======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

D:\Program Files (x86)\Ad-Remover\main.exe (SCAN [3]) -> Launched at 21:39:39 on 20/09/2011, Normal boot

Microsoft Windows 7 Home Premium  Service Pack 1 (X64) 
Bartek Wester@BARTEKWESTER (Acer Aspire 5741G) 
 
============== SEARCH ==============



Key found: HKLM\Software\Classes\TypeLib\{969D2C61-9B16-407C-86B7-397BF4579BE6}
Key found: HKLM\Software\Classes\iMesh.AudioCD
Key found: HKLM\Software\Classes\iMesh.Device
Key found: HKLM\Software\Classes\iMesh.LauncherEventHandler
Key found: HKLM\Software\Classes\iMesh.LauncherEventHandler.1
Key found: HKLM\Software\Conduit
Key found: HKCU\Software\DataMngr
Key found: HKCU\Software\iMesh
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899}
Key found: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}


============== ADDITIONNAL SCAN ==============

-- C:\Users\Bartek Wester\AppData\Roaming\Mozilla\FireFox\Profiles\jx10p412.default --
Prefs.js - browser.search.selectedEngine, 
Prefs.js - browser.startup.homepage, 
Prefs.js - browser.startup.homepage_override.mstone, false
Prefs.js - keyword.URL, hxxp://www.google.com/cse?cx=partner-pub-5462406484424654%3A8q0sn8-w2ss&ie=ISO-8859-1&q=

========================================

**** Google Chrome Version [14.0.835.163] ****

Extension\icmlaeflemplmjndnaapfdbbnpncnbda (d:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Users\Bartek Wester\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Enabled: true) (hxxp://www.google.com/cse?cx=partner-pub-5462406484424654%3A8q0sn8-w2ss&ie=ISO-8859-1&q={searchTerms}&sa=Search&siteurl=qooqlle.com%2F)
Preferences - homepage: 
Preferences - homepage_is_newtabpage: true
Plugin - Remoting Viewer (Enabled: true) (internal-remoting-viewer) (x)
Plugin - Native Client (Enabled: true) (C:\Users\Bartek Wester\AppData\Local\Google\Chrome\Application\14.0.835.163\ppGoogleNaClPluginChrome.dll)
Plugin - Windows Live\u0099 Photo Gallery (Enabled: true) (C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Java" (Enabled: true)
Plugin - "Silverlight" (Enabled: true)
Plugin - "Remoting Viewer" (Enabled: true)
Plugin - "Native Client" (Enabled: true)
Plugin - "Windows Live\u0099 Photo Gallery" (Enabled: true)

========================================

**** Internet Explorer Version [8.0.7601.17514] ****

HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59} - "Web Search" (hxxp://search.imesh.com/web?src=ieb&systemid=1&q={searchTerms})
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (d:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A2D14993-7315-4f91-AD76-20605495ED6C} - C:\Program Files (x86)\ESTsoft\ALUpdate\ALUpExt.exe (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{F2632B95-A2AD-4283-B49A-34D4802BA647} - C:\Program Files (x86)\ESTsoft\ALUpdate\ALUpdate.exe (x)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (d:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
BHO\{9030D464-4C02-4ABF-8ECC-5164760863C6} - "Pomocnik logowania za pomocą identyfikatora Windows Live" (C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll)

========================================

D:\Program Files (x86)\Ad-Remover\Quarantine: 0 File(s)
D:\Program Files (x86)\Ad-Remover\Backup: 2 File(s)

C:\Ad-Report-SCAN[1].txt - 20/09/2011 11:13:33 (6109 Byte(s)) 
C:\Ad-Report-SCAN[2].txt - 20/09/2011 21:10:43 (4957 Byte(s)) 
C:\Ad-Report-SCAN[3].txt - 20/09/2011 21:39:42 (4602 Byte(s)) 

End at: 21:41:02, 20/09/2011 
 
============== E.O.F ==============