Task: {03A035EC-AD78-4AD8-90A5-17BD8EA7EFE5} - System32\Tasks\DSite => C:\Users\hp\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE No File
Task: {130E987C-C17E-45C2-A71F-1137D66EE3A2} - System32\Tasks\Funmoods => C:\Users\hp\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE No File
Task: {228029A1-3C45-4610-B8F0-56F7BA76A761} - \Program aktualizacji online firmy Adobe. No Task File
Task: {690D186E-86D8-4487-B1CC-D87072E2EC8A} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe No File
Task: {EA9033EA-D02D-4B8B-A83A-4D4A3707BA02} - System32\Tasks\DealPlyUpdate => C:\Program No File
Task: {FB466942-DC4C-4800-B884-56583AC78DB8} - System32\Tasks\EPUpdater => C:\Users\hp\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe No File
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.v9.com/web/?q={searchTerms}&utm_source=b&utm_medium=isafe&from=isafe&uid=SAMSUNGXHM641JI_S25YJDNZA08004
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.v9.com/web/?q={searchTerms}&utm_source=b&utm_medium=isafe&from=isafe&uid=SAMSUNGXHM641JI_S25YJDNZA08004
SearchScopes: HKCU - {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = http://search.v9.com/web/?q={searchTerms}&utm_source=b&utm_medium=isafe&from=isafe&uid=SAMSUNGXHM641JI_S25YJDNZA08004
SearchScopes: HKCU - {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=902615&p={searchTerms}
SearchScopes: HKCU - {C5B5337A-0945-4FD7-8DE9-0CEFAE98DD05} URL = 
BHO: TinyBHO Class - {00e71626-0bef-11dc-8314-0864264c9a64} - C:\Users\hp\AppData\Roaming\DownloaderGold\ieplug.dll ()
BHO-x32: TinyBHO Class - {00e71626-0bef-11dc-8314-0800200c9a66} - C:\Users\hp\AppData\Roaming\DownloaderGold\ieplug.dll ()
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
ShellExecuteHooks-x32:  - UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD} -  No File [ ]
AppInit_DLLs:     [0 ] ()
FF HKCU\...\Firefox\Extensions: [lyrmix@lyrmix.net] C:\Program Files (x86)\Lyrmix\FF\
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\delta-homes.xml
CMD: netsh advfirewall reset
Reg: reg add "HKCU\Software\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {66E5AC80-0B66-4B14-AAC3-76A9A179698E} /f
Reg: reg add "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {66E5AC80-0B66-4B14-AAC3-76A9A179698E} /f
Reg: reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {66E5AC80-0B66-4B14-AAC3-76A9A179698E} /f
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-06-02] (AVG Technologies)
R2 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [376896 2013-07-19] (Wsys Co., Ltd.)
S4 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-07-02] (Taiwan Shui Mu Chih Ching Technology Limited.)
S3 ALSysIO; No ImagePath
S3 btmaudio; system32\drivers\btmaud.sys [x]
S3 CpqDfw; No ImagePath
C:\Users\hp\AppData\Local\Lollipop
C:\Users\hp\AppData\Roaming\DownloaderGold
C:\Users\hp\AppData\Roaming\iSafe
C:\Users\hp\AppData\Roaming\eCyber
C:\Users\hp\AppData\Roaming\WinZipper
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
C:\ProgramData\eSafe
C:\Program Files (x86)\iSafe
C:\Program Files (x86)\Przyspiesz
C:\Program Files (x86)\WinZipper
C:\Program Files (x86)\mozilla firefox\searchplugins\delta-homes.xml
C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
C:\Users\hp\Documents\Chica Passwords
C:\Windows\system32\%LocalAppData%
C:\Windows\SysWow64\%LOCALAPPDATA%
C:\Windows\DeleteOnReboot.bat