Logfile of random's system information tool 1.10 (written by random/random) Run by roberto scooters at 2014-11-12 17:55:04 Microsoft® Windows Vista™ Home Premium Service Pack 2 System drive C: has 65 GB (46%) free of 142 GB Total RAM: 2814 MB (38% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:55:13, on 12-11-2014 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16584) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\NST.exe C:\Program Files\Norton AntiVirus\Engine\21.6.0.32\NAV.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Users\roberto scooters\AppData\Local\mbot_nl_91\upmbot_nl_91.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Acer\Empowering Technology\SysMonitor.exe C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe C:\Windows\RtHDVCpl.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Samsung\Kies\KiesTrayAgent.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\MyWebFace_5a\bar\1.bin\5abrmon.exe C:\Program Files\Motitags_94\bar\1.bin\APPINTEGRATOR.EXE C:\Program Files\mbot_nl_91\mbot_nl_91.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Users\roberto scooters\AppData\Local\Smartbar\Application\Smartbar.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\system32\conime.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_15_0_0_223.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\roberto scooters\Downloads\RSIT.exe C:\Program Files\trend micro\roberto scooters.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=1&o=vp32&d=0210&m=aspire_x1300 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_Xmyr4DsGS5n78FPYRanGofL9ilp5-y4IscDv4OjUxM-2FRpx9ER2l8PnGhctXz7P7P1nhnwsKiY0zy0ArTeAkDESQzS5RafPJC1hZC-eI4zw83TCeiDEKQPP_8ArUq--fm7vXHyN47zE6alPkMYO9GkIg,,&q={searchTerms} R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_Xmyr4DsGS5n78FPYRanGofL9ilp5-y4IscDv4OjUxM-2FRpx9ER2l8PnGhctXz7P7P1nhnwsKiY0zy0ArTeAkDESQzS5RafPJC1hZC-eI4zw83TCeiDEKQPP_8ArUq--fm7vXHyN47zE6alPkMYO9GkIg,,&q={searchTerms} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=1&o=vp32&d=0210&m=aspire_x1300 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=1&o=vp32&d=0210&m=aspire_x1300 R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_Xmyr4DsGS5n78FPYRanGofL9ilp5-y4IscDv4OjUxM-2FRpx9ER2l8PnGhctXz7P7P1nhnwsKiY0zy0ArTeAkDESQzS5RafPJC1hZC-eI4zw83TCeiDEKQPP_8ArUq--fm7vXHyN47zE6alPkMYO9GkIg,,&q={searchTerms} R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJ_Xmyr4DsGS5n78FPYRanGofL9ilp5-y4IscDv4OjUxM-2FRpx9ER2l8PnGhctXz7P7P1nhnwsKiY0zy0ArTeAkDESQzS5RafPJC1hZC-eI4zw83TCeiDEKQPP_8ArUq--fm7vXHyN47zE6alPkMYO9GkIg,,&q={searchTerms} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - {7888381e-e4f0-48f5-a278-b48b0187d950} - C:\Program Files\Motitags_94\bar\1.bin\94SrcAs.dll R3 - URLSearchHook: (no name) - {8040829d-1177-46e2-9157-8282438b79c7} - C:\Program Files\MyWebFace_5a\bar\1.bin\5aSrcAs.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: Search Assistant BHO - {14d02517-c8be-4735-a344-3c8366c77aa0} - C:\Program Files\MyWebFace_5a\bar\1.bin\5aSrcAs.dll O2 - BHO: Shopping Helper SmartbarEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - mscoree.dll (file missing) O2 - BHO: Increase performance and video formats for your HTML5