start::
CreateRestorePoint:
CloseProcesses:
RemoveProxy:
Task: {19C2AE4F-4545-4479-95B2-7D995904EAEC} - \Lenovo\ImController\TimeBasedEvents\ccc0686e-c2b6-440e-a691-78eda96eafc9 -> Pas de fichier
Task: {3CDCCD6A-ECF6-4EB7-B217-C436882B9A9D} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (Pas de fichier)
Task: {7611B3CF-7550-4A79-B0BF-93B48F0513F6} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> Pas de fichier
Task: {7F232851-A103-4878-91F8-A65DEDD5F835} - \Lenovo\ImController\TimeBasedEvents\601f3f8d-b985-4a5e-a473-bcd2de4e9d84 -> Pas de fichier
Task: {90E87B2F-529B-44F2-BB61-1D573E383D06} - \Lenovo\ImController\TimeBasedEvents\d034c7a7-960f-4fe2-a5cc-32141afd4abb -> Pas de fichier
Task: {9EF42BFE-9DD3-4F7B-B7D4-C528B2E0210B} - \Lenovo\ImController\TimeBasedEvents\36674fcd-78ed-453c-a443-8f3d3d5d0a79 -> Pas de fichier
Task: {A54ECAA8-2A49-42F0-897D-88C54B889580} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> Pas de fichier
Task: {AE63E6FA-F511-434C-960D-D5E684A750D9} - \Lenovo\ImController\Lenovo iM Controller Monitor -> Pas de fichier
Task: {B02FE4B6-CEC8-4FFA-AF6A-1266DA9FF4B2} - \Lenovo\ImController\TimeBasedEvents\3bc4039f-185b-44c0-b2d6-aff3a01a4e54 -> Pas de fichier
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {45904972-fe5d-11eb-9d29-e8d0fce7e5ec} - "D:\AutoRun.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {82c0fb7b-eab6-11eb-9d25-e8d0fce7e5ec} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {9a7e6848-bca9-11ec-9d51-e8d0fce7e5ec} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {a4b4d362-88b7-11eb-9cfe-e8d0fce7e5ec} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {a6ed3892-be11-11eb-9d0f-e8d0fce7e5ec} - "D:\autorun.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {e47d0ca6-7f51-11ec-9d40-e8d0fce7e5ec} - "D:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\...\MountPoints2: {e47d0d68-7f51-11ec-9d40-e8d0fce7e5ec} - "D:\HiSuiteDownLoader.exe"
Edge Extension: (Pas de nom) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [non trouvé(e)]
Edge Extension: (Pas de nom) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [non trouvé(e)]
Edge Extension: (Pas de nom) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [non trouvé(e)]
Edge Extension: (Pas de nom) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [non trouvé(e)]
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
S2 ImControllerService; %SystemRoot%\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [X]
2020-02-22 11:36 - 2020-02-22 11:36 _____ C:\Program Files\Common Files\AV\Kaspersky Lab
2022-06-06 19:21 - 2022-06-06 19:21 - 000000000 ____D C:\Users\Public\Documents\AdobeGCInfo
2022-06-06 19:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2022-06-06 19:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2022-06-06 19:16 - 2019-12-02 18:58 - 000000000 ____D C:\Users\jacqu\AppData\Local\Lenovo
2022-06-06 19:16 - 2019-07-17 05:17 - 000000000 ____D C:\ProgramData\Lenovo
2022-06-06 19:16 - 2019-07-17 05:17 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-06-06 19:13 - 2020-02-25 10:53 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-06-06 19:13 - 2020-02-25 10:53 - 000000000 ____D C:\Program Files\Adobe
2022-06-06 19:13 - 2020-02-25 10:53 - 000000000 ____D C:\Program Files (x86)\Adobe
2022-06-06 19:12 - 2019-12-02 18:50 - 000000000 ____D C:\Users\jacqu\AppData\Roaming\Adobe
2022-06-06 00:19 - 2021-04-14 22:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-06-06 00:19 - 2020-03-11 18:23 - 000000000 ____D C:\WINDOWS\Lenovo
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-2035457706-3331799228-1311692318-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
[-HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\KasperskyLab]
[-HKEY_USERS\.DEFAULT\Software\KasperskyLab]
[-HKEY_USERS\.DEFAULT\Software\KasperskyLab\Kaspersky Password Manager]
[-HKEY_USERS\.DEFAULT\Software\KasperskyLab\Kaspersky Password Manager 9]
[-HKEY_USERS\S-1-5-21-2035457706-3331799228-1311692318-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Notifications\Settings\KasperskyLab.Kis.UI.Toasts]
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders|"C:\Program Files (x86)\Kaspersky Lab\"="1"
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders|"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\"="1"
DeleteValue: HKEY_USERS\S-1-5-21-2035457706-3331799228-1311692318-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FeatureUsage\AppSwitched|"{7C5A40EF-A0FB-4BFC-874A-C0F2E0B9FA8E}\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe"="1"
EmptyTemp:
end::