        322136734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.064"        322137734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.068"        322137750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.080"        322137750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.081"        322137750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.086"        322137765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:26.089"        322137765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.083"        322138765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.088"        322138765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.101"        322138781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.101"        322138781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.106"        322138781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:27.109"        322138781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.099"        322139781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.104"        322139781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.130"        322139812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.130"        322139812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.135"        322139812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:28.139"        322139812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.121"        322140796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.123"        322140796        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.153"        322140828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.154"        322140828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.157"        322140828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:29.158"        322140828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.134"        322141812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.138"        322141812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.165"        322141843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.166"        322141843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.171"        322141843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:30.174"        322141843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.157"        322142828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.162"        322142843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.189"        322142859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.190"        322142859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.194"        322142875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:31.196"        322142875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.168"        322143843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.172"        322143843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.218"        322143890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.218"        322143890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.224"        322143906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:32.227"        322143906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.182"        322144859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.187"        322144859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.241"        322144921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.241"        322144921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.243"        322144921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:33.244"        322144921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.210"        322145890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.216"        322145890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.258"        322145937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.258"        322145937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.264"        322145937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:34.266"        322145937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.235"        322146906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.239"        322146921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.282"        322146953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.282"        322146953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.287"        322146968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:35.289"        322146968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.258"        322147937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.267"        322147937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.302"        322147984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.302"        322147984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.312"        322147984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:36.314"        322147984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.288"        322148968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.294"        322148968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.335"        322149015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.335"        322149015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.341"        322149015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:37.343"        322149015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.309"        322149984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.314"        322149984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.351"        322150031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.351"        322150031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.357"        322150031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.358"        322150031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.520"        322150203        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\Program Files (x86)\Spybot - Search & Destroy 2\Spybot3ELAMSetupConsole.log)"
07/24/21        " 14:09:38.601"        322150281        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchProtocolHost.exe), cmdline (""C:\Windows\system32\SearchProtocolHost.exe"" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100113_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100113 1 -2147483646 ""Software\Microsoft\Windows Search"" ""Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"" ""C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc"" ""DownLevelDaemon""  ""1"")"
07/24/21        " 14:09:38.617"        322150296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:09:39.131"        322150812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:39.326"        322151000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:39.332"        322151015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:39.372"        322151046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:39.373"        322151046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:39.379"        322151062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:39.382"        322151062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.349"        322152031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.355"        322152031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.397"        322152078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.397"        322152078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.406"        322152078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:40.408"        322152078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:38.521"        322150200        16c8        2518        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:09:38.521"        322150200        16c8        2518        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:38.601"        322150280        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchProtocolHost.exe"
07/24/21        " 14:09:38.601"        322150280        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:38.617"        322150296        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchFilterHost.exe"
07/24/21        " 14:09:38.617"        322150296        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:41.364"        322153046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:41.370"        322153046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:41.427"        322153109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:41.427"        322153109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:41.432"        322153109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:41.435"        322153109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.384"        322154062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.390"        322154062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.447"        322154125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.447"        322154125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.451"        322154125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:42.453"        322154125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.404"        322155078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.412"        322155093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.467"        322155140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.467"        322155140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.473"        322155156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.477"        322155156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.123"        322155796        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:44.432"        322156109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.438"        322156109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.495"        322156171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.495"        322156171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.501"        322156171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:44.504"        322156187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:45.451"        322157125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:45.457"        322157140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:45.512"        322157187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:45.518"        322157187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:43.513"        322155184        4328        16b8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004328 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:09:45.527"        322157203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:45.531"        322157203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.481"        322158156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.488"        322158156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.527"        322158203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.532"        322158203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.541"        322158218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:46.549"        322158218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.503"        322159171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.509"        322159187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.549"        322159218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.555"        322159234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.564"        322159234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.568"        322159250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.806"        322159484        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe.log)"
07/24/21        " 14:09:48.461"        322160140        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:48.593"        322160265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:48.598"        322160281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.294"        322158965        3b80        2b2c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003B80 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) is exiting"
07/24/21        " 14:09:49.603"        322161281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:49.606"        322161281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:47.806"        322159485        16c8        1edc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:09:47.806"        322159485        16c8        1edc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:09:50.473"        322162156        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:09:50.619"        322162296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:50.623"        322162296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:51.639"        322163312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:51.642"        322163312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:51.696"        322163375        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61728 Action=Filter"
07/24/21        " 14:09:51.720"        322163390        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59165 Action=Filter"
07/24/21        " 14:09:49.913"        322161584        3d48        3394        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003D48 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:09:52.661"        322164343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:52.666"        322164343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:53.686"        322165359        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:53.692"        322165375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:54.700"        322166375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:54.704"        322166375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:55.707"        322167390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:55.709"        322167390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:56.716"        322168390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:56.719"        322168390        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:57.728"        322169406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:57.734"        322169406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:58.755"        322170437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:58.760"        322170437        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:59.780"        322171453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:09:59.786"        322171468        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:00.806"        322172484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:00.811"        322172484        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:01.835"        322173515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:01.839"        322173515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:02.859"        322174531        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:02.864"        322174546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:03.874"        322175546        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:03.879"        322175562        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:04.898"        322176578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:04.902"        322176578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:05.916"        322177593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:05.923"        322177593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:06.936"        322178609        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:06.942"        322178625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:07.964"        322179640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:07.974"        322179656        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:08.993"        322180671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:08.998"        322180671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:10.008"        322181687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:10.014"        322181687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:11.021"        322182703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:11.024"        322182703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:12.047"        322183718        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:12.051"        322183734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:13.064"        322184734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:13.069"        322184750        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:14.090"        322185765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:14.093"        322185765        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:15.107"        322186781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:15.112"        322186781        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:16.137"        322187812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:16.142"        322187812        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:17.160"        322188828        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:17.163"        322188843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:18.175"        322189843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:18.180"        322189859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:19.191"        322190859        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:19.197"        322190875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:20.217"        322191890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:20.224"        322191906        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:21.240"        322192921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:21.245"        322192921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:22.262"        322193937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:22.265"        322193937        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:23.270"        322194953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:23.273"        322194953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:24.279"        322195953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:24.283"        322195953        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:25.290"        322196968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:25.295"        322196968        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:26.301"        322197984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:26.307"        322197984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:27.316"        322199000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:27.320"        322199000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:28.325"        322200000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:28.330"        322200000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:29.336"        322201015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:29.341"        322201015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:30.358"        322202031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:30.362"        322202031        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:31.378"        322203046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:31.382"        322203062        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:32.399"        322204078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:32.402"        322204078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:33.414"        322205093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:33.419"        322205093        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:34.431"        322206109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:34.435"        322206109        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:35.453"        322207125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:35.455"        322207125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:36.468"        322208140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:36.471"        322208140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:37.486"        322209156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:37.491"        322209171        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:38.507"        322210187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:38.510"        322210187        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:39.017"        322210687        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:10:39.525"        322211203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:39.529"        322211203        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:40.269"        322211937        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56969 Action=Filter"
07/24/21        " 14:10:40.294"        322211968        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59414 Action=Filter"
07/24/21        " 14:10:40.541"        322212218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:40.544"        322212218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:41.555"        322213234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:41.560"        322213234        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:42.573"        322214250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:42.576"        322214250        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:43.584"        322215265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:43.589"        322215265        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:44.598"        322216281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:44.603"        322216281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:45.615"        322217296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:45.621"        322217296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:46.637"        322218312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:46.646"        322218328        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2908."
07/24/21        " 14:10:55.328"        322227000        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53692 Action=Filter"
07/24/21        " 14:10:58.825"        322230500        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50164 Action=Filter"
07/24/21        " 14:10:56.921"        322228592        4568        4698        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004568 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:10:57.318"        322228989        44d0        09bc        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000044D0 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:10:59.430"        322231109        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:10:59.431"        322231109        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:10:58.532"        322230203        2248        3a90        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002248 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:11:07.495"        322239171        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:07.640"        322239312        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56737 Action=Filter"
07/24/21        " 14:11:08.585"        322240256        455c        3aac        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000455C (\Device\HarddiskVolume5\Windows\System32\SearchProtocolHost.exe) is exiting"
07/24/21        " 14:11:08.599"        322240270        44f0        45a8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000044F0 (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:11:17.043"        322248718        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessARWUploads        "cloudcontrollerimplhelper.cpp"        1914        "Enter ProcessARWUploads"
07/24/21        " 14:11:18.052"        322249734        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessAEUploads        "cloudcontrollerimplhelper.cpp"        2006        "Enter ProcessAEUploads"
07/24/21        " 14:11:19.055"        322250734        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessShurikenUploads        "cloudcontrollerimplhelper.cpp"        2097        "Enter ProcessShurikenUploads"
07/24/21        " 14:11:19.618"        322251296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Spybot - Search & Destroy\Logs\Immunization-Browsers.log)"
07/24/21        " 14:11:19.712"        322251390        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchProtocolHost.exe), cmdline (""C:\Windows\system32\SearchProtocolHost.exe"" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100114_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100114 1 -2147483646 ""Software\Microsoft\Windows Search"" ""Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"" ""C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc"" ""DownLevelDaemon""  ""1"")"
07/24/21        " 14:11:19.726"        322251406        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:11:20.069"        322251750        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessRootkitUploads        "cloudcontrollerimplhelper.cpp"        2188        "Enter ProcessRootkitUploads"
07/24/21        " 14:11:20.270"        322251953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:21.084"        322252765        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDopplegangUploads        "cloudcontrollerimplhelper.cpp"        2279        "Enter ProcessDopplegangUploads"
07/24/21        " 14:11:19.619"        322251298        16c8        22bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:11:19.619"        322251298        16c8        22bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:19.713"        322251392        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchProtocolHost.exe"
07/24/21        " 14:11:19.713"        322251392        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:19.727"        322251406        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchFilterHost.exe"
07/24/21        " 14:11:19.727"        322251406        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:22.094"        322253765        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessMWACUploads        "cloudcontrollerimplhelper.cpp"        2372        "Enter ProcessMWACUploads"
07/24/21        " 14:11:23.099"        322254781        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2471        "Enter ProcessDDSUploads"
07/24/21        " 14:11:23.099"        322254781        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2491        "No DDS uploads to process at this time."
07/24/21        " 14:11:24.645"        322256328        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:25.033"        322256703        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Spybot - Search & Destroy\Logs\Firewall.log)"
07/24/21        " 14:11:25.638"        322257312        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:24.069"        322255740        444c        428c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000444C (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:11:25.034"        322256713        16c8        0e2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:11:25.034"        322256713        16c8        0e2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:27.177"        322258859        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:27.693"        322259375        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Spybot - Search & Destroy\Logs\Checks.210720-2058.txt)"
07/24/21        " 14:11:28.314"        322259984        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:26.603"        322258274        2184        331c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002184 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:11:27.693"        322259372        16c8        4238        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:11:27.693"        322259372        16c8        4238        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:36.967"        322268640        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:37.517"        322269187        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Spybot - Search & Destroy\Logs\210720-204516.xml.cleaning.log)"
07/24/21        " 14:11:38.127"        322269796        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:11:36.362"        322268033        4164        4738        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004164 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:11:37.518"        322269197        16c8        47ac        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:11:37.518"        322269197        16c8        47ac        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:11:50.254"        322281937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:12:11.912"        322303593        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57345 Action=Filter"
07/24/21        " 14:12:11.938"        322303609        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50873 Action=Filter"
07/24/21        " 14:12:11.946"        322303625        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54274 Action=Filter"
07/24/21        " 14:12:13.251"        322304921        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59455 Action=Filter"
07/24/21        " 14:12:16.318"        322308000        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:65018 Action=Filter"
07/24/21        " 14:12:31.503"        322323171        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50763 Action=Filter"
07/24/21        " 14:12:31.528"        322323203        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61674 Action=Filter"
07/24/21        " 14:12:31.534"        322323203        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62419 Action=Filter"
07/24/21        " 14:12:51.754"        322343437        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57339 Action=Filter"
07/24/21        " 14:12:59.445"        322351125        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:12:59.446"        322351125        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:02.002"        322353673        0884        2ff0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000000884 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:13:04.599"        322356281        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:03.467"        322355138        4748        2f00        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004748 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:13:11.737"        322363406        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15076."
07/24/21        " 14:13:11.741"        322363421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15076."
07/24/21        " 14:13:11.744"        322363421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15076."
07/24/21        " 14:13:13.380"        322365062        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\LOGS\mbae-default.log)"
07/24/21        " 14:13:11.770"        322363441        3ae4        2f68        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003AE4 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) is exiting"
07/24/21        " 14:13:13.973"        322365656        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:13.381"        322365060        16c8        2dfc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:13:13.381"        322365060        16c8        2dfc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:13:18.502"        322370171        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:19.616"        322371296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\LOGS\MBAMSERVICE.LOG)"
07/24/21        " 14:13:17.908"        322369579        297c        12d8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000297C (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:13:20.228"        322371906        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:19.815"        322371486        3578        20d4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003578 (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:13:19.617"        322371296        16c8        459c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:13:19.617"        322371296        16c8        459c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"

