Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-09-2013
Ran by Daniel at 2013-09-09 15:16:33 Run:1
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Unlock: C:\Users\Daniel\AppData\Local\Temp
HKCU\...\Run: [ChicaPasswordManager] - "C:\Program Files (x86)\ChicaLogic\Chica Password Manager\stpass.exe" /autorunned
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe [x]
AppInit_DLLs-x32: C:\Users\Daniel\AppData\Local\DProtect\eBP.dll, C:\Users\Daniel\AppData\Local\DProtect\eBPSD.dll [62016 2013-09-08] ()
R2 DPService; C:\Users\Daniel\AppData\Local\DProtect\DProtectSvc.exe [342592 2013-09-08] (Woodtale Technology Inc)
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=adks&utm_campaign=eXQ&utm_content=hp&from=adks&uid=395049983_1052515_D4F6B902&ts=1378634008
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_medium=adks&utm_campaign=eXQ&utm_content=hp&from=adks&uid=395049983_1052515_D4F6B902&ts=1378634008
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_medium=adks&utm_campaign=eXQ&utm_content=sc&from=adks&uid=c90ce862-2df3-48bf-9810-295ff688fd05_D4F6B902&ts=1378635913
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {96154B6A-5FD2-4014-8F10-E80D2960715B} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKCU - {CC4C39CF-F5CC-4DD6-B9D2-65F1314DC8D8} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=827316&p={searchTerms}
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\adawaretb.xml
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.qvo6.com/?utm_source=b&utm_medium=adks&utm_campaign=eXQ&utm_content=sc&from=adks&uid=c90ce862-2df3-48bf-9810-295ff688fd05_D4F6B902&ts=1378635913
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-09-07] (GFI Software)
S3 andnetadb; System32\Drivers\lgandnetadb.sys [x]
S3 OpcEnum; C:\Windows\SysWOW64\OpcEnum.exe [x]
C:\Users\Daniel\Documents\Chica Passwords
C:\Users\Daniel\AppData\Roaming\LavasoftStatistics
C:\Users\Daniel\AppData\Roaming\SecureSearch
C:\Program Files (x86)\Ad-Aware Antivirus
C:\Program Files (x86)\Lavasoft
C:\Program Files (x86)\TNod User & Password Finder
C:\Program Files\ESET
C:\ProgramData\Downloaded Installations
C:\ProgramData\Kaspersky Lab
C:\Windows\system32\Drivers\gfiark.sys
C:\Windows\system32\Drivers\gfibto.sys
CMD: netsh advfirewall reset
Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f
Reg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f
*****************

"C:\Users\Daniel\AppData\Local\Temp" => File/Directory unlocked successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ChicaPasswordManager => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Search Protection => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
DPService => Service not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value deleted successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96154B6A-5FD2-4014-8F10-E80D2960715B} => Key deleted successfully.
HKCR\CLSID\{96154B6A-5FD2-4014-8F10-E80D2960715B} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CC4C39CF-F5CC-4DD6-B9D2-65F1314DC8D8} => Key deleted successfully.
HKCR\CLSID\{CC4C39CF-F5CC-4DD6-B9D2-65F1314DC8D8} => Key not found.
C:\Program Files (x86)\mozilla firefox\browser\searchplugins\adawaretb.xml => Moved successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole => Key deleted successfully.
"C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx" => File/Directory not found.
gfiark => Service deleted successfully.
gfibto => Service deleted successfully.
andnetadb => Service deleted successfully.
OpcEnum => Service deleted successfully.
C:\Users\Daniel\Documents\Chica Passwords => Moved successfully.
C:\Users\Daniel\AppData\Roaming\LavasoftStatistics => Moved successfully.
C:\Users\Daniel\AppData\Roaming\SecureSearch => Moved successfully.
C:\Program Files (x86)\Ad-Aware Antivirus => Moved successfully.
C:\Program Files (x86)\Lavasoft => Moved successfully.
"C:\Program Files (x86)\TNod User & Password Finder" => File/Directory not found.
C:\Program Files\ESET => Moved successfully.
C:\ProgramData\Downloaded Installations => Moved successfully.
C:\ProgramData\Kaspersky Lab => Moved successfully.
C:\Windows\system32\Drivers\gfiark.sys => Moved successfully.
C:\Windows\system32\Drivers\gfibto.sys => Moved successfully.

=========  netsh advfirewall reset =========

Ok.


========= End of CMD: =========


========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========


========= reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /f =========

Operacja ukoäczona pomylnie.


========= End of Reg: =========



The system needs a manual reboot. 

==== End of Fixlog ====