All processes killed ========== OTL ========== Service ucshvboh stopped successfully! Service ucshvboh deleted successfully! C:\WINDOWS\system32\akzee.dll moved successfully. ucshvboh removed from NetSvcs value successfully! Error: No service named rpcapd was found to stop! Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\rpcapd deleted successfully. File %ProgramFiles%\WinPcap\rpcapd.exe not found. Service cpuz134 stopped successfully! Service cpuz134 deleted successfully! File C:\DOCUME~1\SZYM\LOCALS~1\Temp\cpuz134\cpuz134_x32.sys not found. Service catchme stopped successfully! Service catchme deleted successfully! File C:\ComboFix\catchme.sys not found. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@macromedia.com/FlashPlayer9\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@macromedia.com/FlashPlayer9\ deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\dtaakscmjitgyrw deleted successfully. C:\Documents and Settings\All Users\Application Data\dtaakscm.exe moved successfully. C:\Documents and Settings\All Users\Application Data\cguisjkujdmffnr folder moved successfully. C:\Documents and Settings\All Users\Application Data\fyqzlkizbuvgeoz moved successfully. C:\Documents and Settings\SZYM\ms.exe moved successfully. ========== FILES ========== [color=#A23BEC]< netsh firewall reset /C >[/color] Ok. C:\Documents and Settings\SZYM\My Documents\Pobieranie\cmd.bat deleted successfully. C:\Documents and Settings\SZYM\My Documents\Pobieranie\cmd.txt deleted successfully. ========== REGISTRY ========== HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"about:blank" /E : value set successfully! Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\ deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Default User ->Temp folder emptied: 507904 bytes ->Temporary Internet Files folder emptied: 32768 bytes User: All Users User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: SZYM ->Temp folder emptied: 47564968 bytes ->Temporary Internet Files folder emptied: 19764939 bytes ->Java cache emptied: 816956 bytes ->FireFox cache emptied: 318337708 bytes ->Opera cache emptied: 71620395 bytes ->Flash cache emptied: 35461 bytes User: Guest ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 67 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 11995240 bytes ->Flash cache emptied: 6568 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 6673 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 245760 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 2389541989 bytes Total Files Cleaned = 2 728,00 mb OTL by OldTimer - Version 3.2.54.0 log created on 07232012_162617 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot...