======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Launched at 15:42:07 on 25/06/2011, Normal boot

Microsoft Windows 7 Home Premium   (X64) 
WIN@WIN-KOMPUTER (Gigabyte Technology Co., Ltd. GA-880GM-D2H) 
 
============== SEARCH ==============


Folder found: C:\Program Files (x86)\Conduit
Folder found: C:\Program Files (x86)\ConduitEngine
Folder found: C:\Users\WIN\AppData\Roaming\OpenCandy
Folder found: C:\Users\WIN\AppData\Local\OpenCandy
Folder found: C:\ProgramData\PopCap Games
Folder found: C:\Users\WIN\AppData\LocalLow\PriceGong

Key found: HKLM\Software\Classes\Conduit.Engine
Key found: HKLM\Software\Classes\Toolbar.CT2530240
Key found: HKLM\Software\Conduit
Key found: HKCU\Software\PopCap
Key found: HKCU\Software\AppDataLow\Software\PriceGong
Key found: HKCU\Software\AppDataLow\Software\Toolbar
Key found: HKLM\Software\Cheat Engine\OpenCandy
Key found: HKLM\Software\GamersFirst\OpenCandy
Key found: HKLM\Software\Wow6432Node\Cheat Engine\OpenCandy
Key found: HKLM\Software\Wow6432Node\GamersFirst\OpenCandy
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Value found: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}
Value found: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D}


============== ADDITIONNAL SCAN ==============

**** Mozilla Firefox Version [5.0 (pl)] ****

Plugins\npganymedenet.dll ( )
Plugins\npijjiautoinstallpluginff.dll (NHN USA Inc.)
HKLM_MozillaPlugins\@gamersfirst.com/LiveLauncher (x)
HKLM_MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0 (x)
HKLM_MozillaPlugins\@pandonetworks.com/PandoWebPlugin (x)
HKLM_MozillaPlugins\Adobe Reader (x)
HKCU_MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0 (x)
HKCU_MozillaPlugins\pandonetworks.com/PandoWebPlugin (x)
Searchplugins\allegro-pl.xml (hxxp://www.allegro.pl/search.php?string={searchTerms}&amp;sourceid=Mozilla-search)
Searchplugins\fbc-pl.xml (hxxp://fbc.pionier.net.pl/owoc/results)
Searchplugins\merlin-pl.xml (hxxp://www.merlin.com.pl/frontend/search?sourceid=Mozilla-search&amp;fraza={searchTerms}&amp;skad=crhhxmkohb)
Searchplugins\pwn-pl.xml (hxxp://encyklopedia.pwn.pl/szukaj.php?co={searchTerms})
Searchplugins\wikipedia-pl.xml (hxxp://pl.wikipedia.org/wiki/Specjalna:Szukaj)
Searchplugins\wp-pl.xml (hxxp://szukaj.wp.pl/szukaj.html?z=T&amp;r=T&amp;szukaj={searchTerms})
Components\browsercomps.dll (Mozilla Foundation)

-- C:\Users\WIN\AppData\Roaming\Mozilla\FireFox\Profiles\rrm637t4.default --
Prefs.js - browser.search.selectedEngine, 
Prefs.js - browser.startup.homepage, hxxp://www.google.pl/
Prefs.js - browser.startup.homepage_override.mstone, false

========================================

**** Internet Explorer Version [8.0.7600.16385] ****

HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKCU_URLSearchHooks|{BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - "SearchHook Class" (C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll)
HKCU_URLSearchHooks|{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} (x)
HKCU_SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - "?" (?)
HKCU_Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440} (x)
HKCU_Toolbar\WebBrowser|{C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} (x)
HKCU_Toolbar\WebBrowser|{30F9B915-B755-4826-820B-08FBA6BD249D} (x)
HKLM_ElevationPolicy\{000209FF-0000-0000-C000-000000000046} - C:\Program Files\Microsoft Office\Office14\winword.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{3644F00E-747A-44aa-8DC3-139CCBEF5BFB} - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe (?)
HKLM_ElevationPolicy\{6A7C9604-8A57-4B28-821B-BDEDF0E04788} - C:\Program Files\Microsoft Office\Office14\winproj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{8D2A5716-2205-4EB2-8443-03AB6B9F4B3B} - C:\Program Files (x86)\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSIX.exe (Futuremark Corporation)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{FC88B53C-9B2A-1A25-5867-C8612E79DBF6} - C:\Program Files\Microsoft Office\Office14\POWERPNT.EXE (x)
BHO\{9030D464-4C02-4ABF-8ECC-5164760863C6} - "Pomocnik logowania za pomocą identyfikatora Windows Live" (C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 File(s)
C:\Program Files (x86)\Ad-Remover\Backup: 1 File(s)

C:\Ad-Report-SCAN[1].txt - 25/06/2011 15:42:24 (5609 Byte(s)) 

End at: 15:43:01, 25/06/2011 
 
============== E.O.F ==============