Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 13-02-2021
Exécuté par clinique (administrateur) sur CONSULT2 (Gigabyte Technology Co., Ltd. P55-UD3L) (14-02-2021 09:36:57)
Exécuté depuis C:\Users\clinique\Downloads
Profils chargés: clinique
Platform: Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) Langue: Français (France)
Navigateur par défaut: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Mode d'amorçage: Normal

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastNM.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe <23>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files\Epic Games\Launcher\Engine\Binaries\Win32\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(IDEXX Laboratories) [Fichier non signé] C:\Program Files\IDEXX\IDEXX InterLink\IDEXX InterLink.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ehome\mcupdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\slui.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\Client Server Security Agent\PccNTMon.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [OfficeScanNT Monitor] => c:\Program Files\Trend Micro\Client Server Security Agent\pccntmon.exe [1099088 2010-06-25] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1793736 2015-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [104160 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3179081774-2027129977-661357359-1000\...\Run: [EpicGamesLauncher] => C:\Program Files\Epic Games\Launcher\Portal\Binaries\Win32\EpicGamesLauncher.exe [26469960 2021-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3179081774-2027129977-661357359-1000\...\Run: [AvastBrowserAutoLaunch_20F6FDA2BEACB46B40C030BB6A18550B] => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1990392 2021-02-05] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3179081774-2027129977-661357359-1000\...\MountPoints2: {3506d80e-7c55-11e3-9bfc-842b2b86da03} - E:\1.bat
HKU\S-1-5-21-3179081774-2027129977-661357359-1000\...\MountPoints2: {39daab3a-580a-11e3-ab8d-806e6f6e6963} - E:\AutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\SSP2MPC: C:\Windows\System32\spool\prtprocs\W32X86\ssp2mpc.dll [19968 2008-01-10] (Windows (R) 2000 DDK provider) [Fichier non signé]
HKLM\...\Windows NT x86\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\W32X86\us005pc.dll [29696 2017-06-14] (Windows (R) Codename Longhorn DDK provider) [Fichier non signé]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [329728 2015-03-15] (CANON INC.) [Fichier non signé]
HKLM\...\Print\Monitors\HP 1254 Status Monitor: C:\Windows\system32\hpinksts1254LM.dll [382568 2017-12-19] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\SSP2M Langmon: C:\Windows\system32\ssp2ml3.dll [22723 2008-01-10] () [Fichier non signé]
HKLM\...\Print\Monitors\us005 Langmon: C:\Windows\system32\us005lm.dll [18432 2017-06-14] () [Fichier non signé]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-05] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\88.0.7976.151\Installer\chrmstp.exe [2021-02-13] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IDEXX InterLink.lnk [2014-03-25]
ShortcutTarget: IDEXX InterLink.lnk -> C:\Windows\Installer\{829BA215-84AD-4B72-9F05-A1F6428148B9}\NewShortcut2_6EDF5822A56642658CCD2C05B2DB09A5.exe (Acresso Software Inc.) [Fichier non signé]

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0376D9EC-27C1-41F1-BEA3-855080A08FC7} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
Task: {09B2EF13-0CE9-4772-B786-CDEA82FD30BC} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3179081774-2027129977-661357359-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2576384 2012-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {0E135884-8D09-46FF-8E63-F7B9967A24D4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1499240 2021-02-13] (Avast Software s.r.o. -> Avast Software)
Task: {1AD2D989-0CFA-4203-95D5-63899EF9EDD5} - System32\Tasks\{16F01586-BC06-4694-BE2A-E08D6E9F6343} => C:\Users\clinique\AppData\Local\Roblox\Versions\version-0c5386774b0d4ab3\RobloxPlayerLauncher.exe
Task: {25D00C1E-2878-4392-ABBB-EAABACD4B9BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-16] (Google Inc -> Google Inc.)
Task: {2746221C-2CCE-45B1-AAD1-66609B97FBE5} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4108000 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
Task: {4A2D9A51-32B4-41D9-942D-A973DEFB95F5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2021-02-13] (Adobe Inc. -> Adobe)
Task: {4F7A014C-EFD0-4BBA-9676-AB765A235863} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-02-13] (Adobe Inc. -> Adobe)
Task: {6C89161D-03DE-4834-9557-EE052D356EC5} - System32\Tasks\PCDEventLauncher => C:\Program Files\Dell Support Center\sessionchecker.exe [361288 2010-08-06] (Dell Inc -> )
Task: {6E822336-CB7A-406F-8CF3-0833FD215905} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1990392 2021-02-05] (Avast Software s.r.o. -> AVAST Software)
Task: {9FD1DB01-FC5C-4148-A7D6-AB1B5C2D6858} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1990392 2021-02-05] (Avast Software s.r.o. -> AVAST Software)
Task: {A12591F1-7EB8-467A-A408-C5243DE0BD62} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [345824 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA64C0C3-0D0F-4894-9737-A4A98EE750BD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-16] (Google Inc -> Google Inc.)
Task: {AE0C8E6A-3EA6-444F-BC3A-BB146A765A29} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell Support Center\uaclauncher.exe [859464 2010-08-06] (Dell Inc -> PC-Doctor, Inc.)
Task: {B2035443-0A54-468F-81B0-9B61CF3F862C} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\Dell Support Center\pcdrcui.exe [1224520 2010-08-06] (Dell Inc -> PC-Doctor, Inc.)
Task: {E21D4971-F344-4A85-ACE5-D614AC11DAB4} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-02-13] (Avast Software s.r.o. -> AVAST Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job => C:\Program Files\Dell Support Center\uaclauncher.exeo-backgroundmon scripts\defaultscan.xml
Task: C:\Windows\Tasks\SystemToolsDailyTest.job => C:\Program Files\Dell Support Center\pcdrcui.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1B3E5F7B-A229-4AA4-A701-92FAE4D5A873}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{460A7835-2F7F-48F6-9112-8DF710AE23E8}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{68446391-F0FD-4BE8-B8DF-822F0043D222}: [DhcpNameServer] 192.168.1.1

Chrome:
=======
CHR Profile: C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default [2021-02-13]
CHR Notifications: Default -> hxxps://jeux.ieducatif.fr; hxxps://www.facebook.com; hxxps://www.jeuxvideo.com; hxxps://www.systemed.fr
CHR Extension: (Slides) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-17]
CHR Extension: (Docs) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-17]
CHR Extension: (Google Drive) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-17]
CHR Extension: (Sheets) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\clinique\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-30]
CHR Profile: C:\Users\clinique\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-05]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-02-13] (Adobe Inc. -> Adobe)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7050776 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [563416 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [330976 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\88.0.7976.151\elevation_service.exe [1234712 2021-02-05] (Avast Software s.r.o. -> AVAST Software)
S4 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [81920 2007-03-02] (FirebirdSQL Project) [Fichier non signé]
S4 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [1994752 2007-03-02] (FirebirdSQL Project) [Fichier non signé]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [103696 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S4 ntrtscan; c:\Program Files\Trend Micro\Client Server Security Agent\ntrtscan.exe [1323912 2010-06-22] (Trend Micro, Inc. -> Trend Micro Inc.)
S4 svcGenericHost; c:\Program Files\Trend Micro\Client Server Security Agent\HostedAgent\svcGenericHost.exe [45056 2010-07-05] (Trend Micro Inc.) [Fichier non signé]
S4 tmlisten; c:\Program Files\Trend Micro\Client Server Security Agent\tmlisten.exe [1358160 2010-06-22] (Trend Micro, Inc. -> Trend Micro Inc.)
S4 TmPfw; c:\Program Files\Trend Micro\Client Server Security Agent\TmPfw.exe [497008 2009-07-15] (Trend Micro, Inc. -> Trend Micro Inc.)
S4 TmProxy; c:\Program Files\Trend Micro\Client Server Security Agent\TmProxy.exe [689416 2009-07-15] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [33544 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [175872 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [287192 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206304 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [91616 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R3 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39248 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [147760 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [376840 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2021-02-13] (AVAST Software s.r.o. -> AVAST Software)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [92696 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71352 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [690144 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [384136 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [161312 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [276960 2021-02-13] (Avast Software s.r.o. -> AVAST Software)
R2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [38400 2009-06-08] (Samsung Electronics Co., Ltd.) [Fichier non signé]
S3 k57nd60x; C:\Windows\System32\DRIVERS\k57nd60x.sys [273960 2009-08-21] (Broadcom Corporation -> Broadcom Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2014-01-27] (Malwarebytes Corporation -> Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [252808 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2015-10-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt86win7.sys [139776 2009-07-13] (Microsoft Windows -> Realtek Corporation)
S3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl.sys [81920 2010-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics) [Fichier non signé]
S2 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [158224 2009-07-06] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 TmFilter; c:\Program Files\Trend Micro\Client Server Security Agent\TmXPFlt.sys [230928 2010-05-10] (Trend Micro, Inc. -> Trend Micro Inc.)
R1 tmlwf; C:\Windows\System32\DRIVERS\tmlwf.sys [146448 2009-07-15] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 TmPreFilter; c:\Program Files\Trend Micro\Client Server Security Agent\TmPreFlt.sys [36368 2010-05-10] (Trend Micro, Inc. -> Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [89872 2009-07-15] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmwfp; C:\Windows\System32\DRIVERS\tmwfp.sys [283152 2009-07-15] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 VSApiNt; c:\Program Files\Trend Micro\Client Server Security Agent\VSApiNt.sys [1322808 2010-05-10] (Trend Micro, Inc. -> Trend Micro Inc.)
U3 aswbdisk; pas de ImagePath
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-14 09:36 - 2021-02-14 09:39 - 000020018 _____ C:\Users\clinique\Downloads\FRST.txt
2021-02-14 09:36 - 2021-02-14 09:38 - 000000000 ____D C:\FRST
2021-02-14 09:35 - 2021-02-14 09:35 - 001989120 _____ (Farbar) C:\Users\clinique\Downloads\FRST.exe
2021-02-14 09:35 - 2021-02-14 09:35 - 000000000 _____ C:\Users\clinique\Downloads\Non confirmé 36728.crdownload
2021-02-13 19:00 - 2021-02-13 18:36 - 000286944 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-02-13 18:55 - 2021-02-13 19:19 - 000004598 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2021-02-13 18:55 - 2021-02-13 19:19 - 000004454 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2021-02-13 18:54 - 2021-02-13 18:55 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2021-02-13 18:49 - 2021-02-13 18:49 - 000003720 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-02-13 18:49 - 2021-02-13 18:49 - 000003138 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-02-13 18:49 - 2021-02-13 18:49 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-02-13 18:49 - 2021-02-13 18:49 - 000002404 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-02-13 18:49 - 2021-02-13 18:49 - 000000000 ____D C:\Users\clinique\AppData\Local\AVAST Software
2021-02-13 18:47 - 2021-02-13 18:47 - 000003530 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2021-02-13 18:47 - 2021-02-13 18:47 - 000003402 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2021-02-13 18:43 - 2021-02-13 19:00 - 000002077 _____ C:\ProgramData\Desktop\Avast Antivirus Gratuit.lnk
2021-02-13 18:43 - 2021-02-13 18:43 - 000000000 ____D C:\Users\clinique\AppData\Roaming\Avast Software
2021-02-13 18:43 - 2021-02-13 18:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-02-13 18:38 - 2021-02-14 09:34 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-02-13 18:38 - 2021-02-13 19:19 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-02-13 18:37 - 2021-02-13 18:37 - 000384136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000376840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000276960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000206304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000161312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000147760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000092696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000091616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000071352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000039248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000036104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-02-13 18:37 - 2021-02-13 18:37 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-02-13 18:37 - 2021-02-13 18:36 - 000690144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-02-13 18:37 - 2021-02-13 18:36 - 000287192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-02-13 18:37 - 2021-02-13 18:36 - 000175872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-02-13 18:37 - 2021-02-13 18:36 - 000033544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-02-13 18:34 - 2021-02-13 18:34 - 000220392 _____ (AVAST Software) C:\Users\clinique\Downloads\avast_free_antivirus_setup_online (2).exe
2021-02-13 18:05 - 2021-02-13 18:05 - 000001327 _____ C:\Users\clinique\Desktop\Roblox Studio.lnk
2021-02-13 12:10 - 2021-02-13 12:10 - 000007236 _____ C:\Users\clinique\Downloads\LISTE DES PRODUITS.csv
2021-02-13 12:09 - 2021-02-13 12:09 - 000016896 _____ C:\Users\clinique\Downloads\LISTE DES PRODUITS.xls
2021-02-13 12:02 - 2021-02-13 12:02 - 000148878 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (6).pdf
2021-02-12 21:43 - 2021-02-12 21:43 - 000147570 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (5).pdf
2021-02-12 15:23 - 2021-02-12 15:23 - 000709294 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (4).pdf
2021-02-12 15:10 - 2021-02-12 15:10 - 000709309 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (3).pdf
2021-02-12 14:36 - 2021-02-12 14:36 - 000300782 _____ C:\Users\clinique\Downloads\SE_T&C_TNC_TEXT_FR_TNC_HEADER_02-12.pdf
2021-02-11 19:37 - 2021-02-11 19:37 - 000703716 _____ C:\Users\clinique\Desktop\FF.pdf
2021-02-11 19:34 - 2021-02-11 19:34 - 000703716 _____ C:\Users\clinique\Desktop\ELECTRICITE MAISON 2021.pdf
2021-02-11 19:33 - 2021-02-11 19:33 - 000703716 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (2).pdf
2021-02-11 16:15 - 2021-02-11 16:15 - 000431996 _____ C:\Users\clinique\Downloads\eDesign_project_documentation (1).pdf
2021-02-11 16:04 - 2021-02-11 16:05 - 000433007 _____ C:\Users\clinique\Downloads\eDesign_project_documentation.pdf
2021-02-09 10:57 - 2021-02-09 12:16 - 000382411 _____ C:\Users\clinique\Documents\rdc à echelle.sh3d
2021-02-08 20:21 - 2021-02-08 20:21 - 000885934 _____ C:\Users\clinique\Documents\maison test.sh3d
2021-02-08 20:06 - 2021-02-08 20:06 - 000000000 ____D C:\Users\clinique\AppData\Roaming\eTeks
2021-02-08 20:05 - 2021-02-08 20:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2021-02-08 20:05 - 2021-02-08 20:05 - 000000000 ____D C:\Program Files\Sweet Home 3D
2021-02-08 20:03 - 2021-02-08 20:04 - 052612208 _____ (eTeks ) C:\Users\clinique\Downloads\SweetHome3D-6.4.2-windows.exe
2021-02-07 16:35 - 2021-02-07 16:35 - 000486655 _____ C:\Users\clinique\Downloads\02-02-2021protocole-sanitaire.pdf
2021-02-05 19:43 - 2021-02-05 19:43 - 000002652 _____ C:\Users\clinique\Documents\enregistre 05022021.reg
2021-02-05 19:34 - 2021-02-05 19:34 - 000000248 _____ C:\Users\clinique\Documents\system.ini
2021-02-05 19:12 - 2021-02-05 19:13 - 000196685 _____ C:\Users\clinique\Downloads\rbxfpsunlocker-x64 (1).zip
2021-02-05 19:10 - 2021-02-05 19:10 - 000196685 _____ C:\Users\clinique\Downloads\rbxfpsunlocker-x64.zip
2021-02-05 15:52 - 2021-02-05 15:52 - 000505557 _____ C:\Users\clinique\Downloads\Chap2_Integrale-Placo_secondoeuvre_Plafonds_Janvier-2019_WEB.pdf
2021-02-05 15:52 - 2021-02-05 15:52 - 000505557 _____ C:\Users\clinique\Downloads\Chap2_Integrale-Placo_secondoeuvre_Plafonds_Janvier-2019_WEB (1).pdf
2021-02-05 13:35 - 2021-02-05 13:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Client-Server Security Agent
2021-01-30 20:11 - 2021-01-30 20:11 - 000119507 _____ C:\Users\clinique\Downloads\cp-semestre-1-2020_2021_auvray-ghjuvan_ (1).pdf
2021-01-30 20:08 - 2021-01-30 20:08 - 003246261 _____ C:\Users\clinique\Downloads\_tullio.pdf
2021-01-28 09:30 - 2021-01-28 09:31 - 052388471 _____ C:\Users\clinique\Downloads\danse tullio.MOV
2021-01-28 09:30 - 2021-01-28 09:30 - 023724214 _____ C:\Users\clinique\Downloads\img_6669.MOV
2021-01-28 09:28 - 2021-01-28 09:28 - 036177203 _____ C:\Users\clinique\Downloads\tullio aui gere.MOV
2021-01-28 09:27 - 2021-01-28 09:28 - 022638740 _____ C:\Users\clinique\Downloads\img_6666.MOV
2021-01-28 09:27 - 2021-01-28 09:28 - 022568425 _____ C:\Users\clinique\Downloads\archive.zip
2021-01-28 09:23 - 2021-01-28 09:23 - 000119507 _____ C:\Users\clinique\Downloads\cp-semestre-1-2020_2021_auvray-ghjuvan_.pdf
2021-01-26 15:36 - 2021-01-26 15:36 - 034856912 _____ (MEGA Limited) C:\Users\clinique\Downloads\MEGAsyncSetup64.exe
2021-01-26 13:37 - 2021-02-12 21:46 - 000000000 ____D C:\Users\clinique\Desktop\Dossier travaux salon

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-02-14 09:31 - 2011-03-31 10:19 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-14 09:27 - 2020-08-19 20:49 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2021-02-14 09:27 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-13 19:21 - 2009-07-14 05:34 - 000026320 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-02-13 19:21 - 2009-07-14 05:34 - 000026320 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-02-13 19:20 - 2010-11-20 19:14 - 000000422 _____ C:\Windows\Tasks\SystemToolsDailyTest.job
2021-02-13 19:20 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\tracing
2021-02-13 19:19 - 2020-09-03 16:39 - 000003066 _____ C:\Windows\system32\Tasks\{16F01586-BC06-4694-BE2A-E08D6E9F6343}
2021-02-13 19:19 - 2020-08-20 13:04 - 000003522 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-13 19:19 - 2020-08-20 13:04 - 000003394 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-13 19:19 - 2011-08-19 15:55 - 000003490 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-13 19:19 - 2011-08-19 15:55 - 000003362 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-13 19:19 - 2010-12-29 11:16 - 000003488 _____ C:\Windows\system32\Tasks\PCDEventLauncher
2021-02-13 18:55 - 2011-08-19 15:56 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2021-02-13 18:55 - 2010-11-13 16:16 - 000000000 ____D C:\Windows\system32\Macromed
2021-02-13 18:47 - 2011-03-31 10:19 - 000000000 ____D C:\Program Files\AVAST Software
2021-02-13 18:38 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2021-02-13 18:22 - 2009-07-14 05:52 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2021-02-13 18:09 - 2020-08-31 09:33 - 000000000 ____D C:\Users\clinique\AppData\Local\Roblox
2021-02-13 18:05 - 2020-08-31 09:33 - 000000254 _____ C:\Users\clinique\AppData\LocalLow\rbxcsettings.rbx
2021-02-13 18:05 - 2020-08-31 09:33 - 000000000 ____D C:\Users\clinique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2021-02-13 17:57 - 2012-01-31 14:46 - 000000000 ____D C:\Users\clinique\AppData\Roaming\SoftGrid Client
2021-02-10 20:36 - 2014-01-27 15:56 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 20:33 - 2014-01-27 15:56 - 127354856 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-10 19:28 - 2020-09-26 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox
2021-02-10 19:28 - 2020-08-31 09:40 - 000001279 _____ C:\Users\clinique\Desktop\Roblox Player.lnk
2021-02-07 09:00 - 2010-11-20 19:14 - 000000564 _____ C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2021-02-05 13:32 - 2010-11-13 16:29 - 000000032 _____ C:\tmuninst.ini
2021-02-05 13:31 - 2020-10-04 17:16 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-05 11:52 - 2020-08-31 09:33 - 000001106 _____ C:\Users\clinique\Documents\Roblox Studio.lnk
2021-02-05 10:29 - 2010-11-20 19:12 - 000000000 ____D C:\Users\clinique
2021-02-05 10:27 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\registration
2021-01-22 17:32 - 2013-10-11 18:38 - 000000000 ____D C:\ProgramData\IDEXX Interlink
2021-01-21 22:37 - 2011-03-31 10:10 - 000647560 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-01-20 11:00 - 2009-07-14 05:53 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Fichiers à la racine de certains dossiers ========

2016-12-22 14:18 - 2016-12-22 14:18 - 007680000 _____ () C:\Program Files\GUT8F64.tmp

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\explorer.exe => Le MD5 est légitime
C:\Windows\system32\winlogon.exe => Le MD5 est légitime
C:\Windows\system32\wininit.exe => Le MD5 est légitime

LastRegBack: 2021-02-12 21:01
==================== Fin de FRST.txt ========================