========== PROCESSES ========== All processes killed ========== SERVICES/DRIVERS ========== Error: No service named aaekz1rz was found to stop! Service\Driver key aaekz1rz not found. ========== OTL ========== Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:expstart.exe deleted successfully. File C:\Windows\expstart.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{da731cc0-2392-11e1-8fb3-806e6f6e6963}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{da731cc0-2392-11e1-8fb3-806e6f6e6963}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{da731cc0-2392-11e1-8fb3-806e6f6e6963}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{da731cc0-2392-11e1-8fb3-806e6f6e6963}\ not found. File E:\Autorun.exe not found. File C:\Windows\Tasks\1-Click Maintenance.job not found. File C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2853764733-1156619883-1992211099-1000Core.job not found. File C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2853764733-1156619883-1992211099-1000UA.job not found. ========== FILES ========== File\Folder C:\Windows\System32\AFCUPDL.exe not found. File\Folder C:\Windows\Installer\{237437bc-65a3-af1b-2595-d722b8b2092d} not found. C:\Windows\System32\config\systemprofile\AppData\Local\{237437bc-65a3-af1b-2595-d722b8b2092d}\U folder moved successfully. C:\Windows\System32\config\systemprofile\AppData\Local\{237437bc-65a3-af1b-2595-d722b8b2092d}\L folder moved successfully. C:\Windows\System32\config\systemprofile\AppData\Local\{237437bc-65a3-af1b-2595-d722b8b2092d} folder moved successfully. [color=#A23BEC]< sc config aaekz1rz start= disabled /c >[/color] [SC] OpenService FAILED 1060: The specified service does not exist as an installed service. C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. [color=#A23BEC]< sc delete aaekz1rz /c >[/color] [SC] OpenService FAILED 1060: The specified service does not exist as an installed service. C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. [color=#A23BEC]< reg export HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WinSock2\Parameters %userprofile%\Desktop\winsock2.reg /c >[/color] The operation completed successfully. C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. Unable to replace file: C:\Windows\System32\services.exe with C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe without a reboot. Unable to replace file: C:\Windows\system32\wshelper.dll with C:\wshelper.dll without a reboot. [color=#A23BEC]< %windir%\System32\regsvr32.exe %windir%\System32\wshelper.dll /c >[/color] C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. [color=#A23BEC]< netsh winsock reset catalog /c >[/color] Sucessfully reset the Winsock Catalog. You must restart the computer in order to complete the reset. C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. [color=#A23BEC]< netsh int ipv4 reset reset.log hit /c >[/color] Reseting Global, OK! Reseting Interface, OK! Restart the computer to complete this action. C:\Users\Brenda\Desktop\cmd.bat deleted successfully. C:\Users\Brenda\Desktop\cmd.txt deleted successfully. ========== REGISTRY ========== HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32\\""|"%systemroot%\system32\wbem\wbemess.dll" /E : value set successfully! Registry key HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\ not found. Registry key HKEY_USERS\.DEFAULT\SOFTWARE\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\Classes\clsid\{237437bc-65a3-af1b-2595-d722b8b2092d}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{237437bc-65a3-af1b-2595-d722b8b2092d}\ not found. ========== COMMANDS ========== [EMPTYFLASH] User: All Users User: Brenda ->Flash cache emptied: 169428 bytes User: Default User: Default User User: Guest User: Public Total Flash Files Cleaned = 0.00 mb [EMPTYJAVA] User: All Users User: Brenda ->Java cache emptied: 106927 bytes User: Default User: Default User User: Guest User: Public Total Java Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.50.0 log created on 06232012_010944 Files\Folders moved on Reboot... Registry entries deleted on Reboot...