======= REPORT FROM AD-REMOVER 2.0.0.2,G | ONLY XP/VISTA/7 ======= Updated by TeamXscript on 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com website: http://www.teamxscript.org H:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Launched at 16:20:44 on 14/05/2011, Normal boot Microsoft Windows XP Professional Service Pack 3 (X86) Micha³@DOM ( ) ============== SEARCH ============== Folder found: H:\Documents and Settings\Micha³\Local Settings\Application Data\Conduit Folder found: H:\Program Files\Conduit Key found: HKLM\Software\Classes\CLSID\{601ac3dc-786a-4eb0-bf40-ee3521e70bfb} Key found: HKLM\Software\Classes\CLSID\{72b3882f-453a-4633-aac9-8c3dced62aff} Key found: HKLM\Software\Classes\Conduit.Engine Key found: HKLM\Software\Classes\Toolbar.CT1098640 Key found: HKLM\Software\Classes\Toolbar.CT2786678 Key found: HKLM\Software\Conduit Key found: HKCU\Software\Toolbar Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{42168F92-DA71-42E6-BC7F-132EAC1F1899} Key found: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} ============== ADDITIONNAL SCAN ============== **** Google Chrome Version [11.0.696.65] **** Extension\jmfkcklnlgedgbglfkkgedjfmejoahla (H:\Program Files\AVG\AVG10\Chrome\safesearch.crx) (?) -- H:\Documents and Settings\Micha³\Local Settings\Application Data\Google\Chrome\User Data\Default -- Preferences - default_search_provider: "Google" (Enabled: true) (?) Preferences - homepage: hxxp://www.qooqlle.com/ Preferences - homepage_is_newtabpage: false Plugin - Chrome NaCl (Enabled: false) (H:\Documents and Settings\Micha\u0142\Local Settings\Application Data\Google\Chrome\Application\11.0.696.65\ppGoogleNaClPluginChrome.dll) (x) Plugin - AVG Internet Security (Enabled: true) (H:\Documents and Settings\Micha\u0142\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1374_0\plugins/avgnpss.dll) (x) Plugin - "Java" (Enabled: true) Plugin - "Silverlight" (Enabled: true) Plugin - "Chrome NaCl" (Enabled: false) Plugin - "AVG Internet Security" (Enabled: true) Plugin - "GanymedeNet.Detector" (Enabled: true) ======================================== **** Internet Explorer Version [6.0.2900.5512] **** HKCU_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Start Page - hxxp://www.google.pl/ HKLM_Main|Default_Page_URL - hxxp://www.yahoo.com HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://www.yahoo.com HKCU_URLSearchHooks|{A3BC75A2-1F87-4686-AA43-5347D756017C} - "AVG Security Toolbar BHO" (H:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll) HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - " " (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...) HKCU_SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - "AVG Secure Search" (hxxp://search.avg.com/route/?d=4d0fcedf&v=6.10.6.4&i=26&tp=chrome&q={searchTerms...) HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (x) HKCU_Toolbar\WebBrowser|{CCC7A320-B3CA-4199-B1A6-9F516DD69829} (H:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll) HKLM_Toolbar|{CCC7A320-B3CA-4199-B1A6-9F516DD69829} (H:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll) HKLM_ElevationPolicy\2b567dfa-8d11-4686-957e-8e78fecae50f - H:\Program Files\free-downloads.net\free-downloads.netToolbarHelper.exe (x) HKLM_ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - H:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe (?) HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?) BHO\{A3BC75A2-1F87-4686-AA43-5347D756017C} - "AVG Security Toolbar BHO" (H:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll) ======================================== H:\Program Files\Ad-Remover\Quarantine: 0 File(s) H:\Program Files\Ad-Remover\Backup: 1 File(s) H:\Ad-Report-SCAN[1].txt - 14/05/2011 16:20:48 (543 Byte(s)) End at: 16:21:04, 14/05/2011 ============== E.O.F ==============