Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-01-2014 03
Ran by Ania at 2014-01-19 12:24:28 Run:1
Running from C:\Users\Ania\Desktop\fixitpc
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
() C:\Users\Ania\AppData\Local\Lollipop\lollipop_01062047.exe
Startup: C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop_01062047.lnk
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2014-01-02] (Cherished Technololgy LIMITED)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=hp&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.dosearches.com/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=sc&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747017
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747020&type=default&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747020&type=default&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747020&type=default&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747020&type=default&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=245D96DBC947CE71&affID=125035&tsp=5035
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.dosearches.com/web/?utm_source=b&utm_medium=smt&utm_campaign=eXQ&utm_content=ds&from=smt&uid=WDCXWD3200BPVT-80JJ5T0_WD-WXQ1EA1HZFDXHZFDX&ts=1381747020&type=default&q={searchTerms}
BHO-x32: Speed Analysis 2 - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files (x86)\Speed Analysis 2\ScriptHost.dll (SpeedAnalysis.com)
BHO-x32: Webexp Enhanced - {8b08d84f-4e1a-4bb5-ad7d-aa338a85dcd3} - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha4970\ie\WebexpEnhancedV1alpha4970.dll ()
BHO-x32: Video Player - {b49a15c8-f9dc-46d6-87e2-1243c9259348} - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta965\ie\VideoPlayerV3beta965.dll ()
BHO-x32: Shopping Suggestion. - {e7e8ed77-2fba-4ec6-bc07-65de4de6709f} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Shopping Suggestion - {F6C07882-D703-4DD5-905A-2C4E815A5066} - C:\Users\Ania\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4\Shopping Suggestion.dll (WW3, LLC)
CHR HKLM-x32\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\Ania\AppData\Roaming\SpeedAnalysis2\SpeedAnalysis.crx [2013-06-11]
CHR HKLM-x32\...\Chrome\Extension: [gjajpkikblccgefaibcafkfbanllpefi] - C:\Users\Ania\AppData\Roaming\7go\7go.crx [2013-07-30]
CHR HKLM-x32\...\Chrome\Extension: [ooegmopjlbebfmpbkadpcjiilnbopkkj] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta965\ch\VideoPlayerV3beta965.crx [2014-01-07]
CHR HKLM-x32\...\Chrome\Extension: [peaecnpikobkikcbkfkkemgfdcaeghia] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha4970\ch\WebexpEnhancedV1alpha4970.crx [2013-12-20]
FF HKLM-x32\...\Firefox\Extensions: [ext@WebexpEnhancedV1alpha4970.net] - C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha4970\ff
FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta965.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta965\ff
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\dosearches.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
C:\ProgramData\eSafe
C:\Users\Ania\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
C:\Users\Ania\AppData\Roaming\Babylon
C:\Users\Ania\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4
C:\Users\Ania\AppData\Roaming\File Scout
C:\Users\Ania\AppData\Roaming\PerformerSoft
C:\Users\Ania\AppData\Roaming\SeeSimilar02
C:\windows\System32\Tasks\{8C0E9533-61AE-4A69-A83B-8DFE2DFF55B2}
C:\windows\SysWOW64\log
CMD: md C:\Users\Ania\Desktop\Upload
CMD: copy "C:\Users\Ania\AppData\Local\Google\Chrome\User Data\Default\Preferences" C:\Users\Ania\Desktop\Upload
CMD: copy C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\y8cun8r4.default\Extensions\{4e38134d-ba98-4066-b898-e296d8acc938}.xpi C:\Users\Ania\Desktop\Upload
*****************

[1728] C:\ProgramData\WPM\wprotectmanager.exe => Process closed successfully.
C:\Users\Ania\AppData\Local\Lollipop\lollipop_01062047.exe => No running process found
C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop_01062047.lnk not found.
Wpm => Service deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{18DBB6CE-3148-4FEC-B481-103CB3290427} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8b08d84f-4e1a-4bb5-ad7d-aa338a85dcd3} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{8b08d84f-4e1a-4bb5-ad7d-aa338a85dcd3} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b49a15c8-f9dc-46d6-87e2-1243c9259348} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{b49a15c8-f9dc-46d6-87e2-1243c9259348} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e7e8ed77-2fba-4ec6-bc07-65de4de6709f} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{e7e8ed77-2fba-4ec6-bc07-65de4de6709f} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F6C07882-D703-4DD5-905A-2C4E815A5066} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{F6C07882-D703-4DD5-905A-2C4E815A5066} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf => Key deleted successfully.
C:\Users\Ania\AppData\Roaming\SpeedAnalysis2\SpeedAnalysis.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gjajpkikblccgefaibcafkfbanllpefi => Key deleted successfully.
C:\Users\Ania\AppData\Roaming\7go\7go.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ooegmopjlbebfmpbkadpcjiilnbopkkj => Key deleted successfully.
C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta965\ch\VideoPlayerV3beta965.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\peaecnpikobkikcbkfkkemgfdcaeghia => Key deleted successfully.
C:\Program Files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha4970\ch\WebexpEnhancedV1alpha4970.crx => Moved successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@WebexpEnhancedV1alpha4970.net => Value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta965.net => Value deleted successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\dosearches.xml => Moved successfully.
C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml => Moved successfully.
C:\ProgramData\eSafe => Moved successfully.
C:\Users\Ania\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} => Moved successfully.
C:\Users\Ania\AppData\Roaming\Babylon => Moved successfully.
C:\Users\Ania\AppData\Roaming\D394D188-BAC7-4e03-8FAF-389A4D7EC6F4 => Moved successfully.
C:\Users\Ania\AppData\Roaming\File Scout => Moved successfully.
C:\Users\Ania\AppData\Roaming\PerformerSoft => Moved successfully.
C:\Users\Ania\AppData\Roaming\SeeSimilar02 => Moved successfully.
C:\windows\System32\Tasks\{8C0E9533-61AE-4A69-A83B-8DFE2DFF55B2} => Moved successfully.
C:\windows\SysWOW64\log => Moved successfully.

=========  md C:\Users\Ania\Desktop\Upload =========


========= End of CMD: =========


=========  copy "C:\Users\Ania\AppData\Local\Google\Chrome\User Data\Default\Preferences" C:\Users\Ania\Desktop\Upload =========

Liczba skopiowanych plik�w:         1.

========= End of CMD: =========


=========  copy C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\y8cun8r4.default\Extensions\{4e38134d-ba98-4066-b898-e296d8acc938}.xpi C:\Users\Ania\Desktop\Upload =========

Liczba skopiowanych plik�w:         1.

========= End of CMD: =========


==== End of Fixlog ====