Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-04-2017 01
Ran by Admin (05-02-2025 10:22:55)
Running from C:\Users\Admin\Downloads
Windows 10 Pro Version 2009 (X64) (2020-06-19 17:00:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Admin (S-1-5-21-3493139653-1852476000-2568771636-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3493139653-1852476000-2568771636-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3493139653-1852476000-2568771636-503 - Limited - Disabled)
Guest (S-1-5-21-3493139653-1852476000-2568771636-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3493139653-1852476000-2568771636-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACA & MEP 2018 Object Enabler (Version: 8.0.40.0 - Autodesk) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Applications recommandÃ©es Autodesk 2016-2018 (HKLM-x32\...\{384C4B74-B749-4AB6-9367-4D51A6AA9CB8}) (Version: 2.4.0 - Autodesk)
AutoCAD 2018 (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD 2018 Language Pack - FranÃ§ais (French) (Version: 22.0.49.0 - Autodesk) Hidden
AutoCAD Architecture 2018 - FranÃ§ais (French) (Version: 8.0.44.0 - Autodesk) Hidden
AutoCAD Architecture 2018 (Version: 8.0.44.0 - Autodesk) Hidden
AutoCAD Architecture 2018 Core (Version: 8.0.44.0 - Autodesk) Hidden
AutoCAD Architecture 2018 Language Core - FranÃ§ais (French) (Version: 8.0.44.0 - Autodesk) Hidden
AutoCAD Architecture 2018 Language Shared - FranÃ§ais (French) (Version: 8.0.44.0 - Autodesk) Hidden
AutoCAD Architecture 2018 Shared (Version: 8.0.44.0 - Autodesk) Hidden
Autodesk Access (HKLM\...\{A3158B3E-5F28-358A-BF1A-9532D8EBC811}) (Version: 2.6.0.118 - Autodesk, Inc.)
Autodesk Advanced Material Library Image Library 2018 (HKLM-x32\...\{177AD7F6-9C77-4E50-BA53-B7259C5F282D}) (Version: 16.11.1.0 - Autodesk)
Autodesk App Manager 2016-2018 (HKLM-x32\...\{20EC0CA2-346E-4660-9903-51B278DF15F6}) (Version: 2.4.0 - Autodesk)
Autodesk AutoCAD 2018 Combo Security Hotfix (HKLM-x32\...\{f4f9ba0b-1001-0000-0102-f66cecb04901}) (Version: 22.0.49.1 - Autodesk)
Autodesk AutoCAD Architecture 2018 - FranÃ§ais (French) (HKLM\...\AutoCAD Architecture 2018 - FranÃ§ais (French)) (Version: 8.0.44.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.8 (HKLM-x32\...\{214D3370-746E-4886-8EAA-5769EB87D044}) (Version: 1.2.8.0 - Autodesk)
Autodesk Certificate Package  (x64) - 5.1.4 (HKLM\...\{79D5E475-5EAB-4474-84F5-BD612337A175}) (Version: 5.1.4.100 - Autodesk)
Autodesk Collaboration for Revit 2018 (HKLM\...\Autodesk Collaboration for Revit 2018) (Version: 18.0.3.6 - Autodesk)
Autodesk Collaboration for Revit 2018 (Version: 18.0.3.6 - Autodesk) Hidden
Autodesk Design Review (HKLM-x32\...\Autodesk Design Review) (Version: 14.0.1.179 - Autodesk)
Autodesk Design Review (x32 Version: 14.0.1.179 - Autodesk) Hidden
Autodesk Genuine Service (HKLM\...\{3F9E7D4B-C2ED-48C6-ABB1-F7611724ACD9}) (Version: 5.0.0.134 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.11.9.11 - Autodesk)
Autodesk License Service (x64) - 5.1.6 (HKLM\...\{3609A8D9-FC0C-4C9B-9F58-0B1D1A4FE556}) (Version: 5.1.6.0 - Autodesk)
Autodesk Material Library 2018 (HKLM-x32\...\{7847611E-92E9-4917-B395-71C91D523104}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2018 (HKLM-x32\...\{FCDED119-A969-4E48-8A32-D21AD6B03253}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2018 (HKLM-x32\...\{1B0F011A-66B4-4865-98B7-0FE132841035}) (Version: 16.11.1.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2018 (HKLM-x32\...\{6EC5DA32-D02D-47D4-A3C4-988C1BC1A5FE}) (Version: 16.11.1.0 - Autodesk)
Autodesk Revit 2018 (HKLM\...\Autodesk Revit 2018) (Version: 18.0.3.6 - Autodesk)
Autodesk Revit 2018 (HKLM\...\Revit 2018) (Version:  - )
Autodesk Revit 2018.0.3 (HKLM\...\Autodesk Revit 2018 SP10) (Version: 18.0.3.6 - Autodesk)
Autodesk Revit 2018.0.3 Security Fix (x32 Version: 18.0.3.2 - Autodesk) Hidden
Autodesk Revit Content Libraries 2018 (HKLM\...\Autodesk Revit Content Libraries 2018) (Version: 18.0.0.420 - Autodesk)
Autodesk Revit Content Libraries 2018 (HKLM\...\Revit Content Libraries 2018) (Version:  - )
Autodesk Revit MEP Imperial Content (HKLM\...\{7A218E72-B73A-44AF-B4CA-D97EEEAACEFF}) (Version: 2.1 - Autodesk)
Autodesk Revit MEP Metric Content (HKLM\...\{14301A33-A4A1-41B8-A3BF-237AEC8561BB}) (Version: 2.1 - Autodesk)
Autodesk Revit Model Review 2018 (HKLM\...\Autodesk Revit Model Review 2018) (Version: 18.0.0.420 - Autodesk)
Autodesk Revit Model Review 2018 (Version: 18.0.0.420 - Autodesk) Hidden
Autodesk Workflows 2018 (HKLM\...\{28B17270-375A-4844-9D34-754A457E17BF}) (Version: 16.11.1.0 - Autodesk, Inc.)
Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 24.11.9615.2285 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 131.0.27894.265 - Les auteurs de Avast Secure Browser)
Avast Update Helper (x32 Version: 1.8.1653.5 - AVAST Software) Hidden
Bang & Olufsen Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.232.60 - Conexant)
Batch Print for Autodesk Revit 2018 (HKLM\...\Batch Print for Autodesk Revit 2018) (Version: 18.0.0.420 - Autodesk)
Batch Print for Autodesk Revit 2018 (Version: 18.0.0.420 - Autodesk) Hidden
Dynamo Core 1.2.2 (HKLM\...\{AEC2A178-12F1-4B42-B277-E7C395FC771C}) (Version: 1.2.2.373 - Dynamo)
Dynamo Revit 1.2.2 (HKLM\...\{0FF47E28-76A5-44BA-8EEF-58824252F528}) (Version: 1.2.2.373 - Dynamo)
eTransmit for Autodesk Revit 2018 (HKLM\...\eTransmit for Autodesk Revit 2018) (Version: 18.0.0.420 - Autodesk)
eTransmit for Autodesk Revit 2018 (Version: 18.0.0.420 - Autodesk) Hidden
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
FormIt Converter For Revit 2018 (HKLM\...\{9FFF4CAD-41A6-44D2-9467-A16AC4B6DC2A}) (Version: 1.9.3.0 - Autodesk)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 132.0.6834.160 - GoogleÂ LLC)
IronPython 2.7.3 (HKLM-x32\...\{1EBADAEA-1A0F-40E3-848C-0DD8C5E5A10D}) (Version: 2.7.31000.0 - IronPython Team)
Logiciel de base du pÃ©riphÃ©rique HP OfficeJet Pro 7740 series (HKLM\...\{6AD08953-8203-4E1B-9BE3-45343014C3B2}) (Version: 40.15.1230.21319 - HP Inc.)
Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech)
Malwarebytes version 5.2.5.158 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.5.158 - Malwarebytes)
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.18429.20132 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 132.0.2957.140 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.244.1204.0003 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{52EBC484-44A1-4DC5-824A-0A503735ABD8}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\...\Teams) (Version: 1.6.00.1381 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
NVIDIA Graphics Driver 516.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.69 - NVIDIA Corporation)
NVIDIA RTX Desktop Manager 203.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 203.05 - NVIDIA Corporation)
NVIDIA WMI 2.36.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.36.0 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.18429.20044 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.18429.20132 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.18429.20044 - Microsoft Corporation) Hidden
PDF Architect 7 (HKLM-x32\...\PDF Architect 7) (Version: 7.1.13.1755 - pdfforge GmbH)
PDF Architect 9 (HKLM-x32\...\PDF Architect 9) (Version: 9.1.57.3265 - pdfforge GmbH)
PDF Architect 9 Edit Module (Version: 9.1.65.22948 - Avanquest pdfforge GmbH) Hidden
PDF Architect 9 OCR Module (Version: 9.1.65.22948 - Avanquest pdfforge GmbH) Hidden
PDF Architect 9 OCR TESS Module (Version: 9.1.65.22948 - Avanquest pdfforge GmbH) Hidden
PDF Architect 9 View Module (Version: 9.1.65.22948 - Avanquest pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0364FA7}) (Version: 4.2.0 - pdfforge GmbH)
PDFPower (HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\...\PDFPower) (Version: 1.0 - PDFPower)
Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 20.0.9.0 - Autodesk)
Personal Accelerator for Revit (Version: 20.0.9.0 - Autodesk) Hidden
Revit 2018 (Version: 18.0.3.6 - Autodesk) Hidden
Revit Content Libraries 2018 (Version: 18.0.0.420 - Autodesk) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.65 - Synaptics Incorporated)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.13565 - Microsoft Corporation)
TeamViewer Host (HKLM-x32\...\TeamViewer) (Version: 15.61.4 - TeamViewer)
Tekla Structures Learning (HKLM-x32\...\{C6D0A74B-98A6-428D-8BA6-E723CAEEB8C7}) (Version: 211.0.102.0 - Tekla Corporation)
Tekla Structures Learning (x32 Version: 211.0.102 - Tekla Corporation) Hidden
Tekla Structures Learning Default Env (x32 Version: 211.0.102 - Tekla Corporation) Hidden
Tekla Structures Learning US imperial Env (HKLM-x32\...\{A60E80C8-4EFB-4D6A-936A-CD7785C6E5E4}) (Version: 211.0.102 - Tekla Corporation)
Tekla Structures Learning US metric Env (HKLM-x32\...\{D3412649-F63F-4EF2-94D6-8F1A3EDBFFEE}) (Version: 211.0.102 - Tekla Corporation)
Tekla Warehouse Content (HKLM-x32\...\{004E0C60-4B3D-4C16-87B2-05B02483D009}) (Version: 1.0.280 - Tekla Corporation)
Tekla Warehouse Service (HKLM-x32\...\{85B49844-2ED9-4CF2-80A6-D8A4653CDF38}) (Version: 1.1.108.0 - Tekla Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Worksharing Monitor for Autodesk Revit 2018 (HKLM\...\Worksharing Monitor for Autodesk Revit 2018) (Version: 18.0.0.420 - Autodesk)
Worksharing Monitor for Autodesk Revit 2018 (Version: 18.0.0.420 - Autodesk) Hidden
Zoom (HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\...\ZoomUMX) (Version: 5.1 - Zoom Video Communications, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22349.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe)
CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{9AAF0EB6-42D8-46C1-A2EF-679511B37A0D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{B6EB585B-B467-4E46-A9C7-48D7D6FD26CB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2018\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader (the data entry has 15 more characters).
CustomCLSID: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2018\fr-FR\acadficn.dll (Autodesk, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {008539BF-83F9-4483-9E0A-EEEE6EAC0A08} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask
Task: {026B0709-7682-45C2-8225-37135DBE7B60} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [2025-02-05] (Microsoft Corporation)
Task: {077333D6-06BA-4EA4-BDF4-1CD1439558F2} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {0CBABB27-6DFC-4155-BAE7-AE919B92FEF2} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [2025-01-06] (Microsoft Corporation)
Task: {0CEC0B91-4AE9-4E8A-ACB2-3B4C811F442C} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {0E21A3D1-0762-497B-8F28-E32D18A46383} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\Windows\system32\SecureBootEncodeUEFI.exe [2024-10-17] (Microsoft Corporation)
Task: {0E2DCCB3-7B11-40CF-B973-90F22732E317} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {10505B92-7868-486C-943A-5249BD28E0A3} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification => C:\Program Files\PDF Architect 9\architect-launcher.exe [2024-11-29] (Avanquest pdfforge GmbH)
Task: {115C6E00-2F2B-4ADB-939F-3432BE74B4B5} - System32\Tasks\pdfforge GmbH\Update => C:\Program Files\PDF Architect 8\architect.exe 
Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2024-07-21] ()
Task: {1D3B79BD-AE5C-4305-ABD2-3F78788759A7} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-23] (Microsoft Corporation) <==== ATTENTION
Task: {1F055C07-B5B7-4F84-BBEC-1CA7F0EEF034} - System32\Tasks\pdfforge GmbH\PDF Architect 8\App Notification => C:\Program Files\PDF Architect 8\architect-launcher.exe 
Task: {29E042AF-31AD-4BA6-90F9-6082039B93EE} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => Rundll32.exe %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {2A634525-1D11-4ACA-8259-022A7120DCBA} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => Rundll32.exe %windir%\system32\PcaSvc.dll,PcaPatchSdbTask
Task: {2CD9197F-18D5-47D7-9EBF-9C40BEDB40D3} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance
Task: {2DD1C33A-9A50-4E63-B467-5F2E8C8A8EC8} - System32\Tasks\Microsoft\Windows\Conexant\SA3 => C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SACpl.exe [2017-06-07] (Conexant Systems, Inc.)
Task: {2FB96372-E13A-46F7-8266-3E0FAAD34DE0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [2025-02-05] (Microsoft Corporation)
Task: {2FCF8C6F-27B8-46AB-A4A1-A09A1EFA0CE5} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [2024-11-29] (Avanquest pdfforge GmbH)
Task: {304D2127-E6ED-4C82-B9B3-63B3B54A4D66} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan
Task: {3411B821-2AE4-40F0-9B69-45924C044EDF} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [2025-02-05] (Microsoft Corporation)
Task: {34ADEFE8-89DB-43BC-8C0B-14BB34D69F6D} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {35525E8D-FD60-47BF-8D11-FA4F778C57C3} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [2024-05-29] (Microsoft Corporation)
Task: {3883BB4D-3B34-4FB9-82B9-C22E39B81EB0} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [2025-01-22] (HP Inc.)
Task: {3C82D75D-A7B4-4B48-B190-3264B3BDC73D} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery
Task: {3FC4BE91-4A96-48F5-8858-1628CB88EFB5} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [2024-12-13] (Microsoft Corporation)
Task: {44AF7ADA-1C0D-43B1-A063-9E7581F7730B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {45D8FDE0-EDDE-41C3-A737-31BDE040AEFC} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler => C:\Program Files\RUXIM\PLUGscheduler.exe [2024-09-27] (Microsoft Corporation)
Task: {46F501C3-A3F8-4F43-A029-FFB856641D3C} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting
Task: {48C7429E-7548-4A80-ABE7-CEA53E3B4831} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {4A0DEFDA-A2B8-4736-88E1-A578E00D9704} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable
Task: {4BD1F796-DA77-469C-9EBB-097C3D1F6A56} - System32\Tasks\AvastBrowserProtectS-1-5-21-3493139653-1852476000-2568771636-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [2024-05-08] (Gen Digital Inc.) <==== ATTENTION
Task: {4E545298-FF8F-4496-ACE6-B6C748F560D9} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [2024-11-17] (Gen Digital Inc.)
Task: {50856958-EC42-4986-8AE9-953BD6218B72} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\App Notification Logon => C:\Program Files\PDF Architect 9\architect-launcher.exe [2024-11-29] (Avanquest pdfforge GmbH)
Task: {54D51F58-9309-4A68-8636-2E2244AC56D2} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache
Task: {5506FBF7-E8C2-4DA8-8D7B-B9743474CA9B} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [2025-01-06] (Microsoft Corporation)
Task: {55B1C85E-5BEF-4EDB-ADD0-ECEAEF261E7C} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\Windows\system32\directxdatabaseupdater.exe [2025-01-06] (Microsoft Corporation)
Task: {571A0A5E-B60E-4A25-BEFB-ABB3C6BB6B78} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync
Task: {58CCC4DA-C86D-4E3D-8FAF-A7B24D8F3950} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => Rundll32.exe %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {5E351EE7-F0D4-4F41-A05C-907EB1A33CE8} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {5FD539AB-D827-4456-A0E6-16306019A041} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [2025-02-05] (Microsoft Corporation)
Task: {66A3F618-0C70-4F70-9BBA-735CCDB43A09} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {67577C7E-ED7D-4B94-B271-6681BEB12CD1} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [2025-01-22] (HP Inc.)
Task: {6B1459B3-EAC2-403C-AF5F-3E67EFFF9614} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2023-10-05] (AVAST Software) <==== ATTENTION
Task: {6D09D4B0-6922-4BB9-BB50-1236D66076D6} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => Sc.exe start pushtoinstall registration
Task: {751189FF-8D3E-4826-855A-9FD893A56648} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2025-02-05] (Microsoft Corporation)
Task: {78267C31-F057-47E6-BD7B-5D5196DC95FA} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [2024-11-13] (Gen Digital Inc.)
Task: {79158A76-0680-4DA0-8BE1-8226A567F6EC} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner
Task: {7A91A0CC-A2B2-45DF-9FA3-3C08C361D4E3} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {7C4733D2-81D6-4CA3-B30C-E00B496B9857} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable
Task: {7FC395E3-21AB-4F04-A5B7-C9DD1B1D36EB} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2022-09-02] (NVIDIA Corporation)
Task: {7FEF48A7-BAA1-47EA-9A75-E796131C5B57} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-23] (Microsoft Corporation) <==== ATTENTION
Task: {80393FD1-ADBE-4080-A668-794D82CE1812} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\Windows\system32\fclip.exe [2024-09-17] (Microsoft Corporation)
Task: {8339E183-29C5-4BCA-9377-85EA5B7B1DB6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2025-02-05] (Microsoft Corporation)
Task: {868284F9-D527-40D0-8587-1370A577FCED} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2023-10-05] (AVAST Software) <==== ATTENTION
Task: {87094343-6C1F-4855-A6B9-305BA74AB761} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
Task: {8AA43E83-1441-4BA0-828C-A9E815DD06AD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{2F4F5749-8C10-4B3E-A653-2D16B814648F} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe [2025-01-09] (Google LLC) <==== ATTENTION
Task: {8BD0DC3A-CE63-4A31-933A-712176D7AA87} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask
Task: {923A0DA8-0D4B-4165-822B-BDB710B1062F} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2025-01-08] (Gen Digital Inc.)
Task: {9298DFA0-4F66-4159-818C-0E8F9737FE91} - System32\Tasks\Avanquest pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [2024-09-02] ()
Task: {95554394-0614-4CAC-A893-C0CDC4F06529} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [2020-08-30] (Conexant)
Task: {9B29B882-A95C-438B-BF91-E7C31B1D82D1} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {9EB7DB1B-5946-4DC4-B54F-3D14DBD939FE} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2024-05-29] (Microsoft Corporation)
Task: {A0509812-3FB4-4210-87C5-E162D1B3AB4A} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {A08D6A77-C926-4E78-9ED0-09836E2769AE} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {A2FADBDF-6855-42F7-BDFC-F0C510EDA9BC} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {A499FA48-7057-4AC1-9702-44C6FD924058} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {A60D9ECB-A6F4-4FE1-9BD7-B049487A67E7} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings
Task: {ACE37EEE-FDFC-42FC-8244-DAC9C66EC007} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload
Task: {AF73DAAA-53AE-4CC8-8671-BE29D886B057} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {B3E5F85D-A533-4AB5-9316-9AE12FDF12FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2024-12-18] (Adobe Inc.)
Task: {B944D73C-8C8A-4A0C-8033-DF84DFD3DFC3} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => Sc.exe start pushtoinstall login
Task: {B99DB544-FC0B-4AA6-B5B8-C730D8578321} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\Windows\system32\clipesu.exe [2024-12-13] (Microsoft Corporation)
Task: {C0D8C896-DCE1-4ADA-956D-52DFF20384EE} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask
Task: {C5D47392-881C-422A-9BF8-E4916B55CD22} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications
Task: {C661C01D-E8B1-4570-82AC-38CE52260B75} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Update => C:\Program Files\PDF Architect 9\architect.exe [2024-11-29] (Avanquest pdfforge GmbH)
Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [2024-05-29] (Microsoft Corporation)
Task: {CADF1293-5495-426F-8E37-A30F69274AF4} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable
Task: {CC2F80AF-5FFD-4D36-83A6-4DED5D3316CF} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{9014C18E-BB4D-4684-A8E3-91D64ACE1B67} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [2025-01-28] (Google LLC) <==== ATTENTION
Task: {CC8C2467-F222-451A-8298-4C3696D02E72} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup
Task: {CE54D214-4647-4E18-A2F1-849E364418EF} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing
Task: {CF8B45F3-5649-4610-B199-F0272721B377} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [2025-02-05] (Microsoft Corporation)
Task: {D067D9C3-EFA4-49C9-9ECC-62A0E6ABD733} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup
Task: {D8B4DCE0-5472-47FE-8C24-CCCACD84E1C6} - System32\Tasks\pdfforge GmbH\PDF Architect 9\Installer updater => C:\ProgramData\PDF Architect 9\Installation\PDF_Architect_9_Installer.exe [2024-09-02] ()
Task: {DA42085F-11E4-4EE1-A363-1898204812F5} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable
Task: {DCBD5417-F7AC-46E3-A529-0B85ACABAE23} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange
Task: {DE889765-28E9-4583-A2FE-C204275AB62D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3493139653-1852476000-2568771636-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2025-01-20] (Microsoft Corporation)
Task: {DFFEBC6E-17A2-4AF0-B516-55975EEEB728} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2025-01-20] (Microsoft Corporation)
Task: {E0334771-89E3-460E-93A6-D3549523D5D8} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange
Task: {E198CE5D-5513-4CD2-B291-16E0C99F074C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2024-11-19] (Gen Digital Inc.)
Task: {EC3EFE4E-A2E4-4C66-975C-CA2EFD0D42CD} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {ED7A479C-6E15-414E-923E-9AA6E48740A3} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2025-01-08] (Gen Digital Inc.)
Task: {F0CD66C0-270E-439C-85C4-8AAD880F4CEB} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2024-05-29] (Microsoft Corporation)
Task: {F7FEB22A-7AAB-490D-AD18-AEE9D9CB62D0} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [2025-02-05] (Microsoft Corporation)
Task: {F8FEDA28-6261-4385-844A-684E6C988577} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh
Task: {F9600A7A-A6F4-430D-94C5-F21DA9E43191} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [2025-02-05] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Admin\OneDrive - Centre de services scolaire des DÃ©couvreurs\Bureau\SketchUp for Web.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=beodkchghmjjfhojholjdhdfodleinln
ShortcutWithArgument: C:\Users\Admin\OneDrive - Centre de services scolaire des DÃ©couvreurs\Bureau\Travail - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\SketchUp for Web.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=beodkchghmjjfhojholjdhdfodleinln
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2023-11-19 08:45 - 2023-11-19 08:45 - 00065752 _____ () c:\windows\system32\UMPDC.dll
2020-06-19 12:17 - 2018-05-04 03:10 - 00205336 _____ () c:\windows\system32\drivers\umdf\detectionverificationdrv.dll
2023-11-19 08:45 - 2023-11-19 08:45 - 00065752 _____ () C:\Windows\SYSTEM32\UMPDC.dll
2024-10-17 06:25 - 2024-10-17 06:25 - 00715448 _____ () c:\windows\system32\TextShaping.dll
2024-10-28 12:48 - 2024-10-28 12:48 - 00107096 _____ () C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\NotificationManager.dll
2024-10-28 12:48 - 2024-10-28 12:48 - 00335448 _____ () C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\HPPKAnalyticClientLib.dll
2024-05-29 16:11 - 2024-05-29 16:11 - 00658640 _____ () C:\Windows\System32\WindowManagementAPI.dll
2023-10-16 15:42 - 2023-10-16 15:42 - 00024576 _____ () C:\Windows\system32\WSDPROVIDERUTIL.dll
2023-11-19 08:45 - 2023-11-19 08:45 - 00065752 _____ () C:\Windows\System32\UMPDC.dll
2021-02-24 09:19 - 2021-02-24 09:19 - 00795712 _____ () C:\Windows\SysWOW64\IccSdk.dll
2024-10-28 12:48 - 2024-10-28 12:48 - 00163936 _____ () C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\HPHotkeyAnalyticClientLib.dll
2023-10-16 15:42 - 2023-10-16 15:42 - 00024576 _____ () C:\Windows\System32\WSDPROVIDERUTIL.dll
2024-05-29 16:10 - 2024-05-29 16:10 - 00322048 _____ () C:\Windows\System32\AggregatorHost.exe
2023-11-19 08:47 - 2023-11-19 08:47 - 00039424 _____ () C:\Windows\System32\usocoreps.dll
2023-11-19 08:45 - 2023-11-19 08:45 - 00065752 _____ () C:\Windows\system32\UMPDC.dll
2024-05-29 16:14 - 2024-05-29 16:14 - 00616712 _____ () C:\WINDOWS\SYSTEM32\WINBIOPLUGINS\FACEBOOTSTRAPADAPTER.DLL
2024-05-29 16:11 - 2024-05-29 16:11 - 00658640 _____ () C:\Windows\System32\windowmanagementapi.dll
2024-10-17 06:25 - 2024-10-17 06:25 - 00715448 _____ () C:\Windows\System32\TextShaping.dll
2024-10-28 12:48 - 2024-10-28 12:48 - 00385112 _____ () C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\HPAudioAnalyticClientLib.dll
2024-10-17 06:25 - 2024-10-17 06:25 - 00715448 _____ () C:\Windows\SYSTEM32\TextShaping.dll
2024-05-29 16:15 - 2024-05-29 16:15 - 00096256 _____ () C:\Windows\System32\VirtualMonitorManager.dll
2024-05-29 16:12 - 2024-05-29 16:12 - 00433152 _____ () C:\Windows\System32\Windows.Internal.UI.Shell.WindowTabManager.dll
2024-05-29 16:10 - 2024-05-29 16:10 - 00500224 _____ () C:\Windows\ShellExperiences\TileControl.dll
2025-01-06 10:43 - 2025-01-06 10:43 - 02158080 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2024-05-29 16:11 - 2024-05-29 16:11 - 02261504 _____ () C:\Windows\system32\TextInputMethodFormatter.dll
2025-01-06 10:43 - 2025-01-06 10:43 - 00812024 _____ () C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
2024-05-29 16:11 - 2024-05-29 16:11 - 00658640 _____ () C:\Windows\SYSTEM32\WindowManagementAPI.dll
2025-01-06 10:43 - 2025-01-06 10:43 - 00456192 _____ () C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\Search.Core.dll
2023-12-31 14:00 - 2023-12-31 14:00 - 153679664 _____ () C:\Program Files\Avast Software\Avast\libcef.dll
2023-12-31 14:00 - 2023-12-31 14:00 - 02745648 _____ () C:\Program Files\Avast Software\Avast\swiftshader\libglesv2.dll
2023-12-31 14:00 - 2023-12-31 14:00 - 00431920 _____ () C:\Program Files\Avast Software\Avast\swiftshader\libegl.dll
2022-10-14 10:21 - 2022-08-15 23:59 - 00163344 _____ () C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\igdinfo64.dll
2019-04-25 17:27 - 2019-04-25 17:27 - 00062464 _____ () C:\Program Files\Autodesk\Personal Accelerator for Revit\qoauth_Ad_1.dll
2019-04-25 17:27 - 2019-04-25 17:27 - 00165376 _____ () C:\Program Files\Autodesk\Personal Accelerator for Revit\qjson_Ad_0.dll
2019-04-25 17:27 - 2019-04-25 17:27 - 00050176 _____ () C:\Program Files\Autodesk\Personal Accelerator for Revit\QtSolutions_MFCMigrationFramework_Ad_2.dll
2019-04-25 17:27 - 2019-04-25 17:27 - 00932352 _____ () C:\Program Files\Autodesk\Personal Accelerator for Revit\qca_Ad_2.dll
2019-10-21 07:56 - 2019-10-21 07:56 - 00077824 _____ () C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll
2019-10-21 07:56 - 2019-10-21 07:56 - 00144896 _____ () C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll
2024-06-18 08:57 - 2024-04-16 03:19 - 01521440 _____ () C:\Program Files\Autodesk\AdODIS\V1\Access\log4cplusU.dll
2023-07-29 09:50 - 2024-04-15 23:27 - 02888480 _____ () C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\ffmpeg.dll
2024-06-18 08:57 - 2024-03-14 01:59 - 00925184 _____ () \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adIPC.node
2024-06-18 08:57 - 2024-04-15 23:11 - 00371712 _____ () \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adpUtil.node
2023-07-29 09:50 - 2024-04-15 23:27 - 07819040 _____ () C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\libglesv2.dll
2023-07-29 09:50 - 2024-04-15 23:27 - 00488736 _____ () C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\libegl.dll
2023-07-29 09:50 - 2024-04-15 23:27 - 05249312 _____ () C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\vk_swiftshader.dll
2024-12-14 08:36 - 2024-11-20 00:56 - 00591424 _____ () C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Domain Actions\3.0.0.8\domain_actions.dll
2025-02-05 09:48 - 2025-01-30 11:51 - 07010960 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\132.0.2957.140\libglesv2.dll
2025-02-05 09:48 - 2025-01-30 11:52 - 00486536 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\132.0.2957.140\libegl.dll
2025-02-05 09:49 - 2025-01-30 11:46 - 04808256 _____ () C:\Program Files (x86)\Microsoft\Edge\Application\132.0.2957.140\vk_swiftshader.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 04123168 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.WinRT.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 00400432 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.Exp.WinRT.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 00082984 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.Contracts.Exp.dll
2024-09-02 12:43 - 2024-09-02 12:43 - 05554176 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\LibNanoAPI.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 00720936 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.ScreenMirroring.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 01001008 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.Calling.WinRT.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 00623144 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.Notifications.WinRT.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 01303576 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.ScreenMirroring.WinRT.dll
2025-01-22 17:35 - 2025-01-22 17:35 - 00026656 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.24121.85.0_x64__8wekyb3d8bbwe\YourPhone.Contracts.Background.ProxyStub.dll
2025-02-05 09:55 - 2025-02-05 09:55 - 01237768 _____ () C:\Program Files\Malwarebytes\Anti-Malware\shared\Microsoft.WindowsDesktop.App\6.0.36\PresentationNative_cor3.dll
2025-02-05 09:55 - 2025-02-05 09:55 - 00485152 _____ () C:\Program Files\Malwarebytes\Anti-Malware\shared\Microsoft.WindowsDesktop.App\6.0.36\DirectWriteForwarder.dll
2025-02-05 09:55 - 2025-02-05 09:55 - 01849248 _____ () C:\Program Files\Malwarebytes\Anti-Malware\e_sqlcipher.DLL
2025-02-05 09:55 - 2025-02-05 09:55 - 01963816 _____ () C:\Program Files\Malwarebytes\Anti-Malware\shared\Microsoft.WindowsDesktop.App\6.0.36\wpfgfx_cor3.dll
2025-02-05 09:55 - 2025-02-05 09:55 - 00157992 _____ () C:\Program Files\Malwarebytes\Anti-Malware\shared\Microsoft.WindowsDesktop.App\6.0.36\PenIMC_cor3.dll
2024-10-17 06:25 - 2024-10-17 06:25 - 00715448 _____ () C:\Windows\system32\TextShaping.dll
2024-05-29 16:11 - 2024-05-29 16:11 - 00658640 _____ () C:\Windows\system32\WindowManagementAPI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\avg_antivirus_free_setup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\Basic_Webpack_x64-40.15.1230-OJ7740_Basicx64_Webpack.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\FRST64.exe:MBAM.Zone.Identifier [337]
AlternateDataStreams: C:\Users\Admin\Downloads\FRST64.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\HPEasyStart_14_1_4.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\OfficeSetup (1).exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\OfficeSetup.exe:SmartScreen [7]
AlternateDataStreams: C:\Users\Admin\Downloads\TeamViewer_Host_Setup.exe:SmartScreen [7]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CBDHSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MsQuic => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\...\sharepoint.com -> hxxps://csdddemo-files.sharepoint.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 04:14 - 2019-12-07 04:12 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3493139653-1852476000-2568771636-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 24.201.245.77 - 24.200.243.189
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-deviceenroller-TCP-Out] => (Allow) %SystemRoot%\system32\deviceenroller.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [{55BEC298-D692-4A9F-AE7B-28F02241CDB7}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE
FirewallRules: [{C2981330-3FF7-469B-94A5-944621AC4A5D}] => (Allow) C:\Users\Admin\AppData\Roaming\Zoom\bin\Zoom.exe
FirewallRules: [{0F682606-175B-4694-9D8B-755B820620A8}] => (Allow) C:\Users\Admin\AppData\Roaming\Zoom\bin\airhost.exe
FirewallRules: [{15457741-2A25-4A5B-ABBF-DFD242E3FA4F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{DB191756-E4C5-458B-AC82-8FAB38E99C3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{DC6AEB8B-F6BD-4075-B50C-7933A457FDC6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{EA5283FA-1850-47DD-AC9A-8BB681FC0BF0}C:\users\admin\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\admin\appdata\local\microsoft\teams\current\teams.exe
FirewallRules: [UDP Query User{D079E0B0-8379-4DA0-9DCE-6BC59B891441}C:\users\admin\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\admin\appdata\local\microsoft\teams\current\teams.exe
FirewallRules: [{95A1E1CB-7841-4D17-9861-3C5E56DDE72E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe
FirewallRules: [{BEDA5C69-C496-4AF2-8737-80A809B6A7E3}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe
FirewallRules: [{BA09A790-6FCA-4EAA-81AC-290E6DA9033B}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\bin\FaxApplications.exe
FirewallRules: [{3B0CDE87-2D0C-435F-9A47-9552169230D3}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\bin\DigitalWizards.exe
FirewallRules: [{45E7854B-88CE-4356-8C58-DEA0B919B30D}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\bin\SendAFax.exe
FirewallRules: [{7ABE6C19-1AA8-4004-BC1F-F2CCBEFC0F87}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\bin\FaxPrinterUtility.exe
FirewallRules: [{2AB9555A-CE7A-40DE-B6F1-227B19CBFD92}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\Bin\DeviceSetup.exe
FirewallRules: [{3D4B8648-FC58-4072-8398-AE21897196FB}] => (Allow) LPort=5357
FirewallRules: [{8D26B763-05CF-44BD-979C-CF8CD59C47B0}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 7740 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B5AD0E8F-71C1-426D-AE5A-4159548F66F2}] => (Allow) C:\Users\Admin\AppData\Local\Temp\7zS0D55\HP.EasyStart.exe
FirewallRules: [TCP Query User{1D20F9AB-7F43-475E-AD26-8DE30E1810A2}C:\users\admin\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\admin\appdata\local\microsoft\teams\current\teams.exe
FirewallRules: [UDP Query User{1F07AC44-F36F-456A-8F93-9ADA16D57129}C:\users\admin\appdata\local\microsoft\teams\current\teams.exe] => (Block) C:\users\admin\appdata\local\microsoft\teams\current\teams.exe
FirewallRules: [{81CF3B00-79C1-4D66-846E-F4723437C088}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23320.3021.2567.4799_x64__8wekyb3d8bbwe\ms-teams.exe
FirewallRules: [{93AEA487-1C8B-4D84-999B-ABBA81E20D6D}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23320.3021.2567.4799_x64__8wekyb3d8bbwe\ms-teams.exe
FirewallRules: [{BAB99CA6-C87F-4B8C-9724-A8F6172C3631}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{CA9A8651-0BB8-458D-B1F8-673CBC21DB13}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{AB486E18-7EA5-4403-8F0D-15F0EC6F7A03}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{FBF57EC7-B08F-4246-99F4-76654FFF83EA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{860C12EA-524F-4494-9401-3D59BD2314FB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{2952A4C7-FD6A-4E1C-BDDB-0439A29B4FA0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{12181826-2D30-4193-A20E-3D15167A1937}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe
FirewallRules: [{739AAA6D-18BF-4E49-976F-849150ADCFD2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0FBC472A-F743-4BC9-82B9-903B518FFA40}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B7494CA2-F13C-4078-AB07-D062E2E17340}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A7C39E5D-E6D6-4A8F-8811-374DE9663E75}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F66B590E-BD0E-41DD-B8B5-2DFE794CDE45}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{01ADD644-5338-4A58-8BA5-B1F16DEA6D10}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4D13F24C-0757-4617-9763-24EBECC54CC3}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
FirewallRules: [{D5A6F5FB-F82E-40C9-B77E-A44BA57CA5AC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\msedgewebview2.exe

==================== Restore Points =========================

22-01-2025 17:40:58 Windows Modules Installer

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/05/2025 10:06:42 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll

Error: (02/05/2025 10:06:42 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa20003, Error: AADSTS9002313: Invalid request. Request is malformed or invalid. Trace ID: 3a59fe27-a7b5-4cda-824d-8a67010e4300 Correlation ID: f230481a-de33-4a72-a94c-c21e58f33959 Timestamp: 2025-02-05 15:05:02Zmcpmanagementservice.dll

Error: (02/05/2025 10:06:37 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll

Error: (02/05/2025 10:06:37 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa20003, Error: AADSTS9002313: Invalid request. Request is malformed or invalid. Trace ID: 3a59fe27-a7b5-4cda-824d-8a67010e4300 Correlation ID: f230481a-de33-4a72-a94c-c21e58f33959 Timestamp: 2025-02-05 15:05:02Zmcpmanagementservice.dll

Error: (02/05/2025 10:06:35 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll

Error: (02/05/2025 10:06:35 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa20003, Error: AADSTS9002313: Invalid request. Request is malformed or invalid. Trace ID: 3a59fe27-a7b5-4cda-824d-8a67010e4300 Correlation ID: f230481a-de33-4a72-a94c-c21e58f33959 Timestamp: 2025-02-05 15:05:02Zmcpmanagementservice.dll

Error: (02/05/2025 10:06:34 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll

Error: (02/05/2025 10:06:34 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa20003, Error: AADSTS9002313: Invalid request. Request is malformed or invalid. Trace ID: 3a59fe27-a7b5-4cda-824d-8a67010e4300 Correlation ID: f230481a-de33-4a72-a94c-c21e58f33959 Timestamp: 2025-02-05 15:05:02Zmcpmanagementservice.dll

Error: (02/05/2025 10:05:18 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll

Error: (02/05/2025 10:05:18 AM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa20003, Error: AADSTS9002313: Invalid request. Request is malformed or invalid. Trace ID: 3a59fe27-a7b5-4cda-824d-8a67010e4300 Correlation ID: f230481a-de33-4a72-a94c-c21e58f33959 Timestamp: 2025-02-05 15:05:02Zmcpmanagementservice.dll


System errors:
=============
Error: (01/25/2025 05:13:37 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Le serveur {8018F647-BF07-55BB-82BE-A2D7049F7CE4} ne sâest pas enregistrÃ© sur DCOM avant la fin du temps imparti.

Error: (01/25/2025 02:43:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-IGUKTSB)
Description: Le serveur {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} ne sâest pas enregistrÃ© sur DCOM avant la fin du temps imparti.

Error: (01/23/2025 06:32:23 PM) (Source: BTHUSB) (EventID: 16) (User: )
Description: L'authentification mutuelle entre la carte locale Bluetooth et un pÃ©riphÃ©rique avec l'adresse de carte Bluetooth (48:c7:96:23:3c:fe) a Ã©chouÃ©.

Error: (01/23/2025 06:31:42 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: La carte locale Bluetooth a Ã©chouÃ© d'une maniÃ¨re indÃ©terminÃ©e et ne sera pas utilisÃ©e. Le pilote a Ã©tÃ© dÃ©chargÃ©.

Error: (01/23/2025 11:20:33 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service System Guard Runtime Monitor Broker s'est arrÃªtÃ© avec l'erreurÂ : 
%%3489660935

Error: (01/23/2025 11:20:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n'a pas pu dÃ©marrer en raison de l'erreurÂ : 
Le service nâa pas rÃ©pondu assez vite Ã  la demande de lancement ou de contrÃ´le.

Error: (01/23/2025 11:20:33 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dÃ©passement de dÃ©lai (30000 millisecondes) a Ã©tÃ© atteint lors de l'attente de la connexion du service Service Google Update (gupdate).

Error: (01/23/2025 11:18:54 AM) (Source: BTHUSB) (EventID: 16) (User: )
Description: L'authentification mutuelle entre la carte locale Bluetooth et un pÃ©riphÃ©rique avec l'adresse de carte Bluetooth (48:c7:96:23:3c:fe) a Ã©chouÃ©.

Error: (01/22/2025 07:27:14 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Update Orchestrator Service ne s'est pas fermÃ© correctement aprÃ¨s avoir reÃ§u une commande d'anticipation de fermeture.

Error: (01/22/2025 07:26:22 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service System Guard Runtime Monitor Broker s'est arrÃªtÃ© avec l'erreurÂ : 
%%3489660935


CodeIntegrity:
===================================
  Date: 2025-02-05 10:06:55.4520000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:55.3620000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:55.2660000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:55.1290000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:55.0720000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:54.9860000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-02-05 10:06:54.9240000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.

  Date: 2025-01-06 10:48:52.4340000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2024-11-19 19:57:20.2070000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2024-11-17 17:35:31.0590000Z
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-6820HQ CPU @ 2.70GHz
Percentage of memory in use: 21%
Total physical RAM: 32648.59 MB
Available physical RAM: 25721.72 MB
Total Virtual: 37512.59 MB
Available Virtual: 31048.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:953.25 GB) (Free:797.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: 5DDC459C)

Partition: GPT.

==================== End of Addition.txt ============================