Schmuizin 24.07.2021 13:30
MBAMSERVICE log (Teil4/4):

Code:
07/24/21        " 14:13:22.254"        322373937        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61915 Action=Filter"
07/24/21        " 14:13:22.279"        322373953        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56416 Action=Filter"
07/24/21        " 14:13:36.809"        322388484        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56944 Action=Filter"
07/24/21        " 14:13:36.837"        322388515        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:60079 Action=Filter"
07/24/21        " 14:13:41.044"        322392718        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:13:41.604"        322393281        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:41.044"        322392723        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchFilterHost.exe"
07/24/21        " 14:13:41.044"        322392723        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:13:44.609"        322396281        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:46.657"        322398328        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:13:51.844"        322403515        4114        4298        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004114 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) is exiting"
07/24/21        " 14:14:10.215"        322421890        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61324 Action=Filter"
07/24/21        " 14:14:10.246"        322421921        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56287 Action=Filter"
07/24/21        " 14:14:10.793"        322422464        3c98        46f4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003C98 (\Device\HarddiskVolume5\Windows\System32\svchost.exe) is exiting"
07/24/21        " 14:14:20.896"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.896"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.901"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.902"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.907"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.907"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.908"        322432578        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.913"        322432593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.920"        322432593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.921"        322432593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.925"        322432593        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:14:20.954"        322432625        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\svchost.exe), cmdline (C:\Windows\system32\svchost.exe -k appmodel -p -s camsvc)"
07/24/21        " 14:14:21.346"        322433015        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:14:20.955"        322432634        03a8        3e70        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\svchost.exe"
07/24/21        " 14:14:20.955"        322432634        03a8        3e70        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:14:23.015"        322434687        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:14:24.152"        322435828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:14:51.370"        322463046        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:58744 Action=Filter"
07/24/21        " 14:14:51.394"        322463062        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53880 Action=Filter"
07/24/21        " 14:14:59.446"        322471125        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:14:59.447"        322471125        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:15:08.572"        322480243        3394        234c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003394 (\Device\HarddiskVolume5\Windows\System32\SearchProtocolHost.exe) is exiting"
07/24/21        " 14:15:08.586"        322480257        2950        23b8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002950 (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:15:14.898"        322486578        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52595 Action=Filter"
07/24/21        " 14:15:14.926"        322486609        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:55877 Action=Filter"
07/24/21        " 14:15:15.281"        322486953        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54162 Action=Filter"
07/24/21        " 14:15:15.310"        322486984        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57853 Action=Filter"
07/24/21        " 14:15:15.314"        322486984        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64831 Action=Filter"
07/24/21        " 14:15:20.969"        322492640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 15604."
07/24/21        " 14:15:37.236"        322508906        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:15:45.334"        322517015        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63682 Action=Filter"
07/24/21        " 14:15:45.366"        322517046        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52585 Action=Filter"
07/24/21        " 14:15:46.651"        322518328        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Spybot - Search & Destroy\Logs\210720-204516.xml.cleaning.log)"
07/24/21        " 14:15:46.669"        322518343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3784."
07/24/21        " 14:15:46.669"        322518343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 3784."
07/24/21        " 14:15:46.748"        322518421        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchProtocolHost.exe), cmdline (""C:\Windows\system32\SearchProtocolHost.exe"" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100115_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100115 1 -2147483646 ""Software\Microsoft\Windows Search"" ""Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"" ""C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc"" ""DownLevelDaemon""  ""1"")"
07/24/21        " 14:15:46.764"        322518437        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:15:47.254"        322518937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:15:46.652"        322518331        16c8        43bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:15:46.652"        322518331        16c8        43bc        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:15:46.749"        322518428        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchProtocolHost.exe"
07/24/21        " 14:15:46.749"        322518428        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:15:46.765"        322518444        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchFilterHost.exe"
07/24/21        " 14:15:46.765"        322518444        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:15:50.586"        322522265        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:15:51.252"        322522921        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:15:50.034"        322521705        2338        471c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002338 (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:15:57.728"        322529406        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63221 Action=Filter"
07/24/21        " 14:16:06.506"        322538187        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62465 Action=Filter"
07/24/21        " 14:16:06.532"        322538203        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50260 Action=Filter"
07/24/21        " 14:16:11.430"        322543109        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:23.110"        322554781        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessARWUploads        "cloudcontrollerimplhelper.cpp"        1914        "Enter ProcessARWUploads"
07/24/21        " 14:16:24.115"        322555796        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessAEUploads        "cloudcontrollerimplhelper.cpp"        2006        "Enter ProcessAEUploads"
07/24/21        " 14:16:25.127"        322556796        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessShurikenUploads        "cloudcontrollerimplhelper.cpp"        2097        "Enter ProcessShurikenUploads"
07/24/21        " 14:16:25.401"        322557078        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\exclusions.txt)"
07/24/21        " 14:16:25.610"        322557281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10056."
07/24/21        " 14:16:25.612"        322557281        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10056."
07/24/21        " 14:16:25.618"        322557296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10056."
07/24/21        " 14:16:25.619"        322557296        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10056."
07/24/21        " 14:16:26.038"        322557718        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:26.136"        322557812        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessRootkitUploads        "cloudcontrollerimplhelper.cpp"        2188        "Enter ProcessRootkitUploads"
07/24/21        " 14:16:27.152"        322558828        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDopplegangUploads        "cloudcontrollerimplhelper.cpp"        2279        "Enter ProcessDopplegangUploads"
07/24/21        " 14:16:25.402"        322557081        16c8        4464        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:16:25.402"        322557081        16c8        4464        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:16:27.790"        322559468        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:28.164"        322559843        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessMWACUploads        "cloudcontrollerimplhelper.cpp"        2372        "Enter ProcessMWACUploads"
07/24/21        " 14:16:29.177"        322560859        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2471        "Enter ProcessDDSUploads"
07/24/21        " 14:16:29.177"        322560859        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2491        "No DDS uploads to process at this time."
07/24/21        " 14:16:27.250"        322558921        0ccc        3dc8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000000CCC (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:16:30.223"        322561906        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\LOGS\MBAMSERVICE.LOG)"
07/24/21        " 14:16:30.851"        322562531        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:30.224"        322561903        16c8        424c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:16:30.224"        322561903        16c8        424c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:16:35.864"        322567546        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:35.287"        322566958        44ac        16dc        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000044AC (\Device\HarddiskVolume5\Windows\System32\notepad.exe) is exiting"
07/24/21        " 14:16:57.371"        322589046        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64080 Action=Filter"
07/24/21        " 14:16:57.396"        322589078        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54724 Action=Filter"
07/24/21        " 14:16:57.400"        322589078        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50665 Action=Filter"
07/24/21        " 14:16:59.458"        322591140        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:59.460"        322591140        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:16:59.530"        322591203        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:17:03.657"        322595328        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:17:06.663"        322598343        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:17:34.846"        322626515        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64517 Action=Filter"
07/24/21        " 14:17:45.731"        322637406        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe), cmdline (""C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe"" -Embedding)"
07/24/21        " 14:17:45.751"        322637421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.751"        322637421        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.777"        322637453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.777"        322637453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.778"        322637453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.783"        322637453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:45.784"        322637453        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:46.813"        322638484        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57365 Action=Filter"
07/24/21        " 14:17:46.828"        322638500        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe."
07/24/21        " 14:17:46.829"        322638500        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_ef8a364c90e72379\Display.NvContainer\NVDisplay.Container.exe."
07/24/21        " 14:17:45.731"        322637410        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe"
07/24/21        " 14:17:45.731"        322637410        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:17:51.076"        322642750        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50184 Action=Filter"
07/24/21        " 14:17:51.833"        322643515        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 10052."
07/24/21        " 14:17:51.839"        322643510        2744        1d80        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002744 (\Device\HarddiskVolume5\Users\jendr\AppData\Local\Microsoft\OneDrive\21.119.0613.0001\FileCoAuth.exe) is exiting"
07/24/21        " 14:18:16.552"        322668234        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64593 Action=Filter"
07/24/21        " 14:18:16.570"        322668250        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\svchost.exe), cmdline (C:\Windows\system32\svchost.exe -k wsappx -p -s AppXSvc)"
07/24/21        " 14:18:16.622"        322668296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\SysWOW64\backgroundTaskHost.exe), cmdline (""C:\Windows\SysWOW64\backgroundTaskHost.exe"" -ServerName:App.AppXz2zxkdmw4wwcwh41me91q40p6xy5v793.mca)"
07/24/21        " 14:18:16.626"        322668296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\backgroundTaskHost.exe), cmdline (""C:\Windows\system32\backgroundTaskHost.exe"" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca)"
07/24/21        " 14:18:16.631"        322668312        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\svchost.exe), cmdline (C:\Windows\System32\svchost.exe -k wsappx -p -s ClipSVC)"
07/24/21        " 14:18:16.672"        322668343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 8396."
07/24/21        " 14:18:16.709"        322668390        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\RuntimeBroker.exe), cmdline (C:\Windows\System32\RuntimeBroker.exe -Embedding)"
07/24/21        " 14:18:16.815"        322668484        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\BackgroundTaskHost.exe), cmdline (""C:\Windows\system32\BackgroundTaskHost.exe"" -ServerName:BackgroundTaskHost.WebAccountProvider)"
07/24/21        " 14:18:16.880"        322668562        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\RuntimeBroker.exe), cmdline (C:\Windows\System32\RuntimeBroker.exe -Embedding)"
07/24/21        " 14:18:16.943"        322668625        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\RuntimeBroker.exe), cmdline (C:\Windows\System32\RuntimeBroker.exe -Embedding)"
07/24/21        " 14:18:17.057"        322668734        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:49159 Action=Filter"
07/24/21        " 14:18:17.455"        322669125        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:17.465"        322669140        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:17.565"        322669234        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\BackgroundTransferHost.exe), cmdline (""BackgroundTransferHost.exe"" -ServerName:BackgroundTransferHost.1)"
07/24/21        " 14:18:17.688"        322669359        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\BackgroundTransferHost.exe), cmdline (""BackgroundTransferHost.exe"" -ServerName:BackgroundTransferHost.1)"
07/24/21        " 14:18:17.796"        322669468        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61561 Action=Filter"
07/24/21        " 14:18:17.957"        322669625        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:17.964"        322669640        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:17.996"        322669671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:18.000"        322669671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:18.001"        322669671        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:18.061"        322669734        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\backgroundTaskHost.exe), cmdline (""C:\Windows\system32\backgroundTaskHost.exe"" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca)"
07/24/21        " 14:18:18.210"        322669890        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\BackgroundTransferHost.exe), cmdline (""BackgroundTransferHost.exe"" -ServerName:BackgroundTransferHost.1)"
07/24/21        " 14:18:18.318"        322670000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:18.320"        322670000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:18.321"        322670000        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:18:16.571"        322668250        03a8        33f0        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\svchost.exe"
07/24/21        " 14:18:16.571"        322668250        03a8        33f0        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.623"        322668302        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\SysWOW64\backgroundTaskHost.exe"
07/24/21        " 14:18:16.623"        322668302        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.627"        322668306        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\backgroundTaskHost.exe"
07/24/21        " 14:18:16.627"        322668306        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.632"        322668311        03a8        33f0        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\svchost.exe"
07/24/21        " 14:18:16.632"        322668311        03a8        33f0        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:18.775"        322670453        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61593 Action=Filter"
07/24/21        " 14:18:16.938"        322668609        0588        16b0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000000588 (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:18:17.560"        322669231        0264        0530        DEBUG        MBAMChameleon        VerifyFile        "fileverify.cpp"        479        "Opening \??\C:\Windows\system32\BackgroundTransferHost.exe for verification"
07/24/21        " 14:18:17.650"        322669321        4048        08a0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004048 (\Device\HarddiskVolume5\Windows\System32\BackgroundTransferHost.exe) is exiting"
07/24/21        " 14:18:17.759"        322669430        417c        2e7c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000417C (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:18:16.709"        322668388        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\RuntimeBroker.exe"
07/24/21        " 14:18:16.709"        322668388        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.815"        322668494        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\BackgroundTaskHost.exe"
07/24/21        " 14:18:16.815"        322668494        0264        4348        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.881"        322668560        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\RuntimeBroker.exe"
07/24/21        " 14:18:16.881"        322668560        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:16.944"        322668623        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\RuntimeBroker.exe"
07/24/21        " 14:18:16.944"        322668623        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:17.566"        322669245        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\BackgroundTransferHost.exe"
07/24/21        " 14:18:17.566"        322669245        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:17.689"        322669368        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\BackgroundTransferHost.exe"
07/24/21        " 14:18:17.689"        322669368        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:18.061"        322669740        0264        415c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\backgroundTaskHost.exe"
07/24/21        " 14:18:18.061"        322669740        0264        415c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:18.211"        322669890        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\BackgroundTransferHost.exe"
