Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-02-2014 01
Ran by Krzysztof at 2014-02-25 16:33:56 Run:1
Running from C:\Users\Krzysztof\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
() C:\Users\Krzysztof\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe
(Bandoo Media, inc) C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\datamngrUI.exe
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=121845&babsrc=HP_ss_din2g&mntrId=1088BCAEC5A125A9
SearchScopes: HKLM - DefaultScope {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0AtCtByD0Azy0Dzyzy0CtN0D0Tzu0CtBtByEtN1L2XzutBtFtCtFtCtFtAtCtB&cr=502886137
SearchScopes: HKLM - {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0AtCtByD0Azy0Dzyzy0CtN0D0Tzu0CtBtByEtN1L2XzutBtFtCtFtCtFtAtCtB&cr=502886137
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://www.searchqu.com/web?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0AtCtByD0Azy0Dzyzy0CtN0D0Tzu0CtBtByEtN1L2XzutBtFtCtFtCtFtAtCtB&cr=502886137
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
SearchScopes: HKLM-x32 - {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0AtCtByD0Azy0Dzyzy0CtN0D0Tzu0CtBtByEtN1L2XzutBtFtCtFtCtFtAtCtB&cr=502886137
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = http://www.searchqu.com/web?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms}
SearchScopes: HKCU - DefaultScope {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL =
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&affID=121845&babsrc=SP_ss&mntrId=1088BCAEC5A125A9
SearchScopes: HKCU - {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} URL =
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: Pageshots for Internet Explorer PRO - {28CF50DA-4A17-4442-BBF9-D916BFDE072C} - C:\ProgramData\PageshotsPro\pageshots_x64.dll (AD ON Multimedia Advertising GmbH)
BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\x64\BrowserConnection.dll (Bandoo Media, inc)
BHO-x32: Pageshots for Internet Explorer PRO - {28CF50DA-4A17-4442-BBF9-D916BFDE072C} - C:\ProgramData\PageshotsPro\pageshots_x86.dll (AD ON Multimedia Advertising GmbH)
BHO-x32: DefaultTab Browser Helper - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\Krzysztof\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll (Search Results LLC.)
BHO-x32: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
BHO-x32: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\BrowserConnection.dll (Bandoo Media, inc)
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll ()
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
CHR HKLM\...\Chrome\Extension: [cjpglkicenollcignonpgiafdgfeehoj] - C:\Users\KRZYSZ~1\AppData\Local\speeddial.crx [2012-08-11]
CHR HKLM-x32\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files (x86)\DefaultTab\DefaultTab.crx [2013-10-07]
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\datamngr.dll => C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\x64\datamngr.dll [1778584 2011-10-02] (Bandoo Media, inc)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\IEBHO.dll => C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\x64\IEBHO.dll [1790872 2011-10-02] (Bandoo Media, inc)
Task: {2D7C3FA0-D837-437D-97B7-67708575C0AD} - System32\Tasks\DSite => C:\Users\KRZYSZ~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {B0B8D9F9-A6B9-4104-B480-0BD543B2EF07} - System32\Tasks\DTReg => C:\Users\Krzysztof\AppData\Roaming\defaulttab\defaulttab\DTReg.exe [2014-02-04] (Search Results, LLC) <==== ATTENTION
Task: C:\Windows\Tasks\DSite.job => C:\Users\KRZYSZ~1\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
HKLM\...\Run: [Setwallpaper] - c:\programdata\SetWallpaper.cmd
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
HKLM-x32\...\Run: [NPSStartup] - [X]
HKLM-x32\...\Run: [DATAMNGR] - C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\datamngrUI.exe [1700752 2011-10-02] (Bandoo Media, inc)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKU\S-1-5-21-1277968845-3085292245-562916251-1000\...\Run: [] - [X]
S2 DefaultTabSearch; C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe [573952 2013-10-07] ()
R2 DefaultTabUpdate; C:\Users\Krzysztof\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [107520 2013-11-12] ()
S2 KbdLockService; "C:\Windows\SysWOW64\KbdLockService.exe" [X]
S3 ipswuio; System32\DRIVERS\ipswuio.sys [X]
U3 tmlwf;
U3 tmwfp;
S0 TS4nt; system32\Drivers\TS4nt.sys [X]
C:\Program Files (x86)\Mobogenie
C:\Users\Krzysztof\AppData\Local\genienext
C:\Users\Krzysztof\AppData\Roaming\Babylon
C:\Users\Krzysztof\AppData\Roaming\Mipony
C:\Users\Krzysztof\AppData\Roaming\newnext.me
Reg: reg delete: "HKCU\Software\Microsoft\Internet Explorer\MenuExt\Ściągaj z Mipony" /f
Reg: reg delete: "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MenuExt\Ściągaj z Mipony" /f
*****************

