All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0BF43445-2F28-4351-9252-17FE6E806AA0} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BF43445-2F28-4351-9252-17FE6E806AA0}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\King_ar deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\mnbdxfzxslfbojf deleted successfully. C:\ProgramData\mnbdxfzx.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Windows deleted successfully. C:\Users\Public\Public Documents\Windows Movie Player\players.exe moved successfully. Prefs.js: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}:3.8.0.8 removed from extensions.enabledItems Prefs.js: ffxtlbr@babylon.com:1.2.0 removed from extensions.enabledItems Prefs.js: DTToolbar@toolbarnet.com:1.1.7.0190 removed from extensions.enabledItems ========== FILES ========== C:\Windows\System32\pnrpnspd.dll moved successfully. C:\Windows\tasks\DZYCWAZFPX.job moved successfully. C:\ProgramData\havlfwhfsgyavja folder moved successfully. C:\ProgramData\ksrcybfkkxhbugi moved successfully. C:\Users\Bart\ms.exe moved successfully. C:\Users\Public\Public Documents\Windows Movie Player folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\searchplugin folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\Plugins folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\modules folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\META-INF folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\defaults folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\components folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\chrome folder moved successfully. C:\Users\Bart\AppData\Roaming\mozilla\Firefox\Profiles\ij6sx45i.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} folder moved successfully. C:\Users\Bart\AppData\Roaming\Mozilla\Firefox\Profiles\ij6sx45i.default\searchplugins\daemon-search.xml moved successfully. ========== REGISTRY ========== HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully! HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully! ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Bart ->Temp folder emptied: 89504 bytes ->Temporary Internet Files folder emptied: 64764 bytes ->FireFox cache emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes RecycleBin emptied: 114234 bytes Total Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.54.0 log created on 07142012_082200 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot...