Code:
:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: buy-security-essentials.com ([]http in Trusted sites)
O15 - HKLM\..Trusted Domains: get-key-se10.com ([]http in Trusted sites)
[2010/02/18 22:04:10 | 001,526,784 | ---- | M] (Security essentials) -- C:\Windows\SysWow64\ES15.exe
[2010/02/18 22:03:57 | 000,004,278 | ---- | M] () -- C:\Windows\SysWow64\warnings.html
:Files
C:\Windows\SysWow64\ES15.exe
C:\Windows\SysWow64\warnings.html
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]