Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 08-06-2021
Exécuté par nunuche (administrateur) sur BRUCE (MSI MS-7895) (09-06-2021 11:22:29)
Exécuté depuis C:\Users\nunuche\Desktop
Profils chargés: nunuche
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\AOMEI Backupper\6.5.1\ABService.exe
(Ivaylo Beltchev -> IvoSoft) [Fichier non signé] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
==================== Registre (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Fichier non signé]
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation -> NVIDIA Corporation)
HKU\S-1-5-21-3137422517-1548693181-341252407-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [1972088 2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3137422517-1548693181-341252407-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [809472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== Tâches planifiées (Avec liste blanche) ============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {3408CEB1-D804-40EC-858F-D587DDEEC397} - System32\Tasks\TR_Updater => C:\Program Files (x86)\Trojan Remover\Trupd.exe [6480784 2020-10-05] (Simply Super Software -> Simply Super Software)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {47232C07-38FE-4D3F-9686-D59C49358364} - System32\Tasks\TR_FastScan_Daily_nunuche => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software)
Task: {55783856-8763-4436-99D9-28F08CEDF4BF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2831232 2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {65938B4E-9896-4E14-8D8C-C614F22419C2} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [636856 2021-06-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6EF88742-D9ED-40FE-A5E2-FD2C32DC6D2C} - System32\Tasks\TR_AntiHijack => C:\Program Files (x86)\Trojan Remover\TRAntiHJ.exe
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {BE565C3C-B52D-41EC-94BD-96EFA3628F1A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {C8ABC884-48D0-4BE9-B714-D40750F5E239} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {E5022F6C-DC72-4E7C-95A3-EC560828C3A4} - System32\Tasks\TR_FastScan_AtLogon => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [6499736 2021-02-27] (Simply Super Software -> Simply Super Software)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.0 www.aomeitech.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1A0582DB-51B5-40A9-B9B5-414100884B51}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{90B6D4DD-B05A-499B-92BD-F51F277DD4B9}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nunuche\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-09]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\nunuche\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-05-14]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: qy9w86su.default
FF ProfilePath: C:\Users\nunuche\AppData\Roaming\Mozilla\Firefox\Profiles\qy9w86su.default [2020-05-26]
FF ProfilePath: C:\Users\nunuche\AppData\Roaming\Mozilla\Firefox\Profiles\ltmywrx8.default-release-1622801404406 [2021-06-09]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\nunuche\AppData\Roaming\Mozilla\Firefox\Profiles\ltmywrx8.default-release-1622801404406\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-06-08]
FF HKU\S-1-5-21-3137422517-1548693181-341252407-1001\...\Firefox\Extensions: [{31C8B8A4-6712-4A47-B378-2BE78B8EE9E1}] - C:\Program Files (x86)\Bigasoft\Video Downloader Pro\extensions\3.22.4.7420\BVDFirefoxExt
FF Extension: (Bigasoft Video Downloader Pro) - C:\Program Files (x86)\Bigasoft\Video Downloader Pro\extensions\3.22.4.7420\BVDFirefoxExt [2021-04-19] [] [non signé]
FF HKU\S-1-5-21-3137422517-1548693181-341252407-1001\...\Firefox\Extensions: [{6EBED4D8-13D9-4270-8D44-B57DDB7A787C}] - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.23.5.7787\BVDFirefoxExt
FF Extension: (Allavsoft Video Downloader Firefox Extension) - C:\Program Files (x86)\Allavsoft\Video Downloader Converter\extensions\3.23.5.7787\BVDFirefoxExt [2021-05-01] []
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\AOMEI Backupper\6.5.1\ABService.exe [1024448 2021-05-14] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.083.0425.0003\FileSyncHelper.exe [2101120 2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-30] (Malwarebytes Inc -> Malwarebytes)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.083.0425.0003\OneDriveUpdaterService.exe [2565504 2021-05-30] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe [2644760 2021-06-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe [136656 2021-06-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [32176 2021-06-08] (AOMEI International Network Limited -> )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [26760 2020-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R0 EPMVolFl; C:\WINDOWS\System32\drivers\EPMVolFl.sys [21128 2020-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> Windows (R) Codename Longhorn DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-05-30] (Malwarebytes Inc -> Malwarebytes)
R0 EUDCPEPM; C:\WINDOWS\System32\drivers\EUDCPEPM.sys [75912 2020-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
R1 EUEDKEPM; C:\WINDOWS\System32\drivers\EUEDKEPM.sys [24200 2020-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [14472 2020-04-16] (CHENGDU YIWO Tech Development Co., Ltd. -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-06-08] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-06-08] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-06-08] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-30] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-06-08] (Malwarebytes Inc -> Malwarebytes)
S3 MpKsl192e6483; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9774130F-B5FD-43B0-8D95-38042E779DE1}\MpKslDrv.sys [107744 2021-06-08] (Microsoft Windows -> Microsoft Corporation)
S3 Revoflt; C:\WINDOWS\System32\DRIVERS\revoflt.sys [38400 2020-10-14] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-06-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [425208 2021-06-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-06-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois (créés) (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-09 11:22 - 2021-06-09 11:31 - 000013658 _____ C:\Users\nunuche\Desktop\FRST.txt
2021-06-09 10:59 - 2021-06-09 10:59 - 000033257 _____ C:\Users\nunuche\Desktop\ZHPCleaner (R).txt
2021-06-09 10:55 - 2021-06-09 10:55 - 000000000 ____D C:\Users\nunuche\AppData\LocalLow\IGDump
2021-06-09 10:41 - 2021-06-09 10:41 - 000032847 _____ C:\Users\nunuche\Desktop\ZHPCleaner (S).txt
2021-06-09 09:45 - 2021-06-09 09:45 - 000000884 _____ C:\Users\nunuche\Desktop\ZHPCleaner.lnk
2021-06-09 09:40 - 2021-06-09 09:40 - 003256472 _____ (Nicolas Coolman) C:\Users\nunuche\Downloads\ZHPCleaner.exe
2021-06-09 01:19 - 2021-06-09 01:19 - 000000000 ____D C:\Users\nunuche\Desktop\FRST-OlderVersion
2021-06-09 01:16 - 2021-06-09 11:28 - 000000000 ____D C:\FRST
2021-06-09 01:04 - 2021-06-09 11:15 - 000246683 _____ C:\Users\nunuche\Desktop\ZHPDiag.txt
2021-06-09 00:39 - 2021-06-09 11:15 - 000000000 ____D C:\Users\nunuche\AppData\Roaming\ZHP
2021-06-09 00:39 - 2021-06-09 09:45 - 000000000 ____D C:\Users\nunuche\AppData\Local\ZHP
2021-06-09 00:39 - 2021-06-09 00:39 - 000000874 _____ C:\Users\nunuche\Desktop\ZHPSuite.lnk
2021-06-09 00:37 - 2021-06-09 01:19 - 002300416 _____ (Farbar) C:\Users\nunuche\Desktop\FRST64.exe
2021-06-09 00:31 - 2021-06-09 00:31 - 003471512 _____ (Nicolas Coolman) C:\Users\nunuche\Desktop\ZHPSuite.exe
2021-06-08 16:32 - 2021-06-08 16:32 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-06-08 16:31 - 2021-06-08 16:35 - 000955868 _____ C:\WINDOWS\Minidump\060821-30265-01.dmp
2021-06-08 16:31 - 2021-06-08 16:31 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-06-08 16:31 - 2021-06-08 16:31 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-06-08 16:31 - 2021-06-08 16:31 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-06-08 16:30 - 2021-06-08 16:30 - 851688626 _____ C:\WINDOWS\MEMORY.DMP
2021-06-08 15:30 - 2021-06-08 15:31 - 000032176 _____ C:\WINDOWS\system32\amwrtdrv.sys
2021-06-08 15:29 - 2019-05-14 11:28 - 000051120 _____ C:\WINDOWS\system32\ambakdrv.sys
2021-06-08 15:29 - 2016-12-21 22:52 - 000171952 _____ C:\WINDOWS\system32\ammntdrv.sys
2021-06-08 15:01 - 2021-06-08 15:01 - 000000146 _____ C:\Users\nunuche\Desktop\Nouveau raccourci Internet.url
2021-06-07 00:55 - 2021-06-07 01:20 - 000000000 _____ C:\Recovery.txt
2021-06-05 21:31 - 2021-06-05 21:31 - 000001107 _____ C:\Users\Public\Desktop\MozBackup.lnk
2021-06-05 21:31 - 2021-06-05 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2021-06-05 21:31 - 2021-06-05 21:31 - 000000000 ____D C:\Program Files (x86)\MozBackup
2021-06-05 18:46 - 2021-06-05 18:47 - 000000129 _____ C:\Users\nunuche\Desktop\gmail.url
2021-06-04 09:31 - 2021-06-04 09:31 - 000054063 _____ C:\Users\nunuche\Downloads\RE_54452512.pdf
2021-06-02 21:57 - 2021-06-02 21:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-06-02 20:36 - 2021-06-06 17:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-05-30 10:39 - 2020-06-01 19:15 - 026046022 _____ C:\Users\nunuche\Desktop\Seemann, deine Heimat ist das Meer.mp4
2021-05-30 10:19 - 2021-05-30 10:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-30 10:19 - 2021-05-30 09:36 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-30 10:19 - 2021-05-30 09:35 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-05-25 12:28 - 2021-05-25 12:28 - 000006812 _____ C:\Users\nunuche\Downloads\Information.eml
2021-05-23 12:13 - 2019-08-16 10:57 - 009330152 _____ C:\Users\nunuche\Desktop\Red River Valley (Instrumental).mp4
2021-05-20 16:19 - 2021-05-20 16:19 - 000004150 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_Daily_nunuche
