結局、停止回復が起きました。
2回連続だけでしたが。
ログを貼ります。
----------------OTL---------------------
OTL logfile created on: 2016/08/13 23:46:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\ALLALLALLALLALL\ダウンロード\悪代官掲示板
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18426)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd
15.94 Gb Total Physical Memory | 12.08 Gb Available Physical Memory | 75.79% Memory free
31.88 Gb Paging File | 27.93 Gb Available in Paging File | 87.61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 47.88 Gb Free Space | 40.19% Space Free | Partition Type: NTFS
Drive D: | 1862.89 Gb Total Space | 1573.29 Gb Free Space | 84.45% Space Free | Partition Type: NTFS
Drive F: | 100.00 Mb Total Space | 69.79 Mb Free Space | 69.80% Space Free | Partition Type: NTFS
Computer Name: DP-SHOI | User Name: SHOI | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2016/08/13 23:44:09 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\ALLALLALLALLALL\ダウンロード\悪代官掲示板\OTL.exe
PRC - [2016/08/09 06:25:50 | 007,248,144 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
PRC - [2016/08/09 06:25:49 | 024,316,592 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe
PRC - [2016/08/09 05:21:38 | 000,241,936 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\tv_w32.exe
PRC - [2016/08/03 09:20:56 | 000,961,352 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2016/08/01 20:01:56 | 009,071,752 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2016/08/01 20:01:43 | 000,197,640 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016/07/29 19:18:03 | 000,288,920 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
PRC - [2016/05/23 14:44:54 | 003,354,440 | ---- | M] ( Rsupport Corporation) -- D:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe
PRC - [2016/05/23 13:43:19 | 000,789,320 | ---- | M] (Rsupport corporation) -- D:\Program Files (x86)\RSUPPORT\MobizenService\MobizenTray.exe
PRC - [2016/05/17 13:26:18 | 023,496,872 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
PRC - [2015/12/15 20:54:58 | 000,077,528 | ---- | M] (Visicom Media Inc.) -- C:\ProgramData\ManyCam\Service\service.exe
PRC - [2015/11/27 16:44:48 | 005,567,488 | ---- | M] (TeamViewer) -- C:\Program Files (x86)\ITbrain Agent\itbrain_agent.exe
PRC - [2015/07/09 17:14:41 | 000,085,432 | ---- | M] (CyberLink Corp.) -- D:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
PRC - [2013/09/25 17:02:32 | 000,179,976 | ---- | M] (cyberlink) -- C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
PRC - [2013/08/07 14:24:00 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/08/07 14:24:00 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/05/07 16:45:40 | 000,936,728 | ---- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
PRC - [2013/04/26 11:25:54 | 000,292,848 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2013/03/08 15:18:34 | 000,095,192 | ---- | M] (CyberLink Corp.) -- D:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10\PDVD10Serv.exe
PRC - [2012/04/02 15:44:14 | 001,058,912 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
PRC - [2012/01/18 06:44:52 | 000,450,848 | ---- | M] (Logicool Co., Ltd.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
PRC - [2011/03/09 14:21:54 | 000,107,816 | ---- | M] (CyberLink) -- D:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2016/08/13 12:26:24 | 001,208,320 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_ssl.pyd
MOD - [2016/08/13 12:26:24 | 001,176,576 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._core_.pyd
MOD - [2016/08/13 12:26:24 | 001,067,008 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._controls_.pyd
MOD - [2016/08/13 12:26:24 | 000,816,128 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._windows_.pyd
MOD - [2016/08/13 12:26:24 | 000,806,400 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._gdi_.pyd
MOD - [2016/08/13 12:26:24 | 000,776,704 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_hashlib.pyd
MOD - [2016/08/13 12:26:24 | 000,733,184 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._misc_.pyd
MOD - [2016/08/13 12:26:24 | 000,686,080 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\unicodedata.pyd
MOD - [2016/08/13 12:26:24 | 000,682,496 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\pysqlite2._sqlite.pyd
MOD - [2016/08/13 12:26:24 | 000,525,208 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\windows._lib_cacheinvalidation.pyd
MOD - [2016/08/13 12:26:24 | 000,364,544 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\pythoncom27.dll
MOD - [2016/08/13 12:26:24 | 000,320,512 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32com.shell.shell.pyd
MOD - [2016/08/13 12:26:24 | 000,167,936 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32gui.pyd
MOD - [2016/08/13 12:26:24 | 000,128,512 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_elementtree.pyd
MOD - [2016/08/13 12:26:24 | 000,127,488 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\pyexpat.pyd
MOD - [2016/08/13 12:26:24 | 000,123,392 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._wizard.pyd
MOD - [2016/08/13 12:26:24 | 000,119,808 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32file.pyd
MOD - [2016/08/13 12:26:24 | 000,110,080 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\pywintypes27.dll
MOD - [2016/08/13 12:26:24 | 000,108,544 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32security.pyd
MOD - [2016/08/13 12:26:24 | 000,098,816 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32api.pyd
MOD - [2016/08/13 12:26:24 | 000,088,064 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\usb_ext.pyd
MOD - [2016/08/13 12:26:24 | 000,088,064 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_ctypes.pyd
MOD - [2016/08/13 12:26:24 | 000,078,848 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._animate.pyd
MOD - [2016/08/13 12:26:24 | 000,077,312 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\wx._html2.pyd
MOD - [2016/08/13 12:26:24 | 000,046,080 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_socket.pyd
MOD - [2016/08/13 12:26:24 | 000,038,912 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32inet.pyd
MOD - [2016/08/13 12:26:24 | 000,036,864 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_psutil_windows.pyd
MOD - [2016/08/13 12:26:24 | 000,035,840 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32process.pyd
MOD - [2016/08/13 12:26:24 | 000,027,136 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_multiprocessing.pyd
MOD - [2016/08/13 12:26:24 | 000,025,600 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32pdh.pyd
MOD - [2016/08/13 12:26:24 | 000,024,064 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32pipe.pyd
MOD - [2016/08/13 12:26:24 | 000,022,528 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32ts.pyd
MOD - [2016/08/13 12:26:24 | 000,020,480 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\_yappi.pyd
MOD - [2016/08/13 12:26:24 | 000,018,432 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32event.pyd
MOD - [2016/08/13 12:26:24 | 000,017,920 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\thumbnails_ext.pyd
MOD - [2016/08/13 12:26:24 | 000,017,408 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32profile.pyd
MOD - [2016/08/13 12:26:24 | 000,012,288 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\common.time34.pyd
MOD - [2016/08/13 12:26:24 | 000,011,264 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\win32crypt.pyd
MOD - [2016/08/13 12:26:24 | 000,010,240 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\select.pyd
MOD - [2016/08/13 12:26:24 | 000,007,168 | R--- | M] () -- C:\Users\SHOI\AppData\Local\Temp\_MEI22682\hashobjs_ext.pyd
MOD - [2016/08/03 09:24:15 | 001,771,336 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
MOD - [2016/08/03 09:23:49 | 000,094,024 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
MOD - [2016/08/03 08:54:39 | 017,602,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll
MOD - [2016/08/01 20:01:43 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016/08/01 20:01:43 | 000,482,928 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016/08/01 20:01:43 | 000,169,064 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2016/05/12 19:47:22 | 001,102,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\8e120675c80a179c177d6d9b5345e792\System.ServiceModel.Web.ni.dll
MOD - [2016/05/12 19:47:18 | 002,937,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\c56cbffc8423ff484bf3f80aae1d5c24\System.IdentityModel.ni.dll
MOD - [2016/05/12 19:47:17 | 019,426,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a459f8b69edabf287d593a2a08c5c8d6\System.ServiceModel.ni.dll
MOD - [2016/05/11 23:56:24 | 012,945,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\7b437291b260f008653ebc86553ab462\System.Windows.Forms.ni.dll
MOD - [2016/05/11 23:56:23 | 007,518,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\a57805cc2d492d82e327b83ab24fad62\System.Core.ni.dll
MOD - [2016/05/11 23:56:23 | 000,974,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\6b3bc806e6d6a2c73c6d9f1429395698\System.Configuration.ni.dll
MOD - [2016/05/11 23:56:20 | 001,876,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\347ba862763b7e7c80bdef8764ae72dc\System.Xaml.ni.dll
MOD - [2016/05/11 23:49:57 | 007,378,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\36599a72e79974ff4c004c43df9fce2b\System.Xml.ni.dll
MOD - [2016/05/11 23:49:55 | 002,772,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ffbd00c458124054f2049e9a25a7cca8\System.Runtime.Serialization.ni.dll
MOD - [2016/05/11 23:49:55 | 001,623,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\48453ce4573683172752f7fdc00f8820\System.Drawing.ni.dll
MOD - [2016/05/11 23:49:54 | 000,786,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\e2ab3c1c7be8727fb1f36945861e780b\System.ServiceModel.Internals.ni.dll
MOD - [2016/05/11 23:49:54 | 000,117,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\32b270a7b4daf4731cf1c36ecd660297\SMDiagnostics.ni.dll
