======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Launched at 09:01:33 on 17/09/2011, Normal boot

Microsoft Windows 7 Ultimate  Service Pack 1 (X64) 
x@X-KOMPUTER (TOSHIBA Satellite P200D) 
 
============== SEARCH ==============


File found: C:\Users\x\AppData\Roaming\Mozilla\FireFox\Profiles\4y3cpaof.default\searchplugins\askcom.xml
Folder found: C:\Users\x\AppData\LocalLow\AskToolbar
Folder found: C:\Users\x\AppData\LocalLow\Automated Content Enhancer
Folder found: C:\ProgramData\PopCap Games

-- File opened: C:\Users\x\AppData\Roaming\Mozilla\FireFox\Profiles\4y3cpaof.default\Prefs.js --
Line found: user_pref("browser.search.defaultengine", "Ask.com"); 
-- File closed --
 

Key found: HKLM\Software\PopCap
Key found: HKLM\Software\AppDataLow\Software\Automated Content Enhancer
Key found: HKLM\Software\AppDataLow\Software\Customized Platform Advancer
Key found: HKLM\Software\AppDataLow\Software\Web Search Operator
Key found: HKCU\Software\PopCap
Key found: HKCU\Software\AppDataLow\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}
Key found: HKCU\Software\AppDataLow\Software\Automated Content Enhancer
Key found: HKCU\Software\AppDataLow\Software\CMW
Key found: HKCU\Software\AppDataLow\Software\Customized Platform Advancer
Key found: HKCU\Software\AppDataLow\Software\Media Access Startup
Key found: HKCU\Software\AppDataLow\Software\Web Search Operator
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Key found: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{#EVAT_GUID}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Value found: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== ADDITIONNAL SCAN ==============

**** Mozilla Firefox Version [3.6.22 (pl)] ****

Plugins\NPBREAKOUT.dll (Ganymede Technologies)
Plugins\NPDARTS.dll (Ganymede Technologies)
Plugins\NPDEMON.dll (Ganymede Technologies)
Plugins\npDivxPlayerPlugin.dll (DivX, Inc)
Plugins\npganymedenet.dll ( )
Plugins\NPMAHJONG.dll (Ganymede Technologies)
Plugins\NPMAKAOV2.dll (Ganymede Technologies)
Plugins\NPMARBLES.dll (Ganymede Technologies)
Plugins\NPSLOTS90.dll (Ganymede Technologies)
Plugins\NPSUDOKU.dll (Ganymede Technologies)
Plugins\NPWORDSSINGLE.dll (Ganymede Technologies)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\allegro-pl.xml (hxxp://www.allegro.pl/search.php?string={searchTerms}&amp;sourceid=Mozilla-search)
Searchplugins\fbc-pl.xml (hxxp://fbc.pionier.net.pl/owoc/results)
Searchplugins\merlin-pl.xml (hxxp://www.merlin.com.pl/frontend/search?sourceid=Mozilla-search&amp;fraza={searchTerms}&amp;skad=crhhxmkohb)
Searchplugins\pwn-pl.xml (hxxp://encyklopedia.pwn.pl/szukaj.php?co={searchTerms})
Searchplugins\wikipedia-pl.xml (hxxp://pl.wikipedia.org/wiki/Specjalna:Szukaj)
Searchplugins\wp-pl.xml (hxxp://szukaj.wp.pl/szukaj.html?z=T&amp;r=T&amp;szukaj={searchTerms})

-- C:\Users\x\AppData\Roaming\Mozilla\FireFox\Profiles\4y3cpaof.default --
Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} (Panda Security Toolbar)
Searchplugins\askcom.xml (?)
Prefs.js - browser.download.dir, C:\\Users\\x\\Desktop
Prefs.js - browser.search.selectedEngine, Yahoo
Prefs.js - browser.startup.homepage, hxxp://www.google.pl/
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.22

========================================

**** Google Chrome Version [13.0.782.220] ****


-- C:\Users\x\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Enabled: true) (?)
Preferences - homepage: hxxp://www.google.com/
Preferences - homepage_is_newtabpage: false
Plugin - "Ganymede Plugin" (Enabled: true)
Plugin - "DivX Player Netscape Plugin" (Enabled: true)
Plugin - "GanymedeNet.Detector" (Enabled: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Start Page - hxxp://google.pl/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "Ask Search" (hxxp://websearch.ask.com/redirect?client=ie&tb=ATU&o=14670&src=kw&q={searchTerms...)
HKCU_Toolbar\WebBrowser|{00000000-5736-4205-0008-F7ED0776FB27} (x)
HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (x)
HKLM_Toolbar|{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} (C:\Program Files (x86)\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll)
HKLM_ElevationPolicy\{#EVAT_GUID} - C:\Program Files (x86)\Customized Platform Advancer\3.1.0.1630\CPAHelper.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files (x86)\Panda Security\Panda Security Toolbar\uninstall.exe (Visicom Media Inc.)
HKLM_ElevationPolicy\{ba20b5da-0f48-40c5-b8c9-2cda4ecf75c2} - C:\Program Files (x86)\Toolbar Cleaner\ToolbarCleaner.exe (?)
HKLM_ElevationPolicy\{BB2DE08D-AF76-42f2-80E9-E5EEE624A973} - C:\Program Files (x86)\Panda Security\Panda Security Toolbar\ieUtils.exe (Visicom Media Inc.)
BHO\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - "Panda Security Toolbar" (C:\Program Files (x86)\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 File(s)
C:\Program Files (x86)\Ad-Remover\Backup: 1 File(s)

C:\Ad-Report-SCAN[1].txt - 17/09/2011 09:01:48 (6297 Byte(s)) 

End at: 09:03:34, 17/09/2011 
 
============== E.O.F ==============