Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04.03.2018 Exécuté par Warline (administrateur) sur DESKTOP-4C3M32P (05-03-2018 16:16:13) Exécuté depuis C:\Users\Warline\Downloads\Programs Profils chargés: Warline (Profils disponibles: Warline) Platform: Windows 10 Home Version 1709 16299.248 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Arcai.com) D:\Program Files (x86)\netcut\services\aips.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\MsMpEng.exe () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe () D:\Program Files (x86)\AnyDesk\AnyDesk.exe () D:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe () D:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18022-0\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Tonec Inc.) D:\Program Files (x86)\Internet Download Manager\IDMan.exe (Spotify Ltd) C:\Users\Warline\AppData\Roaming\Spotify\Spotify.exe (0) D:\Program Files (x86)\Mechanical Keyboard\Mechanical Keyboard.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe (Tonec Inc.) D:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Spotify Ltd) C:\Users\Warline\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) C:\Users\Warline\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd) C:\Users\Warline\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) C:\Users\Warline\AppData\Roaming\Spotify\Spotify.exe (VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeterpro.exe () C:\Users\Warline\Desktop\Logiciel\AudioRouter\Audio Router.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Discord Inc.) C:\Users\Warline\AppData\Local\Discord\app-0.0.300\Discord.exe (Discord Inc.) C:\Users\Warline\AppData\Local\Discord\app-0.0.300\Discord.exe (Discord Inc.) C:\Users\Warline\AppData\Local\Discord\app-0.0.300\Discord.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1802.311.0_x64__8wekyb3d8bbwe\Calculator.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\Warline\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe (Epic Games, Inc.) D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe () D:\Program Files (x86)\ExpressVPN\xvpnd\expressvpn-browser-helper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2018-03-04] (Realtek Semiconductor) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596664 2018-01-15] (Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation) HKLM-x32\...\Run: [Launch 0 FwCustom] => D:\Program Files (x86)\Mechanical Keyboard\Mechanical Keyboard.exe [3234816 2016-09-12] (0) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] () HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3111712 2017-12-15] (Valve Corporation) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [IDMan] => D:\Program Files (x86)\Internet Download Manager\IDMan.exe [4105328 2018-01-11] (Tonec Inc.) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [Unified Remote V3] => D:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3187384 2017-12-13] (Unified Intents AB) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [Discord] => C:\Users\Warline\AppData\Local\Discord\app-0.0.300\Discord.exe [57821176 2018-01-08] (Discord Inc.) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [CCleaner Monitoring] => D:\Program Files\CCleaner\CCleaner64.exe [10290608 2018-02-07] (Piriform Ltd) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\Run: [Spotify Web Helper] => C:\Users\Warline\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-02-27] (Spotify Ltd) HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\MountPoints2: {0e814e22-f208-11e7-9318-28c2dd583f7e} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\MountPoints2: {8764a3da-1f4d-11e8-9321-28c2dd583f7e} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-2456327050-687195343-3147824760-1001\...\MountPoints2: {c89f43c5-e6e5-11e7-9310-28c2dd583f7e} - "F:\HiSuiteDownLoader.exe" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2017-11-03] ShortcutTarget: AnyDesk.lnk -> D:\Program Files (x86)\AnyDesk\AnyDesk.exe () ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{41abbee7-2403-4585-9282-29523a7af74c}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{877c913c-99dd-49ae-9f2d-5d134b1a3a47}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d20a3ac7-5dd8-497f-ab24-e571781241be}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{ebb018fa-3c32-481c-84ba-49730b1c2cc0}: [DhcpNameServer] 10.127.0.1 Internet Explorer: ================== BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> D:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2017-12-14] (Internet Download Manager, Tonec Inc.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2017-12-17] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2017-12-17] (Oracle Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> D:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2017-12-14] (Internet Download Manager, Tonec Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-12-17] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-12-17] (Oracle Corporation)