Répondre à : Taskhost prend des ressources processeur 2016-09-08T13:45:56+00:00
stef78
Participant
Nombre d'articles : 11

Merci pour ton aide

Voici le rapport
############################## | UsbFix V 7.171 | [Recherche]

Utilisateur: Stephan (Administrateur) # STEPHAN-PC
Mis à jour le 09/06/2014 par El Desaparecido – SosVirus
Lancé à 09:04:34 | 13/06/2014

Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
Upload Malware : https://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

PC: Gigabyte Technology Co., Ltd. (Z68XP-UD3P)
CPU: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
RAM -> [Total : 16367 Mo| Free : 13362 Mo]
Bios: Award Software International, Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Édition Intégrale (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.17126
WB: Google Chrome : 35.0.1916.114

SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender [Enabled | Updated]
AS: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall [(!) Disabled]

C: (%SystemDrive%) -> Disque fixe # 112 Go (35 Go libre(s) – 31%) [] # NTFS
D: -> Disque fixe # 3726 Go (2791 Go libre(s) – 75%) [Stockage] # NTFS
E: -> Disque fixe # 932 Go (673 Go libre(s) – 72%) [Dossier temporaires adobe] # NTFS
F: -> Disque fixe # 932 Go (417 Go libre(s) – 45%) [export transfert vidéo 83] # NTFS
G: -> CD-ROM
H: -> CD-ROM
N: -> CD-ROM
P: -> Disque amovible # 7 Go (4 Go libre(s) – 52%) [] # NTFS
Q: -> Disque fixe # 932 Go (377 Go libre(s) – 40%) [Perso] # NTFS

################## | Processus Actif |

C:WindowsSystem32smss.exe (ID: 476|ParentID: 4|Système)
C:WindowsSystem32wininit.exe (ID: 776|ParentID: 688)
C:WindowsSystem32winlogon.exe (ID: 840|ParentID: 768)
C:WindowsSystem32services.exe (ID: 868|ParentID: 776)
C:WindowsSystem32lsass.exe (ID: 892|ParentID: 776)
C:WindowsSystem32lsm.exe (ID: 900|ParentID: 776)
C:WindowsSystem32svchost.exe (ID: 1000|ParentID: 868)
C:WindowsSystem32nvvsvc.exe (ID: 372|ParentID: 868)
C:Program Files (x86)NVIDIA Corporation3D VisionnvSCPAPISvr.exe (ID: 404|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 544|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 988|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1048|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1084|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1116|ParentID: 868)
C:WindowsSystem32audiodg.exe (ID: 1200|ParentID: 988)
C:WindowsSystem32svchost.exe (ID: 1240|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1392|ParentID: 868)
C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1460|ParentID: 868)
C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe (ID: 1504|ParentID: 372)
C:WindowsSystem32nvvsvc.exe (ID: 1512|ParentID: 372)
C:WindowsSystem32dwm.exe (ID: 1776|ParentID: 1048|Stephan)
C:Windowsexplorer.exe (ID: 1812|ParentID: 1756|Stephan)
C:WindowsSystem32taskeng.exe (ID: 1876|ParentID: 1116)
C:WindowsSystem32spoolsv.exe (ID: 1912|ParentID: 868)
C:WindowsSystem32taskhost.exe (ID: 1928|ParentID: 868|Stephan)
C:WindowsSystem32svchost.exe (ID: 1984|ParentID: 868)
C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (ID: 1572|ParentID: 868)
C:Program Files (x86)GIGABYTEEnergySaver2des2svr.exe (ID: 1992|ParentID: 868)
C:Program FilesCommon FilesEPSONEPW!3 SSRPE_S50RPB.EXE (ID: 2060|ParentID: 868)
C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe (ID: 2144|ParentID: 868)
C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe (ID: 2340|ParentID: 868)
C:Program Files (x86)NVIDIA CorporationNetServiceNvNetworkService.exe (ID: 2416|ParentID: 868)
C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamsvc.exe (ID: 2496|ParentID: 868)
C:Program Files (x86)Contour ShuttleShuttleEngine.exe (ID: 2572|ParentID: 868)
C:Program Files (x86)GIGABYTEsmart6timelockTimeMgmtDaemon.exe (ID: 2604|ParentID: 868)
C:Program Files (x86)Malwarebytes Anti-Malwarembam.exe (ID: 2632|ParentID: 2340|Stephan)
C:WindowsSystem32svchost.exe (ID: 2640|ParentID: 868)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 2672|ParentID: 868)
C:WindowsSystem32escsvc64.exe (ID: 2796|ParentID: 868)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVCM.EXE (ID: 2896|ParentID: 2672)
C:Program FilesNVIDIA CorporationNvStreamSrvnvstreamsvc.exe (ID: 3052|ParentID: 2496)
C:WindowsSystem32conhost.exe (ID: 3060|ParentID: 784)
C:Program Files (x86)NVIDIA CorporationUpdate CoreNvBackend.exe (ID: 3096|ParentID: 2660|Stephan)
C:Program FilesCommon FilesMicrosoft SharedOfficeSoftwareProtectionPlatformOSPPSVC.EXE (ID: 3356|ParentID: 868)
C:WindowsSystem32rundll32.exe (ID: 3968|ParentID: 1000|Stephan)
C:WindowsSystem32svchost.exe (ID: 1292|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 3972|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 3940|ParentID: 868)
C:Program FilesNVIDIA CorporationDisplaynvtray.exe (ID: 4648|ParentID: 1504|Stephan)
C:Program FilesGIGABYTESMART6RecoveryRPMDaemon.exe (ID: 4312|ParentID: 4812|Stephan)
C:WindowsSystem32svchost.exe (ID: 5016|ParentID: 868)
C:Program Files (x86)GIGABYTEET6GUI.exe (ID: 1160|ParentID: 5112|Stephan)
C:Program FilesRealtekAudioHDARAVCpl64.exe (ID: 1072|ParentID: 1812|Stephan)
C:Program FilesMicrosoft Mouse and Keyboard Centeritype.exe (ID: 4536|ParentID: 1812|Stephan)
C:Program FilesMicrosoft Mouse and Keyboard Centeripoint.exe (ID: 4892|ParentID: 1812|Stephan)
C:Program Files (x86)EXPERToolTBPANEL.exe (ID: 4100|ParentID: 1812|Stephan)
C:Program FilesWindows Sidebarsidebar.exe (ID: 4584|ParentID: 1812|Stephan)
C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe (ID: 4184|ParentID: 1812|Stephan)
C:Program Files (x86)Siber SystemsAI RoboFormrobotaskbaricon.exe (ID: 3780|ParentID: 1812|Stephan)
C:WindowsSystem32spooldriversx643E_IATIJCE.EXE (ID: 4156|ParentID: 1812|Stephan)
C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe (ID: 1192|ParentID: 4692|Stephan)
C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe (ID: 5188|ParentID: 4692|Stephan)
C:Program FilesAVAST SoftwareAvastavastui.exe (ID: 5572|ParentID: 4692|Stephan)
C:Program FilesFresco LogicFresco Logic USB3.0 Host Controlleramd64_hostFLxHCIm.exe (ID: 5916|ParentID: 4692|Stephan)
C:Program Files (x86)Contour ShuttleShuttleHelper.exe (ID: 5616|ParentID: 4692|Stephan)
C:WindowsSystem32SearchIndexer.exe (ID: 5464|ParentID: 868)
C:WindowsSystem32wbemunsecapp.exe (ID: 5564|ParentID: 1000|Stephan)
C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 5560|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1328|ParentID: 868)
C:Program FilesInternet Exploreriexplore.exe (ID: 5864|ParentID: 1812|Stephan)
C:Program Files (x86)Internet Exploreriexplore.exe (ID: 1608|ParentID: 5864|Stephan)
C:Program Files (x86)GoogleGoogle ToolbarGoogleToolbarUser_32.exe (ID: 5844|ParentID: 5864|Stephan)
C:WindowsSystem32MacromedFlashFlashUtil64_13_0_0_214_ActiveX.exe (ID: 6920|ParentID: 1000|Stephan)
C:Program Files (x86)GIGABYTEsmart6timelockAlarmClock.exe (ID: 6304|ParentID: 2604)
C:Program Files (x86)Internet Exploreriexplore.exe (ID: 7140|ParentID: 5864|Stephan)
C:Program Files (x86)Internet Exploreriexplore.exe (ID: 5328|ParentID: 5864|Stephan)
C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorDataMgrSvc.exe (ID: 7908|ParentID: 868)
C:WindowsSystem32svchost.exe (ID: 1720|ParentID: 868)
C:Program Files (x86)Internet Exploreriexplore.exe (ID: 2112|ParentID: 5864|Stephan)
C:WindowsSystem32taskmgr.exe (ID: 3504|ParentID: 840|Stephan)
C:WindowsSystem32SearchProtocolHost.exe (ID: 3472|ParentID: 5464|Stephan)
C:WindowsSystem32SearchFilterHost.exe (ID: 7992|ParentID: 5464|Système)
C:UsbFixUsbFix.exe (ID: 4924|ParentID: 1812|Stephan)
C:WindowsSystem32wermgr.exe (ID: 7824|ParentID: 3972|Stephan)

