Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2021
Exécuté par alexa (administrateur) sur DESKTOP-L93UG3H (ASUSTeK COMPUTER INC. UX303UB) (06-04-2021 13:03:03)
Exécuté depuis C:\Users\alexa\Downloads
Profils chargés: alexa
Platform: Windows 10 Home Version 20H2 19042.870 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe
(Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\alexa\AppData\Local\1password\app\7\1Password.exe
(ASUSTek Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\119.4.1772\QtWebEngineProcess.exe <3>
(Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_b8e01d9e8716d2a7\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_54b736e5be5b50b2\OneApp.IGCC.WinService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a086f01cc7be643a\IntelCpHeciSvc.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\alexa\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Studios) C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.3.2100.0_x64__8wekyb3d8bbwe\Microsoft Sudoku.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe
(Mojang AB -> Mojang) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe <5>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_371584136a8b8b8e\Display.NvContainer\NVDisplay.Container.exe <2>
(pCloud AG -> pCloud AG) C:\Program Files\pCloud Drive\pCloud.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7991528 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3864576 2021-03-11] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [5748640 2021-03-29] (Adguard Software Limited -> Adguard Software Ltd)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [1Password] => C:\Users\alexa\AppData\Local\1password\app\7\1Password.exe [5230928 2021-03-03] (AgileBits Inc. -> AgileBits Inc.)
HKU\S-1-5-21-2920076361-1617113136-650365420-1001\...\Run: [BingWallpaperApp] => C:\Users\alexa\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [10948488 2021-03-11] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\89.1.22.71\Installer\chrmstp.exe [2021-04-05] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\alexa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2020-12-13]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {278A3287-C788-4CC1-B1A9-ACBA1DA3CA60} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2A22A78B-9F3E-4C6B-832D-D4A95CAEC93A} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-04] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {2D775826-6D3B-4E2E-B1A9-34ACA9BBB346} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {333F0B16-F4DF-40DE-9439-296DC5D30B41} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-04] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {343E13E0-8A15-4B9F-A8F9-1E4567BF155E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3851D3FA-D678-43A0-B37B-13DB56771A1A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [7651984 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {405E5DC4-CF01-4D87-ABA9-7EC0F9B1E527} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B6D300B-0FA9-4292-B234-7649B9800C92} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5801E146-3D18-489F-8D0B-103C5637F3AE} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-14] (ASUSTeK Computer Inc. -> AsusTek)
Task: {5C7C1BF0-9632-430F-8E5C-794E150F755F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6A6B9BFC-4DFF-40D6-A124-BBB35D0E1C27} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [7192192 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {6B526836-E721-44F0-B975-321F2064B854} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [143160 2019-03-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {70397601-249F-42B4-8185-CBCE63A2C368} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8260AF1E-F737-40A7-AE2F-41EA34DAD256} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F11CEF1-26C3-4AE2-95F7-E317497F8B10} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [6944304 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {91760003-AA53-488B-9190-ED778F74BEEE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {91BD0BEE-F9F7-45C6-904A-B8CC7F573E49} - System32\Tasks\SoftMakerUpdater => C:\Program Files (x86)\SoftMaker FreeOffice 2018\SoftMakerUpdaterTool.exe [6367440 2019-03-04] (SoftMaker Software GmbH -> )
Task: {9787BDD8-C541-46D8-B162-6396E1E35E3B} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {9B5C18E7-E21E-41B4-A8DA-F262810B0D07} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {A1AE2B88-4EC6-4B75-948A-3B1056F36EC0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AED8AFD5-D856-4A46-9932-B7037EC64D44} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BA65FB8B-0EDA-4786-8BF2-D35403088666} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD951966-5B3D-40FB-910C-C8EA236FA950} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [124304 2017-11-23] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CD206E0A-C844-4ECA-ADE3-2E9E439BEE4B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D0896084-33D0-4370-9F5E-BEE778593508} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MpCmdRun.exe [566368 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D28AFF2D-CE9F-43F1-AB10-02D4D59540C3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696816 2021-03-26] (Mozilla Corporation -> Mozilla Foundation)
Task: {EDE8BDB9-88B3-40C8-9141-92AE9C70D77A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-26] (Adobe Inc. -> Adobe Inc.)
Task: {F23C3132-A71D-4551-9661-19321D432511} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-03] (Dropbox, Inc -> Dropbox, Inc.)
Task: {F2D46425-C29D-4512-82DD-3E2B62954093} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {FE351EA5-F863-4A0F-A6A9-D6220D237EF5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\..\Interfaces\{3d549b50-5681-4a7b-80bc-c7c24ffd1f5e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5d7c2cd5-9a75-1ac5-6245-118f1c411193}: [NameServer] 103.86.99.99,103.86.96.96

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\alexa\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-06]
Edge Extension: (Outlook) - C:\Users\alexa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-12-01]
Edge Extension: (Word) - C:\Users\alexa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-12-01]
Edge Extension: (Excel) - C:\Users\alexa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-12-01]
Edge Extension: (PowerPoint) - C:\Users\alexa\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-12-01]

FireFox:
========
FF DefaultProfile: 03oz9cqc.default
FF ProfilePath: C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\03oz9cqc.default [2020-12-05]
FF ProfilePath: C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release [2021-04-06]
FF Homepage: Mozilla\Firefox\Profiles\mar3zv10.default-release -> hxxps://www.startpage.com/do/mypage.pl?prfe=362a863992563f0792cbe2f4a5565bd34d94b31e9f0702e5e28869f67c158d83c87c7f4992f0a4db530bea21aa54bdf5
FF Extension: (Facebook Container) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\@contain-facebook.xpi [2020-12-01]
FF Extension: (AdGuard AdBlocker) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\adguardadblocker@adguard.com.xpi [2021-03-26]
FF Extension: (Ant Video downloader) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\anttoolbar@ant.com.xpi [2021-02-03]
FF Extension: (Bypass Paywalls) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\bypasspaywalls@bypasspaywalls.xpi [2021-03-31]
FF Extension: (CanvasBlocker) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\CanvasBlocker@kkapsner.de.xpi [2021-01-21]
FF Extension: (Cookie AutoDelete) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\CookieAutoDelete@kennydo.com.xpi [2021-01-21]
FF Extension: (Blur) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\donottrackplus@abine.com.xpi [2020-12-01]
FF Extension: (Decentraleyes) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2020-12-01]
FF Extension: (Privacy Badger) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-02-03]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-03-31]
FF Extension: (Correcteur de texte — LanguageTool) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2021-02-19]
FF Extension: (NordVPN #1 VPN Extension: Get VPN for Firefox) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\nordvpnproxy@nordvpn.com.xpi [2021-03-26]
FF Extension: (uBlock Origin) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\uBlock0@raymondhill.net.xpi [2021-03-12]
FF Extension: (Social Video Downloader) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{00e68183-fc7d-4a91-b5cc-f7f8272386db}.xpi [2021-04-06]
FF Extension: (Surrounding Mountains) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{16238aed-2ddc-420d-8669-1883197fc9cc}.xpi [2020-12-01]
FF Extension: (Startpage.com - recherche privé) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2020-12-01]
FF Extension: (Panic Button) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{24cea704-946d-11da-a72b-0800200c9a66}.xpi [2021-02-03]
FF Extension: (Autumn sunset 2) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{26f5e5f2-5100-4ee2-a334-1ae36f9f1938}.xpi [2020-12-01]
FF Extension: (Download All Images) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{32af1358-428a-446d-873e-5f8eb5f2a72e}.xpi [2020-12-01]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2021-01-10]
FF Extension: (Tails Verification) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{4121db26-aeba-4014-b6fe-1db322d7c585}.xpi [2020-12-01]
FF Extension: (Copper Sunset) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{50111a35-1454-4766-a18d-006cd9062cfd}.xpi [2020-12-01]
FF Extension: (summer dawn) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{51a9bbc8-2d3b-4e5d-9fb4-0fb4019bf4d2}.xpi [2020-12-01]
FF Extension: (Universal Bypass) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{529b261b-df0b-4e3b-bf42-07b462da0ee8}.xpi [2021-02-07]
FF Extension: (SingleFile) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{531906d3-e22f-4a6c-a102-8057b88a1a63}.xpi [2021-03-31]
FF Extension: (No Coin - Block miners on the web!) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{5657c026-efc3-4860-b43b-16e4eaa8a9aa}.xpi [2020-12-01]
FF Extension: (Sparkle Stars) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{59732e42-db57-4bf2-b15e-0fa8dd296eeb}.xpi [2020-12-01]
FF Extension: (404 Bookmarks) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{5f8d31ba-47fb-4b70-bf8d-d2113f6da22f}.xpi [2020-12-01]
FF Extension: (Dewy Grass by MaDonna) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{63eddeb4-c0dd-4c2d-a23b-d824c9d669d9}.xpi [2020-12-01]
FF Extension: (Trace - Online Tracking Protection) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{6ff498ff-a3b6-4891-a614-12a825d4efcf}.xpi [2020-12-01]
FF Extension: (NoScript) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2021-03-31]
FF Extension: (SEE THE FOREST FOR THE TREES) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{87283289-1f0f-4ca1-8454-7ee57b659982}.xpi [2020-12-01]
FF Extension: (Absolute Right Click) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2020-12-01]
FF Extension: (Firefoxnova-K) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{9d85badb-931f-4291-8593-59ef4a881cd6}.xpi [2020-12-01]
FF Extension: (G E A R S by Ma Donna) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{a325c6f9-0938-4f37-b21e-93f16ded507d}.xpi [2020-12-01]
FF Extension: (Video DownloadHelper) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-12-17]
FF Extension: (Forest Sunlight by MaDonna) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{c85c1470-054b-43f2-a16e-2fb983df77ca}.xpi [2020-12-01]
FF Extension: (Nuit classique) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{cfe0da22-ea19-413e-8d56-b2c70042077f}.xpi [2020-12-01]
FF Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\alexa\AppData\Roaming\Mozilla\Firefox\Profiles\mar3zv10.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-02-03]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)

Brave:
=======
BRA Profile: C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-04-05]
BRA DefaultSearchURL: Default -> hxxps://www.startpage.com/do/search?q={searchTerms}&segment=startpage.brave
BRA DefaultSearchKeyword: Default -> startpage.com
BRA DefaultSuggestURL: Default -> hxxps://www.startpage.com/cgi-bin/csuggest?query={searchTerms}&limit=10&format=json
BRA Extension: (Brave Local Data Files Updater) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-02-05]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-03-26]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-03-12]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2021-03-26]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2020-12-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2021-03-26]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\alexa\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-03-26]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [175008 2021-03-29] (Adguard Software Limited -> Adguard Software Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-26] (Adobe Inc. -> Adobe Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-04] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-04] (Brave Software, Inc. -> BraveSoftware Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-03] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2020-12-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44272 2021-03-30] (Dropbox, Inc -> Dropbox, Inc.)
S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] (ASUSTeK Computer Inc. -> )
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-10] (Malwarebytes Inc -> Malwarebytes)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_371584136a8b8b8e\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_371584136a8b8b8e\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 adgnetworkwfpdrv; C:\Windows\System32\drivers\adgnetworkwfpdrv.sys [94720 2021-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R1 cbfsconnect2017; C:\Windows\system32\drivers\cbfsconnect2017.sys [481296 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-19] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl948ab351; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4B84BCCE-E5AE-43DF-AEEE-B0278115596E}\MpKslDrv.sys [97528 2021-04-06] (Microsoft Windows -> Microsoft Corporation)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2020-12-02] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-10-14] (TEFINCOM S.A. -> TEFINCOM S.A.)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [831616 2020-12-03] (IDRIX SARL -> IDRIX)
R3 vpnpbus; C:\Windows\System32\drivers\vpnpbus.sys [20496 2020-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-06 13:03 - 2021-04-06 13:05 - 000033359 _____ C:\Users\alexa\Downloads\FRST.txt
2021-04-06 13:01 - 2021-04-06 13:05 - 000000000 ____D C:\FRST
2021-04-06 12:59 - 2021-04-06 12:59 - 002298368 _____ (Farbar) C:\Users\alexa\Downloads\FRST64.exe
2021-04-06 11:26 - 2021-04-06 11:26 - 091750400 _____ C:\Windows\system32\config\SOFTWARE
2021-04-05 19:11 - 2021-04-06 11:26 - 000000000 ____D C:\Windows\Microsoft Antimalware
2021-04-05 18:37 - 2021-04-05 18:37 - 000000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.24.lnk
2021-04-05 18:23 - 2021-04-05 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-03-31 19:06 - 2021-03-17 20:33 - 000454708 ____R C:\Windows\system32\Drivers\etc\hosts.20210331-190635.backup
2021-03-30 21:46 - 2021-03-30 21:46 - 000000000 ____D C:\Windows\system32\lxss
2021-03-30 21:46 - 2021-03-30 21:46 - 000000000 ____D C:\Windows\LastGood.Tmp
2021-03-30 21:39 - 2021-03-26 09:49 - 000626992 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-03-30 21:38 - 2021-03-26 09:53 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-03-30 21:38 - 2021-03-26 09:53 - 001435880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-03-30 21:38 - 2021-03-26 09:52 - 001855208 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-03-30 21:38 - 2021-03-26 09:52 - 001855208 _____ C:\Windows\system32\vulkaninfo.exe
2021-03-30 21:38 - 2021-03-26 09:52 - 001452336 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-03-30 21:38 - 2021-03-26 09:52 - 001191728 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-03-30 21:38 - 2021-03-26 09:52 - 001094888 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-03-30 21:38 - 2021-03-26 09:52 - 001094888 _____ C:\Windows\system32\vulkan-1.dll
2021-03-30 21:38 - 2021-03-26 09:52 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-03-30 21:38 - 2021-03-26 09:52 - 000948968 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 001514256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 001166104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 000715552 _____ C:\Windows\system32\nvofapi64.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 000675104 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 000575776 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-03-30 21:38 - 2021-03-26 09:49 - 000563984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-03-30 21:38 - 2021-03-26 09:48 - 002105632 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-03-30 21:38 - 2021-03-26 09:48 - 001590048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-03-30 21:38 - 2021-03-26 09:48 - 000811800 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-03-30 21:38 - 2021-03-26 09:48 - 000689936 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-03-30 21:38 - 2021-03-26 09:48 - 000656144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-03-30 21:38 - 2021-03-26 09:48 - 000445712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-03-30 21:38 - 2021-03-26 09:47 - 008316176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-03-30 21:38 - 2021-03-26 09:47 - 007433488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-03-30 21:38 - 2021-03-26 09:47 - 004795184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-03-30 21:38 - 2021-03-26 09:47 - 002823440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-03-30 21:38 - 2021-03-26 09:46 - 000848688 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-03-30 21:38 - 2021-03-26 09:45 - 006154480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-03-30 21:38 - 2021-03-26 01:34 - 000087163 _____ C:\Windows\system32\nvinfo.pb
