[code] HitmanPro 3.7.6.201 www.hitmanpro.com Computer name . . . . : PC-VOOR Windows . . . . . . . : 6.1.0.7600.X86/2 User name . . . . . . : PC-voor\Johan UAC . . . . . . . . . : Enabled License . . . . . . . : Trial (30 days left) Scan date . . . . . . : 2013-07-18 11:56:10 Scan mode . . . . . . : Normal Scan duration . . . . : 5m 24s Disk access mode . . : Direct disk access (SRB) Cloud . . . . . . . . : Internet Reboot . . . . . . . : No Threats . . . . . . . : 28 Traces . . . . . . . : 836 Objects scanned . . . : 1.796.608 Files scanned . . . . : 24.214 Remnants scanned . . : 839.990 files / 932.404 keys Malware _____________________________________________________________________ C:\Users\Johan\Documents\cgnew\libpdcurses.dll -> Quarantined Size . . . . . . . : 87.054 bytes Age . . . . . . . : 40.7 days (2013-06-07 19:15:09) Entropy . . . . . : 6.5 SHA-256 . . . . . : 50A18E0836A743CD3D0E38706BCC8A7C1D4A7A57F8097B3E17F8BEE15BEE3DAB > Ikarus . . . . . . : Trojan-PWS.Keylogger!IK Fuzzy . . . . . . : 106.0 C:\Users\Johan\Documents\dwm.exe -> Deleted Size . . . . . . . : 254.468 bytes Age . . . . . . . : 40.7 days (2013-06-07 19:15:37) Entropy . . . . . : 6.2 SHA-256 . . . . . : 46E83C1E1571392D9771583DB46FA128533AB80497F8692163C860E935EED784 > G Data . . . . . . : Trojan.GenericKDV.1069110 > Ikarus . . . . . . : Win32.BitCoinMiner!IK Fuzzy . . . . . . : 113.0 C:\Users\Johan\Documents\thumbscl.exe -> Deleted Size . . . . . . . : 859.652 bytes Age . . . . . . . : 1.6 days (2013-07-16 20:33:20) Entropy . . . . . : 7.2 SHA-256 . . . . . : ED4E8ADAF2BCCF0242CC42457707BC2FE75DE6191DA2CFB105B2CCCEE42952DA > G Data . . . . . . : Gen:Trojan.Heur.DP.0KZ@aqG1v9gi > Ikarus . . . . . . : Trojan.Win32.Spy!IK Fuzzy . . . . . . : 112.0 Potential Unwanted Programs _________________________________________________ HKU\S-1-5-21-4213133900-1296267052-3364196582-1001\Software\Softonic\ (Softonic) Cookies _____________________________________________________________________ C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:ad.360yield.com C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:ads.creative-serving.com C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:adviva.net C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:doubleclick.net C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:invitemedia.com C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:specificclick.net C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:track.adform.net C:\Users\freenastester\AppData\Roaming\Mozilla\Firefox\Profiles\5kp8ngot.default\cookies.sqlite:xiti.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.360yield.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.e-kolay.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.yieldmanager.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ad.zanox.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.creative-serving.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.justpremium.nl C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.p161.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.pubmatic.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.textopus.nl C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.verticalscope.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:adserver.gosago.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtech.de C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:adtechus.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:adverteerdirect.nl C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertising.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:adviva.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:apmebf.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ar.atwola.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:at.atwola.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:atwola.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:bluemango.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:budgetcarhire.112.2o7.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:burstnet.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:c.atdmt.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:c1.atdmt.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:c5.zedo.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:carphonewarehouse.112.2o7.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:casalemedia.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:clicksor.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:collective-media.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:conversioncompany.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:dmtracker.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:eas.apm.emediate.eu C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:fastclick.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ffddela.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:getclicky.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:h.atdmt.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:hollandsnieuwe.122.2o7.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:in.getclicky.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:invitemedia.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:kontera.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:kpn.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:media6degrees.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:mediaplex.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:microsoftsto.112.2o7.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:myroitracking.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:nl.sitestat.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:pcworldcommunication.122.2o7.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:questionmarket.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:renaultnl.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:revsci.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ru4.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:serving-sys.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:smartadserver.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:specificclick.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:stat.onestat.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:statcounter.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.adotube.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:statse.webtrendslive.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:tacoda.at.atwola.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:tradedoubler.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:tribalfusion.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:ww251.smartadserver.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:www.googleadservices.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:www4.smartadserver.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:xiti.com C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:zeddigitalnl.solution.weborama.fr C:\Users\Johan\AppData\Local\Google\Chrome\User Data\Default\Cookies:zedo.com [/code]