############################## | UsbFix V 7.161 | [Recherche]

Utilisateur: Chris (Administrateur) # FAZEROCHRIS
Mis à jour le 15/01/2014 par El Desaparecido - Team SosVirus
Lancé à 15:47:49 | 20/01/2014

Site Web : http://www.usbfix.net
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

PC: Dell Inc. (0YRVJK)
CPU: Intel(R) Pentium(R) CPU 2127U @ 1.90GHz
RAM -> [Total : 3965 Mo| Free : 2440 Mo]
Bios: Dell Inc.
Boot: Normal boot

OS: Microsoft Windows 8 (6.2.9200 64-Bit)
WB: Windows Internet Explorer : 10.0.9200.16750
WB: Mozilla Firefox : 26.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [(!) Disabled]
AS: Windows Defender : 4.3.0215.0
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 453 Go (414 Go libre(s) - 91%) [OS] # NTFS
D:\ -> CD-ROM

################## | Processus Actif |

C:\Windows\system32\csrss.exe (ID: 452 |ParentID: 444)
C:\Windows\system32\wininit.exe (ID: 576 |ParentID: 444)
C:\Windows\system32\services.exe (ID: 664 |ParentID: 576)
C:\Windows\system32\lsass.exe (ID: 672 |ParentID: 576)
C:\Windows\system32\svchost.exe (ID: 760 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 920 |ParentID: 664)
C:\Windows\System32\svchost.exe (ID: 972 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 304 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 820 |ParentID: 664)
C:\Windows\System32\svchost.exe (ID: 956 |ParentID: 664)
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (ID: 1104 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 1232 |ParentID: 664)
C:\Windows\System32\spoolsv.exe (ID: 1452 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 1480 |ParentID: 664)
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (ID: 1656 |ParentID: 664)
C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe (ID: 1676 |ParentID: 664)
C:\Windows\system32\dashost.exe (ID: 1740 |ParentID: 956)
c:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1756 |ParentID: 664)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (ID: 1792 |ParentID: 664)
C:\Windows\system32\mfevtps.exe (ID: 1852 |ParentID: 664)
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (ID: 1936 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 1976 |ParentID: 664)
C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe (ID: 2020 |ParentID: 664)
C:\Program Files\McAfee\MSC\McAPExe.exe (ID: 1004 |ParentID: 664)
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (ID: 1368 |ParentID: 664)
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (ID: 1536 |ParentID: 664)
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (ID: 2076 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 2384 |ParentID: 664)
C:\Windows\system32\svchost.exe (ID: 2460 |ParentID: 664)
C:\Windows\system32\SearchIndexer.exe (ID: 3412 |ParentID: 664)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 4328 |ParentID: 664)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 3224 |ParentID: 664)
C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe (ID: 1572 |ParentID: 664)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 2796 |ParentID: 664)
C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe (ID: 3616 |ParentID: 3548)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4408 |ParentID: 760)
C:\Windows\system32\csrss.exe (ID: 5672 |ParentID: 4148)
C:\Windows\System32\WinLogon.exe (ID: 6012 |ParentID: 4148)
C:\Windows\System32\dwm.exe (ID: 3604 |ParentID: 6012)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 4188 |ParentID: 664)
C:\Windows\system32\taskhostex.exe (ID: 2168 |ParentID: 664)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 3592 |ParentID: 1104)
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe (ID: 5900 |ParentID: 5924)
C:\Windows\Explorer.EXE (ID: 4988 |ParentID: 4200)
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (ID: 3908 |ParentID: 3768)
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (ID: 5844 |ParentID: 4988)
C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe (ID: 3696 |ParentID: 4988)
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (ID: 5492 |ParentID: 4988)
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (ID: 6020 |ParentID: 5844)
C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe (ID: 4924 |ParentID: 3696)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 5760 |ParentID: 4988)
C:\Windows\System32\igfxtray.exe (ID: 4744 |ParentID: 4988)
C:\Windows\System32\hkcmd.exe (ID: 4864 |ParentID: 4988)
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (ID: 608 |ParentID: 6020)
C:\Windows\System32\igfxpers.exe (ID: 5572 |ParentID: 4988)
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (ID: 4156 |ParentID: 608)
C:\Program Files\Dell\QuickSet\quickset.exe (ID: 5940 |ParentID: 4988)
C:\Windows\SysWOW64\UMonit.exe (ID: 5600 |ParentID: 4988)
C:\Users\Chris\AppData\Roaming\cacaoweb\cacaoweb.exe (ID: 4644 |ParentID: 4988)
C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (ID: 4244 |ParentID: 4988)
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (ID: 3644 |ParentID: 3516)
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (ID: 2636 |ParentID: 664)
C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtTray.exe (ID: 3648 |ParentID: 3888)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 1948 |ParentID: 5380)
C:\Program Files (x86)\Dell Backup and Recovery\TOASTER.EXE (ID: 6456 |ParentID: 1572)
C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe (ID: 6484 |ParentID: 6444)
C:\Program Files\My Dell\imstrayicon.exe (ID: 3292 |ParentID: 7736)
C:\Windows\System32\WUDFHost.exe (ID: 8104 |ParentID: 956)
\\?\C:\Windows\system32\wbem\WMIADAP.EXE (ID: 7376 |ParentID: 304)
C:\Windows\system32\SearchProtocolHost.exe (ID: 6004 |ParentID: 3412)
C:\Windows\system32\SearchFilterHost.exe (ID: 7916 |ParentID: 3412)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 6544 |ParentID: 760)

################## | Regedit Run |

04 - HKLM\..\Run : [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
04 - HKLM\..\Run : [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
04 - HKLM\..\Run : [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
04 - HKLM\..\Run : [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
04 - HKLM\..\RunOnce : []
04 - HKLM\..\Policies\Explorer\run : [BtvStack] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
04 - HKLM64\..\Run : [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
04 - HKLM64\..\Run : [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX4
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM64\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM64\..\Run : [QuickSet] c:\Program Files\Dell\QuickSet\QuickSet.exe
04 - HKLM64\..\Run : [BtPreLoad] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtPreLoad.exe"
04 - HKLM64\..\Run : [UMonit] C:\Windows\SysWOW64\UMonit.exe
04 - HKLM64\..\Policies\Explorer\run : [BtvStack] "C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe"
04 - HKU\S-1-5-21-764213071-3167410971-3321706326-1001\..\Run : [cacaoweb] "C:\Users\Chris\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer

################## | Recherche générique |


################## | Registre |


################## | Vaccin |