All processes killed
========== FILES ==========
C:\autorun.inf moved successfully.
D:\autorun.inf moved successfully.
C:\albkpq3.exe moved successfully.
D:\albkpq3.exe moved successfully.
D:\WINDOWS\tasks\At1.job moved successfully.
D:\WINDOWS\tasks\At2.job moved successfully.
D:\WINDOWS\tasks\At3.job moved successfully.
D:\WINDOWS\tasks\At4.job moved successfully.
D:\WINDOWS\tasks\At5.job moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\Babylon folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\LogMate folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\OpenCandy\OpenCandy_F56FDA9A188440A69869E3C7934511C5 folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\OpenCandy\OpenCandy_7E990F4F9323418DBCC4C9CF78493E38 folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\OpenCandy\F56FDA9A188440A69869E3C7934511C5 folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\OpenCandy\28FBB4756FB1425FAE6F956A2DD44520 folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\OpenCandy folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\PriceGong\Data folder moved successfully.
D:\Documents and Settings\sxex\Dane aplikacji\PriceGong folder moved successfully.
D:\Documents and Settings\sxex\Ustawienia lokalne\Dane aplikacji\promo.exe moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Babylon folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\GFI Software\AntiMalware\Logs folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\GFI Software\AntiMalware folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\GFI Software folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Cache folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} folder moved successfully.
D:\Documents and Settings\All Users\Dane aplikacji\Tarma Installer folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
D:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com folder moved successfully.
D:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll moved successfully.
D:\Program Files\mozilla firefox\searchplugins\babylon.xml moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\6519:TCP deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\D:\WINDOWS\system32\msiexec.exe deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\\"CheckedValue"|dword:00000001 /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"about:blank" /E : value set successfully!
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page Restore deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\\"Start Page"|"about:blank" /E : value set successfully!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17\ deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{08C06D61-F1F3-4799-86F8-BE1A89362C85} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{08C06D61-F1F3-4799-86F8-BE1A89362C85}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\api32 deleted successfully.
D:\Documents and Settings\sxex\Ustawienia lokalne\Temp\apiqq.exe moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\EXPLORER.EXE deleted successfully.
D:\WINDOWS\system32\EXPLORER.EXE moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\wsctf.exe deleted successfully.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoSaveSettings deleted successfully.
Starting removal of ActiveX control {31435657-9980-0010-8000-00AA00389B71}
D:\WINDOWS\Downloaded Program Files\wvc1dmo.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{31435657-9980-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31435657-9980-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:EXPLORER.EXE deleted successfully.
File D:\WINDOWS\System32\EXPLORER.EXE not found.
Service nkpqw stopped successfully!
Service nkpqw deleted successfully!
File D:\WINDOWS\system32\tzmrurr.dll not found.
nkpqw removed from NetSvcs value successfully!
Service Yontoo Desktop Updater stopped successfully!
Service Yontoo Desktop Updater deleted successfully!
File D:\Program Files\Yontoo\Y2Desktop.Updater.exe D:\Documents and Settings\sxex\Dane aplikacji\Yontoo\YontooDesktop.exe not found.
Service PEVSystemStart stopped successfully!
Service PEVSystemStart deleted successfully!
File D:\ComboFix\pev.3XE EXEC /i D:\ComboFix\HIDEC.3XE D:\ComboFix\SWREG.3XE ACL HKEY_LOCAL_MACHINE\System\CurrentControlSet\Enum\Root\LEGACY_Beep /RESET /Q not found.
Service Apache2.2 stopped successfully!
Service Apache2.2 deleted successfully!
File c:\xampp\apache\bin\httpd.exe not found.
Service SBRE stopped successfully!
Service SBRE deleted successfully!
File D:\WINDOWS\system32\drivers\SBREdrv.sys not found.
Service pccsmcfd stopped successfully!
Service pccsmcfd deleted successfully!
File system32\DRIVERS\pccsmcfd.sys not found.
Service esgiguard stopped successfully!
Service esgiguard deleted successfully!
File D:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 49353 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: sxex
->Temp folder emptied: 185323145 bytes
->Temporary Internet Files folder emptied: 296415048 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 446747766 bytes
->Google Chrome cache emptied: 242906237 bytes
->Flash cache emptied: 19834 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 3871769 bytes
%systemroot%\System32 .tmp files removed: 1621716 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 151320 bytes
RecycleBin emptied: 482953 bytes
 
Total Files Cleaned = 1 123,00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 05082013_084615

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...