[code] HitmanPro 3.7.18.284 www.hitmanpro.com Computer name . . . . : FINALO-KOMPUTER Windows . . . . . . . : 6.1.1.7601.X64/8 User name . . . . . . : Finalo-Komputer\Finalo UAC . . . . . . . . . : Enabled License . . . . . . . : Free Scan date . . . . . . : 2017-04-28 19:02:48 Scan mode . . . . . . : Normal Scan duration . . . . : 5m 49s Disk access mode . . : Direct disk access (SRB) Cloud . . . . . . . . : Internet Reboot . . . . . . . : No Threats . . . . . . . : 0 Traces . . . . . . . : 98 Objects scanned . . . : 1 199 684 Files scanned . . . . : 14 675 Remnants scanned . . : 176 086 files / 1 008 923 keys Suspicious files ____________________________________________________________ C:\Users\Finalo\Downloads\FRST64.exe Size . . . . . . . : 2 427 392 bytes Age . . . . . . . : 0.0 days (2017-04-28 18:29:52) Entropy . . . . . : 7.6 SHA-256 . . . . . : 06B38823489CB86787DCCE305418A9470A06D812D7D3C596B3A6CFF28CF1F1D8 Needs elevation . : Yes Fuzzy . . . . . . : 24.0 Program has no publisher information but prompts the user for permission elevation. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs. Authors name is missing in version info. This is not common to most programs. Version control is missing. This file is probably created by an individual. This is not typical for most programs. Time indicates that the file appeared recently on this computer. Forensic Cluster -28.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6db -28.4s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6dc -28.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6dd -28.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6de -28.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6df -28.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e0 -28.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e1 -28.0s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e2 -27.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e4 -27.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e5 -27.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e6 -27.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e7 -27.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e8 -27.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6e9 -27.7s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6ea -27.7s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6eb -27.7s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6ec -27.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6ed -27.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6ee -27.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6ef -27.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f0 -27.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f1 -27.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f2 -27.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f3 -27.0s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f4 -25.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f6 -25.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f7 -25.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f8 -25.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6f9 -25.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6fa -25.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6fb -25.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6fc -25.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6fd -25.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a6fe -23.0s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002573.ldb -22.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002574.ldb -17.3s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a700 -5.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a702 -5.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a703 -5.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a704 -4.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a705 -4.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a706 -4.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a707 -4.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a708 -4.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a709 -4.8s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a70a -4.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a70b -4.2s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a70c -4.1s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a70d -3.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cache\f_01a70e -3.9s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_0007a9 -3.7s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_0007aa -3.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_0007ab 0.0s C:\Users\Finalo\Downloads\FRST64.exe 0.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.bleepingcomputer.com_0.localstorage 0.5s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.bleepingcomputer.com_0.localstorage-journal 3.0s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata 14.6s C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_0007ac Cookies _____________________________________________________________________ C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:1982700803.log.optimizely.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:2o7.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:50136351.log.optimizely.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:abmr.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:acxiom-online.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adaptv.advertising.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrn.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adform.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adgrx.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.avocet.io C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.businessclick.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.creative-serving.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.kiosked.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stickyadstv.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsymptotic.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechjp.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:adx.adform.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidr.io C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:bizrate.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:chango.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:connexity.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ctnsnet.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:cw.addthis.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:d.adroll.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:dotomi.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:dsp.linksynergy.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:dynamicyield.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:erne.co C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:everesttech.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:eyereturn.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:eyeviewads.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:gssprt.jp C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:gwallet.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ibillboard.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:krxd.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:legolas-media.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:lijit.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:linksynergy.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:match.adsby.bidtheatre.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:match.rundsp.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:metrigo.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:mookie1.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:mxptint.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:nexac.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:openx.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:outbrain.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel-a.sitescout.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:pool.admedo.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:pubmatic.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:simpli.fi C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:sitescout.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:stat.4u.pl C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:tapad.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:tidaltv.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:trc.taboola.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:tubemogul.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:univide.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:visualdna.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:wtp101.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com C:\Users\Finalo\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\finalo@doubleclick[2].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@adnxs[1].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@doubleclick[2].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@scorecardresearch[2].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@taboola[1].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@trc.taboola[1].txt C:\Users\Finalo\AppData\Roaming\Microsoft\Windows\Cookies\Low\finalo@trc.taboola[2].txt [/code]