2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-03-30 19:52 - 2021-03-30 19:52 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-03-30 19:52 - 2021-03-30 19:52 - 000044272 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-03-26 12:50 - 2021-03-26 12:50 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-03-26 07:11 - 2021-03-27 01:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-23 21:39 - 2021-03-23 21:39 - 000011357 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-03-17 20:33 - 2021-03-03 19:49 - 000454708 ____R C:\Windows\system32\Drivers\etc\hosts.20210317-193316.backup
2021-03-16 20:39 - 2021-03-16 20:39 - 000000000 ____D C:\Users\alexa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bing Wallpaper
2021-03-14 22:25 - 2021-03-14 22:26 - 000000000 ____D C:\Users\alexa\OneDrive\Documents\DeadIslandDE
2021-03-13 16:41 - 2021-03-13 16:41 - 021305104 _____ (TEFINCOM S.A. ) C:\Users\alexa\Downloads\NordVPNSetup.exe
2021-03-11 23:23 - 2021-03-11 23:23 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.1
2021-03-11 23:21 - 2021-03-11 23:22 - 000000000 ____D C:\Program Files\LibreOffice
2021-03-09 23:23 - 2021-03-09 23:23 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-03-09 23:23 - 2021-03-09 23:23 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-03-09 23:22 - 2021-03-09 23:22 - 001163776 _____ C:\Windows\system32\MBR2GPT.EXE
2021-03-09 23:22 - 2021-03-09 23:22 - 000611952 _____ C:\Windows\SysWOW64\TextShaping.dll
2021-03-09 23:21 - 2021-03-09 23:21 - 000707016 _____ C:\Windows\system32\TextShaping.dll
2021-03-07 20:58 - 2021-03-07 21:18 - 000000000 ____D C:\ProgramData\CheatHappens

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-04-06 13:06 - 2020-12-03 07:04 - 000000000 ____D C:\ProgramData\Adguard
2021-04-06 13:02 - 2020-12-05 19:50 - 000000000 ____D C:\Users\alexa\AppData\Roaming\.minecraft
2021-04-06 13:02 - 2020-12-03 10:47 - 000000000 ____D C:\Users\alexa\AppData\Roaming\Signal
2021-04-06 13:02 - 2020-12-02 00:09 - 000000000 ____D C:\Program Files (x86)\Steam
2021-04-06 13:02 - 2020-12-01 23:52 - 000000000 ____D C:\Users\alexa\AppData\LocalLow\Mozilla
2021-04-06 13:02 - 2020-12-01 23:52 - 000000000 ____D C:\ProgramData\Mozilla
2021-04-06 13:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-06 12:55 - 2020-12-03 10:49 - 000000000 ____D C:\Users\alexa\AppData\Roaming\Telegram Desktop
2021-04-06 12:53 - 2020-12-01 21:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-06 12:52 - 2020-12-03 07:04 - 000000000 ____D C:\Program Files\CCleaner
2021-04-06 12:48 - 2020-12-03 08:40 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2021-04-06 12:48 - 2020-12-03 07:06 - 000000000 ____D C:\Program Files (x86)\Adguard
2021-04-06 12:48 - 2020-12-01 21:02 - 000000000 __SHD C:\Users\alexa\IntelGraphicsProfiles
2021-04-06 12:47 - 2020-12-03 08:48 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2021-04-06 12:47 - 2020-12-01 21:02 - 000000000 ____D C:\Intel
2021-04-06 12:47 - 2020-09-27 09:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-04-06 12:47 - 2020-09-27 07:51 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-06 12:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2021-04-06 12:25 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-04-06 12:09 - 2020-12-01 20:58 - 001771002 _____ C:\Windows\system32\PerfStringBackup.INI
2021-04-06 12:09 - 2019-12-07 16:49 - 000794510 _____ C:\Windows\system32\perfh00C.dat
2021-04-06 12:09 - 2019-12-07 16:49 - 000150624 _____ C:\Windows\system32\perfc00C.dat
2021-04-06 12:09 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-04-06 12:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-06 12:08 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-04-06 11:58 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-04-06 11:08 - 2020-09-27 07:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-04-06 08:33 - 2020-12-03 09:14 - 000000000 ____D C:\Users\alexa\AppData\Local\D3DSCache
2021-04-05 20:04 - 2020-12-04 12:56 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-04-05 19:54 - 2020-12-04 17:03 - 000000000 ____D C:\EEK
2021-04-05 18:47 - 2020-09-27 09:54 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-05 18:27 - 2020-12-03 07:21 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-04-02 19:19 - 2020-12-03 07:04 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-04-01 20:14 - 2020-12-04 11:25 - 000000000 ____D C:\Users\alexa\AppData\Local\NVIDIA Corporation
