======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 18:23:53 on 14/09/2011, Normal boot

Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) 
User@USER-PC (Acer Aspire 6935) 
 
============== SEARCH ==============


Folder found: C:\Program Files\Windows Searchqu Toolbar
File found: C:\Users\Public\MyWebTattoo.exe
Folder found: C:\Users\User\AppData\Roaming\Mozilla\FireFox\Profiles\rolax73n.default\conduit
Folder found: C:\Program Files\AskTBar
Folder found: C:\Users\User\AppData\Local\Conduit
Folder found: C:\Users\User\AppData\LocalLow\Conduit
Folder found: C:\Program Files\Conduit
Folder found: C:\Program Files\Fast Browser Search
Folder found: C:\ProgramData\PopCap Games
File found: C:\Users\User\Downloads\BandooV6.exe

Key found: HKLM\Software\Classes\CLSID\{27F69C85-64E1-43CE-98B5-3C9F22FB408E}
Key found: HKLM\Software\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Key found: HKLM\Software\Classes\CLSID\{7FF99715-3016-4381-84CE-E4E4C9673020}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7FF99715-3016-4381-84CE-E4E4C9673020}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7FF99715-3016-4381-84CE-E4E4C9673020}
Key found: HKLM\Software\Classes\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}
Key found: HKLM\Software\Classes\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}
Key found: HKLM\Software\Classes\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}
Key found: HKLM\Software\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Key found: HKLM\Software\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Key found: HKLM\Software\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Key found: HKLM\Software\Classes\BandooCore.BandooCore
Key found: HKLM\Software\Classes\BandooCore.BandooCore.1
Key found: HKLM\Software\Classes\BandooCore.ResourcesMngr
Key found: HKLM\Software\Classes\BandooCore.ResourcesMngr.1
Key found: HKLM\Software\Classes\BandooCore.SettingsMngr
Key found: HKLM\Software\Classes\BandooCore.SettingsMngr.1
Key found: HKLM\Software\Classes\BandooCore.StatisticMngr
Key found: HKLM\Software\Classes\BandooCore.StatisticMngr.1
Key found: HKLM\Software\Classes\Toolbar.CT2417076
Key found: HKLM\Software\Classes\Toolbar.CT2438727
Key found: HKLM\Software\Classes\Toolbar.CT2463487
Key found: HKLM\Software\Classes\AppID\BandooCore.EXE
Key found: HKLM\Software\bandoo
Key found: HKLM\Software\Conduit
Key found: HKCU\Software\Conduit
Key found: HKCU\Software\PopCap
Key found: HKCU\Software\SearchquMediabarTb
Key found: HKCU\Software\AppDataLow\Software\searchqutb
Key found: HKCU\Software\AppDataLow\Software\Toolbar
Key found: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DataMngr
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899}
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}
Key found: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}
Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Key found: HKLM\Software\Classes\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239}

Value found: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== ADDITIONNAL SCAN ==============

**** Mozilla Firefox Version [4.0.1 (en-US)] ****

HKLM_MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0 (x)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\amazondotcom.xml (hxxp://www.amazon.com/exec/obidos/external-search/)
Searchplugins\bing.xml (    hxxp://www.bing.com/search)
Searchplugins\eBay.xml (hxxp://rover.ebay.com/rover/1/711-47294-18009-3/4)
Searchplugins\wikipedia.xml (hxxp://en.wikipedia.org/wiki/Special:Search)
Components\browsercomps.dll (Mozilla Foundation)
Extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} (Skype extension		)
HKCU_Extensions|{d5bc46d8-67c7-11dc-8c1d-0097498c2b7a} - C:\Users\User\Program Files\DNA

-- C:\Users\User\AppData\Roaming\Mozilla\FireFox\Profiles\rolax73n.default --
Prefs.js - browser.search.selectedEngine, 
Prefs.js - browser.startup.homepage, 
Prefs.js - browser.startup.homepage_override.mstone, false

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&s=2&o=vp32&d=0609&m=aspire_6935
HKCU_Main|Search bar - hxxp://www.google.com/ie
HKCU_Main|Search Page - hxxp://www.google.com
HKLM_Main|Default_Page_URL - hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&s=2&o=vp32&d=0609&m=aspire_6935
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0406&s=2&o=vp32&d=0609&m=aspire_6935
HKCU_URLSearchHooks|{7b13ec3e-999a-4b70-b9cb-2617b8323822} (x)
HKCU_URLSearchHooks|{8532a8b7-c06a-41bb-936a-8ce73e4711ed} (x)
HKCU_SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8} - "Web Search" (hxxp://www.searchqu.com/web?src=ieb&q={searchTerms})
HKLM_SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8} - "Web Search" (hxxp://www.searchqu.com/web?src=ieb&q={searchTerms})
HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll)
HKCU_Toolbar\ShellBrowser|{1017A80C-6F09-4548-A84D-EDD6AC9525F0} (C:\Program Files\Lexmark Toolbar\toolband.dll)
HKCU_Toolbar\WebBrowser|{1017A80C-6F09-4548-A84D-EDD6AC9525F0} (C:\Program Files\Lexmark Toolbar\toolband.dll)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x)
HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (x)
HKCU_Toolbar\WebBrowser|{7B13EC3E-999A-4B70-B9CB-2617B8323822} (x)
HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll)
HKLM_Toolbar|{1017A80C-6F09-4548-A84D-EDD6AC9525F0} (C:\Program Files\Lexmark Toolbar\toolband.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
HKCU_ElevationPolicy\{0CAFFAAC-426B-4F4C-8DE7-2F0B2B64DBF3} - D:\programy\BitTorrent\bittorrent.exe (BitTorrent, Inc.)
HKLM_ElevationPolicy\cfea1a8e-d7c7-4385-8e5e-8b52b2d2929b - C:\Program Files\Brothersoft\BrothersoftToolbarHelper.exe (x)
HKLM_ElevationPolicy\{02DAEBED-1504-4562-A498-4120120DEB8A} - C:\Program Files\Lexmark Toolbar\tbsched.exe (?)
HKLM_ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC} - C:\Program Files\Bandoo\BndCore.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{74351F14-5437-4d87-805B-04D409B09976} - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (x)
HKLM_ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12} - C:\Program Files\Bandoo\ExtensionsManager.exe (x)
HKLM_ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A} - C:\Program Files\Bandoo\Bandoo.exe (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080} - C:\Program Files\Bandoo\BandooUI.exe (x)
HKLM_Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - "?" (?)
HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "@btrez.dll,-4015" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico)
BHO\{1017A80C-6F09-4548-A84D-EDD6AC9525F0} - "Lexmark Værktøjslinje" (C:\Program Files\Lexmark Toolbar\toolband.dll)
BHO\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - "SSVHelper Class" (C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll)
BHO\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - "ShowBarObj Class" (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll)
BHO\{D2C5E510-BE6D-42CC-9F61-E4F939078474} - "Lexmark " (C:\Program Files\Lexmark Printable Web\bho.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
BHO\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - "IEPluginBHO Class" (C:\ProgramData\Gadu-Gadu 10\_userdata\ggbho.2.dll) (x)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 File(s)
C:\Program Files\Ad-Remover\Backup: 1 File(s)

C:\Ad-Report-SCAN[1].txt - 14/09/2011 18:23:57 (9243 Byte(s)) 

End at: 18:24:44, 14/09/2011 
 
============== E.O.F ==============