API tools faq
paste
Guest User

Untitled

a guest
May 7th, 2019
262
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.77 KB | None | 0 0
raw download clone embed print report
  1. [code]
  2. HitmanPro 3.8.11.300
  3. www.hitmanpro.com
  4.  
  5. Computer name . . . . : CHRISTOFF-PC
  6. Windows . . . . . . . : 6.1.1.7601.X64/2
  7. User name . . . . . . : CHRISTOFF-PC\CHRISTOFF
  8. UAC . . . . . . . . . : Enabled
  9. License . . . . . . . : Free
  10.  
  11. Scan date . . . . . . : 2019-05-07 14:25:51
  12. Scan mode . . . . . . : Normal
  13. Scan duration . . . . : 5m 48s
  14. Disk access mode . . : Direct disk access (SRB)
  15. Cloud . . . . . . . . : Internet
  16. Reboot . . . . . . . : No
  17.  
  18. Threats . . . . . . . : 0
  19. Traces . . . . . . . : 58
  20.  
  21. Objects scanned . . . : 1 199 820
  22. Files scanned . . . . : 50 914
  23. Remnants scanned . . : 260 772 files / 888 134 keys
  24.  
  25. Suspicious files ____________________________________________________________
  26.  
  27. C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPJRAC0X\FRST64[1].exe
  28. Size . . . . . . . : 2 430 464 bytes
  29. Age . . . . . . . : 6.0 days (2019-05-01 13:40:36)
  30. Entropy . . . . . : 7.6
  31. SHA-256 . . . . . : 30B4D620FDEB7343BE41E2B7213B03375280138CE771BC139E8E9A8ADD4DE7D5
  32. Needs elevation . : Yes
  33. Fuzzy . . . . . . : 24.0
  34. Program has no publisher information but prompts the user for permission elevation.
  35. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
  36. Authors name is missing in version info. This is not common to most programs.
  37. Version control is missing. This file is probably created by an individual. This is not typical for most programs.
  38. Time indicates that the file appeared recently on this computer.
  39. Forensic Cluster
  40. -3.1s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72f733dcf1b6e483_0
  41. -3.1s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\74479683eaa273b1_0
  42. -1.3s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPJRAC0X\82[1].htm
  43. -0.3s C:\Users\CHRISTOFF\AppData\Roaming\Microsoft\Windows\Cookies\DYJEM6M1.txt
  44. -0.3s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MYN119HE\82[1].htm
  45. 0.0s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPJRAC0X\FRST64[1].exe
  46. 0.0s C:\Users\CHRISTOFF\Downloads\FRST64.exe
  47. 0.8s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\
  48. 4.5s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0MQG6WKD\up64[3]
  49.  
  50. C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar.exe
  51. Size . . . . . . . : 18 653 984 bytes
  52. Age . . . . . . . : 2.8 days (2019-05-04 19:33:36)
  53. Entropy . . . . . : 6.5
  54. SHA-256 . . . . . : 171562A0B0680E2FD9A0C358D8C13D3F28849E51E7D62C106BED8B8EE3FDDE65
  55. Version . . . . . : 5.0.0.6002871
  56. RSA Key Size . . . : 2048
  57. Authenticode . . . : Invalid
  58. Fuzzy . . . . . . : 25.0
  59. Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
  60. Authors name is missing in version info. This is not common to most programs.
  61. Time indicates that the file appeared recently on this computer.
  62. Forensic Cluster
  63. -1.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\
  64. -0.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\CD\
  65. -0.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\CD\coverart.png
  66. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\changelog.txt
  67. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\controls.txt
  68. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\IGG-GAMES.COM.url
  69. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\
  70. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\flag_garage.png
  71. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\How to use car template.txt
  72. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\jonnez_template.png
  73. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\mugshot.png
  74. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\poster1.png
  75. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\poster2.png
  76. -0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\poster3.png
  77. -0.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\spraycolormap.png
  78. -0.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\template.png
  79. -0.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Images\window_sticker.png
  80. -0.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\LAUNCHER.exe
  81. 0.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar.exe
  82. 0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\
  83. 0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\level0
  84. 0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\level1
  85. 0.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\level2
  86. 0.8s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\level3
  87. 0.8s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\mainData
  88. 0.8s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\
  89. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Assembly-CSharp-firstpass.dll
  90. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Assembly-CSharp.dll
  91. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Assembly-UnityScript-firstpass.dll
  92. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Assembly-UnityScript.dll
  93. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Boo.Lang.dll
  94. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\cInput.dll
  95. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\ES2.dll
  96. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\HOTween.dll
  97. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\Mono.Security.dll
  98. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\MoodkieSecurity.dll
  99. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\mscorlib.dll
  100. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\PlayMaker.dll
  101. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\System.Core.dll
  102. 0.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\System.dll
  103. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\System.Drawing.dll
  104. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\UnityEngine.dll
  105. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\UnityEngine.UI.dll
  106. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Managed\UnityScript.Lang.dll
  107. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\1.0\
  108. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\
  109. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\
  110. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\
  111. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\1.0\DefaultWsdlHelpGenerator.aspx
  112. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\1.0\machine.config
  113. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\
  114. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\Browsers\
  115. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\Browsers\Compat.browser
  116. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\DefaultWsdlHelpGenerator.aspx
  117. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\machine.config
  118. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\settings.map
  119. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\2.0\web.config
  120. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\browscap.ini
  121. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\config
  122. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\mconfig\
  123. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\etc\mono\mconfig\config.xml
  124. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Mono\mono.dll
  125. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\
  126. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\
  127. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\Contents\
  128. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\Contents\Info.plist
  129. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\Contents\MacOS\
  130. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\Contents\MacOS\CSteamworks
  131. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.bundle\Contents\MacOS\libsteam_api.dylib
  132. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\CSteamworks.dll
  133. 1.0s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\libCSteamworks.so
  134. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\libsteam_api.so
  135. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\steam_api64.dll
  136. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Plugins\UnityForceFeedback.dll
  137. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Resources\
  138. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Resources\unity default resources
  139. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\Resources\unity_builtin_extra
  140. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\resources.assets
  141. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\resources.resource
  142. 1.1s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\ScreenSelector.bmp
  143. 1.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets0.assets
  144. 1.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets1.assets
  145. 1.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets1.resource
  146. 1.9s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets2.assets
  147. 2.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets2.resource
  148. 2.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets3.assets
  149. 6.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets3.resource
  150. 8.2s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets4.assets
  151. 8.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\mysummercar_Data\sharedassets4.resource
  152. 8.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\PCGAMESTORRENTS.COM.url
  153. 8.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\README.txt
  154. 8.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Redist\
  155. 8.3s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Redist\vcredist_x64.exe
  156. 8.4s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Redist\vcredist_x86.exe
  157. 8.5s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\SmartSteamEmu.dll
  158. 8.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\SmartSteamEmu.ini
  159. 8.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\SmartSteamEmu64.dll
  160. 8.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\steam_api.dll
  161. 8.6s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\steam_api64.dll
  162. 8.7s C:\Users\CHRISTOFF\Desktop\My.Summer.Car.v25.04.2019\Radio\
  163.  
  164. C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64 (1).exe
  165. Size . . . . . . . : 2 429 952 bytes
  166. Age . . . . . . . : 8.0 days (2019-04-29 14:36:50)
  167. Entropy . . . . . : 7.6
  168. SHA-256 . . . . . : 39A89FF51DE6D5D38B5B937467D985F014C8A606C5EEFC9CF7E1BC4657730D6E
  169. Needs elevation . : Yes
  170. Fuzzy . . . . . . : 23.0
  171. Program has no publisher information but prompts the user for permission elevation.
  172. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
  173. Authors name is missing in version info. This is not common to most programs.
  174. Version control is missing. This file is probably created by an individual. This is not typical for most programs.
  175. Time indicates that the file appeared recently on this computer.
  176. Forensic Cluster
  177. -10.0s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2d8ab10edb25aa14_0
  178. -8.2s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f6b887849b1c7a5a_0
  179. -7.2s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\23826188159746d3_0
  180. -3.7s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aee04ee3b48fedf7_0
  181. -3.5s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dbbe5e2cdc1a1410_0
  182. -3.4s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5419f122a5284ee7_0
  183. -3.1s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5226d75d9265d0fb_0
  184. -2.9s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a18e941962e5ed3c_0
  185. -2.0s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c44c65cb377678f0_0
  186. -2.0s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3289b09011dc1f1f_0
  187. -2.0s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f688146b3892a917_0
  188. -2.0s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8955d25904bb4457_0
  189. -0.5s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64.exe
  190. 0.0s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64 (1).exe
  191.  