2021-03-31 19:03 - 2020-12-03 07:18 - 000000000 ____D C:\ProgramData\TEMP
2021-03-31 19:03 - 2020-12-03 07:18 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2021-03-30 22:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-03-30 21:47 - 2020-12-04 11:25 - 000000000 ____D C:\Users\alexa\AppData\Local\NVIDIA
2021-03-30 21:39 - 2020-12-04 15:29 - 000000000 ____D C:\Users\alexa\Downloads\JDownload
2021-03-30 21:38 - 2020-12-04 15:28 - 000000000 ____D C:\Users\alexa\AppData\Roaming\vlc
2021-03-30 21:37 - 2020-12-04 13:53 - 000000000 ____D C:\Program Files\JDownloader
2021-03-30 21:24 - 2020-12-02 00:07 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-30 21:23 - 2020-12-03 07:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdGuard
2021-03-29 20:15 - 2020-12-03 12:46 - 000000000 ____D C:\Users\alexa\Downloads\Cheat Happens
2021-03-28 10:55 - 2020-12-03 08:59 - 000000000 ____D C:\Users\alexa\AppData\Local\CrashDumps
2021-03-28 00:38 - 2020-12-03 07:08 - 000000000 ___RD C:\Users\alexa\Desktop\Utilitaires
2021-03-27 21:10 - 2020-12-03 15:15 - 000000000 ____D C:\Users\alexa\Downloads\Telegram Desktop
2021-03-27 01:21 - 2020-12-01 23:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-26 12:50 - 2020-12-01 23:52 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-03-26 09:45 - 2020-12-01 21:07 - 007207560 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-03-26 07:10 - 2020-12-03 18:43 - 000000000 ____D C:\Users\alexa\AppData\Roaming\Jitsi Meet
2021-03-25 09:45 - 2020-12-01 21:01 - 000000000 ____D C:\Users\alexa
2021-03-24 21:36 - 2021-01-10 02:11 - 000000000 ____D C:\Users\alexa\.fontconfig
2021-03-23 21:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-03-23 20:31 - 2020-12-02 00:07 - 000000000 ____D C:\Users\alexa\AppData\Local\pCloud
2021-03-21 19:37 - 2020-12-06 14:38 - 000000000 ____D C:\Users\alexa\OneDrive\Documents\Maniaplanet
2021-03-21 19:25 - 2020-12-06 14:38 - 000000000 ____D C:\ProgramData\Maniaplanet
2021-03-21 14:32 - 2020-12-23 11:55 - 000000000 ____D C:\Users\alexa\OneDrive\Documents\TrackMania
2021-03-20 12:44 - 2020-12-02 00:04 - 000000000 ____D C:\Users\alexa\AppData\Local\NordVPN
2021-03-20 12:43 - 2020-12-02 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-03-20 12:43 - 2020-12-02 00:03 - 000000000 ____D C:\ProgramData\NordVPN
2021-03-20 12:43 - 2020-12-02 00:03 - 000000000 ____D C:\Program Files\NordVPN
2021-03-16 21:15 - 2020-12-04 11:23 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2021-03-16 20:40 - 2020-12-01 21:05 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2920076361-1617113136-650365420-1001
2021-03-16 20:40 - 2020-12-01 21:05 - 000000000 ___RD C:\Users\alexa\OneDrive
2021-03-16 20:40 - 2020-12-01 21:01 - 000002401 _____ C:\Users\alexa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-03-16 20:38 - 2020-09-27 09:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-03-14 21:58 - 2020-12-23 12:01 - 000000000 ____D C:\Users\alexa\AppData\Local\Ubisoft Game Launcher
2021-03-13 16:40 - 2020-12-02 00:08 - 000000000 ____D C:\Users\alexa\AppData\Roaming\Bitwarden
2021-03-13 16:40 - 2020-12-02 00:08 - 000000000 ____D C:\Program Files\Bitwarden
2021-03-12 19:12 - 2020-12-02 00:07 - 000000000 ____D C:\Program Files\pCloud Drive
2021-03-12 10:23 - 2021-03-04 20:59 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-03-12 10:10 - 2020-09-27 07:51 - 000477592 _____ C:\Windows\system32\FNTCACHE.DAT
2021-03-10 22:06 - 2020-12-05 19:50 - 000000000 ____D C:\Program Files (x86)\Minecraft Launcher
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-09 23:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-03-09 21:59 - 2020-12-01 21:09 - 000000000 ____D C:\Windows\system32\MRT
2021-03-09 21:53 - 2020-12-04 11:44 - 000000000 ____D C:\Program Files\dotnet
2021-03-09 21:53 - 2020-12-01 21:09 - 131005360 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-03-07 20:01 - 2020-12-03 08:29 - 000000000 ___RD C:\Users\alexa\Dropbox
2021-03-07 10:20 - 2020-12-03 18:43 - 000000000 ____D C:\Users\alexa\AppData\Local\jitsi-meet-electron-updater

==================== Fichiers à la racine de certains dossiers ========

2019-12-17 23:38 - 2019-12-17 23:38 - 000000258 _____ () C:\ProgramData\fontcacheev1.dat
2020-12-05 19:11 - 2020-12-05 19:11 - 000007606 _____ () C:\Users\alexa\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================