All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@virtools.com/3DviaPlayer\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B}\ deleted successfully. C:\Program Files (x86)\surf, and keep\DUD.x64.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B}\ deleted successfully. C:\Program Files (x86)\surf, and keep\DUD.dll moved successfully. 64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\!{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} deleted successfully. 64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully. C:\ProgramData\surf, and keep folder moved successfully. C:\Users\Lenovo\AppData\Local\Packages\windows_ie_ac_001\AC\{B47274B2-E728-D928-BCEC-491184FB70CA} folder moved successfully. C:\Users\Lenovo\AppData\Local\Packages\windows_ie_ac_001\AC\{4A1B6BEA-92A9-A40F-5AFA-3F917E56B42B} folder moved successfully. C:\Users\Lenovo\AppData\Local\Packages\windows_ie_ac_001\AC folder moved successfully. C:\Users\Lenovo\AppData\Local\Packages\windows_ie_ac_001 folder moved successfully. C:\Users\Lenovo\AppData\Local\Packages folder moved successfully. C:\ProgramData\dc58b88cfd955b7 folder moved successfully. C:\Windows\Tasks\SK.Enhancer-S-747939423.job moved successfully. ========== FILES ========== c:\ProgramData\WinterSoft\SK.Enhancer\747939423 folder moved successfully. c:\ProgramData\WinterSoft\SK.Enhancer folder moved successfully. C:\Program Files (x86)\surf, and keep folder moved successfully. ========== REGISTRY ========== HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"|"{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" /E : value set successfully! Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope deleted successfully. Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope not found. Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope deleted successfully. Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope deleted successfully. Registry value HKEY_USERS\S-1-5-21-3974495567-1903997618-3052050678-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope deleted successfully. Registry key HKEY_USERS\S-1-5-21-3974495567-1903997618-3052050678-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BE6E6B16-A4C5-48C4-B94F-43942DAFD330}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BE6E6B16-A4C5-48C4-B94F-43942DAFD330}\ not found. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Lenovo ->Temp folder emptied: 25730089 bytes ->Temporary Internet Files folder emptied: 176245917 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 385069659 bytes ->Flash cache emptied: 3590 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 92251999 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 648,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 11292013_180330 Files\Folders moved on Reboot... C:\Users\Lenovo\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. C:\Users\Lenovo\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot...