Poprosim o kontrolu logu, vytazeny a prehrievajuci sa procesor.
Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-03-2021
Ran by Panasonic (administrator) on PANASONIC (Panasonic Corporation CF-C1BD01EFF) (14-03-2021 17:30:16)
Running from C:\Download
Loaded Profiles: Panasonic
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\Common Files\Teradyne\TDSNetSetup.exe
() [File not signed] C:\Program Files\Mobile Broadband Drivers\WMCore\QCHelper.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Akamai Technologies, Inc. -> Akamai Technologies, Inc.) C:\Users\Panasonic\AppData\Local\Akamai\netsession_win.exe <2>
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Bosch Automotive Service Solutions Inc. -> Bosch Automotive Service Solutions Inc) C:\SPXDSClient\Bin\SPX.DSWinWebService.exe
(Bosch Automotive Service Solutions Inc. -> Bosch Automotive Service Solutions Inc.) C:\SPXDSClient\Bin\XMSProxyCredentialManagerService.exe
(Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\EngineeringFeedback.exe
(Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\SDDManager.exe
(Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\SoftwareManager.exe
(Bosch Automotive Service Solutions Ltd.) [File not signed] C:\Program Files\JLR\SDD\Runtime\VCI\ProtocolAccessServer.exe
(Bosch Automotive Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\TDSNetConfig.exe
(DENSO CORPORATION -> ) C:\Program Files\Toyota Diagnostics\GTS DataSync\GTSDataSync.exe
(Ericsson AB -> Ericsson AB) C:\Program Files\Mobile Broadband Drivers\WMCore\mini_WMCore.exe
(Flexera Software LLC -> Flexera Software LLC.) C:\ProgramData\FlexNet\Connect\11\agent.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\Totalcmd\TOTALCMD.EXE
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files\Infineon\Security Platform Software\IfxPsdSv.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files\Infineon\Security Platform Software\IFXSPMGT.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files\Infineon\Security Platform Software\IFXTCS.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files\Infineon\Security Platform Software\PSDrt.exe
(Infineon Technologies AG -> Infineon Technologies AG) C:\Program Files\Infineon\Security Platform Software\SpTNA.exe
(Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <7>
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\DispRot\IDRot.exe <2>
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\Hotkey Appendix\hkeyapp.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\MEISKB\MEISKB.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\MEITBMAN\MeiTBMan.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\pcinfo\PcInfoPi.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\pcinfo\PCInfoSV.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\PNotif\PNotif.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\PPlanEx\ChgBmode.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\qbmgr\qbmgrsv.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\Selsussv\selsussv.exe
(Panasonic Corporation -> Panasonic Corporation) C:\Program Files\Panasonic\WheelPad\TouchPad.exe
(Panasonic Corporation) [File not signed] C:\Program Files\Panasonic\PPlanEx\PPlanEx.exe
(Panasonic Corporation) [File not signed] C:\Program Files\Panasonic\WSwitch\WSwitch.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\CodeServeD.exe
(Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\XMLRegistryD.exe
(The Firebird Project) [File not signed] C:\APP\firebird\bin\fbguard.exe
(The Firebird Project) [File not signed] C:\APP\firebird\bin\fbserver.exe
(Vetronix Corp.) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford)\VCI Identification Service\vci-ident.exe
(Vetronix Corp.) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\VCI Identification Service\vci-ident.exe
(Vetronix Corp.) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\VCI Identification Service\vci-ident.exe
(Vetronix Corp.) [File not signed] C:\Program Files\GM MDI Software\GM MDI Identification Service\GM_MDI_Ident.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\System32\vmnat.exe
(VMware, Inc. -> VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [QBMGR_StartUp] => C:\Program Files\Panasonic\qbmgr\qbmgrud.exe [115080 2011-04-18] (Panasonic Corporation -> Panasonic Corporation)
HKLM\...\Run: [IDRot] => C:\Program Files\Panasonic\DispRot\IDRot.exe [304008 2011-04-28] (Panasonic Corporation -> Panasonic Corporation)
HKLM\...\Run: [IMSS] => C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [112152 2011-02-22] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1938728 2010-10-29] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [IFXSPMGT] => C:\Program Files\Infineon\Security Platform Software\ifxspmgt.exe [1160480 2010-02-23] (Infineon Technologies AG -> Infineon Technologies AG)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1210640 2011-01-05] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation)
HKLM\...\Run: [ClipStatusNotification] => C:\Clip_X91\Lib\Application\StatusNotification.exe [83456 2020-02-17] (Bosch) [File not signed]
HKLM\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM\...\Run: [RNFI_UserSettings] => wscript "C:\Program Files\Renault\Browser-Settings\RNFI_UserSettings.vbs" //NOLOGO //B //T:99
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\Run: [vmware-tray.exe] => C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [105176 2014-07-02] (VMware, Inc. -> VMware, Inc.)
HKLM\...\Run: [Panasonic Hotkey Manager] => C:\Program Files\Panasonic\Hotkey Appendix\HKEYAPP.EXE [1103232 2010-04-05] (Panasonic Corporation -> Panasonic Corporation)
HKLM\...\Run: [ProtocolAccessServer] => C:\Program Files\JLR\SDD\Runtime\VCI\ProtocolAccessServer.exe [97792 2014-11-25] (Bosch Automotive Service Solutions Ltd.) [File not signed]
HKLM\...\Run: [JLR_Feedback] => C:\Program Files\JLR\SDD\Runtime\EngineeringFeedback.exe [598016 2020-08-10] (Bosch Automotive Service Solutions Ltd) [File not signed]
HKLM\...\Run: [SDDManager] => C:\Program Files\JLR\SDD\Runtime\SDDManager.exe [176128 2020-08-10] (Bosch Automotive Service Solutions Ltd) [File not signed]
HKLM\...\Run: [JLR_SoftwareManager] => C:\Program Files\JLR\SDD\Runtime\SoftwareManager.exe [831488 2020-08-10] (Bosch Automotive Service Solutions Ltd) [File not signed]
HKLM\...\Run: [PCinfo] => C:\Program Files\Panasonic\pcinfo\PcInfoUt.exe [176960 2009-07-02] (Panasonic Corporation) [File not signed]
HKLM\...\Run: [PPlanEx] => C:\Program Files\Panasonic\PPlanEx\PPlanEx.exe [663936 2010-03-18] (Panasonic Corporation) [File not signed]
HKLM\...\Run: [WSwitch] => C:\Program Files\Panasonic\WSwitch\WSwitch.exe [1287552 2010-03-19] (Panasonic Corporation) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [366272 2020-10-02] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Panasonic\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [98816 2020-12-08] (pdfforge GmbH) [File not signed]
HKLM\Software\...\Authentication\Credential Providers: [{25A988CF-F353-4536-BCF5-CE82C347E2F1}] -> C:\Windows\system32\PNtfCP.dll [2009-07-10] (Panasonic Corporation -> Panasonic Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GTS-API Process.lnk [2020-12-06]
