Publicité
Publicité
Commentaire : Rapport adwcleaner
Format du document : text/plain
Prévisualisation
# AdwCleaner v5.037 - Rapport créé le 06/03/2016 à 00:54:44
# Mis à jour le 28/02/2016 par Xplode
# Base de données : 2016-03-02.1 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : Marie - MARIE-PC
# Exécuté depuis : C:\Users\Marie\Downloads\adwcleaner_5.037.exe
# Option : Nettoyer
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Dossiers ] *****
[-] Dossier Supprimé : C:\Program Files (x86)\ScreenSnapshotTool
[-] Dossier Supprimé : C:\Program Files (x86)\Common Files\ParetoLogic
[-] Dossier Supprimé : C:\ProgramData\ParetoLogic
[-] Dossier Supprimé : C:\ProgramData\Partner
[-] Dossier Supprimé : C:\ProgramData\5d27881c
[-] Dossier Supprimé : C:\ProgramData\6e775754-0a75-0
[-] Dossier Supprimé : C:\ProgramData\6e775754-11c5-1
[-] Dossier Supprimé : C:\ProgramData\72438e25-1017-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-2613-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-6655-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-6e37-0
[-] Dossier Supprimé : C:\ProgramData\{0bedefc1-212c-0}
[-] Dossier Supprimé : C:\ProgramData\{17dc74b8-012c-1}
[-] Dossier Supprimé : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Extensions\ljibkigjccbegnbeojkoafejpoiachej
[-] Dossier Supprimé : C:\Users\Marie\AppData\Roaming\DriverCure
[-] Dossier Supprimé : C:\Users\Marie\AppData\Roaming\ParetoLogic
[-] Dossier Supprimé : C:\Users\Public\Documents\Guid
***** [ Fichiers ] *****
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\chrome-extension_ljibkigjccbegnbeojkoafejpoiachej_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_malwarebytes-anti-malware.fr.softonic.com_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_malwarebytes-anti-malware.fr.softonic.com_0.localstorage-journal
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nps.pastaleads.com_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nps.pastaleads.com_0.localstorage-journal
[-] Fichier Supprimé : C:\Windows\SysNative\roboot64.exe
***** [ DLLs ] *****
***** [ Raccourcis ] *****
***** [ Tâches planifiées ] *****
[-] Tâche Supprimée : paretologic registration3
[-] Tâche Supprimée : paretologic update version3
[-] Tâche Supprimée : ParetoLogic Update Version3 Startup Task
[-] Tâche Supprimée : {767002F4-69FD-D796-258E-43721052C16A}
***** [ Registre ] *****
[-] Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5d27881c}
[-] Clé Supprimée : HKCU\Software\ParetoLogic
[-] Clé Supprimée : HKCU\Software\TeleCharger
[-] Clé Supprimée : HKLM\SOFTWARE\ParetoLogic
[!] Clé Non Supprimée : HKU\S-1-5-21-2626809997-1444342033-3510588473-1001\Software\ParetoLogic
[!] Clé Non Supprimée : HKU\S-1-5-21-2626809997-1444342033-3510588473-1001\Software\TeleCharger
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
***** [ Navigateurs ] *****
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Supprimé : search.iminent.com
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.palikan.com/?f=7&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://search.conduit.com/?ctid=CT3319415&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP17BABD39-A389-42A4-8CC9-3914DCCE792E&SSPV=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.mysearchdial.com/?f=1&a=dsites0103&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0SyByDyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1977552985&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://search.iminent.com/?appId=7348E872-6012-473B-B8B4-EB0FAD675C67
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1393343513&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.mysearchdial.com/?f=1&a=aw0202ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0SyBzzyBtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=769326520&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1395591751&from=smt&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1395592005&from=smt&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1406116919&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1406481160&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_tele_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1269585771&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_dsites_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1961027730&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_tele_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1230320116&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1416342534&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_wnzp01_14_47_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDyDtAtN1L2XzutAtFyCtFtBtFtDtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyEzzzzzy0E0CyE0BtGzy0D0DzytGyByDtB0DtGtCzyyCtAtGtD0F0FtB0B0BtCtB0Czyzz0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCzzzyzyzz0FyEtCtGyEyDtBtBtGyEtDzytBtGzyyB0C0FtG0EyE0Azz0AyC0AtDtB0D0DyC2Q&cr=2081324248&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.delta-homes.com/?type=hp&ts=1418206354&from=wpm12103&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://vosteran.com/?f=7&a=vst_ggfc_15_05_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtCtBtCtN1L2XzutAtFyBtFtBtFtAtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyC0ByEyD0E0AyDtG0A0FtDyCtG0FtA0DtCtGtCtByCzytGyD0F0DyCtC0FzytA0CzztB0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCzzzyzyzz0FyEtCtGyEyDtBtBtGyEtDzytBtGzyyB0C0FtG0EyE0Azz0AyC0AtDtB0D0DyC2Q&cr=1730043384&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Supprimé : ombmmloebnfnpehgjnmkcgoegfachobp
