[Shawnrl]

All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found.
C:\WINDOWS\system32\luruwala moved successfully.
C:\Documents and Settings\All Users\Application Data\two setup mode load folder moved successfully.
C:\Documents and Settings\All Users\Application Data\pingcloselongpop folder moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes

User: Judea
->Temp folder emptied: 40700 bytes
->Temporary Internet Files folder emptied: 265015 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 83631048 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Shawn
->Temp folder emptied: 489634 bytes
->Temporary Internet Files folder emptied: 29259571 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 93826148 bytes

User: Shawn Lloyd
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5317 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 87845444 bytes

Total Files Cleaned = 282.00 mb


OTL by OldTimer - Version 3.1.27.1 log created on 02102010_222315

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

[Advertisements]

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK


Is there suppose to be more?

[Shawnrl]

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK


Is there suppose to be more?

[hammerman]

Hi,

Yes, there should be more. At the end of the scan, did ESET report any detections?

[Shawnrl]

I left it over night. It must of done something I didn't see. I'll run it again now.

[hammerman]

[Shawnrl]

Well i tried running the scan and I didn't touch it for a few hours then when I came back internet explorer was closed and the scan wasn't there anymore. Is this because it didn't find anything or should I keep trying it?

[hammerman]

Hi,

Let's try a different scanner.

Please do an online scan with Kaspersky WebScanner

Click on Accept

You may be promted to install an ActiveX component from Kaspersky, Click Yes.

• The program will launch and then begin downloading the latest definition files:
• Once the files have been downloaded click on Settings
• In the scan settings, select the following:
  • Scan using the following Anti-Virus database:
  Extended (if available otherwise Standard)
  
  • Scan Options:
  Scan spyware, adware, diallers and other riskware
  Scan Archives
  Scan E-mail databases
• Click Save
• Now under ScanSelect My Computer
• This will start the scanning of your system.
• The scan will take a while so be patient and let it run.
• Once the scan is complete it will display if your system has been infected.
  
  • Now click on View Report and then Save Report
• Save the file to your desktop as a text file.
• Copy and paste that information in your next post.

[hammerman]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.