Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 27-09-2013 01
Ran by JA at 2013-10-01 14:30:07 Run:1
Running from C:\Documents and Settings\JA\Pulpit
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
R2 WsysSvc; C:\Documents and Settings\All Users\Dane aplikacji\eSafe\eGdpSvc.exe [825920 2013-09-17] (Wsys Co., Ltd.)
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\JA\DANEAP~1\DIGITA~1\UPDATE~1\UPDATE~1.EXE
HKLM\...\Run: [EfficientDiary] - [x]
HKCU\...\Run: [Umenuryv] - "C:\Documents and Settings\JA\Dane aplikacji\Qidy\wiewo.exe"
HKCU\...\Run: [ALLUpdate] - "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep"
AppInit_DLLs: [ ] ()
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1379428340
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1379428340
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1379428340
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1379428340
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=sc&from=newgdp&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1380402041
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=sc&from=newgdp&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1380402041
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\qvo6.xml
CHR HKLM\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\Torch\Plugins\TorchPlugin.crx
CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=sc&from=newgdp&uid=ST3500320AS_9QM08ZMFXXXX9QM08ZMF&ts=1380402041
AlternateDataStreams: C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji:aiBHiEkfx6oINdyeb1bAdS
C:\Documents and Settings\All Users\Dane aplikacji\APN
C:\Documents and Settings\All Users\Dane aplikacji\CLSoft LTD
C:\Documents and Settings\All Users\Dane aplikacji\eSafe
C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
C:\Documents and Settings\All Users\Dane aplikacji\MagniPic
C:\Documents and Settings\JA\Dane aplikacji\0D0S1L2Z1P1B0T1P1B2Z
C:\Documents and Settings\JA\Dane aplikacji\Bitcoin
C:\Documents and Settings\JA\Dane aplikacji\DigitalSite
C:\Program Files\MidiPiano
Reg: reg delete "HKCU\Software\Microsoft\Internet Explorer\SearchScopes" /f
*****************

WsysSvc => Service deleted successfully.
C:\WINDOWS\Tasks\At1.job => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EfficientDiary => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Umenuryv => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ALLUpdate => Value deleted successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\\Default => Value was restored successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\delta-homes.xml => Moved successfully.
C:\Program Files\mozilla firefox\browser\searchplugins\qvo6.xml => Moved successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof => Key deleted successfully.
C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji\Torch\Plugins\TorchPlugin.crx => Moved successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command\\Default => Value was restored successfully.
C:\Documents and Settings\JA\Ustawienia lokalne\Dane aplikacji => ":aiBHiEkfx6oINdyeb1bAdS" ADS removed successfully.
C:\Documents and Settings\All Users\Dane aplikacji\APN => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\CLSoft LTD => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\eSafe => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\InstallMate => Moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\MagniPic => Moved successfully.
C:\Documents and Settings\JA\Dane aplikacji\0D0S1L2Z1P1B0T1P1B2Z => Moved successfully.
C:\Documents and Settings\JA\Dane aplikacji\Bitcoin => Moved successfully.
C:\Documents and Settings\JA\Dane aplikacji\DigitalSite => Moved successfully.
C:\Program Files\MidiPiano => Moved successfully.

========= reg delete "HKCU\Software\Microsoft\Internet Explorer\SearchScopes" /f =========


Operacja ukończona pomyślnie


========= End of Reg: =========



The system needs a manual reboot. 

==== End of Fixlog ====