Sujet Précédent Sujet Suivant

EOREZO AD REMOVER

Résolu/Fermé
cdu27 - 11 mai 2010 à 08:01
 cdu27 - 12 mai 2010 à 06:59
Bonjour à tous.
Ennuyé en permanence par des pubs intempestives (et en rafales) et après avoir scanné mon PC avec ANTIVIR, HAVAST ET SPYBOT S&D,J'ai fini par tomber sur le tuto pour AD REMOVER.
En effet, j'ai bien eorezo et autres merdouilles sur mon PC.

J'ai donc lancé un scan avec celui-ci et je vous en livre le résultat.
Puis je supprimer les fichiers de cette liste et comment dois-je m'y prendre.
Merci d'avance pour votre aide bienvenue.

.
======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 07/05/10 à 16:50
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 07:51:34 le 11/05/2010 | Mode normal | Option: SCAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft® Windows Vista(TM) HomePremium Service Pack 2 - X86
Nom du PC: PC-DE-LEROY (Packard Bell BV EasyNote_MX67)
Utilisateur actuel: LEROY
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
C:\Program Files\AGI
C:\Program Files\Ask.com
C:\Program Files\Bandoo
C:\Program Files\EoRezo
C:\Program Files\Mozilla FireFox\regxpcom.exe
C:\Program Files\PlayMP3z
C:\Program Files\ShoppingAdsHelper
C:\ProgramData\AGI
C:\ProgramData\Bandoo
C:\ProgramData\GamesBar
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandoo
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMP3z
C:\Users\LEROY\AppData\LocalLow\AskToolbar
C:\Users\LEROY\AppData\Roaming\AGI
C:\Users\LEROY\AppData\Roaming\Bandoo
C:\Users\LEROY\AppData\Roaming\EoRezo
C:\Users\LEROY\AppData\Roaming\ItsLabel
C:\Users\LEROY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlayMP3z
C:\Users\LEROY\AppData\Roaming\Mozilla\FireFox\Profiles\esvuhwl3.default\extensions\toolbar@ask.com
C:\Users\LEROY\AppData\Roaming\Mozilla\FireFox\Profiles\esvuhwl3.default\searchplugins\askcom.xml
C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
C:\Windows\system32\Tasks\Scheduled Update for Ask Toolbar
.
HKCU\Software\AppDataLow\AskToolbarInfo
HKCU\Software\AppDataLow\Software\AskToolbar
HKCU\Software\Ask.com
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2C86C605-6081-D104-96F7-F765C20B22F1}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A93C934-025B-4C3A-B38E-9654A7003239}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C86C605-6081-D104-96F7-F765C20B22F1}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKCU\Software\ShoppingAdsHelper
HKCU\Software\Trymedia Systems
HKLM\Software\bandoo
HKLM\Software\Classes\AppID\{647D5A4E-78B5-53ED-7E75-1940D1DFFEA4}
HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
HKLM\Software\Classes\AppID\GenericAskToolbar.DLL
HKLM\Software\Classes\AppID\ShoppingAdsHelper.DLL
HKLM\Software\Classes\CLSID\{2C86C605-6081-D104-96F7-F765C20B22F1}
HKLM\Software\Classes\CLSID\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Classes\CLSID\{913E9215-EB81-7E43-76E6-FC26E50E264C}
HKLM\Software\Classes\CLSID\{AF56FD81-28A2-0159-4922-1211155898A9}
HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\Software\Classes\EoRezoBHO.EoBho
HKLM\Software\Classes\EoRezoBHO.EoBho.1
HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd
HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1
HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
HKLM\Software\Classes\Interface\{2003E25F-91DA-7AC2-239B-A263B7D2441B}
HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
HKLM\Software\Classes\Interface\{8DC03F36-EFED-89C0-3C14-469B513E5651}
HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
HKLM\Software\Classes\Interface\{B00F1048-6A9F-DAA3-5103-5DCFA3E4719A}
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\ShoppingAdsHelper.BrowserWatcher
HKLM\Software\Classes\ShoppingAdsHelper.BrowserWatcher.1
HKLM\Software\Classes\ShoppingAdsHelper.PornPro_BHO
HKLM\Software\Classes\ShoppingAdsHelper.PornPro_BHO.1
HKLM\Software\Classes\ShoppingAdsHelper.PrecacheBrowserHost
HKLM\Software\Classes\ShoppingAdsHelper.PrecacheBrowserHost.1
HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
HKLM\Software\Classes\TypeLib\{A9FC1C11-B511-D9B9-0E29-01A8D05AE107}
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\EoRezo
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C86C605-6081-D104-96F7-F765C20B22F1}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A8955948-E02C-4738-AF22-53CA0F24C90B}_is1
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PlayMP3
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingAdsHelper
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1
HKU\.DEFAULT\Software\EoRezo
HKU\S-1-5-18\Software\EoRezo
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{D4027C7F-154A-4066-A1AD-4243D8127440}
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\post platform|AskTB5.5
HKLM\Software\Microsoft\Internet Explorer\Toolbar|{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Ask.com\TaskScheduler.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\Program Files\Ask.com\UpdateTask.exe
.
.
============== SCAN ADDITIONNEL ==============
.
* Mozilla FireFox Version 3.6.3 (fr) *
.
C:\Users\LEROY\..\esvuhwl3.default\prefs.js - browser.search.defaultenginename: Ask.com
C:\Users\LEROY\..\esvuhwl3.default\prefs.js - browser.search.selectedEngine: Google
C:\Users\LEROY\..\esvuhwl3.default\prefs.js - browser.startup.homepage: hxxp://y.lo.st
C:\Users\LEROY\..\esvuhwl3.default\prefs.js - browser.startup.homepage_override.mstone: rv:1.9.2.3
C:\Users\LEROY\..\esvuhwl3.default\prefs.js - keyword.URL: hxxp://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=NG1V5&o=102196&locale=en_US&q=
.
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("browser.search.defaultengine", "Ask.com");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("browser.search.defaultenginename", "Ask.com");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("browser.search.order.1", "Ask.com");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("browser.startup.homepage", "hxxp://y.lo.st");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.cbid", "JJ");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}&qsrc={qsrc}");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.fresh-install", false);
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.l", "dis");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.last-config-req", "1273496439384");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.locale", "en_US");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.o", "102196");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.qsrc", "2871");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.asktb.r", "3");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("extensions.enabledItems", "toolbar@ask.com:3.5.0.145,firefox@bandoo.com:5.0,{EF522540-89F5-46b9-B6FE-1829E2B572C6}:4.2,{CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}:6.0.06,{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{20a82645-c095-46ed-80e3-08825760534b}:1.2.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.3");
TROUVÉ: C:\Users\LEROY\..\esvuhwl3.default\prefs.js - user_pref("keyword.URL", "hxxp://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=NG1V5&o=102196&locale=en_US&q=");
.
* Internet Explorer Version 8.0.6001.18904 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Do404Search: 0x01000000
Enable Browser Extensions: yes
First Home Page: hxxp://y.lo.st
Local Page: C:\Windows\system32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Show_ToolBar: yes
Start Page: hxxp://y.lo.st
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Delete_Temp_Files_On_Exit: yes
Local Page: C:\Windows\System32\blank.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://www.troner.net/
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: hxxp://y.lo.st
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Ad-Remover\Backup: 0 Fichier(s)
.
C:\Ad-Report-SCAN[1].txt - 10458 Octet(s)
C:\Ad-Report-SCAN[2].txt - 10376 Octet(s)
.
Fin à: 08:00:39, 11/05/2010
.
============== E.O.F - SCAN[2] ==============


A voir également:

2 réponses

Réponse 1 / 2
Tigzy Messages postés 7498 Date d'inscription lundi 15 février 2010 Statut Contributeur sécurité Dernière intervention 15 septembre 2021 582
11 mai 2010 à 08:43
Salut

relance ADremover en mode Nettoyage et poste le rapport ;)
0
Réponse 2 / 2
cdu27
12 mai 2010 à 06:59
Merci Tigzy, j'ai lancé le mode nettoyage et tout a l'air rentré dans l'ordre.
0

Discussions similaires

Dossier apparu ".ms-ad"
Sakura_01 -
brucine -

13 réponses
problème avec ad doubleclick sur android
monnalie -
bazfile -

6 réponses
Supreme Ad by Supreme Adblocker
manolokiki -
Malekal_morte- -

1 réponse