Sujet Précédent Sujet Suivant

Je veux supprimer eorezo

Fermé
bud - 16 nov. 2009 à 22:32
 dando - 27 nov. 2009 à 23:39
Bonjour,
.
======= LOGFILE OF AD-REMOVER 1.1.4.6_C | ONLY XP/VISTA/7 =======
.
Updated by C_XX on 15.11.2009 at 16:37
Contact: AdRemover.contact@gmail.com
Website: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Launch at: 16:19:10, 2009-11-16 | Normal Boot | Option: SCAN
Executed from: C:\Program Files\Ad-Remover\
Operating system: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Computer Name: NOM-A19C0BDC71A | Current user: HP_Administrateur
.
============== FOUND ELEMENT(S) ==============
.

HKLM\software\EoRezo
HKCU\software\EoRezo
HKCU\software\FBSearch
HKCU\software\SGPUpdater
HKU\s-1-5-21-360427472-3255084983-1607085143-1008\software\EoRezo
HKU\s-1-5-21-360427472-3255084983-1607085143-1008\software\FBSearch
HKU\s-1-5-21-360427472-3255084983-1607085143-1008\software\SGPUpdater
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SoftwareHelper
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SGPUpdater
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\FBSearch
HKCU\software\microsoft\internet explorer\searchscopes\{6D5D42D2-2010-4D09-B5C7-85DD627A6BB1}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKLM\software\microsoft\windows\currentversion\uninstall\Search Guard Plus
HKLM\software\microsoft\windows\currentversion\uninstall\Search Guard Plus Updater
HKLM\software\microsoft\windows\currentversion\uninstall\SoftwareUpdate_is1
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook
HKLM\software\classes\URLSearchHook.ToolbarURLSearchHook.1
HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
HKLM\Software\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
HKLM\Software\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
HKLM\Software\Classes\CLSID\{F0626A63-410B-45E2-99A1-3F2475B2D695}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}
HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}
.
C:\DOCUME~1\HP_ADM~1\APPLIC~1\EoRezo
C:\Program Files\Fast Browser Search
C:\Program Files\Search Guard Plus
C:\Program Files\Search Guard PlusU
C:\Program Files\SGPSA
C:\WINDOWS\Prefetch\ITSTV.EXE-011F165A.pf
C:\WINDOWS\Prefetch\ITSTV.EXE-0BC578A1.pf
C:\WINDOWS\Prefetch\SOFTWAREUPDATEHP.EXE-2BE6D0BE.pf
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@eorezo[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@eorezo[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@eorezo[3].txt
.
============== Added scan ==============
.
.
* Internet Explorer Version 8.0.6001.18702 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Start Page: hxxp://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1255819367&rver=6.0.5285.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1033&id=64855&mkt=en-ca
Search Page: hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_CA&c=63&bd=PAVILION&pf=desktop
Default_Search_URL: hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_CA&c=63&bd=PAVILION&pf=desktop
Start Page Redirect Cache: hxxp://sympatico.msn.ca/defaultf.aspx?lang=fr-ca&OCID=FW69157
Start Page Redirect Cache_TIMESTAMP: NARY ccd1bc44eceec901
Start Page Redirect Cache AcceptLangs: fr-ca
Default_Page_URL: hxxp://www.dailymotion.com/fr
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Search Bar: hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_CA&c=63&bd=PAVILION&pf=desktop
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: hxxp://www.fastbrowsersearch.com/new-tab/?v=19&tid={E5615B36-2E6D-4989-AB13-4F60FC5F392C}
.
============== Suspect (Cracks, Serials, ...) ==============
.
C:\Documents and Settings\HP_Administrateur\Mes documents\Mes fichiers\00741_01Net_TrendMicro_TIS_17.10_fr-FR_dual_T\Setup\Patch\32bit\223\TISPthTl.exe
C:\Documents and Settings\HP_Administrateur\Mes documents\Mes fichiers\00741_01Net_TrendMicro_TIS_17.10_fr-FR_dual_T\Setup\Patch\64bit\223\TISPthTl.exe
.
===================================
.
4951 Byte(s) - C:\Ad-Report-SCAN[1].log
.
977 File(s) - C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp
229 File(s) - C:\WINDOWS\Temp
.
0 File(s) - C:\Program Files\Ad-Remover\BACKUP
0 File(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
End at: 16:28:13 | 2009-11-16 - SCAN[1]
.
============== E.O.F ==============
.
A voir également:

1 réponse

Réponse 1 / 1
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
16 nov. 2009 à 22:33
Bonsoir ;

! Déconnectes toi et fermes toutes applications en cours !

