start::
CreateRestorePoint: 
CloseProcesses:
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe 
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION 
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\injector.vbs.vbs [2018-01-28] () 
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit) 
CHR HKU\S-1-5-21-2746970837-595597586-80605456-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx 
R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit) 
S3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [39904 2017-06-06] (IObit.com) 
S3 IURegProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegProcessFilter.sys [39792 2017-09-28] (IObit.com) 
2018-02-07 22:59 - 2018-02-07 22:59 - 000001448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk 
2018-02-07 22:59 - 2018-02-07 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 
2018-02-07 22:59 - 2017-08-12 23:29 - 000000000 ____D C:\ProgramData\IObit 
2018-02-07 22:56 - 2017-08-12 23:29 - 000000000 ____D C:\Users\admin\AppData\Roaming\IObit 
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) 
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) 
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit) 
Task: {522EFBC8-324E-4213-BC22-7DE09025439D} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2016-04-06] () 
2018-02-07 22:59 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 
2018-02-07 22:59 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 
2018-02-07 22:59 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 
AlternateDataStreams: C:\Users\admin\Local Settings:9STWxbe6gPm4bLfBYdsBS3bQ9 [2356] 
AlternateDataStreams: C:\Users\admin\AppData\Local:9STWxbe6gPm4bLfBYdsBS3bQ9 [2356] 
AlternateDataStreams: C:\Users\Carole\Documents\detailPaiementsecu8.jpeg:3or4kl4x13tuuug3Byamue2s4b [87] 
AlternateDataStreams: C:\Users\Carole\Documents\detailPaiementsecu8.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] 
AlternateDataStreams: C:\Users\Richard\Local Settings:9STWxbe6gPm4bLfBYdsBS3bQ9 [2228] 
AlternateDataStreams: C:\Users\Richard\AppData\Local:9STWxbe6gPm4bLfBYdsBS3bQ9 [2228] 
C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\injector.vbs.vbs 
Hosts:
EmptyTemp: 
end::