======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 =======

Updated by TeamXscript on 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
website: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 15:56:12 on 01/09/2011, Normal boot

Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) 
Użytkownik@USER-004D4B9107 ( ) 
 
============== SEARCH ==============


File found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\prefs.js.ask.bak
File found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\searchplugins\ask.uk.xml
File found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\searchplugins\askcom.xml
Folder found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\conduit
Folder found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\ConduitEngine
File found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\searchplugins\conduit.xml
File found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\searchplugins\web-search.xml
Folder found: C:\Documents and Settings\Użytkownik\Ustawienia lokalne\Dane aplikacji\Conduit
Folder found: C:\Documents and Settings\Użytkownik\Dane aplikacji\PriceGong
Folder found: C:\Documents and Settings\Użytkownik\Dane aplikacji\Toolbar4
Folder found: C:\Documents and Settings\Użytkownik\Dane aplikacji\vShare
Folder found: C:\Program Files\vShare

-- File opened: C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default\Prefs.js --
Line found: user_pref("browser.search.selectedEngine", "qooqlle"); 
Line found: user_pref("browser.startup.homepage", "hxxp://www.qooqlle.com/"); 
-- File closed --
 

Key found: HKLM\Software\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Key found: HKLM\Software\Classes\CLSID\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key found: HKLM\Software\Classes\Interface\{20ED5AF7-D9C4-409E-9EB3-D2A44A77FB6D}
Key found: HKLM\Software\Classes\Interface\{384FE458-A963-450D-9187-EEFF81913FD0}
Key found: HKLM\Software\Classes\Conduit.Engine
Key found: HKLM\Software\Classes\Toolbar.CT1098640
Key found: HKLM\Software\Classes\Toolbar.CT2530240
Key found: HKLM\Software\Classes\Toolbar.CT2790392
Key found: HKLM\Software\Classes\vShare.ScriptHelpers
Key found: HKLM\Software\Classes\vShare.ScriptHelpers.1
Key found: HKLM\Software\Conduit
Key found: HKLM\Software\ScanQuery
Key found: HKCU\Software\AutocompleteProBHO
Key found: HKCU\Software\vShare
Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899}
Key found: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899}
Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ScanQuery
Key found: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\vShare
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key found: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key found: HKLM\Software\Classes\PROTOCOLS\Handler\vsharechrome


============== ADDITIONNAL SCAN ==============

**** Mozilla Firefox Version [3.6.15 (pl)] ****

Plugins\npBitCometAgent.dll (BitComet)
Plugins\npganymedenet.dll ( )
HKLM_MozillaPlugins\@gamersfirst.com/LiveLauncher (x)
HKLM_MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0 (x)
HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\allegro-pl.xml (hxxp://www.allegro.pl/search.php?string={searchTerms}&amp;sourceid=Mozilla-search)
Searchplugins\BearShareWebSearch.xml (  hxxp://search.bearshare.com/web?src=ffb&amp;systemid=2&amp;q={searchTerms}/)
Searchplugins\fbc-pl.xml (hxxp://fbc.pionier.net.pl/owoc/results)
Searchplugins\merlin-pl.xml (hxxp://www.merlin.com.pl/frontend/search?sourceid=Mozilla-search&amp;fraza={searchTerms}&amp;skad=crhhxmkohb)
Searchplugins\pwn-pl.xml (hxxp://encyklopedia.pwn.pl/szukaj.php?co={searchTerms})
Searchplugins\wikipedia-pl.xml (hxxp://pl.wikipedia.org/wiki/Specjalna:Szukaj)
Searchplugins\wp-pl.xml (hxxp://szukaj.wp.pl/szukaj.html?z=T&amp;r=T&amp;szukaj={searchTerms})
Extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} (Skype extension for Firefox		)
HKLM_Extensions|searchpredict@speedbit.com - C:\Program Files\SearchPredict\PRFireFox (x)
HKLM_Extensions|{0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\SPFireFox (x)