  192. C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64.exe
  193. Size . . . . . . . : 2 429 952 bytes
  194. Age . . . . . . . : 8.0 days (2019-04-29 14:36:50)
  195. Entropy . . . . . : 7.6
  196. SHA-256 . . . . . : 39A89FF51DE6D5D38B5B937467D985F014C8A606C5EEFC9CF7E1BC4657730D6E
  197. Needs elevation . : Yes
  198. Fuzzy . . . . . . : 23.0
  199. Program has no publisher information but prompts the user for permission elevation.
  200. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
  201. Authors name is missing in version info. This is not common to most programs.
  202. Version control is missing. This file is probably created by an individual. This is not typical for most programs.
  203. Time indicates that the file appeared recently on this computer.
  204. Forensic Cluster
  205. -9.5s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2d8ab10edb25aa14_0
  206. -7.7s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f6b887849b1c7a5a_0
  207. -6.7s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\23826188159746d3_0
  208. -3.2s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aee04ee3b48fedf7_0
  209. -2.9s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dbbe5e2cdc1a1410_0
  210. -2.9s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5419f122a5284ee7_0
  211. -2.6s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5226d75d9265d0fb_0
  212. -2.4s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a18e941962e5ed3c_0
  213. -1.5s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c44c65cb377678f0_0
  214. -1.5s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3289b09011dc1f1f_0
  215. -1.5s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f688146b3892a917_0
  216. -1.4s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8955d25904bb4457_0
  217. 0.0s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64.exe
  218. 0.5s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\FRST64 (1).exe
  219.  
  220. C:\Users\CHRISTOFF\Downloads\FRST64.exe
  221. Size . . . . . . . : 2 430 464 bytes
  222. Age . . . . . . . : 6.0 days (2019-05-01 13:40:36)
  223. Entropy . . . . . : 7.6
  224. SHA-256 . . . . . : 30B4D620FDEB7343BE41E2B7213B03375280138CE771BC139E8E9A8ADD4DE7D5
  225. Needs elevation . : Yes
  226. Fuzzy . . . . . . : 24.0
  227. Program has no publisher information but prompts the user for permission elevation.
  228. Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
  229. Authors name is missing in version info. This is not common to most programs.
  230. Version control is missing. This file is probably created by an individual. This is not typical for most programs.
  231. Time indicates that the file appeared recently on this computer.
  232. Forensic Cluster
  233. -3.1s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\72f733dcf1b6e483_0
  234. -3.1s C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\74479683eaa273b1_0
  235. -1.3s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPJRAC0X\82[1].htm
  236. -0.3s C:\Users\CHRISTOFF\AppData\Roaming\Microsoft\Windows\Cookies\DYJEM6M1.txt
  237. -0.3s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MYN119HE\82[1].htm
  238. 0.0s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RPJRAC0X\FRST64[1].exe
  239. 0.0s C:\Users\CHRISTOFF\Downloads\FRST64.exe
  240. 0.8s C:\Users\CHRISTOFF\Downloads\FRST-OlderVersion\
  241. 4.5s C:\Users\CHRISTOFF\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0MQG6WKD\up64[3]
  242.  
  243.  
  244. Cookies _____________________________________________________________________
  245.  
  246. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:360yield.com
  247. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:abmr.net
  248. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:addthis.com
  249. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:adform.net
  250. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:adnxs.com
  251. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.linkedin.com
  252. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.lvbetpartners.com
  253. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.stickyadstv.com
  254. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:adsrvr.org
  255. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com
  256. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:agkn.com
  257. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:appnexus-partners.tremorhub.com
  258. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
  259. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidr.io
  260. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:bidswitch.net
  261. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluekai.com
  262. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com
  263. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:cdn.taboola.com
  264. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:creative-serving.com
  265. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:crwdcntrl.net
  266. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:demdex.net
  267. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
  268. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:dpm.demdex.net
  269. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:erne.co
  270. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:eus.rubiconproject.com
  271. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:everesttech.net
  272. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:imrworldwide.com
  273. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:ipredictive.com
  274. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:mathtag.com
  275. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:mookie1.com
  276. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:mxptint.net
  277. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:openx.net
  278. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:oracle.112.2o7.net
  279. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:pagefair.com
  280. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:pixel.rubiconproject.com
  281. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:postrelease.com
  282. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:pubmatic.com
  283. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:rfihub.com
  284. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:rlcdn.com
  285. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:rubiconproject.com
  286. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:rundsp.com
  287. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
  288. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:simpli.fi
  289. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.paypal.com
  290. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:taboola.com
  291. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:tapad.com
  292. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:tidaltv.com
  293. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
  294. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
  295. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:turn.com
  296. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:w55c.net
  297. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr
  298. C:\Users\CHRISTOFF\AppData\Local\Google\Chrome\User Data\Default\Cookies:yieldlab.net
  299.  
  300.  
  301. [/code]
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!