cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : application/octet-stream

Prévisualisation

[code]
HitmanPro 3.7.20.286
www.hitmanpro.com

Computer name . . . . : ACER-PC
Windows . . . . . . . : 6.1.1.7601.X64/4
User name . . . . . . : acer-PC\acer
UAC . . . . . . . . . : Enabled
License . . . . . . . : Trial (31 days left)

Scan date . . . . . . : 2017-07-14 13:57:54
Scan mode . . . . . . : Normal
Scan duration . . . . : 12m 40s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : Yes

Threats . . . . . . . : 14
Traces . . . . . . . : 196

Objects scanned . . . : 1 669 558
Files scanned . . . . : 94 388
Remnants scanned . . : 458 628 files / 1 116 542 keys

Malware _____________________________________________________________________

C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.26.12\res.dll -> Deleted
Size . . . . . . . : 224 768 bytes
Age . . . . . . . : 0.1 days (2017-07-14 10:25:32)
Entropy . . . . . : 5.4
SHA-256 . . . . . : 351FD1A3404724D58BDF6C54BE0E71FA53EED856CC6D9A71FDB51264E72A2C3C
Product . . . . . :
Publisher
Description . . . :
Version
Copyright
LanguageID . . . . : 1033
> Bitdefender . . . : Adware.PayByAds.L
> Kaspersky . . . . : not-a-virus:WebToolbar.Win32.Montiera.bj
> HitmanPro . . . . : App/Generic-FH
Fuzzy . . . . . . : 108.0
Forensic Cluster
-9.2s C:\AdwCleaner\quarantine\files\zmzhcphakotxrprpzybtvmyrgnvqqiwy\
-8.9s C:\AdwCleaner\quarantine\files\zmzhcphakotxrprpzybtvmyrgnvqqiwy\log.log
-6.0s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\
-5.9s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\dlnlib.dll
-5.8s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\icudt52.dll
-5.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\icuin52.dll
-5.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\icuuc52.dll
-5.4s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\libcurl.dll
-5.0s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\libeay32.dll
-4.9s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\libEGL.dll
-4.9s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\libGLESv2.dll
-4.8s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\libtorrent.dll
-4.8s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Core.dll
-4.7s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Gui.dll
-4.6s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Multimedia.dll
-4.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5MultimediaWidgets.dll
-4.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Network.dll
-4.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5OpenGL.dll
-4.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Positioning.dll
-4.4s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5PrintSupport.dll
-4.4s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Qml.dll
-4.3s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Quick.dll
-4.3s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Sensors.dll
-4.2s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Sql.dll
-4.2s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5V8.dll
-4.1s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5WebKit.dll
-3.8s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5WebKitWidgets.dll
-3.7s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\Qt5Widgets.dll
-3.7s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\ssleay32.dll
-3.6s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\zlib1.dll
-3.6s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\imageformats\
-3.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\imageformats\qgif.dll
-3.5s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\imageformats\qico.dll
-3.4s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\imageformats\qjpeg.dll
-3.3s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\platforms\
-3.3s C:\AdwCleaner\quarantine\files\dpupjhsxqcajppnpiiwjwoleaezlkbbz\platforms\qwindows.dll
-0.8s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\app.ini
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\rvt.js
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\updt.js
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\ieds.xml
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\rvt.js
-0.7s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\serp.js
-0.6s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.12.4\sqlite.dll
-0.6s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\
-0.6s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\app.ini
-0.6s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\ieds.xml
-0.6s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\rvt.js
-0.5s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\serp.js
-0.5s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.15.4\sqlite.dll
-0.5s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\
-0.5s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\app.ini
-0.5s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\ieds.xml
-0.4s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\rvt.js
-0.4s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\serp.js
-0.3s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.18.5\sqlite.dll
-0.2s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.19.2\
-0.2s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.19.2\app.ini
-0.2s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.19.2\ieds.xml
-0.1s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.19.2\serp.js
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.24.4\
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.24.4\app.ini
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.19.2\downloads\
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.24.4\downloads\
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.26.12\
-0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.26.12\app.ini
0.0s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.26.12\res.dll
0.1s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.3.26.12\downloads\
0.1s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.4.2.5\
0.1s C:\AdwCleaner\quarantine\files\odkybguumlvjxxkwkflynjuenvpnbbmi\Yahoo! Search\1.4.2.5\app.ini
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\2001C72D-E86D-4E1F-820B-CD48E0877778\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\2001C72D-E86D-4E1F-820B-CD48E0877778\0.1.15\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\2001C72D-E86D-4E1F-820B-CD48E0877778\0.1.17\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\4436F63B-6948-4F6D-9190-B850D8FC2B3F\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\2001C72D-E86D-4E1F-820B-CD48E0877778\0.2.11\
1.9s C:\AdwCleaner\quarantine\files\fpytnnmwkqrulqwghzeolzweeljkvicw\Master\Updater\4436F63B-6948-4F6D-9190-B850D8FC2B3F\1.6.14\
4.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\
5.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\
5.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\AndroidAssistHelper_KingRoot.exe.log.xml
5.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\AndroidDevice_AndroidServer.exe.log.xml
5.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\AndroidDevice_KingRoot.exe.log.xml
5.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\AndroidServer.ini
5.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\androidserverupdate.log.xml
5.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\daemon.log.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\DeviceDesc.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\driverinstall.log.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\IPCClient.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\LocalDeviceCache.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\main.log.xml
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\MDBFeature.ini
5.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\qqapp_update.xml
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\qqdownload.xml
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\sdkclient_KingRoot.exe.log.xml
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\slist.ini
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\tadinstaller.log.xml
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\UnrecognizedDevice.xml
5.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\UnReDevice.xml
5.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\
5.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AdbCmdServer.dll
5.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AdbWinApi.dll
5.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AdbWinUsbApi.dll
5.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\am5tools.tools
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\am5tools2.tools
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AndroidDaemon.exe
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AndroidDevice.dll
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AndroidServer.exe
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AndroidServerUp.exe
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\arkFS.dll
5.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\arkGraphic.dll
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\arkImage.dll
