HitmanPro-20170511-1528.log

Document joint : GEltVYWMf0f_HitmanPro-20170511-1528.log

Cliquez pour partager vos propres fichiers

Format du document : application/octet-stream

Prévisualisation

[code]
HitmanPro 3.7.18.284
www.hitmanpro.com

Computer name . . . . : JULIENL
Windows . . . . . . . : 10.0.0.14393.X64/4
User name . . . . . . : JULIENL\Julien Lisee
UAC . . . . . . . . . : Enabled
License . . . . . . . : Trial (31 days left)

Scan date . . . . . . : 2017-05-11 15:13:22
Scan mode . . . . . . : Normal
Scan duration . . . . : 12m 34s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No

Threats . . . . . . . : 13
Traces . . . . . . . : 66

Objects scanned . . . : 2 139 820
Files scanned . . . . : 58 092
Remnants scanned . . : 528 247 files / 1 553 481 keys

Malware _____________________________________________________________________

C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe -> Quarantined
Size . . . . . . . : 1 165 928 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:22:06)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3686F44F76B95350233FE574B40D61EE0105D71790310A4C5DE1C8C7B42B91A6
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 103.0
Forensic Cluster
0.0s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
2.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
8.7s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
8.8s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
9.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
10.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
14.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
14.0s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
14.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
14.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
14.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
14.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
14.1s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
14.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
14.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
14.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
14.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
14.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
14.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
14.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
15.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
15.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
15.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
15.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
15.6s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
15.6s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
19.3s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
19.9s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
24.0s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
35.5s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
35.6s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
36.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
45.8s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
57.2s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
58.4s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
67.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
70.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
70.4s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
71.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
71.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
71.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
71.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
72.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
73.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
73.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
75.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
75.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
75.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
75.8s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
76.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
78.0s C:\System Volume Information\SystemRestore\FRStaging\
78.0s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
79.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
82.2s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
83.5s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
83.5s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
83.7s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
83.7s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
84.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
85.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
98.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
99.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
99.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
100.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
100.2s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
100.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
100.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
100.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
101.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
101.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
101.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
101.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
101.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
101.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
101.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
101.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
101.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
102.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
102.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
102.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
102.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
102.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
102.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
102.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
102.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
102.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
102.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
103.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
103.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
103.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
103.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
103.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
103.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
103.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
103.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
103.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
103.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
103.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
103.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
103.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
103.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
103.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
103.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
104.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
104.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
104.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
104.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
104.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
104.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
104.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
104.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
104.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
104.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
104.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
104.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
104.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
104.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
105.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
106.9s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
107.1s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
116.0s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe -> Quarantined
Size . . . . . . . : 19 973 192 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:22:41)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 258A18C912F95FF7EDE1741A9FB5D53F35E4F433F4192FB2730FDB7B19B32967
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 98.0
Forensic Cluster
-35.5s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-33.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-26.8s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-26.8s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-25.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-25.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-21.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
-21.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
-21.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
-20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
-20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
-20.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
-20.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
-20.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
-20.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
-20.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
-19.9s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
-19.9s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
-16.2s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
-15.6s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
-11.5s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
0.0s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
10.3s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
21.7s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
22.9s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
31.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
34.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
34.9s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
35.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
35.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
35.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
35.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
37.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
37.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
37.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
39.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
39.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
40.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
40.3s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
40.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
42.5s C:\System Volume Information\SystemRestore\FRStaging\
42.5s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
43.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
46.7s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
48.0s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
48.0s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
48.2s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
48.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
49.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
50.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
62.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
64.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
64.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
64.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
64.7s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
64.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
65.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
65.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
65.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
65.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
65.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
65.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
65.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
66.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
66.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
66.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
66.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
66.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
66.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
66.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
67.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
67.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
67.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
67.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
67.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
67.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
67.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
67.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
67.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
67.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
67.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
67.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
67.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
67.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
67.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
67.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
67.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
68.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
68.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
68.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
68.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
68.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
68.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
68.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
68.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
68.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
68.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
69.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
69.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
69.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
71.3s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
71.6s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
80.5s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe -> Quarantined
Size . . . . . . . : 8 026 856 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:23:30)
Entropy . . . . . : 8.0
SHA-256 . . . . . : D45594EBE06BF04BB076B94FF3546322484EDEDDAD89CA54224E3A452469BE1E
Product . . . . . : DriverScanner
Publisher . . . . : Uniblue Systems Ltd
Description . . . : DriverScanner Setup
Version . . . . . : 4.1.1.1
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 98.0
Forensic Cluster
-83.7s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-81.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-75.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-75.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-74.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-73.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-69.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
-69.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
-69.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
-69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
-69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
-69.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
-68.9s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
-68.9s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
-68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
-68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
-68.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
-68.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
-68.1s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
-68.1s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
-64.4s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
-63.8s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
-59.7s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
-48.2s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
-48.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
-47.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
-37.9s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
-26.5s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
-25.3s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
-16.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
-13.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
-13.3s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
-12.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
-12.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
-12.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
-12.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
-11.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
-10.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
-10.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
-8.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
-8.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
-7.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
-7.9s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
-7.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
-5.7s C:\System Volume Information\SystemRestore\FRStaging\
-5.7s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
-4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
-1.5s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
-0.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
-0.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
0.0s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
1.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
14.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
16.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
16.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
16.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
16.5s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
16.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
17.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
17.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
17.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
17.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
17.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
17.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
17.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
17.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
17.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
17.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
18.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
18.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
18.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
18.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
18.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
18.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
18.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
19.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
19.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
19.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
19.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
19.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
19.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
19.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
19.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
19.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
19.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
19.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
19.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
19.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
19.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
19.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
19.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
19.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
19.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
20.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
20.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
20.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
20.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
20.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
20.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
20.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
20.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
20.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
20.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
21.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
23.1s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
23.4s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
32.3s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Temp\_iu14D2N.tmp -> Quarantined
Size . . . . . . . : 1 242 312 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:41:54)
Entropy . . . . . : 6.5
SHA-256 . . . . . : 523AA69DACD7EA54D5429A95E706E21131DE7A6B3080DF819C9B0AA6A55F7BC9
RSA Key Size . . . : 2048
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 105.0
Forensic Cluster
-31.4s C:\Users\Julien Lisee\AppData\Local\Temp\~nsu.tmp\
-31.4s C:\Users\Julien Lisee\AppData\Local\Temp\~nsu.tmp\Au_.exe
-30.9s C:\Users\Julien Lisee\AppData\Local\Temp\nsx6A0A.tmp\
-26.7s C:\Users\Julien Lisee\AppData\Local\Temp\nsx6A0A.tmp\nsProcess.dll
-26.5s C:\Users\Julien Lisee\AppData\Local\Temp\~nsu.tmp\Bu_.exe
-23.9s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!003\MicrosoftEdge\Cache\KLMYQMA1\cr_139[2].js
-23.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\uninstall[1].css
-23.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\gline[1].png
-23.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\p_icons[1].png
-23.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\gtm[2].js
-23.5s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\p_images[1].png
-23.5s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\help[1].png
-23.5s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\5KJQAO3Q.cookie
-23.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\3e8b0dd1d7[1].js
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\_iu14D2N.tmp
1.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\ED81420D73E96C58.dat
4.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\84\ED81420D73E96C58.dat
6.4s C:\Users\Julien Lisee\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\3f4fa164b38012de.automaticDestinations-ms
6.6s C:\Windows\Prefetch\UNINS000.EXE-2D0EA36C.pf
10.4s C:\Windows\Prefetch\_IU14D2N.TMP-AD17FC42.pf
12.9s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!003\MicrosoftEdge\Cache\0LDITUC4\cr_139[2].js
12.9s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\pm-uninstall[1].htm
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\underscore-min[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\jquery.cookie[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\underscore-min[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\json2[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\jst-1.0.0[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\pp[1].js
13.1s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\jquery-1.7.2.min[1].js
13.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\60days-grey-fr-ededed[1].gif
13.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\jquery.cookie[1].js
13.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\jquery.countdown[1].js
13.3s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\microsoft-black-footer2[1].gif
13.3s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\p2_review_10_years_fr[1].gif
13.3s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\process-library-icon[1].png
13.3s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\software-patch-icon[1].png
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\p2_body_ps_pp[1].jpg
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\li-utilities-icon[1].png
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\39H6B5PL.cookie
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\how-to-icon[1].png
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\gtm[2].js
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\style-f-header-pm[1].jpg
13.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\pm-box-50percentoff-fr[1].jpg
13.5s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\style-f-header_bg[1].gif
13.5s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\dc[1].js
13.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\filext-icon[1].png
13.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\numbers_countdown_sprite[1].jpg
13.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\3STPYD34\favicon[4].png
13.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\bg-timer-sep[1].gif
13.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\countdown-shadow[1].gif
13.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\countdown-led-fr[1].gif
13.7s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\p2_sprite_button_orange_white_bg[1].gif
13.8s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\p2_footer_bg[1].gif
13.8s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\JMDGHFWM\p2_footer_divider_vertical2[1].gif
13.8s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UETE1H88\close[1].png
13.8s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\I7OT7L17.htm
13.8s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\VNASFR23\style-f-divider-horiz[1].gif
14.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\2QZ38JJU\63c6c33caf[2].js
36.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\9C74A6564D4CA3A0.dat
37.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\10\BC7731087FA02EDA.dat
42.2s C:\Windows\Prefetch\PCMECHANICPM.TMP-5ABEA2AE.pf

C:\Users\Julien Lisee\AppData\Local\Temp\DMGR1.25\DMGR1.25_0C1F1L1G1L1B0R1P2X0S1M1T1C1P1.25.exe -> Quarantined
Size . . . . . . . : 1 223 029 bytes
Age . . . . . . . : 0.8 days (2017-05-10 18:55:51)
Entropy . . . . . : 8.0
SHA-256 . . . . . : A3ACF29F44BF6283EF008BFB7E3A90F2339CDC85F1107FEE1DC0204B4A24C8EE
Product . . . . . : Kehurasoso
Publisher . . . . :
Description . . . : Kehurasoso Setup
Version . . . . . : 1.3.5.8
LanguageID . . . . : 0
> Kaspersky . . . . : not-a-virus:AdWare.Win32.DealPly.bdvvy
Fuzzy . . . . . . : 110.0
Forensic Cluster
-68.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\1FC639F8F78CAE72.dat
-68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\671FC61CA4583F2A.dat
-68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\C7930B629A68CCF9.dat
-61.8s C:\Windows\Prefetch\ADOBE_FLASH_SETUP.EXE-B6FCB55B.pf
-59.6s C:\Windows\Prefetch\CONSENT.EXE-2D674CE4.pf
-36.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\60\134437F54A0B05D0.dat
-36.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\16\C5A3DEA8122156CC.dat
-36.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\63031EE39411CF26.dat
-36.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\6AED39032E55559C.dat
-27.7s C:\Windows\Prefetch\SC.EXE-CCD1735C.pf
-27.7s C:\Windows\Prefetch\CMD.EXE-2EB3E6E2.pf
-23.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\50\B57558CAAC134C6E.dat
-23.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\B951C881DA2A0B04.dat
-23.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\18\FB8F530340CB87BA.dat
-23.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\31\FA8BE57448B39D77.dat
-23.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\34FD8330AA485785.dat
-23.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\45\B71E8424AB989651.dat
-23.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\81\69A6D02FE5F6C139.dat
-23.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\93846A96DF75194E.dat
-22.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\F4825149E437132C.dat
-22.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\BFC15AC90FBA774F.dat
-22.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\22\D1374E06A01FDCDA.dat
-21.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\0CF719DD03D29128.dat
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\DMGR1.25\DMGR1.25_0C1F1L1G1L1B0R1P2X0S1M1T1C1P1.25.exe
1.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\F90F6317E07908E9.dat
1.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\AE271315E1210573.dat
1.9s C:\Users\Julien Lisee\AppData\Local\Temp\DMGR1.25\
2.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\44\C310A1BC87C30FE0.dat
2.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\79\6CEF8AAE185B342B.dat
3.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\3F16C87539963068.dat
12.1s C:\Windows\Prefetch\DMGR1.25_0C1F1L1G1L1B0R1P2X0S-A3A6E0F1.pf
14.6s C:\Windows\Prefetch\NESUDE.EXE-246540B5.pf
20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\06\33DC375B9178ECB2.dat
21.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\36\3F16C87539963068.dat
22.0s C:\ProgramData\AVAST Software\
22.0s C:\ProgramData\AVAST Software\Persistent Data\
22.0s C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\
22.0s C:\ProgramData\AVAST Software\Persistent Data\Avast\
22.0s C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\Setup.log.old
22.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\7F2FCBC84E39717B.dat
22.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\81\DEE387B15E613F65.dat
22.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\40\5D005AEE76D2F844.dat
22.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\06\33DC375B9178ECB2.dat
23.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\86\EBF3E8168DD3101A.dat
23.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\003A9F17529C4ECF.dat
23.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\90\9EF4C18CC3AE079A.dat
23.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\61\082569E868601C3D.dat
23.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\08593E0764D708CA.dat
23.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\58\9B4A89F441875B02.dat
23.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\BE43390EF0D60B66.dat
23.8s C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\Instup.log
24.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\55\538F36B3D304B4AB.dat
24.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\92B855876437B610.dat
24.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\63\AD5213E4E497CA73.dat
24.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\38\03C486BF2BDED3EE.dat
25.1s C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\event_manager.log
25.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\46\08593E0764D708CA.dat
26.7s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_MicrosoftEdge.ex_5dfc3ff4eb5fa02d71d8aebee16e501766c96c33_80f18253_1e98c168\
26.7s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\AppCrash_MicrosoftEdge.ex_5dfc3ff4eb5fa02d71d8aebee16e501766c96c33_80f18253_1e98c168\Report.wer
42.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\5D005AEE76D2F844.dat
56.3s C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\Setup.log
56.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\18\8F699BA57C1D6ACE.dat
66.4s C:\Users\Julien Lisee\AppData\Roaming\Titabap\
71.3s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Store\465CD617EF053236508DBE1907299F17
71.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\125F9A7C89DDDD53.dat
71.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\51C3AF0D7A7FFD89.dat
71.8s C:\Users\Julien Lisee\AppData\Roaming\Titabap\info.dat
71.8s C:\Windows\Prefetch\SCHTASKS.EXE-0AD36442.pf
71.9s C:\Users\Julien Lisee\AppData\Roaming\Titabap\TTL.DAT
75.6s C:\Windows\SoftwareDistribution\Download\69a5b285156519e0aca27492168aaf24775fba19

C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll -> Quarantined
Size . . . . . . . : 205 528 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:22:20)
Entropy . . . . . : 6.5
SHA-256 . . . . . : D0BD75CDB649B3E0C1958F1AC02CFC3C703A8C14289A837E98E201BDCA740C4B
RSA Key Size . . . : 2048
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 101.0
Forensic Cluster
-14.1s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-11.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-5.3s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-5.3s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-4.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-3.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-0.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-0.0s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
0.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
0.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
0.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
0.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
0.6s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
0.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
0.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
1.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
1.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
1.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
5.3s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
5.8s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
10.0s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
21.5s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
22.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
31.7s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
43.1s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
44.4s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
53.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
56.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
56.4s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
56.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
57.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
57.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
57.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
58.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
59.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
59.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
61.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
61.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
61.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
61.8s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
62.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
63.9s C:\System Volume Information\SystemRestore\FRStaging\
64.0s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
65.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
68.2s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
69.4s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
69.4s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
69.7s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
69.7s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
70.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
71.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
84.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
86.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
86.2s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
86.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
86.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
86.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
87.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
87.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
87.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
87.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
87.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
87.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
87.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
87.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
87.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
88.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
88.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
88.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
88.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
88.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
88.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
88.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
88.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
88.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
88.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
88.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
89.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
89.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
89.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
89.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
89.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
89.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
89.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
89.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
89.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
89.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
89.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
89.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
89.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
89.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
89.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
89.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
90.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
90.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
90.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
90.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
90.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
90.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
90.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
90.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
90.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
90.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
90.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
90.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
90.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
91.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
92.8s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
93.1s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
101.9s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe -> Quarantined
Size . . . . . . . : 19 973 192 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:22:41)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 258A18C912F95FF7EDE1741A9FB5D53F35E4F433F4192FB2730FDB7B19B32967
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 98.0
Forensic Cluster
-35.6s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-33.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-26.8s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-26.8s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-25.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-25.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-21.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
-21.5s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
-21.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
-21.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
-20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
-20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
-20.9s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
-20.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
-20.8s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
-20.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
-20.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
-20.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
-16.2s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
-15.7s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
-11.5s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
-0.0s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
10.2s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
21.6s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
22.9s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
31.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
34.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
34.9s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
35.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
35.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
35.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
35.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
36.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
37.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
37.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
39.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
39.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
40.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
40.3s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
40.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
42.4s C:\System Volume Information\SystemRestore\FRStaging\
42.5s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
43.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
46.7s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
47.9s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
47.9s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
48.2s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
48.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
49.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
50.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
62.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
64.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
64.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
64.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
64.7s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
64.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
65.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
65.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
65.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
65.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
65.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
65.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
65.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
65.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
66.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
66.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
66.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
66.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
66.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
66.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
66.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
67.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
67.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
67.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
67.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
67.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
67.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
67.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
67.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
67.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
67.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
67.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
67.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
67.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
67.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
67.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
67.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
68.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
68.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
68.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
68.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
68.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
68.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
68.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
68.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
68.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
68.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
68.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
69.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
69.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
69.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
69.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
71.3s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
71.6s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
80.4s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp -> Quarantined
Size . . . . . . . : 1 242 312 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:23:46)
Entropy . . . . . : 6.5
SHA-256 . . . . . : 523AA69DACD7EA54D5429A95E706E21131DE7A6B3080DF819C9B0AA6A55F7BC9
RSA Key Size . . . : 2048
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 105.0
Forensic Cluster
-99.8s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-97.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-91.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-91.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-90.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-89.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-85.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
-85.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
-85.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
-85.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
-85.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
-85.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
-85.1s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
-85.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
-85.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
-84.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
-84.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
-84.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
-84.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
-84.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
-84.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
-80.4s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
-79.9s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
-75.7s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
-64.2s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
-64.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
-63.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
-54.0s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
-42.6s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
-41.3s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
-32.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
-29.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
-29.3s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
-28.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
-28.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
-28.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
-28.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
-27.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
-26.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
-26.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
-24.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
-24.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
-23.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
-23.9s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
-23.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
-21.8s C:\System Volume Information\SystemRestore\FRStaging\
-21.7s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
-20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
-17.5s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
-16.3s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
-16.3s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
-16.0s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
-16.0s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
-15.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
-14.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
-1.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
0.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
0.5s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
0.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
0.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
1.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
1.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
1.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
1.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
1.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
1.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
1.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
1.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
1.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
1.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
2.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
2.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
2.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
2.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
2.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
2.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
2.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
3.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
3.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
3.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
3.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
3.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
3.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
3.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
3.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
3.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
3.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
3.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
3.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
3.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
3.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
3.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
3.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
3.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
4.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
4.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
4.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
4.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
4.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
4.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
4.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
4.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
4.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
4.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
4.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
4.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
4.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
5.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
7.1s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
7.4s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
16.2s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe -> Quarantined
Size . . . . . . . : 8 026 856 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:23:30)
Entropy . . . . . : 8.0
SHA-256 . . . . . : D45594EBE06BF04BB076B94FF3546322484EDEDDAD89CA54224E3A452469BE1E
Product . . . . . : DriverScanner
Publisher . . . . : Uniblue Systems Ltd
Description . . . : DriverScanner Setup
Version . . . . . : 4.1.1.1
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 98.0
Forensic Cluster
-83.7s C:\$RECYCLE.BIN\S-1-5-21-3123612523-1301177601-3153632245-1001\$R9T8C0U.exe
-81.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\51CDE53597FA5E1A.dat
-75.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-75.0s C:\Users\Julien Lisee\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
-74.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\F9967D8FB4D7ACBD.dat
-73.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\94\DC727235D59FA862.dat
-69.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\F7590FD9A6B4507C.dat
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #001.txt
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_setup64.tmp
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\_isetup\_shfoldr.dll
-69.7s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\InstallerExtensions.dll
-69.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\7EE2F73CA91ED604.dat
-69.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\F7590FD9A6B4507C.dat
-69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\
-69.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\B00BC5CC588737F5.dat
-69.1s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\windows8_with_innovation.bmp
-69.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\printer.bmp
-69.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\license.fr.rtf
-68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B4012A8380E2FBE8.dat
-68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\6222C34A9ABB70B3.dat
-68.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\B8D429046024F4B8.dat
-68.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_399x120.bmp
-68.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\banner_icon.bmp
-68.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\microsoft_partner.bmp
-64.4s C:\Windows\Prefetch\PCMECHANICPM.EXE-96458CE6.pf
-63.9s C:\Windows\Prefetch\PCMECHANICPM.TMP-E6CA1D7F.pf
-59.7s C:\Windows\Prefetch\PCMECHANICPM.TMP-99F38230.pf
-48.2s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\K89862N3\pcmechanicpm-standalone-setup[1].exe
-48.2s C:\Users\Julien Lisee\AppData\Local\Temp\is-7HG3T.tmp\pm-standalone-setup.exe
-47.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\95\F28D95146C903CAB.dat
-38.0s C:\Windows\Prefetch\DLLHOST.EXE-BF26B840.pf
-26.6s C:\System Volume Information\SPP\OnlineMetadataCache\{3fbfc78c-62a1-4bb8-93f2-fa9a690f8bb7}_OnDiskSnapshotProp
-25.3s C:\System Volume Information\{b4128b98-363c-11e7-8347-0025ab69f413}{3808876b-c176-4e48-b7ae-04046e6cc752}
-16.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9DA4AB0F25D8D9B0.dat
-13.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\6E1C5BBC2CE5B068.dat
-13.3s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #002.txt
-12.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\84\A7C8EBCF264B9B34.dat
-12.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\88\0D919F51680A702C.dat
-12.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\64\E5964D8B74F40E00.dat
-12.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\54\50EDA46707E48C5A.dat
-11.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\88\0D919F51680A702C.dat
-10.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\7FD6781903BBB7C9.dat
-10.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\05\47C66C6FBE0BBCE9.dat
-8.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\57\8D1342968C491B15.dat
-8.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\FFCE3B786F6CD92A.dat
-7.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\42\40C2667E5B9F8116.dat
-7.9s C:\Windows\Prefetch\PM-STANDALONE-SETUP.TMP-0006648D.pf
-7.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\33\E048E101588AEEED.dat
-5.8s C:\System Volume Information\SystemRestore\FRStaging\
-5.7s C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\
-4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\9CD2E3FE059246E9.dat
-1.5s C:\Windows\Prefetch\PC-MECHANIC.EXE-572514DB.pf
-0.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\
-0.2s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\
-0.0s C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCache\IE\TI6SB64T\driverscanner[1].exe
0.0s C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\driverscanner.exe
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\8BDD634154BD11EF.dat
1.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\33\E048E101588AEEED.dat
14.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\5022B7B5D370748D.dat
16.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\
16.0s C:\Users\Julien Lisee\AppData\Local\Temp\is-CBTKP.tmp\driverscanner.tmp
16.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\8D56D847A4A91D0C.dat
16.5s C:\Users\Julien Lisee\AppData\Local\Temp\Setup Log 2017-05-11 #003.txt
16.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\9CC7A98924B79D38.dat
16.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\2\68\8D56D847A4A91D0C.dat
17.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\C48211EC50F3DA5E.dat
17.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\E6B5CC04CEBE6467.dat
17.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\5023236F2CD0F534.dat
17.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\568C5D7A6931F8DF.dat
17.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\39\BA08A9BCE6576CF3.dat
17.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\46\84413EA5523823D6.dat
17.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\72\39DEFEC2D5B32010.dat
17.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\71\88166E1919A910CB.dat
17.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\30\3EDBB8BD53BB0EA2.dat
17.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\C81598E99F511BB4.dat
18.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\97\64A179EE0B8706A5.dat
18.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\2ACCA2A2CD3D5B6F.dat
18.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\79\00D69CD4AC76638F.dat
18.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\43\91AB97CAFC3F5DAB.dat
18.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\88E273588E474087.dat
18.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\32\008006E22442323C.dat
19.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\73\6BC12671DA9AE2BD.dat
19.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\20\9AA2A27A4CEE2770.dat
19.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\75\7BFFF4CAF4BD23A3.dat
19.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\03\4DAA0505C40D4B93.dat
19.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\98\CE4C4F7A9C005C3E.dat
19.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\00\867E52A0EE7F4748.dat
19.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\01\DC6CB34AACD1F4B9.dat
19.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\BA87CF3D375C54EC.dat
19.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\3D8AC59E1C9189F4.dat
19.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\91\06C8193B7CF12AC7.dat
19.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\12\8424DEFB237F9D98.dat
19.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\FCB9FB2BD1A6794C.dat
19.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\56\25E25D0138FBFA48.dat
19.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\48\DEEA78A5644701B4.dat
19.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\98DA7BBA1D1BB4F9.dat
19.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\C04696210AEC10F7.dat
19.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\96\E0A212002E32F4C0.dat
19.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\11\D01C4D7961CDC387.dat
20.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\21\DAB4C9146BCEE339.dat
20.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\07\5C07FE71BA301ABF.dat
20.2s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\59\86FD4DEAA398FAAB.dat
20.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\76\6F3BB2CDC06D8130.dat
20.4s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\13\47F8E3C784D5E8F1.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\87\20FB168B4085EAF7.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\68\D17BFF752AF01AB0.dat
20.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\14\544FEDA7F2E06FAA.dat
20.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\49CA16FFD96406F1.dat
20.6s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\41\F7B4A4ED3E4AE481.dat
20.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\80\155926F58C129820.dat
20.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\67\0D4343053612E653.dat
20.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\40\681EF95967B5ABD0.dat
20.8s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\36\C40B57DF356F48A8.dat
20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\82\5FE5DB4130B28C8A.dat
20.9s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\35\5312B9C57FCCC7F7.dat
21.3s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\78\F8FFE4C14A7EEB86.dat
23.1s C:\Windows\Prefetch\DSMONITOR.EXE-6E7E46C4.pf
23.4s C:\Windows\Prefetch\DRIVERSCANNER.TMP-F7FAF2FA.pf
32.2s C:\Windows\Prefetch\WMIPRVSE.EXE-0C8A533A.pf

C:\Users\Julien Lisee\AppData\Roaming\ZHP\Quarantine\115ab313.DIR\1d855976.dll -> Deleted
Size . . . . . . . : 2 381 824 bytes
Age . . . . . . . : 1.3 days (2017-05-10 09:08:45)
Entropy . . . . . : 6.4
SHA-256 . . . . . : 483921345E05D8F3852C755C9B03F362B0B768F4F8E2A034F304F0A037FDAF79
> Bitdefender . . . : Gen:Variant.Razy.169599
> Kaspersky . . . . : not-a-virus:AdWare.Win32.Adposhel.kpt
Fuzzy . . . . . . : 108.0
Forensic Cluster
-28.2s C:\ProgramData\Microsoft\Windows\AppRepository\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe.xml
-27.6s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_10.0.14393.1198_35e2e256b1d72e2caf37a9f8fcf7365e71ad2a2_00000000_086a07f2\
-27.6s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_10.0.14393.1198_35e2e256b1d72e2caf37a9f8fcf7365e71ad2a2_00000000_086a07f2\Report.wer
-25.7s C:\ProgramData\Microsoft\Windows\AppRepository\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8.xml
-23.4s C:\ProgramData\Hewlett-Packard\HP Active Health\History\Bios.json
-22.6s C:\ProgramData\Hewlett-Packard\HP Active Health\Transfer Interface\retry-later\ActiveHealth_1494421701_1.json
-16.8s C:\ProgramData\Microsoft\Windows\AppRepository\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe.xml
-15.3s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.4.etl
-7.3s C:\ProgramData\Microsoft\Windows\AppRepository\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe.xml
-5.1s C:\Users\Julien Lisee\AppData\LocalLow\Sun\Java\Deployment\cache\
-5.0s C:\Users\Julien Lisee\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\
-1.4s C:\Users\Julien Lisee\AppData\Roaming\ZHP\Quarantine\115ab313.DIR\
-0.7s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.5.etl
0.0s C:\Users\Julien Lisee\AppData\Roaming\ZHP\Quarantine\115ab313.DIR\1d855976.dll
1.7s C:\ProgramData\Microsoft\Windows\AppRepository\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8.xml
2.0s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.6.etl
2.7s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\
3.3s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\
3.4s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Assets\
3.4s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Assets\EnsoUI\
3.7s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Assets\Icons\
3.9s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Assets\Sounds\
4.0s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Assets\WindowsIcons\
4.1s C:\ProgramData\Microsoft\Windows\AppRepository\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8.xml
6.6s C:\ProgramData\Microsoft\Windows\AppRepository\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8.xml
6.9s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.7.etl
7.7s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\
7.8s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\
7.8s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\AppxMetadata\AppxBundleManifest.xml
8.0s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\AppxBlockMap.xml
8.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x
8.3s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\
8.4s C:\Users\Julien Lisee\AppData\Roaming\ZHP\ZHPFix[R2].txt
8.9s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\microsoft.system.package.metadata\
9.0s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\S-1-5-18.recovery
9.0s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\AppxManifest.xml
9.0s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\AppxBlockMap.xml
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\AppxMetadata\
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\AppxMetadata\CodeIntegrity.cat
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\AppxSignature.p7x
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.CameraApp.Native.dll
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.CameraApp.Native.winmd
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.CameraApp.RichJpgBgTaskEntry.winmd
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.CameraApp.Shared.Native.dll
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.CameraApp.Shared.Native.winmd
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.Packaging.RichJPG.dll
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Microsoft.Packaging.RichJPG.winmd
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\Photos.Experimentation.Native.dll
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\PhotosExperimentationNative.winmd
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\resources.pri
9.1s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\WindowsCamera.dll
9.2s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\WindowsCamera.exe
16.4s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\
16.4s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\
16.4s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\S-1-5-18.recovery
16.4s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\AppxManifest.xml
16.5s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\AppxBlockMap.xml
16.6s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\AppxSignature.p7x
16.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\
16.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\S-1-5-18.recovery
16.8s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\microsoft.system.package.metadata\
18.6s C:\Windows\Prefetch\NOTEPAD.EXE-F0516D55.pf
18.7s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\ActivationStore.dat
18.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG1
18.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG2
21.8s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.8.etl
23.9s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\
24.2s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\
24.4s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\Assets\
24.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\Assets\Emoji\
24.7s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\Assets\Emoji\small\
24.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_~_8wekyb3d8bbwe\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
24.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
24.9s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
25.3s C:\Program Files\WindowsApps\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\S-1-5-21-3123612523-1301177601-3153632245-1001-MergedResources-21.pri
26.3s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_x64__8wekyb3d8bbwe\S-1-5-21-3123612523-1301177601-3153632245-1001.pckgdep
26.3s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsCamera_2017.308.50.0_neutral_split.language-fr_8wekyb3d8bbwe\S-1-5-21-3123612523-1301177601-3153632245-1001.pckgdep
49.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\Images\
49.8s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\Libs\
49.9s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\
50.0s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\
50.0s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\Assets\
50.1s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\AppxMetadata\
50.1s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\AppxMetadata\AppxBundleManifest.xml
50.2s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\AppxBlockMap.xml
50.2s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\AppxSignature.p7x
50.3s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\
50.4s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\microsoft.system.package.metadata\
50.4s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\S-1-5-18.recovery
50.4s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\AppxManifest.xml
50.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\AppxBlockMap.xml
50.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\AppxMetadata\
50.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\AppxMetadata\CodeIntegrity.cat
50.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\AppxSignature.p7x
50.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\mysms.dll
50.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\mysms.exe
50.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\mysms.xr.xml
50.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\resources.pri
61.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\microsoft.system.package.metadata\
61.5s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\
61.5s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\S-1-5-18.recovery
61.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\AppxManifest.xml
61.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\AppxBlockMap.xml
61.5s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\AppxSignature.p7x
61.6s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\
61.6s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\S-1-5-18.recovery
61.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\microsoft.system.package.metadata\
61.6s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\AppxManifest.xml
61.7s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\AppxBlockMap.xml
61.7s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\AppxSignature.p7x
61.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\
61.8s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\S-1-5-18.recovery
61.8s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\microsoft.system.package.metadata\
61.9s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\ActivationStore.dat
61.9s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\ActivationStore.dat.LOG1
61.9s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\ActivationStore.dat.LOG2
63.2s C:\Windows\Logs\WindowsUpdate\WindowsUpdate.20170510.090312.121.9.etl
64.4s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_~_c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
64.5s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
64.5s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
64.5s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.recovery
64.9s C:\Program Files\WindowsApps\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\microsoft.system.package.metadata\S-1-5-21-3123612523-1301177601-3153632245-1001-MergedResources-5.pri
65.4s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_x64__c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.pckgdep
67.2s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.language-fr_c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.pckgdep
67.2s C:\ProgramData\Microsoft\Windows\AppRepository\Packages\UptoElevenDigitalSolution.mysms-Textanywhere_3.0.5.0_neutral_split.scale-100_c9d6r4qvva5x8\S-1-5-21-3123612523-1301177601-3153632245-1001.pckgdep

