悪代官の伏魔殿掲示板 9309683

突然発生しました。感染でしょうか？

1：hotty14 :
2016/04/27 (Wed) 06:30:01: お世話になります。
HP閲覧するためGoogle Chromeを立ち上げたところ、本日突然、広告ポップアップなどが出てくるようになりました。
前日までは問題なく、問題のあるようなサイトには行っておらず、今までの履歴にあるサイトにしか行っていません。また、訳の分からないポップアップなどもクリックしたこともありません。

[http://www.avispa.co.jp/]を読み込み、[http://avispaf.jugem.jp/?eid=1225]に移動する時に異常が発生したようです。この際アドレスバーに、[tradeadexchange]の文字列を確認、勝手に移動しようとしたようです。

以上、全く突然のことで困惑しております。下に手順にあるログを添付いたしますので、参照の上お知恵をお借りできればと思いますので、よろしくお願い致します。

・HJTログ/

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 5:48:22, on 2016/04/27
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)

Boot mode: Normal

Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\SysWOW64\HsMgr.exe
C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaConverter.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaRenderer.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
B:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\MSI\Live Update\Live Update.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\Real\RealPlayer\RealPlay.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Shunichi Hotta\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Google Japanese Input Prelauncher] "C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [5KPlayer.exe] "B:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe" -auto
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [Sound Blaster Cinema 2] "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [GammingApp] C:\Program Files (x86)\MSI\Gaming APP\SGamingApp.exe --min
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [AudialsNotifier] B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
O4 - HKCU\..\Run: [Steam] "B:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files (x86)\Real\RealPlayer\update\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
O4 - Global Startup: Killer Network Manager.lnk = C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
O4 - Global Startup: RealTimes.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{c296f54a-7ae7-4853-b8a8-8e2f756aa2f1}: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CCS\Services\Tcpip\..\{f9de48a6-3c6d-4d72-97fb-e0f372fa62a7}: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: McAfee Application Installer Cleanup (0120401461337735) (0120401461337735mcinstcleanup) - Unknown owner - y:\temp\sys\012040~1.EXE (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetoothスイッチャーサービス (BtSwitcherService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
O23 - Service: CSR Bluetoothオーディオサービス (CSRBtAudioService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
O23 - Service: CSR OBEX Service (CsrBtOBEXService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
O23 - Service: CSR Bluetooth サービス (CsrBtService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EaseUS Agentサービス (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Disk Master Agent (FrAgent) - QILING Tech Co., Ltd. - B:\Program Files\QILING\Disk Master\Agent.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - B:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe,-100 (GoogleIMEJaCacheService) - Google Inc. - C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe
O23 - Service: マカフィーパーソナルファイアウォールサービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI Command Center Clock Service (MSIClock_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSI Command Center Comm Service (MSICOMM_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
O23 - Service: MSI Command Center CPU Service (MSICPU_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
O23 - Service: MSI Command Center control Service (MSICTL_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSI Command Center DDR Service (MSIDDR_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSI Command Center SMBus Service (MSISMB_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
O23 - Service: MSI Command Center SuperIO Service (MSISuperIO_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
O23 - Service: MSI_ECOSERVICE - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
O23 - Service: MSI_FastBoot - MSI - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: RealTimes Desktop Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\WINDOWS\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service2 - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files (x86)\WeatherTool\2.0.0.10998\WeatherService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe

--
End of file - 20260 bytes

・CCログ/

3D Builder Microsoft Corporation 2016/02/12 10.10.38.0
3DMark Futuremark 2016/03/10 63.0 MB 1.5.915.0
5KPlayer 3.6 DearMob, Inc. 2016/03/12 87.1 MB
7-Zip 9.20 (x64 edition) Igor Pavlov 2016/04/11 2.48 MB 9.20.00.0
ACPI Driver Installer Intel Corporation 2016/04/12 10.2 MB 2.1
Adobe Acrobat Reader DC - Japanese Adobe Systems Incorporated 2016/03/11 432 MB 15.010.20060
Adobe AIR Adobe Systems Incorporated 2016/03/25 24.3 MB 21.0.0.176
Adobe Shockwave Player 12.2 Adobe Systems, Inc. 2016/03/25 37.4 MB 12.2.4.194
ASUS Xonar Essence STX Audio ASUSTeK Computer Inc. 2016/02/12 42.2 MB
Bonjour Apple Inc. 2016/03/04 4.00 MB 3.0.0.10
Candy Crush Soda Saga king.com 2016/04/22 1.64.600.0
Canon IJ Network Scanner Selector EX 2016/04/01 1.79 MB
Canon IJ Network Tool Canon Inc. 2016/03/26 3.1.1
Canon Inkjet Print Utility Canon Inc. 2016/03/26 2.5.0.6
Canon MG6200 series MP Drivers Canon Inc. 2016/03/26
CCleaner Piriform 2016/04/27 5.17
CPUID CPU-Z 1.76 2016/04/23 3.92 MB
CPUID HWMonitor 1.28 2016/04/10 2.90 MB
CPUID PerfMonitor 2.04 CPUID, Inc. 2016/04/04 1.62 MB 2.04
CrystalDiskInfo 6.8.1 Crystal Dew World 2016/04/17 10.0 MB 6.8.1
CrystalDiskMark 5.1.2 Crystal Dew World 2016/02/14 6.93 MB 5.1.2
CSR Harmony Wireless Software Stack CSR Plc. 2016/04/14 344 MB 2.1.63.0
Disk Master Free version 3.6 QILING Tech Co., Ltd. 2016/04/12 33.7 MB 3.6
DNS Unlocker version 1.4 www.dnsunlocker.com 2015/10/15 2.91 MB 1.4
EaseUS Partition Master 10.8 EaseUS 2016/02/14 206 MB
EaseUS Todo Backup Free 9.0 CHENGDU YIWO Tech Development Co., Ltd 2016/02/14 9.0
FINAL FANTASY TYPE-0 HD SQUARE ENIX 2016/04/19 24.8 GB
foobar2000 v1.3.9 Peter Pawlowski 2016/03/10 10.0 MB 1.3.9
Freemake Video Converter バージョン 4.1.9 Ellora Assets Corporation 2016/04/16 47.8 MB 4.1.9
Freemake Video Downloader Ellora Assets Corporation 2016/04/16 47.8 MB 3.8.0
Futuremark SystemInfo Futuremark 2016/04/17 11.1 MB 4.45.590.0
Google Chrome Google Inc. 2016/04/04 476 MB 50.0.2661.87
Google Drive Google, Inc. 2016/04/13 68.6 MB 1.29.1862.0513
Google Toolbar for Internet Explorer Google Inc. 2016/02/23 15.8 MB 7.5.7210.1528
Google 日本語入力 Google Inc. 2016/02/13 51.8 MB 2.17.2400.0
Groove ミュージック Microsoft Corporation 2016/02/12 3.6.15131.0
HWiNFO64 Version 5.22 Martin Mal勛 - REALiX 2016/03/24 3.26 MB 5.22
Intel(R) Management Engine Components Intel Corporation 2016/04/11 11.0.0.1158
Intel® Security Assist Intel Corporation 2016/04/11 5.70 MB 1.0.0.532
Intelｮ Watchdog Timer Driver (Intelｮ WDT) Intel Corporation 2016/04/12 10.0 MB
Intelｮ Watchdog Timer Driver (Intelｮ WDT) Intel Corporation 2016/04/11
Killer Performance Suite Rivet Networks 2016/04/11 1.1.57.1125
Leawo Blu-ray Player version 1.9.2.3 leawo Software 2016/03/11 97.4 MB 1.9.2.3
MakeMKV v1.9.9 GuinpinSoft inc 2016/03/12 v1.9.9
marvell 91xx driver Marvell 2016/03/03 1.0.0.1036
McAfee WebAdvisor McAfee, Inc. 2016/04/23 29.9 MB 4.0.189
Media Go Sony 2016/02/12 231 MB 3.0.403
Media Go Network Downloader Sony 2016/02/12 2.64 MB 1.6.01.0
Media Go Video Playback Engine 2.20.102.05220 Sony 2016/02/12 45.2 MB 2.20.102.05220
MemTweakIt ASUSTeK Computer Inc. 2016/04/12 6.69 MB 2.02.22
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 2016/03/12 2.47 MB 4.0.40804.0
Microsoft Silverlight Microsoft Corporation 2016/03/09 101 MB 5.1.41212.0
Microsoft Solitaire Collection Microsoft Studios 2016/04/21 3.8.4181.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/02/12 9.69 MB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2016/04/07 3.76 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2016/04/09 1.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/02/11 830 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/02/11 960 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 18.0 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 4.76 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2016/04/20 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Corporation 2016/04/17 11.0.60610.1
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2016/04/14 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2016/04/17 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/04/17 17.1 MB 12.0.30501.0
Microsoft Wi-Fi Microsoft Corporation 2016/03/29 1.1603.1.0
Mozilla Maintenance Service Mozilla 2016/02/11 234 KB 38.5.1
Mozilla Thunderbird 38.5.1 (x86 ja) Mozilla 2016/02/23 79.6 MB 38.5.1
MSI Afterburner 4.1.1 MSI Co., LTD 2016/02/11 4.1.1
MSI Command Center MSI 2016/04/11 75.9 MB 1.0.1.11
MSI ECO Center MSI 2016/04/11 14.0 MB 1.0.0.35
MSI Fast Boot MSI 2016/04/11 6.32 MB 1.0.1.8
MSI Gaming APP MSI 2016/04/11 66.7 MB 5.0.0.29
MSI Kombustor 3.5.2.1 (64-bit) MSI Co., LTD 2016/02/14 52.7 MB
MSI Live Update 6 MSI 2016/04/01 31.1 MB 6.1.014
MSI Super Charger MSI 2016/04/11 7.48 MB 1.3.0.02
MSI(R) Intel(R) Extreme Tuning Utility Intel Corporation 2016/04/12 102 MB 6.0.2.101
MSN トラベル Microsoft Corporation 2016/02/12 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/02/12 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/02/11 3.0.4.336
NVIDIA 3D Vision コントローラードライバー 364.44 NVIDIA Corporation 2016/03/31 8.53 MB 364.44
NVIDIA 3D Vision ドライバー 364.72 NVIDIA Corporation 2016/04/13 30.6 MB 364.72
NVIDIA GeForce Experience 2.11.2.55 NVIDIA Corporation 2016/04/13 44.0 MB 2.11.2.55
NVIDIA PhysX システムソフトウェア 9.15.0428 NVIDIA Corporation 2016/02/10 348 MB 9.15.0428
NVIDIA グラフィックスドライバー 364.72 NVIDIA Corporation 2016/04/13 599 MB 364.72
OCCT 4.4.1 Ocbase.com 2016/03/31 4.4.1
oki_clock 2016/02/14
OneNote Microsoft Corporation 2016/04/03 17.6769.57631.0
OpenAL 2016/02/12
Opti Drive Control 1.70 Erik Deppe 2016/04/06 4.34 MB
PCMark 8 Futuremark 2016/04/19 7.54 GB 2.7.613.0
PCMark Vantage Futuremark 2016/04/07 784 MB 1.2.0.0
PDF-Viewer Tracker Software Products Ltd 2016/03/26 86.1 MB 2.5.316.1
People Microsoft Corporation 2016/04/05 10.0.10811.0
RAR Opener Tiny Opener 2016/04/26 1.2.7.0
RealPlayer (RealTimes) RealNetworks 2016/03/25 183 MB 18.1.3
Realtek Ethernet Controller Driver Realtek 2016/03/20 3.35 MB 8.32.508.2014
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/04/11 731 MB 6.0.1.7730
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/02/14 1.72 MB 3.0.23.0
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/03/03 1.15 MB 2.0.4.0
RivaTuner Statistics Server 6.3.0 Unwinder 2016/02/11 6.3.0
RootPro CAD 7 Free 株式会社ルートプロ 2016/04/13 142 MB 7.24.1
Samsung Magician Samsung Electronics 2016/03/12 88.3 MB 4.9.5
Skype を手に入れよう Skype 2016/02/11 3.2.1.0
Sony Media Library Earth 9.3.01 Sony Corporation 2016/04/06 50.5 MB 9.3.01.03100
Sound Blaster Cinema 2 Creative Technology Limited 2016/04/12 7.88 MB 1.00.08
Steam Valve Corporation 2016/04/14 2.10.91.91
Sway Microsoft Corporation 2016/04/08 17.6868.45151.0
TechPowerUp GPU-Z TechPowerUp 2016/03/31
The Desktop Weather 2.0 Baidu Japan Inc. 2015/08/27 2.0.0.10998
Transcend SSD Scope バージョン 3.2.0 Transcend Information, Inc. 2016/04/18 13.5 MB 3.2.0
Twitter Twitter Inc. 2016/04/26 5.0.2.0
Vulkan Run Time Libraries 1.0.3.0 LunarG, Inc. 2016/03/11 1.66 MB 1.0.3.0
Vulkan Run Time Libraries 1.0.5.1 LunarG, Inc. 2016/04/13 1.66 MB 1.0.5.1
Windows スキャン Microsoft Corporation 2016/02/11 6.3.9654.17133
Windows リーディングリスト Microsoft Corporation 2016/02/11 6.3.9654.20947
WinPcap 4.1.2 CACE Technologies 2016/03/20 4.1.0.2001
x-アプリ 6.0.03 Sony Corporation 2016/04/06 30.0 MB 10.0.03
Xbox Microsoft Corporation 2016/03/23 15.15.22005.0
XSplit Gamecaster SplitmediaLabs 2016/04/11 155 MB 2.4.1506.1243
Zoner Photo Studio 17 ZONER software 2016/03/19 375 MB 17.0.1.12
はじめに Microsoft Corporation 2016/03/29 3.5.11.0
アプリコネクター Microsoft Corporation 2016/02/11 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/03/25 10.1603.12020.0
カメラ Microsoft Corporation 2016/04/08 2016.325.60.0
ストア Microsoft Corporation 2016/03/10 2016.29.13.0
スポーツ Microsoft Corporation 2016/04/26 4.9.51.0
ニュース Microsoft Corporation 2016/04/26 4.9.51.0
フォト Microsoft Corporation 2016/03/29 16.325.12390.0
ボイスレコーダー Microsoft Corporation 2016/02/11 10.1512.21110.0
マカフィーインターネットセキュリティ McAfee, Inc. 2016/04/19 141 MB 14.0.6136
マップ Microsoft Corporation 2016/02/11 4.1601.10150.0
マネー Microsoft Corporation 2016/04/26 4.9.51.0
メッセージング & Skype Microsoft Corporation 2016/04/19 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/04/17 17.6769.40891.0
モバイルコンパニオン Microsoft Corporation 2016/02/12 10.1602.3010.0
リーダー Microsoft Corporation 2016/03/08 6.4.9926.18228
天気 Microsoft Corporation 2016/04/26 4.9.51.0
新しい Office を始めよう Microsoft Corporation 2016/03/18 17.6811.23771.0
映画 & テレビ Microsoft Corporation 2016/04/08 3.6.19761.0
電卓 Microsoft Corporation 2016/02/11 10.1601.49020.0
電話 Microsoft Corporation 2016/04/19 2.15.28004.0
2：悪代官 :
2016/04/27 (Wed) 20:43:41: こんばんは。
ここの管理人の悪代官です。
夜8時45分頃に成敗されるのが嫌なので、日アサ8時45分頃の美少女戦隊にお仕置きされてます。
♪こんなザコはダメだもん　（謎

説明とログを見せてもらいました。
なるほど、Freemake絡みで食らいましたか。
他にもDNS Unlocker含めて悪名高いモノがいくつか見えてます。

しかも素性が不明なものまであるので、最悪の場合安全優先でリカバリでの対処も頭に入れておいてください。

まず確認ですが、下記アプリはご自身で必要として入れたものですか？
>Killer Performance Suite Rivet Networks 2016/04/11 1.1.57.1125
>5KPlayer 3.6 DearMob, Inc. 2016/03/12 87.1 MB

3月12日と4月11日にインストールされてますが、どこからどういう経緯で入れたかを次回レスで教えてください。
覚えもないのに入っていたならこれは削除することになりそうです。

慎重に進めていきましょう。

まず最初にお伝えしておきます。
見てのとおり現在相談者さん多数のため、相談受けてから皆さんに順番にレスできるまで、毎回1日かそれ以上かかる可能性もあるので、すみませんがご了承ください。

では以下の説明をよく見てから、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てきたらそれらは絶対にクリックしないでください。
「GeekUninstaller」（通称：GU）
説明ページ↓
http://www.gigafree.net/system/install/geekuninstaller.html
ダウンロード↓
http://www.geekuninstaller.com/download
「download free」をクリック、保存後、解凍してください。
片付ける時はフォルダごと手動で削除してください。

「CCleaner」（通称：CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードしてください。なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
片付けるときはアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【Windowsにダメージを与えてしまうおそれもある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、自分が指示した以外の操作はしないように。

そして下記ページは作業開始前に必ず熟読して、必要な場合が出たらそれに沿って対処してください。この対処が必要な事例が増えています。
http://note.chiebukuro.yahoo.co.jp/detail/n335704

準備できたら作業開始です。
なお、このあとの作業で探しても見つからないものはスルーして進めていいですが、指示した対象外の物は絶対にいじらないようによく見て作業してください。

また、作業のうえで削除指示するものもあるはずですが、ご自身で必要として入れたものがあればそれの削除は保留して、次のレスでその旨を教えてください。

最初にWindowsUpdateの確認して、必要な更新があればそれを全部更新してください。
ですがそこで更新ができないようならこの後に説明する作業はせずに更新失敗の旨をレスで教えてください。
WUが正常にできなくすることで、感染の解析処置を阻害してくる危険なマルウェアが激増しているためです。
Windowsの各種更新(WindowsUpdate)は常に最新に適用しておかないと、それだけで危険な感染はすぐにでも起きますよ。

なお、Windows10への更新はユーザー自身がよほど必要でなければ非推奨です。
http://www.japan-secure.com/entry/Windows_Update_7.html
http://www.japan-secure.com/entry/how_to_suppress_the_free_upgrade_of_Windows_10.html

少なくとも下記のアプリは旧バージョンです。
>Mozilla Thunderbird 38.5.1 (x86 ja) Mozilla 2016/02/23 79.6 MB 38.5.1

各種アプリの更新を怠っただけでも、脆弱性を悪用されて深刻な感染はあっさり起きます。
使うなら最新版に更新してください。使わないアプリならアンインストールが安全です。
他にも旧バージョンないか調べて、あれば同様に更新するか、アンインストールしてください。

ここでWindowsの標準機能である「システムの復元」での復元ポイントをひとつ、手動で作成しておいてください。
これはこの後の作業で、間違って対象外のものをいじってしまうとそれだけでWindowsに深刻な不具合を起こすこともあるので、万一の際に復元可能にしておくためです。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point

GUを使って下記をアンインストールしてください。
>Adobe Acrobat Reader DC - Japanese Adobe Systems Incorporated 2016/03/11 432 MB 15.010.20060
>Adobe Shockwave Player 12.2 Adobe Systems, Inc. 2016/03/25 37.4 MB 12.2.4.194

今度はPCをセーフモードで起動してください（やり方↓）
http://www.pc-master.jp/sousa/s-safemode.html
Win8の場合は以下を参考に。
http://freesoft.tvbok.com/win8/tips-and-tools/safemode.html

セーフモードでGUを使って、下記をアンインストールしてください。
DNS Unlocker version 1.4 www.dnsunlocker.com 2015/10/15 2.91 MB 1.4
Freemake Video Converter バージョン 4.1.9 Ellora Assets Corporation 2016/04/16 47.8 MB 4.1.9
Freemake Video Downloader Ellora Assets Corporation 2016/04/16 47.8 MB 3.8.0
RAR Opener Tiny Opener 2016/04/26 1.2.7.0
RealPlayer (RealTimes) RealNetworks 2016/03/25 183 MB 18.1.3
The Desktop Weather 2.0 Baidu Japan Inc. 2015/08/27 2.0.0.10998
WinPcap 4.1.2 CACE Technologies 2016/03/20 4.1.0.2001

HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、こちらが指示した以外のものは絶対にチェックを入れないでください。
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files (x86)\Real\RealPlayer\update\RealOneMessageCenter.exe" -osboot
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: FreemakeVideoCapture - Ellora Assets Corp. - B:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: RealTimes Desktop Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files (x86)\WeatherTool\2.0.0.10998\WeatherService.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
探しても見つからないものはスルーして進めていいです。

ここでPCを通常モードで再起動してから、スタートメニューの「アクセサリ」→「システムツール」から「ディスククリーンアップ」を起動してください。
起動したら対象ドライブでCドライブを選択してスキャンして、表示された中の「ダウンロードされたプログラムファイル」「インターネット一時ファイル」「一時ファイル」の項目だけチェックを入れてから「OK」「ファイルの削除」を押してください。
これを実行すると選択した部分のゴミファイルが掃除されます。

これを実行することで作業時にスキャンで検出される無駄なゴミファイルも減るのでその分かなり時間や解析も楽になるのです。
「ごみ箱」など他の項目にチェックしないのは、間違って正常なファイルを削除しないためと、もし正常なファイルを削除してごみ箱に入れても戻せるようにするための措置です。

続いてCCを起動してください。
起動したら、「ツール」→」「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できるので、ログをデスクトップにでも保存しておいてください。

次に「スケジュールされたタスク」タブと「コンテキストメニュー」タブのログも同じ要領で保存してください。

続いて今度はCC画面の左側にある「Browser Plugin」の項目から「InternetExplorer」タブ以下の各タブも順番に開いて、そのログもとっておいてください。

CCの各ログをとったらCCは終了してください。

このあとブラウザを起動して、数時間ほどPC状態を様子見したあと、あらたにHJTとCCでのインストール情報ログを取り直してください。

取り直した両ログと、CCの各ログを返信に貼って、状態報告とともにレスください。
それらを見てから続きの作業を指示します。
3：hotty14 :
2016/04/29 (Fri) 07:21:42: おはようございます。お忙しい中ご回答頂き、ありがとうございます。

ご指示ありました作業を行いましたので、経過のログを報告いたします。

ご指摘のアプリですが、KIller～はマザーボードのLANドライバをインストールした際に一緒に入ったものと思われます。入手先は付属のROM、もしくはMSIのホームページからです。
また、5KPlayerは、DVD視聴のためにフリーソフトを探し、自ら入れたもので、メーカーのホームページから入手したと思います。

以降、各ログを分割して貼りますのでご確認ください。

・HJTログ/

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 6:57:29, on 2016/04/29
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)

Boot mode: Normal

Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\SysWOW64\HsMgr.exe
C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe
B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaConverter.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaRenderer.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
B:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\MSI\Live Update\Live Update.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Shunichi Hotta\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Google Japanese Input Prelauncher] "C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [5KPlayer.exe] "B:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe" -auto
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [Sound Blaster Cinema 2] "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [AudialsNotifier] B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
O4 - HKCU\..\Run: [Steam] "B:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
O4 - Global Startup: Killer Network Manager.lnk = C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{c296f54a-7ae7-4853-b8a8-8e2f756aa2f1}: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CCS\Services\Tcpip\..\{f9de48a6-3c6d-4d72-97fb-e0f372fa62a7}: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 82.163.143.171 82.163.142.173
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: McAfee Application Installer Cleanup (0120401461337735) (0120401461337735mcinstcleanup) - Unknown owner - y:\temp\sys\012040~1.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetoothスイッチャーサービス (BtSwitcherService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
O23 - Service: CSR Bluetoothオーディオサービス (CSRBtAudioService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
O23 - Service: CSR OBEX Service (CsrBtOBEXService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
O23 - Service: CSR Bluetooth サービス (CsrBtService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EaseUS Agentサービス (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Disk Master Agent (FrAgent) - QILING Tech Co., Ltd. - B:\Program Files\QILING\Disk Master\Agent.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: GamingHotkey_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe,-100 (GoogleIMEJaCacheService) - Google Inc. - C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe
O23 - Service: マカフィーパーソナルファイアウォールサービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI Command Center Clock Service (MSIClock_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSI Command Center Comm Service (MSICOMM_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
O23 - Service: MSI Command Center CPU Service (MSICPU_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
O23 - Service: MSI Command Center control Service (MSICTL_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSI Command Center DDR Service (MSIDDR_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSI Command Center SMBus Service (MSISMB_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
O23 - Service: MSI Command Center SuperIO Service (MSISuperIO_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
O23 - Service: MSI_ECOSERVICE - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
O23 - Service: MSI_FastBoot - MSI - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\WINDOWS\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service2 - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe

--
End of file - 18472 bytes

・CCログ/

3D Builder Microsoft Corporation 2016/02/12 10.10.38.0
3DMark Futuremark 2016/03/10 63.0 MB 1.5.915.0
5KPlayer 3.6 DearMob, Inc. 2016/03/12 87.1 MB
7-Zip 9.20 (x64 edition) Igor Pavlov 2016/04/11 2.48 MB 9.20.00.0
ACPI Driver Installer Intel Corporation 2016/04/12 10.2 MB 2.1
Adobe AIR Adobe Systems Incorporated 2016/03/25 24.3 MB 21.0.0.176
ASUS Xonar Essence STX Audio ASUSTeK Computer Inc. 2016/02/12 42.2 MB
Bonjour Apple Inc. 2016/03/04 4.00 MB 3.0.0.10
Candy Crush Soda Saga king.com 2016/04/22 1.64.600.0
Canon IJ Network Scanner Selector EX 2016/04/01 1.79 MB
Canon IJ Network Tool Canon Inc. 2016/03/26 3.1.1
Canon Inkjet Print Utility Canon Inc. 2016/03/26 2.5.0.6
Canon MG6200 series MP Drivers Canon Inc. 2016/03/26
CCleaner Piriform 2016/04/27 17.8 MB 5.17
CPUID CPU-Z 1.76 2016/04/23 3.94 MB
CPUID HWMonitor 1.28 2016/04/10 2.90 MB
CPUID PerfMonitor 2.04 CPUID, Inc. 2016/04/04 1.62 MB 2.04
CrystalDiskInfo 6.8.1 Crystal Dew World 2016/04/17 10.0 MB 6.8.1
CrystalDiskMark 5.1.2 Crystal Dew World 2016/02/14 6.93 MB 5.1.2
CSR Harmony Wireless Software Stack CSR Plc. 2016/04/14 344 MB 2.1.63.0
Disk Master Free version 3.6 QILING Tech Co., Ltd. 2016/04/12 34.6 MB 3.6
EaseUS Partition Master 10.8 EaseUS 2016/02/14 206 MB
EaseUS Todo Backup Free 9.0 CHENGDU YIWO Tech Development Co., Ltd 2016/02/14 9.0
FINAL FANTASY TYPE-0 HD SQUARE ENIX 2016/04/19 24.8 GB
foobar2000 v1.3.9 Peter Pawlowski 2016/03/10 10.0 MB 1.3.9
Futuremark SystemInfo Futuremark 2016/04/17 11.1 MB 4.45.590.0
Google Chrome Google Inc. 2016/04/27 320 MB 50.0.2661.87
Google Drive Google, Inc. 2016/04/29 35.2 MB 1.29.2074.1528
Google Toolbar for Internet Explorer Google Inc. 2016/04/27 7.5.7619.1252
Google 日本語入力 Google Inc. 2016/02/13 51.8 MB 2.17.2400.0
Groove ミュージック Microsoft Corporation 2016/02/12 3.6.15131.0
HWiNFO64 Version 5.22 Martin Mal勛 - REALiX 2016/03/24 3.26 MB 5.22
Intel(R) Management Engine Components Intel Corporation 2016/04/11 11.0.0.1158
Intel® Security Assist Intel Corporation 2016/04/11 5.70 MB 1.0.0.532
Intelｮ Watchdog Timer Driver (Intelｮ WDT) Intel Corporation 2016/04/12 10.0 MB
Intelｮ Watchdog Timer Driver (Intelｮ WDT) Intel Corporation 2016/04/11
Killer Performance Suite Rivet Networks 2016/04/11 1.1.57.1125
Leawo Blu-ray Player version 1.9.2.3 leawo Software 2016/03/11 97.4 MB 1.9.2.3
MakeMKV v1.9.9 GuinpinSoft inc 2016/03/12 v1.9.9
marvell 91xx driver Marvell 2016/03/03 1.0.0.1036
McAfee WebAdvisor McAfee, Inc. 2016/04/27 29.9 MB 4.0.189
Media Go Sony 2016/02/12 231 MB 3.0.403
Media Go Network Downloader Sony 2016/02/12 2.64 MB 1.6.01.0
Media Go Video Playback Engine 2.20.102.05220 Sony 2016/02/12 45.2 MB 2.20.102.05220
MemTweakIt ASUSTeK Computer Inc. 2016/04/12 6.69 MB 2.02.22
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 2016/03/12 2.47 MB 4.0.40804.0
Microsoft Silverlight Microsoft Corporation 2016/03/09 101 MB 5.1.41212.0
Microsoft Solitaire Collection Microsoft Studios 2016/04/21 3.8.4181.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/02/12 9.69 MB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2016/04/07 3.76 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2016/04/09 1.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/02/11 830 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/02/11 960 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 18.0 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 4.76 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2016/04/20 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Corporation 2016/04/17 11.0.60610.1
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2016/04/14 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2016/04/27 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/04/27 17.1 MB 12.0.30501.0
Microsoft Wi-Fi Microsoft Corporation 2016/03/29 1.1603.1.0
Mozilla Maintenance Service Mozilla 2016/04/28 234 KB 45.0.0.5941
Mozilla Thunderbird 45.0 (x86 ja) Mozilla 2016/04/28 83.7 MB 45.0
MSI Afterburner 4.1.1 MSI Co., LTD 2016/02/11 4.1.1
MSI Command Center MSI 2016/04/11 75.9 MB 1.0.1.11
MSI DragonEye MSI 2016/04/27 48.8 MB 0.0.1.3
MSI ECO Center MSI 2016/04/11 14.0 MB 1.0.0.35
MSI Fast Boot MSI 2016/04/11 6.32 MB 1.0.1.8
MSI Gaming APP MSI 2016/04/27 85.8 MB 5.0.0.32
MSI Kombustor 3.5.2.1 (64-bit) MSI Co., LTD 2016/02/14 52.7 MB
MSI Live Update 6 MSI 2016/04/01 31.1 MB 6.1.014
MSI Super Charger MSI 2016/04/27 8.43 MB 1.3.0.04
MSI(R) Intel(R) Extreme Tuning Utility Intel Corporation 2016/04/12 102 MB 6.0.2.101
MSN トラベル Microsoft Corporation 2016/02/12 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/02/12 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/02/11 3.0.4.336
NVIDIA 3D Vision コントローラードライバー 364.44 NVIDIA Corporation 2016/03/31 8.53 MB 364.44
NVIDIA 3D Vision ドライバー 364.72 NVIDIA Corporation 2016/04/13 30.6 MB 364.72
NVIDIA GeForce Experience 2.11.2.55 NVIDIA Corporation 2016/04/13 44.0 MB 2.11.2.55
NVIDIA PhysX システムソフトウェア 9.15.0428 NVIDIA Corporation 2016/02/10 348 MB 9.15.0428
NVIDIA グラフィックスドライバー 364.72 NVIDIA Corporation 2016/04/13 599 MB 364.72
OCCT 4.4.1 Ocbase.com 2016/03/31 4.4.1
oki_clock 2016/02/14
OneNote Microsoft Corporation 2016/04/03 17.6769.57631.0
OpenAL 2016/02/12
Opti Drive Control 1.70 Erik Deppe 2016/04/06 4.34 MB
PCMark 8 Futuremark 2016/04/19 7.54 GB 2.7.613.0
PCMark Vantage Futuremark 2016/04/07 784 MB 1.2.0.0
PDF-Viewer Tracker Software Products Ltd 2016/03/26 86.1 MB 2.5.316.1
People Microsoft Corporation 2016/04/05 10.0.10811.0
Realtek Ethernet Controller Driver Realtek 2016/03/20 3.35 MB 8.32.508.2014
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/04/11 731 MB 6.0.1.7730
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/03/03 1.15 MB 2.0.4.0
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/02/14 1.72 MB 3.0.23.0
RivaTuner Statistics Server 6.3.0 Unwinder 2016/02/11 6.3.0
RootPro CAD 7 Free 株式会社ルートプロ 2016/04/13 142 MB 7.24.1
Samsung Magician Samsung Electronics 2016/03/12 87.9 MB 4.9.5
Skype を手に入れよう Skype 2016/02/11 3.2.1.0
Sony Media Library Earth 9.3.01 Sony Corporation 2016/04/06 50.5 MB 9.3.01.03100
Sound Blaster Cinema 2 Creative Technology Limited 2016/04/12 7.88 MB 1.00.08
Steam Valve Corporation 2016/04/14 2.10.91.91
Sway Microsoft Corporation 2016/04/08 17.6868.45151.0
TechPowerUp GPU-Z TechPowerUp 2016/03/31
Transcend SSD Scope バージョン 3.2.0 Transcend Information, Inc. 2016/04/18 13.5 MB 3.2.0
Twitter Twitter Inc. 2016/04/26 5.0.2.0
Vulkan Run Time Libraries 1.0.3.0 LunarG, Inc. 2016/03/11 1.66 MB 1.0.3.0
Vulkan Run Time Libraries 1.0.5.1 LunarG, Inc. 2016/04/13 1.66 MB 1.0.5.1
Windows スキャン Microsoft Corporation 2016/02/11 6.3.9654.17133
Windows リーディングリスト Microsoft Corporation 2016/02/11 6.3.9654.20947
x-アプリ 6.0.03 Sony Corporation 2016/04/06 30.0 MB 10.0.03
Xbox Microsoft Corporation 2016/03/23 15.15.22005.0
XSplit Gamecaster SplitmediaLabs 2016/04/11 155 MB 2.4.1506.1243
Zoner Photo Studio 17 ZONER software 2016/03/19 375 MB 17.0.1.12
はじめに Microsoft Corporation 2016/03/29 3.5.11.0
アプリコネクター Microsoft Corporation 2016/02/11 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/03/25 10.1603.12020.0
カメラ Microsoft Corporation 2016/04/08 2016.325.60.0
ストア Microsoft Corporation 2016/03/10 2016.29.13.0
スポーツ Microsoft Corporation 2016/04/26 4.9.51.0
ニュース Microsoft Corporation 2016/04/26 4.9.51.0
フォト Microsoft Corporation 2016/03/29 16.325.12390.0
ボイスレコーダー Microsoft Corporation 2016/02/11 10.1512.21110.0
マカフィーインターネットセキュリティ McAfee, Inc. 2016/04/27 141 MB 14.0.6136
マップ Microsoft Corporation 2016/02/11 4.1601.10150.0
マネー Microsoft Corporation 2016/04/26 4.9.51.0
メッセージング & Skype Microsoft Corporation 2016/04/19 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/04/17 17.6769.40891.0
モバイルコンパニオン Microsoft Corporation 2016/02/12 10.1602.3010.0
リーダー Microsoft Corporation 2016/03/08 6.4.9926.18228
天気 Microsoft Corporation 2016/04/26 4.9.51.0
新しい Office を始めよう Microsoft Corporation 2016/03/18 17.6811.23771.0
映画 & テレビ Microsoft Corporation 2016/04/08 3.6.19761.0
電卓 Microsoft Corporation 2016/02/11 10.1601.49020.0
電話 Microsoft Corporation 2016/04/19 2.15.28004.0
4：hotty14 :
2016/04/29 (Fri) 07:37:06: …続き

・スタートアップ　WIndows/

有効 HKCU:Run AudialsNotifier B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GoogleDriveSync Google "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKCU:Run Steam Valve Corporation "B:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKCU:Run Zoner Photo Studio Autoupdate ZONER software "B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
有効 HKLM:Run 5KPlayer.exe Digiarty, Inc. "B:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe" -auto
有効 HKLM:Run Cmaudio8788 Microsoft Corporation C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
有効 HKLM:Run Cmaudio8788GX C:\WINDOWS\syswow64\HsMgr.exe Envoke
有効 HKLM:Run Cmaudio8788GX64 C:\WINDOWS\system\HsMgr64.exe Envoke
有効 HKLM:Run Command Center MSI C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
有効 HKLM:Run CsrAudioguiCtrl Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe
有効 HKLM:Run CSRHarmonySkypePlugin Cambridge Silicon Radio Limited C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe
有効 HKLM:Run CsrHCRPServer Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe
有効 HKLM:Run CsrSyncMLServer Cambridge Silicon Radio Ltd. C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe
有効 HKLM:Run Disk Master QILING Tech Co., Ltd. "B:\Program Files\QILING\Disk Master\vDiskUI.exe" -Hide
有効 HKLM:Run EaseUS EPM tray CHENGDU YIWO Tech Development Co., Ltd C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
有効 HKLM:Run Fast Boot MICRO-STAR INTERNATIONAL CO., LTD. C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
有効 HKLM:Run Google Japanese Input Prelauncher Google Inc. "C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
有効 HKLM:Run HarmonyUserStartup Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
有効 HKLM:Run Live Update Micro-Star INT'L CO., LTD. C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
有効 HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
有効 HKLM:Run MBCfg64 Microsoft Corporation C:\WINDOWS\system32\RunDLL32.exe C:\WINDOWS\system32\MBCfg64.dll,RunDLLEntry MBCfg64
有効 HKLM:Run NUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
有効 HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
有効 HKLM:Run RUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
有効 HKLM:Run SamsungRapidApp Samsung Electronics Co., Ltd. C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
有効 HKLM:Run ShadowPlay Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
有効 HKLM:Run Sound Blaster Cinema 2 Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
有効 HKLM:Run Super Charger MSI C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
有効 HKLM:Run TrayApplication Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\WINDOWS\UpdReg.EXE
有効 HKLM:Run vksts Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe
有効 Startup Common Killer Network Manager.lnk Rivet Networks C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe

・スタートアップ　タスク/

有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task DNSWALTERS C:\Program Files (x86)\DNS Unlocker\dnswalters.exe /Scheduled
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse McAfee, Inc. C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe /script=mcnrdhck.lua /periodicRunCount=4
有効 Task Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse McAfee, Inc. C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe /timeout=60000 /script=mcnrdhck.lua /hcmode=postdatupdate /datver=2598.0 /datupdatestatus=0
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui /runkey
無効 Task Optimize Start Menu Cache Files-S-1-5-21-3148462374-1354258840-1494918899-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3148462374-1354258840-1494918899-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3148462374-1354258840-1494918899-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task SamsungMagician Samsung Electronics. "C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe" /AUTOHIDE
有効 Task Shunichi HottaAfternoonsMeteoricV2 Microsoft Corporation rundll32.exe HoralDecrements.dll,main 7 1
有効 Task TrackerAutoUpdate Tracker Software Products (Canada) Ltd. "B:\Program Files\Tracker Software\Update\TrackerUpdate.exe" -CheckUpdate
有効 Task {2665C17D-EADE-4BC0-9F0F-818D2F3C03E0} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Shunichi Hotta\AppData\Roaming\0U1E1Q1T2Z1P0S2Z1T1C\Opti Drive Control Packages\uninstaller.exe" -c /Uninst /NM="Opti Drive Control Packages" /AN="0U1E1Q1T2Z1P0S2Z1T1C" /MBN="Opti Drive Control Packages" /mnl
有効 Task {6B3DE556-D264-34D5-533E-42B9AEECDE7C} C:\Users\SHUNIC~1\AppData\Roaming\{6B3DE~1\PRICEF~1.EXE /Check

・スタートアップ　コンテキストメニュー/

有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory GDContextMenu Google C:\Program Files (x86)\Google\Drive\contextmenu64.dll
有効 Directory SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 Drive SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File GDContextMenu Google C:\Program Files (x86)\Google\Drive\contextmenu64.dll
有効 File McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
有効 File SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 Folder McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll

・ブラウザプラグイン　IE/

有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

・ブラウザプラグイン　Chrome/

有効 App Google ドライブ 14.1 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
無効 App 就活力を鍛える! 時事・業界トレーニング 1.0.1 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpoecfmlefjgipbhopmdcikjelflnbpc\1.0.1_0
有効 Extension Application Launcher for Drive (by Google) 3.2 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0
有効 Extension Google オフラインドキュメント 1.4 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0
有効 Extension SiteAdvisor 4.0.0.0 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\4.0.0.0_1

ひとまず以上です。
5：悪代官 :
2016/04/29 (Fri) 20:28:52: 作業と報告、ご苦労様です。

>ご指摘のアプリですが、KIller～はマザーボードのLANドライバをインストールした際に一緒に入ったものと思われます。入手先は付属のROM、もしくはMSIのホームページからです。
>また、5KPlayerは、DVD視聴のためにフリーソフトを探し、自ら入れたもので、メーカーのホームページから入手したと思います。

はい、了解しました。
作業後の各ログも見せてもらいましたが、自分の予想通り隠れていたモノがあぶり出されてます。

ではまた説明に沿って続きの作業をお願いします。

まず先に確認した下記アプリですが、
>5KPlayer 3.6 DearMob, Inc. 2016/03/12 87.1 MB

今回の異常が出た時期と、上記をインストールした時期は同じですか？
できれば上記は一度アンインストールをお勧めます。
今回の処置が解決した時点で、再度入れなおすかどうかの判断はお任せします。
削除するならセーフモードでGUを使ってアンインストールしておいてください。

次にPCを通常モードでCCを起動して、「スケジュールされたタスク」内の下記を「無効」にしたあと「エントリの削除」してください。無効化できないときはそのまま削除でもいいです。
有効 Task DNSWALTERS C:\Program Files (x86)\DNS Unlocker\dnswalters.exe /Scheduled

有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler

有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3148462374-1354258840-1494918899-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck

有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3148462374-1354258840-1494918899-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck

有効 Task {6B3DE556-D264-34D5-533E-42B9AEECDE7C} C:\Users\SHUNIC~1\AppData\Roaming\{6B3DE~1\PRICEF~1.EXE /Check

次に「IE」タブ内の下記も同様に処置です。
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll

CCを終了したら次は下記のツールを準備してください。
「AdwCleaner」（通称：AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンです。アクセスしてファイルをデスクトップにでも保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。
使い方は下記サイト様に詳しい説明があるのでサンショウウオ↓
http://www.japan-secure.com/entry/adwcleaner.html

Malwarebytes' Anti-Malware（通称・MBAM）
本家サイト
http://www.malwarebytes.org/

ダウンロード
https://www.malwarebytes.org/mwb-download/thankyou/
ファイル直リンです。保存しておいてください。

使い方の説明サイト
http://www.gigafree.net/security/MalwarebytesAnti-MalwareFree.html

準備できたらMBAMをインストールとアップデートまでしておいてください。
ただし、ここではまだスキャンはしないように。

続いてここで一度ACを起動してください。
起動するとまず定義の更新が行われるはずなので、更新だけしてから、それができたらACは一旦終了してください。
ここではスキャンもしなくていいです。

両ツールのアップデートができたらディスククリーンアップを使ってゴミファイルの掃除したあと、PCをセーフモードで再起動してしてください。

続いてPCをセーフモード起動してから、先に一度起動したACを再度起動してください。
起動したら今度は「スキャン」したあと、そのスキャン終了後に検出されたものがあったら「除去」を押してください。
表示された画面で「はい」を選択すると処置開始されます。

処置完了したらそこでPCを通常モードで再起動してください。

再起動後にACのあらたなログが出るので、それをデスクトップにでも保存しておいてください。
ですが、もし作業後にログが出ないorわからない場合はマイコンピュータのCドライブを開くとその直下に以下のような名前のファイルが作成されているので、それがACのログです。
>AdwCleaner[英数字].txt
同じような名前のログが複数ある時は、作成日時が作業処置時のファイルが対象のログです。

ACでの作業ができたら次はMBAMの作業です。
またセーフモード起動してからMBAM起動してスキャンしてください。
MBAM起動したら「スキャン」タブで「カスタムスキャン」選択後、Cドライブを含む全ドライブを選択してください。
それとルートキットスキャンの項目もチェック入れておいてください。

この形でスキャンすると時間はかかりますができるだけ細かくスキャンするためです。

両ツールのスキャンの順番はどちらからでもいいですが、なにか検出されたらそれを選択して「remove」（隔離）したあと、再起動を促す表示が出たらそこで一度PCを再起動してください。
もし再起動表示が出ないときは手動で再起動してください。

またMBAMスキャン終了後、画面右下にその結果を知らせるメッセージが出るので、それを押すとその結果が表示されるはずです。
そこで「ログを保存」を押すとそのログが保存可能になります。
そのログをデスクトップにでも保存しておいてください。
このログ確認が特に重要なので、忘れないようにお願いします。

このあとしばらくPC状態を様子見後、作業後に保存したACとMBAMのログを返信に貼り付けて、それを状態報告とともにレスで見せてください。
6：hotty14 :
2016/05/01 (Sun) 18:18:11: こんにちは、お世話になります。

これまでの作業完了後の状態をお知らせいたします。

現状では、様子見した限り、こちらに相談した直後の非常に悪い状態は脱し、問題が発生する以前の状態に戻っているように見受けられます。
広告が表示されることも、勝手にポップアップが開くこともなくなっています。

>まず先に確認した下記アプリですが、
>>5KPlayer 3.6 DearMob, Inc. 2016/03/12 87.1 MB

>今回の異常が出た時期と、上記をインストールした時期は同じですか？

また、上記でご指摘いただいた件ですが、インストール後は全く問題ありませんでした。今回の異常が発生したのはこちらのサイトに初めて来た日（4/27）ですので、直接の原因とは
考えにくいような気がします。時限爆弾的なものであれば分かりませんが…(^ ^;)

ちなみに今回アンインストールしたFreemakeですが、当方で使用中のセカンド機にも入れて数年経ちますが、今まで悪い挙動になったことがありませんでしたので、安心してました。
（滅多に使用することもなかったのですが）

ACとMBAMのログまで取りましたので、ご確認お願い致します。
ACのログですが、近い時間で3つありましたので、とりあえず全て貼っておきます。

・ACログ 1/

# AdwCleaner v5.114 - ログファイルの作成日 30/04/2016 作成時間 00:23:25
# 更新日 27/04/2016 作成元 Xplode
# データベース : 2016-04-24.3 [ローカル]
# オペレーティングシステム : Windows 10 Pro (X64)
# ユーザー名 : Shunichi Hotta - HOTTA-PC
# 実行場所 : C:\Users\Shunichi Hotta\Downloads\AdwCleaner.exe
# オプション : 削除
# サポート : http://toolslib.net/forum

***** [ サービス ] *****

***** [ フォルダ ] *****

[-] フォルダ削除済み項目 : C:\Users\Public\Documents\Guid
[-] フォルダ削除済み項目 : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool
[-] フォルダ削除済み項目 : C:\Users\Shunichi Hotta\AppData\Roaming\RPEng

***** [ ファイル ] *****

[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.eshopcomp.com_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.eshopcomp.com_0.localstorage-journal
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-5kplayer.softonic.jp_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-5kplayer.softonic.jp_0.localstorage-journal
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.eshopcomp.com_0.localstorage
[-] ファイル削除済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.eshopcomp.com_0.localstorage-journal

***** [ DLLs ] *****

***** [ WMI ] *****

***** [ ショートカット ] *****

***** [ スケジュールタスク ] *****

***** [ レジストリ ] *****

[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
[-] キー削除済み項目 : HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
[-] キー削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6ae99490}
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] キー削除済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] キー削除済み項目 : HKCU\Software\PRODUCTSETUP
[-] キー削除済み項目 : HKCU\Software\System Healer
[-] キー削除済み項目 : HKCU\Software\ICSW1.19
[-] キー削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
[-] キー削除済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1
[-] データ復元済み項目 : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{c296f54a-7ae7-4853-b8a8-8e2f756aa2f1} [NameServer]
[-] データ復元済み項目 : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{f9de48a6-3c6d-4d72-97fb-e0f372fa62a7} [NameServer]
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\bestpriceninja.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\eshopcomp.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.bestpriceninja.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.eshopcomp.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\bestpriceninja.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\eshopcomp.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.bestpriceninja.com
[-] キー削除済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.eshopcomp.com

***** [ Webブラウザ ] *****

*************************

:: "Tracing"キーは削除します
:: Winsock設定を初期化しました

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [6635 バイト] - [30/04/2016 00:23:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [8443 バイト] - [27/04/2016 05:06:29]
C:\AdwCleaner\AdwCleaner[S2].txt - [7506 バイト] - [27/04/2016 07:22:10]
C:\AdwCleaner\AdwCleaner[S3].txt - [7560 バイト] - [27/04/2016 16:17:39]
C:\AdwCleaner\AdwCleaner[S4].txt - [7135 バイト] - [30/04/2016 00:22:06]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7020 バイト] ##########

・ACログ 2/

# AdwCleaner v5.114 - ログファイルの作成日 30/04/2016 作成時間 00:22:06
# 更新日 27/04/2016 作成元 Xplode
# データベース : 2016-04-24.3 [ローカル]
# オペレーティングシステム : Windows 10 Pro (X64)
# ユーザー名 : Shunichi Hotta - HOTTA-PC
# 実行場所 : C:\Users\Shunichi Hotta\Downloads\AdwCleaner.exe
# オプション : スキャン
# サポート : http://toolslib.net/forum

***** [ サービス ] *****

***** [ フォルダ ] *****

フォルダ検出済み項目 : C:\Users\Public\Documents\Guid
フォルダ検出済み項目 : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool
フォルダ検出済み項目 : C:\Users\Shunichi Hotta\AppData\Roaming\RPEng

***** [ ファイル ] *****

ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.bestpriceninja.com_0.localstorage-journal
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.eshopcomp.com_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_pstatic.eshopcomp.com_0.localstorage-journal
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-5kplayer.softonic.jp_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_free-5kplayer.softonic.jp_0.localstorage-journal
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.eshopcomp.com_0.localstorage
ファイル検出済み項目 : C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.eshopcomp.com_0.localstorage-journal

***** [ DLL ] *****

***** [ WMI ] *****

***** [ ショートカット ] *****

***** [ スケジュールタスク ] *****

***** [ レジストリ ] *****

キー検出済み項目 : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
キー検出済み項目 : HKLM\SOFTWARE\MICROSOFT\SYSTEMCERTIFICATES\ROOT\CERTIFICATES\26D9E607FFF0C58C7844B47FF8B6E079E5A2220E
キー検出済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6ae99490}
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.Protector
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
キー検出済み項目 : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
キー検出済み項目 : HKCU\Software\PRODUCTSETUP
キー検出済み項目 : HKCU\Software\System Healer
キー検出済み項目 : HKCU\Software\ICSW1.19
キー検出済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
キー検出済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E1527582-8509-4011-B922-29E3FB548882}_is1
キー検出済み項目 : HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\Software\PRODUCTSETUP
キー検出済み項目 : HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\Software\System Healer
キー検出済み項目 : HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\Software\ICSW1.19
データ検出済み項目 : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{c296f54a-7ae7-4853-b8a8-8e2f756aa2f1} [NameServer] - 82.163.143.171 82.163.142.173
データ検出済み項目 : HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{f9de48a6-3c6d-4d72-97fb-e0f372fa62a7} [NameServer] - 82.163.143.171 82.163.142.173
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\bestpriceninja.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\eshopcomp.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.bestpriceninja.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pstatic.eshopcomp.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\bestpriceninja.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\eshopcomp.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.bestpriceninja.com
キー検出済み項目 : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pstatic.eshopcomp.com

***** [ Webブラウザ ] *****

*************************

C:\AdwCleaner\AdwCleaner[S1].txt - [8443 バイト] - [27/04/2016 05:06:29]
C:\AdwCleaner\AdwCleaner[S2].txt - [7506 バイト] - [27/04/2016 07:22:10]
C:\AdwCleaner\AdwCleaner[S3].txt - [7560 バイト] - [27/04/2016 16:17:39]
C:\AdwCleaner\AdwCleaner[S4].txt - [6971 バイト] - [30/04/2016 00:22:06]

########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [7048 バイト] ##########

・ACログ 3/

# AdwCleaner v5.114 - ログファイルの作成日 30/04/2016 作成時間 00:27:30
# 更新日 27/04/2016 作成元 Xplode
# データベース : 2016-04-27.1 [サーバー]
# オペレーティングシステム : Windows 10 Pro (X64)
# ユーザー名 : Shunichi Hotta - HOTTA-PC
# 実行場所 : C:\Users\Shunichi Hotta\Downloads\AdwCleaner.exe
# オプション : スキャン
# サポート : http://toolslib.net/forum

***** [ サービス ] *****

***** [ フォルダ ] *****

***** [ ファイル ] *****

***** [ DLL ] *****

***** [ WMI ] *****

***** [ ショートカット ] *****

***** [ スケジュールタスク ] *****

***** [ レジストリ ] *****

***** [ Webブラウザ ] *****

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [7107 バイト] - [30/04/2016 00:23:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [8443 バイト] - [27/04/2016 05:06:29]
C:\AdwCleaner\AdwCleaner[S2].txt - [7506 バイト] - [27/04/2016 07:22:10]
C:\AdwCleaner\AdwCleaner[S3].txt - [7560 バイト] - [27/04/2016 16:17:39]
C:\AdwCleaner\AdwCleaner[S4].txt - [7135 バイト] - [30/04/2016 00:22:06]
C:\AdwCleaner\AdwCleaner[S5].txt - [1170 バイト] - [30/04/2016 00:27:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1247 バイト] ##########
7：hotty14 :
2016/05/01 (Sun) 18:21:33: …続き

・MBAMログ/

Malwarebytes Anti-Malware
www.malwarebytes.org

スキャン日付: 2016/04/30
スキャン時刻: 0:35
ログファイル: MBAM0.txt
管理者: はい

バージョン: 2.2.1.1043
マルウェアデータベース: v2016.04.29.05
ルートキットデータベース: v2016.04.17.01
ライセンス: トライアル版
マルウェア保護機能: 無効
悪質ウェブサイト保護機能: 無効
自己防衛: 無効

OS: Windows 10
CPU: x64
ファイルシステム: NTFS
ユーザー: Shunichi Hotta

スキャン形式: カスタムスキャン
結果: 完了しました
スキャンされたオブジェクト数: 711168
経過時間: 1 時間, 15 分, 0 秒

メモリ: 有効
スタートアップ: 有効
ファイルシステム: 有効
アーカイブ: 有効
ルートキット: 有効
ヒューリスティック: 有効
PUP: 有効
PUM: 有効

プロセス: 0
（なし悪意のある項目を検出）

モジュール: 0
（なし悪意のある項目を検出）

レジストリキー: 2
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E315D07D-3726-4265-BE5C-A1A8A613C537}, 再起動時に削除, [8f0a08ac1b7edf570aca6a42f1133cc4],
PUP.Optional.InstallCore, HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\csastats, 隔離, [c3d6a80cc1d8b77f04dec9ee798b1ee2],

レジストリ値: 1
PUP.Optional.PriceFountain, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E315D07D-3726-4265-BE5C-A1A8A613C537}|Path, \Shunichi HottaAfternoonsMeteoricV2, 再起動時に削除, [8f0a08ac1b7edf570aca6a42f1133cc4]

レジストリデータ: 1
Trojan.DNSChanger.ACMB2, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS|NameServer, 82.163.143.171 82.163.142.173, 良: (8.8.8.8), 悪: (82.163.143.171 82.163.142.173),置換,[5e3bc2f2a6f33ff78f7376d919ec5ba5]

フォルダー: 0
（なし悪意のある項目を検出）

ファイル: 9
PUP.Optional.InstallCore, C:\Users\Shunichi Hotta\AppData\Roaming\0U1E1Q1T2Z1P0S2Z1T1C\Opti Drive Control Packages\uninstaller.exe, 隔離, [d5c404b0277261d5c61701509869a65a],
PUP.Optional.Amonetize, C:\Users\Shunichi Hotta\Documents\ Plexutilities\Plexutilities__17623_il282478.exe, 隔離, [7a1f991b495014222c4b54d46d9560a0],
PUP.Optional.InstallCore, C:\Users\Shunichi Hotta\Downloads\opti-drive-control.exe, 隔離, [2c6d169ed6c3b08664762848a75e619f],
PUP.Optional.OpenCandy, C:\Users\Shunichi Hotta\Downloads\FreemakeVideoConverterFull.exe, 隔離, [960312a2cbce4fe7c687c9f524de15eb],
PUP.Optional.PriceFountain, C:\Windows\System32\Tasks\Shunichi HottaAfternoonsMeteoricV2, 隔離, [356453618217d75f12a2e6b9a262a858],
PUP.Optional.eShopComp, C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage, 再起動時に削除, [eeab10a4c5d467cf7dd5e0c3986c35cb],
PUP.Optional.eShopComp, C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_pstatic.eshopcomp.com_0.localstorage-journal, 隔離, [2a6f5c58b0e99d99c58d00a306feda26],
PUP.Optional.CrossRider, C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage, 再起動時に削除, [02972490099042f4ec8c86206b99b947],
PUP.Optional.CrossRider, C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d19tqk5t6qcjac.cloudfront.net_0.localstorage-journal, 再起動時に削除, [f5a4cde74b4ea88e8bedbee8e51f3dc3],

物理セクタ: 0
（なし悪意のある項目を検出）

(end)
8：悪代官 :
2016/05/01 (Sun) 18:35:45: 作業と報告、ご苦労様です。

>現状では、様子見した限り、こちらに相談した直後の非常に悪い状態は脱し、問題が発生する以前の状態に戻っているように見受けられます。
>広告が表示されることも、勝手にポップアップが開くこともなくなっています。

はい、まずは沈静化できているようですね。
気分的にもいくらか楽になったでしょうか？

5KPlayerはタイミング的にはおかしなところはなかったとのことですね。
ではこれは置いとくとして、

>ちなみに今回アンインストールしたFreemakeですが、当方で使用中のセカンド機にも入れて数年経ちますが、今まで悪い挙動になったことがありませんでしたので、安心してました。

これについては自分からは非推奨ということを案内しておきます。
当掲示板の過去相談だけでもこれ絡みのトラブルは既に数えきれないほどになってますが、当掲示板以外の質問サイトでもやはりこれが入ったPCでの異常相談は今も絶えません。
現在いくつかの社のセキュリティソフトでもFreemakeシリーズは検出対象になっているものもあります。
どうしても使うなら設定と機能をしっかり把握して、完全に自己責任で判断してください。
これを使ったままのPCで異常が出て消えないと言われても、Freemakeを入れている以上自分としては手におえないとしか言えませんので。

さて両ログも見せてもらいましたが、やはり多数の検出ありましたね。
検出されたものは全部両ツール上から隔離処置していればいいです。

状態は沈静化していますが、ここではまだ「解決」にはなりません。
ここで油断して作業を止めると高確率で復活してくるので、沈静化している間に続きの解析にかかります。

以下のツールを準備してください。
OTL(OldTimer Listit)
「Download」ボタンからDLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで分割して、複数回に分けてレス送信してください。

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです
9：hotty14 :
2016/05/02 (Mon) 00:03:06: こんばんは、お世話になります。
連休中にも拘らず対応していただきありがとうございます。

OTLでの作業が終了しましたので、ログを報告いたします。

・Extras.txt/

OTL Extras logfile created on: 2016/05/01 23:47:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Shunichi Hotta\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

31.94 Gb Total Physical Memory | 28.20 Gb Available Physical Memory | 88.30% Memory free
36.69 Gb Paging File | 32.69 Gb Available in Paging File | 89.10% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.44 Gb Total Space | 157.04 Gb Free Space | 67.56% Space Free | Partition Type: NTFS
Drive K: | 2794.52 Gb Total Space | 2610.41 Gb Free Space | 93.41% Space Free | Partition Type: NTFS
Drive L: | 931.50 Gb Total Space | 582.65 Gb Free Space | 62.55% Space Free | Partition Type: NTFS
Drive Y: | 1.93 Gb Total Space | 1.89 Gb Free Space | 97.62% Space Free | Partition Type: NTFS

Computer Name: HOTTA-PC | User Name: Shunichi Hotta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 31 35 84 6C D4 63 D1 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{56D1513F-8C7D-4281-BE9D-A8945D639FE6}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe |
"{8495165B-032B-474D-9880-05430535C1FC}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{8FD5A407-8ECC-4BCA-A559-02E708194824}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{94E77F16-21EB-4475-96FF-3BEBAA30A592}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{9FF5B4FA-74EB-4B24-BDB8-B8C6AD94BE54}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{B9899E71-5047-424E-9AED-40259DD77E64}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{BD9C1829-F121-48BF-BA06-58647074E875}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{FB3A7D29-9FF2-4ABE-8C9F-F3DC658BE8EB}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0111B107-0ADF-4661-8277-C0BFFA6D341C}" = dir=in | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{0464EB77-EC02-4746-ABA5-7345A88685C5}" = protocol=17 | dir=in | app=b:\program files (x86)\steam\steam.exe |
"{0A9470C2-D7FC-4165-A902-AA4231F59470}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{0CE12015-B804-482F-A6BB-E42E3BC5EE59}" = dir=in | name=@{microsoft.bingfinance_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{0E30CD0F-C95C-4BF5-BC5A-117449E8F2D3}" = dir=out | name=@{microsoft.zunevideo_3.6.19761.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{15A7EE05-786C-46B2-BE26-25F5631FB61F}" = dir=out | name=onenote |
"{18011466-739C-4ACB-B695-5B2934B819DE}" = dir=out | name=twitter |
"{1828BF6E-46F7-45A5-920D-A9EC1DCA3EAB}" = dir=in | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{192926C5-E218-41FF-80B6-B088EC50D490}" = dir=in | name=@{microsoft.microsoftofficehub_17.6811.23771.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{1D46E3CA-C72B-471F-8B35-8453F247CE04}" = protocol=6 | dir=in | app=b:\program files (x86)\steam\bin\steamwebhelper.exe |
"{1E5F760C-AFF2-4F7E-9C81-BAED9F04B74F}" = protocol=6 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\todobackupservice.exe |
"{245E220A-3687-4DDA-8248-813FC8525FBB}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{246B3961-B52B-4351-8C6E-1BC464E5B40E}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{24EDC59C-A9F8-4959-849E-547E547F30AF}" = dir=in | name=@{microsoft.commsphone_2.15.28004.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} |
"{256944AB-A0D2-4B97-B992-00F2FC4B73BC}" = dir=out | name=@{microsoft.windows.photos_16.325.12390.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{2A897EB6-7B14-4FE9-94B8-A0AF92C538E8}" = dir=in | name=@{microsoft.bingweather_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{3727E149-0B4E-4DF1-8057-2DEB4F079F69}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{3A469E17-59C7-4647-A8C5-4CAC337BC5EA}" = protocol=17 | dir=in | app=b:\program files (x86)\steam\steamapps\common\final fantasy type-0 hd\fftype0hdlauncher.exe |
"{3D2B09B8-D84B-43AE-8127-4D617FABC5B4}" = protocol=17 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\tbservice.exe |
"{3E432B02-9D02-405F-8F79-370CA67C778F}" = protocol=6 | dir=in | app=b:\program files (x86)\steam\steam.exe |
"{3EB3E9E4-043F-4C48-A32C-F1E7119E1380}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6769.40891.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{412A13BE-EA9D-4420-AC22-A7E7809AD51A}" = dir=out | name=@{microsoft.windowsmaps_4.1601.10150.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{425C57DC-682D-48E3-82F5-2E9400608DA1}" = dir=in | name=xbox |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4291E48F-9E1B-4AD6-8601-30B237F6432A}" = dir=out | name=@{microsoft.zunemusic_3.6.15131.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{46279B29-2582-43E0-8ACA-6A2E2B5BA61E}" = dir=in | name=canon inkjet print utility |
"{4CF47F16-9A3B-4FDB-9CEA-25A4CB170BF9}" = dir=out | name=@{microsoft.connectivitystore_1.1604.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.connectivitystore/mswifiresources/appstorename} |
"{4DBD1451-1E74-4976-8162-66DA8E4AB74F}" = protocol=6 | dir=in | app=c:\program files (x86)\real\realplayer\rpds\bin\rpdsvc.exe |
"{4F562FCD-97A9-4142-BFD1-6BF20A3074FE}" = dir=out | name=candy crush soda saga |
"{50D26D34-0AE9-4E50-BAB1-538A29E884A2}" = dir=out | name=@{microsoft.people_10.0.10811.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{5667E788-27A3-40DE-959D-B2590E0AF620}" = dir=in | name=sway |
"{58026753-39DC-41EE-88E1-6958C40BF050}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{58A93317-67E4-4CD9-B211-E75AC43D9A84}" = dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{58B308F4-5467-4C36-B0BE-C9DA1330050C}" = dir=out | name=windows_ie_ac_001 |
"{59BA7AE0-AD2A-4A9A-BDD1-D6469F11B5C9}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{6609C66F-8C78-4F94-8560-9DB6ACBC1728}" = dir=in | name=@{microsoft.bingsports_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{6EE0413B-3BD7-47CF-8976-00480029F912}" = dir=in | name=onenote |
"{74A78B25-E06B-45BF-8EDC-ED04D87E9A2E}" = dir=in | name=@{microsoft.zunevideo_3.6.19761.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{74E1F03F-C60D-44F9-B31B-001068F0728C}" = protocol=17 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\tbconsoleui.exe |
"{782C8134-F30E-4E67-AC81-C5D614103210}" = protocol=6 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\tbconsoleui.exe |
"{811AA223-177E-4E27-8819-CDF111D8285C}" = dir=out | name=@{microsoft.commsphone_2.15.28004.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} |
"{81A68ACB-DD62-4B57-B723-EABE62E617FC}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{82F5287A-34CB-414D-982C-4FA67A7EB17F}" = dir=out | name=@{microsoft.lockapp_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{83E4C1E9-C212-4CEA-83C1-00860B00C394}" = dir=out | name=@{microsoft.messaging_2.15.20002.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/microsoft.apps.messaging.skype/skypemessaging.resources/skype_appstorename} |
"{89C0366F-BBF6-4CEE-9892-48DF12BB58D6}" = dir=out | name=canon inkjet print utility |
"{90D7A1CB-02C3-4665-91C3-55611B4231D5}" = protocol=6 | dir=in | app=b:\program files (x86)\steam\steamapps\common\final fantasy type-0 hd\fftype0hdlauncher.exe |
"{91676993-635A-4AC7-9657-B1AC8A3BDE19}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9924CD82-08A3-4774-9381-5DF79881E961}" = protocol=6 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\todobackupservice.exe |
"{9BD6AB84-9D41-4F2C-A536-C9422E73E94E}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{9C5F2072-4067-46BB-AF98-99EBF6C1526F}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9E903AC1-8243-461C-9472-AA9662C06856}" = protocol=17 | dir=in | app=b:\program files (x86)\steam\bin\steamwebhelper.exe |
"{A12F85B1-508E-4688-8AEC-474F02714C6A}" = dir=out | name=@{microsoft.microsoftofficehub_17.6811.23771.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{A32748C0-3006-4751-B128-66EC42ADFAF3}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A65ACF4A-742B-47FB-9C0F-B90FC75298AD}" = dir=out | name=sway |
"{A6902273-311D-4E7C-B563-744EC1AC1A0D}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A6FF8DA7-6BD3-418F-8F2E-6E5ED1F80FAB}" = dir=in | name=@{microsoft.bingnews_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{A9B4D7D7-D8A1-4384-8A3A-06FF2E6C3954}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{ABE8208E-46D5-46AE-BD45-143E3E58BC30}" = dir=out | name=@{microsoft.bingtravel_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{ABF1D3D2-85FC-4847-BEBE-ADE0EF9A65D6}" = dir=out | name=@{microsoft.bingweather_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{AE9D4DF8-F058-4F70-AFEF-88BE83E23843}" = dir=out | name=@{microsoft.bingnews_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{B531218F-062A-4A7F-A7B0-1298FBA789A1}" = dir=out | name=@{microsoft.accountscontrol_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{B5D00428-9CFB-4567-9D61-3460365CE349}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{B71F34FD-C0AD-48BB-A4B0-22DB63DA4DEE}" = dir=in | app=b:\program files (x86)\apowersoft\apowersoft screen recorder pro 2\apowersoft screen recorder pro 2.exe |
"{B93CF23E-4AEF-4AA9-8D79-EDE71D09FEE7}" = dir=out | name=@{microsoft.bingfinance_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{BAA059A7-65EC-42E4-B840-5055F765AD24}" = dir=out | name=@{microsoft.windowsstore_11602.1.26.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{C02C2E72-49B5-4428-A431-AE5D5D2B9E8D}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6769.40891.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{C302B2EE-E440-45F5-992D-9B42D207843C}" = dir=out | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{C5BDC81F-E8D3-4179-BF05-3E6D62E77CA8}" = dir=in | name=microsoft solitaire collection |
"{C7108917-B7D5-4430-8545-9BEA0AB35FF6}" = dir=out | name=microsoft solitaire collection |
"{C7B2072B-D969-4B2E-884C-0C1CCB5F6007}" = protocol=6 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\tbservice.exe |
"{C95099CC-C430-4927-AB78-B8F4C304BC0F}" = dir=out | name=@{microsoft.bingsports_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{CF504D59-3DEE-45DE-9429-BD3273C39D34}" = dir=out | name=windows_ie_ac_001 |
"{CF59A850-DB19-4A16-8B31-284677C231E6}" = dir=out | app=b:\program files (x86)\apowersoft\apowersoft screen recorder pro 2\apowersoft screen recorder pro 2.exe |
"{D085A760-E0F4-451E-8C94-83F79E866D45}" = dir=out | name=@{microsoft.3dbuilder_10.10.38.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{D4232D00-D43D-4FB7-AFB8-28E88F20566D}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{D5D01378-BC15-4646-9C74-198201929282}" = dir=in | name=@{microsoft.windows.photos_16.325.12390.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{DB24C9E1-34BC-4EE4-B59B-2B424B7A33DE}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DC14299A-F2A7-4991-BAC3-1DC1DAF80F1F}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{DC195771-2E98-4A09-AE47-116C1B1ECABD}" = protocol=17 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\todobackupservice.exe |
"{DFEFA74A-A1BC-460B-B4B6-9183C0358AE3}" = dir=in | name=@{microsoft.windowsstore_11602.1.26.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{E28D33B0-A417-4889-BFE0-A044C4041B85}" = dir=out | name=xbox |
"{E5E1AA8D-3517-422B-B461-5E4456B7A729}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{E82690F0-DDD3-4A03-90DC-0D17559F06C5}" = dir=out | name=@{microsoft.getstarted_3.5.11.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{EA8F8381-E109-43D5-93F3-929998BE9C34}" = dir=in | name=@{microsoft.messaging_2.15.20002.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/microsoft.apps.messaging.skype/skypemessaging.resources/skype_appstorename} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EE141574-8545-4CCD-AA71-38C337CA7426}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{EF7E40FC-60B5-4604-AB86-BE96CB6EEF5A}" = dir=in | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{F14AB8F5-CE03-4F29-8151-96DCE8FB5488}" = dir=out | name=@{microsoft.windowsphone_10.1602.3010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F7D5CFB7-5A9B-4A11-9976-FD0FB61631FB}" = dir=out | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{FA769169-ACBA-46DF-AE3A-918FED3D6BBE}" = protocol=17 | dir=in | app=c:\program files (x86)\easeus\todo backup\bin\todobackupservice.exe |
"{FFEAE0F3-A609-4259-950E-CCC0129627AF}" = dir=out | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0C1F2050-0107-0000-91D2-3F853B05CF68}" = RootPro CAD 7 Free
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6200_series" = Canon MG6200 series MP Drivers
"{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}" = CSR Harmony Wireless Software Stack
"{18DF567E-AA9B-434D-BE77-BFE2292712F6}" = RAPID Mode
"{1C105B2F-E38F-4CE4-97F7-D5F9381AC85F}" = PCMark 8
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21E47F47-C9A7-4454-BA48-388327B0EA00}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{51B5A084-A40D-4F4B-90AA-EF8354EA7D96}" = Killer Network Manager
"{55398EAC-F58E-4F19-B553-BDF8B9EFD839}" = Intel(R) Chipset Device Software
"{5B7A2B7B-CEA9-4E50-B0E4-E82F204CBE78}" = Killer Bandwidth Control Filter Driver
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7116875E-F251-4C33-AB3F-37DE05B15595}_is1" = MSI DragonEye
"{77C95134-CA2D-4614-9C86-55B7A6A281AA}" = Killer E220x Drivers
"{7D84E343-A23D-451C-B123-0195B2D903A6}" = Intel® Trusted Connect Service Client
"{8213CE5C-49D8-45CC-98C1-7355D18995C5}_is1" = Disk Master Free version 3.6
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1" = MSI Kombustor 3.5.2.1 (64-bit)
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A4F25B0E-C0F2-4CA6-A481-AC123A0B4D85}" = 3DMark
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision ドライバー 364.72
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA コントロールパネル 364.72
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA グラフィックスドライバー 364.72
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.11.2.55
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision コントローラードライバー 364.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 2.11.2.55
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX システムソフトウェア 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.11.2.55
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.11.2.55
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.37
"{BFACB3F5-7091-429E-A6A9-59C0696B710E}" = Intel(R) Management Engine Components
"{CCCB484E-79D5-4398-9377-CA6EEB6B53AE}" = Intel(R) Management Engine Components
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D25743FE-FD3B-482A-8419-14F349D17308}" = Google 日本語入力
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{DF17C0DB-76D8-4A45-B26E-674F8455B803}" = Intel(R) ME UninstallLegacy
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.76
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.28
"CPUID PerfMonitor2_is1" = CPUID PerfMonitor 2.04
"CrystalDiskMark5_is1" = CrystalDiskMark 5.1.2
"HWiNFO64_is1" = HWiNFO64 Version 5.24
"Steam App 340170" = FINAL FANTASY TYPE-0 HD
"VulkanRT1.0.3.0" = Vulkan Run Time Libraries 1.0.3.0
"VulkanRT1.0.5.1" = Vulkan Run Time Libraries 1.0.5.1
"ZonerPhotoStudio17_JP_is1" = Zoner Photo Studio 17

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1" = MSI Fast Boot
"{12d6e0d7-21d5-4755-9da2-70352c6f7558}" = 3DMark
"{13743594-F75E-491E-9EFF-203C8F8DF705}" = RealDownloader
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{17528CE4-C333-48FB-A9E4-D841E795CDCE}" = Renesas Electronics USB 3.0 Host Controller Driver
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19687AD5-7E54-4C5E-A796-125C95079C1D}" = Adobe AIR
"{1E55202F-4D31-498A-8F72-97DCBA9F2866}_is1" = MSI ECO Center
"{1EBB91B3-B277-3438-6125-C1C0281E02C7}" = Media Go Video Playback Engine 2.20.102.05220
"{223469C7-3B3F-4D18-AB4A-4F4B298D0DB2}" = x-APPLICATION Components
"{2267B034-BB59-4653-A84D-D3C3C2699AB4}" = MSI(R) Intel(R) Extreme Tuning Utility
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1" = Samsung Magician
"{30FB1713-B78C-4FD1-A65A-EA78E20E0137}" = x-アプリ
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee WebAdvisor
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3FD0C489-0F02-481a-A3E1-9754CD396761}" = Intelｮ Watchdog Timer Driver (Intelｮ WDT)
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{482c7431-75e2-4124-a453-6a294cd2c6a4}" = MSI(R) Intel(R) Extreme Tuning Utility
"{48D18738-099C-4FAA-AFD9-80B592A25478}" = RealDownloader
"{4B230374-6475-4A73-BA6E-41015E9C5013}" = Intel® Security Assist
"{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1" = MSI Live Update 6
"{5052D282-C9AE-48CC-A9F5-17058BEEAA50}" = Futuremark SystemInfo
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65256C0D-3FE7-4D2E-BB3E-53F1175481C8}" = Media Go
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71B53BA8-4BE3-49AF-BC3E-07F392008788}" = ASUS Xonar Essence STX Audio
"{75c02118-61df-4a00-b4ae-8a8f2ab354b3}" = RealDownloader
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1" = MSI Super Charger
"{80157B54-DB3E-4EE9-8AD8-63A905765FF4}_is1" = Opti Drive Control 1.70
"{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1" = MSI Command Center
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{AD8E7B8B-EAD8-4B9F-882E-7970ABFACE34}_is1" = Transcend SSD Scope バージョン 3.2.0
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}" = Sound Blaster Cinema 2
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C52148B9-19E0-433A-9422-3451B1BEE20F}" = Media Go Network Downloader
"{c7f54569-0018-439c-809a-48046a4d4ebc}" = インテル® チップセットデバイスソフトウェア
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1" = Leawo Blu-ray Player version 1.9.2.3
"{D7269C20-B3CE-4CD0-8E88-3D307D3BD41A}" = Google Drive
"{D7BEC6E9-5E86-44FF-AA21-23DA71ED676B}" = XSplit Gamecaster
"{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1" = MSI Gaming APP
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{E51AAC3A-D66D-4912-B883-DAFBA249D10F}" = MemTweakIt
"{E60AFF01-6087-47BD-8272-61FA3CFC309D}" = Video Downloader
"{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}" = Killer Performance Suite
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F241EC95-C81A-466E-8006-6B0B364B07A0}" = PCMark Vantage
"{F2DCAA9D-BEFB-4ABD-921F-B361E26AC51E}" = Sony Media Library Earth 9.3.01
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{ffbe2963-bbe7-49f1-9c32-6fe7e17e5200}" = PCMark 8
"3FD0C489-0F02-481a-A3E1-9754CD396761" = Intelｮ Watchdog Timer Driver (Intelｮ WDT)
"553E35CD-0415-41bc-B39A-410375E88534" = ACPI Driver Installer
"Adobe AIR" = Adobe AIR
"Afterburner" = MSI Afterburner 4.1.1
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.8.1
"EaseUS Partition Master_is1" = EaseUS Partition Master 10.8
"EaseUS Todo Backup_is1" = EaseUS Todo Backup Free 9.0
"foobar2000" = foobar2000 v1.3.9
"Google Chrome" = Google Chrome
"InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{30FB1713-B78C-4FD1-A65A-EA78E20E0137}" = x-アプリ 6.0.03
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{F2DCAA9D-BEFB-4ABD-921F-B361E26AC51E}" = Sony Media Library Earth 9.3.01
"MagniDriver" = marvell 91xx driver
"MakeMKV" = MakeMKV v1.9.9
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware バージョン 2.2.1.1043
"Mozilla Thunderbird 45.0 (x86 ja)" = Mozilla Thunderbird 45.0 (x86 ja)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSC" = マカフィーインターネットセキュリティ
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OCCT" = OCCT 4.4.1
"oki_clock" = oki_clock
"OpenAL" = OpenAL
"RTSS" = RivaTuner Statistics Server 6.3.0
"Steam" = Steam
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2016/04/29 17:16:28 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc0000005 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0xe08 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c6496dde6 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: 5a28abf3-630c-452a-b167-c4298ca86ce3
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:16:30 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc000041d 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0xe08 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c6496dde6 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: 7792d52e-3768-4893-8aa7-9fb55e23ea9d
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:16:40 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc0000005 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0x2aa0 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c6bf39832 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: 3a15aaec-4fd2-4be8-9e7f-c9842796cc66
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:16:41 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc000041d 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0x2aa0 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c6bf39832 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: 9ebd2819-644e-4309-bfe3-f40ac5d7d2eb
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:16:53 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc0000005 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0x26b4 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c73cf91a0 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: 2bd6e5a6-de06-491d-9efd-b7322d49888e
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:16:54 | Computer Name = HOTTA-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233
障害が発生しているモジュール名:
SATAModeTool.exe、バージョン: 0.3.0.3、タイムスタンプ: 0x52245233 例外コード: 0xc000041d 障害オフセット: 0x00042f4e
障害が発生しているプロセス
ID: 0x26b4 障害が発生しているアプリケーションの開始時刻: 0x01d1a25c73cf91a0 障害が発生しているアプリケーションパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe 障害が発生しているモジュールパス: B:\Users\Shunichi
Hotta\Downloads\satamodetool03_3\SATAModeTool.exe レポート ID: f332b8fa-56ca-42e8-9d92-52f6fbb0c22d
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/04/29 17:32:51 | Computer Name = HOTTA-PC | Source = Perflib | ID = 1008
Description =

Error - 2016/05/01 3:45:39 | Computer Name = HOTTA-PC | Source = Perflib | ID = 1023
Description =

Error - 2016/05/01 3:58:30 | Computer Name = HOTTA-PC | Source = Perflib | ID = 1008
Description =

Error - 2016/05/01 10:49:05 | Computer Name = HOTTA-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = 暗号化サービスで、システムライターオブジェクトで OnIdentity() の呼び出しを処理中にエラーが発生しました。 Details:
AddLegacyDriverFiles:
Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System
Error: アクセスが拒否されました。。

[ System Events ]
Error - 2016/05/01 6:10:18 | Computer Name = HOTTA-PC | Source = Service Control Manager | ID = 7031
Description = User Data Access_8e47b サービスは予期せぬ原因により終了しました。このサービスの終了は 1 回目です。次の修正操作が
10000 ミリ秒以内に実行されます: サービスの再開。

Error - 2016/05/01 6:10:42 | Computer Name = HOTTA-PC | Source = Service Control Manager | ID = 7043
Description = CSR Bluetoothオーディオサービスサービスは、プレシャットダウンコントロールを受け取った後に正しくシャットダウンされませんでした。

Error - 2016/05/01 10:08:55 | Computer Name = HOTTA-PC | Source = Microsoft-Windows-Ntfs | ID = 98
Description =

Error - 2016/05/01 10:10:04 | Computer Name = HOTTA-PC | Source = volsnap | ID = 393239
Description = ボリューム C: のシャドウコピーを作成するために必要なディスク領域がボリューム \\?\Volume{56cc6e11-0000-0000-0000-701c3a000000}
にありませんでした。シャドウコピーの記憶域を作成できませんでした。

Error - 2016/05/01 10:10:04 | Computer Name = HOTTA-PC | Source = Ntfs | ID = 55
Description = ボリューム C: のファイルシステム構造で破損が検出されました。マスターファイルテーブル (MFT) に破損したファイルレコードがあります。ファイル参照番号は
0x200000003b68a です。ファイルの名前は "\Users\Shunichi Hotta\AppData\Local\Google\Drive\user_default\sync_log.log"
です。

Error - 2016/05/01 10:14:24 | Computer Name = HOTTA-PC | Source = DCOM | ID = 10016
Description =

Error - 2016/05/01 10:14:24 | Computer Name = HOTTA-PC | Source = DCOM | ID = 10016
Description =

Error - 2016/05/01 10:14:24 | Computer Name = HOTTA-PC | Source = DCOM | ID = 10016
Description =

Error - 2016/05/01 10:14:24 | Computer Name = HOTTA-PC | Source = DCOM | ID = 10016
Description =

Error - 2016/05/01 10:49:10 | Computer Name = HOTTA-PC | Source = Microsoft-Windows-Ntfs | ID = 98
Description =

< End of report >
10：hotty14 :
2016/05/02 (Mon) 00:09:39: …続き

・OTL.txt

OTL logfile created on: 2016/05/01 23:47:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Shunichi Hotta\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

31.94 Gb Total Physical Memory | 28.20 Gb Available Physical Memory | 88.30% Memory free
36.69 Gb Paging File | 32.69 Gb Available in Paging File | 89.10% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.44 Gb Total Space | 157.04 Gb Free Space | 67.56% Space Free | Partition Type: NTFS
Drive K: | 2794.52 Gb Total Space | 2610.41 Gb Free Space | 93.41% Space Free | Partition Type: NTFS
Drive L: | 931.50 Gb Total Space | 582.65 Gb Free Space | 62.55% Space Free | Partition Type: NTFS
Drive Y: | 1.93 Gb Total Space | 1.89 Gb Free Space | 97.62% Space Free | Partition Type: NTFS

Computer Name: HOTTA-PC | User Name: Shunichi Hotta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2016/05/01 23:46:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Shunichi Hotta\Downloads\OTL.exe
PRC - [2016/04/27 03:19:47 | 000,554,176 | ---- | M] (Microsoft Corporation) -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2016/04/25 22:22:00 | 023,484,296 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2016/04/20 15:17:50 | 011,197,904 | ---- | M] (Micro-Star Int'l Co., Ltd.) -- C:\Program Files (x86)\MSI\Gaming APP\GamingApp.exe
PRC - [2016/04/19 16:31:15 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
PRC - [2016/03/30 10:28:57 | 002,396,096 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2016/03/30 10:26:00 | 001,879,488 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2016/03/22 10:57:28 | 000,424,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2016/03/17 11:52:52 | 001,027,024 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
PRC - [2016/03/17 09:39:04 | 001,794,000 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
PRC - [2016/03/16 10:17:16 | 011,336,656 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Live Update\Live Update.exe
PRC - [2016/03/15 16:14:48 | 000,031,696 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MSIOSD_x86.exe
PRC - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2016/03/10 14:07:20 | 009,926,112 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2016/02/22 09:52:00 | 002,312,144 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
PRC - [2016/02/16 13:27:14 | 002,013,648 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
PRC - [2016/02/12 14:53:12 | 002,068,480 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe
PRC - [2016/02/12 14:33:25 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
PRC - [2016/02/11 17:37:25 | 000,252,232 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
PRC - [2016/02/03 18:49:28 | 000,032,544 | ---- | M] () -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2016/01/07 20:46:52 | 006,174,816 | ---- | M] (Samsung Electronics.) -- C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
PRC - [2015/12/30 11:00:44 | 055,175,056 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaConverter.exe
PRC - [2015/12/30 11:00:42 | 001,378,192 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaRenderer.exe
PRC - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
PRC - [2015/12/10 06:14:28 | 000,249,384 | ---- | M] () -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
PRC - [2015/12/10 06:14:26 | 000,036,904 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
PRC - [2015/10/16 15:51:22 | 002,019,792 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
PRC - [2015/09/29 18:48:50 | 000,563,416 | ---- | M] (ZONER software) -- B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
PRC - [2015/08/18 09:51:36 | 001,692,840 | ---- | M] (MSI) -- C:\Windows\SysWOW64\muachost.exe
PRC - [2015/07/10 23:40:08 | 000,223,520 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2015/07/10 23:38:00 | 000,415,520 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2015/07/07 17:25:52 | 000,019,216 | ---- | M] (Intel(R) Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
PRC - [2015/06/04 11:54:34 | 000,105,296 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
PRC - [2015/05/19 09:11:00 | 000,335,872 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
PRC - [2015/05/18 15:15:04 | 000,163,280 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
PRC - [2015/03/27 16:04:46 | 002,266,280 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
PRC - [2014/06/24 15:12:22 | 000,171,480 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
PRC - [2011/09/20 09:17:44 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
PRC - [2011/01/15 16:48:44 | 000,452,016 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
PRC - [2010/04/27 10:09:52 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2016/05/01 23:10:01 | 001,208,320 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_ssl.pyd
MOD - [2016/05/01 23:10:01 | 001,176,576 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._core_.pyd
MOD - [2016/05/01 23:10:01 | 001,067,008 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._controls_.pyd
MOD - [2016/05/01 23:10:01 | 000,816,128 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._windows_.pyd
MOD - [2016/05/01 23:10:01 | 000,806,400 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._gdi_.pyd
MOD - [2016/05/01 23:10:01 | 000,776,704 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_hashlib.pyd
MOD - [2016/05/01 23:10:01 | 000,733,184 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._misc_.pyd
MOD - [2016/05/01 23:10:01 | 000,686,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\unicodedata.pyd
MOD - [2016/05/01 23:10:01 | 000,682,496 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pysqlite2._sqlite.pyd
MOD - [2016/05/01 23:10:01 | 000,525,208 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\windows._lib_cacheinvalidation.pyd
MOD - [2016/05/01 23:10:01 | 000,364,544 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pythoncom27.dll
MOD - [2016/05/01 23:10:01 | 000,320,512 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32com.shell.shell.pyd
MOD - [2016/05/01 23:10:01 | 000,167,936 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32gui.pyd
MOD - [2016/05/01 23:10:01 | 000,128,512 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_elementtree.pyd
MOD - [2016/05/01 23:10:01 | 000,127,488 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pyexpat.pyd
MOD - [2016/05/01 23:10:01 | 000,123,392 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._wizard.pyd
MOD - [2016/05/01 23:10:01 | 000,119,808 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32file.pyd
MOD - [2016/05/01 23:10:01 | 000,110,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pywintypes27.dll
MOD - [2016/05/01 23:10:01 | 000,108,544 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32security.pyd
MOD - [2016/05/01 23:10:01 | 000,098,816 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32api.pyd
MOD - [2016/05/01 23:10:01 | 000,088,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\usb_ext.pyd
MOD - [2016/05/01 23:10:01 | 000,088,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_ctypes.pyd
MOD - [2016/05/01 23:10:01 | 000,078,848 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._animate.pyd
MOD - [2016/05/01 23:10:01 | 000,077,312 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._html2.pyd
MOD - [2016/05/01 23:10:01 | 000,046,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_socket.pyd
MOD - [2016/05/01 23:10:01 | 000,038,912 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32inet.pyd
MOD - [2016/05/01 23:10:01 | 000,036,864 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_psutil_windows.pyd
MOD - [2016/05/01 23:10:01 | 000,035,840 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32process.pyd
MOD - [2016/05/01 23:10:01 | 000,027,136 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_multiprocessing.pyd
MOD - [2016/05/01 23:10:01 | 000,025,600 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32pdh.pyd
MOD - [2016/05/01 23:10:01 | 000,024,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32pipe.pyd
MOD - [2016/05/01 23:10:01 | 000,022,528 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32ts.pyd
MOD - [2016/05/01 23:10:01 | 000,020,480 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_yappi.pyd
MOD - [2016/05/01 23:10:01 | 000,018,432 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32event.pyd
MOD - [2016/05/01 23:10:01 | 000,017,920 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\thumbnails_ext.pyd
MOD - [2016/05/01 23:10:01 | 000,017,408 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32profile.pyd
MOD - [2016/05/01 23:10:01 | 000,012,288 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\common.time34.pyd
MOD - [2016/05/01 23:10:01 | 000,011,264 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32crypt.pyd
MOD - [2016/05/01 23:10:01 | 000,010,240 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\select.pyd
MOD - [2016/05/01 23:10:01 | 000,007,168 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\hashobjs_ext.pyd
MOD - [2016/04/27 03:19:46 | 000,679,624 | ---- | M] () -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll
MOD - [2016/04/19 16:31:15 | 022,284,800 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
MOD - [2016/04/19 16:31:15 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
MOD - [2016/04/19 16:31:15 | 000,141,312 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
MOD - [2016/04/17 16:21:30 | 000,184,832 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\78b15a8cabb9a9de331bb311814b79ea\UIAutomationTypes.ni.dll
MOD - [2016/04/17 16:21:11 | 012,940,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\c0d92222c705835bffa2f4ec804d491b\System.Windows.Forms.ni.dll
MOD - [2016/04/17 16:21:05 | 001,624,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\562e673887ea3a14ccbe0cb911ff32df\System.Drawing.ni.dll
MOD - [2016/04/17 16:20:52 | 001,150,976 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\844edff4abce1accd552b3a800976b2b\System.Management.ni.dll
MOD - [2016/04/16 15:45:59 | 007,378,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\21709e6e2d2b139a920a46d9caa86473\System.Xml.ni.dll
MOD - [2016/04/16 15:45:57 | 001,876,480 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\da69f2d0cab254ee15b8fbf55286111d\System.Xaml.ni.dll
MOD - [2016/04/16 15:45:54 | 000,970,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\206e48e6105b08574bb8e821ef9a6b4a\System.Configuration.ni.dll
MOD - [2016/04/16 15:45:54 | 000,527,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\52355744b3fdfdca37ba808ceff7beee\PresentationFramework.Aero2.ni.dll
MOD - [2016/04/16 15:45:53 | 019,076,608 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\6562ef16de0b9951d9ee834026fdc7a5\PresentationFramework.ni.dll
MOD - [2016/04/16 15:45:47 | 011,560,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\f23d9459e7fdce36221187ea675fc624\PresentationCore.ni.dll
MOD - [2016/04/16 15:45:43 | 003,975,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\c98bae6a53cf6b2bc173eb3db974af06\WindowsBase.ni.dll
MOD - [2016/04/16 15:45:41 | 007,498,240 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\13a04e6416bbbaaca12da6cbcad76c68\System.Core.ni.dll
MOD - [2016/04/16 15:45:38 | 009,983,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\53659adf088ea34465ba7148e260c847\System.ni.dll
MOD - [2016/03/30 10:28:53 | 000,018,880 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2016/03/24 11:20:50 | 018,127,536 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\599e1e123d8890a906c66fa63ba868bd\mscorlib.ni.dll
MOD - [2016/03/15 16:14:48 | 000,031,696 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MSIOSD_x86.exe
MOD - [2016/02/12 14:33:25 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
MOD - [2016/02/12 14:29:55 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
MOD - [2016/01/07 20:45:52 | 000,021,600 | ---- | M] () -- C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
MOD - [2015/08/13 09:18:40 | 000,789,456 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\Lib\DeviceManagerDLL.dll
MOD - [2014/09/09 13:30:14 | 000,603,648 | ---- | M] () -- B:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/04/02 12:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2016/04/02 12:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2016/04/02 12:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2016/03/30 10:25:26 | 001,163,200 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2016/03/30 10:22:13 | 002,521,024 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2016/03/30 10:22:08 | 003,632,576 | ---- | M] (NVIDIA Corporation) [On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe -- (NvStreamNetworkSvc)
SRV:[b]64bit:[/b] - [2016/03/29 16:51:06 | 000,087,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2016/03/29 16:50:15 | 000,066,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2016/03/29 16:38:23 | 000,207,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2016/03/29 16:27:45 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2016/03/29 16:20:21 | 000,948,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2016/03/29 16:13:03 | 000,587,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2016/03/29 15:32:15 | 001,098,240 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2016/03/29 14:45:48 | 000,338,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2016/02/24 18:34:50 | 001,613,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2016/02/24 18:28:35 | 003,449,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2016/02/24 17:43:01 | 000,625,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2016/02/24 16:19:10 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2016/02/24 16:07:53 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:59:32 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:40:53 | 001,224,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:18:37 | 001,490,432 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2016/02/23 19:43:04 | 001,696,712 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe -- (mccspsvc)
SRV:[b]64bit:[/b] - [2016/02/23 18:20:41 | 001,139,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2016/02/23 18:17:08 | 000,649,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2016/02/23 17:29:35 | 000,591,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2016/02/23 17:28:32 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/02/23 17:20:42 | 000,847,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2016/02/23 17:20:36 | 000,606,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2016/02/23 16:58:02 | 000,163,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2016/01/28 15:54:40 | 000,454,872 | ---- | M] (Rivet Networks) [Auto | Running] -- C:\Program Files\Killer Networking\Network Manager\KillerService.exe -- (Killer Service V2)
SRV:[b]64bit:[/b] - [2016/01/16 14:24:56 | 002,057,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2016/01/05 10:49:33 | 000,749,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2016/01/05 10:43:47 | 000,912,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2015/12/07 13:15:40 | 001,035,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2015/12/03 15:15:48 | 000,863,448 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\McAPExe.exe -- (McAPExe)
SRV:[b]64bit:[/b] - [2015/11/13 14:58:04 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:[b]64bit:[/b] - [2015/10/31 03:23:44 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:28 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:26 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:26 | 000,497,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:46 | 000,168,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:43 | 001,872,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:41 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:19 | 001,297,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:18 | 000,729,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:14 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 002,745,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:58 | 000,764,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:58 | 000,287,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:54 | 000,360,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:50 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:48 | 000,444,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:48 | 000,205,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:47 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,290,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:45 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,278,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,380,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,364,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2015/10/21 10:28:42 | 000,378,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe -- (mfemms)
SRV:[b]64bit:[/b] - [2015/10/20 18:13:26 | 000,679,120 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:[b]64bit:[/b] - [2015/09/21 13:33:34 | 000,256,840 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2015/09/21 13:31:26 | 000,233,680 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2015/09/04 12:08:02 | 000,028,256 | ---- | M] (Samsung Electronics Co., Ltd.) [Auto | Running] -- C:\Windows\SysNative\RAPID\SamsungRapidSvc.exe -- (SamsungRapidSvc)
SRV:[b]64bit:[/b] - [2015/05/22 01:24:00 | 000,881,152 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:28 | 000,825,032 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe -- (CsrBtService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:16 | 001,041,616 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe -- (CsrBtOBEXService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:08 | 000,465,624 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe -- (CSRBtAudioService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:00 | 000,064,216 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe -- (BtSwitcherService)
SRV - [2016/04/28 01:17:26 | 000,147,400 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016/04/20 12:43:02 | 000,163,592 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - [2016/04/13 09:23:14 | 000,342,456 | ---- | M] (Futuremark) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2016/04/01 05:55:12 | 000,835,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2016/03/30 10:26:00 | 001,879,488 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2016/03/23 03:26:42 | 000,131,256 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe -- (SonicStage Back-End Service2)
SRV - [2016/03/22 10:57:28 | 000,424,384 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2016/03/17 09:39:04 | 001,794,000 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe -- (MSI_LiveUpdate_Service)
SRV - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) [Auto | Running] -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) [Auto | Running] -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2016/03/10 02:06:54 | 000,173,920 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2016/02/24 15:07:45 | 000,949,248 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2016/02/22 09:52:00 | 002,312,144 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe -- (MSIDDR_CC)
SRV - [2016/02/16 13:27:14 | 002,013,648 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe -- (MSICTL_CC)
SRV - [2016/02/04 18:01:02 | 002,073,040 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe -- (MSISMB_CC)
SRV - [2016/02/04 18:00:56 | 004,162,512 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe -- (MSICPU_CC)
SRV - [2016/02/04 18:00:50 | 004,162,512 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe -- (MSIClock_CC)
SRV - [2016/02/03 18:49:28 | 000,032,544 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2016/02/01 11:06:42 | 000,596,944 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe -- (MSISuperIO_CC)
SRV - [2016/02/01 11:06:34 | 002,200,872 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\MSICommService.exe -- (MSICOMM_CC)
SRV - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) [Auto | Running] -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe -- (GoogleIMEJaCacheService)
SRV - [2015/12/23 13:53:16 | 000,066,176 | ---- | M] (QILING Tech Co., Ltd.) [Auto | Running] -- B:\Program Files\QILING\Disk Master\Agent.exe -- (FrAgent)
SRV - [2015/12/16 13:51:44 | 000,037,328 | ---- | M] (Micro-Star Int'l Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe -- (GamingApp_Service)
SRV - [2015/12/10 06:14:26 | 000,036,904 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Auto | Running] -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe -- (EaseUS Agent)
SRV - [2015/10/30 16:18:31 | 002,179,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2015/10/30 16:18:31 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\lfsvc.dll -- (lfsvc)
SRV - [2015/10/30 16:18:29 | 000,461,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2015/10/30 16:18:23 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2015/10/30 16:18:21 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2015/10/30 16:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2015/10/16 15:51:22 | 002,019,792 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe -- (GamingHotkey_Service)
SRV - [2015/07/10 23:40:08 | 000,223,520 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2015/07/10 23:38:00 | 000,415,520 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2015/07/07 17:25:52 | 000,019,216 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe -- (XTU3SERVICE)
SRV - [2015/06/04 11:54:34 | 000,105,296 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe -- (MSI_FastBoot)
SRV - [2015/05/19 09:11:04 | 000,007,680 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe -- (isaHelperSvc)
SRV - [2015/05/19 09:11:00 | 000,335,872 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe -- (Intel(R)
SRV - [2015/05/18 15:15:04 | 000,163,280 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe -- (MSI_SuperCharger)
SRV - [2015/03/27 16:04:46 | 002,266,280 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe -- (MSI_ECOSERVICE)
SRV - [2014/06/24 15:12:22 | 000,171,480 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2016/05/01 23:09:22 | 000,192,216 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2016/03/30 10:22:03 | 000,026,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2016/03/29 19:23:38 | 000,277,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2016/03/29 18:25:13 | 000,258,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2016/03/29 17:21:40 | 000,378,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2016/03/29 17:16:55 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2016/03/29 16:49:53 | 000,245,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2016/03/29 16:23:41 | 000,694,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2016/03/22 05:01:36 | 000,056,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2016/03/21 12:44:04 | 000,057,648 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:[b]64bit:[/b] - [2016/03/10 14:09:10 | 000,065,408 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2016/03/10 14:08:54 | 000,027,008 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2016/02/23 18:25:27 | 000,534,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2016/02/23 18:20:35 | 000,238,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2016/02/14 18:05:17 | 000,027,552 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV:[b]64bit:[/b] - [2016/02/12 14:30:02 | 002,735,616 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp)
DRV:[b]64bit:[/b] - [2016/01/29 10:12:46 | 000,041,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:[b]64bit:[/b] - [2016/01/22 19:10:00 | 000,144,456 | ---- | M] (Rivet Networks, LLC.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bwcW10x64.sys -- (BfLwf)
DRV:[b]64bit:[/b] - [2016/01/19 22:50:38 | 000,202,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2016/01/16 14:46:08 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2015/12/23 13:52:48 | 000,042,112 | ---- | M] (QILING Tech Co., Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\diskbckp.sys -- (diskbckp)
DRV:[b]64bit:[/b] - [2015/12/23 13:52:36 | 000,252,544 | ---- | M] (QILING Tech Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vDisk.sys -- (vDisk)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,192,552 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EuFdDisk.sys -- (EUFDDISK)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,060,968 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\eubakup.sys -- (EUBAKUP)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,048,168 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EUBKMON.sys -- (EUBKMON)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,018,472 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\eudskacs.sys -- (EUDSKACS)
DRV:[b]64bit:[/b] - [2015/11/22 19:33:26 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2015/11/22 18:54:39 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2015/11/10 02:48:24 | 000,214,168 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2015/10/31 03:23:56 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2015/10/31 03:23:44 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2015/10/30 16:19:39 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:42 | 000,052,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:09 | 000,930,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:09 | 000,385,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:08 | 000,218,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,200,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,078,848 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ioqos.sys -- (IoQos)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,154,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:57 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,074,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:50 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:42 | 000,126,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:42 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,293,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,209,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,099,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,087,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:26 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,532,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,055,808 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,034,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.
11：hotty14 :
2016/05/02 (Mon) 00:11:41: …続き

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/04/30 00:03:52 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016/04/30 00:03:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2016/04/30 00:03:26 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2016/04/30 00:03:26 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2016/04/30 00:03:26 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2016/04/30 00:03:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2016/04/29 03:44:05 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2016/04/28 01:21:45 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Geek Uninstaller
[2016/04/28 01:17:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2016/04/27 16:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\MSI
[2016/04/27 16:54:02 | 000,041,760 | ---- | C] (FINTEK Corp.) -- C:\WINDOWS\SysNative\drivers\I2cHkBurn.sys
[2016/04/27 16:54:02 | 000,031,520 | ---- | C] (TODO: <公司名稱>) -- C:\WINDOWS\SysNative\FintekIcon1.dll
[2016/04/27 05:21:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/04/27 05:21:06 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016/04/27 05:05:54 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2016/04/17 16:53:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark
[2016/04/14 07:39:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appmgmt
[2016/04/14 07:00:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CSR
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\gl-ES
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\eu-ES
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\es-cl
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\ca-ES
[2016/04/14 06:59:59 | 000,000,000 | ---D | C] -- C:\Program Files\CSR
[2016/04/14 06:15:33 | 000,000,000 | ---D | C] -- C:\BluetoothExchangeFolder
[2016/04/14 05:46:33 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\MotioninJoy
[2016/04/14 05:45:48 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\BetterDS3
[2016/04/14 05:41:05 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Nico Mak Computing
[2016/04/14 05:41:04 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2016/04/14 05:40:42 | 000,000,000 | ---D | C] -- C:\ProgramData\UniqueId
[2016/04/14 05:10:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll
[2016/04/14 05:10:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll
[2016/04/14 05:10:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll
[2016/04/14 05:10:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll
[2016/04/14 05:10:24 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll
[2016/04/14 05:08:51 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\SquareEnix
[2016/04/14 04:01:53 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Steam
[2016/04/14 04:01:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2016/04/14 04:01:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2016/04/13 17:16:39 | 000,109,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvaudcap64v.dll
[2016/04/13 17:16:39 | 000,100,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvaudcap32v.dll
[2016/04/13 17:12:16 | 018,673,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016/04/13 17:12:16 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016/04/13 17:12:15 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016/04/13 17:12:15 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016/04/13 17:12:15 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016/04/13 17:12:14 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016/04/13 17:12:14 | 000,541,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016/04/13 17:12:14 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2016/04/13 17:12:14 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016/04/13 17:12:13 | 022,378,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016/04/13 17:12:13 | 007,474,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016/04/13 17:12:13 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016/04/13 17:12:12 | 003,592,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016/04/13 17:12:12 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016/04/13 17:12:12 | 001,388,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016/04/13 17:12:09 | 000,965,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2016/04/13 17:12:09 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2016/04/13 17:12:08 | 016,985,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016/04/13 17:12:08 | 013,018,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016/04/13 17:12:08 | 001,714,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2016/04/13 17:12:08 | 001,444,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2016/04/13 17:12:07 | 011,545,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016/04/13 17:12:07 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016/04/13 17:12:07 | 007,836,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016/04/13 17:12:07 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016/04/13 17:12:07 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016/04/13 17:12:07 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2016/04/13 17:12:07 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2016/04/13 17:12:07 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2016/04/13 17:12:06 | 005,662,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016/04/13 17:12:06 | 003,994,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/13 17:12:06 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016/04/13 17:12:05 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016/04/13 17:12:05 | 002,798,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016/04/13 17:12:05 | 000,948,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2016/04/13 17:12:04 | 001,946,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016/04/13 17:12:04 | 001,390,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016/04/13 17:12:04 | 001,297,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016/04/13 17:12:04 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016/04/13 17:06:40 | 001,832,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/13 17:06:40 | 000,986,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016/04/13 17:06:39 | 003,575,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/13 17:06:39 | 001,626,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016/04/13 17:06:39 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2016/04/13 17:06:38 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016/04/13 17:06:38 | 003,078,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016/04/13 17:06:38 | 002,722,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016/04/13 17:06:38 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2016/04/13 17:06:38 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016/04/13 17:06:38 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/13 17:06:38 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016/04/13 17:06:38 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016/04/13 17:06:38 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016/04/13 17:06:38 | 000,696,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016/04/13 17:06:38 | 000,649,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016/04/13 17:06:38 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll
[2016/04/13 17:06:37 | 002,158,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/13 17:06:37 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016/04/13 17:06:37 | 001,317,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016/04/13 17:06:37 | 001,211,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016/04/13 17:06:37 | 001,141,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016/04/13 17:06:37 | 001,090,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/13 17:06:37 | 001,072,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016/04/13 17:06:37 | 001,030,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016/04/13 17:06:37 | 000,989,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2016/04/13 17:06:37 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016/04/13 17:06:37 | 000,958,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016/04/13 17:06:37 | 000,874,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016/04/13 17:06:37 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016/04/13 17:06:37 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016/04/13 17:06:37 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/13 17:06:37 | 000,587,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016/04/13 17:06:37 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016/04/13 17:06:37 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016/04/13 17:06:37 | 000,502,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016/04/13 17:06:37 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/13 17:06:37 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2016/04/13 17:06:37 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AccountsRt.dll
[2016/04/13 17:06:37 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2016/04/13 17:06:37 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016/04/13 17:06:37 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/13 17:06:37 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll
[2016/04/13 17:06:37 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2016/04/13 17:06:37 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2016/04/13 17:06:37 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2016/04/13 17:06:37 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2016/04/13 17:06:37 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2016/04/13 17:06:37 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2016/04/13 17:06:36 | 001,410,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016/04/13 17:06:36 | 001,239,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2016/04/13 17:06:36 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016/04/13 17:06:36 | 001,052,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2016/04/13 17:06:36 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016/04/13 17:06:36 | 000,821,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBroker.dll
[2016/04/13 17:06:36 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016/04/13 17:06:36 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016/04/13 17:06:36 | 000,730,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/13 17:06:36 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016/04/13 17:06:36 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016/04/13 17:06:36 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll
[2016/04/13 17:06:36 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncController.dll
[2016/04/13 17:06:36 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll
[2016/04/13 17:06:36 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll
[2016/04/13 17:06:36 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AccountsRt.dll
[2016/04/13 17:06:36 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll
[2016/04/13 17:06:36 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXTaskFactory.dll
[2016/04/13 17:06:36 | 000,300,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe
[2016/04/13 17:06:36 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016/04/13 17:06:36 | 000,253,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe
[2016/04/13 17:06:36 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016/04/13 17:06:36 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2016/04/13 17:06:36 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2016/04/13 17:06:35 | 003,351,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016/04/13 17:06:35 | 001,117,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016/04/13 17:06:35 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016/04/13 17:06:35 | 000,881,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2016/04/13 17:06:35 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2016/04/13 17:06:35 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2016/04/13 17:06:35 | 000,787,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016/04/13 17:06:35 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2016/04/13 17:06:35 | 000,770,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/13 17:06:35 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:06:35 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2016/04/13 17:06:35 | 000,694,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys
[2016/04/13 17:06:35 | 000,686,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2016/04/13 17:06:35 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2016/04/13 17:06:35 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016/04/13 17:06:35 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016/04/13 17:06:35 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016/04/13 17:06:35 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacc.dll
[2016/04/13 17:06:35 | 000,378,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2016/04/13 17:06:35 | 000,374,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/13 17:06:35 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncbservice.dll
[2016/04/13 17:06:35 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2016/04/13 17:06:35 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2016/04/13 17:06:35 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveui.dll
[2016/04/13 17:06:35 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016/04/13 17:06:35 | 000,261,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2016/04/13 17:06:35 | 000,258,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ufx01000.sys
[2016/04/13 17:06:35 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\accountaccessor.dll
[2016/04/13 17:06:35 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2016/04/13 17:06:35 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016/04/13 17:06:35 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AboveLockAppHost.dll
[2016/04/13 17:06:35 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2016/04/13 17:06:35 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msorcl32.dll
[2016/04/13 17:06:35 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2016/04/13 17:06:35 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Devices.dll
[2016/04/13 17:06:35 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AboveLockAppHost.dll
[2016/04/13 17:06:35 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/13 17:06:35 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2016/04/13 17:06:35 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016/04/13 17:06:35 | 000,110,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srvcli.dll
[2016/04/13 17:06:35 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Devices.dll
[2016/04/13 17:06:35 | 000,100,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmapi.dll
[2016/04/13 17:06:35 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2016/04/13 17:06:35 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2016/04/13 17:06:35 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016/04/13 17:06:35 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/13 17:06:35 | 000,081,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netapi32.dll
[2016/04/13 17:06:35 | 000,078,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wkscli.dll
[2016/04/13 17:06:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2016/04/13 17:06:35 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2016/04/13 17:06:35 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2016/04/13 17:06:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016/04/13 17:06:34 | 004,774,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/13 17:06:34 | 000,841,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016/04/13 17:06:34 | 000,821,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2016/04/13 17:06:34 | 000,686,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016/04/13 17:06:34 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016/04/13 17:06:34 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:06:34 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncController.dll
[2016/04/13 17:06:34 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2016/04/13 17:06:34 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:06:34 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvecpl.dll
[2016/04/13 17:06:34 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016/04/13 17:06:34 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/13 17:06:34 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/13 17:06:34 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:06:34 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthLEEnum.sys
[2016/04/13 17:06:34 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovhost.dll
[2016/04/13 17:06:34 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/13 17:06:34 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAFWSD.dll
[2016/04/13 17:06:34 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/13 17:06:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovhost.dll
[2016/04/13 17:06:34 | 000,185,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016/04/13 17:06:34 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2016/04/13 17:06:34 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/13 17:06:34 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2016/04/13 17:06:34 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcsps.dll
[2016/04/13 17:06:34 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2016/04/13 17:06:34 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016/04/13 17:06:34 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016/04/13 17:06:34 | 000,074,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2016/04/13 17:06:34 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2016/04/13 17:06:34 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016/04/13 17:06:34 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\basesrv.dll
[2016/04/13 17:06:34 | 000,058,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2016/04/13 17:06:34 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browcli.dll
[2016/04/13 17:06:34 | 000,051,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.dll
[2016/04/13 17:06:34 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\browcli.dll
[2016/04/13 17:06:34 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tbauth.dll
[2016/04/13 17:06:34 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll
[2016/04/13 17:06:34 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsdchngr.dll
[2016/04/13 17:06:34 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe
[2016/04/13 17:06:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsdchngr.dll
[2016/04/13 17:06:33 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016/04/13 17:06:33 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016/04/13 17:06:33 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016/04/13 17:06:33 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016/04/13 17:06:33 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016/04/13 17:06:33 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2016/04/13 17:06:33 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2016/04/13 17:06:33 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2016/04/13 17:06:33 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016/04/13 17:06:33 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016/04/13 17:06:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016/04/13 17:06:33 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxoci.dll
[2016/04/13 17:06:33 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2016/04/13 17:06:33 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxoci.dll
[2016/04/13 17:06:33 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FontProvider.dll
[2016/04/13 17:06:33 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2016/04/13 17:06:33 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2016/04/13 17:06:33 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2016/04/13 17:06:33 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2016/04/13 17:06:33 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016/04/13 17:06:33 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll
[2016/04/13 17:06:33 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetCfgNotifyObjectHost.exe
[2016/04/13 17:06:33 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2016/04/13 17:06:33 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OnDemandConnRouteHelper.dll
[2016/04/13 17:06:33 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016/04/13 17:06:33 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenterprisediagnostics.dll
[2016/04/13 17:06:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tbauth.dll
[2016/04/13 17:06:33 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2016/04/13 17:06:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBrokerCookies.exe
[2016/04/13 17:06:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBrokerCookies.exe
[2016/04/13 17:06:33 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacchooks.dll
[2016/04/13 17:06:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\oleacchooks.dll
[2016/04/13 17:06:03 | 000,110,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvStreaming.exe
[2016/04/13 03:26:59 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\RootPro
[2016/04/13 03:26:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RootPro CAD 7 Free
[2016/04/12 16:43:21 | 000,042,112 | ---- | C] (QILING Tech Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\diskbckp.sys
[2016/04/12 16:43:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Master Free
[2016/04/12 06:11:11 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\OCCT
[2016/04/11 06:40:41 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Intel Telemetry
[2016/04/11 06:40:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel Telemetry
[2016/04/11 06:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
[2016/04/11 06:33:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Killer
[2016/04/11 06:33:23 | 000,000,000 | ---D | C] -- C:\Program Files\Killer Networking
[2016/04/11 06:03:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Setup Files
[2016/04/11 05:54:05 | 001,692,840 | ---- | C] (MSI) -- C:\WINDOWS\SysWow64\muachost.exe
[2016/04/11 05:53:33 | 003,195,648 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2016/04/11 05:53:33 | 002,894,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2016/04/11 05:53:33 | 001,356,512 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2016/04/11 05:53:33 | 000,689,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2016/04/11 05:53:33 | 000,532,384 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll
[2016/04/11 05:53:33 | 000,387,320 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll
[2016/04/11 05:53:33 | 000,343,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtlCPAPI64.dll
[2016/04/11 05:53:33 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll
[2016/04/11 05:53:33 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll
[2016/04/11 05:53:33 | 000,221,968 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll
[2016/04/11 05:53:33 | 000,214,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll
[2016/04/11 05:53:33 | 000,209,544 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll
[2016/04/11 05:53:33 | 000,166,208 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll
[2016/04/11 05:53:33 | 000,110,992 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll
[2016/04/11 05:53:33 | 000,088,352 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll
[2016/04/11 05:53:32 | 002,050,184 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2016/04/11 05:53:32 | 002,036,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2016/04/11 05:53:32 | 001,743,632 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBAPO232.dll
[2016/04/11 05:53:32 | 000,410,040 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBWrp64.dll
[2016/04/11 05:53:32 | 000,330,568 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll
[2016/04/11 05:53:31 | 003,282,032 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2016/04/11 05:53:31 | 000,574,760 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2016/04/11 05:53:31 | 000,122,328 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2016/04/11 05:53:31 | 000,118,600 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAR64.dll
[2016/04/11 05:49:56 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Creative
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\SplitMediaLabs
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SplitmediaLabs
[2016/04/11 05:46:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI(R) Intel(R) Extreme Tuning Utility
[2016/04/11 05:46:22 | 000,000,000 | ---D | C] -- C:\uninstall
[2016/04/11 05:46:22 | 000,000,000 | ---D | C] -- C:\Intel
[2016/04/11 05:46:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2016/04/11 05:46:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2016/04/11 05:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2016/04/11 05:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2016/04/11 05:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2016/04/11 05:45:59 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2016/04/11 05:27:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PostureAgent
[2016/04/11 05:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2016/04/11 05:27:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2016/04/11 05:27:48 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Intel
[2016/04/11 05:27:16 | 000,090,112 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\Updreg.EXE
[2016/04/11 05:27:13 | 000,375,424 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\ChezSC64.DLL
[2016/04/11 05:27:13 | 000,327,296 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\ChezSC32.DLL
[2016/04/11 05:27:13 | 000,148,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBCfg64.exe
[2016/04/11 05:27:13 | 000,138,880 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBCfg32.exe
[2016/04/11 05:27:13 | 000,041,088 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBCfg64.dll
[2016/04/11 05:27:13 | 000,038,016 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBCfg32.dll
[2016/04/11 05:27:13 | 000,015,488 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\ResDefA.exe
[2016/04/11 05:27:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2016/04/11 05:26:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
[2016/04/11 05:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2016/04/11 05:23:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2016/04/11 05:23:02 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016/04/11 05:22:50 | 000,041,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\drivers\MBfilt64.sys
[2016/04/11 05:22:37 | 000,192,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCfg64.dll
[2016/04/11 05:22:37 | 000,023,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCoLDR64.dll
[2016/04/11 05:22:35 | 003,283,248 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2016/04/11 05:22:32 | 003,081,296 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RltkAPO64.dll
[2016/04/11 05:21:14 | 001,977,072 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBAPO264.dll
[2016/04/11 05:20:30 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2016/04/11 05:20:28 | 002,826,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2016/04/11 05:18:31 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2016/04/11 05:13:51 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Diagnostics
[2016/04/10 03:18:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
[2016/04/10 03:17:58 | 000,192,512 | ---- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\SysWow64\drivers\UpdateHelper.dll
[2016/04/10 03:17:52 | 000,028,672 | ---- | C] (ASUSTek Computer Inc.) -- C:\WINDOWS\SysWow64\AsIO.dll
[2016/04/10 03:17:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2016/04/10 03:17:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2016/04/10 01:12:24 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\My Games
[2016/04/09 02:19:15 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\CrashRpt
[2016/04/09 02:19:00 | 000,000,000 | ---D | C] -- C:\ProgramData\RapidSolution
[2016/04/09 02:17:47 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\RapidSolution
[2016/04/09 02:06:25 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\Apowersoft
[2016/04/09 02:06:20 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft
[2016/04/07 02:12:52 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Identities
[2016/04/07 01:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Futuremark
[2016/04/06 02:33:06 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\SUPER_PI
[2016/04/06 02:06:47 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\ Plexutilities
[2016/04/06 01:14:18 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\ElevatedDiagnostics
[2016/04/06 01:09:18 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\0U1E1Q1T2Z1P0S2Z1T1C
[2016/04/06 00:56:36 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\{6B3DE556-D264-34D5-533E-42B9AEECDE7C}
[2016/04/06 00:11:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x-アプリ
[2016/04/05 21:31:42 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\3DMark 11
[2016/04/04 02:42:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Disk Master
[2016/04/04 02:41:59 | 000,252,544 | ---- | C] (QILING Tech Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\vDisk.sys
[2016/04/04 02:01:34 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\MAXON
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/05/01 23:42:51 | 000,000,724 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016/05/01 23:15:10 | 001,531,668 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016/05/01 23:15:10 | 000,734,296 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016/05/01 23:15:10 | 000,516,466 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2016/05/01 23:15:10 | 000,138,900 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2016/05/01 23:15:10 | 000,138,836 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016/05/01 23:11:12 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/05/01 23:09:28 | 000,000,720 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016/05/01 23:09:22 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016/05/01 23:09:13 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2016/05/01 23:09:10 | 834,695,165 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/30 06:09:45 | 000,002,385 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/04/30 00:32:50 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/30 00:03:27 | 000,000,830 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/04/29 03:44:09 | 000,002,122 | ---- | M] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2016/04/29 03:44:09 | 000,002,120 | ---- | M] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2016/04/29 03:44:09 | 000,002,110 | ---- | M] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2016/04/27 16:58:13 | 000,002,147 | ---- | M] () -- C:\Users\Public\Desktop\MSI Super Charger.lnk
[2016/04/27 16:54:08 | 000,001,844 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Eye.lnk
[2016/04/27 16:54:04 | 000,001,129 | ---- | M] () -- C:\Users\Public\Desktop\MSI Gaming APP.lnk
[2016/04/27 15:46:02 | 000,002,353 | ---- | M] () -- C:\Users\Shunichi Hotta\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/04/27 05:21:08 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/04/23 01:18:03 | 000,000,045 | ---- | M] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016/04/23 00:54:28 | 000,000,794 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2016/04/22 00:24:02 | 000,000,022 | ---- | M] () -- C:\WINDOWS\GPU-Z.INI
[2016/04/18 05:11:34 | 000,000,897 | ---- | M] () -- C:\Users\Public\Desktop\Transcend SSD Scope.lnk
[2016/04/17 16:54:22 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\PCMark 8.lnk
[2016/04/17 16:49:54 | 000,000,932 | ---- | M] () -- C:\Users\Shunichi Hotta\Desktop\CrystalDiskInfo.lnk
[2016/04/15 05:15:20 | 000,220,104 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016/04/14 06:26:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_csrserial_01009.Wdf
[2016/04/14 05:59:03 | 3708,763,590 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2016/04/14 04:34:37 | 000,000,222 | ---- | M] () -- C:\Users\Shunichi Hotta\Desktop\FINAL FANTASY TYPE-0 HD.url
[2016/04/14 04:22:17 | 000,006,085 | ---- | M] () -- C:\Users\Shunichi Hotta\Documents\otodoke_DO-P1402487.pdf
[2016/04/14 04:01:22 | 000,000,729 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/04/13 17:16:47 | 000,001,461 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2016/04/12 16:44:55 | 017,180,672 | -HS- | M] () -- C:\WINDOWS\ramdisk.fvd
[2016/04/12 16:43:20 | 000,000,846 | ---- | M] () -- C:\Users\Public\Desktop\Disk Master Free.lnk
[2016/04/11 06:33:39 | 000,002,801 | ---- | M] () -- C:\Users\Public\Desktop\Killer Network Manager.lnk
[2016/04/11 06:33:39 | 000,002,306 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
[2016/04/11 06:33:09 | 000,000,000 | ---- | M] () -- C:\Users\Shunichi Hotta\AppData\Local\Driver_LOM_8161Present.flag
[2016/04/11 05:54:05 | 000,001,177 | ---- | M] () -- C:\Users\Public\Desktop\MSI Command Center.lnk
[2016/04/11 05:54:00 | 000,001,137 | ---- | M] () -- C:\Users\Public\Desktop\MSI Fast Boot.lnk
[2016/04/11 05:47:06 | 000,001,298 | ---- | M] () -- C:\Users\Public\Desktop\XSplit Gamecaster.lnk
[2016/04/11 05:46:25 | 000,002,685 | ---- | M] () -- C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
[2016/04/11 05:45:57 | 000,001,205 | ---- | M] () -- C:\Users\Public\Desktop\MSI ECO Center.lnk
[2016/04/11 05:27:01 | 000,000,087 | RH-- | M] () -- C:\WINDOWS\ctfile.rfc
[2016/04/10 03:17:58 | 000,000,850 | ---- | M] () -- C:\Users\Public\Desktop\MemTweakIt.lnk
[2016/04/10 03:17:36 | 000,028,672 | ---- | M] (ASUSTek Computer Inc.) -- C:\WINDOWS\SysWow64\AsIO.dll
[2016/04/10 03:17:36 | 000,015,232 | ---- | M] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2016/04/10 01:49:12 | 000,000,837 | ---- | M] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016/04/07 03:32:08 | 000,829,944 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016/04/07 03:32:08 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2016/04/07 02:18:16 | 000,509,874 | ---- | M] () -- C:\Users\Shunichi Hotta\Documents\PCMarkV.pcr
[2016/04/07 01:57:49 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\PCMark Vantage x64.lnk
[2016/04/06 01:18:54 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\Opti Drive Control.lnk
[2016/04/06 00:11:47 | 000,000,669 | ---- | M] () -- C:\Users\Public\Desktop\x-アプリ.lnk
[2016/04/04 04:54:08 | 000,000,861 | ---- | M] () -- C:\Users\Public\Desktop\CPUID PerfMonitor2.lnk
[2016/04/02 13:13:14 | 000,369,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/02 13:10:46 | 000,730,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/02 13:10:39 | 000,374,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/02 13:10:25 | 000,770,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/02 12:30:16 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/02 12:29:38 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/02 12:29:29 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/02 12:26:25 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/02 12:25:58 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/02 12:25:42 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/02 12:23:44 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/02 12:23:05 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/02 12:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/02 12:18:47 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/02 12:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/02 12:14:35 | 003,994,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/02 12:09:17 | 001,832,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/02 12:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/02 12:07:22 | 003,575,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/02 12:03:52 | 004,774,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/02 12:00:39 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/04/30 00:03:27 | 000,000,830 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/04/28 01:29:50 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/27 16:58:13 | 000,002,147 | ---- | C] () -- C:\Users\Public\Desktop\MSI Super Charger.lnk
[2016/04/27 16:54:08 | 000,001,844 | ---- | C] () -- C:\Users\Public\Desktop\Dragon Eye.lnk
[2016/04/27 07:05:02 | 000,002,385 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/04/27 07:05:02 | 000,002,353 | ---- | C] () -- C:\Users\Shunichi Hotta\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/04/27 07:05:02 | 000,002,341 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016/04/27 05:21:08 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/04/23 01:18:03 | 000,000,045 | ---- | C] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016/04/23 00:54:28 | 000,000,794 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2016/04/18 05:11:34 | 000,000,897 | ---- | C] () -- C:\Users\Public\Desktop\Transcend SSD Scope.lnk
[2016/04/17 16:54:22 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\PCMark 8.lnk
[2016/04/17 16:49:54 | 000,000,932 | ---- | C] () -- C:\Users\Shunichi Hotta\Desktop\CrystalDiskInfo.lnk
[2016/04/14 06:26:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_csrserial_01009.Wdf
[2016/04/14 04:34:37 | 000,000,222 | ---- | C] () -- C:\Users\Shunichi Hotta\Desktop\FINAL FANTASY TYPE-0 HD.url
[2016/04/14 04:22:17 | 000,006,085 | ---- | C] () -- C:\Users\Shunichi Hotta\Documents\otodoke_DO-P1402487.pdf
[2016/04/14 04:01:22 | 000,000,729 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/04/13 17:12:14 | 001,862,008 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/04/13 17:12:12 | 002,656,952 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016/04/13 17:06:33 | 000,235,008 | ---- | C] () -- C:\WINDOWS\SysNative\MTF.dll
[2016/04/13 17:06:33 | 000,162,816 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2016/04/12 16:44:53 | 017,180,672 | -HS- | C] () -- C:\WINDOWS\ramdisk.fvd
[2016/04/12 16:43:20 | 000,000,846 | ---- | C] () -- C:\Users\Public\Desktop\Disk Master Free.lnk
[2016/04/11 06:33:39 | 000,002,801 | ---- | C] () -- C:\Users\Public\Desktop\Killer Network Manager.lnk
[2016/04/11 06:33:39 | 000,002,306 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
[2016/04/11 06:28:35 | 000,000,000 | ---- | C] () -- C:\Users\Shunichi Hotta\AppData\Local\Driver_LOM_8161Present.flag
[2016/04/11 05:53:33 | 004,989,482 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2016/04/11 05:47:06 | 000,001,298 | ---- | C] () -- C:\Users\Public\Desktop\XSplit Gamecaster.lnk
[2016/04/11 05:46:25 | 000,002,685 | ---- | C] () -- C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
[2016/04/11 05:45:57 | 000,001,205 | ---- | C] () -- C:\Users\Public\Desktop\MSI ECO Center.lnk
[2016/04/11 05:45:48 | 000,001,129 | ---- | C] () -- C:\Users\Public\Desktop\MSI Gaming APP.lnk
[2016/04/11 05:45:39 | 000,001,177 | ---- | C] () -- C:\Users\Public\Desktop\MSI Command Center.lnk
[2016/04/11 05:45:39 | 000,000,000 | ---- | C] () -- C:\RAMDiskImage.img
[2016/04/11 05:45:24 | 000,001,137 | ---- | C] () -- C:\Users\Public\Desktop\MSI Fast Boot.lnk
[2016/04/11 05:27:13 | 000,013,741 | ---- | C] () -- C:\WINDOWS\SysNative\MBCfg64.ini
[2016/04/11 05:27:13 | 000,013,741 | ---- | C] () -- C:\WINDOWS\SysWow64\MBCfg32.ini
[2016/04/11 05:27:13 | 000,005,856 | ---- | C] () -- C:\WINDOWS\SysNative\MBCfgUninstall64.ini
[2016/04/11 05:27:13 | 000,005,856 | ---- | C] () -- C:\WINDOWS\SysWow64\MBCfgUninstall32.ini
[2016/04/11 05:27:13 | 000,002,835 | ---- | C] () -- C:\WINDOWS\MBCfg_SP_APOIM.ini
[2016/04/11 05:27:13 | 000,002,783 | ---- | C] () -- C:\WINDOWS\MBCfg_APOIM.ini
[2016/04/11 05:27:13 | 000,002,747 | ---- | C] () -- C:\WINDOWS\MBCfg_HP_APOIM.ini
[2016/04/11 05:27:01 | 000,366,080 | ---- | C] () -- C:\WINDOWS\SysNative\APOMgr64.DLL
[2016/04/11 05:27:01 | 000,274,944 | ---- | C] () -- C:\WINDOWS\SysWow64\APOMngr.DLL
[2016/04/11 05:27:01 | 000,089,600 | ---- | C] () -- C:\WINDOWS\SysNative\CmdRtr64.DLL
[2016/04/11 05:27:01 | 000,074,240 | ---- | C] () -- C:\WINDOWS\SysWow64\CmdRtr.DLL
[2016/04/11 05:27:01 | 000,000,087 | RH-- | C] () -- C:\WINDOWS\ctfile.rfc
[2016/04/10 03:17:58 | 000,000,850 | ---- | C] () -- C:\Users\Public\Desktop\MemTweakIt.lnk
[2016/04/10 03:17:52 | 000,015,232 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2016/04/10 01:49:12 | 000,000,837 | ---- | C] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016/04/07 02:18:16 | 000,509,874 | ---- | C] () -- C:\Users\Shunichi Hotta\Documents\PCMarkV.pcr
[2016/04/07 01:57:49 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\PCMark Vantage x64.lnk
[2016/04/06 01:18:54 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\Opti Drive Control.lnk
[2016/04/06 00:11:30 | 000,000,669 | ---- | C] () -- C:\Users\Public\Desktop\x-アプリ.lnk
[2016/04/04 04:54:08 | 000,000,861 | ---- | C] () -- C:\Users\Public\Desktop\CPUID PerfMonitor2.lnk
[2016/03/31 04:43:39 | 008,659,472 | ---- | C] () -- C:\WINDOWS\SysWow64\nvptxJitCompiler.dll
[2016/03/31 04:43:39 | 000,572,096 | ---- | C] () -- C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll
[2016/03/31 04:43:38 | 037,567,424 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2016/03/17 06:30:22 | 000,128,792 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-1-0-5-1.dll
[2016/03/17 06:29:38 | 000,041,752 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-1-0-5-1.exe
[2016/03/11 03:16:29 | 000,128,792 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1.dll
[2016/03/11 03:16:29 | 000,041,752 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo.exe
[2016/03/03 06:29:30 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2016/02/23 06:52:20 | 000,007,597 | ---- | C] () -- C:\Users\Shunichi Hotta\AppData\Local\Resmon.ResmonCfg
[2016/02/14 10:47:02 | 000,125,720 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-1-0-3-0.dll
[2016/02/14 10:45:46 | 000,042,264 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-1-0-3-0.exe
[2016/02/14 08:30:19 | 002,658,952 | ---- | C] () -- C:\WINDOWS\SysWow64\BootMan.exe
[2016/02/14 08:30:19 | 000,088,160 | ---- | C] () -- C:\WINDOWS\SysWow64\setupempdrv03.exe
[2016/02/14 08:30:19 | 000,021,088 | ---- | C] () -- C:\WINDOWS\SysWow64\EuEpmGdi.dll
[2016/02/14 08:30:19 | 000,014,944 | ---- | C] () -- C:\WINDOWS\SysWow64\epmntdrv.sys
[2016/02/14 08:30:19 | 000,010,208 | ---- | C] () -- C:\WINDOWS\SysWow64\EuGdiDrv.sys
[2016/02/13 16:51:53 | 000,000,022 | ---- | C] () -- C:\WINDOWS\GPU-Z.INI
[2016/02/12 14:30:44 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\HsMgr.exe
[2016/02/12 14:30:44 | 000,143,360 | ---- | C] () -- C:\WINDOWS\SysWow64\VmixP8.dll
[2016/02/12 14:30:44 | 000,000,057 | ---- | C] () -- C:\WINDOWS\SysWow64\cmasiop.ini
[2016/02/12 14:30:41 | 000,052,576 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.cfl
[2016/02/12 14:30:39 | 000,004,879 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.cfg
[2016/02/12 14:30:39 | 000,001,145 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.imi
[2016/02/12 14:30:38 | 000,000,491 | ---- | C] () -- C:\WINDOWS\cmudaxp.ini
[2016/02/10 16:18:32 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015/10/30 16:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015/10/30 16:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015/10/30 16:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015/10/30 16:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015/10/30 16:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015/10/30 16:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2015/10/30 16:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2015/10/30 16:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015/10/30 16:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015/10/30 16:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015/10/30 16:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015/10/30 16:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015/10/30 16:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015/10/30 16:18:22 | 000,000,160 | ---- | C] () -- C:\WINDOWS\SysWow64\fcb.dll
[2015/10/30 16:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2016/03/31 04:33:34 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016/02/24 17:46:25 | 006,607,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016/02/24 17:06:39 | 005,242,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/10/30 16:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/10/30 16:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/10/30 16:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2016/04/30 00:03:26 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2016/04/11 05:54:00 | 000,000,000 | -H-D | M] -- C:\MSI\Fast Boot
[2016/04/27 16:58:13 | 000,000,000 | -H-D | M] -- C:\MSI\Super Charger
[2012/05/17 14:45:24 | 000,528,384 | -H-- | M] (MSI) -- C:\MSI\Command Center\function.exe
[2016/05/01 16:57:46 | 000,000,000 | -H-D | M] -- C:\MSI\GamingAPP\Hotkey
[2016/05/01 16:58:43 | 000,000,000 | -H-D | M] -- C:\MSI\LiveUpdate\DL_INFO
[2016/04/11 05:53:56 | 000,000,000 | -H-D | M] -- C:\MSI\LiveUpdate\LOG
[2016/04/11 05:27:09 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2016/04/11 05:53:43 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2011/01/15 16:48:46 | 000,408,008 | -H-- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSU.exe
[2016/03/26 04:56:16 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ
[2016/05/01 16:51:14 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2016/03/26 04:56:16 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ\IJPrinter
[2016/03/26 04:57:35 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ\IJPrinter\Canon MG6200 series
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS
[2016/04/01 01:57:25 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer XPS
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2016/03/27 05:40:04 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2015/10/31 03:24:07 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\Sony Corporation\Media Go Video Playback Engine\2-2.20.102.05220
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\Sony Corporation\Media Go Video Playback Engine\3-2.20.102.05220
[2016/02/10 16:27:05 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS
[2016/04/01 01:57:25 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer XPS
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2016/03/27 05:40:04 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2015/10/31 03:24:07 | 000,000,000 | RH-D | M] -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Sony Corporation\Media Go Video Playback Engine\2-2.20.102.05220
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Sony Corporation\Media Go Video Playback Engine\3-2.20.102.05220
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2016/03/03 06:34:13 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2016/04/30 00:03:27 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2016/02/10 18:44:11 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2016/02/10 18:42:37 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData
[2016/02/10 15:34:13 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2016/02/10 18:49:12 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn
[2016/05/01 23:09:23 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn1
[2016/02/23 06:59:01 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn2
[2016/02/10 15:31:29 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\DNTExce
12：悪代官 :
2016/05/02 (Mon) 20:39:19: 作業と報告、ご苦労様です。

OTLのスキャンログを見せてもらいましたが、ログが途切れてますね。
Extraのログはそれでいいですが、OTL.txtログが途中と後部が切れてます。
またfc2の文字数制限で切れたんでしょう。

お手数ですがOTL.txtだけ再度レスで全文を見せてください。
ただ、そのまま再送信しても同じことになるので、ログを1万文字以内に適当なところで分割して複数回に分けて送信してください。
http://www1.odn.ne.jp/megukuma/count.htm

ログ全文が見えたらそこから再度調べてから次のレスに来ます
13：hotty14 :
2016/05/03 (Tue) 01:10:35: ご指摘ありがとうございます。こちらの確認不足で、申し訳ありません。

4分割して再送しますのでご確認お願い致します。

・OTLログ/

OTL logfile created on: 2016/05/01 23:47:53 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Shunichi Hotta\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

31.94 Gb Total Physical Memory | 28.20 Gb Available Physical Memory | 88.30% Memory free
36.69 Gb Paging File | 32.69 Gb Available in Paging File | 89.10% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.44 Gb Total Space | 157.04 Gb Free Space | 67.56% Space Free | Partition Type: NTFS
Drive K: | 2794.52 Gb Total Space | 2610.41 Gb Free Space | 93.41% Space Free | Partition Type: NTFS
Drive L: | 931.50 Gb Total Space | 582.65 Gb Free Space | 62.55% Space Free | Partition Type: NTFS
Drive Y: | 1.93 Gb Total Space | 1.89 Gb Free Space | 97.62% Space Free | Partition Type: NTFS

Computer Name: HOTTA-PC | User Name: Shunichi Hotta | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2016/05/01 23:46:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Shunichi Hotta\Downloads\OTL.exe
PRC - [2016/04/27 03:19:47 | 000,554,176 | ---- | M] (Microsoft Corporation) -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2016/04/25 22:22:00 | 023,484,296 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2016/04/20 15:17:50 | 011,197,904 | ---- | M] (Micro-Star Int'l Co., Ltd.) -- C:\Program Files (x86)\MSI\Gaming APP\GamingApp.exe
PRC - [2016/04/19 16:31:15 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
PRC - [2016/03/30 10:28:57 | 002,396,096 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2016/03/30 10:26:00 | 001,879,488 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2016/03/22 10:57:28 | 000,424,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2016/03/17 11:52:52 | 001,027,024 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
PRC - [2016/03/17 09:39:04 | 001,794,000 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
PRC - [2016/03/16 10:17:16 | 011,336,656 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Live Update\Live Update.exe
PRC - [2016/03/15 16:14:48 | 000,031,696 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MSIOSD_x86.exe
PRC - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2016/03/10 14:07:20 | 009,926,112 | ---- | M] (Malwarebytes) -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2016/02/22 09:52:00 | 002,312,144 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
PRC - [2016/02/16 13:27:14 | 002,013,648 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
PRC - [2016/02/12 14:53:12 | 002,068,480 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\AsusAudioCenter.exe
PRC - [2016/02/12 14:33:25 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
PRC - [2016/02/11 17:37:25 | 000,252,232 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
PRC - [2016/02/03 18:49:28 | 000,032,544 | ---- | M] () -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2016/01/07 20:46:52 | 006,174,816 | ---- | M] (Samsung Electronics.) -- C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
PRC - [2015/12/30 11:00:44 | 055,175,056 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaConverter.exe
PRC - [2015/12/30 11:00:42 | 001,378,192 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaRenderer.exe
PRC - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
PRC - [2015/12/10 06:14:28 | 000,249,384 | ---- | M] () -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
PRC - [2015/12/10 06:14:26 | 000,036,904 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
PRC - [2015/10/16 15:51:22 | 002,019,792 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
PRC - [2015/09/29 18:48:50 | 000,563,416 | ---- | M] (ZONER software) -- B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
PRC - [2015/08/18 09:51:36 | 001,692,840 | ---- | M] (MSI) -- C:\Windows\SysWOW64\muachost.exe
PRC - [2015/07/10 23:40:08 | 000,223,520 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2015/07/10 23:38:00 | 000,415,520 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2015/07/07 17:25:52 | 000,019,216 | ---- | M] (Intel(R) Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
PRC - [2015/06/04 11:54:34 | 000,105,296 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
PRC - [2015/05/19 09:11:00 | 000,335,872 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
PRC - [2015/05/18 15:15:04 | 000,163,280 | ---- | M] (MSI) -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
PRC - [2015/03/27 16:04:46 | 002,266,280 | ---- | M] (Micro-Star INT'L CO., LTD.) -- C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
PRC - [2014/06/24 15:12:22 | 000,171,480 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
PRC - [2011/09/20 09:17:44 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
PRC - [2011/01/15 16:48:44 | 000,452,016 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
PRC - [2010/04/27 10:09:52 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2016/05/01 23:10:01 | 001,208,320 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_ssl.pyd
MOD - [2016/05/01 23:10:01 | 001,176,576 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._core_.pyd
MOD - [2016/05/01 23:10:01 | 001,067,008 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._controls_.pyd
MOD - [2016/05/01 23:10:01 | 000,816,128 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._windows_.pyd
MOD - [2016/05/01 23:10:01 | 000,806,400 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._gdi_.pyd
MOD - [2016/05/01 23:10:01 | 000,776,704 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_hashlib.pyd
MOD - [2016/05/01 23:10:01 | 000,733,184 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._misc_.pyd
MOD - [2016/05/01 23:10:01 | 000,686,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\unicodedata.pyd
MOD - [2016/05/01 23:10:01 | 000,682,496 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pysqlite2._sqlite.pyd
MOD - [2016/05/01 23:10:01 | 000,525,208 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\windows._lib_cacheinvalidation.pyd
MOD - [2016/05/01 23:10:01 | 000,364,544 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pythoncom27.dll
MOD - [2016/05/01 23:10:01 | 000,320,512 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32com.shell.shell.pyd
MOD - [2016/05/01 23:10:01 | 000,167,936 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32gui.pyd
MOD - [2016/05/01 23:10:01 | 000,128,512 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_elementtree.pyd
MOD - [2016/05/01 23:10:01 | 000,127,488 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pyexpat.pyd
MOD - [2016/05/01 23:10:01 | 000,123,392 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._wizard.pyd
MOD - [2016/05/01 23:10:01 | 000,119,808 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32file.pyd
MOD - [2016/05/01 23:10:01 | 000,110,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\pywintypes27.dll
MOD - [2016/05/01 23:10:01 | 000,108,544 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32security.pyd
MOD - [2016/05/01 23:10:01 | 000,098,816 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32api.pyd
MOD - [2016/05/01 23:10:01 | 000,088,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\usb_ext.pyd
MOD - [2016/05/01 23:10:01 | 000,088,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_ctypes.pyd
MOD - [2016/05/01 23:10:01 | 000,078,848 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._animate.pyd
MOD - [2016/05/01 23:10:01 | 000,077,312 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\wx._html2.pyd
MOD - [2016/05/01 23:10:01 | 000,046,080 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_socket.pyd
MOD - [2016/05/01 23:10:01 | 000,038,912 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32inet.pyd
MOD - [2016/05/01 23:10:01 | 000,036,864 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_psutil_windows.pyd
MOD - [2016/05/01 23:10:01 | 000,035,840 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32process.pyd
MOD - [2016/05/01 23:10:01 | 000,027,136 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_multiprocessing.pyd
MOD - [2016/05/01 23:10:01 | 000,025,600 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32pdh.pyd
MOD - [2016/05/01 23:10:01 | 000,024,064 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32pipe.pyd
MOD - [2016/05/01 23:10:01 | 000,022,528 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32ts.pyd
MOD - [2016/05/01 23:10:01 | 000,020,480 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\_yappi.pyd
MOD - [2016/05/01 23:10:01 | 000,018,432 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32event.pyd
MOD - [2016/05/01 23:10:01 | 000,017,920 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\thumbnails_ext.pyd
MOD - [2016/05/01 23:10:01 | 000,017,408 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32profile.pyd
MOD - [2016/05/01 23:10:01 | 000,012,288 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\common.time34.pyd
MOD - [2016/05/01 23:10:01 | 000,011,264 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\win32crypt.pyd
MOD - [2016/05/01 23:10:01 | 000,010,240 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\select.pyd
MOD - [2016/05/01 23:10:01 | 000,007,168 | R--- | M] () -- C:\Users\SHUNIC~1\AppData\Local\Temp\_MEI85602\hashobjs_ext.pyd
MOD - [2016/04/27 03:19:46 | 000,679,624 | ---- | M] () -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll
MOD - [2016/04/19 16:31:15 | 022,284,800 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
MOD - [2016/04/19 16:31:15 | 000,144,384 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
MOD - [2016/04/19 16:31:15 | 000,141,312 | ---- | M] () -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
MOD - [2016/04/17 16:21:30 | 000,184,832 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\78b15a8cabb9a9de331bb311814b79ea\UIAutomationTypes.ni.dll
MOD - [2016/04/17 16:21:11 | 012,940,800 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\c0d92222c705835bffa2f4ec804d491b\System.Windows.Forms.ni.dll
MOD - [2016/04/17 16:21:05 | 001,624,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\562e673887ea3a14ccbe0cb911ff32df\System.Drawing.ni.dll
MOD - [2016/04/17 16:20:52 | 001,150,976 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\844edff4abce1accd552b3a800976b2b\System.Management.ni.dll
MOD - [2016/04/16 15:45:59 | 007,378,944 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\21709e6e2d2b139a920a46d9caa86473\System.Xml.ni.dll
MOD - [2016/04/16 15:45:57 | 001,876,480 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\da69f2d0cab254ee15b8fbf55286111d\System.Xaml.ni.dll
MOD - [2016/04/16 15:45:54 | 000,970,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\206e48e6105b08574bb8e821ef9a6b4a\System.Configuration.ni.dll
MOD - [2016/04/16 15:45:54 | 000,527,872 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\52355744b3fdfdca37ba808ceff7beee\PresentationFramework.Aero2.ni.dll
MOD - [2016/04/16 15:45:53 | 019,076,608 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\6562ef16de0b9951d9ee834026fdc7a5\PresentationFramework.ni.dll
MOD - [2016/04/16 15:45:47 | 011,560,960 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\f23d9459e7fdce36221187ea675fc624\PresentationCore.ni.dll
MOD - [2016/04/16 15:45:43 | 003,975,168 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\c98bae6a53cf6b2bc173eb3db974af06\WindowsBase.ni.dll
MOD - [2016/04/16 15:45:41 | 007,498,240 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\13a04e6416bbbaaca12da6cbcad76c68\System.Core.ni.dll
MOD - [2016/04/16 15:45:38 | 009,983,488 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\53659adf088ea34465ba7148e260c847\System.ni.dll
MOD - [2016/03/30 10:28:53 | 000,018,880 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2016/03/24 11:20:50 | 018,127,536 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\599e1e123d8890a906c66fa63ba868bd\mscorlib.ni.dll
MOD - [2016/03/15 16:14:48 | 000,031,696 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MSIOSD_x86.exe
MOD - [2016/02/12 14:33:25 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe
MOD - [2016/02/12 14:29:55 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\VmixP8.dll
MOD - [2016/01/07 20:45:52 | 000,021,600 | ---- | M] () -- C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
MOD - [2015/08/13 09:18:40 | 000,789,456 | ---- | M] () -- C:\Program Files (x86)\MSI\Gaming APP\Lib\DeviceManagerDLL.dll
MOD - [2014/09/09 13:30:14 | 000,603,648 | ---- | M] () -- B:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/04/02 12:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2016/04/02 12:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2016/04/02 12:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2016/03/30 10:25:26 | 001,163,200 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2016/03/30 10:22:13 | 002,521,024 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2016/03/30 10:22:08 | 003,632,576 | ---- | M] (NVIDIA Corporation) [On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe -- (NvStreamNetworkSvc)
SRV:[b]64bit:[/b] - [2016/03/29 16:51:06 | 000,087,040 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2016/03/29 16:50:15 | 000,066,560 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2016/03/29 16:38:23 | 000,207,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2016/03/29 16:27:45 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2016/03/29 16:20:21 | 000,948,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2016/03/29 16:13:03 | 000,587,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2016/03/29 15:32:15 | 001,098,240 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2016/03/29 14:45:48 | 000,338,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2016/02/24 18:34:50 | 001,613,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2016/02/24 18:28:35 | 003,449,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2016/02/24 17:43:01 | 000,625,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2016/02/24 16:19:10 | 000,145,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2016/02/24 16:07:53 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:59:32 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:40:53 | 001,224,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2016/02/24 15:18:37 | 001,490,432 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2016/02/23 19:43:04 | 001,696,712 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe -- (mccspsvc)
SRV:[b]64bit:[/b] - [2016/02/23 18:20:41 | 001,139,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2016/02/23 18:17:08 | 000,649,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2016/02/23 17:29:35 | 000,591,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2016/02/23 17:28:32 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/02/23 17:20:42 | 000,847,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2016/02/23 17:20:36 | 000,606,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2016/02/23 16:58:02 | 000,163,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2016/01/28 15:54:40 | 000,454,872 | ---- | M] (Rivet Networks) [Auto | Running] -- C:\Program Files\Killer Networking\Network Manager\KillerService.exe -- (Killer Service V2)
SRV:[b]64bit:[/b] - [2016/01/16 14:24:56 | 002,057,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2016/01/05 10:49:33 | 000,749,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2016/01/05 10:43:47 | 000,912,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2015/12/07 13:15:40 | 001,035,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2015/12/03 15:15:48 | 000,863,448 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\McAfee\MSC\McAPExe.exe -- (McAPExe)
SRV:[b]64bit:[/b] - [2015/11/13 14:58:04 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:[b]64bit:[/b] - [2015/11/02 20:12:02 | 000,451,960 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:[b]64bit:[/b] - [2015/10/31 03:23:44 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:28 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:26 | 000,504,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:26 | 000,497,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:46 | 000,168,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:43 | 001,872,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:41 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:19 | 001,297,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:18 | 000,729,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:14 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 002,745,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:59 | 000,023,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:58 | 000,764,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:58 | 000,287,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:54 | 000,360,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,181,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:50 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_7f015)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_77cae)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_5714f)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_55c637b)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_17d0f56)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 000,043,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_116c448)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:48 | 000,444,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:48 | 000,205,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:47 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,290,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,118,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:45 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,278,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,380,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,364,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:35 | 000,511,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,326,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2015/10/21 10:28:42 | 000,378,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe -- (mfemms)
SRV:[b]64bit:[/b] - [2015/10/20 18:13:26 | 000,679,120 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:[b]64bit:[/b] - [2015/09/21 13:33:34 | 000,256,840 | ---- | M] (McAfee, Inc.) [On_Demand | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2015/09/21 13:31:26 | 000,233,680 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2015/09/04 12:08:02 | 000,028,256 | ---- | M] (Samsung Electronics Co., Ltd.) [Auto | Running] -- C:\Windows\SysNative\RAPID\SamsungRapidSvc.exe -- (SamsungRapidSvc)
SRV:[b]64bit:[/b] - [2015/05/22 01:24:00 | 000,881,152 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:28 | 000,825,032 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe -- (CsrBtService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:16 | 001,041,616 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe -- (CsrBtOBEXService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:08 | 000,465,624 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe -- (CSRBtAudioService)
SRV:[b]64bit:[/b] - [2012/03/22 21:11:00 | 000,064,216 | ---- | M] (Cambridge Silicon Radio Limited) [Auto | Running] -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe -- (BtSwitcherService)
SRV - [2016/04/28 01:17:26 | 000,147,400 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016/04/20 12:43:02 | 000,163,592 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - [2016/04/13 09:23:14 | 000,342,456 | ---- | M] (Futuremark) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2016/04/01 05:55:12 | 000,835,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2016/03/30 10:26:00 | 001,879,488 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2016/03/23 03:26:42 | 000,131,256 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe -- (SonicStage Back-End Service2)
SRV - [2016/03/22 10:57:28 | 000,424,384 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2016/03/17 09:39:04 | 001,794,000 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe -- (MSI_LiveUpdate_Service)
SRV - [2016/03/10 14:07:30 | 001,136,608 | ---- | M] (Malwarebytes) [Auto | Running] -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2016/03/10 14:07:28 | 001,514,464 | ---- | M] (Malwarebytes) [Auto | Running] -- B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2016/03/10 02:06:54 | 000,173,920 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2016/02/24 15:07:45 | 000,949,248 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2016/02/22 09:52:00 | 002,312,144 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe -- (MSIDDR_CC)
SRV - [2016/02/16 13:27:14 | 002,013,648 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe -- (MSICTL_CC)
SRV - [2016/02/04 18:01:02 | 002,073,040 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe -- (MSISMB_CC)
SRV - [2016/02/04 18:00:56 | 004,162,512 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe -- (MSICPU_CC)
SRV - [2016/02/04 18:00:50 | 004,162,512 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe -- (MSIClock_CC)
SRV - [2016/02/03 18:49:28 | 000,032,544 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2016/02/01 11:06:42 | 000,596,944 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe -- (MSISuperIO_CC)
SRV - [2016/02/01 11:06:34 | 002,200,872 | ---- | M] (MSI) [On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Command Center\MSICommService.exe -- (MSICOMM_CC)
SRV - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) [Auto | Running] -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe -- (GoogleIMEJaCacheService)
SRV - [2015/12/23 13:53:16 | 000,066,176 | ---- | M] (QILING Tech Co., Ltd.) [Auto | Running] -- B:\Program Files\QILING\Disk Master\Agent.exe -- (FrAgent)
SRV - [2015/12/16 13:51:44 | 000,037,328 | ---- | M] (Micro-Star Int'l Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe -- (GamingApp_Service)
SRV - [2015/12/10 06:14:26 | 000,036,904 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Auto | Running] -- C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe -- (EaseUS Agent)
SRV - [2015/10/30 16:18:31 | 002,179,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2015/10/30 16:18:31 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\lfsvc.dll -- (lfsvc)
SRV - [2015/10/30 16:18:29 | 000,461,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2015/10/30 16:18:23 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2015/10/30 16:18:21 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2015/10/30 16:17:21 | 003,337,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2015/10/16 15:51:22 | 002,019,792 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe -- (GamingHotkey_Service)
SRV - [2015/07/10 23:40:08 | 000,223,520 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2015/07/10 23:38:00 | 000,415,520 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2015/07/07 17:25:52 | 000,019,216 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe -- (XTU3SERVICE)
SRV - [2015/06/04 11:54:34 | 000,105,296 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe -- (MSI_FastBoot)
SRV - [2015/05/19 09:11:04 | 000,007,680 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe -- (isaHelperSvc)
SRV - [2015/05/19 09:11:00 | 000,335,872 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe -- (Intel(R)
SRV - [2015/05/18 15:15:04 | 000,163,280 | ---- | M] (MSI) [Auto | Running] -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe -- (MSI_SuperCharger)
SRV - [2015/03/27 16:04:46 | 002,266,280 | ---- | M] (Micro-Star INT'L CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe -- (MSI_ECOSERVICE)
SRV - [2014/06/24 15:12:22 | 000,171,480 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
14：hotty14 :
2016/05/03 (Tue) 01:17:23: …続き

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2016/05/01 23:09:22 | 000,192,216 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2016/03/30 10:22:03 | 000,026,560 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2016/03/29 19:23:38 | 000,277,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2016/03/29 18:25:13 | 000,258,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2016/03/29 17:21:40 | 000,378,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2016/03/29 17:16:55 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2016/03/29 16:49:53 | 000,245,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2016/03/29 16:23:41 | 000,694,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2016/03/22 05:01:36 | 000,056,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2016/03/21 12:44:04 | 000,057,648 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:[b]64bit:[/b] - [2016/03/10 14:09:10 | 000,065,408 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2016/03/10 14:08:54 | 000,027,008 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2016/02/23 18:25:27 | 000,534,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2016/02/23 18:20:35 | 000,238,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2016/02/14 18:05:17 | 000,027,552 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV:[b]64bit:[/b] - [2016/02/12 14:30:02 | 002,735,616 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp)
DRV:[b]64bit:[/b] - [2016/01/29 10:12:46 | 000,041,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:[b]64bit:[/b] - [2016/01/22 19:10:00 | 000,144,456 | ---- | M] (Rivet Networks, LLC.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bwcW10x64.sys -- (BfLwf)
DRV:[b]64bit:[/b] - [2016/01/19 22:50:38 | 000,202,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2016/01/16 14:46:08 | 000,067,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2015/12/23 13:52:48 | 000,042,112 | ---- | M] (QILING Tech Co., Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\diskbckp.sys -- (diskbckp)
DRV:[b]64bit:[/b] - [2015/12/23 13:52:36 | 000,252,544 | ---- | M] (QILING Tech Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vDisk.sys -- (vDisk)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,192,552 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EuFdDisk.sys -- (EUFDDISK)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,060,968 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\eubakup.sys -- (EUBAKUP)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,048,168 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EUBKMON.sys -- (EUBKMON)
DRV:[b]64bit:[/b] - [2015/12/10 06:10:58 | 000,018,472 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\eudskacs.sys -- (EUDSKACS)
DRV:[b]64bit:[/b] - [2015/11/22 19:33:26 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2015/11/22 18:54:39 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2015/11/10 02:48:24 | 000,214,168 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2015/10/31 03:23:56 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2015/10/31 03:23:44 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2015/10/30 16:19:39 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:42 | 000,052,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:09 | 000,930,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:09 | 000,385,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:08 | 000,218,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,200,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,106,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,078,848 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,026,624 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ioqos.sys -- (IoQos)
DRV:[b]64bit:[/b] - [2015/10/30 16:18:01 | 000,154,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:57 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,039,264 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,155,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,074,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:50 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:42 | 000,126,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:42 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,081,920 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,293,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,209,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,127,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,099,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,087,040 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,061,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,044,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:26 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:25 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,705,376 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,532,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,424,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,133,984 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,131,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,104,800 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,099,168 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,094,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,077,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,076,128 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,059,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,058,208 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,055,808 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,034,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:23 | 000,026,976 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 003,436,896 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,209,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,037,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:22 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,472,576 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,165,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,117,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,046,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2015/10/30 16:17:18 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2015/10/07 17:02:14 | 000,156,744 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e22w10x64.sys -- (KillerEth)
DRV:[b]64bit:[/b] - [2015/10/06 21:32:30 | 000,537,192 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:[b]64bit:[/b] - [2015/10/06 21:32:30 | 000,109,480 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,841,944 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,497,888 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,415,976 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeaack.sys -- (mfeaack)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,351,120 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,244,544 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,082,072 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2015/09/23 09:43:48 | 000,080,760 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2015/09/04 12:08:46 | 000,110,688 | ---- | M] (Samsung Electronics Co., Ltd.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\SamsungRapidFSFltr.sys -- (SamsungRapidFSFltr)
DRV:[b]64bit:[/b] - [2015/09/04 12:08:18 | 000,271,968 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SamsungRapidDiskFltr.sys -- (SamsungRapidDiskFltr)
DRV:[b]64bit:[/b] - [2015/07/27 01:37:32 | 000,041,760 | ---- | M] (FINTEK Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\I2cHkBurn.sys -- (I2cHkBurn)
DRV:[b]64bit:[/b] - [2015/06/24 15:34:10 | 000,063,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\XtuAcpiDriver.sys -- (XtuAcpiDriver)
DRV:[b]64bit:[/b] - [2015/06/01 01:22:00 | 000,039,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ICCWDT.sys -- (ICCWDT)
DRV:[b]64bit:[/b] - [2015/05/19 13:59:02 | 000,207,208 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:[b]64bit:[/b] - [2014/11/18 14:39:06 | 000,018,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\epmntdrv.sys -- (epmntdrv)
DRV:[b]64bit:[/b] - [2014/11/18 14:39:06 | 000,010,848 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
DRV:[b]64bit:[/b] - [2013/05/17 11:13:26 | 000,017,280 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:[b]64bit:[/b] - [2012/08/27 19:51:00 | 000,230,280 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rusb3xhc.sys -- (rusb3xhc)
DRV:[b]64bit:[/b] - [2012/08/27 19:50:58 | 000,114,568 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rusb3hub.sys -- (rusb3hub)
DRV:[b]64bit:[/b] - [2012/08/09 16:30:12 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2012/05/12 12:31:00 | 000,121,416 | ---- | M] (MotioninJoy) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MijXfilt.sys -- (MotioninJoyXFilter)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:36 | 000,023,752 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrusbfilter.sys -- (csrusbfilter)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:34 | 000,047,296 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrusb.sys -- (csrusb)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:32 | 000,061,128 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrserial.sys -- (csrserial)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:30 | 000,039,616 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrpan.sys -- (csrpan)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:28 | 000,029,896 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\csrhidmini.sys -- (csrhidmini)
DRV:[b]64bit:[/b] - [2012/03/22 21:08:22 | 002,784,968 | ---- | M] (Cambridge Silicon Radio Limited) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CsrBtPort.sys -- (CsrBtPort)
DRV:[b]64bit:[/b] - [2011/12/07 20:42:28 | 000,074,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
DRV:[b]64bit:[/b] - [2010/03/17 17:14:02 | 000,302,632 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx)
DRV:[b]64bit:[/b] - [2009/09/17 19:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV - [2016/03/15 16:08:40 | 000,045,728 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys -- (mfesapsn)
DRV - [2015/10/30 16:17:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys -- (CompositeBus)
DRV - [2015/05/28 13:42:20 | 000,030,224 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys -- (iocbios2)
DRV - [2014/11/18 14:39:08 | 000,014,944 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
DRV - [2014/11/18 14:39:08 | 000,010,208 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2014/03/13 09:26:06 | 000,013,808 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys -- (NTIOLib_MB)
DRV - [2014/01/06 14:20:24 | 000,013,808 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys -- (NTIOLib_ECO)
DRV - [2012/11/26 18:13:14 | 000,013,368 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys -- (NTIOLib_MSIDDR_CC)
DRV - [2012/10/26 09:56:46 | 000,013,368 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys -- (NTIOLib_FastBoot)
DRV - [2012/10/25 19:45:52 | 000,013,368 | ---- | M] (MSI) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys -- (NTIOLib_1_0_3)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ja-jp/?ocid=iehp
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = ja-JP
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = AF 22 D0 0D CD 63 D1 01 [binary data]
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: B:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: B:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: B:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR\SAFFPLG.XPI [2016/04/23 21:43:42 | 000,120,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016/04/23 21:43:42 | 000,120,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2016/02/11 17:24:05 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 45.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 45.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2016/02/11 17:39:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Shunichi Hotta\AppData\Roaming\mozilla\Extensions
15：hotty14 :
2016/05/03 (Tue) 01:21:03: …続き

[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_1\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\4.0.0.0_1\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpoecfmlefjgipbhopmdcikjelflnbpc\1.0.1_0\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\

O1 HOSTS File: ([2016/04/06 00:59:34 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Cmaudio8788] C:\WINDOWS\Syswow64\cmicnfgp.dll (C-Media Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Cmaudio8788GX] C:\WINDOWS\syswow64\HsMgr.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [Cmaudio8788GX64] C:\WINDOWS\system\HsMgr64.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [CsrAudioguiCtrl] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CSRHarmonySkypePlugin] C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CsrHCRPServer] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [CsrSyncMLServer] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [Disk Master] B:\Program Files\QILING\Disk Master\vDiskUI.exe (QILING Tech Co., Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [HarmonyUserStartup] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [Logitech Download Assistant] C:\WINDOWS\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [MBCfg64] C:\WINDOWS\SysNative\MBCfg64.DLL (Creative Technology Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SamsungRapidApp] C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe (Samsung Electronics Co., Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TrayApplication] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [vksts] C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Cambridge Silicon Radio Limited)
O4 - HKLM..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe (MSI)
O4 - HKLM..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe (CHENGDU YIWO Tech Development Co., Ltd)
O4 - HKLM..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe ()
O4 - HKLM..\Run: [GammingApp] C:\Program Files (x86)\MSI\Gaming APP\SGamingApp.exe (Micro-Star Int'l Co., Ltd.)
O4 - HKLM..\Run: [Google Japanese Input Prelauncher] C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe (Google Inc.)
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe (Micro-Star INT'L CO., LTD.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [RUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Sound Blaster Cinema 2] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe (MSI)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [AudialsNotifier] B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [OneDrive] C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [Steam] B:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\Run: [Zoner Photo Studio Autoupdate] B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE (ZONER software)
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2" File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64" File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127" File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225" File not found
O4 - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 16777216
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{072a7d5b-028f-4b42-8c7a-59ac4ca5b494}: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4ebb3240-3801-45ab-827c-62f7153c2852}: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{c296f54a-7ae7-4853-b8a8-8e2f756aa2f1}: DhcpNameServer = 192.168.11.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{f9de48a6-3c6d-4d72-97fb-e0f372fa62a7}: DhcpNameServer = 82.163.143.171
O18:[b]64bit:[/b] - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{c2627f29-e609-11e5-825f-10bf487e48b7}\Shell - "" = AutoRun
O33 - MountPoints2\{c2627f29-e609-11e5-825f-10bf487e48b7}\Shell\AutoRun\command - "" = "N:\Setup.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {583AC46A-4A6F-39BC-AEFD-1BC2759FFA51} - .NET Framework
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {600AC0DF-B614-36F9-9E10-28896BD4ACCA} - .NET Framework
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point
16：hotty14 :
2016/05/03 (Tue) 01:23:22: …続き

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/04/30 00:03:52 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016/04/30 00:03:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2016/04/30 00:03:26 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2016/04/30 00:03:26 | 000,065,408 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2016/04/30 00:03:26 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2016/04/30 00:03:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2016/04/29 03:44:05 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2016/04/28 01:21:45 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Geek Uninstaller
[2016/04/28 01:17:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2016/04/27 16:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\MSI
[2016/04/27 16:54:02 | 000,041,760 | ---- | C] (FINTEK Corp.) -- C:\WINDOWS\SysNative\drivers\I2cHkBurn.sys
[2016/04/27 16:54:02 | 000,031,520 | ---- | C] (TODO: <公司名稱>) -- C:\WINDOWS\SysNative\FintekIcon1.dll
[2016/04/27 05:21:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/04/27 05:21:06 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016/04/27 05:05:54 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2016/04/17 16:53:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Futuremark
[2016/04/14 07:39:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appmgmt
[2016/04/14 07:00:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CSR
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\gl-ES
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\eu-ES
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\es-cl
[2016/04/14 07:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\ca-ES
[2016/04/14 06:59:59 | 000,000,000 | ---D | C] -- C:\Program Files\CSR
[2016/04/14 06:15:33 | 000,000,000 | ---D | C] -- C:\BluetoothExchangeFolder
[2016/04/14 05:46:33 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\MotioninJoy
[2016/04/14 05:45:48 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\BetterDS3
[2016/04/14 05:41:05 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Nico Mak Computing
[2016/04/14 05:41:04 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2016/04/14 05:40:42 | 000,000,000 | ---D | C] -- C:\ProgramData\UniqueId
[2016/04/14 05:10:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll
[2016/04/14 05:10:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll
[2016/04/14 05:10:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll
[2016/04/14 05:10:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll
[2016/04/14 05:10:24 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll
[2016/04/14 05:08:51 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\SquareEnix
[2016/04/14 04:01:53 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Steam
[2016/04/14 04:01:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2016/04/14 04:01:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2016/04/13 17:16:39 | 000,109,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvaudcap64v.dll
[2016/04/13 17:16:39 | 000,100,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvaudcap32v.dll
[2016/04/13 17:12:16 | 018,673,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016/04/13 17:12:16 | 000,037,376 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll
[2016/04/13 17:12:15 | 000,365,568 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll
[2016/04/13 17:12:15 | 000,303,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll
[2016/04/13 17:12:15 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wininetlui.dll
[2016/04/13 17:12:14 | 000,630,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontdrvhost.exe
[2016/04/13 17:12:14 | 000,541,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontdrvhost.exe
[2016/04/13 17:12:14 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2016/04/13 17:12:14 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wininetlui.dll
[2016/04/13 17:12:13 | 022,378,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016/04/13 17:12:13 | 007,474,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016/04/13 17:12:13 | 000,045,568 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll
[2016/04/13 17:12:12 | 003,592,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016/04/13 17:12:12 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016/04/13 17:12:12 | 001,388,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016/04/13 17:12:09 | 000,965,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2016/04/13 17:12:09 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2016/04/13 17:12:08 | 016,985,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2016/04/13 17:12:08 | 013,018,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2016/04/13 17:12:08 | 001,714,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRHInproc.dll
[2016/04/13 17:12:08 | 001,444,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRHInproc.dll
[2016/04/13 17:12:07 | 011,545,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2016/04/13 17:12:07 | 009,918,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2016/04/13 17:12:07 | 007,836,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016/04/13 17:12:07 | 002,624,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016/04/13 17:12:07 | 001,944,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016/04/13 17:12:07 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2016/04/13 17:12:07 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2016/04/13 17:12:07 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll
[2016/04/13 17:12:06 | 005,662,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016/04/13 17:12:06 | 003,994,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/13 17:12:06 | 003,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016/04/13 17:12:05 | 005,202,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BingMaps.dll
[2016/04/13 17:12:05 | 002,798,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016/04/13 17:12:05 | 000,948,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XblAuthManager.dll
[2016/04/13 17:12:04 | 001,946,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2016/04/13 17:12:04 | 001,390,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016/04/13 17:12:04 | 001,297,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016/04/13 17:12:04 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016/04/13 17:06:40 | 001,832,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/13 17:06:40 | 000,986,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016/04/13 17:06:39 | 003,575,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/13 17:06:39 | 001,626,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2016/04/13 17:06:39 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2016/04/13 17:06:38 | 007,199,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BingMaps.dll
[2016/04/13 17:06:38 | 003,078,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\esent.dll
[2016/04/13 17:06:38 | 002,722,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\esent.dll
[2016/04/13 17:06:38 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2016/04/13 17:06:38 | 001,139,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2016/04/13 17:06:38 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/13 17:06:38 | 000,938,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapControlCore.dll
[2016/04/13 17:06:38 | 000,859,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2016/04/13 17:06:38 | 000,852,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsStore.dll
[2016/04/13 17:06:38 | 000,696,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupEngine.dll
[2016/04/13 17:06:38 | 000,649,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2016/04/13 17:06:38 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupShim.dll
[2016/04/13 17:06:37 | 002,158,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/13 17:06:37 | 001,575,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Speech.dll
[2016/04/13 17:06:37 | 001,317,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016/04/13 17:06:37 | 001,211,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Cred.dll
[2016/04/13 17:06:37 | 001,141,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016/04/13 17:06:37 | 001,090,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/13 17:06:37 | 001,072,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2016/04/13 17:06:37 | 001,030,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016/04/13 17:06:37 | 000,989,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecConfig.efi
[2016/04/13 17:06:37 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NMAA.dll
[2016/04/13 17:06:37 | 000,958,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RemoteNaturalLanguage.dll
[2016/04/13 17:06:37 | 000,874,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016/04/13 17:06:37 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016/04/13 17:06:37 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapControlCore.dll
[2016/04/13 17:06:37 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/13 17:06:37 | 000,587,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2016/04/13 17:06:37 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PsmServiceExtHost.dll
[2016/04/13 17:06:37 | 000,550,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StoreAgent.dll
[2016/04/13 17:06:37 | 000,502,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupEngine.dll
[2016/04/13 17:06:37 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/13 17:06:37 | 000,460,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapConfiguration.dll
[2016/04/13 17:06:37 | 000,438,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AccountsRt.dll
[2016/04/13 17:06:37 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenrollengine.dll
[2016/04/13 17:06:37 | 000,415,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StoreAgent.dll
[2016/04/13 17:06:37 | 000,369,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/13 17:06:37 | 000,354,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupShim.dll
[2016/04/13 17:06:37 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapConfiguration.dll
[2016/04/13 17:06:37 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorService.dll
[2016/04/13 17:06:37 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2016/04/13 17:06:37 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2016/04/13 17:06:37 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2016/04/13 17:06:37 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll
[2016/04/13 17:06:36 | 001,410,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2016/04/13 17:06:36 | 001,239,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2016/04/13 17:06:36 | 001,056,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JpMapControl.dll
[2016/04/13 17:06:36 | 001,052,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2016/04/13 17:06:36 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2016/04/13 17:06:36 | 000,821,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBroker.dll
[2016/04/13 17:06:36 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JpMapControl.dll
[2016/04/13 17:06:36 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Cred.dll
[2016/04/13 17:06:36 | 000,730,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/13 17:06:36 | 000,712,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RemoteNaturalLanguage.dll
[2016/04/13 17:06:36 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2016/04/13 17:06:36 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MessagingDataModel2.dll
[2016/04/13 17:06:36 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncController.dll
[2016/04/13 17:06:36 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MessagingDataModel2.dll
[2016/04/13 17:06:36 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredProvDataModel.dll
[2016/04/13 17:06:36 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AccountsRt.dll
[2016/04/13 17:06:36 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredProvDataModel.dll
[2016/04/13 17:06:36 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXTaskFactory.dll
[2016/04/13 17:06:36 | 000,300,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockAppHost.exe
[2016/04/13 17:06:36 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshostcore.dll
[2016/04/13 17:06:36 | 000,253,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LockAppHost.exe
[2016/04/13 17:06:36 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupSvc.dll
[2016/04/13 17:06:36 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmmigrator.dll
[2016/04/13 17:06:36 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2016/04/13 17:06:35 | 003,351,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016/04/13 17:06:35 | 001,117,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Speech.dll
[2016/04/13 17:06:35 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll
[2016/04/13 17:06:35 | 000,881,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2016/04/13 17:06:35 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2016/04/13 17:06:35 | 000,848,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2016/04/13 17:06:35 | 000,787,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.dll
[2016/04/13 17:06:35 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2016/04/13 17:06:35 | 000,770,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/13 17:06:35 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:06:35 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2016/04/13 17:06:35 | 000,694,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdiWiFi.sys
[2016/04/13 17:06:35 | 000,686,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2016/04/13 17:06:35 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2016/04/13 17:06:35 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBroker.dll
[2016/04/13 17:06:35 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.dll
[2016/04/13 17:06:35 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2016/04/13 17:06:35 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacc.dll
[2016/04/13 17:06:35 | 000,378,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2016/04/13 17:06:35 | 000,374,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/13 17:06:35 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncbservice.dll
[2016/04/13 17:06:35 | 000,334,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2016/04/13 17:06:35 | 000,296,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2016/04/13 17:06:35 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveui.dll
[2016/04/13 17:06:35 | 000,277,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2016/04/13 17:06:35 | 000,261,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LsaIso.exe
[2016/04/13 17:06:35 | 000,258,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ufx01000.sys
[2016/04/13 17:06:35 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\accountaccessor.dll
[2016/04/13 17:06:35 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2016/04/13 17:06:35 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2016/04/13 17:06:35 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AboveLockAppHost.dll
[2016/04/13 17:06:35 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enrollmentapi.dll
[2016/04/13 17:06:35 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msorcl32.dll
[2016/04/13 17:06:35 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2016/04/13 17:06:35 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Devices.dll
[2016/04/13 17:06:35 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AboveLockAppHost.dll
[2016/04/13 17:06:35 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/13 17:06:35 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2016/04/13 17:06:35 | 000,115,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetSetupApi.dll
[2016/04/13 17:06:35 | 000,110,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srvcli.dll
[2016/04/13 17:06:35 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Devices.dll
[2016/04/13 17:06:35 | 000,100,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\omadmapi.dll
[2016/04/13 17:06:35 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanagerprecheck.dll
[2016/04/13 17:06:35 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2016/04/13 17:06:35 | 000,084,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NetSetupApi.dll
[2016/04/13 17:06:35 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/13 17:06:35 | 000,081,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netapi32.dll
[2016/04/13 17:06:35 | 000,078,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wkscli.dll
[2016/04/13 17:06:35 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MosStorage.dll
[2016/04/13 17:06:35 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MosStorage.dll
[2016/04/13 17:06:35 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wkscli.dll
[2016/04/13 17:06:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2016/04/13 17:06:34 | 004,774,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/13 17:06:34 | 000,841,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2016/04/13 17:06:34 | 000,821,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2016/04/13 17:06:34 | 000,686,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieproxy.dll
[2016/04/13 17:06:34 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll
[2016/04/13 17:06:34 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.Web.Core.dll
[2016/04/13 17:06:34 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncController.dll
[2016/04/13 17:06:34 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2016/04/13 17:06:34 | 000,330,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:06:34 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvecpl.dll
[2016/04/13 17:06:34 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieproxy.dll
[2016/04/13 17:06:34 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/13 17:06:34 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/13 17:06:34 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/04/13 17:06:34 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthLEEnum.sys
[2016/04/13 17:06:34 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\credprovhost.dll
[2016/04/13 17:06:34 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/13 17:06:34 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAFWSD.dll
[2016/04/13 17:06:34 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/13 17:06:34 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\credprovhost.dll
[2016/04/13 17:06:34 | 000,185,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2016/04/13 17:06:34 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2016/04/13 17:06:34 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/13 17:06:34 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2016/04/13 17:06:34 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmcsps.dll
[2016/04/13 17:06:34 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.V2.dll
[2016/04/13 17:06:34 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browserbroker.dll
[2016/04/13 17:06:34 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tzautoupdate.dll
[2016/04/13 17:06:34 | 000,074,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2016/04/13 17:06:34 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2016/04/13 17:06:34 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OnDemandConnRouteHelper.dll
[2016/04/13 17:06:34 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\basesrv.dll
[2016/04/13 17:06:34 | 000,058,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsNativeApi.dll
[2016/04/13 17:06:34 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\browcli.dll
[2016/04/13 17:06:34 | 000,051,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.dll
[2016/04/13 17:06:34 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\browcli.dll
[2016/04/13 17:06:34 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tbauth.dll
[2016/04/13 17:06:34 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuautoappupdate.dll
[2016/04/13 17:06:34 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsdchngr.dll
[2016/04/13 17:06:34 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerShellext.exe
[2016/04/13 17:06:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wsdchngr.dll
[2016/04/13 17:06:33 | 007,979,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mos.dll
[2016/04/13 17:06:33 | 006,297,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mos.dll
[2016/04/13 17:06:33 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NMAA.dll
[2016/04/13 17:06:33 | 000,764,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2016/04/13 17:06:33 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcastdvr.exe
[2016/04/13 17:06:33 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2016/04/13 17:06:33 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2016/04/13 17:06:33 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2016/04/13 17:06:33 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InstallAgent.exe
[2016/04/13 17:06:33 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.DeviceEncryptionHandlers.dll
[2016/04/13 17:06:33 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InstallAgent.exe
[2016/04/13 17:06:33 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mtxoci.dll
[2016/04/13 17:06:33 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsBtSvc.dll
[2016/04/13 17:06:33 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mtxoci.dll
[2016/04/13 17:06:33 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FontProvider.dll
[2016/04/13 17:06:33 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2016/04/13 17:06:33 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2016/04/13 17:06:33 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MapsCSP.dll
[2016/04/13 17:06:33 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MapsBtSvc.dll
[2016/04/13 17:06:33 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppCapture.dll
[2016/04/13 17:06:33 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsNativeApi.V2.dll
[2016/04/13 17:06:33 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetCfgNotifyObjectHost.exe
[2016/04/13 17:06:33 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\moshost.dll
[2016/04/13 17:06:33 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OnDemandConnRouteHelper.dll
[2016/04/13 17:06:33 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2016/04/13 17:06:33 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmenterprisediagnostics.dll
[2016/04/13 17:06:33 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tbauth.dll
[2016/04/13 17:06:33 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mapsupdatetask.dll
[2016/04/13 17:06:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TokenBrokerCookies.exe
[2016/04/13 17:06:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TokenBrokerCookies.exe
[2016/04/13 17:06:33 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleacchooks.dll
[2016/04/13 17:06:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\oleacchooks.dll
[2016/04/13 17:06:03 | 000,110,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvStreaming.exe
[2016/04/13 03:26:59 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\RootPro
[2016/04/13 03:26:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RootPro CAD 7 Free
[2016/04/12 16:43:21 | 000,042,112 | ---- | C] (QILING Tech Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\diskbckp.sys
[2016/04/12 16:43:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Master Free
[2016/04/12 06:11:11 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\OCCT
[2016/04/11 06:40:41 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Intel Telemetry
[2016/04/11 06:40:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel Telemetry
[2016/04/11 06:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
[2016/04/11 06:33:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Killer
[2016/04/11 06:33:23 | 000,000,000 | ---D | C] -- C:\Program Files\Killer Networking
[2016/04/11 06:03:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Setup Files
[2016/04/11 05:54:05 | 001,692,840 | ---- | C] (MSI) -- C:\WINDOWS\SysWow64\muachost.exe
[2016/04/11 05:53:33 | 003,195,648 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2016/04/11 05:53:33 | 002,894,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2016/04/11 05:53:33 | 001,356,512 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2016/04/11 05:53:33 | 000,689,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2016/04/11 05:53:33 | 000,532,384 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll
[2016/04/11 05:53:33 | 000,387,320 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll
[2016/04/11 05:53:33 | 000,343,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtlCPAPI64.dll
[2016/04/11 05:53:33 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll
[2016/04/11 05:53:33 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll
[2016/04/11 05:53:33 | 000,221,968 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll
[2016/04/11 05:53:33 | 000,214,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll
[2016/04/11 05:53:33 | 000,209,544 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll
[2016/04/11 05:53:33 | 000,166,208 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll
[2016/04/11 05:53:33 | 000,110,992 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll
[2016/04/11 05:53:33 | 000,088,352 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll
[2016/04/11 05:53:32 | 002,050,184 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2016/04/11 05:53:32 | 002,036,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2016/04/11 05:53:32 | 001,743,632 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBAPO232.dll
[2016/04/11 05:53:32 | 000,410,040 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBWrp64.dll
[2016/04/11 05:53:32 | 000,330,568 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll
[2016/04/11 05:53:31 | 003,282,032 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2016/04/11 05:53:31 | 000,574,760 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2016/04/11 05:53:31 | 000,122,328 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2016/04/11 05:53:31 | 000,118,600 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAR64.dll
[2016/04/11 05:49:56 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Creative
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\SplitMediaLabs
[2016/04/11 05:47:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SplitmediaLabs
[2016/04/11 05:46:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI(R) Intel(R) Extreme Tuning Utility
[2016/04/11 05:46:22 | 000,000,000 | ---D | C] -- C:\uninstall
[2016/04/11 05:46:22 | 000,000,000 | ---D | C] -- C:\Intel
[2016/04/11 05:46:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2016/04/11 05:46:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2016/04/11 05:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2016/04/11 05:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2016/04/11 05:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2016/04/11 05:45:59 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2016/04/11 05:27:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PostureAgent
[2016/04/11 05:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2016/04/11 05:27:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2016/04/11 05:27:48 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Intel
[2016/04/11 05:27:16 | 000,090,112 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\Updreg.EXE
[2016/04/11 05:27:13 | 000,375,424 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\ChezSC64.DLL
[2016/04/11 05:27:13 | 000,327,296 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\ChezSC32.DLL
[2016/04/11 05:27:13 | 000,148,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBCfg64.exe
[2016/04/11 05:27:13 | 000,138,880 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBCfg32.exe
[2016/04/11 05:27:13 | 000,041,088 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBCfg64.dll
[2016/04/11 05:27:13 | 000,038,016 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\MBCfg32.dll
[2016/04/11 05:27:13 | 000,015,488 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysWow64\ResDefA.exe
[2016/04/11 05:27:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2016/04/11 05:26:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
[2016/04/11 05:26:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2016/04/11 05:23:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2016/04/11 05:23:02 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2016/04/11 05:22:50 | 000,041,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\drivers\MBfilt64.sys
[2016/04/11 05:22:37 | 000,192,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCfg64.dll
[2016/04/11 05:22:37 | 000,023,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCoLDR64.dll
[2016/04/11 05:22:35 | 003,283,248 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2016/04/11 05:22:32 | 003,081,296 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RltkAPO64.dll
[2016/04/11 05:21:14 | 001,977,072 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\SysNative\MBAPO264.dll
[2016/04/11 05:20:30 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2016/04/11 05:20:28 | 002,826,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2016/04/11 05:18:31 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2016/04/11 05:13:51 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\Diagnostics
[2016/04/10 03:18:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
[2016/04/10 03:17:58 | 000,192,512 | ---- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\SysWow64\drivers\UpdateHelper.dll
[2016/04/10 03:17:52 | 000,028,672 | ---- | C] (ASUSTek Computer Inc.) -- C:\WINDOWS\SysWow64\AsIO.dll
[2016/04/10 03:17:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS
[2016/04/10 03:17:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2016/04/10 01:12:24 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\My Games
[2016/04/09 02:19:15 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\CrashRpt
[2016/04/09 02:19:00 | 000,000,000 | ---D | C] -- C:\ProgramData\RapidSolution
[2016/04/09 02:17:47 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\RapidSolution
[2016/04/09 02:06:25 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\Apowersoft
[2016/04/09 02:06:20 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft
[2016/04/07 02:12:52 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Identities
[2016/04/07 01:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Futuremark
[2016/04/06 02:33:06 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\SUPER_PI
[2016/04/06 02:06:47 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\ Plexutilities
[2016/04/06 01:14:18 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Local\ElevatedDiagnostics
[2016/04/06 01:09:18 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\0U1E1Q1T2Z1P0S2Z1T1C
[2016/04/06 00:56:36 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\{6B3DE556-D264-34D5-533E-42B9AEECDE7C}
[2016/04/06 00:11:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\x-アプリ
[2016/04/05 21:31:42 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\3DMark 11
[2016/04/04 02:42:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Disk Master
[2016/04/04 02:41:59 | 000,252,544 | ---- | C] (QILING Tech Co., Ltd.) -- C:\WINDOWS\SysNative\drivers\vDisk.sys
[2016/04/04 02:01:34 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\MAXON
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
17：hotty14 :
2016/05/03 (Tue) 01:25:50: …続き

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/05/01 23:42:51 | 000,000,724 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016/05/01 23:15:10 | 001,531,668 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2016/05/01 23:15:10 | 000,734,296 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2016/05/01 23:15:10 | 000,516,466 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2016/05/01 23:15:10 | 000,138,900 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2016/05/01 23:15:10 | 000,138,836 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2016/05/01 23:11:12 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2016/05/01 23:09:28 | 000,000,720 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016/05/01 23:09:22 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2016/05/01 23:09:13 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2016/05/01 23:09:10 | 834,695,165 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/30 06:09:45 | 000,002,385 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/04/30 00:32:50 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/30 00:03:27 | 000,000,830 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/04/29 03:44:09 | 000,002,122 | ---- | M] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2016/04/29 03:44:09 | 000,002,120 | ---- | M] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2016/04/29 03:44:09 | 000,002,110 | ---- | M] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2016/04/27 16:58:13 | 000,002,147 | ---- | M] () -- C:\Users\Public\Desktop\MSI Super Charger.lnk
[2016/04/27 16:54:08 | 000,001,844 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Eye.lnk
[2016/04/27 16:54:04 | 000,001,129 | ---- | M] () -- C:\Users\Public\Desktop\MSI Gaming APP.lnk
[2016/04/27 15:46:02 | 000,002,353 | ---- | M] () -- C:\Users\Shunichi Hotta\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/04/27 05:21:08 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/04/23 01:18:03 | 000,000,045 | ---- | M] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016/04/23 00:54:28 | 000,000,794 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2016/04/22 00:24:02 | 000,000,022 | ---- | M] () -- C:\WINDOWS\GPU-Z.INI
[2016/04/18 05:11:34 | 000,000,897 | ---- | M] () -- C:\Users\Public\Desktop\Transcend SSD Scope.lnk
[2016/04/17 16:54:22 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\PCMark 8.lnk
[2016/04/17 16:49:54 | 000,000,932 | ---- | M] () -- C:\Users\Shunichi Hotta\Desktop\CrystalDiskInfo.lnk
[2016/04/15 05:15:20 | 000,220,104 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2016/04/14 06:26:14 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_csrserial_01009.Wdf
[2016/04/14 05:59:03 | 3708,763,590 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2016/04/14 04:34:37 | 000,000,222 | ---- | M] () -- C:\Users\Shunichi Hotta\Desktop\FINAL FANTASY TYPE-0 HD.url
[2016/04/14 04:22:17 | 000,006,085 | ---- | M] () -- C:\Users\Shunichi Hotta\Documents\otodoke_DO-P1402487.pdf
[2016/04/14 04:01:22 | 000,000,729 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/04/13 17:16:47 | 000,001,461 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2016/04/12 16:44:55 | 017,180,672 | -HS- | M] () -- C:\WINDOWS\ramdisk.fvd
[2016/04/12 16:43:20 | 000,000,846 | ---- | M] () -- C:\Users\Public\Desktop\Disk Master Free.lnk
[2016/04/11 06:33:39 | 000,002,801 | ---- | M] () -- C:\Users\Public\Desktop\Killer Network Manager.lnk
[2016/04/11 06:33:39 | 000,002,306 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
[2016/04/11 06:33:09 | 000,000,000 | ---- | M] () -- C:\Users\Shunichi Hotta\AppData\Local\Driver_LOM_8161Present.flag
[2016/04/11 05:54:05 | 000,001,177 | ---- | M] () -- C:\Users\Public\Desktop\MSI Command Center.lnk
[2016/04/11 05:54:00 | 000,001,137 | ---- | M] () -- C:\Users\Public\Desktop\MSI Fast Boot.lnk
[2016/04/11 05:47:06 | 000,001,298 | ---- | M] () -- C:\Users\Public\Desktop\XSplit Gamecaster.lnk
[2016/04/11 05:46:25 | 000,002,685 | ---- | M] () -- C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
[2016/04/11 05:45:57 | 000,001,205 | ---- | M] () -- C:\Users\Public\Desktop\MSI ECO Center.lnk
[2016/04/11 05:27:01 | 000,000,087 | RH-- | M] () -- C:\WINDOWS\ctfile.rfc
[2016/04/10 03:17:58 | 000,000,850 | ---- | M] () -- C:\Users\Public\Desktop\MemTweakIt.lnk
[2016/04/10 03:17:36 | 000,028,672 | ---- | M] (ASUSTek Computer Inc.) -- C:\WINDOWS\SysWow64\AsIO.dll
[2016/04/10 03:17:36 | 000,015,232 | ---- | M] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2016/04/10 01:49:12 | 000,000,837 | ---- | M] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016/04/07 03:32:08 | 000,829,944 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2016/04/07 03:32:08 | 000,176,632 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2016/04/07 02:18:16 | 000,509,874 | ---- | M] () -- C:\Users\Shunichi Hotta\Documents\PCMarkV.pcr
[2016/04/07 01:57:49 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\PCMark Vantage x64.lnk
[2016/04/06 01:18:54 | 000,000,835 | ---- | M] () -- C:\Users\Public\Desktop\Opti Drive Control.lnk
[2016/04/06 00:11:47 | 000,000,669 | ---- | M] () -- C:\Users\Public\Desktop\x-アプリ.lnk
[2016/04/04 04:54:08 | 000,000,861 | ---- | M] () -- C:\Users\Public\Desktop\CPUID PerfMonitor2.lnk
[2016/04/02 13:13:14 | 000,369,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2016/04/02 13:10:46 | 000,730,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2016/04/02 13:10:39 | 000,374,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2016/04/02 13:10:25 | 000,770,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2016/04/02 12:30:16 | 000,151,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEStoreEventHandlers.dll
[2016/04/02 12:29:38 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEDataLayerHelpers.dll
[2016/04/02 12:29:29 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEDataLayerHelpers.dll
[2016/04/02 12:26:25 | 000,630,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PhoneProviders.dll
[2016/04/02 12:25:58 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\NotificationObjFactory.dll
[2016/04/02 12:25:42 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NotificationObjFactory.dll
[2016/04/02 12:23:44 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VEEventDispatcher.dll
[2016/04/02 12:23:05 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VEEventDispatcher.dll
[2016/04/02 12:21:17 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tileobjserver.dll
[2016/04/02 12:18:47 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SharedStartModel.dll
[2016/04/02 12:15:47 | 001,090,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDXService.dll
[2016/04/02 12:14:35 | 003,994,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/04/02 12:09:17 | 001,832,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2016/04/02 12:07:41 | 002,158,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/04/02 12:07:22 | 003,575,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/04/02 12:03:52 | 004,774,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2016/04/02 12:00:39 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/04/30 00:03:27 | 000,000,830 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/04/28 01:29:50 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/04/27 16:58:13 | 000,002,147 | ---- | C] () -- C:\Users\Public\Desktop\MSI Super Charger.lnk
[2016/04/27 16:54:08 | 000,001,844 | ---- | C] () -- C:\Users\Public\Desktop\Dragon Eye.lnk
[2016/04/27 07:05:02 | 000,002,385 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/04/27 07:05:02 | 000,002,353 | ---- | C] () -- C:\Users\Shunichi Hotta\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/04/27 07:05:02 | 000,002,341 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016/04/27 05:21:08 | 000,000,870 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/04/23 01:18:03 | 000,000,045 | ---- | C] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2016/04/23 00:54:28 | 000,000,794 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2016/04/18 05:11:34 | 000,000,897 | ---- | C] () -- C:\Users\Public\Desktop\Transcend SSD Scope.lnk
[2016/04/17 16:54:22 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\PCMark 8.lnk
[2016/04/17 16:49:54 | 000,000,932 | ---- | C] () -- C:\Users\Shunichi Hotta\Desktop\CrystalDiskInfo.lnk
[2016/04/14 06:26:14 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_csrserial_01009.Wdf
[2016/04/14 04:34:37 | 000,000,222 | ---- | C] () -- C:\Users\Shunichi Hotta\Desktop\FINAL FANTASY TYPE-0 HD.url
[2016/04/14 04:22:17 | 000,006,085 | ---- | C] () -- C:\Users\Shunichi Hotta\Documents\otodoke_DO-P1402487.pdf
[2016/04/14 04:01:22 | 000,000,729 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2016/04/13 17:12:14 | 001,862,008 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/04/13 17:12:12 | 002,656,952 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016/04/13 17:06:33 | 000,235,008 | ---- | C] () -- C:\WINDOWS\SysNative\MTF.dll
[2016/04/13 17:06:33 | 000,162,816 | ---- | C] () -- C:\WINDOWS\SysWow64\MTF.dll
[2016/04/12 16:44:53 | 017,180,672 | -HS- | C] () -- C:\WINDOWS\ramdisk.fvd
[2016/04/12 16:43:20 | 000,000,846 | ---- | C] () -- C:\Users\Public\Desktop\Disk Master Free.lnk
[2016/04/11 06:33:39 | 000,002,801 | ---- | C] () -- C:\Users\Public\Desktop\Killer Network Manager.lnk
[2016/04/11 06:33:39 | 000,002,306 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk
[2016/04/11 06:28:35 | 000,000,000 | ---- | C] () -- C:\Users\Shunichi Hotta\AppData\Local\Driver_LOM_8161Present.flag
[2016/04/11 05:53:33 | 004,989,482 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2016/04/11 05:47:06 | 000,001,298 | ---- | C] () -- C:\Users\Public\Desktop\XSplit Gamecaster.lnk
[2016/04/11 05:46:25 | 000,002,685 | ---- | C] () -- C:\Users\Public\Desktop\MSI(R) Intel(R) Extreme Tuning Utility.lnk
[2016/04/11 05:45:57 | 000,001,205 | ---- | C] () -- C:\Users\Public\Desktop\MSI ECO Center.lnk
[2016/04/11 05:45:48 | 000,001,129 | ---- | C] () -- C:\Users\Public\Desktop\MSI Gaming APP.lnk
[2016/04/11 05:45:39 | 000,001,177 | ---- | C] () -- C:\Users\Public\Desktop\MSI Command Center.lnk
[2016/04/11 05:45:39 | 000,000,000 | ---- | C] () -- C:\RAMDiskImage.img
[2016/04/11 05:45:24 | 000,001,137 | ---- | C] () -- C:\Users\Public\Desktop\MSI Fast Boot.lnk
[2016/04/11 05:27:13 | 000,013,741 | ---- | C] () -- C:\WINDOWS\SysNative\MBCfg64.ini
[2016/04/11 05:27:13 | 000,013,741 | ---- | C] () -- C:\WINDOWS\SysWow64\MBCfg32.ini
[2016/04/11 05:27:13 | 000,005,856 | ---- | C] () -- C:\WINDOWS\SysNative\MBCfgUninstall64.ini
[2016/04/11 05:27:13 | 000,005,856 | ---- | C] () -- C:\WINDOWS\SysWow64\MBCfgUninstall32.ini
[2016/04/11 05:27:13 | 000,002,835 | ---- | C] () -- C:\WINDOWS\MBCfg_SP_APOIM.ini
[2016/04/11 05:27:13 | 000,002,783 | ---- | C] () -- C:\WINDOWS\MBCfg_APOIM.ini
[2016/04/11 05:27:13 | 000,002,747 | ---- | C] () -- C:\WINDOWS\MBCfg_HP_APOIM.ini
[2016/04/11 05:27:01 | 000,366,080 | ---- | C] () -- C:\WINDOWS\SysNative\APOMgr64.DLL
[2016/04/11 05:27:01 | 000,274,944 | ---- | C] () -- C:\WINDOWS\SysWow64\APOMngr.DLL
[2016/04/11 05:27:01 | 000,089,600 | ---- | C] () -- C:\WINDOWS\SysNative\CmdRtr64.DLL
[2016/04/11 05:27:01 | 000,074,240 | ---- | C] () -- C:\WINDOWS\SysWow64\CmdRtr.DLL
[2016/04/11 05:27:01 | 000,000,087 | RH-- | C] () -- C:\WINDOWS\ctfile.rfc
[2016/04/10 03:17:58 | 000,000,850 | ---- | C] () -- C:\Users\Public\Desktop\MemTweakIt.lnk
[2016/04/10 03:17:52 | 000,015,232 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2016/04/10 01:49:12 | 000,000,837 | ---- | C] () -- C:\Users\Public\Desktop\CPUID HWMonitor.lnk
[2016/04/07 02:18:16 | 000,509,874 | ---- | C] () -- C:\Users\Shunichi Hotta\Documents\PCMarkV.pcr
[2016/04/07 01:57:49 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\PCMark Vantage x64.lnk
[2016/04/06 01:18:54 | 000,000,835 | ---- | C] () -- C:\Users\Public\Desktop\Opti Drive Control.lnk
[2016/04/06 00:11:30 | 000,000,669 | ---- | C] () -- C:\Users\Public\Desktop\x-アプリ.lnk
[2016/04/04 04:54:08 | 000,000,861 | ---- | C] () -- C:\Users\Public\Desktop\CPUID PerfMonitor2.lnk
[2016/03/31 04:43:39 | 008,659,472 | ---- | C] () -- C:\WINDOWS\SysWow64\nvptxJitCompiler.dll
[2016/03/31 04:43:39 | 000,572,096 | ---- | C] () -- C:\WINDOWS\SysWow64\nvfatbinaryLoader.dll
[2016/03/31 04:43:38 | 037,567,424 | ---- | C] () -- C:\WINDOWS\SysWow64\nvcompiler.dll
[2016/03/17 06:30:22 | 000,128,792 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-1-0-5-1.dll
[2016/03/17 06:29:38 | 000,041,752 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-1-0-5-1.exe
[2016/03/11 03:16:29 | 000,128,792 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1.dll
[2016/03/11 03:16:29 | 000,041,752 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo.exe
[2016/03/03 06:29:30 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2016/02/23 06:52:20 | 000,007,597 | ---- | C] () -- C:\Users\Shunichi Hotta\AppData\Local\Resmon.ResmonCfg
[2016/02/14 10:47:02 | 000,125,720 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-1-0-3-0.dll
[2016/02/14 10:45:46 | 000,042,264 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-1-0-3-0.exe
[2016/02/14 08:30:19 | 002,658,952 | ---- | C] () -- C:\WINDOWS\SysWow64\BootMan.exe
[2016/02/14 08:30:19 | 000,088,160 | ---- | C] () -- C:\WINDOWS\SysWow64\setupempdrv03.exe
[2016/02/14 08:30:19 | 000,021,088 | ---- | C] () -- C:\WINDOWS\SysWow64\EuEpmGdi.dll
[2016/02/14 08:30:19 | 000,014,944 | ---- | C] () -- C:\WINDOWS\SysWow64\epmntdrv.sys
[2016/02/14 08:30:19 | 000,010,208 | ---- | C] () -- C:\WINDOWS\SysWow64\EuGdiDrv.sys
[2016/02/13 16:51:53 | 000,000,022 | ---- | C] () -- C:\WINDOWS\GPU-Z.INI
[2016/02/12 14:30:44 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysWow64\HsMgr.exe
[2016/02/12 14:30:44 | 000,143,360 | ---- | C] () -- C:\WINDOWS\SysWow64\VmixP8.dll
[2016/02/12 14:30:44 | 000,000,057 | ---- | C] () -- C:\WINDOWS\SysWow64\cmasiop.ini
[2016/02/12 14:30:41 | 000,052,576 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.cfl
[2016/02/12 14:30:39 | 000,004,879 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.cfg
[2016/02/12 14:30:39 | 000,001,145 | ---- | C] () -- C:\WINDOWS\Cmicnfgp.ini.imi
[2016/02/12 14:30:38 | 000,000,491 | ---- | C] () -- C:\WINDOWS\cmudaxp.ini
[2016/02/10 16:18:32 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2015/10/30 16:24:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2015/10/30 16:24:43 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2015/10/30 16:18:39 | 000,164,224 | ---- | C] () -- C:\WINDOWS\SysWow64\weretw.dll
[2015/10/30 16:18:36 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2015/10/30 16:18:36 | 000,047,104 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2015/10/30 16:18:34 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2015/10/30 16:18:31 | 000,252,928 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2015/10/30 16:18:31 | 000,029,184 | ---- | C] () -- C:\WINDOWS\SysWow64\dtdump.exe
[2015/10/30 16:18:29 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2015/10/30 16:18:29 | 000,293,376 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2015/10/30 16:18:26 | 000,022,528 | ---- | C] () -- C:\WINDOWS\SysWow64\efsext.dll
[2015/10/30 16:18:25 | 000,002,269 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2015/10/30 16:18:23 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2015/10/30 16:18:22 | 000,000,160 | ---- | C] () -- C:\WINDOWS\SysWow64\fcb.dll
[2015/10/30 16:17:40 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2016/03/31 04:33:34 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016/02/24 17:46:25 | 006,607,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016/02/24 17:06:39 | 005,242,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2015/10/30 16:17:43 | 000,987,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2015/10/30 16:18:21 | 000,765,440 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2015/10/30 16:17:45 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2016/04/30 00:03:26 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2016/04/11 05:54:00 | 000,000,000 | -H-D | M] -- C:\MSI\Fast Boot
[2016/04/27 16:58:13 | 000,000,000 | -H-D | M] -- C:\MSI\Super Charger
[2012/05/17 14:45:24 | 000,528,384 | -H-- | M] (MSI) -- C:\MSI\Command Center\function.exe
[2016/05/01 16:57:46 | 000,000,000 | -H-D | M] -- C:\MSI\GamingAPP\Hotkey
[2016/05/01 16:58:43 | 000,000,000 | -H-D | M] -- C:\MSI\LiveUpdate\DL_INFO
[2016/04/11 05:53:56 | 000,000,000 | -H-D | M] -- C:\MSI\LiveUpdate\LOG
[2016/04/11 05:27:09 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2016/04/11 05:53:43 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2011/01/15 16:48:46 | 000,408,008 | -H-- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSU.exe
[2016/03/26 04:56:16 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ
[2016/05/01 16:51:14 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2016/03/26 04:56:16 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ\IJPrinter
[2016/03/26 04:57:35 | 000,000,000 | -H-D | M] -- C:\Program Files\CanonBJ\IJPrinter\Canon MG6200 series
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS
[2016/04/01 01:57:25 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\ProgramData\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer XPS
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2016/03/27 05:40:04 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2015/10/31 03:24:07 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\Sony Corporation\Media Go Video Playback Engine\2-2.20.102.05220
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\Sony Corporation\Media Go Video Playback Engine\3-2.20.102.05220
[2016/02/10 16:27:05 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ
[2016/03/26 04:55:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS
[2016/04/01 01:57:25 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer
[2016/03/26 04:57:36 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CanonBJ\IJPrinter\CNMWINDOWS\Canon MG6200 series Printer XPS
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2016/03/27 05:40:04 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2015/10/31 03:24:07 | 000,000,000 | RH-D | M] -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Sony Corporation\Media Go Video Playback Engine\2-2.20.102.05220
[2016/02/12 16:55:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Sony Corporation\Media Go Video Playback Engine\3-2.20.102.05220
[2015/10/30 16:24:24 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2016/03/03 06:34:13 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2016/04/30 00:03:27 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2016/02/10 18:44:11 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2016/02/10 18:42:37 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData
[2016/02/10 15:34:13 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2016/02/10 18:49:12 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn
[2016/05/01 23:09:23 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn1
[2016/02/23 06:59:01 | 000,000,000 | RH-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\Burn\Burn2
[2016/02/10 15:31:29 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\DNTException\Low
[2016/02/11 17:28:42 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2016/02/10 16:28:56 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2016/02/10 16:28:56 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2016/02/10 18:59:02 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\NVIDIA Corporation\Shield Apps\StreamingAssets
[2016/04/16 15:49:39 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Local\Temp\FreemakeVideoConverterTemp
[2016/02/10 16:25:48 | 000,000,000 | -H-D | M] -- C:\Users\Shunichi Hotta\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2016/02/11 17:23:42 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2016/03/31 04:33:22 | 000,000,000 | -H-D | M] -- C:\Windows\msdownld.tmp
[2016/02/10 16:24:08 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2016/02/10 16:24:08 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData
[2016/03/26 04:56:22 | 000,000,000 | -H-D | M] -- C:\WINDOWS\SysNative\CanonIJ Uninstaller Information

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2016/04/30 00:32:50 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2016/05/01 23:09:28 | 000,000,720 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2016/05/01 23:42:51 | 000,000,724 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2016/04/01 01:35:54 | 000,000,638 | ---- | M] () -- C:\WINDOWS\tasks\TrackerAutoUpdate.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Samsung SSD 850 EVO 250GB
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Samsung SSD 850 EVO 250GB
Partitions: 2
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST31000333AS
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE3 - Fixed hard disk media
Interface type:
Media Type: Fixed hard disk media
Model: QILING vDisk 01
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE4 - External hard disk media
Interface type: USB
Media Type: External hard disk media
Model: WDC WD30 EZRZ-00Z5HB0 USB Device
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE5 -
Interface type: USB
Media Type:
Model: Generic STORAGE DEVICE USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE6 -
Interface type: USB
Media Type:
Model: Generic STORAGE DEVICE USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE7 -
Interface type: USB
Media Type:
Model: Generic STORAGE DEVICE USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE8 -
Interface type: USB
Media Type:
Model: Generic STORAGE DEVICE USB Device
Partitions: 0
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE9 -
Interface type: USB
Media Type:
Model: Generic STORAGE DEVICE USB Device
Partitions: 0
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 233.00GB
Starting Offset: 32768
Hidden sectors: 0

DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 232.00GB
Starting Offset: 32768
Hidden sectors: 0

DeviceID: Disk #1, Partition #1
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 450.00MB
Starting Offset: 249585205248
Hidden sectors: 0

DeviceID: Disk #2, Partition #0
PartitionType: Extended w/Extended Int 13
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 932.00GB
Starting Offset: 8225280
Hidden sectors: 0

DeviceID: Disk #3, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 2.00GB
Starting Offset: 65536
Hidden sectors: 0

DeviceID: Disk #4, Partition #0
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 2,795.00GB
Starting Offset: 17408
Hidden sectors: 0

[color=#E56717]========== Base Services ==========[/color]
No service found with a name of AeLookupSvc
SRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,094,720 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 001,144,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2016/03/29 14:27:28 | 000,794,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2015/10/30 16:18:26 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,473,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2015/10/30 16:18:25 | 000,345,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2016/03/29 16:46:28 | 000,134,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:52 | 000,078,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,904,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,355,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2015/10/30 16:18:31 | 000,293,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2016/03/29 16:34:51 | 000,284,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:41 | 000,112,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,036,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2015/10/30 16:18:25 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2016/02/23 16:52:09 | 000,456,704 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:41 | 000,390,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2015/10/30 16:17:46 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
No service found with a name of MMCSS
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,265,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,547,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:25 | 000,371,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:48 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2016/02/23 17:02:25 | 000,755,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2016/01/16 14:40:12 | 000,106,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:40 | 000,696,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:51 | 000,904,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2016/02/24 16:19:56 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:03 | 000,057,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2016/01/16 14:37:43 | 000,190,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,283,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:16 | 000,608,768 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2015/10/30 16:18:38 | 000,559,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2016/02/23 17:10:06 | 000,997,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:10 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2015/10/30 16:18:36 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2015/10/30 16:18:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2016/03/29 16:30:49 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:49 | 001,465,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2016/04/02 12:19:00 | 001,054,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2016/02/23 17:28:32 | 000,275,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:25 | 000,150,528 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:37 | 000,024,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:45 | 001,743,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2016/02/24 15:28:23 | 000,870,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:19:28 | 000,643,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:43 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2015/10/30 16:18:21 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:45 | 000,225,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2016/03/29 15:31:52 | 002,275,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:39 | 000,264,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2016/02/23 16:01:55 | 002,295,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2015/10/30 16:17:53 | 000,274,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >

5分割になってしまいました…
18：悪代官 :
2016/05/03 (Tue) 06:18:22: 作業と報告、ご苦労様です。
今度は全文が見えました。

では次の作業にかかります。
今度はOTLで掃除しましょう。

このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらPCをまたセーフモードで再起動してOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」（赤字のボタン）を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
------------------------------------------
:OTL
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ja-jp/?ocid=iehp
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = ja-JP
IE - HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = AF 22 D0 0D CD 63 D1 01 [binary data]
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_1\
CHR - Extension: No name found = C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
[2016/04/09 02:06:25 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\Documents\Apowersoft
[2016/04/09 02:06:20 | 000,000,000 | ---D | C] -- C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft

:Files
C:\Users\Shunichi Hotta\Documents\Apowersoft
C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------------------------------------------
19：hotty14 :
2016/05/07 (Sat) 23:09:40: こんばんは、お世話になります。

これまで作業を進めてきた中で、おかしな挙動がぶり返すことなく、確実に解決していっているようです。

OTLのログを取りましたので、ご確認お願い致します。

・OTLログ/

All processes killed
========== OTL ==========
HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache| /E : value set successfully!
HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache AcceptLangs| /E : value set successfully!
HKU\S-1-5-21-3148462374-1354258840-1494918899-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_1\images folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_1 folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\_metadata folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\images folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
C:\Users\Shunichi Hotta\Documents\Apowersoft\Apowersoft Screen Recorder Pro folder moved successfully.
C:\Users\Shunichi Hotta\Documents\Apowersoft folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft\Apowersoft Screen Recorder Pro 2\log folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft\Apowersoft Screen Recorder Pro 2\data folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft\Apowersoft Screen Recorder Pro 2 folder moved successfully.
C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft folder moved successfully.
========== FILES ==========
File\Folder C:\Users\Shunichi Hotta\Documents\Apowersoft not found.
File\Folder C:\Users\Shunichi Hotta\AppData\Roaming\Apowersoft not found.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 313840 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default.migrated

User: Public

User: Shunichi Hotta
->Temp folder emptied: 886837180 bytes
->Temporary Internet Files folder emptied: 6193757 bytes
->Google Chrome cache emptied: 151742067 bytes
->Flash cache emptied: 18664694 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 32438904 bytes
Session Manager Temp folder emptied: 8192 bytes
Session Manager Tmp folder emptied: 12288 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1,045.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 05042016_233037

Files\Folders moved on Reboot...
C:\Users\Shunichi Hotta\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File\Folder C:\WINDOWS\temp\ramdisk15.fvd not found!
File\Folder y:\temp\sys\WFV2ED0.tmp not found!
File\Folder y:\temp\sys\WFV2F00.tmp not found!
File\Folder y:\temp\sys\WFV3114.tmp not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
20：悪代官 :
2016/05/08 (Sun) 21:06:31: レスが遅くなってすみません。

>これまで作業を進めてきた中で、おかしな挙動がぶり返すことなく、確実に解決していっているようです。

はい、異常は現在出てないようですね。
ログを見てもOTLでの処置対象は処置できたようです。
それではOTLは準備時の説明に従って片付けていいです。

ここで全体の見直します。
またHJTログと、CCでインストール情報と各タブのログも取り直して、それらをレスください。
なにか取りこぼしか、再感染がないかも含めて全体を洗い直します
21：hotty14 :
2016/05/12 (Thu) 00:43:52: こんばんは、お世話になります。

再度HJTとCCのログを取りましたので、ご確認お願い致します。

・HJTログ/

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 0:33:19, on 2016/05/12
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)

Boot mode: Normal

Running processes:
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\ASUS Xonar Essence STX Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Windows\SysWOW64\HsMgr.exe
C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
C:\Program Files (x86)\MSI\Live Update\Live Update.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaConverter.exe
C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaRenderer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Shunichi Hotta\Downloads\HijackThis.exe

O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Google Japanese Input Prelauncher] "C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
O4 - HKLM\..\Run: [EaseUS EPM tray] C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [Sound Blaster Cinema 2] "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Fast Boot] C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
O4 - HKLM\..\Run: [Super Charger] C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
O4 - HKLM\..\Run: [Live Update] C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
O4 - HKLM\..\Run: [Command Center] C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
O4 - HKLM\..\Run: [GammingApp] C:\Program Files (x86)\MSI\Gaming APP\SGamingApp.exe --min
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [AudialsNotifier] B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
O4 - HKCU\..\Run: [Steam] "B:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
O4 - Global Startup: Killer Network Manager.lnk = C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: McAfee Application Installer Cleanup (0059141462891185) (0059141462891185mcinstcleanup) - Unknown owner - y:\temp\sys\005914~1.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetoothスイッチャーサービス (BtSwitcherService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
O23 - Service: CSR Bluetoothオーディオサービス (CSRBtAudioService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
O23 - Service: CSR OBEX Service (CsrBtOBEXService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
O23 - Service: CSR Bluetooth サービス (CsrBtService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EaseUS Agentサービス (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Disk Master Agent (FrAgent) - QILING Tech Co., Ltd. - C:\Program Files\QILING\Disk Master\Agent.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark - C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
O23 - Service: GamingApp_Service - Micro-Star Int'l Co., Ltd. - C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
O23 - Service: GamingHotkey_Service - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe,-100 (GoogleIMEJaCacheService) - Google Inc. - C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Killer Service V2 - Rivet Networks - C:\Program Files\Killer Networking\Network Manager\KillerService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes - B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Boot Delay Start Service (McBootDelayStartSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.9.656.0\McCSPServiceHost.exe
O23 - Service: マカフィーパーソナルファイアウォールサービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\WINDOWS\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Module Core Service (ModuleCoreService) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MSI Command Center Clock Service (MSIClock_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe
O23 - Service: MSI Command Center Comm Service (MSICOMM_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
O23 - Service: MSI Command Center CPU Service (MSICPU_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
O23 - Service: MSI Command Center control Service (MSICTL_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSI Command Center DDR Service (MSIDDR_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
O23 - Service: MSI Command Center SMBus Service (MSISMB_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
O23 - Service: MSI Command Center SuperIO Service (MSISuperIO_CC) - MSI - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
O23 - Service: MSI_ECOSERVICE - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
O23 - Service: MSI_FastBoot - MSI - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
O23 - Service: MSI Live Update Service (MSI_LiveUpdate_Service) - Micro-Star INT'L CO., LTD. - C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
O23 - Service: MSI_SuperCharger - MSI - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Network Service (NvStreamNetworkSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe
O23 - Service: Intel Security PEF Service (PEFService) - Intel Security, Inc. - C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Samsung RAPID Mode Service (SamsungRapidSvc) - Unknown owner - C:\WINDOWS\system32\RAPID\SamsungRapidSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service2 - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Intel(R) Extreme Tuning Utility Service (XTU3SERVICE) - Intel(R) Corporation - C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe

--
End of file - 18780 bytes
22：hotty14 :
2016/05/12 (Thu) 00:50:17: …続き

・CCログ/

3D Builder Microsoft Corporation 2016/02/12 10.10.38.0
3DMark Futuremark 2016/03/10 63.0 MB 1.5.915.0
7-Zip 9.20 (x64 edition) Igor Pavlov 2016/04/11 2.48 MB 9.20.00.0
Adobe AIR Adobe Systems Incorporated 2016/03/25 24.3 MB 21.0.0.176
ASUS Xonar Essence STX Audio ASUSTeK Computer Inc. 2016/02/12 42.2 MB
Bonjour Apple Inc. 2016/03/04 3.23 MB 3.0.0.10
Candy Crush Soda Saga king.com 2016/05/04 1.65.800.0
Canon IJ Network Scanner Selector EX 2016/04/01 1.79 MB
Canon IJ Network Tool Canon Inc. 2016/03/26 3.1.1
Canon Inkjet Print Utility Canon Inc. 2016/03/26 2.5.0.6
Canon MG6200 series MP Drivers Canon Inc. 2016/03/26
CCleaner Piriform 2016/04/27 17.8 MB 5.17
CPUID CPU-Z 1.76 2016/04/23 3.94 MB
CPUID HWMonitor 1.28 2016/04/10 2.90 MB
CPUID PerfMonitor 2.04 CPUID, Inc. 2016/04/04 1.62 MB 2.04
CrystalDiskInfo 6.8.1 Crystal Dew World 2016/04/17 10.0 MB 6.8.1
CrystalDiskMark 5.1.2 Crystal Dew World 2016/02/14 6.93 MB 5.1.2
CSR Harmony Wireless Software Stack CSR Plc. 2016/04/14 309 MB 2.1.63.0
Disk Master Free version 3.7.5 QILING Tech Co., Ltd. 2016/05/02 31.2 MB 3.7.5
EaseUS Partition Master 10.8 EaseUS 2016/02/14 206 MB
EaseUS Todo Backup Free 9.0 CHENGDU YIWO Tech Development Co., Ltd 2016/02/14 9.0
FINAL FANTASY TYPE-0 HD SQUARE ENIX 2016/04/19 24.8 GB
foobar2000 v1.3.9 Peter Pawlowski 2016/03/10 10.0 MB 1.3.9
Futuremark SystemInfo Futuremark 2016/04/17 11.1 MB 4.45.590.0
Google Chrome Google Inc. 2016/04/27 481 MB 50.0.2661.94
Google Drive Google, Inc. 2016/04/29 68.6 MB 1.29.2074.1528
Google Toolbar for Internet Explorer Google Inc. 2016/05/05 15.8 MB 7.5.7619.1252
Google 日本語入力 Google Inc. 2016/02/13 51.8 MB 2.17.2400.0
Groove ミュージック Microsoft Corporation 2016/02/12 3.6.15131.0
HWiNFO64 Version 5.24 Martin Mal勛 - REALiX 2016/04/30 3.27 MB 5.24
Intel(R) Management Engine Components Intel Corporation 2016/04/11 11.0.0.1158
Intel® Security Assist Intel Corporation 2016/04/11 5.70 MB 1.0.0.532
Killer Performance Suite Rivet Networks 2016/04/11 1.1.57.1125
Leawo Blu-ray Player version 1.9.2.3 leawo Software 2016/03/11 97.4 MB 1.9.2.3
MakeMKV v1.9.9 GuinpinSoft inc 2016/03/12 v1.9.9
Malwarebytes Anti-Malware バージョン 2.2.1.1043 Malwarebytes 2016/04/30 56.7 MB 2.2.1.1043
marvell 91xx driver Marvell 2016/03/03 1.0.0.1036
McAfee WebAdvisor McAfee, Inc. 2016/04/27 29.9 MB 4.0.189
Media Go Sony 2016/02/12 231 MB 3.0.403
Media Go Network Downloader Sony 2016/02/12 2.64 MB 1.6.01.0
Media Go Video Playback Engine 2.20.102.05220 Sony 2016/02/12 45.2 MB 2.20.102.05220
MemTweakIt ASUSTeK Computer Inc. 2016/04/12 6.69 MB 2.02.22
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 2016/03/12 2.47 MB 4.0.40804.0
Microsoft Silverlight Microsoft Corporation 2016/03/09 101 MB 5.1.41212.0
Microsoft Solitaire Collection Microsoft Studios 2016/05/06 3.9.5030.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/02/12 3.36 MB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2016/04/07 3.76 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2016/04/09 1.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/02/11 830 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/02/11 960 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 18.0 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 4.76 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2016/04/20 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Corporation 2016/04/17 11.0.60610.1
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2016/04/14 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2016/04/27 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/04/27 17.1 MB 12.0.30501.0
Microsoft Wi-Fi Microsoft Corporation 2016/04/29 1.1604.4.0
Mozilla Maintenance Service Mozilla 2016/04/28 234 KB 45.0.0.5941
Mozilla Thunderbird 45.0 (x86 ja) Mozilla 2016/05/05 83.5 MB 45.0
MSI Afterburner 4.1.1 MSI Co., LTD 2016/02/11 4.1.1
MSI Command Center MSI 2016/05/10 77.0 MB 1.0.1.12
MSI DragonEye MSI 2016/04/27 48.5 MB 0.0.1.3
MSI ECO Center MSI 2016/04/11 14.0 MB 1.0.0.35
MSI Fast Boot MSI 2016/04/11 6.32 MB 1.0.1.8
MSI Gaming APP MSI 2016/05/10 70.6 MB 5.0.0.33
MSI Kombustor 3.5.2.1 (64-bit) MSI Co., LTD 2016/02/14 52.7 MB
MSI Live Update 6 MSI 2016/05/10 33.5 MB 6.1.016
MSI Super Charger MSI 2016/04/27 7.48 MB 1.3.0.04
MSI(R) Intel(R) Extreme Tuning Utility Intel Corporation 2016/05/10 103 MB 6.0.2.102
MSN トラベル Microsoft Corporation 2016/02/12 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/02/12 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/02/11 3.0.4.336
NVIDIA 3D Vision コントローラードライバー 364.44 NVIDIA Corporation 2016/05/06 8.53 MB 364.44
NVIDIA 3D Vision ドライバー 365.10 NVIDIA Corporation 2016/05/06 30.6 MB 365.10
NVIDIA GeForce Experience 2.11.3.5 NVIDIA Corporation 2016/05/06 44.2 MB 2.11.3.5
NVIDIA HD オーディオドライバー 1.3.34.4 NVIDIA Corporation 2016/05/06 8.42 MB 1.3.34.4
NVIDIA PhysX システムソフトウェア 9.15.0428 NVIDIA Corporation 2016/02/10 348 MB 9.15.0428
NVIDIA グラフィックスドライバー 365.10 NVIDIA Corporation 2016/05/06 599 MB 365.10
OCCT 4.4.2 Ocbase.com 2016/05/02 4.4.2
oki_clock 2016/02/14
OneNote Microsoft Corporation 2016/05/06 17.6868.57841.0
OpenAL 2016/02/12
PCMark 8 Futuremark 2016/04/19 7.54 GB 2.7.613.0
PCMark Vantage Futuremark 2016/04/07 784 MB 1.2.0.0
PDF-Viewer Tracker Software Products Ltd 2016/03/26 86.1 MB 2.5.316.1
People Microsoft Corporation 2016/04/05 10.0.10811.0
Realtek Ethernet Controller Driver Realtek 2016/03/20 3.35 MB 8.32.508.2014
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/04/11 34.0 MB 6.0.1.7730
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/03/03 1.15 MB 2.0.4.0
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/02/14 1.72 MB 3.0.23.0
RivaTuner Statistics Server 6.3.0 Unwinder 2016/02/11 6.3.0
RootPro CAD 7 Free 株式会社ルートプロ 2016/04/13 94.9 MB 7.24.1
Samsung Magician Samsung Electronics 2016/05/03 87.7 MB 4.9.6
Skype を手に入れよう Skype 2016/02/11 3.2.1.0
Sony Media Library Earth 9.3.01 Sony Corporation 2016/04/06 50.5 MB 9.3.01.03100
Sound Blaster Cinema 2 Creative Technology Limited 2016/04/12 7.88 MB 1.00.08
Steam Valve Corporation 2016/04/14 2.10.91.91
Sway Microsoft Corporation 2016/05/06 17.6965.45161.0
TechPowerUp GPU-Z TechPowerUp 2016/03/31
Transcend SSD Scope バージョン 3.2.0 Transcend Information, Inc. 2016/04/18 13.5 MB 3.2.0
Twitter Twitter Inc. 2016/04/26 5.0.2.0
Vulkan Run Time Libraries 1.0.3.0 LunarG, Inc. 2016/03/11 1.66 MB 1.0.3.0
Vulkan Run Time Libraries 1.0.8.1 LunarG, Inc. 2016/05/06 1.66 MB 1.0.8.1
Windows スキャン Microsoft Corporation 2016/02/11 6.3.9654.17133
Windows リーディングリスト Microsoft Corporation 2016/02/11 6.3.9654.20947
x-アプリ 6.0.03 Sony Corporation 2016/04/06 30.0 MB 10.0.03
Xbox Microsoft Corporation 2016/05/07 15.17.3003.0
XSplit Gamecaster SplitmediaLabs 2016/04/11 155 MB 2.4.1506.1243
Zoner Photo Studio 17 ZONER software 2016/03/19 375 MB 17.0.1.12
はじめに Microsoft Corporation 2016/03/29 3.5.11.0
アプリコネクター Microsoft Corporation 2016/02/11 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/03/25 10.1603.12020.0
カメラ Microsoft Corporation 2016/04/08 2016.325.60.0
ストア Microsoft Corporation 2016/05/01 11602.1.26.0
スポーツ Microsoft Corporation 2016/04/26 4.9.51.0
ニュース Microsoft Corporation 2016/04/26 4.9.51.0
フォト Microsoft Corporation 2016/03/29 16.325.12390.0
ボイスレコーダー Microsoft Corporation 2016/02/11 10.1512.21110.0
マカフィーインターネットセキュリティ McAfee, Inc. 2016/05/10 141 MB 14.0.8185
マップ Microsoft Corporation 2016/02/11 4.1601.10150.0
マネー Microsoft Corporation 2016/04/26 4.9.51.0
メッセージング & Skype Microsoft Corporation 2016/04/19 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/05/04 17.6868.40731.0
モバイルコンパニオン Microsoft Corporation 2016/02/12 10.1602.3010.0
リーダー Microsoft Corporation 2016/03/08 6.4.9926.18228
天気 Microsoft Corporation 2016/04/26 4.9.51.0
新しい Office を始めよう Microsoft Corporation 2016/05/06 17.6927.23501.0
映画 & テレビ Microsoft Corporation 2016/04/08 3.6.19761.0
電卓 Microsoft Corporation 2016/02/11 10.1601.49020.0
電話 Microsoft Corporation 2016/04/19 2.15.28004.0

・スタートアップ Windows/

有効 HKCU:Run AudialsNotifier B:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GoogleDriveSync Google "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKCU:Run Steam Valve Corporation "B:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKCU:Run Zoner Photo Studio Autoupdate ZONER software "B:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626_2\amd64"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225"
有効 HKCU:RunOnce Uninstall C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64 Microsoft Corporation C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Shunichi Hotta\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
有効 HKLM:Run Cmaudio8788 Microsoft Corporation C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
有効 HKLM:Run Cmaudio8788GX C:\WINDOWS\syswow64\HsMgr.exe Envoke
有効 HKLM:Run Cmaudio8788GX64 C:\WINDOWS\system\HsMgr64.exe Envoke
有効 HKLM:Run Command Center MSI C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
有効 HKLM:Run CsrAudioguiCtrl Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe
有効 HKLM:Run CSRHarmonySkypePlugin Cambridge Silicon Radio Limited C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe
有効 HKLM:Run CsrHCRPServer Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe
有効 HKLM:Run CsrSyncMLServer Cambridge Silicon Radio Ltd. C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe
有効 HKLM:Run Disk Master QILING Tech Co., Ltd. "C:\Program Files\QILING\Disk Master\vDiskUI.exe" -Hide
有効 HKLM:Run EaseUS EPM tray CHENGDU YIWO Tech Development Co., Ltd C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.8\bin\EpmNews.exe
有効 HKLM:Run Fast Boot MICRO-STAR INTERNATIONAL CO., LTD. C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe
有効 HKLM:Run GammingApp Micro-Star Int'l Co., Ltd. C:\Program Files (x86)\MSI\Gaming APP\SGamingApp.exe --min
有効 HKLM:Run Google Japanese Input Prelauncher Google Inc. "C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe" --mode=prelaunch_processes
有効 HKLM:Run HarmonyUserStartup Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe
有効 HKLM:Run IJNetworkScannerSelectorEX CANON INC. C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
有効 HKLM:Run Live Update Micro-Star INT'L CO., LTD. C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
有効 HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
有効 HKLM:Run MBCfg64 Microsoft Corporation C:\WINDOWS\system32\RunDLL32.exe C:\WINDOWS\system32\MBCfg64.dll,RunDLLEntry MBCfg64
有効 HKLM:Run NUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
有効 HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
有効 HKLM:Run RUSB3MON Renesas Electronics Corporation "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
有効 HKLM:Run SamsungRapidApp Samsung Electronics Co., Ltd. C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
有効 HKLM:Run ShadowPlay Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
有効 HKLM:Run Sound Blaster Cinema 2 Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
有効 HKLM:Run Super Charger MSI C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
有効 HKLM:Run TrayApplication Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\WINDOWS\UpdReg.EXE
有効 HKLM:Run vksts Cambridge Silicon Radio Limited C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe
有効 Startup Common Killer Network Manager.lnk Rivet Networks C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
23：hotty14 :
2016/05/12 (Thu) 00:55:55: …続き

・スタートアップ　タスク/

有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse McAfee, Inc. C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe /script=mcnrdhck.lua /periodicRunCount=2
有効 Task Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse McAfee, Inc. C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe /timeout=60000 /script=mcnrdhck.lua /hcmode=postdatupdate /datver=2613.0 /datupdatestatus=0
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
無効 Task Optimize Start Menu Cache Files-S-1-5-21-3148462374-1354258840-1494918899-1001
有効 Task SamsungMagician Samsung Electronics. "C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe" /AUTOHIDE
有効 Task TrackerAutoUpdate Tracker Software Products (Canada) Ltd. "B:\Program Files\Tracker Software\Update\TrackerUpdate.exe" -CheckUpdate
有効 Task {2665C17D-EADE-4BC0-9F0F-818D2F3C03E0} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Shunichi Hotta\AppData\Roaming\0U1E1Q1T2Z1P0S2Z1T1C\Opti Drive Control Packages\uninstaller.exe" -c /Uninst /NM="Opti Drive Control Packages" /AN="0U1E1Q1T2Z1P0S2Z1T1C" /MBN="Opti Drive Control Packages" /mnl

・スタートアップ　コンテキストメニュー/

有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory GDContextMenu Google C:\Program Files (x86)\Google\Drive\contextmenu64.dll
有効 Directory SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 Drive SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File GDContextMenu Google C:\Program Files (x86)\Google\Drive\contextmenu64.dll
有効 File MBAMShlExt Malwarebytes B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 File McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
有効 File SimpleShlExt CHENGDU YIWO Tech Development Co.,Ltd C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll
有効 Folder MBAMShlExt Malwarebytes B:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 Folder McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll

・ブラウザプラグイン　IE/

有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll

・ブラウザプラグイン　Chrome/

有効 App Google ドライブ 14.1 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
無効 App 就活力を鍛える! 時事・業界トレーニング 1.0.1 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpoecfmlefjgipbhopmdcikjelflnbpc\1.0.1_0
有効 Extension Application Launcher for Drive (by Google) 3.2 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0
有効 Extension Google オフラインドキュメント 1.4 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0
有効 Extension SiteAdvisor 4.0.0.0 最初のユーザー C:\Users\Shunichi Hotta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\4.0.0.0_1

ひとまず以上です。
24：悪代官 :
2016/05/12 (Thu) 21:23:13: 作業と報告、ご苦労様です。
現在の各ログを見せてもらいました。

おおむねあやしいところはなさそうですが、下記アプリが現在最新になってないので更新してください。
7-Zip 9.20 (x64 edition) Igor Pavlov 2016/04/11 2.48 MB 9.20.00.0
Mozilla Thunderbird 45.0 (x86 ja) Mozilla 2016/05/05 83.5 MB 45.0

この2つも更新できればいいですが、もしまた更新不全バグでも出るなら修正が必要です。

上記の修正後、インストール情報ログだけ取り直して、それをレスください。
この結果で更新もうまくできれば残る問題も片付きそうです
25：hotty14 :
2016/05/16 (Mon) 17:07:00: こんにちは、お世話になります。

アプリ更新後にインストール情報ログを取り直しましたので、ご確認お願い致します。

前回報告後に使用する必要があり、［GIMP］を追加インストールしています。

・インストール情報ログ/

3D Builder Microsoft Corporation 2016/02/12 10.10.38.0
3DMark Futuremark 2016/03/10 63.0 MB 1.5.915.0
7-Zip 9.20 (x64 edition) Igor Pavlov 2016/04/11 2.48 MB 9.20.00.0
Adobe AIR Adobe Systems Incorporated 2016/03/25 24.3 MB 21.0.0.176
ASUS Xonar Essence STX Audio ASUSTeK Computer Inc. 2016/02/12 42.2 MB
Bonjour Apple Inc. 2016/03/04 3.23 MB 3.0.0.10
Candy Crush Soda Saga king.com 2016/05/04 1.65.800.0
Canon IJ Network Scanner Selector EX 2016/04/01 1.79 MB
Canon IJ Network Tool Canon Inc. 2016/03/26 3.1.1
Canon Inkjet Print Utility Canon Inc. 2016/03/26 2.5.0.6
Canon MG6200 series MP Drivers Canon Inc. 2016/03/26
CCleaner Piriform 2016/04/27 17.8 MB 5.17
CPUID CPU-Z 1.76 2016/04/23 3.94 MB
CPUID HWMonitor 1.28 2016/04/10 2.90 MB
CPUID PerfMonitor 2.04 CPUID, Inc. 2016/04/04 1.62 MB 2.04
CrystalDiskInfo 6.8.1 Crystal Dew World 2016/04/17 10.0 MB 6.8.1
CrystalDiskMark 5.1.2 Crystal Dew World 2016/02/14 6.93 MB 5.1.2
CSR Harmony Wireless Software Stack CSR Plc. 2016/04/14 309 MB 2.1.63.0
Disk Master Free version 3.7.5 QILING Tech Co., Ltd. 2016/05/02 31.2 MB 3.7.5
EaseUS Partition Master 10.8 EaseUS 2016/02/14 206 MB
EaseUS Todo Backup Free 9.0 CHENGDU YIWO Tech Development Co., Ltd 2016/02/14 9.0
FINAL FANTASY TYPE-0 HD SQUARE ENIX 2016/04/19 24.8 GB
foobar2000 v1.3.9 Peter Pawlowski 2016/03/10 10.0 MB 1.3.9
Futuremark SystemInfo Futuremark 2016/04/17 11.1 MB 4.45.590.0
GIMP 2.8.16 The GIMP Team 2016/05/15 283 MB 2.8.16
Google Chrome Google Inc. 2016/04/27 481 MB 50.0.2661.102
Google Drive Google, Inc. 2016/04/29 68.6 MB 1.29.2074.1528
Google Toolbar for Internet Explorer Google Inc. 2016/05/05 15.8 MB 7.5.7619.1252
Google 日本語入力 Google Inc. 2016/02/13 51.8 MB 2.17.2400.0
Groove ミュージック Microsoft Corporation 2016/02/12 3.6.15131.0
HWiNFO64 Version 5.24 Martin Mal勛 - REALiX 2016/04/30 3.27 MB 5.24
Intel(R) Management Engine Components Intel Corporation 2016/04/11 11.0.0.1158
Intel® Security Assist Intel Corporation 2016/04/11 5.70 MB 1.0.0.532
Killer Performance Suite Rivet Networks 2016/04/11 1.1.57.1125
Leawo Blu-ray Player version 1.9.2.3 leawo Software 2016/03/11 97.4 MB 1.9.2.3
MakeMKV v1.9.9 GuinpinSoft inc 2016/03/12 v1.9.9
Malwarebytes Anti-Malware バージョン 2.2.1.1043 Malwarebytes 2016/04/30 56.7 MB 2.2.1.1043
marvell 91xx driver Marvell 2016/03/03 1.0.0.1036
McAfee WebAdvisor McAfee, Inc. 2016/05/13 29.9 MB 4.0.190
Media Go Sony 2016/02/12 231 MB 3.0.403
Media Go Network Downloader Sony 2016/02/12 2.64 MB 1.6.01.0
Media Go Video Playback Engine 2.20.102.05220 Sony 2016/02/12 45.2 MB 2.20.102.05220
MemTweakIt ASUSTeK Computer Inc. 2016/04/12 6.69 MB 2.02.22
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 2016/03/12 2.47 MB 4.0.40804.0
Microsoft Silverlight Microsoft Corporation 2016/03/09 101 MB 5.1.41212.0
Microsoft Solitaire Collection Microsoft Studios 2016/05/13 3.9.5100.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/02/12 3.36 MB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2016/04/07 3.76 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2016/04/09 1.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/02/11 830 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/02/11 960 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 18.0 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/03/12 4.76 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2016/04/20 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 Microsoft Corporation 2016/04/17 11.0.60610.1
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2016/04/14 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2016/04/27 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/04/27 17.1 MB 12.0.30501.0
Microsoft Wi-Fi Microsoft Corporation 2016/04/29 1.1604.4.0
Mozilla Maintenance Service Mozilla 2016/05/15 234 KB 45.1.0.5973
Mozilla Thunderbird 45.1.0 (x86 ja) Mozilla 2016/05/15 83.8 MB 45.1.0
MSI Afterburner 4.1.1 MSI Co., LTD 2016/02/11 4.1.1
MSI Command Center MSI 2016/05/10 77.0 MB 1.0.1.12
MSI DragonEye MSI 2016/04/27 48.5 MB 0.0.1.3
MSI ECO Center MSI 2016/04/11 14.0 MB 1.0.0.35
MSI Fast Boot MSI 2016/04/11 6.32 MB 1.0.1.8
MSI Gaming APP MSI 2016/05/10 70.6 MB 5.0.0.33
MSI Kombustor 3.5.2.1 (64-bit) MSI Co., LTD 2016/02/14 52.7 MB
MSI Live Update 6 MSI 2016/05/10 33.5 MB 6.1.016
MSI Super Charger MSI 2016/04/27 7.48 MB 1.3.0.04
MSI(R) Intel(R) Extreme Tuning Utility Intel Corporation 2016/05/10 103 MB 6.0.2.102
MSN トラベル Microsoft Corporation 2016/02/12 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/02/12 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/02/11 3.0.4.336
NVIDIA 3D Vision コントローラードライバー 364.44 NVIDIA Corporation 2016/05/16 364.44
NVIDIA 3D Vision ドライバー 365.19 NVIDIA Corporation 2016/05/16 365.19
NVIDIA GeForce Experience 2.11.3.5 NVIDIA Corporation 2016/05/06 44.2 MB 2.11.3.5
NVIDIA HD オーディオドライバー 1.3.34.4 NVIDIA Corporation 2016/05/16 1.3.34.4
NVIDIA PhysX システムソフトウェア 9.15.0428 NVIDIA Corporation 2016/02/10 348 MB 9.15.0428
NVIDIA グラフィックスドライバー 365.19 NVIDIA Corporation 2016/05/16 365.19
OCCT 4.4.2 Ocbase.com 2016/05/02 4.4.2
oki_clock 2016/02/14
OneNote Microsoft Corporation 2016/05/06 17.6868.57841.0
OpenAL 2016/02/12
PCMark 8 Futuremark 2016/04/19 7.54 GB 2.7.613.0
PCMark Vantage Futuremark 2016/04/07 784 MB 1.2.0.0
PDF-Viewer Tracker Software Products Ltd 2016/03/26 86.1 MB 2.5.316.1
People Microsoft Corporation 2016/04/05 10.0.10811.0
Realtek Ethernet Controller Driver Realtek 2016/03/20 3.35 MB 8.32.508.2014
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/04/11 34.0 MB 6.0.1.7730
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/02/14 1.72 MB 3.0.23.0
Renesas Electronics USB 3.0 Host Controller Driver Renesas Electronics Corporation 2016/03/03 1.15 MB 2.0.4.0
RivaTuner Statistics Server 6.3.0 Unwinder 2016/02/11 6.3.0
RootPro CAD 7 Free 株式会社ルートプロ 2016/04/13 94.9 MB 7.24.1
Samsung Magician Samsung Electronics 2016/05/03 87.7 MB 4.9.6
Skype を手に入れよう Skype 2016/02/11 3.2.1.0
Sony Media Library Earth 9.3.01 Sony Corporation 2016/04/06 50.5 MB 9.3.01.03100
Sound Blaster Cinema 2 Creative Technology Limited 2016/04/12 7.88 MB 1.00.08
Steam Valve Corporation 2016/04/14 2.10.91.91
Sway Microsoft Corporation 2016/05/06 17.6965.45161.0
TechPowerUp GPU-Z TechPowerUp 2016/03/31
Transcend SSD Scope バージョン 3.2.0 Transcend Information, Inc. 2016/04/18 13.5 MB 3.2.0
Twitter Twitter Inc. 2016/05/13 5.0.3.0
Vulkan Run Time Libraries 1.0.11.1 LunarG, Inc. 2016/05/16 1.66 MB 1.0.11.1
Vulkan Run Time Libraries 1.0.3.0 LunarG, Inc. 2016/03/11 1.66 MB 1.0.3.0
Windows スキャン Microsoft Corporation 2016/02/11 6.3.9654.17133
Windows リーディングリスト Microsoft Corporation 2016/02/11 6.3.9654.20947
x-アプリ 6.0.03 Sony Corporation 2016/04/06 30.0 MB 10.0.03
Xbox Microsoft Corporation 2016/05/07 15.17.3003.0
XSplit Gamecaster SplitmediaLabs 2016/04/11 155 MB 2.4.1506.1243
Zoner Photo Studio 17 ZONER software 2016/03/19 375 MB 17.0.1.12
はじめに Microsoft Corporation 2016/03/29 3.5.11.0
アプリコネクター Microsoft Corporation 2016/02/11 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/03/25 10.1603.12020.0
カメラ Microsoft Corporation 2016/04/08 2016.325.60.0
ストア Microsoft Corporation 2016/05/01 11602.1.26.0
スポーツ Microsoft Corporation 2016/04/26 4.9.51.0
ニュース Microsoft Corporation 2016/04/26 4.9.51.0
フォト Microsoft Corporation 2016/03/29 16.325.12390.0
ボイスレコーダー Microsoft Corporation 2016/02/11 10.1512.21110.0
マカフィーインターネットセキュリティ McAfee, Inc. 2016/05/10 141 MB 14.0.8185
マップ Microsoft Corporation 2016/02/11 4.1601.10150.0
マネー Microsoft Corporation 2016/04/26 4.9.51.0
メッセージング & Skype Microsoft Corporation 2016/04/19 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/05/04 17.6868.40731.0
モバイルコンパニオン Microsoft Corporation 2016/02/12 10.1602.3010.0
リーダー Microsoft Corporation 2016/03/08 6.4.9926.18228
天気 Microsoft Corporation 2016/04/26 4.9.51.0
新しい Office を始めよう Microsoft Corporation 2016/05/06 17.6927.23501.0
映画 & テレビ Microsoft Corporation 2016/04/08 3.6.19761.0
電卓 Microsoft Corporation 2016/02/11 10.1601.49020.0
電話 Microsoft Corporation 2016/04/19 2.15.28004.0

以上です。
26：悪代官 :
2016/05/16 (Mon) 20:10:17: 作業と報告、ご苦労様です。
現在のログも見せてもらいました。

GIMPを含めてアプリの更新もできてますね。
異常も出てないなら、今回の処置は終了でいいかと思います。

作業に使った各ツールは導入時の説明に沿って片付けてください。
以後の再被害を防ぐための自衛もお忘れなく。

ブラウザの設定を少し固めるだけでも、セキュリティ上の効果を高めることが可能です。
「インターネットオプション」→「プライバシー」→「詳細設定」と開いて、「自動cookie処理」と「サードパーティのcookieをブロック」にチェックして「適用」して「OK」。
これをやっておくと、多くの危険サイトからの保護にかなり有効です。
が、これもすべての危険サイトに有効でもないし、本物の危険サイトではこの程度ではまったく太刀打ちできないので、過信はしないこと。
また、「すべてのcookieをブロックする」設定にすると、プロバイダのメールボックスなどログイン必要なページに入れなくなる弊害も出るので、これは状況を考えて使い分けるといいでしょう。
安全なサイトでもcookieブロックだと閲覧や投稿ができなくなるところもあるのでこれも注意。

次に、アンチウイルスやファイアウォール等のセキュリティソフトの使い方も注意してください。
セキュリティソフトはただ入れてさえいればそれだけでフル機能を発揮するものではありません。
設定と機能をできるだけ把握して、正しく使うことが重要です。
間違った使い方すると、本来ならブロックできた感染でもあっさりスルーします。

また、いくら高性能なセキュリティソフトがあっても、ユーザーが自分から危険なサイトやファイルにアクセスしてたらまったく保護もできません。
セキュリティソフトは使い方次第でその性能を、倍にも半にも無にも変動させます。

そして百聞は一見にしかず。
現在この掲示板で継続中や解決済みの他スレもできるだけ見ておくことをおすすめします。
同様、類似、別種含めて参考になる部分は多いでしょう。

今回の異常はやはりFreemakeが絡んでいた可能性が大ですね。
これは過去の相談事例でも数えきれないほどトラブルに絡んでいたモノです。
これに限らずネット上から何かのアプリやファイルをダウンロードする際には、そのファイルやサイトが信頼できるかどうかをしっかり見極めるのが重要です。
そのための目と判断力を養うことが、今後の自衛の上で大きな意味を成します。

セキュリティの上では覚えておくべきことは山ほどありますが、最初から全部頭に詰め込む必要はないので、わかる範囲から一つずつでも消化してPC環境とセキュリティ意識を再構築していってください。

慣れない作業を長期間頑張ってくれてお疲れ様でした。
以後は安全で快適なPCライフを
27：hotty14 :
2016/05/17 (Tue) 19:02:00: これまで長期に渡りご指導下さり、本当にありがとうございました。

問題発生後に困って色々検索した結果、たまたまこの掲示板を見つけ、だめもとでと思い相談させて頂いたところ、こんなに懇切丁寧に対応して頂けるとは、
本当に感謝の言葉しかありません。

自分では問題ないと思っていたことが、今回の問題として浮き出てきたことで、これからはより一層気をつけなければならないと改めて思い知らされました。
セキュリティソフトを過信しすぎることなく、自らも怪しいモノには手を出さないように慎重にしていきたいと思います。

また、これを機に、こちらの掲示板も参考にしながら（もちろん再度お世話にならないようw）、自己防衛のためにも少しずつセキュリティについて学んでいければとも思っています。

追伸

IEでのセキュリティ効果向上の方法をご教示頂き、早速設定変更しましたが、Chromeでしておいた方が良いことなどがありましたら、最後に教えて頂けましたら幸いです。
28：悪代官 :
2016/05/17 (Tue) 20:43:58: レスが遅くなってすみません。
回線障害でネット上に出てこれませんでした。

>IEでのセキュリティ効果向上の方法をご教示頂き、早速設定変更しましたが、Chromeでしておいた方が良いことなどがありましたら、最後に教えて頂けましたら幸いです。

はい、自分は個人的にはChromeは非使用をお勧めしてます（←ﾏﾃ

Chromeは現在操作上でかなり便利との評価から、世界中で一気にシェアを伸ばしていて、既にFirefoxは追い抜きIEを逆転しているとのアンケート結果もあちこちで出ているほどです。

ですが当掲示板に来る相談の内容と、その解析ログを見るとChromeは一度感染すると、Chrome自体の設定仕様から解析と処置が他ブラウザに比べて格段に難しいからです。

これはChromeの技術情報を保護する意味も含めて、ブラウザに食い込んだモノを解析処置しようとしてもChromeがその作業をブロックしてしまうことが非常に多いのです。

なのでChromeに入り込んだモノについては他ブラウザよりも手間が避けられないのが現状です。

ユーザー自身が感染する前に悪意のプログラムやサイトを避けることができればChromeでも便利でしょうが、いざ感染した場合にはChromeでの処置はかなりの手間を覚悟しておいてください。

逆に感染時の対処がもっとも容易なのはFirefox系です。
FFは現在でも操作は簡単だし、ブラウザ拡張も他ブラウザよりかなり豊富でセキュリティ上有用な拡張もあります。

セキュリティ上で何より重要なのは感染後に削除を目指すより、最初から感染しないorさせないための自衛を固めておくのは最優先です。
それができればChromeでも使用してかまいません。

当掲示板に相談に来られる方々は、まだ感染を避けられなかったために相談に来られる方がほとんどという点から、自分の私見では安全優先でChromeはお勧めしないということをご理解ください