start:: CloseProcesses: CreateRestorePoint: Winlogon\Notify\igfxcui: igfxdev.dll [X] HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <==== ATTENTION IFEO\acs.exe: [Debugger] svchost.exe IFEO\AdAwareDesktop.exe: [Debugger] svchost.exe IFEO\AdAwareService.exe: [Debugger] svchost.exe IFEO\AdAwareTray.exe: [Debugger] svchost.exe IFEO\AgentSvc.exe: [Debugger] svchost.exe IFEO\AVK.exe: [Debugger] svchost.exe IFEO\AVKProxy.exe: [Debugger] svchost.exe IFEO\AVKService.exe: [Debugger] svchost.exe IFEO\AVKTray.exe: [Debugger] svchost.exe IFEO\AVKWCtlx64.exe: [Debugger] svchost.exe IFEO\avpmapp.exe: [Debugger] svchost.exe IFEO\av_task.exe: [Debugger] svchost.exe IFEO\Bav.exe: [Debugger] svchost.exe IFEO\bavhm.exe: [Debugger] svchost.exe IFEO\BavSvc.exe: [Debugger] svchost.exe IFEO\BavTray.exe: [Debugger] svchost.exe IFEO\BavUpdater.exe: [Debugger] svchost.exe IFEO\BavWebClient.exe: [Debugger] svchost.exe IFEO\BDSSVC.EXE: [Debugger] svchost.exe IFEO\BgScan.exe: [Debugger] svchost.exe IFEO\BullGuard.exe: [Debugger] svchost.exe IFEO\BullGuardBhvScanner.exe: [Debugger] svchost.exe IFEO\BullGuardUpdate.exe: [Debugger] svchost.exe IFEO\BullGuarScanner.exe: [Debugger] svchost.exe IFEO\capinfos.exe: [Debugger] svchost.exe IFEO\cavwp.exe: [Debugger] svchost.exe IFEO\CertReg.exe: [Debugger] svchost.exe IFEO\cis.exe: [Debugger] svchost.exe IFEO\CisTray.exe: [Debugger] svchost.exe IFEO\clamscan.exe: [Debugger] svchost.exe IFEO\ClamTray.exe: [Debugger] svchost.exe IFEO\ClamWin.exe: [Debugger] svchost.exe IFEO\cmdagent.exe: [Debugger] svchost.exe IFEO\ConfigSecurityPolicy.exe: [Debugger] svchost.exe IFEO\CONSCTLX.EXE: [Debugger] svchost.exe IFEO\coreFrameworkHost.exe: [Debugger] svchost.exe IFEO\coreServiceShell.exe: [Debugger] svchost.exe IFEO\dragon_updater.exe: [Debugger] svchost.exe IFEO\dumpcap.exe: [Debugger] svchost.exe IFEO\econceal.exe: [Debugger] svchost.exe IFEO\econser.exe: [Debugger] svchost.exe IFEO\editcap.exe: [Debugger] svchost.exe IFEO\EMLPROXY.EXE: [Debugger] svchost.exe IFEO\escanmon.exe: [Debugger] svchost.exe IFEO\escanpro.exe: [Debugger] svchost.exe IFEO\fcappdb.exe: [Debugger] svchost.exe IFEO\FCDBlog.exe: [Debugger] svchost.exe IFEO\FCHelper64.exe: [Debugger] svchost.exe IFEO\FilMsg.exe: [Debugger] svchost.exe IFEO\FilUp.exe: [Debugger] svchost.exe IFEO\filwscc.exe: [Debugger] svchost.exe IFEO\fmon.exe: [Debugger] svchost.exe IFEO\FortiClient.exe: [Debugger] svchost.exe IFEO\FortiClient_Diagnostic_Tool.exe: [Debugger] svchost.exe IFEO\FortiESNAC.exe: [Debugger] svchost.exe IFEO\FortiFW.exe: [Debugger] svchost.exe IFEO\FortiProxy.exe: [Debugger] svchost.exe IFEO\FortiSSLVPNdaemon.exe: [Debugger] svchost.exe IFEO\FortiTray.exe: [Debugger] svchost.exe IFEO\FPAVServer.exe: [Debugger] svchost.exe IFEO\FProtTray.exe: [Debugger] svchost.exe IFEO\FPWin.exe: [Debugger] svchost.exe IFEO\freshclam.exe: [Debugger] svchost.exe IFEO\freshclamwrap.exe: [Debugger] svchost.exe IFEO\fsgk32.exe: [Debugger] svchost.exe IFEO\FSHDLL64.exe: [Debugger] svchost.exe IFEO\fshoster32.exe: [Debugger] svchost.exe IFEO\FSM32.EXE: [Debugger] svchost.exe IFEO\FSMA32.EXE: [Debugger] svchost.exe IFEO\fsorsp.exe: [Debugger] svchost.exe IFEO\fssm32.exe: [Debugger] svchost.exe IFEO\GdBgInx64.exe: [Debugger] svchost.exe IFEO\GDKBFltExe32.exe: [Debugger] svchost.exe IFEO\GDSC.exe: [Debugger] svchost.exe IFEO\GDScan.exe: [Debugger] svchost.exe IFEO\guardxkickoff_x64.exe: [Debugger] svchost.exe IFEO\guardxservice.exe: [Debugger] svchost.exe IFEO\iptray.exe: [Debugger] svchost.exe IFEO\K7AVScan.exe: [Debugger] svchost.exe IFEO\K7CrvSvc.exe: [Debugger] svchost.exe IFEO\K7EmlPxy.EXE: [Debugger] svchost.exe IFEO\K7FWSrvc.exe: [Debugger] svchost.exe IFEO\K7PSSrvc.exe: [Debugger] svchost.exe IFEO\K7RTScan.exe: [Debugger] svchost.exe IFEO\K7SysMon.Exe: [Debugger] svchost.exe IFEO\K7TSecurity.exe: [Debugger] svchost.exe IFEO\K7TSMain.exe: [Debugger] svchost.exe IFEO\K7TSMngr.exe: [Debugger] svchost.exe IFEO\LittleHook.exe: [Debugger] svchost.exe IFEO\mbam.exe: [Debugger] svchost.exe IFEO\mbamscheduler.exe: [Debugger] svchost.exe IFEO\mbamservice.exe: [Debugger] svchost.exe IFEO\MCS-Uninstall.exe: [Debugger] svchost.exe IFEO\MCShieldCCC.exe: [Debugger] svchost.exe IFEO\MCShieldDS.exe: [Debugger] svchost.exe IFEO\MCShieldRTM.exe: [Debugger] svchost.exe IFEO\mergecap.exe: [Debugger] svchost.exe IFEO\MpCmdRun.exe: [Debugger] svchost.exe IFEO\MpUXSrv.exe: [Debugger] svchost.exe IFEO\MSASCui.exe: [Debugger] svchost.exe IFEO\MsMpEng.exe: [Debugger] svchost.exe IFEO\MWAGENT.EXE: [Debugger] svchost.exe IFEO\MWASER.EXE: [Debugger] svchost.exe IFEO\nanoav.exe: [Debugger] svchost.exe IFEO\nanosvc.exe: [Debugger] svchost.exe IFEO\nbrowser.exe: [Debugger] svchost.exe IFEO\nfservice.exe: [Debugger] svchost.exe IFEO\NisSrv.exe: [Debugger] svchost.exe IFEO\njeeves2.exe: [Debugger] svchost.exe IFEO\nnf.exe: [Debugger] svchost.exe IFEO\nprosec.exe: [Debugger] svchost.exe IFEO\NS.exe: [Debugger] svchost.exe IFEO\nseupdatesvc.exe: [Debugger] svchost.exe IFEO\nvcod.exe: [Debugger] svchost.exe IFEO\nvcsvc.exe: [Debugger] svchost.exe IFEO\nvoy.exe: [Debugger] svchost.exe IFEO\nwscmon.exe: [Debugger] svchost.exe IFEO\ONLINENT.EXE: [Debugger] svchost.exe IFEO\OPSSVC.EXE: [Debugger] svchost.exe IFEO\op_mon.exe: [Debugger] svchost.exe IFEO\ProcessHacker.exe: [Debugger] svchost.exe IFEO\procexp.exe: [Debugger] svchost.exe IFEO\PSANHost.exe: [Debugger] svchost.exe IFEO\PSUAMain.exe: [Debugger] svchost.exe IFEO\PSUAService.exe: [Debugger] svchost.exe IFEO\psview.exe: [Debugger] svchost.exe IFEO\PtSessionAgent.exe: [Debugger] svchost.exe IFEO\PtSvcHost.exe: [Debugger] svchost.exe IFEO\PtWatchDog.exe: [Debugger] svchost.exe IFEO\quamgr.exe: [Debugger] svchost.exe IFEO\QUHLPSVC.EXE: [Debugger] svchost.exe IFEO\rawshark.exe: [Debugger] svchost.exe IFEO\SAPISSVC.EXE: [Debugger] svchost.exe IFEO\SASCore64.exe: [Debugger] svchost.exe IFEO\SASTask.exe: [Debugger] svchost.exe IFEO\SBAMSvc.exe: [Debugger] svchost.exe IFEO\SBAMTray.exe: [Debugger] svchost.exe IFEO\SBPIMSvc.exe: [Debugger] svchost.exe IFEO\SCANNER.EXE: [Debugger] svchost.exe IFEO\SCANWSCS.EXE: [Debugger] svchost.exe IFEO\schmgr.exe: [Debugger] svchost.exe IFEO\scproxysrv.exe: [Debugger] svchost.exe IFEO\ScSecSvc.exe: [Debugger] svchost.exe IFEO\SDFSSvc.exe: [Debugger] svchost.exe IFEO\SDScan.exe: [Debugger] svchost.exe IFEO\SDTray.exe: [Debugger] svchost.exe IFEO\SDWelcome.exe: [Debugger] svchost.exe IFEO\SSUpdate64.exe: [Debugger] svchost.exe IFEO\SUPERAntiSpyware.exe: [Debugger] svchost.exe IFEO\SUPERDelete.exe: [Debugger] svchost.exe IFEO\Taskmgr.exe: [Debugger] svchost.exe IFEO\text2pcap.exe: [Debugger] svchost.exe IFEO\TRAYICOS.EXE: [Debugger] svchost.exe IFEO\TRAYSSER.EXE: [Debugger] svchost.exe IFEO\trigger.exe: [Debugger] svchost.exe IFEO\tshark.exe: [Debugger] svchost.exe IFEO\twsscan.exe: [Debugger] svchost.exe IFEO\twssrv.exe: [Debugger] svchost.exe IFEO\uiSeAgnt.exe: [Debugger] svchost.exe IFEO\uiUpdateTray.exe: [Debugger] svchost.exe IFEO\uiWatchDog.exe: [Debugger] svchost.exe IFEO\uiWinMgr.exe: [Debugger] svchost.exe IFEO\UnThreat.exe: [Debugger] svchost.exe IFEO\UserAccountControlSettings.exe: [Debugger] svchost.exe IFEO\UserReg.exe: [Debugger] svchost.exe IFEO\utsvc.exe: [Debugger] svchost.exe IFEO\V3Main.exe: [Debugger] svchost.exe IFEO\V3Medic.exe: [Debugger] svchost.exe IFEO\V3Proxy.exe: [Debugger] svchost.exe IFEO\V3SP.exe: [Debugger] svchost.exe IFEO\V3Svc.exe: [Debugger] svchost.exe IFEO\V3Up.exe: [Debugger] svchost.exe IFEO\VIEWTCP.EXE: [Debugger] svchost.exe IFEO\VIPREUI.exe: [Debugger] svchost.exe IFEO\virusutilities.exe: [Debugger] svchost.exe IFEO\WebCompanion.exe: [Debugger] svchost.exe IFEO\wireshark.exe: [Debugger] svchost.exe IFEO\Zanda.exe: [Debugger] svchost.exe IFEO\Zlh.exe: [Debugger] svchost.exe IFEO\zlhh.exe: [Debugger] svchost.exe CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-15] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pfoeakahkgllhkommkfeehmkfcloagkl [2017-05-09] CHR Extension: (Pas de nom) - C:\Users\alexandre\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-09] S2 LMIGuardianSvc; "C:\Program Files\LogMeIn Ignition\LMIGuardianSvc.exe" [X] DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83 DeleteKey: HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97 EmptyTemp: end::