Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 05-04-2021
Exécuté par thglm (05-04-2021 20:03:01)
Exécuté depuis C:\Users\thglm\Downloads
Windows 10 Home Version 2004 19041.867 (X64) (2020-11-09 22:17:20)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3773953333-4017790491-1158231596-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3773953333-4017790491-1158231596-503 - Limited - Disabled)
Invité (S-1-5-21-3773953333-4017790491-1158231596-501 - Limited - Disabled)
thglm (S-1-5-21-3773953333-4017790491-1158231596-1001 - Administrator - Enabled) => C:\Users\thglm
WDAGUtilityAccount (S-1-5-21-3773953333-4017790491-1158231596-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
A3C (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\A3C) (Version: - )
ACORD 6.0 x64 (HKLM\...\{41BE250C-69E8-4319-90AE-503EA106F212}) (Version: 6.0 - itech)
ACORD-Bat2D 5.3 x64 (HKLM\...\{43B5884C-0BBC-43CA-8824-3D49C7F95B3E}) (Version: 5.3 - itech)
ACORD-Bat3D 5.4 x64 (HKLM\...\{CB5C36F9-9C8F-4CBC-8CF6-4EF10157793B}) (Version: 5.4 - itech)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe)
Adobe Lightroom (HKLM-x32\...\LRCC_2_4_1) (Version: 2.4.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_7) (Version: 20.0.7 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{9D569A6E-C9DF-490E-93E0-7AFD28D1F9BB}) (Version: 20.23.401.14519 - Alcor Micro Corp.)
ANT Drivers Installer x64 (HKLM\...\{16BA964D-698D-4663-8FA7-B9613DA7958B}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Antidote - Connectix 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB4}) (Version: 10.2.427 - Druide informatique inc.)
Antidote 10 - Module français (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB2}) (Version: 10.2.427 - Druide informatique inc.)
Antidote 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB1}) (Version: 10.2.427 - Druide informatique inc.)
Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.10.89 - Autodesk)
ArcelorMittal Beams Calculator (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\ArcelorMittal Beams Calculator) (Version: - )
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.13 - Arduino LLC)
Assembl V5.6 - MD Bat Normes Eurocodes (HKLM-x32\...\{480053C3-B48F-4387-B961-9C8FE047A76F}) (Version: 5.6.1030 - MD Bat)
Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA601}) (Version: 6.70.0 - Druide informatique inc.)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GiftBox Service (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 3.2.1.0 - ASUSTeK COMPUTER INC.)
ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.0 - ASUSTeK COMPUTER INC.)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.18 - ASUS)
ASUS ZenAnywhere (HKLM\...\{EE18BAB5-35F1-44B4-A6DE-C9D4B434322F}) (Version: 4.6.0 - Orbweb Inc.) Hidden
ASUS ZenAnywhere (HKLM-x32\...\ASUS ZenAnywhere 4.6.0) (Version: 4.6.0 - Orbweb Inc.)
ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0060 - ASUSTeK COMPUTER INC.)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.5.34 - ICEpower a/s)
Autodesk Robot Structural Analysis Professional 2019 (HKLM\...\Autodesk Robot Structural Analysis Professional 2019) (Version: 2019.0.0.6490 - Autodesk, Inc.)
Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.)
Bemessung BBS 1.15.4 (HKLM-x32\...\Bemessung BBS) (Version: 1.15.4 - WallnerMild HolzBauSoftware)
Bemessung KLH 19.04.2 (HKLM-x32\...\Bemessung KLH) (Version: 19.04.2 - WallnerMild HolzBauSoftware)
Cadwork (HKLM\...\cadwork.dir) (Version: 22 - )
cadwork (HKLM-x32\...\cadwork) (Version: 22.0.87.0 - cadwork)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
Dim_ENSTIB V3.0 (HKLM-x32\...\Dim_ENSTIB V3.0) (Version: - )
Dlubal COMPOSITE-BEAM 8.19 (HKLM\...\{5EB93DC9-FEED-1EC8-C8EC-7512647B46DA}) (Version: 8.19.01 - Dlubal Software SARL) Hidden
Dlubal COMPOSITE-BEAM 8.19 64-bit (HKLM\...\Dlubal COMPOSITE-BEAM 8.19) (Version: 8.19.01.148135 - Dlubal Software SARL)
Dlubal RFEM 5.18 (HKLM\...\{5756057E-DAF5-69DE-4BEF-54963CA79358}) (Version: 5.18.01 - Dlubal Software SARL) Hidden
Dlubal RFEM 5.18 64-bit (HKLM\...\Dlubal RFEM 5.18) (Version: 5.18.01.147042 - Dlubal Software SARL)
Dlubal RFEM 5.19 (HKLM\...\{E78D3EC7-DA52-AE27-4707-FF9D49FF7B75}) (Version: 5.19.01 - Dlubal Software SARL) Hidden
Dlubal RFEM 5.19 64-bit (HKLM\...\Dlubal RFEM 5.19) (Version: 5.19.01.148135 - Dlubal Software SARL)
Dlubal RX-TIMBER 2.19 (HKLM\...\{4CB34D4A-92C9-062F-4030-251D3293AFD9}) (Version: 2.19.01 - Dlubal Software SARL) Hidden
Dlubal RX-TIMBER 2.19 64-bit (HKLM\...\Dlubal RX-TIMBER 2.19) (Version: 2.19.01.148135 - Dlubal Software SARL)
ELAN FingerPrint (HKLM\...\ElanFP) (Version: 1.5.12.1101 - ELAN Microelectronic Corp.)
Elevated Installer (HKLM-x32\...\{877496C2-70B0-42F1-835A-FAFE2CF0199C}) (Version: 7.1.4.0 - Garmin Ltd or its subsidiaries) Hidden
Eole V5.6 - MD Bat Normes Eurocodes (HKLM-x32\...\{2EA3EF84-F800-4B39-8188-E518F20159F9}) (Version: 5.6.1030 - MD Bat)
f.lux (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\Flux) (Version: - f.lux Software LLC)
FBEAM 2020 (HKLM-x32\...\{AE47A083-A8D9-4FED-ADAB-89098930347C}) (Version: 20.00.0002 - Fabsec Ltd)
Garmin BaseCamp (HKLM-x32\...\{9b6e1420-2b69-4974-a25f-ba67399695fd}) (Version: 4.7.3.0 - Garmin Ltd or its subsidiaries)
Garmin BaseCamp (HKLM-x32\...\{F71A87C2-FEF5-450A-A601-DCC1A9E23DAF}) (Version: 4.7.3.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{235f2ee5-7383-44df-a298-01221caa5532}) (Version: 7.1.4.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{E944FA32-8BCF-474F-BFB2-D1EF24555873}) (Version: 7.1.4.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
GeoGebra Classic (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\GeoGebra_6) (Version: 6.0.564 - International GeoGebra Institute)
Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google)
IGNMap 2_0 (HKLM-x32\...\IGNMap) (Version: 2_0 - IGN)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000030-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.30.0 - Intel Corporation)
KLHdesigner 2.2.2 (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\5eef59ed-8cdf-5839-9c90-042aa618e147) (Version: 2.2.2 - Omnity e.U.)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{d5c53162-d8b4-4547-8a40-917a25c0172e}) (Version: 20.60.0 - Intel Corporation)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Mathcad PDSi viewable support (HKLM-x32\...\Mathcad PDSi viewable support) (Version: 9.0.0 - Adobe Systems)
MathPlayer (HKLM-x32\...\{32F66A20-7614-11D4-BD11-00104BD3F987}) (Version: 3.0 - Design Science, Inc.)
MATLAB Runtime 9.0 (32-bit) (HKLM-x32\...\MATLAB Runtime R2015b) (Version: 9.0 - MathWorks)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.0.92 - McAfee, LLC.)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.13801.20360 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.68 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.68 - Microsoft Corporation)
Microsoft Money (HKLM-x32\...\Money2005b) (Version: 14 - Microsoft)
Microsoft OneDrive (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\Teams) (Version: 1.3.00.24755 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31119 - Microsoft Corporation)
Mob V5.5 - MD Bat Normes Eurocodes (HKLM-x32\...\{28ED9D05-2E4E-4F87-B722-1C475FCC7A31}) (Version: 5.5.2040 - MD Bat)
Mozilla Firefox 87.0 (x64 fr) (HKLM\...\Mozilla Firefox 87.0 (x64 fr)) (Version: 87.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0.3 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 451.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 451.67 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20294 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc)
Opera Stable 74.0.3911.232 (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\Opera 74.0.3911.232) (Version: 74.0.3911.232 - Opera Software)
Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.197.0 - Tracker Software Products Ltd)
PDF-XChange Lite 4 (HKLM\...\{B860298B-CE03-4DE2-B92E-422F2C20A2D8}_is1) (Version: 4.0.209.0 - Tracker Software Products Ltd)
Poutr V5.6 - MD Bat Normes Eurocodes (HKLM-x32\...\{1229616E-E19A-490C-BB33-3BD9457B399D}) (Version: 5.6.1030 - MD Bat)
PTC Diagnostic Tools (HKLM\...\{7FF72FA4-BC28-46BA-B8D7-D9940E02801A}) (Version: 5.0.0.0 - PTC)
PTC Mathcad Prime 5.0.0.0 (HKLM\...\{2BCBC575-8A52-401B-BE39-DCCA97470D3A}) (Version: 5.0.0.0 - PTC)
QGIS 3.14.15 'Pi' (HKLM\...\QGIS 3.14) (Version: 3.14.15 - QGIS Development Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8858.1 - Realtek Semiconductor Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.10.713.2016 - Realtek)
RENESIS® Player Browser Plugins (HKLM-x32\...\{2CBE278F-B04E-419B-BF25-98DC25997C3A}) (Version: 1.1.1 - examotion® GmbH)
Results Connect (HKLM\...\{E9100151-C562-4B7C-B25F-1355E9ED9387}) (Version: 2016.0.0. - Autodesk, Inc.)
SFS Timber Work Software EC5 (HKLM-x32\...\{16DD6447-71F6-4EFA-983D-5D115D95F5AE}) (Version: 1.3.3 - SFS)
Shadow 4.4.4 (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\34af0e20-e907-597b-a5a8-fec54fe4de95) (Version: 4.4.4 - Blade)
Shotcut (HKLM\...\Shotcut) (Version: 20.10.31 - Meltytech, LLC)
SketchUp 2021 (HKLM-x32\...\{09480c81-5458-4d69-ab73-ee488fe8c297}) (Version: 21.0.339 - Trimble, Inc.)
SketchUp Language Pack [fr] (HKLM\...\{116641b5-92b4-7417-3579-f51c6f9d615c}) (Version: 21.0.339.121 - Nom de votre société) Hidden
SketchUpPro (HKLM\...\{db5288e9-89f4-722c-9939-39e899d2e519}) (Version: 21.0.339.121 - Nom de votre société) Hidden
Skype Meetings App (HKLM-x32\...\{BC1D9E47-8927-4AA1-A891-7763BC2475B7}) (Version: 16.2.0.511 - Microsoft Corporation)
Spotify (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
Structur V5.6 - MD Bat Normes Eurocodes (HKLM-x32\...\{CBCB2F5C-2C19-48D9-9078-E90CF3307043}) (Version: 5.6.1030 - MD Bat)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.16.8 - TeamViewer)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
TechSmith Screen Codec 2 (HKLM-x32\...\{9E7516B1-72B1-4D19-B0BA-805B8C9DBDDF}) (Version: 2.0.2.0 - TechSmith Corporation) Hidden
TI-Nspire™ CX CAS Student Software (HKLM-x32\...\{57D4221F-F978-490C-A8FC-7677F49660CA}) (Version: 4.5.0.1180 - Texas Instruments Inc.)
UCMcxRTK (HKLM-x32\...\{2441B0B9-F24A-4DD3-97FC-5AC3495162DD}) (Version: 10.0.15063.101 - Realtek Semiconductor Corp.)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UsbDk Runtime Libraries (HKLM\...\{446D7CEA-0B07-44FF-8981-37985CA96C41}) (Version: 1.0.19 - Red Hat, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\WhatsApp) (Version: 0.3.2386 - WhatsApp)
Wind_Interactive (HKLM-x32\...\Wind_Interactive) (Version: 1.32 - BBRI-CSTC-WTCB)
Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (04/21/2017 11.0.0.16) (HKLM\...\7517F958DC823EE4C12050C16EFF05886960ABEF) (Version: 04/21/2017 11.0.0.16 - ASUS)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.7 - ASUSTeK COMPUTER INC.)
Würth Technical Software (HKLM-x32\...\{69713025-2E02-40A5-AFDD-8571C515F038}) (Version: 1.2.5 - Adolf Würth GmbH & Co. KG)
Würth Technical Software II (HKLM-x32\...\{A2EA3568-7A78-4196-B2A4-6540483FB449}) (Version: 2.0.22 - Adolf Würth GmbH & Co. KG)
XMind ZEN 10.0.0 (HKLM\...\{fbd30ee5-8150-549e-9aed-fd9d444364fb}) (Version: 10.0.0 - XMind Ltd.)
XMind ZEN 9.0.6 (HKLM\...\fbd30ee5-8150-549e-9aed-fd9d444364fb) (Version: 9.0.6 - XMind Ltd.)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.4) (Version: 1.3.4 - Xvid Team)
Zoom (HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Zwift version 1.0.50 (HKLM-x32\...\{E4DA422A-82AB-44A4-B3A5-0AF60F47B7AB}_is1) (Version: 1.0.50 - Zwift, LLC)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2021-04-05] (Adobe Systems Incorporated)
ASUS Battery Health Charging -> C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.) [Startup Task]
ASUS GIFTBOX -> C:\Program Files\WindowsApps\B9ECED6F.ASUSGIFTBOX_3.1.9.0_x64__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.)
ASUS Product Registration Program -> C:\Program Files\WindowsApps\B9ECED6F.ASUSProductRegistrationProgram_3.0.3.0_x86__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2021-04-05] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.60.0_x64__wafk5atnkzcwy [2021-04-05] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-04-05] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.13801.20360.0_x86__8wekyb3d8bbwe [2021-04-05] (Microsoft Corporation)
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.) [Startup Task]
Splendid -> C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy [2021-04-05] (ASUSTeK COMPUTER INC.) [Startup Task]
Tacx Desktop app -> C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm [2021-04-05] (Tacx)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{04271989-C4D2-7CA8-55EE-FE15DB69EC87} -> [OneDrive - ARTELIA] => C:\Users\thglm\OneDrive - ARTELIA [2021-01-17 12:16]
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\thglm\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20240.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{38626B40-64E1-4F8C-AEDA-CFF32F38602E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{3E3AD4BD-346A-460A-80E8-90699B75C00B}\InprocServer32 -> C:\Users\thglm\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\GatewayActiveX-x64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{414022CB-AE34-4682-BBDB-653EACAFA0CA}\InprocServer32 -> C:\Program Files (x86)\Druide\Connectix 10\Connect\Excel\Bin\Antidote.Excel.P500_64.dll (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{9801B4CE-1C74-4D92-9DE9-3F85C9BD26D8}\InprocServer32 -> C:\Program Files (x86)\Druide\Connectix 10\Connect\Outlook\Bin\Antidote.Outlook.P500_64.dll (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{A9694941-C924-4D17-8F67-80F4A27642BC}\InprocServer32 -> C:\Program Files (x86)\Druide\Connectix 10\Connect\PowerPoint\Bin\Antidote.PowerPoint.P500_64.dll (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37D}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\Antidote.exe (Druide Informatique Inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\thglm\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20240.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001_Classes\CLSID\{FEA8F8D1-3ADB-4B77-908F-C2E811EE12E1}\InprocServer32 -> C:\Program Files (x86)\Druide\Connectix 10\Connect\Word\Bin\Antidote.Word.P500_64.dll (Druide Informatique Inc. -> Druide informatique inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\PTC\Mathcad PDSi\Acrobat Elements\ContextMenu64.dll [2008-10-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxDTCM.dll [2020-09-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-07-05] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\PTC\Mathcad PDSi\Acrobat Elements\ContextMenu64.dll [2008-10-06] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [251392 2015-06-21] () [Fichier non signé]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [235520 2015-06-21] () [Fichier non signé]

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2019-09-09 09:13 - 2019-09-09 09:13 - 001364992 _____ () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2020-09-21 12:27 - 2020-09-21 12:27 - 000073216 _____ () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 11:35 - 2017-05-08 11:35 - 000325632 _____ () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2019-07-27 10:57 - 2019-07-27 10:57 - 096071680 _____ () [Fichier non signé] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-09-21 12:27 - 2020-09-21 12:27 - 001976832 _____ (Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2020-09-21 12:31 - 2020-09-21 12:31 - 000234496 _____ (Dynastream Innovations Inc.) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2020-09-21 12:27 - 2020-09-21 12:27 - 002711552 _____ (Garmin International) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 11:35 - 2017-05-08 11:35 - 000343552 _____ (Garmin International, Inc.) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2020-09-21 12:27 - 2020-09-21 12:27 - 000425472 _____ (Garmin) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2020-09-21 12:29 - 2020-09-21 12:29 - 000090112 _____ (Silicon Laboratories, Inc.) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2019-07-27 10:57 - 2019-07-27 10:57 - 000762368 _____ (The Chromium Authors) [Fichier non signé] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-08-22] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: MathPlayer BrowserHelperObject -> {32F66A28-7614-11D4-BD11-00104BD3F987} -> C:\Program Files (x86)\Design Science\MathPlayer\MathPlayerBHO.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-08-22] (McAfee, LLC -> McAfee, Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-03-16] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: application/xhtml+xml - {32F66A26-7614-11D4-BD11-00104BD3F987} - C:\Program Files (x86)\Design Science\MathPlayer\MathMLMimer.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)
Filter-x32: application/xhtml+xml; charset=iso-8859-1 - {32F66A26-7614-11D4-BD11-00104BD3F987} - C:\Program Files (x86)\Design Science\MathPlayer\MathMLMimer.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)
Filter-x32: application/xhtml+xml; charset=utf-8 - {32F66A26-7614-11D4-BD11-00104BD3F987} - C:\Program Files (x86)\Design Science\MathPlayer\MathMLMimer.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)
Filter-x32: text/xml; charset=iso-8859-1 - {32F66A26-7614-11D4-BD11-00104BD3F987} - C:\Program Files (x86)\Design Science\MathPlayer\MathMLMimer.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)
Filter-x32: text/xml; charset=utf-8 - {32F66A26-7614-11D4-BD11-00104BD3F987} - C:\Program Files (x86)\Design Science\MathPlayer\MathMLMimer.dll [2013-06-13] (Design Science Inc. -> Design Science, Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\sharepoint.com -> hxxps://arteliadigitalsolutions-files.sharepoint.com

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\MATLAB\MATLAB Runtime\v90\runtime\win32;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Android
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\thglm\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_20201007_062614.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Zwift"
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3773953333-4017790491-1158231596-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{80906855-454A-4B78-93E1-84221E98A62C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{A9A6C63D-5359-42F1-AD0B-2641483B82BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{27580814-EF6B-4AEA-A41F-2F43283DE596}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{EE6ABDD3-0956-44CB-B2E9-B7CE3522CAB7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [UDP Query User{7574318D-D92A-4145-A2CE-C4FD370E80F6}C:\users\thglm\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\thglm\appdata\local\programs\opera\70.0.3728.178\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{DBA3DB4A-9BD6-404D-B34B-4077CA968A62}C:\users\thglm\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\thglm\appdata\local\programs\opera\70.0.3728.178\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{E243BC02-FDC8-427E-8754-345EDACCE279}C:\users\thglm\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\70.0.3728.106\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{3644506A-DECB-42D6-95FB-B1121826E944}C:\users\thglm\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\70.0.3728.106\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{C6EA4AC3-E136-47A8-B20E-547A0819C767}C:\users\thglm\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\68.0.3618.173\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{E034709E-D2B2-44E0-8631-32291424AB64}C:\users\thglm\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\68.0.3618.173\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{13139119-BC0E-4AD4-99D5-0E6FE8A833CF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{DA65C7A0-8F65-4D4E-A818-8E553BDC45A6}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{83DBDC25-09E6-4B2A-ACC6-8BA02B2F2606}C:\users\thglm\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\thglm\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8EF77240-F8E6-4834-BD3D-B1B16F9400F4}C:\users\thglm\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\thglm\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{635FB940-9BC8-4AEA-A4C9-9B74368A9A36}] => (Allow) C:\Users\thglm\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{52F97FA0-B1EA-465A-8532-744CDEEC7DF8}] => (Allow) C:\Users\thglm\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{78661ECA-FDBA-46AA-9365-D0D8A9A49C8A}C:\users\thglm\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe] => (Allow) C:\users\thglm\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8E0C44AC-E80E-4BA4-88C9-EBC21AA0F18D}C:\users\thglm\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe] => (Allow) C:\users\thglm\appdata\local\microsoft\skypeforbusinessplugin\16.2.0.511\pluginhost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1498C369-C07E-45EE-86D7-9FCA6D94ADDF}C:\users\thglm\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\thglm\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [TCP Query User{7DD9C255-78B0-411F-B168-06D2351744EE}C:\users\thglm\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\thglm\appdata\roaming\cacaoweb\cacaoweb.exe (CACAOWEB Ltd -> )
FirewallRules: [{738193A7-40BA-4852-BA9F-60B12128EDC5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CB1552F2-0A9F-4C77-B89B-C13BB1DD0B39}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C623762C-01F5-44FF-AC0F-0829AFF4FFE0}] => (Allow) C:\Program Files\cadwork.dir\EXE_24\3D.x64\3d.exe => Pas de fichier
FirewallRules: [{35989820-9283-4B0A-8F9C-8B4E219D11F4}] => (Allow) C:\Program Files\cadwork.dir\EXE_24\3D.x64\3d.exe => Pas de fichier
FirewallRules: [{D3BF5611-D156-48F6-9D4F-8AC3807C1663}] => (Allow) C:\Program Files\cadwork.dir\EXE_24\LIST.x64\listModule.exe => Pas de fichier
FirewallRules: [{12FD8242-9EA3-482A-B426-289CA36CDD24}] => (Allow) C:\Program Files\cadwork.dir\EXE_24\LIST.x64\listModule.exe => Pas de fichier
FirewallRules: [TCP Query User{A53C4A43-D0C6-48AB-BA6A-73C92D6B3A03}C:\users\thglm\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\thglm\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{AE4C9020-FDBC-443F-9585-0DC00930EEC1}C:\users\thglm\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\thglm\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [TCP Query User{DFC9C739-97F6-490C-956D-32BF16C29D9D}C:\users\thglm\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\thglm\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [UDP Query User{8E88AA9A-68D5-4919-BD27-39C703D8C0A1}C:\users\thglm\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\thglm\appdata\local\akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [TCP Query User{7D0F3D11-A54E-4EF6-9B54-8E1D933C372F}C:\program files (x86)\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe (Texas Instruments -> Texas Instruments Incorporated)
FirewallRules: [UDP Query User{A0351FFE-E90F-4BA2-8DCD-B635ED1F4C68}C:\program files (x86)\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cx cas student software\ti-nspire cx cas student software.exe (Texas Instruments -> Texas Instruments Incorporated)
FirewallRules: [TCP Query User{1CDF567F-5F62-4199-8B1A-3F1BA48F57F4}C:\program files (x86)\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{FB0EA2E9-0878-4EF1-B1D4-357E982B2D5C}C:\program files (x86)\ti education\ti-nspire cx cas student software\jre\bin\java.exe] => (Allow) C:\program files (x86)\ti education\ti-nspire cx cas student software\jre\bin\java.exe
FirewallRules: [{46C5C441-7582-459E-A45B-E5DABEA4DDED}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6907DC71-4DAB-462E-B947-90F7154013C4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{0230999B-B75F-44C9-9634-66DEDC72CFBA}] => (Allow) C:\Program Files\Dlubal\RFEM 5.18\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{1A5A911E-261A-477A-B350-FAE918539F14}] => (Allow) C:\Program Files\Dlubal\RFEM 5.18\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{64B28349-9354-4990-8CA1-42A27102E393}] => (Allow) C:\Program Files\Dlubal\RFEM 5.18\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{DD688E87-3A8C-4BF7-99B6-7A968BF93AA7}] => (Allow) C:\Program Files\Dlubal\RFEM 5.18\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [TCP Query User{859F3DAF-1EB8-425E-8357-0CCD29837431}C:\users\thglm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thglm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{576ECD3D-F154-4A5B-9CD7-62F666DDB3D0}C:\users\thglm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thglm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{DE7004D5-DE68-4C9C-886B-91CAAE23149F}C:\users\thglm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thglm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{40833CB3-4631-4F33-988A-FD36074BE46E}C:\users\thglm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thglm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DC51A7C0-E8CD-45A3-A5AD-321887A0C97F}] => (Allow) C:\Program Files\cadwork.dir\EXE_25\3D.x64\3d.exe => Pas de fichier
FirewallRules: [{D9EC36D1-3815-4FE0-8483-9B8C9596677B}] => (Allow) C:\Program Files\cadwork.dir\EXE_25\3D.x64\3d.exe => Pas de fichier
FirewallRules: [{6EE619C5-BE08-4690-AF68-3ED0E3AA70A2}] => (Allow) C:\Program Files\cadwork.dir\EXE_25\LIST.x64\listModule.exe => Pas de fichier
FirewallRules: [{49BF1197-2054-4720-89F5-31D5CE7706B1}] => (Allow) C:\Program Files\cadwork.dir\EXE_25\LIST.x64\listModule.exe => Pas de fichier
FirewallRules: [{626EC13A-BD0C-4DC3-90E5-B8ACFE6467E2}] => (Allow) C:\Program Files\cadwork.dir\com.x64\utilities\TeamViewer\TeamViewerQS.EXE (TeamViewer -> TeamViewer)
FirewallRules: [{D0514817-2F02-47F6-8DB0-E8D830BC1297}] => (Allow) C:\Program Files\cadwork.dir\com.x64\utilities\TeamViewer\TeamViewerQS.EXE (TeamViewer -> TeamViewer)
FirewallRules: [{1A96AAF6-7E43-436D-9215-1F2326C5342F}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe => Pas de fichier
FirewallRules: [{92F42D14-940E-4176-B6A5-670199E04155}] => (Allow) C:\Program Files\Dlubal\RFEM 5.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{FA42D6E4-D319-4EDE-91E4-37FEE6AEDF54}] => (Allow) C:\Program Files\Dlubal\RFEM 5.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{39B69F70-5B4F-4979-904C-7F233C46955A}] => (Allow) C:\Program Files\Dlubal\RFEM 5.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{E15D4130-055F-4B49-8346-980DB5A73CDA}] => (Allow) C:\Program Files\Dlubal\RFEM 5.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{5F0D51F1-261F-4962-87AF-099E9724A706}] => (Allow) C:\Program Files\Dlubal\COMPOSITE-BEAM 8.19\RSTAB64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{FD220793-F6AC-41E5-8CD8-E03DF5F4CF36}] => (Allow) C:\Program Files\Dlubal\COMPOSITE-BEAM 8.19\RSTAB64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{F71BCE49-D1D8-41D5-99CF-9FD5D2D4C2B3}] => (Allow) C:\Program Files\Dlubal\COMPOSITE-BEAM 8.19\RSTAB64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{D62865C4-DBCF-4428-AA03-7BB799CD575B}] => (Allow) C:\Program Files\Dlubal\COMPOSITE-BEAM 8.19\RSTAB64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{DA4B21A4-BA2D-4EA3-B916-4F6975A92E3E}] => (Allow) C:\Windows\system32\hasplms.exe (SafeNet Canada, Inc. -> SafeNet, Inc.)
FirewallRules: [{DABE5976-53A9-4AF0-B791-48F2BBB16A39}] => (Allow) C:\Program Files\Dlubal\RX-TIMBER 2.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{B8C988CA-47A8-4AD0-A5EC-E0D19E5ADF15}] => (Allow) C:\Program Files\Dlubal\RX-TIMBER 2.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{7065844A-9471-42C0-9246-32D9EAFBC16D}] => (Allow) C:\Program Files\Dlubal\RX-TIMBER 2.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [{EF974CD0-F115-497A-AAE7-B58E50EE7B37}] => (Allow) C:\Program Files\Dlubal\RX-TIMBER 2.19\RFEM64.exe (Dlubal Software GmbH -> Dlubal Software GmbH)
FirewallRules: [TCP Query User{863CFB28-EDBC-4277-A93A-147F09F62C9E}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{65BC756D-61AC-43FB-ACED-14E4AF206788}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{B64E5F4D-00E7-4AF1-B52D-7D8DB2CCA432}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{A3E693C7-7FD5-4D9A-A8DF-D0A94B809E6F}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{21C8EAB0-E331-42B4-B05F-5F8DD1EFFAA3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{DAAC6040-037F-4EC6-BD3E-B64129478FAE}C:\users\thglm\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\73.0.3856.329\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{D415A34F-C439-4742-9E8C-5CE1F372DB25}C:\users\thglm\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\thglm\appdata\local\programs\opera\73.0.3856.329\opera.exe => Pas de fichier
FirewallRules: [{30D073F4-BFCE-4DC9-BEA0-61F88A0681FE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{256FADD9-D73C-49AE-AC4D-9E57ECF0DD64}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9B86D362-4003-4356-A7EC-9719E39D0944}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E5000AA2-728A-4AC2-91CA-9975CF6EE899}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{657896E5-9B13-4689-AC39-01C67356AB46}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{DA95B66B-B022-4930-8D5A-5A9D49A82E99}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{A3F61B06-AA8F-4C29-8603-1AF1E26DAB62}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{2492BF94-E79B-4201-9EE7-65951F26A7B1}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{7939293D-17D6-42AF-B242-1A75D734278D}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{47128A97-A72F-4FBA-BDD7-90386AD6661F}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{462728D4-A2D0-4E8F-8871-DB18D1C1B28D}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{A96C237D-28F6-497A-A180-882773190754}] => (Allow) C:\Program Files\WindowsApps\Tacx.TacxDesktopapp_1.19.2.0_x64__zcjydbysk4fhm\Tacx.UWP.exe (Tacx B.V.) [Fichier non signé]
FirewallRules: [{E801E61B-0206-43E6-A32B-205DCF4842C1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13801.20360.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{692616F4-8E45-41D6-8D6B-AE34013FAD4D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{52520A3F-B54F-4C8F-B66D-009D9B5C4F12}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{13BD6F4F-4630-4B81-82C7-DB1F3F6E7520}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E63E34FF-4CB2-4360-A1AF-814435881C3E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5206B780-9FED-4402-87C2-9B202632BFC4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.68\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B4D9351B-4CDB-4A4A-815E-09DE6EDE8E3E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{59BD9A79-A795-44FD-81F6-A6D29DA08F31}] => (Allow) C:\Program Files\cadwork.dir\ci_start.exe (Cadwork Informatik CI AG -> cadwork Informatik)
FirewallRules: [{E2E17596-BEE6-4C71-BF47-5E0515ABB34D}] => (Allow) C:\Program Files\cadwork.dir\ci_start.exe (Cadwork Informatik CI AG -> cadwork Informatik)
FirewallRules: [{9D876E9C-C9F2-48FB-86FE-F8F6C231A25B}] => (Allow) C:\Program Files\cadwork.dir\com.x64\CI_LICENCE.EXE (Cadwork Informatik CI AG -> cadwork Informatik)
FirewallRules: [{563585D2-AE25-4724-B498-63DB9CC79B81}] => (Allow) C:\Program Files\cadwork.dir\com.x64\CI_LICENCE.EXE (Cadwork Informatik CI AG -> cadwork Informatik)
FirewallRules: [{2EE984FD-C3AA-4175-992F-151487FAF8D8}] => (Allow) C:\Program Files (x86)\cadwork.dir\com\CI_LICENCE.EXE => Pas de fichier
FirewallRules: [{A6743394-8908-4082-89CC-B71B3517DFE7}] => (Allow) C:\Program Files (x86)\cadwork.dir\com\CI_LICENCE.EXE => Pas de fichier

==================== Points de restauration =========================

27-03-2021 22:32:10 Point de contrôle planifié
05-04-2021 17:47:50 Opération de restauration

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (04/05/2021 07:36:11 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Une erreur non spécifiée s’est produite au cours de la restauration du système : (Opération de restauration). Informations supplémentaires : 0x80071ac5.

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (04/05/2021 07:10:19 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.


Erreurs système:
=============
Error: (04/05/2021 07:22:25 PM) (Source: DCOM) (EventID: 10029) (User: AUTORITE NT)
Description: L’activation du CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} a dépassé le délai imparti en attendant l’arrêt du service wuauserv.

Error: (04/05/2021 07:18:23 PM) (Source: DCOM) (EventID: 10029) (User: AUTORITE NT)
Description: L’activation du CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} a dépassé le délai imparti en attendant l’arrêt du service wuauserv.

Error: (04/05/2021 07:14:21 PM) (Source: DCOM) (EventID: 10029) (User: AUTORITE NT)
Description: L’activation du CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} a dépassé le délai imparti en attendant l’arrêt du service wuauserv.

Error: (04/05/2021 05:56:37 PM) (Source: DCOM) (EventID: 10029) (User: AUTORITE NT)
Description: L’activation du CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} a dépassé le délai imparti en attendant l’arrêt du service wuauserv.

Error: (04/05/2021 05:52:35 PM) (Source: DCOM) (EventID: 10029) (User: AUTORITE NT)
Description: L’activation du CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} a dépassé le délai imparti en attendant l’arrêt du service wuauserv.

Error: (04/05/2021 04:29:04 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Le miniport Microsoft Wi-Fi Direct Virtual Adapter #6, {a1bf0556-9825-4803-b3b3-ef5e84904c70}, a eu l’événement 74

Error: (04/04/2021 05:28:34 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-OSEOG8B9)
Description: Le serveur {35C5242B-7455-4F9C-962B-369EA43ED6F3} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (04/04/2021 12:50:06 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Le miniport Microsoft Wi-Fi Direct Virtual Adapter #6, {a1bf0556-9825-4803-b3b3-ef5e84904c70}, a eu l’événement 74


Windows Defender:
================
Date: 2021-04-05 19:56:44
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {025F164D-D842-456D-AABF-327525BDE955}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-04-05 19:47:06
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {3BFB6AA4-2901-46DD-8345-E37C568C952A}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-04-05 19:42:12
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C6A&threatid=2147756063&enterprise=0
Nom : Trojan:Win32/Occamy.C6A
ID : 2147756063
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : containerfile:_C:\Users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar; file:_C:\Users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar->CADWORK.SUITE.V18.MULTI-ISO\CADWORKV18.iso->Crack\keygen.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.335.265.0, AS: 1.335.265.0, NIS: 1.335.265.0
Version du moteur : AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-05 19:42:12
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/SuperScan.A&threatid=2147723394&enterprise=0
Nom : HackTool:Win32/SuperScan.A
ID : 2147723394
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar; file:_c:\users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar->CADWORK.SUITE.V18.MULTI-ISO\CADWORKV18.iso->cw_inst.prg\superscan\superscan.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.335.265.0, AS: 1.335.265.0, NIS: 1.335.265.0
Version du moteur : AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-04-05 19:42:12
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CandyOpen&threatid=213956&enterprise=0
Nom : PUA:Win32/CandyOpen
ID : 213956
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : containerfile:_C:\Users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar; file:_c:\users\thglm\Desktop\CADWORK.SUITE.V18.MULTI-ISO.rar->CADWORK.SUITE.V18.MULTI-ISO\CADWORKV18.iso->cw_inst.prg\PDFCreator\PDFCreator-1_2_1_setup.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.335.265.0, AS: 1.335.265.0, NIS: 1.335.265.0
Version du moteur : AM: 1.1.18000.5, NIS: 1.1.18000.5

Date: 2021-03-26 19:56:42
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.333.1349.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17900.7
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

Date: 2021-01-07 23:28:29
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.329.1825.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17700.4
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

Date: 2020-12-31 18:00:56
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.329.1334.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17700.4
Code d’erreur : 0x8024402c
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

Date: 2020-12-24 10:36:17
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.329.861.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17700.4
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

Date: 2020-12-20 19:48:30
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.329.592.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.17700.4
Code d’erreur : 0x80072ee7
Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu

CodeIntegrity:
===============
Date: 2020-11-28 19:48:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. UX430UNR.308 04/17/2019
Carte mère: ASUSTeK COMPUTER INC. UX430UNR
Processeur: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 54%
Mémoire physique - RAM - totale: 8052.55 MB
Mémoire physique - RAM - disponible: 3678.25 MB
Mémoire virtuelle totale: 15732.55 MB
Mémoire virtuelle disponible: 10813.34 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:475.89 GB) (Free:68.48 GB) (Protected) NTFS

\\?\Volume{ff061684-bd6d-42ee-8d92-ef386cf709ef}\ () (Fixed) (Total:0.78 GB) (Free:0.35 GB) NTFS
\\?\Volume{4374c37e-c612-46b4-ac9e-b58e40d1bba2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: FF5F2745)

Partition: GPT.

==================== Fin de Addition.txt =======================