Help analyse fichiers pijoint
Zarkajix
Messages postés
6
Date d'inscription
Statut
Membre
Dernière intervention
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Salut,
Un petit service pour l'analyse des fichiers générés par FRST svp ?
Merci pour ton aide
Addition : https://pjjoint.malekal.com/files.php?id=20160325_u13e9j13l12k12
FRST: https://pjjoint.malekal.com/files.php?id=FRST_20160325_e14d9b9c14x7
Shortcut : https://pjjoint.malekal.com/files.php?id=20160325_z7b14k11g1310
Au cas ou le rapport Adwcleaner :
# AdwCleaner v5.105 - Rapport créé le 25/03/2016 à 20:35:34
# Mis à jour le 21/03/2016 par Xplode
# Base de données : 2016-03-25.2 [Serveur]
# Système d'exploitation : Windows 8.1 Pro (x64)
# Nom d'utilisateur : William - DAEROND
# Exécuté depuis : C:\Users\William\Downloads\adwcleaner_5.105.exe
# Option : Nettoyer
# Support : https://toolslib.net/forum
*
[-] Dossier Supprimé : C:\Program Files (x86)\DriverRestore
[-] Dossier Supprimé : C:\Program Files (x86)\03D40274-1458847696-05BE-9B06-D60700080009
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\Store
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\WTools
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
*
[-] Fichier Supprimé : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Fichier Supprimé : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
*
[-] Clé Supprimée : HKCU\Software\Classes\.bubbledock
[-] Clé Supprimée : HKCU\Software\Classes\bubbledock
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{A9582D7B-F24A-441D-9D26-450D58F3CD17}
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}
[-] Clé Supprimée : HKCU\Software\eSupport.com
[-] Clé Supprimée : HKCU\Software\Microsoft\Tinstalls
[-] Clé Supprimée : HKCU\Software\powerpack
[-] Clé Supprimée : HKCU\Software\Store
[-] Clé Supprimée : HKCU\Software\TeleCharger
[-] Clé Supprimée : HKCU\Software\WTools
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Restore
*
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1402129763&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402211162&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402297492&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402415614&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402503783&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402587991&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402674778&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402687404&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402731940&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402818634&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402903960&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402989999&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403076120&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403160115&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403249872&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403334883&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403421228&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403510919&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403595429&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403681888&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403726931&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403767586&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Supprimé : dgpdioedihjhncjafcpgbbjdpbbkikmi
*
:: Clés "Tracing" supprimées
:: Paramètres Winsock réinitialisés
*
C:\AdwCleaner\AdwCleaner[C1].txt - [7126 octets] - [25/03/2016 20:35:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [7687 octets] - [25/03/2016 19:26:46]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7274 octets] ##########
Un petit service pour l'analyse des fichiers générés par FRST svp ?
Merci pour ton aide
Addition : https://pjjoint.malekal.com/files.php?id=20160325_u13e9j13l12k12
FRST: https://pjjoint.malekal.com/files.php?id=FRST_20160325_e14d9b9c14x7
Shortcut : https://pjjoint.malekal.com/files.php?id=20160325_z7b14k11g1310
Au cas ou le rapport Adwcleaner :
# AdwCleaner v5.105 - Rapport créé le 25/03/2016 à 20:35:34
# Mis à jour le 21/03/2016 par Xplode
# Base de données : 2016-03-25.2 [Serveur]
# Système d'exploitation : Windows 8.1 Pro (x64)
# Nom d'utilisateur : William - DAEROND
# Exécuté depuis : C:\Users\William\Downloads\adwcleaner_5.105.exe
# Option : Nettoyer
# Support : https://toolslib.net/forum
*
-
-
-
- [ Services ] *****
- [ Dossiers ] *****
-
-
-
[-] Dossier Supprimé : C:\Program Files (x86)\DriverRestore
[-] Dossier Supprimé : C:\Program Files (x86)\03D40274-1458847696-05BE-9B06-D60700080009
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\Store
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\WTools
[-] Dossier Supprimé : C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bubble Dock
*
-
-
-
- [ Fichiers ] *****
-
-
-
[-] Fichier Supprimé : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Fichier Supprimé : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
*
-
-
-
- [ DLLs ] *****
- [ Raccourcis ] *****
- [ Tâches planifiées ] *****
- [ Registre ] *****
-
-
-
[-] Clé Supprimée : HKCU\Software\Classes\.bubbledock
[-] Clé Supprimée : HKCU\Software\Classes\bubbledock
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{A9582D7B-F24A-441D-9D26-450D58F3CD17}
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{EE0D8859-2ED4-4B0D-9812-16865B9AFD65}
[-] Clé Supprimée : HKCU\Software\eSupport.com
[-] Clé Supprimée : HKCU\Software\Microsoft\Tinstalls
[-] Clé Supprimée : HKCU\Software\powerpack
[-] Clé Supprimée : HKCU\Software\Store
[-] Clé Supprimée : HKCU\Software\TeleCharger
[-] Clé Supprimée : HKCU\Software\WTools
[-] Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Restore
*
-
-
-
- [ Navigateurs ] *****
-
-
-
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hp&ts=1402129763&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402211162&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402297492&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402415614&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402503783&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402587991&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402674778&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402687404&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402731940&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402818634&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402903960&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1402989999&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403076120&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403160115&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403249872&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403334883&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403421228&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403510919&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403595429&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403681888&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403726931&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Supprimé : hxxp://start.qone8.com/?type=hppp&ts=1403767586&from=smt&uid=WDCXWD5000AAKS-00V1A0_WD-WMAWF053839738397
[-] [C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Supprimé : dgpdioedihjhncjafcpgbbjdpbbkikmi
*
:: Clés "Tracing" supprimées
:: Paramètres Winsock réinitialisés
*
C:\AdwCleaner\AdwCleaner[C1].txt - [7126 octets] - [25/03/2016 20:35:34]
C:\AdwCleaner\AdwCleaner[S1].txt - [7687 octets] - [25/03/2016 19:26:46]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7274 octets] ##########
A voir également:
- Help analyse fichiers pijoint
- Analyse composant pc - Guide
- Analyse performance pc - Guide
- Analyse disque dur - Télécharger - Informations & Diagnostic
- Renommer des fichiers en masse - Guide
- Fichiers epub - Guide
