HitmanPro-20170716-1615.log

Document joint : GGqqpTdwoCg_HitmanPro-20170716-1615.log

Cliquez pour partager vos propres fichiers

Format du document : application/octet-stream

Prévisualisation

[code]
HitmanPro 3.7.20.286
www.hitmanpro.com

Computer name . . . . : DESKTOP-INB0G32
Windows . . . . . . . : 10.0.0.14393.X64/4
User name . . . . . . : DESKTOP-INB0G32\Yacintos
UAC . . . . . . . . . : Enabled
License . . . . . . . : Paid (255 days left)

Scan date . . . . . . : 2017-07-16 15:49:43
Scan mode . . . . . . : Normal
Scan duration . . . . : 23m 58s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No

Threats . . . . . . . : 6
Traces . . . . . . . : 14

Objects scanned . . . : 3 186 159
Files scanned . . . . : 272 367
Remnants scanned . . : 1 439 895 files / 1 473 897 keys

Malware _____________________________________________________________________

C:\$Recycle.Bin\S-1-5-21-397786033-3680903596-3950046833-1001\$RGA3IKW.exe -> Deleted
Size . . . . . . . : 2 107 392 bytes
Age . . . . . . . : 1.0 days (2017-07-15 16:41:39)
Entropy . . . . . : 6.4
SHA-256 . . . . . : 0BBA9176C9B6844BCA861FBC8F443B9C2874E5595ED0A4D21B8A758720AD8994
Product . . . . . : Rkill
Publisher . . . . : Bleeping Computer, LLC
Description . . . : Terminates malware processes so that you can run your normal security programs.
Version . . . . . : 2.9.0BETA
Copyright . . . . : © BleepingComputer.com. All rights reserved.
LanguageID . . . . : 1033
> Kaspersky . . . . : Trojan.Win32.Droma.abdb
Fuzzy . . . . . . : 102.0
Forensic Cluster
-32.0s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_41A7C5B11781C943DDBD76684B0FC3C9
-32.0s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_41A7C5B11781C943DDBD76684B0FC3C9
-17.2s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_CB0B8912F53E4695013BA39B9C9CE495
-17.2s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_CB0B8912F53E4695013BA39B9C9CE495
-16.3s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a33
-16.0s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a34
-15.9s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a35
-15.3s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a36
-13.4s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a40
-13.0s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a41
-11.8s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a43
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\index
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2
-9.1s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_3
-8.2s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.bleepingcomputer.com_0.localstorage
-8.2s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.bleepingcomputer.com_0.localstorage-journal
-8.0s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1D9A9E1521CA469E8D3913ECDB71C18C
-8.0s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1D9A9E1521CA469E8D3913ECDB71C18C
-7.2s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000a46
-2.7s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AF4EE75E3A4ABA658C0087EB9A0BB5B_556BB0FF4D382D90E7703209690E089E
-2.7s C:\Users\Yacintos\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AF4EE75E3A4ABA658C0087EB9A0BB5B_556BB0FF4D382D90E7703209690E089E
-2.0s C:\Users\Yacintos\AppData\Roaming\IDM\DwnlData\Yacintos\rkill-unsigned_157\
-1.8s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000001
0.0s C:\$Recycle.Bin\S-1-5-21-397786033-3680903596-3950046833-1001\$RGA3IKW.exe
10.8s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000002
14.6s C:\Users\Yacintos\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_000003
16.3s C:\$Recycle.Bin\S-1-5-21-397786033-3680903596-3950046833-1001\$REV80XN.txt

C:\Users\Yacintos\AppData\Roaming\TechSmith\Camtasia Studio 9\BLOCKHosts.exe
Size . . . . . . . : 66 560 bytes
Age . . . . . . . : 35.9 days (2017-06-10 18:42:02)
Entropy . . . . . : 6.5
SHA-256 . . . . . : C05150398E0AE5D63AD66785D14836B17C36A5294941DFB7B2939364E7CFEB73
Needs elevation . : Yes
> Bitdefender . . . : Trojan.Generic.19955905
> HitmanPro . . . . : Mal/Generic-S
Fuzzy . . . . . . : 106.0

C:\Users\Yacintos\Desktop\Bein Sport\EmbratoriaG6.5.2\EmbratoriaG6.exe
Size . . . . . . . : 756 736 bytes
Age . . . . . . . : 93.7 days (2017-04-13 21:59:00)
Entropy . . . . . : 2.4
SHA-256 . . . . . : 7F557F727D966C95C318549EEACFCED912C417D938C7E55193C4ED9E9262D288
Needs elevation . : Yes
Product . . . . . : LuncherG6
Publisher
Description . . . : LuncherG6
Version . . . . . : 1.0.0.0
LanguageID . . . . : 0
> Bitdefender . . . : Gen:Variant.MSILPerseus.96877
Fuzzy . . . . . . : 103.0

C:\Users\Yacintos\Desktop\Bein Sport\EmbratoriaG7.1\EmbratoriaG7.exe
Size . . . . . . . : 756 736 bytes
Age . . . . . . . : 33.1 days (2017-06-13 14:00:55)
Entropy . . . . . : 2.4
SHA-256 . . . . . : 709479009AB2017FCD7377E1479AC1554EB6633999BD5C504D3B6C0D30E4712A
Needs elevation . : Yes
Product . . . . . : LuncherG6
LanguageID . . . . : 0
> Bitdefender . . . : Gen:Variant.MSILPerseus.96877
Fuzzy . . . . . . : 106.0

C:\Users\Yacintos\Desktop\Bein Sport\EmbratoriaG7.1\libs.exe
Size . . . . . . . : 7 090 688 bytes
Age . . . . . . . : 9.6 days (2017-07-07 01:41:54)
Entropy . . . . . : 7.9
SHA-256 . . . . . : 2572A7C781D9AB3EAD6C76766FF9D59693F442C4F18164592C620FF2A2836E37
Product . . . . . : Embracore
Publisher . . . . : Embratoria
Description . . . : Embracore
Version . . . . . : 7.1.1.0
LanguageID . . . . : 0
> HitmanPro . . . . : Malware
Fuzzy . . . . . . : 104.0

C:\Users\Yacintos\Desktop\Bein Sport\EmbratoriaG7\EmbratoriaG7.exe
Size . . . . . . . : 756 736 bytes
Age . . . . . . . : 84.0 days (2017-04-23 16:51:44)
Entropy . . . . . : 2.4
SHA-256 . . . . . : 709479009AB2017FCD7377E1479AC1554EB6633999BD5C504D3B6C0D30E4712A
Needs elevation . : Yes
Product . . . . . : LuncherG6
LanguageID . . . . : 0
> Bitdefender . . . : Gen:Variant.MSILPerseus.96877
Fuzzy . . . . . . : 106.0

Cookies _____________________________________________________________________

C:\Users\Yacintos\AppData\Local\Microsoft\Windows\INetCookies\HELOWYO7.cookie
C:\Users\Yacintos\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\TM3XBLHE.cookie
C:\Users\Yacintos\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\WOY3EHLI.cookie
C:\Users\Yacintos\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\YJYEJ5AW.cookie
C:\Users\Yacintos\AppData\Roaming\Mozilla\Firefox\Profiles\ivp7wofi.default\cookies.sqlite:agkn.com
C:\Users\Yacintos\AppData\Roaming\Mozilla\Firefox\Profiles\ivp7wofi.default\cookies.sqlite:doubleclick.net
C:\Users\Yacintos\AppData\Roaming\Mozilla\Firefox\Profiles\ivp7wofi.default\cookies.sqlite:mookie1.com
C:\Users\Yacintos\AppData\Roaming\Mozilla\Firefox\Profiles\ivp7wofi.default\cookies.sqlite:statcounter.com

[/code]

Signaler le contenu de ce document