All processes killed
========== FILES ==========
C:\autorun.inf moved successfully.
D:\autorun.inf moved successfully.
E:\autorun.inf moved successfully.
C:\09lf.exe moved successfully.
D:\09lf.exe moved successfully.
E:\09lf.exe moved successfully.
C:\0fpdq2dw.exe moved successfully.
D:\0fpdq2dw.exe moved successfully.
E:\0fpdq2dw.exe moved successfully.
C:\1hqup.exe moved successfully.
D:\1hqup.exe moved successfully.
E:\1hqup.exe moved successfully.
C:\2ul.exe moved successfully.
D:\2ul.exe moved successfully.
E:\2ul.exe moved successfully.
C:\8xcrbho6.exe moved successfully.
D:\8xcrbho6.exe moved successfully.
E:\8xcrbho6.exe moved successfully.
C:\9fo3ar0j.exe moved successfully.
D:\9fo3ar0j.exe moved successfully.
E:\9fo3ar0j.exe moved successfully.
C:\9xf8.exe moved successfully.
D:\9xf8.exe moved successfully.
E:\9xf8.exe moved successfully.
C:\biriprg.exe moved successfully.
D:\biriprg.exe moved successfully.
E:\biriprg.exe moved successfully.
C:\bveijo.exe moved successfully.
D:\bveijo.exe moved successfully.
E:\bveijo.exe moved successfully.
C:\c2e.exe moved successfully.
D:\c2e.exe moved successfully.
E:\c2e.exe moved successfully.
C:\cgaqyi.exe moved successfully.
D:\cgaqyi.exe moved successfully.
E:\cgaqyi.exe moved successfully.
C:\e9naq.exe moved successfully.
D:\e9naq.exe moved successfully.
E:\e9naq.exe moved successfully.
C:\f2kmj.exe moved successfully.
D:\f2kmj.exe moved successfully.
E:\f2kmj.exe moved successfully.
C:\g6jk.exe moved successfully.
D:\g6jk.exe moved successfully.
E:\g6jk.exe moved successfully.
C:\kmj.exe moved successfully.
D:\kmj.exe moved successfully.
E:\kmj.exe moved successfully.
C:\lcw.exe moved successfully.
D:\lcw.exe moved successfully.
E:\lcw.exe moved successfully.
C:\mh.exe moved successfully.
D:\mh.exe moved successfully.
E:\mh.exe moved successfully.
C:\mvmdh.exe moved successfully.
D:\mvmdh.exe moved successfully.
E:\mvmdh.exe moved successfully.
C:\n0qls.exe moved successfully.
D:\n0qls.exe moved successfully.
E:\n0qls.exe moved successfully.
C:\qkm.exe moved successfully.
D:\qkm.exe moved successfully.
E:\qkm.exe moved successfully.
C:\r3x0k.exe moved successfully.
D:\r3x0k.exe moved successfully.
E:\r3x0k.exe moved successfully.
C:\RECYCLER\S-1-5-21-2025429265-920026266-682003330-1003 folder moved successfully.
C:\RECYCLER folder moved successfully.
RECYCLER not found in D:\
E:\RECYCLER\S-1-5-21-2025429265-920026266-682003330-1003 folder moved successfully.
E:\RECYCLER folder moved successfully.
C:\rfg.exe moved successfully.
D:\rfg.exe moved successfully.
E:\rfg.exe moved successfully.
C:\sywyrl0q.exe moved successfully.
D:\sywyrl0q.exe moved successfully.
E:\sywyrl0q.exe moved successfully.
C:\u16sqrqn.exe moved successfully.
D:\u16sqrqn.exe moved successfully.
E:\u16sqrqn.exe moved successfully.
C:\vi8f.exe moved successfully.
D:\vi8f.exe moved successfully.
E:\vi8f.exe moved successfully.
C:\ws.exe moved successfully.
D:\ws.exe moved successfully.
E:\ws.exe moved successfully.
C:\x3xh.exe moved successfully.
D:\x3xh.exe moved successfully.
E:\x3xh.exe moved successfully.
C:\y.exe moved successfully.
D:\y.exe moved successfully.
E:\y.exe moved successfully.
C:\yqq8eqil.exe moved successfully.
D:\yqq8eqil.exe moved successfully.
E:\yqq8eqil.exe moved successfully.
Recycled not found in C:\
D:\Recycled folder moved successfully.
Recycled not found in E:\
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Global Search Uninstall\ deleted successfully.
Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\ deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\\"SuperHidden"|dword:00000001 /E : value set successfully!
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\\"Hidden"|dword:00000001 /E : value set successfully!
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\\"ShowSuperHidden"|dword:00000001 /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL\\"CheckedValue"|dword:00000001 /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden\\@|"" /E : value set successfully!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37B85A21-692B-4205-9CAD-2626E4993404}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{37B85A21-692B-4205-9CAD-2626E4993404}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{37B85A29-692B-4205-9CAD-2626E4993404} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{37B85A29-692B-4205-9CAD-2626E4993404}\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2025429265-920026266-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{37B85A29-692B-4205-9CAD-2626E4993404} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{37B85A29-692B-4205-9CAD-2626E4993404}\ not found.
Registry value HKEY_USERS\S-1-5-21-2025429265-920026266-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\cdoosoft deleted successfully.
C:\Documents and Settings\bambino\Ustawienia lokalne\temp\herss.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-2025429265-920026266-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\dso32 deleted successfully.
C:\Documents and Settings\bambino\Ustawienia lokalne\temp\dsoqq.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-2025429265-920026266-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\gStart deleted successfully.
========== COMMANDS ==========
 
[EMPTYFLASH]
 
User: All Users
 
User: bambino
->Flash cache emptied: 28916 bytes
 
User: Default User
 
User: LocalService
 
User: NetworkService
 
Total Flash Files Cleaned = 0.00 mb
 
 
[EMPTYTEMP]
 
User: All Users
 
User: bambino
->Temp folder emptied: 366042606 bytes
->Temporary Internet Files folder emptied: 401003068 bytes
->Java cache emptied: 22228019 bytes
->Flash cache emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temp folder emptied: 65716 bytes
->Temporary Internet Files folder emptied: 52673 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 187527 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 755.00 mb
 
 
OTL by OldTimer - Version 3.2.26.1 log created on 08062011_123006

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\bambino\Ustawienia lokalne\Temp\Temporary Internet Files\Content.IE5\MTW7W9EX\q=xxxstocking.com,publicdomainregistry.com,speros.pl,logicboxes.com,whois.publicdomainregistry.com,internic.net,manage.logicboxes.com,www.internic.net,ns1.speros.pl,www[1].com not found!
File\Folder C:\Documents and Settings\bambino\Ustawienia lokalne\Temp\Temporary Internet Files\Content.IE5\K3A70NWR\data=zgyMFN9Lq_RDiFF5vtjYLZtxJJlsbqIBwwOlfsCgi-G5MwAHjX-tcWr_pkuDClxfpfngBh9CMfxKoqGXi3kf7Kh4Jqpp_uFDt6LuWy_-_CZeC4UxYJ2qW02anLyZul4-yG0FQm9g1UdhacKyFiCEo7ioly9iyBK6IT-5M[1].gif not found!
C:\Documents and Settings\bambino\Ustawienia lokalne\Temp\cvasds0.dll moved successfully.
C:\Documents and Settings\bambino\Ustawienia lokalne\Temp\dsoqq0.dll moved successfully.

Registry entries deleted on Reboot...