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\arkIOStub.dll
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\AsyncTask.dll
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\atl100.dll
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\bugreport.exe
5.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Common.dll
5.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\component
5.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\ConnectManager.dll
5.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\ConnectUI.dll
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Daemon.dll
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DaemonProxy.dll
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DebugModeBrand.brand
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DebugModeConfigV2.xml
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DeviceDesc.xml
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DownloadMgr.dll
5.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DriverTools.exe
5.9s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\DriverToolsX64.exe
5.9s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\GF.dll
5.9s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\jwlxtzqn.xml
5.9s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\jwlxtzqnui.xml
5.9s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\libexpatw.dll
6.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\libimagequant.dll
6.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\libjpegturbo.dll
6.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\libpng.dll
6.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\libtcmalloc.dll
6.0s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Log4cplus.dll
6.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\lua.dll
6.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\main.properties
6.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\maMainFrame.rdb
6.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\maMainFrame.tpc
6.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\mdb.exe
6.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\msvcp100.dll
6.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\msvcr100.dll
6.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\NetHub.dll
6.2s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\NetworkMgr.dll
6.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\QQPMIpc.dll
6.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\RubikEngine.dll
6.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\SdkClient.dll
6.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\sqlite.dll
6.3s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\tadb.exe
6.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\TADInstaller.dll
6.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\tinyxml.dll
6.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\UnReDevice.xml
6.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\xGraphic32.dll
6.4s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\zlib.dll
6.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Bin\
6.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Bin\box.tools
6.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Bin\box2.tools
6.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Bin\mtools.tools
6.5s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\1.0.0.509\Bin\mtools2.tools
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\DeviceInfo\
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\AndroidServer\DeviceInfo\USB_VID_271D&PID_3C02_SGSSQSVWTGEQFISC.model
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload.zip
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\
6.6s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\dlcore.dll
6.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\DownloadProxyPS.dll
6.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\extract.dll
6.7s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\Tencentdl.exe
6.8s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\Components\QQDownload\tnproxy.dll
7.1s C:\AdwCleaner\quarantine\files\kietfbdqnnfymksdktnhougswqnrwhtv\QQPhoneManager\DeviceInfo\
8.1s C:\AdwCleaner\quarantine\files\adwduwlaydbcrvqdfdpxzkuufpcxngyz\
8.1s C:\AdwCleaner\quarantine\files\adwduwlaydbcrvqdfdpxzkuufpcxngyz\APN-Stub\
8.5s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\
8.6s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\
8.6s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\Shared\CRX\
8.6s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\Shared\
8.6s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\Shared\CRX\aaaaboojhahjgdjeknnemneiajjhhddi.crx
8.6s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\Shared\CRX\aaaaccjgkjbhfmpcfnbhihbaojflfaji.crx
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Config\
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Config\Config.31.26.0.0-15.xml
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Config\Config.31.28.0.0-16.xml
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Response\
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Response\Response.31.28.0.0-27.xml
8.7s C:\AdwCleaner\quarantine\files\dddckqzxerknqnguppeugqbbcgptzamd\Toolbar\SPC-C2-3\Updater\Response\Response.31.28.0.0-28.xml
9.0s C:\AdwCleaner\quarantine\files\fnqzznytiaezikpvmtfmuqgzkpysoaej\
9.0s C:\AdwCleaner\quarantine\files\fnqzznytiaezikpvmtfmuqgzkpysoaej\Run MaxiGet Software Manager.lnk
9.1s C:\AdwCleaner\quarantine\files\fnqzznytiaezikpvmtfmuqgzkpysoaej\Unisntall MaxiGet Software Manager.lnk
9.4s C:\AdwCleaner\quarantine\files\ncjjcaiyfzkeavkrmwdpzetnjjqeodtf\
9.8s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\
9.8s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\icudt52.dll
10.3s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\icuin52.dll
10.3s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\icuuc52.dll
10.4s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\libEGL.dll
10.5s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\libGLESv2.dll
10.5s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\MaxiGet Software Manager.exe
10.5s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Core.dll
10.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Gui.dll
10.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Multimedia.dll
10.7s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5MultimediaWidgets.dll
10.8s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Network.dll
11.0s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5OpenGL.dll
11.1s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Positioning.dll
11.3s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5PrintSupport.dll
11.3s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Qml.dll
11.5s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Quick.dll
11.7s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Sensors.dll
11.9s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Sql.dll
11.9s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5V8.dll
12.0s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5WebKit.dll
12.8s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5WebKitWidgets.dll
15.1s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\Qt5Widgets.dll
16.5s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\uninsmsm.bat
16.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\imageformats\
16.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\imageformats\qgif.dll
16.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\imageformats\qico.dll
16.6s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\imageformats\qjpeg.dll
16.7s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\platforms\
16.7s C:\AdwCleaner\quarantine\files\gvehpvxprxjnxqcjojwrdxfxaulxxqcw\platforms\qwindows.dll
18.0s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\
18.0s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\updateWebConnect.InstallState
18.1s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\WebConnect.ico
18.1s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\
18.2s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\BrowserAdapter.7z
18.2s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\eula.txt
18.2s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\search-simple.xml
18.2s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\utilWebConnect.InstallState
18.3s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\WebConnect.BOAS.zip
18.3s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\WebConnect.expext.zip
18.3s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\webconnect.ofsvc.zip
18.4s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\WebConnect.PurBrowse.zip
18.4s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\plugins\
18.4s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\bin\TEMP\
18.4s C:\AdwCleaner\quarantine\files\xfeghkntjkvxoygzwfmzahpnysaszmso\update\
18.6s C:\AdwCleaner\quarantine\files\jolswjbrrcnatynubmjotqmaspaenmag.back
18.8s C:\Users\acer\AppData\Local\Temp\DeleteOnReboot.bat
21.6s C:\AdwCleaner\quarantine\registry\reg_tovhgnqopxskmhmpmdsdphodlizlccwr.reg
25.4s C:\AdwCleaner\AdwCleaner[C0].txt

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.4.9_42923.exe -> Quarantined
Size . . . . . . . : 2 145 472 bytes
Age . . . . . . . : 234.7 days (2016-11-21 20:19:38)
Entropy . . . . . : 8.0
SHA-256 . . . . . : DA92E6E9286637FFF00CD6DE5A3DB66D998ACA006491CF18710E3435CEA9778C
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.4.9.42923
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.4.9_42973.exe -> Quarantined
Size . . . . . . . : 2 145 984 bytes
Age . . . . . . . : 229.0 days (2016-11-27 13:44:33)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 40575B3CA4C3E542AF0414312EC473ED9D38C295877D2B6112EF627CF2975E04
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.4.9.42973
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.4.9_43085.exe -> Quarantined
Size . . . . . . . : 1 979 072 bytes
Age . . . . . . . : 205.0 days (2016-12-21 13:16:04)
Entropy . . . . . : 8.0
SHA-256 . . . . . : BE1021B9D5EA4C4180E752F21191BD21010298BB2545F3D725E71E913DB14808
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.4.9.43085
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.4.9_43295.exe -> Quarantined
Size . . . . . . . : 2 143 936 bytes
Age . . . . . . . : 149.7 days (2017-02-14 21:22:16)
Entropy . . . . . : 8.0
SHA-256 . . . . . : B80EFB7F8A27C16C014A4EFA41AE362E4B26E508C57F09F294FD4E0A4C7D740D
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.4.9.43295
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.4.9_43388.exe -> Quarantined
Size . . . . . . . : 2 147 520 bytes
Age . . . . . . . : 113.6 days (2017-03-22 23:36:42)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 89722873520E16F57A6381C5AD01498F19FB35B1C89BC7DA9874D381C33AB62B
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.4.9.43388
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.5.0_43580.exe -> Quarantined
Size . . . . . . . : 2 144 448 bytes
Age . . . . . . . : 84.5 days (2017-04-21 02:17:54)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 2BDD1B4013349975B1CF4FBC764E4D5ED7C01B39D9B0D5A20BE0A742634AE1D3
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.5.0.43580
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.5.0_43804.exe -> Quarantined
Size . . . . . . . : 1 980 608 bytes
Age . . . . . . . : 49.5 days (2017-05-26 00:53:11)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 1BBC80380F6A0BA78F13EFD6EEB99DA53ABC543B384F9FEBAFA9D40DD12A9EE5
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.5.0.43804
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 101.0

C:\Users\acer\AppData\Roaming\uTorrent\updates\3.5.0_43916.exe -> Quarantined
Size . . . . . . . : 2 146 496 bytes
Age . . . . . . . : 10.8 days (2017-07-03 19:07:35)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 238477D0EAE8335116894BBB7B0FB258B9010689624B9851EB6A925E6FD79561
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.5.0.43916
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
LanguageID . . . . : 1033
Authenticode . . . : Valid
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 102.0
Forensic Cluster
0.0s C:\Users\acer\AppData\Roaming\uTorrent\updates\3.5.0_43916.exe
3.5s C:\Users\acer\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C46E7B0F942663A1EDC8D9D6D7869173_6043FC604A395E1485AF7AC16D16B7CE
3.6s C:\Users\acer\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C46E7B0F942663A1EDC8D9D6D7869173_6043FC604A395E1485AF7AC16D16B7CE
6.2s C:\Users\acer\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EA618097E393409AFA316F0F87E2C202_46519A157B2BAB4EE4C3983F3D40BE84
6.2s C:\Users\acer\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EA618097E393409AFA316F0F87E2C202_46519A157B2BAB4EE4C3983F3D40BE84

C:\Users\acer\AppData\Roaming\uTorrent\uTorrent.exe -> Quarantined
Size . . . . . . . : 2 146 496 bytes
Age . . . . . . . : 748.5 days (2015-06-27 01:28:04)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 238477D0EAE8335116894BBB7B0FB258B9010689624B9851EB6A925E6FD79561
Product . . . . . : µTorrent
Publisher . . . . : BitTorrent Inc.
Description . . . : µTorrent
Version . . . . . : 3.5.0.43916
Copyright . . . . : ©2016 BitTorrent, Inc. All Rights Reserved.
RSA Key Size . . . : 2048
Desktop . . . . . : Default
Parent Name . . . : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
LanguageID . . . . : 1033
Authenticode . . . : Valid
Running processes : 6804
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 108.0
Startup
HKU\S-1-5-21-1107116363-1141585853-316225623-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\uTorrent
References
C:\Users\acer\Desktop\µTorrent.lnk
HKU\S-1-5-21-1107116363-1141585853-316225623-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache\C:\Users\acer\AppData\Roaming\uTorrent\uTorrent.exe
Network Ports
0.0.0.0:28739
127.0.0.1:10000
192.168.1.250:57764 54.81.23.199:9054
192.168.1.250:58585 51.255.123.170:26269
192.168.1.250:58586 79.93.18.1:1
192.168.1.250:58587 197.200.43.138:58529
192.168.1.250:58589 78.225.26.5:27152
192.168.1.250:58590 160.120.14.41:20253
192.168.1.250:58595 78.248.129.237:51559
192.168.1.250:58597 104.249.201.225:46176
192.168.1.250:58598 89.211.255.195:13032
192.168.1.250:58599 109.19.9.32:33835
192.168.1.250:58600 88.189.61.224:22519
192.168.1.250:58602 2.6.146.219:45682
192.168.1.250:58603 86.192.64.168:43814
192.168.1.250:58605 83.153.105.96:37249
192.168.1.250:58606 81.53.51.61:23878
192.168.1.250:58609 82.237.96.4:60522
192.168.1.250:58610 185.41.154.142:51413
192.168.1.250:58613 174.94.90.52:28605
192.168.1.250:58616 82.224.176.6:53676
192.168.1.250:58617 78.222.234.193:30213
192.168.1.250:58622 88.175.170.84:59528

C:\Users\acer\Downloads\Programs\expressvpn.exe -> Quarantined
Size . . . . . . . : 3 434 120 bytes
Age . . . . . . . : 91.0 days (2017-04-14 14:00:54)
Entropy . . . . . : 8.0
SHA-256 . . . . . : F44146A1DEB380B7C175EE2E8E2929977E6F21F807F7AA2384EF52BD0DD96A22
Product . . . . . : Honegib
Publisher . . . . : Fekic
Description . . . : Honegib Setup
Version . . . . . : 3.0.3.4
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:Downloader.Win32.InstallMonster.johz
Fuzzy . . . . . . : 101.0

C:\Users\acer\Downloads\rkill-unsigned.exe -> Quarantined
Size . . . . . . . : 2 107 392 bytes
Age . . . . . . . : 0.1 days (2017-07-14 11:10:16)
Entropy . . . . . : 6.4
SHA-256 . . . . . : 0BBA9176C9B6844BCA861FBC8F443B9C2874E5595ED0A4D21B8A758720AD8994
Product . . . . . : Rkill
Publisher . . . . : Bleeping Computer, LLC
Description . . . : Terminates malware processes so that you can run your normal security programs.
Version . . . . . : 2.9.0BETA
Copyright . . . . : © BleepingComputer.com. All rights reserved.
LanguageID . . . . : 1033
> Kaspersky . . . . : Trojan.Win32.Droma.abdb
Fuzzy . . . . . . : 102.0
Forensic Cluster
-76.5s C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.wid
-76.5s C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.ci
-75.1s C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.dir
-74.6s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Pending Pings\
-74.5s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Crash Reports\InstallTime20170628075643
-72.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\
-72.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\
-72.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\doomed\
-68.1s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\extensions.ini
-63.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\4F296E7CC880A3F7B4A17E42DCF1B45CB1AECD77
-63.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D2461ADF13D1042D3797F537CED066664FFB2F93
-63.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\02D47E7508019A35DC6BF53CBC9A7D6A6E5C02C3
-63.1s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\addons.json
-62.8s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\serviceworker.txt
-62.5s C:\Users\acer\AppData\LocalLow\Mozilla\
-61.2s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\pluginreg.dat
-60.1s C:\Users\acer\AppData\Local\Temp\mozilla-temp-files\
-55.6s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\containers.json
-54.7s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\storage.sqlite
-54.2s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\storage\permanent\chrome\.metadata-v2
-54.2s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\storage\permanent\moz-safe-about+home\.metadata-v2
-54.2s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\search.json.mozlz4
-50.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C27D7A62FCB3822B15FE7A889EAC6EBCB8E81A80
-50.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\543B6395DE432E062500EEA0329C86FDC2B6BABD
-49.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6DE8A9928BAE46333791BE8A15A33466854EB291
-49.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2A374CC1022888D4A8D93772FDF376CD423925F5
-49.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E16389CB3F970FCCE1D5F1A99404A06FD3F48933
-49.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\52E0C55C8A4F098D9F504A8604247EB6667AD51E
-49.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B73E4A4438B9B71F020E7D4B54AE283770E47CA7
-49.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EE3D81F7F346489B7FC1951D5DB0AAE99C91EB35
-49.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\AF615B731C06BF555C223D188B959ECF32B39A9B
-49.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EBE9C989FB5AA51B6721EE7A4F56368DCEBA378A
-49.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B7095B7A2AFA8317CFC2F83CAC277460F5BEB426
-48.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FBA13F2F8A78615B117C12ED0C388D15E138AD56
-48.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CFEA5D03ACC092BD32EA41F355C9025B159A6556
-48.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E7FFE968D1884AB7BEF17313C0A8BD064AD72858
-47.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F49E5C8AED48910846DB42FABD1B9A76A34C617E
-47.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D4091ADAAF53084BD05DC189055BC61ED7D0E9D8
-46.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\19A376977C43B49BD71B5CBC0F4718A633DBD054
-46.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9E681B296136C0FDFF295C7CC824588509FDC9DD
-46.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BBC81B3517E1BF44676AC62F073EFEAA2EAAF021
-46.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E68544FD43EDA6D00415962609D3697C32575FC0
-46.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3B6400F3A48CDA62588FBAF085A050B6B9D3756B
-46.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DC0FBE0AD5F302D17273632E22C21303B07EE552
-46.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\37AF9F4F967A456A7504E4CF63680F8807C84123
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9E621DE58C62A8A0ECBBD0612E53DE88A4B3F2CA
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\922AC81C01F5FEB78B83614808F579505A94206C
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\ED035435D278D09F80A9F39A670606E52A26648E
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D4FEF0C287E71A72B1E3ABBC12CF8F40DD4DB2F0
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FA304EE5E3082D1851B754A35F742119C4DAEFF1
-46.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\356082225F0E3CF2AD7C40100CCFCE39E901D51B
-46.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6DB4625A7D48666BBAB373873B1CC03D657318F7
-46.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\26C75EF23B717653820CD1D12AF93DC50F17FA89
-46.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\56E820B08ECCA1073A8F12A5FBB415566565CCB5
-46.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\7B7512F31E0510010CE1D15448D1C5D357835785
-46.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3A577F00720E4F033F96CB95E42D8F72CBC3CDDB
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E9D60671767AC54A000D105306971FFC96813F8D
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DDC2E5C83D19AA2F896F5854A39D6E9424E154EE
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E2104DB0802895BF4E06F15AB5F149DEA45A806C
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E1A1C78FA483E878BE4F143A88C1FF39E2E1DDEF
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CC7ABA0871AF9D45CF5E811644AF0273F1EF5102
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F28D3635D16ABA60E4913B937FCC9DA1FCFF44DE
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\929BCF811537CE5A1B05BC367E7D5FCD9D1512C2
-46.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F598A1AB5E3C802D779D79BB38D71EF8BFD7869A
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B4BF83D7963FE0315F9D15BB80E7ABD85C4195DF
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\40823EBDE98D6C61CFCED3211ECB380E6D01A3B8
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BCEF70AE6F22DD6004931F9E308DDAD78F6E1063
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6A24D459A3925A899572FC31B740A0053F1777C6
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5FBC909A613CBB5F773FB5543291398963C0C318
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\20DF3C1DD88BAC71D42FD1BF39D2398F6760AD98
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\1405CBAF3435DDA20AB476774F06CA2C0A81C9F2
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\4828651E11846069ACA91D91D15D6E4172A0B4C1
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D9768FF926D651CBAC7018435CAA4356DD2CF640
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F23295E0F3A7CAAE047FF81E2C5E9024E517F5D3
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\531B336B6F21229034205A4B96DB8EBABD7C976F
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C59D4DE66D143DFA18F045ED134A74967745AEE2
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C8097BDC2AE29F1D7A2DAE3D8D2F88A45CDBE233
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\16263C5780AD5A63D2DDF0678366AD1916A2C171
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\7CA4A2D644924122AF20170B90BC84AC628B7999
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\405F16DBA1A7D042C22D2B1E34A4D11D4D500509