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.palikan.com/?f=7&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=&uref=chmm
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Extension] Supprimé : ljibkigjccbegnbeojkoafejpoiachej
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Homepage] Supprimé : hxxp://www.palikan.com/?f=1&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=&uref=chmm
*************************
:: Clés "Tracing" supprimées
:: Paramètres Winsock réinitialisés
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [12303 octets] - [06/03/2016 00:54:44]
C:\AdwCleaner\AdwCleaner[S1] rapport.txt - [12430 octets] - [06/03/2016 00:54:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [12427 octets] - [06/03/2016 00:49:21]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [12536 octets] ##########
# AdwCleaner v5.112 - Logfile created 19/04/2016 at 13:57:46
# Updated 17/04/2016 by Xplode
# Database : 2016-04-17.1 [Local]
# Operating system : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Marie - MARIE-PC
# Running from : G:\adwcleaner_5.112.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\hxxps_d16fk4ms6rqz1v.cloudfront.net_0.localstorage
[-] File Deleted : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\hxxps_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\s
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\uus3url-pl
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [13924 bytes] - [06/03/2016 01:54:44]
C:\AdwCleaner\AdwCleaner[S1] rapport.txt - [12430 bytes] - [06/03/2016 01:54:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [13913 bytes] - [06/03/2016 01:49:21]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [14154 bytes] ##########
# Mis à jour le 28/02/2016 par Xplode
# Base de données : 2016-03-02.1 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : Marie - MARIE-PC
# Exécuté depuis : C:\Users\Marie\Downloads\adwcleaner_5.037.exe
# Option : Nettoyer
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Dossiers ] *****
[-] Dossier Supprimé : C:\Program Files (x86)\ScreenSnapshotTool
[-] Dossier Supprimé : C:\Program Files (x86)\Common Files\ParetoLogic
[-] Dossier Supprimé : C:\ProgramData\ParetoLogic
[-] Dossier Supprimé : C:\ProgramData\Partner
[-] Dossier Supprimé : C:\ProgramData\5d27881c
[-] Dossier Supprimé : C:\ProgramData\6e775754-0a75-0
[-] Dossier Supprimé : C:\ProgramData\6e775754-11c5-1
[-] Dossier Supprimé : C:\ProgramData\72438e25-1017-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-2613-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-6655-0
[-] Dossier Supprimé : C:\ProgramData\72438e25-6e37-0
[-] Dossier Supprimé : C:\ProgramData\{0bedefc1-212c-0}
[-] Dossier Supprimé : C:\ProgramData\{17dc74b8-012c-1}
[-] Dossier Supprimé : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Extensions\ljibkigjccbegnbeojkoafejpoiachej
[-] Dossier Supprimé : C:\Users\Marie\AppData\Roaming\DriverCure
[-] Dossier Supprimé : C:\Users\Marie\AppData\Roaming\ParetoLogic
[-] Dossier Supprimé : C:\Users\Public\Documents\Guid
***** [ Fichiers ] *****
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\chrome-extension_ljibkigjccbegnbeojkoafejpoiachej_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_malwarebytes-anti-malware.fr.softonic.com_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_malwarebytes-anti-malware.fr.softonic.com_0.localstorage-journal
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nps.pastaleads.com_0.localstorage
[-] Fichier Supprimé : C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_nps.pastaleads.com_0.localstorage-journal
[-] Fichier Supprimé : C:\Windows\SysNative\roboot64.exe
***** [ DLLs ] *****
***** [ Raccourcis ] *****
***** [ Tâches planifiées ] *****
[-] Tâche Supprimée : paretologic registration3
[-] Tâche Supprimée : paretologic update version3
[-] Tâche Supprimée : ParetoLogic Update Version3 Startup Task
[-] Tâche Supprimée : {767002F4-69FD-D796-258E-43721052C16A}
***** [ Registre ] *****
[-] Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5d27881c}
[-] Clé Supprimée : HKCU\Software\ParetoLogic
[-] Clé Supprimée : HKCU\Software\TeleCharger
[-] Clé Supprimée : HKLM\SOFTWARE\ParetoLogic
[!] Clé Non Supprimée : HKU\S-1-5-21-2626809997-1444342033-3510588473-1001\Software\ParetoLogic
[!] Clé Non Supprimée : HKU\S-1-5-21-2626809997-1444342033-3510588473-1001\Software\TeleCharger
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{4B47BC51-F2AD-41D9-A8B4-53FDD82F2732} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{5B4D8F70-D7B1-437A-B3C2-232285A3968A} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{65B91382-3632-404F-A318-E9120FF7BF96} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{83E97819-4BF5-4C8E-A89A-95CAB48E6362} [NameServer]
[-] Donnée Restaurée : HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{9069D11B-7B09-44E5-9A66-205BCE2B229F} [NameServer]
***** [ Navigateurs ] *****
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Supprimé : search.iminent.com
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.palikan.com/?f=7&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://search.conduit.com/?ctid=CT3319415&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP17BABD39-A389-42A4-8CC9-3914DCCE792E&SSPV=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.mysearchdial.com/?f=1&a=dsites0103&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0SyByDyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1977552985&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://search.iminent.com/?appId=7348E872-6012-473B-B8B4-EB0FAD675C67
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1393343513&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.mysearchdial.com/?f=1&a=aw0202ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0SyBzzyBtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=769326520&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1395591751&from=smt&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1395592005&from=smt&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1406116919&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1406481160&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_tele_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1269585771&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_dsites_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1961027730&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_tele_14_39_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDtDtDtN1L2XzutAtFtBtFtCtFyCtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyBzztAyE0AtDzztBtGtB0F0CyDtGzytA0DyCtG0FtBtCyDtGtB0ByDyByB0CtBtD0B0ByB0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0AzyyCyD0BzyyDzztG0A0EyB0EtGyE0C0CtCtG0Bzz0FzztG0EyB0FtCtA0CyDyBtD0C0F0A2Q&cr=1230320116&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.sweet-page.com/?type=hp&ts=1416342534&from=cor&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://astromenda.com/?f=7&a=ast_wnzp01_14_47_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtDyDtAtN1L2XzutAtFyCtFtBtFtDtN1L1CzutCyEtBzytDyD1V1QtN1L1G1B1V1N2Y1L1Qzu2SyEzzzzzy0E0CyE0BtGzy0D0DzytGyByDtB0DtGtCzyyCtAtGtD0F0FtB0B0BtCtB0Czyzz0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCzzzyzyzz0FyEtCtGyEyDtBtBtGyEtDzytBtGzyyB0C0FtG0EyE0Azz0AyC0AtDtB0D0DyC2Q&cr=2081324248&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.delta-homes.com/?type=hp&ts=1418206354&from=wpm12103&uid=SAMSUNGXHN-M750MBB_S2R9J9HB802420
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://vosteran.com/?f=7&a=vst_ggfc_15_05_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCtCtBtCtN1L2XzutAtFyBtFtBtFtAtN1L1CzutCyEtBzytDyD1V1ByEtN1L1G1B1V1N2Y1L1Qzu2SyDyC0ByEyD0E0AyDtG0A0FtDyCtG0FtA0DtCtGtCtByCzytGyD0F0DyCtC0FzytA0CzztB0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCzzzyzyzz0FyEtCtGyEyDtBtBtGyEtDzytBtGzyyB0C0FtG0EyE0Azz0AyC0AtDtB0D0DyC2Q&cr=1730043384&ir=
[-] [C:\Users\Marie\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Supprimé : ombmmloebnfnpehgjnmkcgoegfachobp
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://www.palikan.com/?f=7&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=&uref=chmm
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Extension] Supprimé : ljibkigjccbegnbeojkoafejpoiachej
[-] [C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Secure Preferences] [Homepage] Supprimé : hxxp://www.palikan.com/?f=1&a=plk_tchfld_15_53&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByDzyyCtD0A0AtB0EtCtBtN0D0Tzu0StCyEyCtDtN1L2XzutAtFtCyDtFtAtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEzy0Czz0DyDyEtBtGtC0BtB0CtGtDyC0AzztGyD0D0DtAtGzzzzyCyDyD0E0A0AzzyEtDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCtB0EyD0DyDzytBtGzyyBtCtBtGyEyDyD0CtGzz0B0F0FtG0B0D0DzyyEtAzztCyByBzyzy2QtN0A0LzuyE&cr=469908346&ir=&uref=chmm
*************************
:: Clés "Tracing" supprimées
:: Paramètres Winsock réinitialisés
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [12303 octets] - [06/03/2016 00:54:44]
C:\AdwCleaner\AdwCleaner[S1] rapport.txt - [12430 octets] - [06/03/2016 00:54:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [12427 octets] - [06/03/2016 00:49:21]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [12536 octets] ##########
# AdwCleaner v5.112 - Logfile created 19/04/2016 at 13:57:46
# Updated 17/04/2016 by Xplode
# Database : 2016-04-17.1 [Local]
# Operating system : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Marie - MARIE-PC
# Running from : G:\adwcleaner_5.112.exe
# Option : Clean
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
[-] File Deleted : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\hxxps_d16fk4ms6rqz1v.cloudfront.net_0.localstorage
[-] File Deleted : C:\Users\Marie\AppData\Local\Chromium\User Data\Default\Local Storage\hxxps_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Classes\s
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\uus3url-pl
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [13924 bytes] - [06/03/2016 01:54:44]
C:\AdwCleaner\AdwCleaner[S1] rapport.txt - [12430 bytes] - [06/03/2016 01:54:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [13913 bytes] - [06/03/2016 01:49:21]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [14154 bytes] ##########