All processes killed ========== OTL ========== Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DriverFinder not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\qpwnjduodavlouv deleted successfully. C:\ProgramData\qpwnjduo.exe moved successfully. C:\ProgramData\xwszphdtyvssuvv folder moved successfully. C:\ProgramData\dmsgqhakkjexgfj moved successfully. File C:\Users\admin\0.4775052143687126.exe not found. C:\found.001 folder moved successfully. C:\found.000\dir0000.chk folder moved successfully. C:\found.000 folder moved successfully. C:\Windows\SysWOW64\drivers\fsbts.sys moved successfully. C:\Users\admin\AppData\Roaming\ArcaBit\Statistics folder moved successfully. C:\Users\admin\AppData\Roaming\ArcaBit folder moved successfully. C:\Users\admin\AppData\Roaming\ArcaVirMicroScan folder moved successfully. C:\Users\admin\AppData\Roaming\DriverFinder\Download folder moved successfully. C:\Users\admin\AppData\Roaming\DriverFinder\Backup folder moved successfully. C:\Users\admin\AppData\Roaming\DriverFinder folder moved successfully. C:\Users\admin\AppData\Roaming\f-secure folder moved successfully. C:\Users\admin\AppData\Roaming\Yandex folder moved successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{40525A66-DB98-480D-BCF9-7AF88C1AF438}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{40525A66-DB98-480D-BCF9-7AF88C1AF438}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{40525A66-DB98-480D-BCF9-7AF88C1AF438}\ not found. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{40525A66-DB98-480D-BCF9-7AF88C1AF438}\ not found. ========== REGISTRY ========== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully! Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\Yandex\ deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: admin ->Temp folder emptied: 294330 bytes ->Temporary Internet Files folder emptied: 53068 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 54968687 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 492 bytes User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Gość User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 10542 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 53,00 mb OTL by OldTimer - Version 3.2.53.1 log created on 07052012_212155 Files\Folders moved on Reboot... C:\Users\admin\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. PendingFileRenameOperations files... File C:\Users\admin\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found! Registry entries deleted on Reboot...