2021-05-20 16:19 - 2021-05-20 16:19 - 000004004 _____ C:\WINDOWS\system32\Tasks\TR_FastScan_AtLogon
2021-05-20 16:19 - 2021-05-20 16:19 - 000003950 _____ C:\WINDOWS\system32\Tasks\TR_Updater
2021-05-20 16:19 - 2021-05-20 16:19 - 000003786 _____ C:\WINDOWS\system32\Tasks\TR_AntiHijack
2021-05-20 16:19 - 2021-05-20 16:19 - 000001287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover.lnk
2021-05-20 16:19 - 2021-05-20 16:19 - 000001230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover Updater.lnk
2021-05-20 16:19 - 2021-05-20 16:19 - 000001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Trojan Remover FastScan.lnk
2021-05-20 16:19 - 2021-05-20 16:19 - 000000000 ____D C:\ProgramData\Simply Super Software
2021-05-20 16:19 - 2021-05-20 16:19 - 000000000 ____D C:\Program Files (x86)\Trojan Remover
2021-05-20 16:13 - 2021-05-20 16:15 - 014321120 _____ (Simply Super Software ) C:\Users\nunuche\Downloads\trjsetup695.exe
2021-05-20 11:55 - 2020-09-22 17:06 - 010420806 _____ C:\Users\nunuche\Desktop\monia trompette.MP4
2021-05-20 11:43 - 2020-09-22 16:43 - 030991134 _____ C:\Users\nunuche\Desktop\la reve.MP4
2021-05-17 23:27 - 2021-04-29 13:21 - 201983147 _____ C:\Users\nunuche\Desktop\The Sound Of Silence by Wuauquikuna Panflute Toyos.mp4
2021-05-17 16:01 - 2021-05-17 16:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-05-16 16:50 - 2021-05-30 21:06 - 000003206 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-05-16 16:50 - 2021-05-30 21:05 - 000002223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-16 16:50 - 2021-05-16 16:50 - 000000000 ___RD C:\Users\Default\OneDrive
2021-05-16 16:49 - 2021-06-06 17:18 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-05-16 16:44 - 2021-05-16 16:44 - 000001081 _____ C:\Users\nunuche\nunuche - Raccourci.lnk
2021-05-15 16:58 - 2021-05-15 16:58 - 000151278 _____ C:\Users\nunuche\Desktop\fond ecran.jpeg
2021-05-14 21:50 - 2021-05-14 21:50 - 000000000 ____D C:\Users\nunuche\Desktop\marque pages
2021-05-14 11:48 - 2021-05-14 11:48 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-14 11:48 - 2021-05-14 11:48 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-14 11:48 - 2021-05-14 11:48 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-14 11:47 - 2021-05-14 11:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-14 11:47 - 2021-05-14 11:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-14 11:47 - 2021-05-14 11:47 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-14 11:47 - 2021-05-14 11:47 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-14 11:47 - 2021-05-14 11:47 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 11:46 - 2021-05-14 11:46 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-14 11:46 - 2021-05-14 11:46 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-14 11:46 - 2021-05-14 11:46 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-14 11:46 - 2021-05-14 11:46 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-14 11:45 - 2021-05-14 11:45 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-14 11:44 - 2021-05-14 11:44 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 16:48 - 2016-11-14 11:45 - 000615992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2021-05-13 16:45 - 2016-12-09 11:58 - 017722448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 014634024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 014046888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 013957376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 011378672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 011315752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-05-13 16:45 - 2016-12-09 11:58 - 002856736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-05-13 16:45 - 2016-12-09 11:46 - 031532728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2021-05-13 16:45 - 2016-12-09 11:45 - 024217784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2021-05-13 16:45 - 2016-12-09 11:45 - 000960576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-05-13 16:45 - 2016-12-09 11:45 - 000923200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-05-13 16:45 - 2016-12-09 11:38 - 004262584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-05-13 16:45 - 2016-12-09 11:38 - 004004536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-05-13 16:45 - 2016-12-09 11:38 - 001917640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434201.dll
2021-05-13 16:45 - 2016-12-09 11:38 - 000919104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-05-13 16:45 - 2016-12-09 11:38 - 000885824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-05-13 16:45 - 2016-12-09 11:37 - 023009344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2021-05-13 16:45 - 2016-12-09 11:37 - 015310400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2021-05-13 16:45 - 2016-12-09 11:18 - 001566920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434201.dll