ShortcutTarget: GTS-API Process.lnk -> C:\Program Files\Toyota Diagnostics\Techstream\bin\GTSAPI_TGD.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GTSdotNetChecker.lnk [2020-12-06]
ShortcutTarget: GTSdotNetChecker.lnk -> C:\Program Files\Toyota Diagnostics\GTS DataSync\DNC\GTSdotNetChecker.vbs () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\J2534 Config App (Ford).lnk [2020-12-14]
ShortcutTarget: J2534 Config App (Ford).lnk -> C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford)\J2534 Configuration\J2534ConfigApp.exe (Vetronix Corp) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\J2534 Config App (Ford-VCM3).lnk [2020-12-14]
ShortcutTarget: J2534 Config App (Ford-VCM3).lnk -> C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\J2534 Configuration\J2534ConfigApp.exe (Vetronix Corp) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\J2534 Config App (MDI).lnk [2020-10-24]
ShortcutTarget: J2534 Config App (MDI).lnk -> C:\Program Files\GM MDI Software\J2534 Configuration\J2534ConfigApp.exe (Vetronix Corp) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\J2534 Config App (RNM).lnk [2020-10-31]
ShortcutTarget: J2534 Config App (RNM).lnk -> C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\J2534 Configuration\J2534ConfigApp.exe (Vetronix Corp) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\J2534 Config App-v0500 (RNM-VI).lnk [2020-10-31]
ShortcutTarget: J2534 Config App-v0500 (RNM-VI).lnk -> C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\J2534 Configuration\J2534ConfigApp(0500).exe (Vetronix Corp) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NewShortcut3.lnk [2021-02-10]
ShortcutTarget: NewShortcut3.lnk -> C:\Program Files\Mobile Broadband Drivers\WMCore\QCHelper.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Software Keyboard.lnk [2021-03-06]
ShortcutTarget: Software Keyboard.lnk -> C:\Program Files\Panasonic\MEISKB\MEISKB.exe (Panasonic Corporation -> Panasonic Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Touch Pad Utility.lnk [2020-09-26]
ShortcutTarget: Touch Pad Utility.lnk -> C:\Program Files\Panasonic\WheelPad\TouchPad.exe (Panasonic Corporation -> Panasonic Corporation)
AlternateShell:
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {40D358D6-9E77-4830-A3BA-247AA568B640} - System32\Tasks\{1A705160-D6E3-40CF-949C-16FD39B324BA} => C:\Program Files\FORScan\FORScan.exe [1526784 2021-01-22] () [File not signed]
Task: {4E52CE0C-7FFA-477A-A2D2-83E8B12EB48E} - System32\Tasks\RenaultInventoryDefault.pak_Once => C:\SpxDsClient\Bin\Spx.PackageAgent.exe [113496 2020-06-23] (Bosch Automotive Service Solutions Inc. -> Bosch Automotive Service Solutions LLC)
Task: {8FF7496F-A778-4BE1-9BE9-42F404497D75} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform)
Task: {B3DA9F29-693D-4AFD-A844-E20724ABB14A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C16841B9-234E-4A7C-A6B6-117D2986A75F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {CB7F0DF3-2E0C-46F7-9259-27C47703DE2E} - System32\Tasks\RenaultInventoryDefault => C:\SPXDSClient\Bin\Spx.PackageAgent.exe [113496 2020-06-23] (Bosch Automotive Service Solutions Inc. -> Bosch Automotive Service Solutions LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\RenaultInventoryDefault.job => C:\SPXDSClient\Bin\Spx.PackageAgent.exeJ /Source:TaskScheduler /Package:RenaultInventoryDefault.pak
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Windows\system32\PrxerNsp.dll [87024 2018-08-15] (Initeks, OOO -> )
Winsock: Catalog9 01 C:\Windows\system32\PrxerDrv.dll [98800 2018-08-15] (Initeks, OOO -> Initex)
Winsock: Catalog9 02 C:\Windows\system32\PrxerDrv.dll [98800 2018-08-15] (Initeks, OOO -> Initex)
Winsock: Catalog9 03 C:\Windows\system32\PrxerDrv.dll [98800 2018-08-15] (Initeks, OOO -> Initex)
Winsock: Catalog9 04 C:\Windows\system32\PrxerDrv.dll [98800 2018-08-15] (Initeks, OOO -> Initex)
Winsock: Catalog9 16 C:\Windows\system32\PrxerDrv.dll [98800 2018-08-15] (Initeks, OOO -> Initex)
Winsock: Catalog9 17 C:\Windows\system32\vsocklib.dll [63128 2012-10-24] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9 18 C:\Windows\system32\vsocklib.dll [63128 2012-10-24] (VMware, Inc. -> VMware, Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.1 8.8.8.4
Tcpip\..\Interfaces\{0EB6F08F-B6FA-4E16-8758-BA5C0A5D634C}: [DhcpNameServer] 10.10.10.1 8.8.8.4
Tcpip\..\Interfaces\{BC0867E4-E983-4122-A716-B059277703C5}: [DhcpNameServer] 10.10.10.1 8.8.8.4
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
FireFox:
========
FF DefaultProfile: zscx5ch1.default
FF ProfilePath: C:\Users\Panasonic\AppData\Roaming\Mozilla\Firefox\Profiles\zscx5ch1.default [2020-12-08]
FF Homepage: Mozilla\Firefox\Profiles\zscx5ch1.default -> hxxps://securesearch.org/homepage?hp=2&pId=PF170501&iDate=2020-12-08 06:11:19&iid=23ff7734-aa1b-4547-93a7-558537356f7c&bName=
FF NewTab: Mozilla\Firefox\Profiles\zscx5ch1.default -> hxxps://securesearch.org/homepage?hp=2&pId=PF170501&iDate=2020-12-08 06:11:19&iid=23ff7734-aa1b-4547-93a7-558537356f7c&bName=
FF ProfilePath: C:\Users\Panasonic\AppData\Roaming\Mozilla\Firefox\Profiles\jtev9iil.default-release [2021-03-14]
FF DownloadDir: C:\Download
FF Homepage: Mozilla\Firefox\Profiles\jtev9iil.default-release -> hxxps://www.google.sk/
FF NewTab: Mozilla\Firefox\Profiles\jtev9iil.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=PF170501&iDate=2020-12-08 06:11:19&iid=23ff7734-aa1b-4547-93a7-558537356f7c&bName=
FF Session Restore: Mozilla\Firefox\Profiles\jtev9iil.default-release -> is enabled.
FF Extension: (To Google Translate) - C:\Users\Panasonic\AppData\Roaming\Mozilla\Firefox\Profiles\jtev9iil.default-release\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2020-11-18]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\Panasonic\AppData\Roaming\Mozilla\Firefox\Profiles\jtev9iil.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2021-03-14]
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2020-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2020-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Panasonic\AppData\Roaming\mozilla\plugins\NPGTSPlugin.dll [2020-12-06]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-03-2021
Ran by Panasonic (14-03-2021 17:31:20)
Running from C:\Download
Microsoft Windows 7 Professional Service Pack 1 (X86) (2018-09-11 02:38:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1392960557-302503807-3016685167-500 - Administrator - Disabled)
Guest (S-1-5-21-1392960557-302503807-3016685167-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1392960557-302503807-3016685167-1002 - Limited - Enabled)
Panasonic (S-1-5-21-1392960557-302503807-3016685167-1000 - Administrator - Enabled) => C:\Users\Panasonic
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ABRITES Common Software (HKLM\...\ABRITES_Common_Software_ID_is1) (Version: 4.4 - Abrites Ltd.)
ABRITES Diagnostic Software for interface ID 17137D (HKLM\...\ABRITES Diagnostic Software-ID17137D_is1) (Version: - Abrites Ltd.)
ActiveCGM (HKLM\...\{17729C81-AE00-448C-B6E7-43AF47DD6CA5}) (Version: 150.00.001 - Bosch Automotive Systems)
Adobe Reader XI (11.0.23) - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM\...\Adobe SVG Viewer) (Version: 3.0 - )
Akamai NetSession Interface (HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Battery Recalibration (HKLM\...\{CD5C2205-7BAD-4B87-BF9A-2BAC626B29C8}) (Version: 2.3.1200.0 - Panasonic)
BOSCH Service Solutions XMS Client (HKLM\...\{dc052455-3a73-443e-af17-ce124d904ca4}) (Version: 2.15.10.0 - BOSCH Service Solutions, Inc)
BOSCH Service Solutions XMS DS Client (HKLM\...\{ED7584D8-1CBF-4E6C-8102-5C2275745917}) (Version: 2.15.10.0 - BOSCH Service Solutions, Inc) Hidden
Bosch VCI Manager Launcher (Ford) - 1.0.14.0 (HKLM\...\{6ABA7BEC-E7D4-4D8C-ABDA-A79424B04000}_is1) (Version: 1.0.14.0 - Bosch)
Bosch VCI Software (Ford) - 2.4.73.75 (HKLM\...\{63E9B3FB-4FCD-4A0B-A1ED-198F20B0B249}) (Version: 2.4.73.75 - Bosch)
Bosch VCI Software (Ford-VCM3) [Ford-VCM3] - 9.0.649.34 (HKLM\...\{C697A72A-A77D-4C75-B7F2-531FD6790299}) (Version: 9.0.649.34 - Bosch)
Bosch VCI Software (RNM) [RNM] - 9.0.684.209 (HKLM\...\{B23ED180-C1B0-49F9-B297-333488795A87}) (Version: 9.0.684.209 - Bosch)
Bosch VCMM Software (Ford) - 0.67.127.201 (HKLM\...\{42740F9C-BE48-48F2-8FEE-8B6B0B1C608B}_is1) (Version: 0.67.127.201 - Bosch)
Calibration Update Wizard (HKLM\...\{5A03CEC0-8805-11D4-ADFB-00000EFB3A77}) (Version: 8.30.1 - Toyota Diagnostics)
Camera Utility (HKLM\...\{4D298345-7A92-47F9-BC09-353577EC01EF}) (Version: 3.2.1000.0 - Panasonic)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
CLIP (HKLM\...\{9D143A8C-C66A-4E27-A602-C004F14EBA92}) (Version: 103.216 - Bosch Automotive Services Solutions SARL)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1408 - Disc Soft Ltd)
Data Access Objects (DAO) 3.5 (HKLM\...\Data Access Objects (DAO) 3.5) (Version: - )
DiCE (HKLM\...\{C748AB0E-8428-4FCA-B769-AFFF6BC2B841}) (Version: 6.2.0 - SETEK AB)
DiCE Usb Driver (HKLM\...\{5A31751A-B7EF-413E-816B-FCC44DE76EAF}) (Version: 6.2.1 - SETEK AB)
Display Rotation Tool (HKLM\...\{C6A55E65-1784-4E84-8EAA-DB4386E11ACF}) (Version: 7.5.1200.100 - Panasonic)
FFBH SWDL Application (HKLM\...\{EA57FE12-E09E-4C83-A247-E8091F80BF80}) (Version: 150.00.001 - )
FNCInstaller (HKLM\...\{1427BA23-628A-43FC-BA14-3EBF4A793049}) (Version: 13.06.0000 - Flexera Software, Inc.) Hidden
FORScan verzia 2.3.38.beta (HKLM\...\{63310483-6490-44CD-B351-8F66C2923070}_is1) (Version: 2.3.38.beta - Alexey Savin)
GDS 2 (HKLM\...\{0624CA22-A85C-4A3B-97DD-C73ACB26AFEF}) (Version: 22.1.00900 - MAHLE Test Systems)
GDS 2 Java (HKLM\...\{B9525813-BCCB-4A40-AF67-6F2A808459CA}) (Version: 14.0.00000 - MAHLE Test Systems)
GM MDI Software - 8.3.103.117 (HKLM\...\{A0EB239A-9EE1-4BD4-94DE-F3E9202AC83F}) (Version: 8.3.103.117 - Bosch)
GTS DataSync (HKLM\...\{9DC6894E-CC4B-435C-BC84-DD7FBCA5A298}) (Version: 1.06.000 - DENSO CORPORATION)
Hantek DSO 1008C CZ verze 1.0.10 (HKLM\...\{D6A5D913-A509-4536-9F51-44CCC346164B}_is1) (Version: 1.0.10 - AUTODIAGNOSTIKA KLOC,s.r.o.)
HID OMNIKEY 3x2x PC/SC Driver (HKLM\...\{D6FEE179-022B-4EE2-A320-0BEF32607181}) (Version: 1.2.24.27 - HID Global Corporation)
Hotkey Appendix (HKLM\...\{943622A3-F5E9-464F-A025-90D02F3B8ACE}) (Version: 9.2.1000.0 - Panasonic)
Hotkey Settings (HKLM\...\{DEEFA812-64A6-4083-BB38-87F68B6BA820}) (Version: 2.2.1100.0 - Panasonic)
InControl Touch Map Updater (HKLM\...\InControl Touch Map Updater) (Version: - )
Infineon TPM Professional Package (HKLM\...\{D95BF23B-7E7D-4A72-801F-304C143778F7}) (Version: 3.7.000 - Infineon Technologies AG)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2291 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{1927E640-A2C6-4BA7-8F43-FFD2AE3DFCF3}) (Version: 14.0.2000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Java 8 Update 181 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
JLR VCI (HKLM\...\{59A50AF1-8064-4891-8D2C-FA65D4769C6F}) (Version: 1.0.14 - Jaguar Land Rover Ltd)
JLR VCI Update Application (HKLM\...\{3A772176-07D8-441C-8F62-DE65ADB5307F}) (Version: 1.4.2 - Jaguar Land Rover)
JLR_IDS_Install_Prerequisites (HKLM\...\{194ABBF8-9589-456C-B84C-864B2C17E04B}) (Version: 150.00.001 - JLR)
JLR_IDS_INSTALL_TOOLS (HKLM\...\{4C53ED04-8C03-42CE-BC9F-3FD9655B76F6}) (Version: 160.00.001 - JLR)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Martech BOX II USB Drivers (HKLM\...\MRT_box2) (Version: - )
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{a55ac379-46b0-461a-95b1-fef5c08443f2}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29231 (HKLM\...\{82d583bc-5b6f-4bc6-ada6-9d9b8c0007ba}) (Version: 14.28.29231.0 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM\...\{F4ACA6F6-EA2C-4D74-834E-CE42D08A8EEA}) (Version: 6.6.0.6 - Ericsson AB)
MOXA UPort 1110/1130/1150 Windows Driver Ver1.6 (HKLM\...\MOXA UPort 1110/1130/1150 Windows Driver_is1) (Version: 1.6 - Moxa Inc.)
Mozilla Firefox 86.0 (x86 sk) (HKLM\...\Mozilla Firefox 86.0 (x86 sk)) (Version: 86.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 86.0.0.7723 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Navigation Programs Installer (HKLM\...\{3798C644-E09E-4FB1-A9A9-57BE3739362F}) (Version: 1.0.5 - DENSO Corporation)
NGI_Phase2.5 (HKLM\...\{8D23DFA2-C578-4A65-8E05-9A3900FD9ED9}) (Version: 004.03.002 - JLR)
NGI_Phase3 (HKLM\...\{898B45EA-7697-419A-9DDB-661C568DAAE5}) (Version: 005.10.002 - JLR)
NGI_Phase4 (HKLM\...\{78B187E2-E9D4-4CD1-A8F0-0A69BD618D65}) (Version: 007.01.001 - JLR)
Offboard Diagnostic Information System Service (HKLM\...\1348-4861-0636-4156) (Version: 5.1.6 - VOLKSWAGEN AG)
Omitec GAC Dlls (HKLM\...\{F24AAF76-47C5-4A45-A62C-0031DDCB9637}) (Version: 140.00.030 - JLR)
OpenOffice 4.1.7 (HKLM\...\{0DF1E791-63F3-491F-BE56-3013DEDC03B9}) (Version: 4.17.9800 - Apache Software Foundation)
Panasonic Common Components (HKLM\...\InstallShield_{99733131-7B00-4E5C-8991-113CD61D8E2F}) (Version: 2.0.1200.0 - Panasonic)
Panasonic Notification (HKLM\...\{6388A467-17C2-4B88-BAE0-15C20FE4DAAD}) (Version: 1.3.1100.0 - Panasonic)
PC Information Viewer (HKLM\...\{128E898B-69B7-4E0F-8F89-A95678725DA1}) (Version: 6.6.1100.0 - Panasonic)
PCS Data Viewer (HKLM\...\{1CCB3FC5-FE80-4245-B13B-4516B6C515E1}) (Version: 7.00.02.00 - Toyota Motor Corporation)
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0364FA7}) (Version: 4.2.0 - pdfforge GmbH)
Power Plan Extension Utility (HKLM\...\{BD85BA05-109B-43B3-A2B6-A69162363563}) (Version: 1.4.1100.0 - Panasonic)
Proxifier version 3.42 (HKLM\...\Proxifier_is1) (Version: 3.42 - Initex)
PTSTroubleShooter (HKLM\...\{6380DCEC-15C2-4BBF-99C2-CEFFDCC08147}) (Version: 1.1.1 - Ford Motor Company)
Quick Boot Manager (HKLM\...\{CB78AD02-7B97-4B4A-BDF3-FEA193A384A6}) (Version: 2.0.1200.0 - Panasonic)
R270 (HKLM\...\R270) (Version: - )
RenaultNet Browser Settings (HKLM\...\{C68D9D37-D973-46D6-977D-42BC1A42C9F4}_is1) (Version: 3.0.7 - Renault DI-RCR)
RenOLink version 1.91 (HKLM\...\RenOLink_is1) (Version: 1.91 - )
SDD (HKLM\...\{10712D2E-8EC9-4CA8-A4B7-7DDF77324E36}) (Version: 160.00.001 - JLR)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM\...\{494FDCF0-161F-4DA7-8535-86229FF41FF5}) (Version: 6.1.00 - Silicon Laboratories, Inc.)
Softing D-PDU API V1.20.042 EDIC_D_PDU_API_OS (HKLM\...\Softing D-PDU API V1.20.042 EDIC_D_PDU_API_OS) (Version: 1.20.042 - Softing Automotive Electronics GmbH)
Software Keyboard (HKLM\...\{412B3181-280F-409C-BCC9-C69BE63688AE}) (Version: 7.5.1200.200 - Panasonic)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.22.0 - Synaptics Incorporated)
Tablet Button Manager (HKLM\...\{B766CBAA-5944-4888-A498-7139EE6A01C4}) (Version: 2.3.1000.0 - Panasonic)
Tango verze 1.106 (HKLM\...\{58C6F81E-2619-4CDF-A427-B540563B0A00}_is1) (Version: 1.106 - Scorpio-LK Ltd.)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer (HKLM\...\TeamViewer) (Version: 15.13.6 - TeamViewer)
Techstream Software (HKLM\...\{937CA58A-0212-431C-8F0B-0D8305225476}) (Version: 15.30.026 - DENSO CORPORATION)
TIS2WebProxy (HKLM\...\TIS2WebProxy) (Version: 1.0.69.0 - )
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.51 - Ghisler Software GmbH)
Touch Pad Utility (HKLM\...\{8EA0C5C4-4016-4D26-9562-244B473D7EE1}) (Version: 4.5.1000.0 - Panasonic)
UCDS (HKLM\...\UCDS_is1) (Version: 2.0.7.17 - UCDS)
UHDS AllInOne version 3.7.1.2 (HKLM\...\{2D42861B-B904-491F-B293-119145AAC143}_is1) (Version: 3.7.1.2 - Smok)
UPA-USB Device Programmer-S version 2.2.4 (HKLM\...\{6DC70CCC-0CCF-4913-AF11-FF71F2EF6D87}_is1) (Version: 2.2.4 - ELRASOFT EOOD)
USB Selective Suspend Manager (HKLM\...\{3FA0FED3-C343-41CA-87A1-AD050E5C4996}) (Version: 2.2.1000.100 - Panasonic)
Vag-com Max 2000 (HKLM\...\VagCom) (Version: - )
VAS 6154 Driver Package 1.0.9.54 (HKLM\...\VAS6154 RNDIS USB Driver_is1) (Version: 1.0.9.54 - ACTIA I+ME GmbH)
VAS 6356 ODIS 2018 (HKLM\...\{A066AB6D-B725-4B42-977D-D89726F87822}) (Version: 1.18.0001 - AVL DiTEST GmbH)
VAS 6558 - 6558A ODIS 2017 (HKLM\...\{8E63258B-4A93-49B3-A594-FEEDF3A92119}) (Version: 1.17.0002 - AVL DiTEST GmbH)
VCI Software 1.0.0.10 (HKLM\...\0752-0199-5028-3338) (Version: 1.0.0.10 - Ford Motor Company)
VCMII Driver version 19.04.28 (HKLM\...\VCI Manager(Ford)_is1) (Version: 19.04.28 - VCI Manager(Daimler))
VCP System version 8.4.1 (HKLM\...\VCP System_is1) (Version: 8.4.1 - )
VDASH version 2 (HKLM\...\{AEC32E6B-019A-4199-A8FD-6F4ABE7A261B}}_is1) (Version: 2 - D5T5 s.r.o.)
VMware Workstation (HKLM\...\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}) (Version: 9.0.4 - VMware, Inc.) Hidden
VMware Workstation (HKLM\...\VMware_Workstation) (Version: 9.0.4 - VMware, Inc)
VW-MCD MCD-Kernel 11.2.0 Installation #4 (HKLM\...\Uninstall VW-MCD MCD-Kernel 11.2.0 Installation #4_is1) (Version: 11.2.0 - VW)
VW-MCD ODX-Converter 11.0.0 Installation #4 (HKLM\...\Uninstall VW-MCD ODX-Converter 11.0.0 Installation #4_is1) (Version: 11.0.0 - VW)
VX Manager version 1.8.1.0922 (32-bit) (HKLM\...\VCX_is1) (Version: 1.8.1.0922 - ALLScanner Tech Co.,Ltd)
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (01/18/2013 2.08.28) (HKLM\...\9E24492CE9279512BD465F61DB8523641BB7BBFC) (Version: 01/18/2013 2.08.28 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (06/16/2016 2.12.18) (HKLM\...\783C51C4B495B12324F336A0FBC0E43BB1432C1E) (Version: 06/16/2016 2.12.18 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - Bus/D2XX Driver (09/28/2016 2.12.24) (HKLM\...\C6604D93497788F4FAE41CDD19EB1557B198E457) (Version: 09/28/2016 2.12.24 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (01/18/2013 2.08.28) (HKLM\...\E61B77ECE57113AE1CA028BC7A8AD6C137BD13DD) (Version: 01/18/2013 2.08.28 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (06/16/2016 2.12.18) (HKLM\...\6187EA56E20395E953BE20C0219C4228FF61E104) (Version: 06/16/2016 2.12.18 - FTDI)
Windows Driver Package - FTDI CDM Driver Package - VCP Driver (09/28/2016 2.12.24) (HKLM\...\395CEA3FB03F795AE56529E2F029F3C389B3E194) (Version: 09/28/2016 2.12.24 - FTDI)
Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3134FEF0E1D959EC0CC2E458C94B7057B2AC0CC9) (Version: 10/22/2009 2.06.00 - FTDI)
Windows Driver Package - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\88EB56038379B8B7DCFB4D2448A60F52E064B265) (Version: 10/22/2009 2.06.00 - FTDI)
Windows Driver Package - SETEK AB (DiceUsb) DiCE Hardware (01/31/2011 6.1.7600.16385) (HKLM\...\AE579FDC87F3B0F71E117CEAF5625FA3B917CE77) (Version: 01/31/2011 6.1.7600.16385 - SETEK AB)
Windows Driver Package - UCDS System USBDevice (07/09/2016 03.1) (HKLM\...\33FD40B1B6F500E5D6111E95F72CE57C644FA80C) (Version: 07/09/2016 03.1 - UCDS System)
Wireless Switch Utility (HKLM\...\{FD95D9B1-CD01-4240-BE5F-A2CA21B553BC}) (Version: 4.4.1100.0 - Panasonic)
Wireless WAN Manager (HKLM\...\{4B665341-0391-4612-8DB2-5EDB8A701EC2}) (Version: 6.5.1.2 - Ericsson)
XS D PDU API (XS_D_PDU_API_OS) (HKLM\...\XS_D_PDU_API_OS_is1) (Version: 17.3.0 - ACTIA I+ME GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1392960557-302503807-3016685167-1000_Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}\Shell\Open\Command -> C:\Users\Panasonic\AppData\Local\Akamai\ControlPanel.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
ContextMenuHandlers1: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files\Infineon\Security Platform Software\PSDShExt.dll [2010-02-23] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2020-07-10] (Dev Code-Sign -> pdfforge GmbH) [File not signed] [File is in use]
ContextMenuHandlers2: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files\VMware\VMware Workstation\vmdkShellExt.dll [2014-07-02] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-03-14] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2011-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [APSDShExt] -> {E08BF9C5-191E-4B15-8F67-2622B4DB5580} => C:\Program Files\Infineon\Security Platform Software\PSDShExt.dll [2010-02-23] (Infineon Technologies AG -> Infineon Technologies AG)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-03-14] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.VMnc] => C:\Windows\system32\vmnc.dll [361176 2014-07-01] (VMware, Inc. -> VMware, Inc.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2020-09-26 06:36 - 2010-11-05 22:50 - 000058880 _____ () [File not signed] [File is in use] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2020-09-26 06:36 - 2020-09-26 06:36 - 000169472 _____ () [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\0d288350c26a4fac94c8e1f2ee3e945c\IsdiInterop.ni.dll
2020-09-26 06:15 - 2011-02-22 10:45 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000057344 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\BaseComms.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000573440 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\Connectivity.dll
2021-03-05 12:47 - 2020-08-10 17:27 - 000221184 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\Environment.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000753664 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\ESBResrc.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000090112 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\Feedback.dll
2021-03-05 12:47 - 2020-08-10 17:27 - 000049664 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\IOUtils.dll
2021-03-05 12:47 - 2020-08-10 17:31 - 000086016 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\ISOCodes.dll
2021-03-05 12:47 - 2020-08-10 17:31 - 000053248 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\J2534DeviceSupport.dll
2021-03-05 12:47 - 2020-08-10 17:29 - 000049152 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\LANG_ENG.DLL
2021-03-05 12:47 - 2020-08-10 17:29 - 000241664 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\RuntimeIntegration.dll
2021-03-05 12:47 - 2020-08-10 17:40 - 000970752 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\SoftwareManagerWorker.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000143360 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\Starburst.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000027648 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\SubStream.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000286720 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\TabComm.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000039936 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\TABEVENT.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000065536 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\TestUtil.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000034304 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\UpdateServiceAgent.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000131072 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\VCI Gateway Manager.dll
2021-03-05 12:47 - 2020-08-10 17:28 - 000880640 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\WidgSet.dll
2021-03-05 12:47 - 2020-08-10 17:37 - 000114688 _____ (Bosch Automotive Service Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\XMLTrace.dll
2021-03-05 12:47 - 2014-11-25 09:13 - 000384512 _____ (Bosch Automotive Service Solutions Ltd.) [File not signed] C:\Program Files\JLR\SDD\Runtime\ProtocolAccess32.dll
2021-03-05 12:47 - 2014-11-25 09:13 - 000594944 _____ (Bosch Automotive Service Solutions Ltd.) [File not signed] C:\Program Files\JLR\SDD\Runtime\VCI\ProtocolAccess32.dll
2021-03-05 12:47 - 2014-06-10 09:35 - 000251392 _____ (Bosch Automotive Service Solutions Ltd.) [File not signed] C:\Program Files\JLR\SDD\Runtime\VCI\SWDL32.dll
2021-03-05 12:47 - 2015-03-16 09:30 - 000049152 _____ (Bosch Automotive Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\ProbeTickHandler.dll
2019-03-20 07:39 - 2019-03-20 07:39 - 002011648 _____ (Freescale) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford)\Dynamic Link Libraries\BVTX-GVCI-MFG.dll
2020-01-24 23:19 - 2020-01-24 23:19 - 000247808 _____ (Freescale) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\Dynamic Link Libraries\BVTX-GVCI-MFG.dll
2020-02-28 02:04 - 2020-02-28 02:04 - 000247808 _____ (Freescale) [File not signed] C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\Dynamic Link Libraries\BVTX-GVCI-MFG.dll
2010-02-12 09:06 - 2010-02-12 09:06 - 000664864 _____ (Infineon Technologies AG -> Infineon Technologies AG) [File not signed] C:\Program Files\Infineon\Security Platform Software\ifxtpmcp.dll
2020-09-26 06:36 - 2020-09-26 06:36 - 000014336 _____ (Intel Corp.) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\3956b6af532aee63d53f0c15d071b14b\IAStorCommon.ni.dll
2020-09-26 06:36 - 2010-11-05 22:50 - 000164864 _____ (Intel Corporation) [File not signed] [File is in use] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorUIHelper.dll
2020-09-26 06:36 - 2010-11-05 22:50 - 001109504 _____ (Intel Corporation) [File not signed] [File is in use] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IntelVisualDesign.dll
2020-09-26 06:15 - 2011-02-22 10:41 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2020-09-26 06:36 - 2010-11-05 22:46 - 000275456 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2011-01-05 12:05 - 2011-01-05 12:05 - 000380928 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
2020-09-26 06:36 - 2020-09-26 06:36 - 000219136 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\d8a8e5cc0a7767da45fd16370b1b7ac8\IAStorDataMgr.ni.dll
2020-09-26 06:36 - 2020-09-26 06:36 - 000475648 _____ (Intel Corporation) [File not signed] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\30a8c29a4e9807d25f7148ba4adbe7b9\IAStorUtil.ni.dll
2011-01-05 12:18 - 2011-01-05 12:18 - 001200128 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
2011-01-05 12:10 - 2011-01-05 12:10 - 000487424 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
2011-01-12 06:09 - 2011-01-12 06:09 - 000043520 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\CSY\FrWrkCSY.dll
2011-01-12 06:30 - 2011-01-12 06:30 - 000006656 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\CSY\WiTrCSY.dll
2011-01-05 12:09 - 2011-01-05 12:09 - 000655360 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
2011-01-05 12:10 - 2011-01-05 12:10 - 000630784 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll
2011-01-05 12:10 - 2011-01-05 12:10 - 002285568 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
2011-01-05 12:08 - 2011-01-05 12:08 - 000512000 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
2011-01-05 12:11 - 2011-01-05 12:11 - 000503808 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
2011-01-05 12:11 - 2011-01-05 12:11 - 000200704 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2011-01-12 06:19 - 2011-01-12 06:19 - 000106496 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\LangResources\CSY\PanTrCSY.dll
2011-01-05 12:14 - 2011-01-05 12:14 - 000876544 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
2011-01-05 12:15 - 2011-01-05 12:15 - 000352256 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\PanApi.dll
2011-01-05 12:13 - 2011-01-05 12:13 - 001286144 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
2011-01-05 12:08 - 2011-01-05 12:08 - 000135168 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
2011-01-05 12:09 - 2011-01-05 12:09 - 000139264 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.dll
2011-01-05 12:19 - 2011-01-05 12:19 - 001167360 _____ (Intel(R) Corporation) [File not signed] C:\Windows\System32\IWMSSvc.dll
2019-03-27 22:48 - 2019-03-27 22:48 - 000115200 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2020-09-26 08:57 - 2020-09-26 08:57 - 000225280 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2020-10-02 20:53 - 2020-10-02 20:53 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2020-10-02 20:53 - 2020-10-02 20:53 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL
2020-10-02 20:53 - 2020-10-02 20:53 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2020-12-08 19:10 - 2020-12-08 19:10 - 000098816 _____ (pdfforge GmbH) [File not signed] C:\Windows\System32\pdfcmon.dll
2021-03-05 12:47 - 2020-08-10 17:26 - 000027136 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\AppCard.dll
2021-03-05 12:47 - 2007-07-04 13:24 - 000261120 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\Codelib.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000147456 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\CodeServ.dll
2021-03-05 12:47 - 2020-08-10 17:26 - 000102400 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\CodeServeIF.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000024064 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\GRStd.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000118784 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\GRSystem.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000032256 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\GRWin32.dll
2021-03-05 12:47 - 2020-08-10 17:26 - 000023040 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\ICLib.dll
2021-03-05 12:47 - 2020-08-10 17:26 - 000421888 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\RemoteCodeServ.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000155648 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\RXMLRegistry.dll
2021-03-05 12:47 - 2020-08-10 17:25 - 000090112 _____ (Teradyne Diagnostic Solutions Ltd) [File not signed] C:\Program Files\JLR\SDD\Runtime\XMLRegistry.dll
2020-12-26 00:22 - 2008-07-03 10:56 - 000356437 _____ (The Firebird Project) [File not signed] C:\APP\firebird\bin\fbclient.dll
2011-01-05 11:53 - 2011-01-05 11:53 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000102400 _____ (TODO: <Company name>) [File not signed] C:\Program Files\JLR\SDD\Runtime\PIDHelp.dll
2021-03-05 12:47 - 2020-08-10 17:32 - 000055296 _____ (TODO: <Company name>) [File not signed] C:\Program Files\JLR\SDD\Runtime\SDD_PC_Config.dll
2021-03-05 12:47 - 2020-08-10 17:37 - 000061440 _____ (TODO: <Company name>) [File not signed] C:\Program Files\JLR\SDD\Runtime\XMLTraceListener.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\ntuser.dat:alt [764]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\atashost => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Version 8) (Whitelisted) ==========
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=PF170501&iDate=2020-12-08 06:11:19&iid=23ff7734-aa1b-4547-93a7-558537356f7c&bName=
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-xl/?ocid=iehp
BHO: No Name -> {1E1B2879-88FF-11D2-8D96-D7ACAC95951F} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2020-12-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Psa DDC SingleSignOn BHO -> {CFCCB454-80CF-481f-B50A-29112EBB0F85} -> C:\APP\ddc\bin\DdcSingleSignOnBHOu.dll [2020-09-30] () [File not signed]
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2020-12-06] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKU\S-1-5-21-1392960557-302503807-3016685167-1000 -> &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\explorerframe.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1392960557-302503807-3016685167-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\globaliris.com -> hxxps://cpi.globaliris.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\groupe-lacour.fr -> hxxps://*.groupe-lacour.fr
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\groupe-lacour.fr -> hxxp://*.groupe-lacour.fr
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\grouperci.com -> hxxp://*.grouperci.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\grouperci.com -> hxxps://*.grouperci.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\hsbc.com -> hxxps://www.cpi.hsbc.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\jlrext.com -> hxxps://connect.jlrext.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\jlrint.com -> hxxp://topix.jaguar.jlrint.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\jlrint.com -> hxxps://topix.jaguar.jlrint.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\localhost -> hxxp://localhost
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\naviextras.com -> hxxp://naviextras.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\naviextras.com -> hxxps://naviextras.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\renault.com -> hxxps://*.renault.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\renault.com -> hxxp://*.renault.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\renault.fr -> hxxps://*.renault.fr
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\renault.fr -> hxxp://*.renault.fr
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\salesforce.com -> hxxps://*.salesforce.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\salesforce.com -> hxxp://*.salesforce.com
IE trusted site: HKU\S-1-5-21-1392960557-302503807-3016685167-1000\...\webcompanion.com -> hxxp://webcompanion.com
There are 1 more sites.
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2009-06-10 22:39 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\JLR\SDD\Runtime;C:\Program Files\Internet Explorer
HKU\S-1-5-21-1392960557-302503807-3016685167-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Panasonic\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.10.10.1 - 8.8.8.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{8FB8BD8B-0A65-4E13-9F40-CA0A7FDAA454}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B04A3EB0-5349-4DA3-B06D-7D6CD2CDA38E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{644521DC-1976-496F-9CFF-AEA7AEE1ABDB}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BE32F552-C4E8-4A93-BC79-C2A8775C95DA}F:\dtlite4481-0348.exe] => (Allow) F:\dtlite4481-0348.exe => No File
FirewallRules: [UDP Query User{AB1F00BC-B0FE-4CDD-9064-A80529E0659B}F:\dtlite4481-0348.exe] => (Allow) F:\dtlite4481-0348.exe => No File
FirewallRules: [TCP Query User{D81CF86F-A2DC-449B-9B78-31232DF829FF}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{37546E71-F4C2-4061-B563-6EFF03CCCF56}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{3B84DB64-9921-4E3F-A9F4-58D9D676A087}C:\windows\system32\wisptis.exe] => (Allow) C:\windows\system32\wisptis.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{06F6021A-D962-47BA-AF83-6215296BA345}C:\windows\system32\wisptis.exe] => (Allow) C:\windows\system32\wisptis.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{67FCE5E3-EE2E-4031-AA4A-9898EB4B3AAA}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{BDA69A47-B249-4EEB-9CE5-6AD08174FBB7}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{93AECAC0-40E5-4A08-93E5-A8644E611223}] => (Allow) C:\Program Files\I+ME Actia GmbH\VAS6154 Driver\VAS6154App.exe (Actia I+ME GmbH -> ACTIA I+ME GmbH)
FirewallRules: [TCP Query User{C049C311-8545-437E-B040-D4A000BC29A0}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{D29DC688-2B6D-4804-860F-E2A35D452E4A}C:\windows\system32\taskhost.exe] => (Allow) C:\windows\system32\taskhost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1838B4CD-3A58-40BA-84C0-BBED7F790CD7}C:\clip_x91\lib\application\cliplauncher_x91.exe] => (Allow) C:\clip_x91\lib\application\cliplauncher_x91.exe () [File not signed]
FirewallRules: [UDP Query User{9ED98B81-8297-48F8-96D5-346C49F6EFD7}C:\clip_x91\lib\application\cliplauncher_x91.exe] => (Allow) C:\clip_x91\lib\application\cliplauncher_x91.exe () [File not signed]
FirewallRules: [TCP Query User{2E3B9B1A-EB51-4296-831E-334CCE1DF321}C:\program files\common files\sagem sa\dgipsvr.exe] => (Block) C:\program files\common files\sagem sa\dgipsvr.exe () [File not signed]
FirewallRules: [UDP Query User{EA67BFB4-DAD9-43E6-A3DE-1C44FB28F823}C:\program files\common files\sagem sa\dgipsvr.exe] => (Block) C:\program files\common files\sagem sa\dgipsvr.exe () [File not signed]
FirewallRules: [{6C270380-2A2D-4822-BC06-C1CF80207E31}] => (Allow) C:\Program Files\GM MDI Software\GM MDI Identification Service\GM_MDI_Ident.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{CB349D57-03D0-42D1-8FE1-1612DBEDDA2E}] => (Allow) C:\Program Files\GM MDI Software\GM MDI Manager\GM_MDI_Manager.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{76A8FE8C-58F9-4C68-AED5-DD4352E57D6C}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\Products\RNM-VI\DoIP\PDUAPI_Bosch.dll (Bosch Automotive Service Solutions Ltd -> Bosch UK Ltd.)
FirewallRules: [{426AE5BF-11DA-42E0-BFDC-756C6EE5B6C4}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\VCI Identification Service\vci-ident.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{F749206F-31C5-4D7B-A8D1-60D501130C15}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (RNM)\VCI Manager\vci-manager.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{0C35A5F4-C506-4C39-8B52-DA5749DC8E03}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6EBF34ED-B4BE-4FF3-B591-E84142B13BA1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6E979E45-C1A6-4857-AC4A-49FA373C0717}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2E38BF9A-2EC5-4FD6-9D27-80182E13A8CB}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FF57FB0C-F81B-45AA-AE83-F08976BC497C}] => (Allow) C:\Program Files\GDS 2\bin\GDS2Launcher.exe () [File not signed]
FirewallRules: [{F6CD4500-390D-44A3-ADFC-178E3030E442}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{98D6EFC8-A836-4B82-852A-A52776F6A520}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{F2DF030A-7EA8-421D-99EE-D2688DB739D5}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{6EC0227B-9E23-4F3F-A8BD-8F6906D726DC}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{FD06FE18-0BD4-44FB-BD68-87DBB1D9B5A1}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{1C2A9385-7A36-4873-9E33-16FF23235325}] => (Block) C:\Program Files\Toyota Diagnostics\Techstream\Bin\GTSAPI_TGD.exe () [File not signed]
FirewallRules: [{846C680A-9741-4D59-9C7E-AB83DEBB5BBA}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford)\VCI Identification Service\vci-ident.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{901DC060-A1C2-4F24-9A54-57C99D7B627D}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford)\VCI Manager\vci-manager.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{205752B5-EAED-496C-A539-96F3AC942D43}] => (Allow) C:\Program Files\Bosch\VCI Manager Launcher (Ford)\vci-manager-launcher.exe (Robert Bosch) [File not signed]
FirewallRules: [{ADAD84B8-3D50-4510-AD05-D4CA1C8CDAD6}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\Products\VCM3\DoIP\PDUAPI_Bosch.dll (Bosch Automotive Service Solutions Ltd -> Bosch UK Ltd.)
FirewallRules: [{02086510-0393-42DE-A318-D724F00A6582}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\VCI Identification Service\vci-ident.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{8D3F9538-AEAB-412A-99E2-1EF081C1E14B}] => (Allow) C:\Program Files\Bosch\VTX-VCI\VCI Software (Ford-VCM3)\VCI Manager\vci-manager.exe (Vetronix Corp.) [File not signed]
FirewallRules: [{F5DD3503-651B-495D-AFB9-AC7B58EA1AF7}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2835D22E-2285-4581-963D-9FF176ACC372}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7CBE93CA-F063-4753-A7C0-3191D341C83B}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{88318D16-077F-425F-924A-9787864BC871}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1FD18BE8-15A5-4C52-BDE2-90207D5658DA}] => (Allow) LPort=135
FirewallRules: [{6E338531-E87F-4D3E-9CDC-6A535F529DD4}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{7390FCD4-17C2-4EEB-AAB1-1B6D95E553CF}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{DEDA80CF-3423-4B9B-B512-7C89A002EA28}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [{C33355A3-4AF1-4028-992C-F161A54CB280}] => (Allow) C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [TCP Query User{897888E8-451F-40E5-B702-C6CBA3F12AEC}D:\tan code calculator\tanlogfix.exe] => (Block) D:\tan code calculator\tanlogfix.exe => No File
FirewallRules: [UDP Query User{035B8931-2EC7-414E-BB65-8D73BA36EB74}D:\tan code calculator\tanlogfix.exe] => (Block) D:\tan code calculator\tanlogfix.exe => No File
FirewallRules: [TCP Query User{C1515586-141B-4D58-8A49-CE49B329F676}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{2F957828-71C0-4BD0-B263-EFF3C01DF381}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{3B1B1C20-DBB7-425C-88FF-8BA32B13E986}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{347E4562-C337-4D71-97DA-87F44129FA05}C:\program files\common files\microsoft shared\ink\tabtip.exe] => (Block) C:\program files\common files\microsoft shared\ink\tabtip.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{F5AB6C19-8828-4409-B5F9-A16E5061CF9F}C:\users\panasonic\appdata\local\vdash\vdash2\frontend.exe] => (Allow) C:\users\panasonic\appdata\local\vdash\vdash2\frontend.exe (D5T5 s.r.o. -> D5T5 s.r.o.)
FirewallRules: [UDP Query User{27D49B83-DFD9-4B2D-8CB0-94B2BE4AF7C5}C:\users\panasonic\appdata\local\vdash\vdash2\frontend.exe] => (Allow) C:\users\panasonic\appdata\local\vdash\vdash2\frontend.exe (D5T5 s.r.o. -> D5T5 s.r.o.)
FirewallRules: [{F37760A1-4FC4-4E1D-9384-484FE68B6FFB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation - Mobile Wireless Group -> )
FirewallRules: [{9ED7B091-5768-4015-9B10-3C4CF3FE494A}] => (Allow) C:\Program Files\I+ME Actia GmbH\VAS6154 Driver\VAS6154App.exe (Actia I+ME GmbH -> ACTIA I+ME GmbH)
FirewallRules: [{326FE665-7C08-434F-9C18-F1CAFF7CA55B}] => (Allow) C:\ODIS-DIAG-MODULES\PDUAPI\VEN-IME\PduProtocolLayerJ2534.exe (ACTIA I+ME GmbH) [File not signed]
FirewallRules: [{1402A864-0998-47B7-90BB-2B15D5F85B6C}] => (Allow) C:\ODIS-DIAG-MODULES\PDUAPI\VEN-IME\PduProtocolLayerVector.exe (ACTIA I+ME GmbH) [File not signed]
FirewallRules: [{D25F4BBD-F6EE-4EE4-8AA6-DBA73CB21BCB}] => (Allow) C:\Users\Panasonic\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
FirewallRules: [{C40F5A35-9B67-4C19-931B-7E4B7A5BB5F4}] => (Allow) C:\Program Files\JLR\SDD\Runtime\XMLRegistryD.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{D6ED0A34-387F-455E-873D-1DAD8D649037}] => (Allow) C:\Program Files\JLR\SDD\Runtime\CodeServeD.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{87DFCFC0-3F36-4553-974C-A1316A329D57}] => (Allow) C:\Program Files\JLR\SDD\Runtime\TDSNetConfig.exe (Bosch Automotive Solutions Ltd) [File not signed]
FirewallRules: [{EB66263B-4653-49CF-B107-37BC23D5EF66}] => (Allow) C:\Program Files\JLR\SDD\Runtime\VCI\ProtocolAccessServer.exe (Bosch Automotive Service Solutions Ltd.) [File not signed]
FirewallRules: [{A3E659FB-FD27-4D4E-88D0-A4D3398295F8}] => (Allow) C:\Program Files\JLR\SDD\SDD\JRE\jre1.6.0_26\bin\java.exe
FirewallRules: [{5F810803-32FA-45F1-9BAD-3093D29D9618}] => (Allow) C:\Program Files\JLR\IDS\Runtime\VCI\ProtocolAccessServer.exe (Bosch Automotive Service Solutions Ltd.) [File not signed]
FirewallRules: [{20E40A75-9240-4ED6-B159-D8CE7E35D28E}] => (Allow) C:\Program Files\JLR\IDS\SDD\JRE\jre1.6.0_26\bin\java.exe
FirewallRules: [{AD40F546-04FE-4E44-93C9-7E2A2394AE91}] => (Allow) C:\Program Files\JLR\SDD\Runtime\SDDManager.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{8152D815-7B2B-4DBC-AD5F-B0B2D1D4FFB9}] => (Allow) C:\Program Files\JLR\SDD\Runtime\SDDManagerController.exe (Bosch) [File not signed]
FirewallRules: [{1E5F9EC0-5044-4C32-8700-89D18888CE86}] => (Allow) C:\Program Files\JLR\SDD\Runtime\EngineeringFeedback.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{38CE1CA1-28F1-4906-A376-5720CCA1984C}] => (Allow) C:\Program Files\JLR\SDD\Runtime\SoftwareManager.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{DB1DAE4E-A193-4D7C-A211-321A00B72279}] => (Allow) C:\Program Files\JLR\SDD\Runtime\NetworkActivation.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{801BAAAF-A73F-4437-A032-B5BC6611AD6E}] => (Allow) C:\Program Files\JLR\SDD\Runtime\SWUpdWizard.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{CF30CB30-5954-4EC3-913E-DEFEC4895CF0}] => (Allow) C:\Program Files\JLR\SDD\Runtime\syspage.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{E9C60AB2-63B3-41FB-A619-AA993656B0FD}] => (Allow) C:\Program Files\JLR\IDS\Runtime\syspage.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{AEF4EF97-7A60-4A63-A19D-792475EDF409}] => (Allow) C:\Program Files\JLR\SDD\Runtime\Tabman.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{A32EB4A4-0D84-4B89-AB69-E3E41376D318}] => (Allow) C:\Program Files\JLR\IDS\Runtime\Tabman.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{EBA6BD1F-8215-4BFD-81B5-6F5087291643}] => (Allow) C:\Program Files\JLR\SDD\Runtime\Testman.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{ED6D1567-B01E-4E3A-91C2-1F306840D1D1}] => (Allow) C:\Program Files\JLR\IDS\Runtime\Testman.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{175C1501-6222-468C-81AB-364C68D46539}] => (Allow) C:\Program Files\JLR\SDD\Runtime\CAN Link Monitor.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{3041E148-6F24-4B5B-AF7D-3A8D86DC17AD}] => (Allow) C:\Program Files\JLR\IDS\Runtime\CAN Link Monitor.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{4972687C-1960-4255-988D-F68E57069724}] => (Allow) C:\Program Files\JLR\SDD\Runtime\SystemDiagnostic.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{6F3318A3-EBD4-4B2E-AF2F-B854C2C87675}] => (Allow) C:\Program Files\JLR\SDD\Runtime\VMM.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{93C19003-CE58-474C-AB3B-FACC38C01CCD}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C402.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{8537F9A3-BCD7-472C-892C-E816F37F5EE1}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C403.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{C219019D-645E-406E-A4EF-99BD319D9E19}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C404.exe => No File
FirewallRules: [{B3BA5A70-916B-4A76-A22D-52A6B5CBA905}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C407.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{F9F957EE-806B-4CA5-9A9B-28887E1DC58C}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C412.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{F9984156-B5E7-4D26-AB43-A064CBAB5CCA}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C413.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{837A9BE1-F70E-4323-882F-41CA39146476}] => (Allow) C:\Program Files\JLR\SDD\Runtime\LVPCheck.exe (Teradyne Diagnostic Solutions Ltd) [File not signed]
FirewallRules: [{8BB800A3-0EB1-4AC9-AAAC-08D131EFEDD4}] => (Allow) C:\Program Files\JLR\SDD\Runtime\PtchApply.exe (Bosch Automotive Service Solutions Ltd) [File not signed]
FirewallRules: [{D1F0E6EA-27A9-4CEB-9D5D-08A007FF7D3F}] => (Allow) C:\Program Files\JLR\SDD\Runtime\RTDB.exe => No File
FirewallRules: [{3C5838CA-DCFD-4960-9B77-ECA1930280D3}] => (Allow) C:\Program Files\JLR\SDD\Runtime\VCL_PC.exe => No File
==================== Restore Points =========================
14-03-2021 16:44:14 Installed NGI_Phase4
==================== Faulty Device Manager Devices ============
Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: PCI Data Acquisition and Signal Processing Controller
Description: PCI Data Acquisition and Signal Processing Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (03/14/2021 05:23:05 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:23:05 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:16:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (03/14/2021 05:08:31 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:08:31 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:04:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:04:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.
Error: (03/14/2021 05:01:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (03/14/2021 05:17:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
Error: (03/14/2021 05:16:19 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba VMware Workstation Server bola ukončená s chybou služby %%-1.
Error: (03/14/2021 05:16:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
cdrom
Error: (03/14/2021 05:16:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Intel(R) Dynamic Power Performance Model Service Application zlyhalo kvôli nasledujúcej chybe:
Prístup je odmietnutý.
Error: (03/14/2021 05:02:30 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
Error: (03/14/2021 05:01:46 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba VMware Workstation Server bola ukončená s chybou služby %%-1.
Error: (03/14/2021 05:01:36 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
cdrom
Error: (03/14/2021 05:01:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Intel(R) Dynamic Power Performance Model Service Application zlyhalo kvôli nasledujúcej chybe:
Prístup je odmietnutý.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V2.00L11 M91 06/16/2011
Motherboard: Panasonic Corporation CFC1-2
Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz
Percentage of memory in use: 93%
Total physical RAM: 3498.29 MB
Available physical RAM: 238.52 MB
Total Virtual: 6994.87 MB
Available Virtual: 3597.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:489.05 GB) (Free:289.54 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Removable) (Total:57.96 GB) (Free:2.18 GB) exFAT
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 489 GB) (Disk ID: 4ACD67ED)
Partition 1: (Active) - (Size=489 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o kontrolu LOGu - vytazeny CPU
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Raptor181
- Návštěvník
- Příspěvky: 20
- Registrován: 25 led 2004 17:06
- Bydliště: West Slovakia
- Kontaktovat uživatele:
Prosim o kontrolu LOGu - vytazeny CPU
RF System
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu LOGu - vytazeny CPU
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Raptor181
- Návštěvník
- Příspěvky: 20
- Registrován: 25 led 2004 17:06
- Bydliště: West Slovakia
- Kontaktovat uživatele:
Re: Prosim o kontrolu LOGu - vytazeny CPU
Dakujem za rychlu odpoved.
Prikladam novy log zo skenovania:
# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-14-2021
# Duration: 00:00:00
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1696 octets] - [14/03/2021 17:47:24]
AdwCleaner[C00].txt - [1813 octets] - [14/03/2021 17:47:51]
AdwCleaner[S01].txt - [1534 octets] - [14/03/2021 18:01:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Prikladam novy log zo skenovania:
# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-14-2021
# Duration: 00:00:00
# OS: Windows 7 Professional
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1696 octets] - [14/03/2021 17:47:24]
AdwCleaner[C00].txt - [1813 octets] - [14/03/2021 17:47:51]
AdwCleaner[S01].txt - [1534 octets] - [14/03/2021 18:01:12]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
RF System
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o kontrolu LOGu - vytazeny CPU
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Download jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1392960557-302503807-3016685167-1000_Classes\CLSID\{305CA226-D286-468e-B848-2B2E8E697B74}\Shell\Open\Command -> C:\Users\Panasonic\AppData\Local\Akamai\ControlPanel.exe (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
AlternateDataStreams: C:\ProgramData\ntuser.dat:alt [764]
BHO: No Name -> {1E1B2879-88FF-11D2-8D96-D7ACAC95951F} -> No File
Toolbar: HKU\S-1-5-21-1392960557-302503807-3016685167-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FirewallRules: [TCP Query User{BE32F552-C4E8-4A93-BC79-C2A8775C95DA}F:\dtlite4481-0348.exe] => (Allow) F:\dtlite4481-0348.exe => No File
FirewallRules: [UDP Query User{AB1F00BC-B0FE-4CDD-9064-A80529E0659B}F:\dtlite4481-0348.exe] => (Allow) F:\dtlite4481-0348.exe => No File
FirewallRules: [TCP Query User{897888E8-451F-40E5-B702-C6CBA3F12AEC}D:\tan code calculator\tanlogfix.exe] => (Block) D:\tan code calculator\tanlogfix.exe => No File
FirewallRules: [UDP Query User{035B8931-2EC7-414E-BB65-8D73BA36EB74}D:\tan code calculator\tanlogfix.exe] => (Block) D:\tan code calculator\tanlogfix.exe => No File
FirewallRules: [{C219019D-645E-406E-A4EF-99BD319D9E19}] => (Allow) C:\Program Files\JLR\SDD\Runtime\probes\C404.exe => No File
FirewallRules: [{D1F0E6EA-27A9-4CEB-9D5D-08A007FF7D3F}] => (Allow) C:\Program Files\JLR\SDD\Runtime\RTDB.exe => No File
FirewallRules: [{3C5838CA-DCFD-4960-9B77-ECA1930280D3}] => (Allow) C:\Program Files\JLR\SDD\Runtime\VCL_PC.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?