======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 03:03:02 on 15/04/2011, Normal boot

Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) 
are@ARE-PC (Acer Aspire 6920) 
 
============== SEARCH ==============


File found: C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
Folder found: C:\Users\are\AppData\Roaming\AD ON Multimedia
Folder found: C:\Users\are\AppData\Roaming\DesktopIcon
Folder found: C:\Users\are\AppData\Local\OpenCandy
Folder found: C:\Users\are\AppData\LocalLow\Toolbar4

Key found: HKLM\Software\Classes\Interface\{384FE458-A963-450D-9187-EEFF81913FD0}
Key found: HKCU\Software\AppDataLow\ee43d11d-e87e-5c28-b1d1-979561c21fa4

Value found: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}


============== ADDITIONNAL SCAN ==============

-- C:\Users\are\AppData\Roaming\Mozilla\FireFox\Profiles\bke0hf7f.default --

-- C:\Users\aaaaaaaaa\AppData\Roaming\Mozilla\FireFox\Profiles\czhpmi0w.default --
Prefs.js - browser.download.dir, C:\\Users\\aaaaaaaaa\\Downloads
Prefs.js - browser.search.defaultenginename, Google
Prefs.js - browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.6

-- C:\Users\Gość\AppData\Roaming\Mozilla\FireFox\Profiles\h7sa5nw6.default --
Prefs.js - browser.download.dir, C:\\Users\\Go[\\Downloads
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.0.5

========================================

**** Google Chrome Version [10.0.648.204] ****


-- C:\Users\are\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Enabled: true) (?)
Preferences - homepage: 
Preferences - homepage_is_newtabpage: true
Plugin - RealJukebox NS Plugin (Enabled: true) (C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll)
Plugin - Windows Live\u0099 Photo Gallery (Enabled: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Windows Live\u0099 Photo Gallery" (Enabled: true)
Plugin - "Download Accelerator Plus (DAP) Opera/NS6 plugin" (Enabled: true)
Plugin - "RealJukebox NS Plugin" (Enabled: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Start Page - hxxp://www.o2.pl/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://pl.intl.acer.yahoo.com
HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?)
HKCU_SearchScopes\{CA6F6C19-B0F1-43ad-BBA6-18AEA969FBB6} - "SpeedBit Search" (hxxp://home.speedbit.com/search.aspx?aff=206&q={searchTerms})
HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll)
HKCU_Toolbar\WebBrowser|{0329E7D6-6F54-462D-93F6-F5C3118BADF2} (x)
HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (x)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x)
HKLM_ElevationPolicy\{3B9A6E32-36C9-4946-B78C-3F58E3785EC1} - C:\Program Files\Java\jre6\bin\unpack200.exe (Oracle)
HKLM_ElevationPolicy\{44D1B085-E495-4b5f-9EE6-34795C46E7E7} - C:\Program Files\Java\jre6\bin\jp2launcher.exe (Oracle)
HKLM_ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284} - C:\Program Files\Java\jre6\bin\javaws.exe (Oracle)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{C8FE2181-CAE7-49EE-9B04-DB7EB4DA544A} - C:\Program Files\Java\jre6\bin\ssvagent.exe (Oracle)
HKLM_Extensions\{2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - "@C:\Windows\WindowsMobile\INetRepl.dll,-222" (C:\Windows\WindowsMobile\INetRepl.dll,210)
HKLM_Extensions\{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - "?" (?)
BHO\{DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - "IplexToALLPlayer" (C:\PROGRA~1\ALLPLA~1\Iplex\IPLEXT~1.DLL)
BHO\{F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - "TMIEGBHO Class" (C:\Program Files\Trend Micro\Browser Guard\TMAMS.dll)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 File(s)
C:\Program Files\Ad-Remover\Backup: 1 File(s)

C:\Ad-Report-SCAN[1].txt - 15/04/2011 03:03:07 (4608 Byte(s)) 

End at: 03:05:04, 15/04/2011 
 
============== E.O.F ==============