################## | Autorun |

################## | Regedit Run |

F2 – HKLM..Winlogon : [Shell] explorer.exe
F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
F2 – HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
04 – HKCU..Run : [ISUSPM Startup] C:PROGRA~2COMMON~1INSTAL~1UPDATE~1isuspm.exe -startup
04 – HKCU..Run : [GAINWARD] C:Program Files (x86)EXPERToolTBPanel.exe /A
04 – HKCU..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
04 – HKCU..Run : [RoboForm] “C:Program Files (x86)Siber SystemsAI RoboFormRoboTaskBarIcon.exe”
04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
04 – HKCU..Run : [EPLTargetP0000000000000000] C:Windowssystem32spoolDRIVERSx643E_IATIJCE.EXE /EPT “EPLTargetP0000000000000000” /M “XP-600 Series”
04 – HKLM..Run : [IAStorIcon] C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLM..Run : [ISUSScheduler] “C:Program Files (x86)Common FilesInstallShieldUpdateServiceissch.exe” -start
04 – HKLM..Run : [Quick-Drop] “C:Program Files (x86)CorelCorel DVD MovieFactory 7Corel DVD MovieFactory 7Quick-Drop.exe” WINDOWCALL
04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – HKLM..Run : [FLxHCIm64] “C:Program FilesFresco LogicFresco Logic USB3.0 Host Controlleramd64_hostFLxHCIm.exe”
04 – HKLM..Run : [APSDaemon] “C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe”
04 – HKLM..Run : [QuickTime Task] “C:Program Files (x86)QuickTimeQTTask.exe” -atboottime
04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
04 – HKLM..Run : [Contour Shuttle Device Helper] C:Program Files (x86)Contour ShuttleShuttleHelper.exe
04 – HKLM..RunOnce : [EasyTuneVI] C:Program Files (x86)GIGABYTEET6ETCall.exe
04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
04 – [x64] HKLM..Run : [IntelliType Pro] “C:Program FilesMicrosoft Mouse and Keyboard Centeritype.exe”
04 – [x64] HKLM..Run : [IntelliPoint] “C:Program FilesMicrosoft Mouse and Keyboard Centeripoint.exe”
04 – [x64] HKLM..Run : [AdobeAAMUpdater-1.0] “C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe”
04 – [x64] HKLM..Run : [NvBackend] “C:Program Files (x86)NVIDIA CorporationUpdate CoreNvBackend.exe”
04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
04 – [x64] HKLM..RunOnce : [RPMKickstart] C:Program FilesGIGABYTESMART6RecoveryRPMKickstart.exe
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [ISUSPM Startup] C:PROGRA~2COMMON~1INSTAL~1UPDATE~1isuspm.exe -startup
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [GAINWARD] C:Program Files (x86)EXPERToolTBPanel.exe /A
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [RoboForm] “C:Program Files (x86)Siber SystemsAI RoboFormRoboTaskBarIcon.exe”
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
04 – HKUS-1-5-21-1038908844-1798142516-3508811120-1000..Run : [EPLTargetP0000000000000000] C:Windowssystem32spoolDRIVERSx643E_IATIJCE.EXE /EPT “EPLTargetP0000000000000000” /M “XP-600 Series”
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Présent! C:Windowsrundl132.exe

################## | Registre |

################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |