lpus/logs/dump_test/1/eprocess_lpusscan.csv
2020-06-05 19:37:13 +07:00

8.2 KiB

1addressprocessfullpath
20xffff948957c6c080svchost.exe
30xffff948957caa080svchost.exe\Windows\System32\svchost.exe
40xffff94895ad15080powershell.exe
50xffff94895ad1a080CodeHelper.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\platform\files\node\watcher\win32\CodeHelper.exe
60xffff94895b394080Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
70xffff94895ba28080MicrosoftEdgeC\Windows\System32\MicrosoftEdgeCP.exe
80xffff94895ba2b080sppsvc.exe\Windows\System32\sppsvc.exe
90xffff94895ba433c0audiodg.exe\Windows\System32\audiodg.exe
100xffff94895bb21380powershell.exe\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
110xffff94895bb25080MicrosoftEdgeC\Windows\System32\MicrosoftEdgeCP.exe
120xffff94895bb28080conhost.exe\Windows\System32\conhost.exe
130xffff94895bb8a080conhost.exe\Windows\System32\conhost.exe
140xffff94895cbc9080Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
150xffff94895ce98400svchost.exe\Windows\System32\svchost.exe
160xffff94895cea7080MemCompression
170xffff94895ceb5380svchost.exe\Windows\System32\svchost.exe
180xffff94895cec9080svchost.exe\Windows\System32\svchost.exe
190xffff94895cf2e3c0svchost.exe\Windows\System32\svchost.exe
200xffff94895cf5c400svchost.exe\Windows\System32\svchost.exe
210xffff94895cf90400svchost.exe\Windows\System32\svchost.exe
220xffff94895cf98400svchost.exe\Windows\System32\svchost.exe
230xffff94895e017440svchost.exe\Windows\System32\svchost.exe
240xffff94895e02b380svchost.exe\Windows\System32\svchost.exe
250xffff94895e072400svchost.exe\Windows\System32\svchost.exe
260xffff94895e077400svchost.exe\Windows\System32\svchost.exe
270xffff94895e0ce400svchost.exe\Windows\System32\svchost.exe
280xffff94895e0d8400svchost.exe\Windows\System32\svchost.exe
290xffff94895e1670c0sqlwriter.exe\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
300xffff94895e169380svchost.exe\Windows\System32\svchost.exe
310xffff94895e16a080svchost.exe\Windows\System32\svchost.exe
320xffff94895e16b080svchost.exe\Windows\System32\svchost.exe
330xffff94895e16c080svchost.exe\Windows\System32\svchost.exe
340xffff94895e16d080svchost.exe\Windows\System32\svchost.exe
350xffff94895e170080svchost.exe\Windows\System32\svchost.exe
360xffff94895e171080svchost.exe\Windows\System32\svchost.exe
370xffff94895e172080svchost.exe\Windows\System32\svchost.exe
380xffff94895e174080spoolsv.exe\Windows\System32\spoolsv.exe
390xffff94895e1780c0svchost.exe\Windows\System32\svchost.exe
400xffff94895e38b080WindowsInterna\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
410xffff94895e390080svchost.exe\Windows\System32\svchost.exe
420xffff94895e391080svchost.exe\Windows\System32\svchost.exe
430xffff94895e392080svchost.exe\Windows\System32\svchost.exe
440xffff94895e394080svchost.exe\Windows\System32\svchost.exe
450xffff94895e395080svchost.exe\Windows\System32\svchost.exe
460xffff94895e396080svchost.exe\Windows\System32\svchost.exe
470xffff94895e3990c0wlms.exe\Windows\System32\wlms\wlms.exe
480xffff94895e54e4c0NisSrv.exe\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
490xffff94895e929480smartscreen.ex\Windows\System32\smartscreen.exe
500xffff94895e92a080Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
510xffff94895e9412c0Windows.WARP.J\Windows\System32\Windows.WARP.JITService.exe
520xffff94895e9512c0MsMpEng.exe\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
530xffff94895e970080SearchUI.exe\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
540xffff94895eaaf440sihost.exe\Windows\System32\sihost.exe
550xffff94895eaee480svchost.exe\Windows\System32\svchost.exe
560xffff94895eaf54c0svchost.exe\Windows\System32\svchost.exe
570xffff94895eaf84c0svchost.exe\Windows\System32\svchost.exe
580xffff94895eb4f080svchost.exe
590xffff94895eb57380svchost.exe\Windows\System32\svchost.exe
600xffff94895eb5b4c0taskhostw.exe\Windows\System32\taskhostw.exe
610xffff94895ebbd3c0svchost.exe\Windows\System32\svchost.exe
620xffff94895ebc2440ctfmon.exe\Windows\System32\ctfmon.exe
630xffff94895ec48400svchost.exe\Windows\System32\svchost.exe
640xffff94895ec5e080userinit.exe
650xffff94895ec62080explorer.exe\Windows\explorer.exe
660xffff94895ec70080svchost.exe\Windows\System32\svchost.exe
670xffff94895ec77080svchost.exe\Windows\System32\svchost.exe
680xffff94895ec934c0svchost.exe\Windows\System32\svchost.exe
690xffff94895eccc4c0Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
700xffff94895ece5080dllhost.exe\Windows\System32\dllhost.exe
710xffff94895edca080svchost.exe\Windows\System32\svchost.exe
720xffff94895edda080svchost.exe\Windows\System32\svchost.exe
730xffff94895edf6080StartMenuExper\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
740xffff94895ef1b480RuntimeBroker.\Windows\System32\RuntimeBroker.exe
750xffff94895efb9080svchost.exe\Windows\System32\svchost.exe
760xffff94895f089480RuntimeBroker.\Windows\System32\RuntimeBroker.exe
770xffff94895f118480RuntimeBroker.\Windows\System32\RuntimeBroker.exe
780xffff94895f119080svchost.exe\Windows\System32\svchost.exe
790xffff94895f122380SearchIndexer.\Windows\System32\SearchIndexer.exe
800xffff94895f19e080Windows.WARP.J\Windows\System32\Windows.WARP.JITService.exe
810xffff94895f2020c0MicrosoftEdge.\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
820xffff94895f2074c0ApplicationFra\Windows\System32\ApplicationFrameHost.exe
830xffff94895f267440cmd.exe\Windows\System32\cmd.exe
840xffff94895f2c8080SgrmBroker.exe\Windows\System32\SgrmBroker.exe
850xffff94895f2db080SkypeBackgroun\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
860xffff94895f2dd080SkypeApp.exe\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
870xffff94895f3be480browser_broker\Windows\System32\browser_broker.exe
880xffff94895f3c5080YourPhone.exe\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhone.exe
890xffff94895f3ce400svchost.exe\Windows\System32\svchost.exe
900xffff94895f419080svchost.exe\Windows\System32\svchost.exe
910xffff94895f449080WinStore.App.e\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
920xffff94895f44b480RuntimeBroker.\Windows\System32\RuntimeBroker.exe
930xffff94895f4b1080svchost.exe\Windows\System32\svchost.exe
940xffff94895f4e5080RuntimeBroker.\Windows\System32\RuntimeBroker.exe
950xffff94895f4e9240MicrosoftEdgeC\Windows\System32\MicrosoftEdgeCP.exe
960xffff94895f571480RuntimeBroker.\Windows\System32\RuntimeBroker.exe
970xffff94895f5880c0RuntimeBroker.\Windows\System32\RuntimeBroker.exe
980xffff94895f58e080VBoxTray.exe\Windows\System32\VBoxTray.exe
990xffff94895f5c7080svchost.exe\Windows\System32\svchost.exe
1000xffff94895f603080MicrosoftEdgeS\Windows\System32\MicrosoftEdgeSH.exe
1010xffff94895f7c7080OneDrive.exe\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1020xffff94895f7c8080SecurityHealth\Windows\System32\SecurityHealthSystray.exe
1030xffff94895f7ca380SecurityHealth\Windows\System32\SecurityHealthService.exe
1040xffff94895fce60c0backgroundTask\Windows\System32\backgroundTaskHost.exe
1050xffff94895fdd2080Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
1060xffff94895ffce080MicrosoftEdgeC
1070xffff94895ffe2080Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
1080xffff94895ffef080backgroundTask\Windows\System32\backgroundTaskHost.exe
1090xffff94895fff2480conhost.exe\Windows\System32\conhost.exe
1100xffff9489600c50c0Code.exe\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
1110xffff9489600cf340eprocess_scan.\Users\User\Desktop\lpus-0.3-alpha\target\release\eprocess_scan.exe
1120xffff9489602ec080dllhost.exe\Windows\System32\dllhost.exe
1130xffff9489602f0080conhost.exe
1140xffff9489602f5080svchost.exe\Windows\System32\svchost.exe
1150xffff9489603ca080Windows.WARP.J\Windows\System32\Windows.WARP.JITService.exe
1160xffff948960acc080svchost.exe\Windows\System32\svchost.exe
1170xffff948960ad3080RuntimeBroker.\Windows\System32\RuntimeBroker.exe
1180xffff9489610de080MicrosoftEdgeC\Windows\System32\MicrosoftEdgeCP.exe