-- C:\Documents and Settings\Użytkownik\Dane aplikacji\Mozilla\FireFox\Profiles\tmx9o7fe.default --
Extensions\{0329E7D6-6F54-462D-93F6-F5C3118BADF2} (?)
Searchplugins\ask.uk.xml (?)
Searchplugins\askcom.xml (?)
Searchplugins\BearShareWebSearch.xml (  hxxp://search.bearshare.com/web?src=ffb&amp;systemid=2&amp;q={searchTerms}/)
Searchplugins\conduit.xml (hxxp://search.conduit.com/ResultsExt.aspx?ctid=&amp;SearchSource=3&amp;q={searchTerms} /)
Searchplugins\search.xml (?)
Searchplugins\sweetim.xml (?)
Searchplugins\web-search.xml (?)
Prefs.js - browser.search.selectedEngine, qooqlle
Prefs.js - browser.startup.homepage, hxxp://www.qooqlle.com/
Prefs.js - browser.startup.homepage_override.mstone, false
Prefs.js - keyword.URL, hxxp://www.google.com/cse?cx=partner-pub-5462406484424654%3A8q0sn8-w2ss&ie=ISO-8859-1&q=

========================================

**** Google Chrome Version [13.0.782.218] ****

Extension\icmlaeflemplmjndnaapfdbbnpncnbda (C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx) (?)

-- C:\Documents and Settings\Użytkownik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Enabled: true) (hxxp://www.google.com/cse?cx=partner-pub-5462406484424654%3A8q0sn8-w2ss&ie=ISO-8859-1&q={searchTerms}&sa=Search&siteurl=qooqlle.com%2F)
Preferences - homepage: hxxp://www.qooqlle.com/
Preferences - homepage_is_newtabpage: false
Plugin - Chrome NaCl (Enabled: false) (C:\Documents and Settings\U\u017Cytkownik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\13.0.782.218\ppGoogleNaClPluginChrome.dll) (x)
Plugin - BitCometAgent (Enabled: true) (C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll)
Plugin - "Java" (Enabled: true)
Plugin - "Chrome NaCl" (Enabled: false)
Plugin - "GanymedeNet.Detector" (Enabled: true)
Plugin - "BitCometAgent" (Enabled: true)
Plugin - "Picasa" (Enabled: true)

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Start Page - hxxp://www.qooqlle.com/
HKCU_Main|Start Page Restore - hxxp://www.ask.com?o=15780&l=dis
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://home.sweetim.com
HKCU_Toolbar\WebBrowser|{5B291E6C-9A74-4034-971B-A4B007A0B315} (x)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x)
HKCU_Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847} (x)
HKCU_ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953} - C:\Program Files\SpeedBit Video Downloader\Converter.exe (x)
HKLM_ElevationPolicy\17a6c353-dc3a-4deb-a0f9-167bf6ead79f - C:\Program Files\free-downloads.net\free-downloads.netToolbarHelper.exe (x)
HKLM_ElevationPolicy\79c135e6-bd53-408b-8ac0-138663d08395 - C:\Program Files\Softonic-Polska\Softonic-PolskaToolbarHelper.exe (x)
HKLM_ElevationPolicy\ea59ed20-763f-4292-9591-413f3907be98 - C:\Program Files\free-downloads.net\free-downloads.netToolbarHelper.exe (x)
HKLM_ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953} - C:\Program Files\SpeedBit Video Downloader\Converter.exe (x)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{0974BA1E-64EC-11DE-B2A5-E43756D89593} - "MediaBar" (C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll) (x)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
BHO\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - "IEPluginBHO Class" (C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll) (x)

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 File(s)
C:\Program Files\Ad-Remover\Backup: 0 File(s)

C:\Ad-Report-SCAN[1].txt - 01/09/2011 15:56:17 (9212 Byte(s)) 

End at: 15:57:39, 01/09/2011 
 
============== E.O.F ==============