MOD - [2016/05/11 23:49:53 | 009,983,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\d03eb8a47500f40d5428f9c6875f8e56\System.ni.dll
MOD - [2016/04/14 00:18:18 | 018,111,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\affcb83bba04f782c2586a1788330891\mscorlib.ni.dll
MOD - [2011/03/09 14:21:56 | 000,619,816 | ---- | M] () -- D:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2011/03/09 14:21:48 | 000,013,096 | ---- | M] () -- D:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV:[b]64bit:[/b] - [2016/08/02 15:19:01 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2015/08/04 11:06:32 | 000,246,784 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2015/07/23 09:02:54 | 001,390,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2013/08/07 14:24:00 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2013/07/08 21:30:24 | 000,195,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/05/27 14:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2012/10/02 15:41:44 | 000,240,584 | ---- | M] (DTS, Inc) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe -- (DTSAudioSvc)
SRV:[b]64bit:[/b] - [2011/12/12 00:00:00 | 000,135,824 | ---- | M] (Seiko Epson Corporation) [Auto | Running] -- C:\Windows\SysNative\escsvc64.exe -- (EpsonScanSvc)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2016/08/09 06:25:50 | 007,248,144 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2016/08/01 20:01:43 | 000,197,640 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016/07/14 20:09:08 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016/07/09 10:06:18 | 001,450,064 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2016/07/01 00:37:04 | 000,147,400 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016/05/23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2016/05/23 14:44:54 | 003,354,440 | ---- | M] ( Rsupport Corporation) [Auto | Running] -- D:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe -- (Mobizen plugin)
SRV - [2015/12/30 11:00:42 | 000,840,080 | ---- | M] (Google Inc.) [Auto | Running] -- C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe -- (GoogleIMEJaCacheService)
SRV - [2015/12/15 20:54:58 | 000,077,528 | ---- | M] (Visicom Media Inc.) [Auto | Running] -- C:\ProgramData\ManyCam\Service\service.exe -- (ManyCam Service)
SRV - [2015/11/27 16:44:48 | 005,567,488 | ---- | M] (TeamViewer) [Auto | Running] -- C:\Program Files (x86)\ITbrain Agent\itbrain_agent.exe -- (ITbrain Agent)
SRV - [2015/11/05 20:36:48 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2015/07/09 20:13:48 | 000,134,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe -- (Te.Service)
SRV - [2015/07/09 16:18:10 | 000,303,544 | ---- | M] (CyberLink) [Auto | Stopped] -- D:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe -- (CLKMSVC10_0C07946C)
SRV - [2014/05/21 16:02:00 | 003,359,816 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2014/03/21 07:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2013/09/25 17:02:32 | 000,243,464 | ---- | M] (CyberLink) [Auto | Stopped] -- D:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10\NavFilter\kmsvc.exe -- (CLKMSVC10_B5212065)
SRV - [2013/05/07 16:45:40 | 000,936,728 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe -- (asComSvc)
SRV - [2012/07/26 18:41:12 | 000,703,616 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Stopped] -- C:\Program Files (x86)\epson\MyEPSON Connect\mepService.exe -- (MyEPSON Connect Service)
SRV - [2012/01/18 06:44:52 | 000,450,848 | ---- | M] (Logicool Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV:[b]64bit:[/b] - [2016/08/05 07:39:24 | 000,292,704 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswvmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,968,536 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,513,496 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,163,416 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,108,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,103,064 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,074,544 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2016/08/01 20:01:43 | 000,037,656 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:[b]64bit:[/b] - [2016/03/30 14:00:36 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2015/09/16 12:29:46 | 000,253,384 | ---- | M] (BigNox Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\XQHDrv.sys -- (XQHDrv)
DRV:[b]64bit:[/b] - [2015/08/04 15:23:28 | 021,622,784 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2015/08/04 10:42:28 | 000,665,088 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2015/07/13 08:44:24 | 000,020,160 | ---- | M] (Glarysoft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\GUBootStartup.sys -- (GUBootStartup)
DRV:[b]64bit:[/b] - [2014/12/29 13:07:36 | 000,049,304 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcvidrv.sys -- (ManyCam)
DRV:[b]64bit:[/b] - [2014/12/29 12:56:08 | 000,035,992 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:[b]64bit:[/b] - [2014/10/28 08:46:12 | 000,062,152 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:[b]64bit:[/b] - [2014/10/23 21:17:51 | 000,086,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\slzj64.sys -- (slzjs)
DRV:[b]64bit:[/b] - [2014/07/01 16:52:50 | 000,017,600 | ---- | M] (Glarysoft Ltd) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BootDefragDriver.sys -- (BootDefragDriver)
DRV:[b]64bit:[/b] - [2013/10/02 11:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/07 14:23:46 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2013/08/07 14:23:46 | 000,028,008 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:[b]64bit:[/b] - [2013/05/31 00:54:39 | 000,495,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1d62x64.sys -- (e1dexpress)
DRV:[b]64bit:[/b] - [2013/04/26 11:24:58 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:[b]64bit:[/b] - [2013/04/26 11:24:56 | 000,786,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:[b]64bit:[/b] - [2013/04/26 11:24:56 | 000,368,112 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:[b]64bit:[/b] - [2013/01/11 19:02:34 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013/01/10 11:11:04 | 000,047,512 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64)
DRV:[b]64bit:[/b] - [2012/10/29 19:44:16 | 002,270,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\u248d664.SYS -- (BCMH43XX)
DRV:[b]64bit:[/b] - [2012/08/23 23:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/03/01 15:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012/01/18 06:44:36 | 004,865,568 | ---- | M] (Logicool Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64)
DRV:[b]64bit:[/b] - [2012/01/18 06:44:28 | 000,351,136 | ---- | M] (Logicool Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/20 05:33:36 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009/07/14 10:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 10:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 10:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/14 09:01:09 | 000,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xnacc.sys -- (xnacc)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/11 05:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2015/09/16 12:29:46 | 000,253,384 | ---- | M] (BigNox Corporation) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\XQHDrv.sys -- (XQHDrv)
DRV - [2009/07/14 10:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.hangame.co.jp/
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = ja
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F1 72 D9 72 D3 3A CF 01 [binary data]
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = DE 8E C6 AB C2 97 D1 01 [binary data]
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\SearchScopes,DefaultScope = {5EB76B4A-3B64-4C5D-9905-C543009B29DE}
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\SearchScopes\{5EB76B4A-3B64-4C5D-9905-C543009B29DE}: "URL" =
https://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxGame: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangdiagnostic-1: D:\GameOn\Common files\nppmangdiagnostic_0.dll (gameon)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangsupport-1: D:\GameOn\Common files\nppmangsupport.dll File not found
FF - HKLM\Software\MozillaPlugins\sega2: D:\sega\Common files 2\npsegaipcp2.dll (SEGA Corporation)
FF - HKCU\Software\MozillaPlugins\@fancyguo.com/FancyGame,version=1.0.0.1: C:\Users\SHOI\AppData\Local\Fancy\npfancygame.dll (Hongfeng Hengyu (Beijing) Tech Ltd.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.2.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 45.2.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
[2014/08/14 14:38:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SHOI\AppData\Roaming\mozilla\Extensions
[color=#E56717]========== Chrome ==========[/color]
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam\12.0.82_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\eelgfimjhklhlfboimiihlkbgefaacfp\1.6.2.0_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcoadmpfijfcmokecmkgolhbaeclfage\12.0.93_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd\2.0.4_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\omgpfjbejkpcnpadohokpjllldkejfpp\1.1.0.1_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\SHOI\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.10_0\
O1 HOSTS File: ([2013/09/03 17:19:52 | 000,000,833 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\ypho.dll (Yahoo Japan Corporation. )
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3:[b]64bit:[/b] - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar64\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKU\S-1-5-21-1795447636-3066378450-500882190-1000\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe File not found
O4 - HKLM..\Run: [CLMLServer] D:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [Google Japanese Input Prelauncher] C:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe (Google Inc.)
O4 - HKLM..\Run: [RemoteControl10] D:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1795447636-3066378450-500882190-1000..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIIGJ.EXE /EPT "EPLTarget\P0000000000000000" /M "PX-045A Series" File not found
O4 - HKU\S-1-5-21-1795447636-3066378450-500882190-1000..\Run: [GUDelayStartup] D:\Program Files (x86)\Glary Utilities 5\StartupManager.exe (Glarysoft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {134DD8EF-7716-4538-A430-EFEB7517E6E7}
http://ch.icarus.gamecom.jp/Common/cab/WebLauncher.cab (WebLauncher Control)
O16 - DPF: {1DC420F0-D89A-40D0-B5CC-92B9AD19A1AC}
http://down.hangame.co.jp/jp/dist/hgstart/HGPluginJP28.cab (HGPluginJP28 Class)
O16 - DPF: {5082D9B5-5538-4C50-BDB1-C5F44BFB98CC}
http://down.hangame.co.jp/jp/installer/HgRunPub.cab (HgRunPub Class)
O16 - DPF: {7216BF69-1FB3-438C-9A51-9DA82B676BC0}
http://userimg.arario.jp/activeX/AraGameStarterW6.cab (ArarioGameStarter6 Class)
O16 - DPF: {8C2E6E01-D1F6-4A94-B314-7C5DF4EE1853}
http://down.hangame.co.jp/jp/dist/hgstart/HGReport.cab (SpecAnalyzer Class)
O16 - DPF: {8F60EE6F-DC53-4F9C-9E66-84BD2A545805}
http://cosmicbreak2.cyberstep.jp/_hangame/start/CsLauncher.cab (Reg Error: Key error.)
O16 - DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C}
http://dist.cdnetworks.co.jp/cdndist/neffy/NeffyLauncher_v1013.cab (NeffyLauncherCtl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2729F99-A050-4F4D-AE9F-7492C5532F49}
http://down.hangame.co.jp/jp/dist/hgtagent2/hgtagent2.cab (HgTAgent2 Extension Class)
O16 - DPF: {F8160836-0C11-4CA4-AD87-944542C7BCBD}
http://down.hangame.co.jp/jp/purple/launcher/PubPlugin.cab (PubPlugin Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A2557592-4E09-40C5-ABB1-F50BA8BA16B1}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A2557592-4E09-40C5-ABB1-F50BA8BA16B1}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AA7B513B-84AA-4DBD-9D15-038F2CB63CBD}: DhcpNameServer = 192.168.0.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\System32\Userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\System32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{92b2ce29-92ba-11e5-9e51-e03f494a821e}\Shell - "" = AutoRun
O33 - MountPoints2\{92b2ce29-92ba-11e5-9e51-e03f494a821e}\Shell\AutoRun\command - "" = G:\Startme.exe
O33 - MountPoints2\{e96458ce-a6c3-11e3-a1de-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{e96458ce-a6c3-11e3-a1de-806e6f6e6963}\Shell\AutoRun\command - "" = E:\.\Bin\ASSETUP.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (BootDefrag.exe)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
ActiveX:[b]64bit:[/b] {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {26784146-6E05-3FF9-9335-786C7C0FB5BE} - .NET Framework
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {66C64F22-FC60-4E6C-A6B5-F0D580E680CE} - C:\Windows\System32\ie4uinit.exe -EnableTLS
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\Windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {7DEBE4EB-6B40-3766-BB35-5CBBC385DA37} - .NET Framework
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {94A631D5-B30A-3DD8-B65C-1117C09DA73E} - .NET Framework
ActiveX:[b]64bit:[/b] {BD6F5371-DAC1-30F0-9DDE-CAC6791E28C3} - .NET Framework
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1} - .NET Framework
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {26784146-6E05-3FF9-9335-786C7C0FB5BE} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {7DEBE4EB-6B40-3766-BB35-5CBBC385DA37} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {94A631D5-B30A-3DD8-B65C-1117C09DA73E} - .NET Framework
ActiveX: {BD6F5371-DAC1-30F0-9DDE-CAC6791E28C3} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2016/08/13 17:44:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2016/08/11 15:56:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2016/08/11 09:39:56 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2016/08/11 09:39:56 | 001,212,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2016/08/11 09:39:56 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2016/08/11 09:39:56 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2016/08/11 09:39:56 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2016/08/11 09:39:56 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2016/08/11 09:39:56 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2016/08/11 09:39:56 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2016/08/11 09:39:56 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2016/08/11 09:39:56 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2016/08/11 09:39:56 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2016/08/11 09:39:56 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2016/08/11 09:39:56 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2016/08/11 09:39:56 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2016/08/11 09:39:56 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2016/08/11 09:39:56 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2016/08/11 09:39:56 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
[2016/08/11 09:39:56 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2016/08/11 09:39:56 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2016/08/11 09:39:55 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2016/08/11 09:39:55 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2016/08/11 09:39:55 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2016/08/11 09:39:55 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2016/08/11 09:39:55 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2016/08/11 09:39:55 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2016/08/11 09:39:55 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2016/08/11 09:39:55 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2016/08/11 09:39:54 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2016/08/11 09:39:54 | 000,724,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2016/08/11 09:39:54 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2016/08/11 09:39:54 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2016/08/11 09:39:54 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2016/08/11 09:39:54 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2016/08/11 09:39:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2016/08/11 09:39:54 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2016/08/11 09:39:54 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2016/08/11 09:39:53 | 002,131,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2016/08/11 09:39:53 | 000,969,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2016/08/11 09:39:53 | 000,806,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2016/08/11 09:39:53 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2016/08/11 09:39:53 | 000,663,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2016/08/11 09:39:53 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2016/08/11 09:39:53 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2016/08/11 09:39:53 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2016/08/11 09:39:53 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2016/08/11 09:39:53 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2016/08/11 09:39:52 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2016/08/11 09:39:52 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2016/08/11 09:39:52 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2016/08/11 09:39:52 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2016/08/11 09:39:52 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2016/08/11 09:39:52 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2016/08/11 09:39:52 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2016/08/11 09:39:51 | 006,047,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016/08/11 09:39:51 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2016/08/11 09:39:51 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2016/08/11 09:39:51 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2016/08/11 09:39:51 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2016/08/11 09:39:51 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2016/08/11 09:39:51 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2016/08/11 09:39:50 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2016/08/11 09:39:50 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2016/08/07 19:57:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/08/07 19:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016/08/01 20:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016/08/01 20:01:44 | 000,968,536 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2016/08/01 20:01:44 | 000,513,496 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2016/08/01 20:01:44 | 000,391,496 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2016/08/01 20:01:44 | 000,292,704 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswvmm.sys
[2016/08/01 20:01:44 | 000,163,416 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2016/08/01 20:01:44 | 000,108,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2016/08/01 20:01:44 | 000,103,064 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2016/08/01 20:01:44 | 000,074,544 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2016/08/01 20:01:44 | 000,037,656 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
[2016/08/01 20:01:43 | 000,053,208 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2016/07/31 12:17:18 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2016/07/31 12:16:34 | 000,000,000 | ---D | C] -- C:\AMD
[2016/07/31 12:13:26 | 000,000,000 | ---D | C] -- C:\Users\SHOI\AppData\Roaming\AVAST Software
[2016/07/30 21:45:23 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2016/07/30 16:16:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
[2016/07/24 23:35:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VulkanRT
[2016/07/24 22:55:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phyxion.net
[2016/07/24 14:20:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Glarysoft
[2016/07/24 14:20:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
[2016/07/20 08:13:07 | 000,000,000 | ---D | C] -- C:\Windows\EOONotify
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\SHOI\Documents\*.tmp files -> C:\Users\SHOI\Documents\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2016/08/13 23:23:00 | 000,000,690 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/08/13 23:09:00 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2016/08/13 22:55:07 | 000,020,800 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016/08/13 22:55:07 | 000,020,800 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016/08/13 19:23:00 | 000,000,686 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/08/13 12:29:52 | 001,909,990 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2016/08/13 12:29:52 | 001,603,164 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2016/08/13 12:29:52 | 001,055,898 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2016/08/13 12:29:52 | 001,027,718 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2016/08/13 12:29:52 | 000,006,434 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2016/08/13 12:23:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016/08/13 12:23:47 | 4246,126,590 | -HS- | M] () -- C:\hiberfil.sys
[2016/08/11 13:09:48 | 000,345,392 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2016/08/05 07:39:24 | 000,292,704 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswvmm.sys
[2016/08/02 15:47:27 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2016/08/02 15:32:37 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2016/08/02 15:31:55 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2016/08/02 15:31:49 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2016/08/02 15:31:32 | 000,572,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2016/08/02 15:31:14 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2016/08/02 15:23:07 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2016/08/02 15:20:06 | 000,615,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2016/08/02 15:19:01 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2016/08/02 15:19:01 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2016/08/02 15:18:44 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2016/08/02 15:18:36 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2016/08/02 15:18:32 | 006,047,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016/08/02 15:11:45 | 000,969,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2016/08/02 15:08:12 | 000,489,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2016/08/02 15:00:28 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2016/08/02 14:59:19 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2016/08/02 14:56:27 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2016/08/02 14:55:46 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2016/08/02 14:53:17 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2016/08/02 14:51:49 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2016/08/02 14:51:42 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2016/08/02 14:51:12 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2016/08/02 14:51:03 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2016/08/02 14:50:11 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2016/08/02 14:44:48 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2016/08/02 14:42:41 | 000,476,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2016/08/02 14:41:43 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2016/08/02 14:41:42 | 000,663,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2016/08/02 14:41:24 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2016/08/02 14:38:38 | 000,724,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2016/08/02 14:38:08 | 000,806,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2016/08/02 14:37:29 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2016/08/02 14:36:40 | 002,131,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2016/08/02 14:29:16 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2016/08/02 14:28:25 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2016/08/02 14:26:20 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2016/08/02 14:25:06 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2016/08/02 14:22:54 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2016/08/02 14:14:32 | 002,055,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2016/08/02 14:14:02 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2016/08/02 13:59:19 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2016/08/02 13:51:20 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2016/08/01 20:01:57 | 000,000,992 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016/08/01 20:01:43 | 000,968,536 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2016/08/01 20:01:43 | 000,513,496 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2016/08/01 20:01:43 | 000,391,496 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2016/08/01 20:01:43 | 000,163,416 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2016/08/01 20:01:43 | 000,108,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2016/08/01 20:01:43 | 000,103,064 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2016/08/01 20:01:43 | 000,074,544 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2016/08/01 20:01:43 | 000,053,208 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2016/08/01 20:01:43 | 000,037,656 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
[2016/07/31 13:17:38 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2016/07/25 17:30:14 | 002,853,088 | ---- | M] (GameOn) -- C:\Windows\Uninstaller.exe
[2016/07/24 17:14:56 | 000,002,110 | ---- | M] () -- C:\Users\SHOI\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2016/07/24 17:14:56 | 000,001,197 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2016/07/23 15:19:13 | 000,000,000 | ---- | M] () -- C:\Users\SHOI\AppData\Local\{ACB16A17-AB63-464C-81B3-8FF900A18DA1}
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\SHOI\Documents\*.tmp files -> C:\Users\SHOI\Documents\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2016/08/01 20:01:57 | 000,000,992 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016/07/31 13:17:38 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2016/07/24 23:41:39 | 000,000,971 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk