-
ETW latches the module information for executables during the trace rundown, when tracing is stopping or being flushed to disk. This means that any modules which are deleted in the middle of the trace…
-
**INFORMATION:**
- Windows Edition (Home/Pro/Enterprise): Windows 10 Enterprise LTSB N 2015 (All major updates/preboot malware protection disabled/driver verification disabled)
- Architecture (32bit/6…
-
**INFORMATION:**
- Windows Edition (Home/Pro/Enterprise): 10 Enterprise
- Architecture (32bit/64bit): 64
- Options used: All
**LOG:**
``` python
14:33:21 INFO: Python 2.7.11 (v2.7.11:6d1b6a68f775, D…
-
**INFORMATION:**
- Windows Edition (Home/Pro/Enterprise): Pro
- Architecture (32bit/64bit): 64
- Options used: Select All Used, Service Method: Disabled
**LOG:**
21:00:24 INFO: Python 2.7.11 (v2.7.1…
-
**INFORMATION:**
- Windows Edition (Home/Pro/Enterprise): Pro
- Architecture (32bit/64bit): 64 bit
- Options used:
**LOG:**
21:31:14 INFO: Python 2.7.11 (v2.7.11:6d1b6a68f775, Dec 5 2015, 20:32:19…
-
**INFORMATION:**
* Windows Edition (Home/Pro/Enterprise):
* Architecture (32bit/64bit):
* Options used:
**LOG:**
```python
17:08:07 INFO: Python 2.7.11 (v2.7.11:6d1b6a68f775, Dec 5 2015, …
-
**INFORMATION:**
* Windows Edition (Home/Pro/Enterprise): Pro
* Architecture (32bit/64bit): 64bit
* Options used: Runned the program as admin -> Service method = disable -> Mode = privacy -> All …
-
**INFORMATION:**
- Windows Edition (Home/Pro/Enterprise): Windows 10 Pro clean install to a new HDD
- Architecture (32bit/64bit): 64 bit
- Options used: All Windows 10 settings were default before run…
-
**INFORMATION:**
* Windows Edition (Home/Pro/Enterprise):
* Architecture (32bit/64bit):
* Options used:
**LOG:**
```python
09:18:25 INFO: Python 2.7.11 (v2.7.11:6d1b6a68f775, Dec 5 2015, …
-
**INFORMATION:**
* Windows Edition (Home/Pro/Enterprise):
* Architecture (32bit/64bit):
* Options used:
**LOG:**
```python
10:00:52 INFO: Python 2.7.11 (v2.7.11:6d1b6a68f775, Dec 5 2015, …