2021-05-13 16:45 - 2016-11-14 04:30 - 000026157 _____ C:\WINDOWS\system32\nvinfo.pb
2021-05-13 16:22 - 2021-05-13 16:22 - 000000000 ___HD C:\$SysReset
==================== Un mois (modifiés) ==================
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2021-06-09 11:32 - 2020-05-26 15:34 - 000000000 ____D C:\Users\nunuche\AppData\LocalLow\Mozilla
2021-06-09 11:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-09 11:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-09 11:22 - 2020-05-26 15:34 - 000000000 ____D C:\ProgramData\Mozilla
2021-06-09 10:10 - 2020-11-19 00:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-09 09:21 - 2021-02-22 20:06 - 000000000 ____D C:\Users\nunuche
2021-06-09 09:21 - 2020-10-28 19:05 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2021-06-09 09:21 - 2020-06-10 20:21 - 000000832 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2021-06-09 09:21 - 2020-05-26 16:12 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-09 09:20 - 2021-02-22 19:39 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-09 09:20 - 2020-11-19 01:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-09 02:13 - 2020-05-26 14:24 - 000000000 ____D C:\Users\nunuche\AppData\Local\ClassicShell
2021-06-08 22:22 - 2020-06-11 13:33 - 000000028 _____ C:\WINDOWS\OutLog.txt
2021-06-08 20:54 - 2020-05-29 11:23 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-08 19:37 - 2020-06-10 20:20 - 000000000 ____D C:\ProgramData\AomeiBR
2021-06-08 18:46 - 2020-06-10 20:21 - 000001024 ____H C:\SYSTAG.BIN
2021-06-08 16:36 - 2021-04-14 17:10 - 000000000 ____D C:\WINDOWS\Minidump
2021-06-08 15:30 - 2020-06-10 21:42 - 000001174 _____ C:\Users\Public\Desktop\AOMEI Backupper.lnk
2021-06-08 15:30 - 2020-06-10 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2021-06-08 15:29 - 2020-06-10 21:41 - 000000000 ____D C:\Program Files (x86)\AOMEI
2021-06-08 11:46 - 2020-05-28 16:42 - 000000000 ____D C:\Users\nunuche\AppData\Roaming\vlc
2021-06-07 21:33 - 2020-11-19 01:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-06 20:38 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-06 17:18 - 2020-05-26 15:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-06-05 18:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-05 18:18 - 2020-10-31 21:25 - 000000000 ____D C:\Users\nunuche\AppData\Local\CrashDumps
2021-06-05 18:17 - 2020-05-26 14:16 - 000000000 ____D C:\Users\nunuche\AppData\Local\Packages
2021-06-05 18:16 - 2020-11-16 18:24 - 000001133 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2021-06-05 18:16 - 2020-11-16 18:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2021-06-02 21:57 - 2020-05-26 15:34 - 000001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-05-30 21:06 - 2020-12-27 12:57 - 000000000 ___RD C:\Users\nunuche\OneDrive
2021-05-30 10:39 - 2021-05-08 18:42 - 000000000 ____D C:\Users\nunuche\Desktop\audio
2021-05-30 10:19 - 2020-10-29 19:11 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-30 10:19 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-30 10:16 - 2020-10-29 17:29 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-30 10:15 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-20 16:52 - 2020-10-29 20:35 - 000000000 ____D C:\ProgramData\TEMP
2021-05-20 15:43 - 2021-02-22 20:16 - 001681370 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-20 15:43 - 2019-12-07 16:50 - 000755228 _____ C:\WINDOWS\system32\perfh00C.dat
2021-05-20 15:43 - 2019-12-07 16:50 - 000142034 _____ C:\WINDOWS\system32\perfc00C.dat
2021-05-20 15:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-18 00:31 - 2021-04-20 00:11 - 000000000 ____D C:\Users\nunuche\AppData\Roaming\Allavsoft
2021-05-16 16:36 - 2021-02-22 20:31 - 000000000 ____D C:\Users\nunuche\AppData\Local\PlaceholderTileLogoFolder
2021-05-14 15:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-14 15:22 - 2020-11-19 00:44 - 000267000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 13:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 13:30 - 2019-12-07 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-14 13:30 - 2019-12-07 16:51 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-14 12:07 - 2019-12-07 16:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-14 11:46 - 2013-08-22 17:44 - 000414082 __RSH C:\bootmgr
2021-05-13 16:49 - 2020-05-26 16:11 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-05-13 16:46 - 2020-05-26 16:10 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-05-12 15:37 - 2020-05-30 10:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 15:34 - 2020-05-30 10:39 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== SigCheck ============================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
==================== Fin de FRST.txt ========================