07/24/21        " 14:18:18.211"        322669890        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:18.043"        322669714        37ac        1c08        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000037AC (\Device\HarddiskVolume5\Windows\System32\BackgroundTransferHost.exe) is exiting"
07/24/21        " 14:18:18.309"        322669980        4464        4318        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004464 (\Device\HarddiskVolume5\Windows\System32\BackgroundTransferHost.exe) is exiting"
07/24/21        " 14:18:18.965"        322670636        451c        2a0c        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000451C (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:18:30.046"        322681718        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64981 Action=Filter"
07/24/21        " 14:18:37.815"        322689484        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:49915 Action=Filter"
07/24/21        " 14:18:37.822"        322689500        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61806 Action=Filter"
07/24/21        " 14:18:37.847"        322689515        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:53198 Action=Filter"
07/24/21        " 14:18:37.854"        322689531        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64583 Action=Filter"
07/24/21        " 14:18:37.958"        322689640        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62560 Action=Filter"
07/24/21        " 14:18:37.986"        322689656        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63302 Action=Filter"
07/24/21        " 14:18:47.065"        322698734        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\backgroundTaskHost.exe), cmdline (""C:\Windows\system32\backgroundTaskHost.exe"" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca)"
07/24/21        " 14:18:47.976"        322699656        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52798 Action=Filter"
07/24/21        " 14:18:48.055"        322699734        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:18:48.065"        322699734        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:64863 Action=Filter"
07/24/21        " 14:18:48.161"        322699843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:18:48.167"        322699843        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:18:48.172"        322699843        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59941 Action=Filter"
07/24/21        " 14:18:48.243"        322699921        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:18:47.066"        322698745        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\backgroundTaskHost.exe"
07/24/21        " 14:18:47.066"        322698745        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:47.329"        322699000        0bbc        3e84        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000000BBC (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:18:51.929"        322703609        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61024 Action=Filter"
07/24/21        " 14:18:51.957"        322703625        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54536 Action=Filter"
07/24/21        " 14:18:51.961"        322703640        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61998 Action=Filter"
07/24/21        " 14:18:54.783"        322706453        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63350 Action=Filter"
07/24/21        " 14:18:54.809"        322706484        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52587 Action=Filter"
07/24/21        " 14:18:54.837"        322706515        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62852 Action=Filter"
07/24/21        " 14:18:54.949"        322706625        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57016 Action=Filter"
07/24/21        " 14:18:55.172"        322706843        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63443 Action=Filter"
07/24/21        " 14:18:56.139"        322707812        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59996 Action=Filter"
07/24/21        " 14:18:56.170"        322707843        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:58238 Action=Filter"
07/24/21        " 14:18:56.195"        322707875        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:51408 Action=Filter"
07/24/21        " 14:18:56.789"        322708468        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.308.733597909\1746122897"" -childID 43 -isForBrowser -prefsHandle 4224 -prefMapHandle 4848 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6416 tab)"
07/24/21        " 14:18:56.796"        322708468        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.308.733597909\1746122897"" -childID 43 -isForBrowser -prefsHandle 4224 -prefMapHandle 4848 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 6416 tab"
07/24/21        " 14:18:56.853"        322708531        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:18:57.058"        322708734        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59726 Action=Filter"
07/24/21        " 14:18:57.084"        322708765        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:60068 Action=Filter"
07/24/21        " 14:18:57.881"        322709562        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62109 Action=Filter"
07/24/21        " 14:18:57.908"        322709578        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54897 Action=Filter"
07/24/21        " 14:18:57.913"        322709593        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:55404 Action=Filter"
07/24/21        " 14:18:57.929"        322709609        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.315.632536565\1068102419"" -childID 44 -isForBrowser -prefsHandle 7020 -prefMapHandle 7088 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 1212 tab)"
07/24/21        " 14:18:57.935"        322709609        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.315.632536565\1068102419"" -childID 44 -isForBrowser -prefsHandle 7020 -prefMapHandle 7088 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 1212 tab"
07/24/21        " 14:18:57.985"        322709656        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:18:56.790"        322708469        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:18:56.790"        322708469        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:18:59.461"        322711140        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:18:59.463"        322711140        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:18:57.930"        322709609        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:18:57.930"        322709609        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:19:00.012"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.013"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.013"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.013"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.014"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.014"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.014"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.016"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.018"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.018"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.018"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.018"        322711687        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.020"        322711703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.021"        322711703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.021"        322711703        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.132"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.133"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.133"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.135"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.138"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.138"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.144"        322711812        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.146"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.147"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.147"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.147"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.149"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.150"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.150"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.151"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.151"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.151"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:00.152"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.152"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.152"        322711828        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:00.204"        322711875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.206"        322711875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.207"        322711875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.207"        322711875        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.208"        322711890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.208"        322711890        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.301"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.301"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.302"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.302"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.315"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.315"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.316"        322711984        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.337"        322712015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.337"        322712015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.337"        322712015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.338"        322712015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.338"        322712015        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:18:58.329"        322710000        4168        3154        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004168 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:19:00.408"        322712078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.408"        322712078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.408"        322712078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.473"        322712156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.474"        322712156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.474"        322712156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:00.475"        322712156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:19:05.158"        322716828        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:51527 Action=Filter"
07/24/21        " 14:19:05.165"        322716843        0ad8        25ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61648 Action=Filter"
07/24/21        " 14:19:09.362"        322721031        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:58500 Action=Filter"
07/24/21        " 14:19:09.385"        322721062        0ad8        3b48        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54929 Action=Filter"
07/24/21        " 14:19:08.548"        322720219        2ff0        4458        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002FF0 (\Device\HarddiskVolume5\Windows\System32\SearchProtocolHost.exe) is exiting"
07/24/21        " 14:19:08.556"        322720227        3810        1e28        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003810 (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:19:17.283"        322728953        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56129 Action=Filter"
07/24/21        " 14:19:17.365"        322729046        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:19:17.405"        322729078        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 2508."
07/24/21        " 14:19:16.845"        322728516        26d4        46b8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000026D4 (\Device\HarddiskVolume5\Windows\SysWOW64\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:19:19.268"        322730937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.269"        322730937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.269"        322730937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.269"        322730937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.269"        322730937        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.270"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.270"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.270"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.271"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.271"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.271"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:19.271"        322730953        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe."
07/24/21        " 14:19:24.619"        322736296        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59619 Action=Filter"
07/24/21        " 14:19:24.647"        322736328        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:52814 Action=Filter"
07/24/21        " 14:19:28.102"        322739781        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57464 Action=Filter"
07/24/21        " 14:19:28.129"        322739812        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:62601 Action=Filter"
07/24/21        " 14:19:30.044"        322741718        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59057 Action=Filter"
07/24/21        " 14:19:30.072"        322741750        0ad8        1e0c        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:50133 Action=Filter"
07/24/21        " 14:19:30.164"        322741843        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.166"        322741843        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.168"        322741843        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.169"        322741843        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.184"        322741859        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.185"        322741859        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:30.187"        322741859        0ad8        3cc0        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:54799 Action=Filter"
07/24/21        " 14:19:31.906"        322743578        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:31.906"        322743578        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:31.910"        322743593        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:31.911"        322743593        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:32.546"        322744218        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:32.546"        322744218        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:32.547"        322744218        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:32.553"        322744234        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe."
07/24/21        " 14:19:40.202"        322751875        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:51554 Action=Filter"
07/24/21        " 14:19:40.242"        322751921        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61877 Action=Filter"
07/24/21        " 14:19:40.246"        322751921        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:56317 Action=Filter"
07/24/21        " 14:19:40.828"        322752500        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\Mozilla Firefox\firefox.exe), cmdline (""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.322.174564261\642334045"" -childID 45 -isForBrowser -prefsHandle 8220 -prefMapHandle 6552 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 9664 tab)"
07/24/21        " 14:19:40.835"        322752515        0ad8        05e4        DEBUG        ArwSDK        Combo__ProcessDropping        "arde.combo.processdropping.cpp"        130        "tid: 3d3c - Process self executes: 15280:3092 - ""C:\Program Files\Mozilla Firefox\firefox.exe"" -contentproc --channel=""15280.322.174564261\642334045"" -childID 45 -isForBrowser -prefsHandle 8220 -prefMapHandle 6552 -prefsLen 10959 -prefMapSize 252804 -jsInit 1524 285176 -parentBuildID 20210716144314 -appdir ""C:\Program Files\Mozilla Firefox\browser"" - 15280 ""\\.\pipe\gecko-crash-server-pipe.15280"" 9664 tab"
07/24/21        " 14:19:40.896"        322752578        0ad8        100c        INFO        AEControllerImpl        mb::aecontrollerimpl::AEControllerImplHelper::DoAppInjectedNotification        "aecontrollerimplhelper.cpp"        2591        "App Injected (Mozilla Firefox (and add-ons))"
07/24/21        " 14:19:40.828"        322752507        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\Mozilla Firefox\firefox.exe"
07/24/21        " 14:19:40.828"        322752507        3bb0        0c14        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:19:45.597"        322757265        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\LOGS\MBAMSERVICE.LOG)"
07/24/21        " 14:19:45.686"        322757359        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchProtocolHost.exe), cmdline (""C:\Windows\system32\SearchProtocolHost.exe"" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100116_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100116 1 -2147483646 ""Software\Microsoft\Windows Search"" ""Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"" ""C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc"" ""DownLevelDaemon""  ""1"")"
07/24/21        " 14:19:45.702"        322757375        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:19:46.250"        322757921        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:19:45.597"        322757276        16c8        158c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\NOTEPAD.EXE"
07/24/21        " 14:19:45.597"        322757276        16c8        158c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:19:45.687"        322757366        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchProtocolHost.exe"
07/24/21        " 14:19:45.687"        322757366        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:19:45.703"        322757382        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\SearchFilterHost.exe"
07/24/21        " 14:19:45.703"        322757382        2748        2870        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:19:46.861"        322758532        3fc4        3478        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003FC4 (\Device\HarddiskVolume5\Windows\System32\RuntimeBroker.exe) is exiting"
07/24/21        " 14:19:51.995"        322763671        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:20:18.033"        322789703        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\backgroundTaskHost.exe), cmdline (""C:\Windows\system32\backgroundTaskHost.exe"" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca)"
07/24/21        " 14:20:18.033"        322789703        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe), cmdline (""C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe"" -ServerName:Hx.IPC.Server)"
07/24/21        " 14:20:18.113"        322789796        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\System32\RuntimeBroker.exe), cmdline (C:\Windows\System32\RuntimeBroker.exe -Embedding)"
07/24/21        " 14:20:18.171"        322789843        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\BackgroundTaskHost.exe), cmdline (""C:\Windows\system32\BackgroundTaskHost.exe"" -ServerName:BackgroundTaskHost.WebAccountProvider)"
07/24/21        " 14:20:18.643"        322790312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:20:18.644"        322790312        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:20:18.672"        322790343        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:20:18.697"        322790375        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6517        "Signature validation using WinVerifyTrust (with local cache revocation check) for 'C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1110_none_91a01826cc8bca4c\GdiPlus.dll'"
07/24/21        " 14:20:18.697"        322790375        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::IsFileSignatureValidPerWinVerifyTrust        "rtpcontrollerimplhelper.cpp"        6558        "WinVerifyTrust failed for file='C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1110_none_91a01826cc8bca4c\GdiPlus.dll', result=0x800b0100, last error='Es war keine Signatur im Antragsteller vorhanden.  (0x800b0100)'"
07/24/21        " 14:20:18.697"        322790375        0ad8        37cc        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::ValidateAndExtractCertificateInfo        "rtpcontrollerimplhelper.cpp"        6510        "Certificate validation completed for C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1110_none_91a01826cc8bca4c\GdiPlus.dll, CertSubjectCName: "
07/24/21        " 14:20:18.707"        322790375        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 14740."
07/24/21        " 14:20:18.034"        322789713        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\backgroundTaskHost.exe"
07/24/21        " 14:20:18.034"        322789705        0264        4758        DEBUG        MBAMChameleon        VerifyFile        "fileverify.cpp"        479        "Opening \??\C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe for verification"
07/24/21        " 14:20:18.034"        322789713        0264        40a8        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:20:18.270"        322789941        3bd4        2430        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003BD4 (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:20:18.034"        322789713        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe"
07/24/21        " 14:20:18.285"        322789956        1fa4        3e10        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000001FA4 (\Device\HarddiskVolume5\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe) is exiting"
07/24/21        " 14:20:18.034"        322789713        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:20:18.114"        322789793        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\System32\RuntimeBroker.exe"
07/24/21        " 14:20:18.114"        322789793        0264        4758        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:20:18.172"        322789851        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\BackgroundTaskHost.exe"
07/24/21        " 14:20:18.172"        322789851        0264        0530        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:20:18.695"        322790374        0ad8        2630        DEBUG        MBAMProtection        MbamMessage        "protector.c"        762        "SET_EVENT_TIMEOUT - MessageId (26475), Timeout (60)"
07/24/21        " 14:20:18.695"        322790374        0ad8        2630        DEBUG        MBAMProtection        SetEventTimeout        "comm.c"        630        "Set event timeout for message 26475 to 60 seconds"
07/24/21        " 14:20:19.367"        322791038        4744        43d4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000004744 (\Device\HarddiskVolume5\Windows\System32\backgroundTaskHost.exe) is exiting"
07/24/21        " 14:20:42.387"        322814062        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe), cmdline (""C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe"" /ua /installsource scheduler)"
07/24/21        " 14:20:42.422"        322814093        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe."
07/24/21        " 14:20:42.387"        322814066        0614        0b2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe"
07/24/21        " 14:20:42.387"        322814066        0614        0b2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:20:42.436"        322814107        42b4        18d0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000042B4 (\Device\HarddiskVolume5\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe) is exiting"
07/24/21        " 14:20:57.500"        322829171        0ad8        30ac        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:63208 Action=Filter"
07/24/21        " 14:20:57.046"        322828717        3f48        1f28        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000003F48 (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:20:59.348"        322831031        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:57735 Action=Filter"
07/24/21        " 14:20:59.473"        322831156        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:20:59.473"        322831156        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe."
07/24/21        " 14:20:58.095"        322829766        11fc        1e88        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000011FC (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:21:00.481"        322832156        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:21:00.541"        322832218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:21:00.543"        322832218        0ad8        1134        DEBUG        RTPControllerImpl        mb::rtpcontrollerimpl::RTPControllerImpl::HandleFileCreateNotification        "rtpcontrollerimplhelper.cpp"        1468        "Could not get file path for process id 4632."
07/24/21        " 14:20:59.389"        322831060        1ed8        34a0        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000001ED8 (\Device\HarddiskVolume5\Windows\System32\RuntimeBroker.exe) is exiting"
07/24/21        " 14:21:08.533"        322840204        2664        2bd8        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000002664 (\Device\HarddiskVolume5\Windows\System32\SearchProtocolHost.exe) is exiting"
07/24/21        " 14:21:08.539"        322840210        131c        4318        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 000000000000131C (\Device\HarddiskVolume5\Windows\System32\SearchFilterHost.exe) is exiting"
07/24/21        " 14:21:12.070"        322843750        0ad8        1c88        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61745 Action=Filter"
07/24/21        " 14:21:12.097"        322843765        0ad8        2a04        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:59308 Action=Filter"
07/24/21        " 14:21:29.181"        322860859        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessARWUploads        "cloudcontrollerimplhelper.cpp"        1914        "Enter ProcessARWUploads"
07/24/21        " 14:21:30.196"        322861875        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessAEUploads        "cloudcontrollerimplhelper.cpp"        2006        "Enter ProcessAEUploads"
07/24/21        " 14:21:31.211"        322862890        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessShurikenUploads        "cloudcontrollerimplhelper.cpp"        2097        "Enter ProcessShurikenUploads"
07/24/21        " 14:21:32.219"        322863890        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessRootkitUploads        "cloudcontrollerimplhelper.cpp"        2188        "Enter ProcessRootkitUploads"
07/24/21        " 14:21:33.225"        322864906        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDopplegangUploads        "cloudcontrollerimplhelper.cpp"        2279        "Enter ProcessDopplegangUploads"
07/24/21        " 14:21:34.227"        322865906        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessMWACUploads        "cloudcontrollerimplhelper.cpp"        2372        "Enter ProcessMWACUploads"
07/24/21        " 14:21:35.237"        322866906        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2471        "Enter ProcessDDSUploads"
07/24/21        " 14:21:35.237"        322866906        0ad8        3a80        DEBUG        CloudCtrlImpl        CloudControllerImplHelper::ProcessDDSUploads        "cloudcontrollerimplhelper.cpp"        2491        "No DDS uploads to process at this time."
07/24/21        " 14:21:36.831"        322868502        1aac        2244        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 0000000000001AAC (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) is exiting"
07/24/21        " 14:21:49.314"        322880984        0ad8        3f50        DEBUG        MwacLib        NetworkEventHandler::onConnectRequest        "networkeventhandler.cpp"        433        "Outbound UDP connection: ProcessId=4056 (C:\Windows\System32\svchost.exe) RemoteAddress=192.168.178.1:53 LocalAddress=192.168.178.45:61904 Action=Filter"
07/24/21        " 14:21:51.980"        322883656        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\wermgr.exe), cmdline (C:\Windows\system32\wermgr.exe -upload)"
07/24/21        " 14:21:52.017"        322883687        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:52.020"        322883703        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:52.020"        322883703        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:52.037"        322883718        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:52.038"        322883718        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:52.038"        322883718        0ad8        2624        DEBUG        MBAMShimImpl        MBAMShimImpl::ProcessFileSystemCreationEvent        "mbamshimimpl.cpp"        613        "No ZoneId info available on file, C:\Windows\System32\wermgr.exe."
07/24/21        " 14:21:51.980"        322883659        0614        0b2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1938        "Process create - \??\C:\Windows\system32\wermgr.exe"
07/24/21        " 14:21:51.975"        322883646        0614        0b2c        DEBUG        MBAMChameleon        VerifyFile        "fileverify.cpp"        479        "Opening \??\C:\Windows\system32\wermgr.exe for verification"
07/24/21        " 14:21:52.211"        322883882        18fc        41e4        DEBUG        MBAMChameleon        ProcessNotify        "procprot.c"        591        "CreateProcess: Process 00000000000018FC (\Device\HarddiskVolume5\Windows\System32\wermgr.exe) is exiting"
07/24/21        " 14:21:51.980"        322883659        0614        0b2c        DEBUG        MBAMProtection        RtpProcessCreateNotifyRoutine        "filter.c"        1998        "Process create - game mode list is empty"
07/24/21        " 14:22:00.115"        322891796        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchProtocolHost.exe), cmdline (""C:\Windows\system32\SearchProtocolHost.exe"" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100117_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3267400732-2583111342-1326098953-100117 1 -2147483646 ""Software\Microsoft\Windows Search"" ""Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)"" ""C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc"" ""DownLevelDaemon""  ""1"")"
07/24/21        " 14:22:00.133"        322891812        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\SearchFilterHost.exe), cmdline (""C:\Windows\system32\SearchFilterHost.exe"" 0 800 804 812 8192 808 784 )"
07/24/21        " 14:22:01.620"        322893296        0ad8        3c34        DEBUG        RtpSDK        RtpUserImpl::MessageLoop        "rtpuserimpl.cpp"        719        "Request process disposition for (C:\Windows\system32\NOTEPAD.EXE), cmdline (""C:\Windows\system32\NOTEPAD.EXE"" C:\ProgramData\Malwarebytes\MBAMService\LOGS\MBAMSERVICE.LOG)"

cosinus 24.07.2021 13:38
Bitte meine Beiträge richtig lesen.
Ich wollte weder Logs von Spybot noch irgendwelche Servicelogs von MBAM sondern die MBAM-Logs mit Funden. Warum liest du hier die Anleitungen nicht richtig?

Schmuizin 24.07.2021 13:47
Sorry, mein Fehler. Dachte alle Logs werden unter ProgramData gespeichert. Habe jetzt hoffentlich den richtigen Log über die Anwendung erstellt.

Code:
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 20.07.21
Scan-Zeit: 20:37
Protokolldatei: 9bc39b36-e989-11eb-8a65-c8d3ff439d02.json

-Softwaredaten-
Version: 4.4.3.125
Komponentenversion: 1.0.1387
Version des Aktualisierungspakets: 1.0.43313
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10 (Build 19043.1110)
CPU: x64
Dateisystem: NTFS
Benutzer: DESKTOP-1I15JVI\jendr

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 315387
Erkannte Bedrohungen: 8
In die Quarantäne verschobene Bedrohungen: 8
Abgelaufene Zeit: 1 Min., 8 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 5
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\OpenOffice Updater, In Quarantäne, 6488, 531440, 1.0.43313, , ame, , ,
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\SOFTWARE\OpenOffice Updater, In Quarantäne, 6488, 628584, 1.0.43313, , ame, , ,
PUP.Optional.Websuche, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Websuche.exe, In Quarantäne, 6911, 466478, 1.0.43313, , ame, , ,
PUP.Optional.Websuche, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Websuche.exe, In Quarantäne, 6911, 466478, 1.0.43313, , ame, , ,
PUP.Optional.StartPage.ShrtCln, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Websuche, In Quarantäne, 4048, 462929, 1.0.43313, , ame, , ,

Registrierungswert: 1
PUP.Optional.OpenOfficeDE, HKU\S-1-5-21-3267400732-2583111342-1326098953-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|OPENOFFICE UPDATER, In Quarantäne, 6488, 531439, 1.0.43313, , ame, , ,

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 2
PUP.Optional.OpenOfficeDE, C:\USERS\JENDR\APPDATA\ROAMING\OPENOFFICE UPDATER\UPDATER.EXE, In Quarantäne, 6488, 531439, , , , , 2C686E215335241728E777CA71E520F8, 5A6F4A7DF4C5EE680671E08B4DF865EAC202AF8B6965963D80AFC960FE749166
PUP.Optional.StartPage.ShrtCln, C:\USERS\JENDR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BW1X1Y5F.DEFAULT-RELEASE\PREFS.JS, Ersetzt, 4048, 456658, 1.0.43313, , ame, , F512CCC4129F4C7A15BB9B0635E6A1D0, C65F85B9B718C4DB66CE9244E4C289071F7ECC000F10B0B1F44EB956EBB5E594

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)

cosinus 24.07.2021 13:53
Störende, veraltete oder unnötige Programme deinstallieren

Bitte über Programme und Features (appwiz.cpl) deinstallieren:


Java 8 Update 301
OpenOffice 4.1.9 (durch LibreOffice ersetzen)
Spybot - Search & Destroy

Schmuizin 24.07.2021 13:58
Habe diese drei Programme deinstalliert und den Rechner neu gestartet.

cosinus 24.07.2021 14:07
Ok, dann geh nochmal mit adwCleaner nach unserer Anleitung rüber:

adwCleaner

Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags.

adwcleaner zwecks Kontrolle bitte wiederholen, falls es Funde gab.

Schmuizin 24.07.2021 14:10
Anbei der Log:

Code:
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build:    06-29-2021
# Database: 2021-06-29.1 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    07-24-2021
# Duration: 00:00:00
# OS:      Windows 10 Home
# Cleaned:  1
# Failed:  0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted      Preinstalled.HPTouchpointAnalyticsClient  Folder  C:\ProgramData\HP\HP TOUCHPOINT ANALYTICS CLIENT


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1756 octets] - [20/07/2021 21:03:24]
AdwCleaner[C00].txt - [1928 octets] - [20/07/2021 21:04:29]
AdwCleaner[S01].txt - [1598 octets] - [24/07/2021 15:05:36]
AdwCleaner[S02].txt - [1659 octets] - [24/07/2021 15:08:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

cosinus 24.07.2021 14:19
Dann jetzt ne FRST.txt und Addition.txt


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:52 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131