# AdwCleaner v6.046 - Rapport créé le 11/05/2017 à 08:47:06
# Mis à jour le 24/04/2017 par Malwarebytes
# Base de données : 2017-05-08.1 [Locale]
# Système d'exploitation : Windows 10 Home  (X64)
# Nom d'utilisateur : pro - SYLVAIN
# Exécuté depuis : C:\Users\pro\Desktop\adwcleaner_6.046.exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

Aucun service malveillant trouvé.


***** [ Dossiers ] *****

Dossier trouvé:  C:\ProgramData\157f284c
Dossier trouvé:  C:\ProgramData\24f7e318-2195-1
Dossier trouvé:  C:\ProgramData\24f7e318-4743-0
Dossier trouvé:  C:\ProgramData\7775cdac-36a3-1
Dossier trouvé:  C:\ProgramData\7775cdac-49f7-0
Dossier trouvé:  C:\ProgramData\7775cdac-6715-0
Dossier trouvé:  C:\ProgramData\{471e0fc5-312c-1}
Dossier trouvé:  C:\ProgramData\{5bdf3a39-212c-1}
Dossier trouvé:  C:\ProgramData\{5be02f3a-712c-0}
Dossier trouvé:  C:\Users\pro\AppData\Roaming\cacaoweb
Dossier trouvé:  C:\Users\pro\AppData\Roaming\SafetyBrowsing
Dossier trouvé:  C:\Users\pro\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
Dossier trouvé:  C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Cleaner llc
Dossier trouvé:  C:\Program Files (x86)\Security Cleaner llc


***** [ Fichiers ] *****

Fichier trouvé:  C:\WINDOWS\Reimage.ini


***** [ DLL ] *****

Aucune DLL patchée trouvée.


***** [ WMI ] *****

Aucune clé malveillante trouvée.


***** [ Raccourcis ] *****

Aucun raccourci infecté trouvé.


***** [ Tâches planifiées ] *****

Aucune tâche malveillante trouvée.


***** [ Registre ] *****

Clé trouvée:  HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SafetyBrowsingService
Clé trouvée:  [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SafetyBrowsingService
Clé trouvée:  HKLM\SOFTWARE\Classes\protector_dll.Protector
Clé trouvée:  HKLM\SOFTWARE\Classes\protector_dll.Protector.1
Clé trouvée:  HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
Clé trouvée:  HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
Clé trouvée:  [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector
Clé trouvée:  [x64] HKLM\SOFTWARE\Classes\protector_dll.Protector.1
Clé trouvée:  [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
Clé trouvée:  [x64] HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
Clé trouvée:  HKU\.DEFAULT\Software\ByteFence
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\cacaoweb
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\CoinisRevShare
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\PRODUCTSETUP
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Safety Browsing
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\csastats
Clé trouvée:  HKU\S-1-5-18\Software\ByteFence
Clé trouvée:  HKCU\Software\cacaoweb
Clé trouvée:  HKCU\Software\CoinisRevShare
Clé trouvée:  HKCU\Software\PRODUCTSETUP
Clé trouvée:  HKCU\Software\Safety Browsing
Clé trouvée:  HKCU\Software\csastats
Clé trouvée:  [x64] HKCU\Software\cacaoweb
Clé trouvée:  [x64] HKCU\Software\CoinisRevShare
Clé trouvée:  [x64] HKCU\Software\PRODUCTSETUP
Clé trouvée:  [x64] HKCU\Software\Safety Browsing
Clé trouvée:  [x64] HKCU\Software\csastats
Clé trouvée:  [x64] HKLM\SOFTWARE\Safety Browsing
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Safety Browsing
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Security Cleaner llc System Optimizer
Donnée trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://fr-recherche.com/?q=
Donnée trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://fr-recherche.com/?q=
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Donnée trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45}
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Clé trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Internet Explorer\SearchScopes\{DEDDEE94-6A63-4F71-82D9-96B379CB641B}
Clé trouvée:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Donnée trouvée:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Clé trouvée:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45}
Clé trouvée:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Clé trouvée:  HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DEDDEE94-6A63-4F71-82D9-96B379CB641B}
Clé trouvée:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Donnée trouvée:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Clé trouvée:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45}
Clé trouvée:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Clé trouvée:  [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{DEDDEE94-6A63-4F71-82D9-96B379CB641B}
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2f23ab71-4ac6-41f2-a955-ea576e553146}
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6586d803-df30-46d3-a89a-4136c8571d45}
Clé trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Donnée trouvée:  [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] - 
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cmptch.com
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\static.cmptch.com
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\utop.it
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cmptch.com
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\static.cmptch.com
Clé trouvée:  HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\utop.it
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cmptch.com
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\static.cmptch.c
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\utop.it
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cmptch.com
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\static.cmptch.com
Clé trouvée:  [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\utop.it
Valeur trouvée:  HKU\S-1-5-21-1817580383-1317029755-1127610557-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [cacaoweb]
Clé trouvée:  HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E


***** [ Navigateurs web ] *****

Aucune préférence Firefox malveillante trouvée.
Aucune préférence Chromium malveillante trouvée.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [13391 octets] - [09/05/2017 20:19:04]
C:\AdwCleaner\AdwCleaner[C2].txt - [1224 octets] - [10/05/2017 14:09:30]
C:\AdwCleaner\AdwCleaner[C3].txt - [1715 octets] - [10/05/2017 14:45:41]
C:\AdwCleaner\AdwCleaner[S0].txt - [12761 octets] - [09/05/2017 20:16:31]
C:\AdwCleaner\AdwCleaner[S1].txt - [1414 octets] - [10/05/2017 14:09:15]
C:\AdwCleaner\AdwCleaner[S2].txt - [1562 octets] - [10/05/2017 14:43:02]
C:\AdwCleaner\AdwCleaner[S3].txt - [9685 octets] - [11/05/2017 08:47:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [9759 octets] ##########