? Relances "Ad-remover" : au menu principal choisi l'option "L" .

? Puis choisi "S" , le programme va travailler,

? Postes le rapport qui apparait à la fin.

( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

/!\ Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides)

0
dando
27 nov. 2009 à 23:39
Bonsoir,

J'ai lu ton message. Ci-joint le rapport.
Merci de me donner des instructions précises pour supprimer ces logiciels !!!
Dando
RAPPORT D'AD-REMOVER 1.1.4.6_D | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 27.11.2009 à 22:12
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 23:29:48, 27/11/2009 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows Vista™ Home Premium Service Pack 2 v6.0.6002
Nom du PC: PC-DE-LUD | Utilisateur actuel: lud
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
C:\ProgramData\Kiwee Toolbar
C:\ProgramData\Trymedia
C:\Users\lud\AppData\Roaming\Agi
C:\Users\lud\AppData\Roaming\EoRezo
C:\Users\lud\AppData\Local\Kiwee Toolbar
C:\Users\lud\AppData\LocalLow\Kiwee Toolbar
C:\Program Files\EoRezo
C:\Program Files\Kiwee Toolbar
C:\ProgramData\agi
C:\Windows\Prefetch\ITSTV.EXE-430E991B.pf
C:\Windows\Prefetch\ITSTV.EXE-898030B0.pf
C:\Windows\Prefetch\ITSTV.EXE-B62B69F1.pf
C:\Windows\Prefetch\ITSTV.EXE-FC9D0186.pf
C:\Windows\Prefetch\SOFTWAREUPDATEHP.EXE-4EADA36A.pf
C:\Users\lud\AppData\Roaming\MICROS~1\Windows\Cookies\lud@eorezo[2].txt
.
HKCU\software\AGI
HKCU\software\EoRezo
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
HKLM\software\AGI
HKLM\software\classes\appid\{362A53B2-2913-4F8A-82F5-7E0A23FDC6F9}
HKLM\software\classes\appid\EoRezoBHO.DLL
HKLM\Software\Classes\CLSID\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\software\classes\EoRezoBHO.EoBHO
HKLM\software\classes\EoRezoBHO.EoBHO.1
HKLM\Software\Classes\Interface\{819DB72D-1C28-4387-9778-E2FF3DC86F74}
HKLM\software\classes\KiweeIEToolbar.KiweeToolbar
HKLM\software\classes\KiweeIEToolbar.KiweeToolbar.1
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo
HKLM\software\classes\KiweeIEToolbar.ToolbarInfo.1
HKLM\Software\Classes\TypeLib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}
HKLM\software\EoRezo
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\EoEngine
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\SoftwareHelper
HKLM\software\microsoft\windows\currentversion\uninstall\{23A287DB-449A-462F-BDE1-8635A61671CE}
HKLM\software\microsoft\windows\currentversion\uninstall\eoEngine_is1
HKLM\software\microsoft\windows\currentversion\uninstall\SoftwareUpdate_is1
HKLM\Software\Mozilla\Firefox\Extensions\\toolbar@kiwee.com
HKLM\software\Trymedia Systems
HKU\s-1-5-21-3267667366-1509008226-2919741856-1003\software\AGI
HKU\s-1-5-21-3267667366-1509008226-2919741856-1003\software\EoRezo
.
============== Scan additionnel ==============
.
.
* Internet Explorer Version 8.0.6001.18828 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: hxxp://www.google.fr/
Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Start Page Redirect Cache: hxxp://fr.msn.com/?ocid=iehp
Start Page Redirect Cache_TIMESTAMP: NARY a9c7f1dd9f60ca01
Start Page Redirect Cache AcceptLangs: fr
First Home Page: hxxp://y.lo.st
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
Default_Page_URL: http:\\www.samsungcomputer.com
Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
3680 Octet(s) - C:\Ad-Report-SCAN[1].log
.
68 Fichier(s) - C:\Users\lud\AppData\Local\Temp
70 Fichier(s) - C:\Windows\Temp
.
1 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 23:33:59 | 27/11/2009 - SCAN[1]
.
============== E.O.F ==============
.
0

Discussions similaires

Comment supprimer un compte Facebook sans email ni mot de passe ?
Joris77 -
Mahmoud96 -

23 réponses