C:\Users\Julien Lisee\Downloads\pcmechanicpm (1).exe -> Quarantined
Size . . . . . . . : 1 165 928 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:01:23)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3686F44F76B95350233FE574B40D61EE0105D71790310A4C5DE1C8C7B42B91A6
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 103.0
Forensic Cluster
-2.1s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\08\B623DC2751BC1FE8.dat
0.0s C:\Users\Julien Lisee\Downloads\pcmechanicpm (1).exe
2.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\58\EAF2F967F6A4498E.dat

C:\Users\Julien Lisee\Downloads\pcmechanicpm (2).exe -> Quarantined
Size . . . . . . . : 1 165 928 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:02:31)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3686F44F76B95350233FE574B40D61EE0105D71790310A4C5DE1C8C7B42B91A6
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 103.0
Forensic Cluster
0.0s C:\Users\Julien Lisee\Downloads\pcmechanicpm (2).exe
2.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\99\F1CC63ADFDF8C4D7.dat

C:\Users\Julien Lisee\Downloads\pcmechanicpm.exe -> Quarantined
Size . . . . . . . : 1 165 928 bytes
Age . . . . . . . : 0.3 days (2017-05-11 08:00:28)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 3686F44F76B95350233FE574B40D61EE0105D71790310A4C5DE1C8C7B42B91A6
Product . . . . . : PC Mechanic
Publisher . . . . : Uniblue Systems Limited
Description . . . : PC Mechanic Setup
Version . . . . . : 1.2.0.3
RSA Key Size . . . : 2048
LanguageID . . . . : 0
Authenticode . . . : Valid
> Kaspersky . . . . : not-a-virus:HEUR:RiskTool.Win32.SpeedUpMyPC.gen
Fuzzy . . . . . . : 103.0
Forensic Cluster
-15.2s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\DHHSI9CP\fr-s9ec1684e3d[1].png
-2.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\66\E65226D53A08EDAA.dat
0.0s C:\Users\Julien Lisee\Downloads\pcmechanicpm.exe
1.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\7D266D9E1E69FA1EEFB9699B009B34C8_0A9BFDD75B598C2110CBF610C078E6E6
1.4s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\7D266D9E1E69FA1EEFB9699B009B34C8_0A9BFDD75B598C2110CBF610C078E6E6
1.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
1.6s C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\9A19ADAD9D098E039450ABBEDD5616EB_8E4C8F3B95441DC64330F4A386472E56
2.7s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\83\D0E11002C34B2A0F.dat

Suspicious files ____________________________________________________________

C:\Users\Julien Lisee\Desktop\FRST64.exe
Size . . . . . . . : 2 429 440 bytes
Age . . . . . . . : 0.2 days (2017-05-11 09:17:21)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 896B7B41B936A1A793C6BE0DE9B9857B106FA5EC70D3335E9380744CD09F19F4
Needs elevation . : Yes
Fuzzy . . . . . . : 24.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
Forensic Cluster
0.0s C:\Users\Julien Lisee\Desktop\FRST64.exe
1.0s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\4\49\3155BB00867F8DC9.dat
2.6s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Store\091DDF11BBC7E2E7451AD477D625DD5C
4.5s C:\ProgramData\Microsoft\Windows Defender\Scans\MetaStore\1\49\3155BB00867F8DC9.dat
5.7s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{E8E59F7A-15B6-4DC1-9507-51F360D2F233}
11.5s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{1528C131-B34E-4FF1-B5B2-9BB8A7D6CB86}
25.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{D8FEAB8B-EDE1-4867-BE65-8BF9F9F78C0F}

Potential Unwanted Programs _________________________________________________

C:\Users\Julien Lisee\AppData\Local\Temp\Uniblue\Offers\ (Uniblue) -> Deleted
HKLM\SOFTWARE\Classes\driverscanner\ (DriverScanner) -> Deleted
HKLM\SOFTWARE\Classes\pc-mechanic\ (PCMechanic) -> Deleted
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564\ (SearchWindow) -> Deleted

Cookies _____________________________________________________________________

C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCookies\Low\FP38TCAZ.cookie
C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCookies\Low\JQVI8AEE.cookie
C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCookies\Low\SU8804WL.cookie
C:\Users\Julien Lisee\AppData\Local\Microsoft\Windows\INetCookies\XBMW1ZY3.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\0CMHRKO9.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\1TOFX0BQ.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\2658H62O.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\3SJ7GCM0.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\5YTD336Y.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\6XBN4YOE.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\73T33TLQ.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\7AHF068I.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\88P6IZT2.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\94RKNME0.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\AGO4NBBW.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\AY5BNFEI.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\CYMYF2ZK.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\CZN9VB9V.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\DA4R2OG5.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\E36DZUAB.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\EP1QLOQD.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\F0S9VPMB.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\FDAHDJX1.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\FU3ACGM4.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\FZKVH9SN.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\LSBVAD60.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\N07QUF8P.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\O8WF4ASG.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\OEY8UNUJ.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\OM05P7WP.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\OPGUND00.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\P5SI26HQ.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\PKBVRJ1S.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\QHMP7IQG.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\QSSYHT1Z.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\R003IIZS.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\TJ4POKZI.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\TVA31GFW.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\ULZORE1N.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\UY79H4WR.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\WJ1M51NC.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\XQ2BI5CF.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\Y6410K0R.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\YTFJATBH.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\YVNVG6BD.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cookies\ZGDITBV6.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cookies\2VG2ANO5.cookie
C:\Users\Julien Lisee\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cookies\88QGUAR0.cookie

[/code]

Signaler le contenu de ce document