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E54ABFF5CC7914CBB9551097A54045888606FEC5
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B54A1F2F893DFE93C5A6A349C254239A20D0CEA2
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\18AFDB2CE39C5ED1ABC107E181D6F5A643555164
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\66C88F4C280F70264AC6DA54ACBD56F1902B432B
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9B7910D0E30AF87213C06884DB047D5CC66C7863
-46.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\23431444D1DF7889C2A1E71ED5A3FA0DEED0267A
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\76231D772505CB2229A705148547CF94D7C13AB1
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6F7F726FD795EC6DD84C96011F8AF8252B9C8933
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EBA826B68A791A059EA8ED681A40EBAA3C852F72
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FBAB7C3F0BEEF480C88B4EE11D2DCAE261B85758
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\581DA0E6A720B5115A5820EA966E099F6AD3DB76
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\491F7FB485C30BAA342486F1F8ABB0E0FB9B6935
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\341ADAF354E8E24B0B7D60A622D0A87DD91B6DAF
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\A74D0E967A06D50E5A641546DF8D89D4CDD68178
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E2E0095DB90E27C0E0C9DF79FB73BD4F2C3939BA
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\05BB2CD94E9F21987FC952530A95B75C58CDC317
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C30E11F5800816552AF7BB12C9D3BB31FBDDB9CB
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FD909E2066BC51E8213D5F9CCD8ACBDF6D2F9172
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D43C02B35A99348B9D3C3D2126AC4E98C5DD4A1E
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\8FCBDC92BBA8824597F701082C235C03E1956137
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\0D442055B91386C9703C914FF8055E8BC13E1772
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\57BFD4C8E54CDB9BAF658E7C5DE4FF080CAFBCA0
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F9251E5AA9A08366E1D3BC020D35CA576BDFFA38
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B139346BF862AB9CA1A04E00ECCA639FC75FF435
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F557EDCDE3BBF556DCFFF11F1D550B5050727CC5
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DD31B2021EA650223BD6311C9C4718AC2C5825BF
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3DBD832C9C3FA5AF3821B9998C6CCEFCAF7A2053
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\AC753828F772FB59273346BAE76F608841FA0B26
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\254F5F894C29301753AFFBACE49A5429F042E248
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D12C6701563C65D178526DEB1654D1C72D51A20B
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6CA3411B14275389B9B79382987FA6CFB77A0D94
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D625C438F8CD21992EBF6369E266A30EE4619800
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\A24DE52AA7369D28989A1FB278AF2892E6923AFF
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\977C5945121F7F7365F5C2F19F99339A8CEC4244
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FC974C66E9F41DC6D4868946A851604B47E1CA3F
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DD4EBC47E4465F91333BAECBE901F6F7DD690E2F
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\77752B1E10940471BF32FF815B9C156643EE7A52
-46.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DA3B1F9A09481607CB0FFE408C5ED8EB177A0CC0
-45.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\4FA80B5817CB532A5960EB751242CC3619997AB0
-45.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BAE90F95C729C3D22BC84124357F9F17B7FA99C1
-45.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F6803F8DF96A9CBDCEEDA9BA1136A2500DA1DBB8
-45.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\699EDD54B3FBEE381E734277FDB33FF2AA1D761E
-44.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9939D298D0F26F4BF7947C59B2F00A4A3C5749C3
-44.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\65F451B3B8DBCC3F2620293E8C9763480746DDE3
-41.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BD48EC2C4AFEFC49E7D1259750E4DAD32B2202D8
-39.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\0AE9A67038A3EB25F9958EE781A26DAC068194F6
-39.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\196D8C899806ACF467AC3C3A435995AD229C9E31
-39.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CBC671759CD58906CFF638DC443049A180F9E7CF
-37.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\75B5AB9AC845255275E6C73715CF75DB63F94CBF
-36.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\81B05C3B68C1D74A7F30F7FD306A84DA26119B0F
-36.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\869D722841F38D7748ADA7A4A1D99580948E159B
-36.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\23CC667A56309619CF4F2702CF9EBA423600077B
-36.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5CC32C877F0EDC9B927DDB52AFBC7C48710BB155
-36.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\66D2BD269A8566AC2953C6081AAD5AD455985009
-36.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\32A8D9001449DB832D187EDD4A13A31573E1D840
-36.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\54A64E0CB1508F7DB4B2580FB8955D442F9049C5
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F6CC5745D096B30220CF3D68CA1FBD044E8A902F
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\182ABB341D7E259AB2DE4AB1F7E3120BEA27F382
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D012B01EF531E718C771DAC040F05C0A21530D4D
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\58BFE77FA719F36CE48D4A317C753C845C38FE29
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DCE75CA807EB92CD77D11305890F8CC72C9006E1
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E0D705EC81C925E0077CAFA8B01689E3D17E4D14
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DFC6168944EFBC08737DA9FD0973546574A85939
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\FA7F3EA23254F9B3B592744831A53FD04085C298
-36.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3A0B5DB873FF6FB94853CA97448BFCF17B6038B1
-36.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\A3AB9E23329D7FCDA9D119325ED5B17B078F7EDC
-33.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5289F8C4AB5388DE2FCD562674EDF6674FB6DD30
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5F35E8FED8AAD91619339F1D1F3DE416EAAE4D64
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3FA53800A529951BA04071467304460CBCF1CA43
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C21DAF9355A33625720A60038E2BCCB445024C1B
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EE69309655D576DF228FB8386943820D8F39C3FA
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\7A69E85B27462E00167652283663BB314C292E89
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C12E1A854514283BD3CAA174D4FAD09DF9D60609
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\22596FC9A8A3D2A52CD3A839F5E6C59304668BF1
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\1CDA466B998E22082B4E3320C3DEDF301CDA0CF7
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C51C203D37AD17D33F8323026DA8C69807ECBB88
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\824E6FB5AD0258477D8E77C007DD9A46A7B10E61
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\72D550FB2005A93EF8E71023C470E4D80660C579
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B597DA2E9B2D181DF7F2FB8D2BAEC133C8DBA0A3
-25.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CA302F67F21FC2283B285F13F48B45CF1FFE8A69
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\054DD336EA48999517C34FEF55BFC35EDAB1FBA5
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F0ABEFCA1D8EBEDF0BFB7603DB9449515C6683ED
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E0CDADC57F1AE6D2F57FB334E7EFC791005001FB
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9D11CA77D2F2864B7A3536682C80773C4B6EB675
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6EE82A055C49E0DA503475CC4ECCCBF18B6531D8
-25.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\233C2BBA31304587B440E2C790718EAFD424D89D
-25.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\110867E5B21D25313D94CE71773F9AB503152243
-25.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C1E3A953A5F505B7BB12C96692F92F19A44913C1
-25.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\218735E8C45D9C60A57376FA0CF27459DA0AD557
-25.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6F1FC0B439CD82ECE281A60F7927EB116F5E5108
-25.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\0E818FF93D1F95FF3B8CA3A7DA4D32C1CE477790
-25.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\79E843B1611DEFA950EC391BDBC81A1D4EBB3E62
-25.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\91D73D06BCE33DEF256B57B255DB66F7E2C9338D
-22.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6535444CAD1A6481CE4EE78F660416E1EF610287
-21.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\1655FD757A7BCAE43491EA39798B94AEBBB13A1D
-21.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\7C362F91A20932914F7E4F9DBE8B6BBC3D2DA1F3
-21.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\7DC13D486F803ECB7592BF7A7F00C61298C77571
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BF1819A30F9A8F94A03C8B88ED60250802196D44
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EDC04A41C2E411DCA7F6875BA9ADD949F80C90B3
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\00EF6A7BCD117C10343BB183A47CF53FE6F188E8
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5E4954707B44E5A4B4ACF5F22B52219A1DCA477F
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D86823F2D9DCD68E82840CBD8F8C5920D55F87F1
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B274C211E8F54CA5CC925DE48D3317602A7C25EA
-20.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BA3DF927F0B12A1E57C7960E80F68639DA03C2E4
-17.8s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\blocklist.xml
-16.5s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\kinto.sqlite
-15.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\88D050EA0225291BE4F97564467065ECFA52FF02
-15.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\88A650379A6C40D79F828E14850AFB7C4CE5C569
-14.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2296D6074F1603737F410464C3FBB589B924BE96
-14.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\94C979B4A9FFC67E89C16C8FB679093840A0AB25
-14.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\565389DB312563E6C4BE66D861E6C0B3CA1756FB
-14.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\402195AE465E01640856CAA41B6415B3D6646BEB
-14.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\638C2014B629FBCAAC42EDF388ECA7CFC7DF8680
-13.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\0C9EDA557001CC75CF75B75B38FB3D432636836C
-13.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D820157DC05F558302E1E05DA7DECCD7EE0F8E7B
-13.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2937E96BAB5F16953188CE0A7199A79CE97F28EB
-13.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D25AF9E0B1ECCEA37130CC4D545A6C2D8971704A
-13.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2748F4ECFAFBCC4004DDC029A06762553015B0A8
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\DA5E871F5700E0C578906C4360685E9475A4DA8B
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EEF2A383A74D886882954D4DDBDA742C1CD31660
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\60BB0AC5F07BBDB3415D3556B8C8544BCF7A3BCA
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\8530BC3C269FBA8461CF38D474101CAD4AA684DB
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\704C05B4325179813583BD3036FA0B96FB53AA18
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\54EA912ADB9EE11A1C752C5BE4F27402E6270ACB
-13.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B579E763C0AD71ECF8D53A9052720793E1788684
-12.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\55E36DEA2577DB5329B41B2863F82A3A800CF01C
-12.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5F97AF059D8A1DD273BEFE1D8E25D46F07888793
-10.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CAA48CB805182FC799E0DD18C476825B6EE8F802
-10.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\F6F671554F00A906E617FA2CA26DB1335E707268
-10.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\8BDF95B096B49ECCEBC81239BE5D7E46F4D11E85
-10.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\270AB8A398C3B2360CB20605D7D47CBAABDEFF25
-9.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\4F6F8981C21A35EACAC507E5AC8257FE1A10DD47
-9.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BB95D0607349D05725D5FE01D4FB300E319072AD
-9.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\474B042F28F7096D3A3E1782368560B58A64CE57
-8.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\48E589A2DAF0657175A65E7FFB52032D2E9B2712
-8.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\BBC23C7D655AFE2F70FF531955A2C22CA626FDCF
-8.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\954C98C11E48D43666F73CB787E74A9975B21AEB
-8.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\1C58BCC50FD90DA569C25964A2E2FCBF9F9461AA
-8.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2865922086582F49705AF48725BEB337EDA283B8
-8.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5AB8D48541F6E0DDB6E379A7122895242BB8C70F
-8.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\17F38C238226256C14D1B83AF98C05D36FEE7910
-8.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D8F774457F9A4104D8B7A1489A661D999E0DD219
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C62ECD02A3AC968BBB6252C7F7F0002640C030DF
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\5429450E2E294B8E09159087D4A501B12FFEC93E
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B565DD470948D8A7CBFC549556B2A5F53B56017F
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\B7BC3670AEC7312C971A85A11590B43FE7A366C3
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\58F56FB5955B43DE2363AC28DEE7726F423E2DAD
-8.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\2B662789DFDD9C1308FF8ECD48E05F393053163C
-8.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\C5BD520491C5224BEE6D3BCEF27F027750E0CCBE
-8.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9CF1D10C9DB3D38E422C0342388E5C0F05B2B05B
-8.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\26C21974F29F40B83B9DBE2E4A737C1E6E2663E5
-8.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\8EEF12EBEE7977EBAE328A9F312AFDFA12DD2535
-8.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\3BE647319B14BE1D0CFF541BAE80244A8C031325
-5.8s C:\Users\acer\Downloads\rkill-unsigned.exe
-5.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E219E03DDF0C1B4D8E1A10B2F8ADF3684E511790
-5.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\CB7F80280433DB6C2AB7523118AE32E9B0145B89
-3.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\EB5E7F0BEAC96961290E389C0A1ABFBF9F8EE9D0
-0.7s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\revocations.txt
0.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\thumbnails\
0.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\thumbnails\136d78b976a264ffdba94de1af69c244.png
0.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\69073E96BD11F70AC8DC7B9597D4F0B35B17CDC6
3.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\69372A34795F94D265A49F8CF70C38C34BE4E688
3.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\E682C2EB96F5202166AC9297C3E85E06EDB40E4C
3.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\02ABD00ED4A4FD6AE4F52DE4382F135A72A2131C
3.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\6549F07F8166202CE307AB72D0AFD303FCD25C50
5.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\698DBF9E91146679CAFA5B7661AA86004EE8397A
5.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\8B89A2EE5806F74616B2B2CF4044EC5947A6A27B
6.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\29F68B7BF650D5F8B01D50A3B8BA7457BA01E0FF
6.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\0FE0F6CF54AC6E74C7AED7C8077C0777591CB727
6.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\D37CEF43C660D03DC1CB6429B11F2FD457FE3010
7.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9D583DD5EBC7A2DD954F1EC3D377F78DD56656CD
7.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\14926D90946B0F4BA2FCA38D75A5FBA83EF29AD0
7.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\A7649C427462613B541219D7D475E6230AF5C314
7.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\9AEBB2E924A69EC4D8AE48DDAE44C680CC76BF8D
8.2s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\26926D1CDB0298F2781D6FAD532518F7C8B787DA
8.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\cache2\entries\AF9ECD1102CF6928AEF6788488D5C54F77118AE1

C:\Users\acer\Downloads\rkill-unsigned64.exe -> Quarantined
Size . . . . . . . : 1 151 488 bytes
Age . . . . . . . : 0.1 days (2017-07-14 11:10:42)
Entropy . . . . . : 6.3
SHA-256 . . . . . : C2D72C4B1D504F687B9639B7EE29209B398867B73C44D2A3D4709F51C80CB32E
Product . . . . . : Rkill
Publisher . . . . : Bleeping Computer, LLC
Description . . . : Terminates malware processes so that you can run your normal security programs.
Version . . . . . : 2.9.0BETA
Copyright . . . . : © BleepingComputer.com. All rights reserved.
LanguageID . . . . : 1033
> Kaspersky . . . . : Trojan.Win32.Droma.abda
Fuzzy . . . . . . : 102.0
Forensic Cluster
0.0s C:\Users\acer\Downloads\rkill-unsigned64.exe
0.9s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\sessionstore-backups\previous.js
1.6s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\AlternateServices.txt
1.9s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\SecurityPreloadState.txt
2.1s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\datareporting\archived\2017-07\1500027044732.a73a2050-71fc-4d02-897e-c785d5b4cbde.main.jsonlz4
2.1s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\saved-telemetry-pings\a73a2050-71fc-4d02-897e-c785d5b4cbde
19.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\startupCache\
27.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\frequencyCap.json
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\base-track-digest256.pset
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\base-track-digest256.sbstore
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-badbinurl-shavar.cache
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-badbinurl-shavar.pset
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-badbinurl-shavar.sbstore
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-downloadwhite-digest256.cache
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-downloadwhite-digest256.pset
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-downloadwhite-digest256.sbstore
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-malware-shavar.cache
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-malware-shavar.pset
27.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-malware-shavar.sbstore
28.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-phish-shavar.cache
28.0s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-phish-shavar.pset
28.1s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-phish-shavar.sbstore
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-unwanted-shavar.cache
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-unwanted-shavar.pset
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\goog-unwanted-shavar.sbstore
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozplugin-block-digest256.pset
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozplugin-block-digest256.sbstore
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-track-digest256.cache
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-track-digest256.pset
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-track-digest256.sbstore
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-trackwhite-digest256.cache
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-trackwhite-digest256.pset
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\mozstd-trackwhite-digest256.sbstore
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-block-simple.cache
28.3s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-block-simple.pset
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flash-simple.pset
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flashallow-simple.pset
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flashsubdoc-simple.pset
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-forbid-simple.cache
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-forbid-simple.pset
28.4s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-forbid-simple.sbstore
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-malware-simple.cache
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-malware-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-phish-simple.cache
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-phish-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-track-simple.cache
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-track-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-trackwhite-simple.cache
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-trackwhite-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-unwanted-simple.cache
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-unwanted-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flash-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flashallow-simple.pset
28.5s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flashsubdoc-simple.pset
28.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-malware-simple.sbstore
28.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-phish-simple.sbstore
28.6s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-unwanted-simple.sbstore
28.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-track-simple.sbstore
28.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-trackwhite-simple.sbstore
28.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-block-simple.sbstore
28.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flash-simple.sbstore
28.8s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\sessionstore-backups\upgrade.js-20170628075643
28.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flash-simple.sbstore
28.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flashallow-simple.sbstore
28.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flashallow-simple.sbstore
28.8s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\test-flashsubdoc-simple.sbstore
28.9s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\safebrowsing\testexcept-flashsubdoc-simple.sbstore
52.6s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\extensions.json
76.0s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\sessionCheckpoints.json
76.0s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\sessionstore.js
76.7s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\xulstore.json
76.9s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\prefs.js
77.1s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\datareporting\session-state.json
77.4s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\datareporting\archived\2017-07\1500027120033.6083a45a-00bb-4e10-98df-906f4e868155.main.jsonlz4
77.5s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\saved-telemetry-pings\6083a45a-00bb-4e10-98df-906f4e868155
77.6s C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\crashes\store.json.mozlz4
77.7s C:\Users\acer\AppData\Local\Mozilla\Firefox\Profiles\29nvyaz3.default\startupCache\startupCache.4.little


Suspicious files ____________________________________________________________

C:\Users\acer\Desktop\FRST64.exe
Size . . . . . . . : 2 424 832 bytes
Age . . . . . . . : 111.6 days (2017-03-25 00:39:02)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3A3DCD0D3C9C1FE10C45AF795DC9452DA192246BB67D896AB7F16151A53C1B5F
Needs elevation . : Yes
Fuzzy . . . . . . : 22.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.

C:\Users\acer\Downloads\FRST64.exe
Size . . . . . . . : 2 424 832 bytes
Age . . . . . . . : 111.6 days (2017-03-25 00:21:08)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3A3DCD0D3C9C1FE10C45AF795DC9452DA192246BB67D896AB7F16151A53C1B5F
Needs elevation . : Yes
Fuzzy . . . . . . : 22.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.


Malware remnants ____________________________________________________________

HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}\ (Jotzey) -> Deleted

Potential Unwanted Programs _________________________________________________

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98FD652EB4839214E97B69DD8EEA1D29\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CFA51B44D54927c4E9B7BC1D3FD1E49F\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48\ (AskBar) -> Deleted
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646\ (AskBar) -> Deleted

Cookies _____________________________________________________________________

C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:254a.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:262855726.log.optimizely.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:4177821143.log.optimizely.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:acuityplatform.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.turn.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adaptv.advertising.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrn.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adform.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adhigh.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adingo.jp
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.converge-digital.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.creative-serving.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.deliverimp.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stickyadstv.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.yieldmo.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adscale.de
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsymptotic.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:adx.adform.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:amgdgt.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:atemda.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:basebanner.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidr.io
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:connexity.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:contextweb.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:default.atemda.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:delivery.swid.switchads.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:dotomi.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:dsp.linksynergy.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:effectivemeasure.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:erne.co
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:everesttech.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:eyeviewads.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:go.sonobi.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:gssprt.jp
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:gwallet.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ih.adscale.de
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:krxd.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:lijit.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:linksynergy.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:match.adsby.bidtheatre.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:ml314.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:mookie1.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:mxptint.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:nexac.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:openx.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:optimatic.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:optimizely.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:owneriq.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel.rubiconproject.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:po.st
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:postrelease.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:pubmatic.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:simpli.fi
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:sitescout.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:swid.switchads.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:sxp.smartclip.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tap-secure.rubiconproject.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tap.rubiconproject.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tap2-cdn.rubiconproject.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tapad.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tidaltv.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:trc.taboola.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tremorhub.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:tubemogul.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:virool.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:wtp101.com
C:\Users\acer\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldlab.net
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\cookies.sqlite:addthis.com
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\cookies.sqlite:bluekai.com
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\cookies.sqlite:doubleclick.net
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\cookies.sqlite:mathtag.com
C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\29nvyaz3.default\cookies.sqlite:scorecardresearch.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.turn.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adaptv.advertising.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adbrn.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adgrx.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsymptotic.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:effectivemeasure.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel.rubiconproject.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:tap.rubiconproject.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:tap2-cdn.rubiconproject.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:tubemogul.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:virool.com
C:\Users\Administrateur\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net


[/code]

Publicité

Signaler le contenu de ce document

Publicité