Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19.44.52, on 10/01/2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16526)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
E:\Bittorrent\BitTorrent.exe
C:\Users\pippo\AppData\Local\Temp\RtkBtMnt.exe
C:\Users\pippo\Downloads\SoftonicDownloader_per_hijackthis.exe
C:\Users\pippo\Desktop\HijackThis.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://aartemis.com/?type=hp&ts=1385831227&from=vit&uid=HitachiXHTS542516K9SA00_080425BB0C00QGH9U5KAXR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://aartemis.com/?type=hp&ts=1385831227&from=vit&uid=HitachiXHTS542516K9SA00_080425BB0C00QGH9U5KAXR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://aartemis.com/?type=hp&ts=1385831227&from=vit&uid=HitachiXHTS542516K9SA00_080425BB0C00QGH9U5KAXR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://www.aartemis.com/web/?type=ds&ts=1385831227&from=vit&uid=HitachiXHTS542516K9SA00_080425BB0C00QGH9U5KAX&q={searchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.aartemis.com/web/?type=ds&ts=1385831227&from=vit&uid=HitachiXHTS542516K9SA00_080425BB0C00QGH9U5KAX&q={searchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: ::1 localhost
O2 - BHO: ChEapMe - {47CC1969-9E48-7E8A-00BD-FFC3088EB198} - C:\ProgramData\ChEapMe\7eHmDr.dll
O2 - BHO: 50Cioupons - {D3288761-5EDF-5805-61D2-74AC23D95601} - C:\ProgramData\50Cioupons\TnBzwjw.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SsroService] C:\Users\Public\Documents\Application\CurrentFile\ssadl.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKCU\..\Run: [BitTorrent] "E:\Bittorrent\BitTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-18\..\Run: [SsroService] C:\Users\Public\Documents\Application\CurrentFile\ssadl.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [SsroService] C:\Users\Public\Documents\Application\CurrentFile\ssadl.exe (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Scarica con Mipony - file://C:\Program Files\MiPony\Browser\IEContext.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: (no name) - {3f20b8e1-f256-4db1-a1e4-d0b1dc2ad3bb} - (no file)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{4530C7AB-56B9-4475-BA1C-74313AD9B000}: NameServer = 94.198.96.34,46.4.70.20
O20 - AppInit_DLLs: c:\progra~1\sk-enh~1\psupport.dll c:\progra~2\networ~1\networ~1.dll c:\progra~2\webgen~1\webgen~1.dll c:\progra~2\prowebi\prowebi.dll c:\progra~2\accele~1\accele~1.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpSC - Hewlett-Packard Company - (no file)
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\Common Files\NMSAccessU.exe
O23 - Service: PDF Architect Helper Service - pdfforge GmbH - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GmbH - C:\Program Files\PDF Architect\ConversionService.exe
O23 - Service: Ssro Service (SsroService) - SsroService - C:\Users\pippo\AppData\Local\ServiceManager\ssro.exe
O23 - Service: Ssupd Service (SsupdService) - SsupdService - C:\Users\pippo\AppData\Local\ssupd\ssupd.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 6519 bytes