[2024] C:\Users\Krzysztof\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe => Process closed successfully.
[4992] C:\Program Files (x86)\SearchCore for Browsers\SearchCore for Browsers\datamngrUI.exe => Process closed successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key deleted successfully.
HKCR\CLSID\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} => Key deleted successfully.
HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\Backup.Old.DefaultScope => Value deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key deleted successfully.
HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key deleted successfully.
HKCR\CLSID\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key deleted successfully.
HKCR\CLSID\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key deleted successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28CF50DA-4A17-4442-BBF9-D916BFDE072C} => Key deleted successfully.
HKCR\CLSID\{28CF50DA-4A17-4442-BBF9-D916BFDE072C} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} => Key deleted successfully.
HKCR\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28CF50DA-4A17-4442-BBF9-D916BFDE072C} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{28CF50DA-4A17-4442-BBF9-D916BFDE072C} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{99079a25-328f-4bd4-be04-00955acaa0a7} => Value deleted successfully.
HKCR\Wow6432Node\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7} => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => Value deleted successfully.
HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} => Key not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj => Key deleted successfully.
C:\Users\KRZYSZ~1\AppData\Local\speeddial.crx => Moved successfully.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc => Key deleted successfully.
C:\Program Files (x86)\DefaultTab\DefaultTab.crx => Moved successfully.
"C:\\PROGRA~2\\SEARCH~1\\SEARCH~1\\x64\\datamngr.dll" => Value Data removed successfully.
"C:\\PROGRA~2\\SEARCH~1\\SEARCH~1\\x64\\IEBHO.dll" => Value Data removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2D7C3FA0-D837-437D-97B7-67708575C0AD} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D7C3FA0-D837-437D-97B7-67708575C0AD} => Key deleted successfully.
C:\Windows\System32\Tasks\DSite => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DSite => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0B8D9F9-A6B9-4104-B480-0BD543B2EF07} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0B8D9F9-A6B9-4104-B480-0BD543B2EF07} => Key deleted successfully.
C:\Windows\System32\Tasks\DTReg => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DTReg => Key deleted successfully.
C:\Windows\Tasks\DSite.job => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Setwallpaper => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\KiesHelper => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NPSStartup => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\DATAMNGR => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => Value deleted successfully.
HKU\S-1-5-21-1277968845-3085292245-562916251-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
DefaultTabSearch => Service deleted successfully.
DefaultTabUpdate => Service deleted successfully.
KbdLockService => Service deleted successfully.
ipswuio => Service deleted successfully.
tmlwf => Service deleted successfully.
tmwfp => Service deleted successfully.
TS4nt => Service deleted successfully.
C:\Program Files (x86)\Mobogenie => Moved successfully.
C:\Users\Krzysztof\AppData\Local\genienext => Moved successfully.
C:\Users\Krzysztof\AppData\Roaming\Babylon => Moved successfully.
C:\Users\Krzysztof\AppData\Roaming\Mipony => Moved successfully.
C:\Users\Krzysztof\AppData\Roaming\newnext.me => Moved successfully.

========= reg delete: "HKCU\Software\Microsoft\Internet Explorer\MenuExt\Ściągaj z Mipony" /f =========

Bť¤D: Nieprawidowy argument lub opcja - 'delete:'.
Aby pozna† spos˘b uľycia, wpisz "REG /?".


========= End of Reg: =========


========= reg delete: "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\MenuExt\Ściągaj z Mipony" /f =========

Bť¤D: Nieprawidowy argument lub opcja - 'delete:'.
Aby pozna† spos˘b uľycia, wpisz "REG /?".


========= End of Reg: =========


==== End of Fixlog ====