悪代官の伏魔殿掲示板

初めまして。2010年頃Toshiba Dynabook（Windows7)。2016年7月Windows10にアップグレードしています。8月27日、ネット上に落ちていたCivilizationのゲームソフトをダウンロード後、広告の出現、中国語の検索サイトの出現、中国語の圧縮ソフトのインストール、Chromeの乗っ取り等が出現しました。圧縮ソフト、中国の検索サイト、広告の出現はノートンや手動のアンインストールで解決していますが、Chromeのスタートアップ時のサイトがTrotux（？）というものなのか、www.9o0gle.comに乗っ取られています。対処方法を教えていただけると助かります。よろしくお願いいたします。
以下、Hijackthisのログを添付します。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:09:36, on 2016/09/07
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0545)


Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Users\masaki\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
C:\WINDOWS\system32\svchost.exe
C:\Windows\System32\IME\SHARED\imebroker.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\masaki\Downloads\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE

F2 - REG:system.ini: UserInit=wscript C:\WINDOWS\run.vbs,
O2 - BHO: ifp5toolbar - {0FAF6F52-1AD4-4282-9EA1-3EC884DA7AA3} - C:\Program Files\Digital Arts\IFP5\app\bin\ifp5toolbar.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll",DllRegisterServer
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\masaki\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: RealTimes.lnk = C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://*.webcompanion.com
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{c90db4f7-a028-4704-bf94-c953da71a6be}: NameServer = 188.120.239.115,8.8.8.8
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: b19f7ac45e70375cd1a6dad956d23e2a - Unknown owner - C:\Program Files\6c8437848cdd651941470cb1377345ee\582fd4d9aac6a7ddc5956073747a5411.exe (file missing)
O23 - Service: CHNGTSvc - Unknown owner - c:\exervice.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: RealTimes Desktop Service - RealNetworks, Inc. - c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Thujoscoats Monitor (ThjmonitorTerkaystazerch.exe) - Unknown owner - C:\Program Files\Vemiing_\ThjmonitorTerkaystazerch.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 13182 bytes

3D Builder Microsoft Corporation 2016/05/28 11.1.8.0
Adobe AIR Adobe Systems Incorporated 2016/05/22 20.0 MB 3.4.0.2710
Adobe Help Manager Adobe Systems Incorporated 2016/05/22 183 MB 4.0.244
Adobe Illustrator CS6 Adobe Systems Incorporated 2016/05/22 183 MB 16.0
Adobe Reader X (10.1.16) - Japanese Adobe Systems Incorporated 2015/10/22 281 MB 10.1.16
Apple Application Support（32 ビット） Apple Inc. 2015/06/09 131 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/12/01 37.0 MB 9.1.0.6
Apple Software Update Apple Inc. 2012/03/24 4.53 MB 2.1.3.127
BankID s臾erhetsprogram Finansiell ID-Teknik BID AB 2015/11/20 49.8 MB 7.0.1.8
CCleaner Piriform 2016/09/07 5.21
DivXセットアップ DivX, LLC 2016/07/18 6.07 MB 3.0.0.68
Garmin Express Garmin Ltd or its subsidiaries 2016/08/26 212 MB 4.1.25.0
GOM Player Gretech Corporation 2016/07/18 109 MB 2.3.3.5254
Google Chrome Google Inc. 2016/09/04 343 MB 53.0.2785.89
Handelsbanken card reader Todos Data System AB 2011/10/21 562 KB 1.00.0000
i-フィルター 5.0 Digital Arts 2010/05/06 226 MB 5.00.14.0110
iCloud Apple Inc. 2015/06/09 79.5 MB 4.1.1.53
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2010/06/04 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 2010/05/03 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2010/06/04 9.5.7.1002
iTunes Apple Inc. 2015/12/01 271 MB 12.3.1.23
J2SE Runtime Environment 5.0 Update 15 Sun Microsystems, Inc. 2011/08/24 121 MB 1.5.0.150
Java 7 Update 9 Oracle 2012/09/26 147 MB 7.0.90
Java(TM) 6 Update 26 Sun Microsystems, Inc. 2010/05/06 14.0 MB 6.0.260
Microsoft Office 2010 Microsoft Corporation 2016/08/26 41.6 MB 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/10/07 33.8 MB 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2016/08/28 63.2 MB 5.1.50428.0
Microsoft Solitaire Collection 2016/07/18
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 3.44 MB 3.1.0000
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2010/08/07 348 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2011/06/16 600 KB 8.0.56336
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 2010/08/07 203 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 Microsoft Corporation 2011/08/24 2.92 MB 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2012/06/22 444 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 1.16 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/11/01 448 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/16 1.17 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 26.3 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/07/18 17.1 MB 12.0.30501.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Corporation 2016/08/26 11.9 MB 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - 日本語 Microsoft Corporation 2016/08/26 11.9 MB 10.0.50903
Microsoft Wi-Fi Microsoft Corporation 2016/05/23 1.1604.4.0
Norton Security Symantec Corporation 2016/07/18 572 MB 22.7.1.32
OneNote 2016/07/10
PCあんしん点検ユーティリティ TOSHIBA Corporation 2010/06/04 5.75 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 19.5 MB 4.0.2
Picasa 3 Google, Inc. 2016/07/26 82.2 MB 3.9.140.248
RealPlayer (RealTimes) RealNetworks 2016/08/26 183 MB 18.1.4
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2010/06/04 8.04 MB 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2010/06/04 4.78 MB 2.00.0013
Skype Click to Call Skype Technologies S.A. 2011/12/10 16.4 MB 5.6.8442
Skype を手に入れよう Skype 2016/05/23 3.2.1.0
Skype(TM) 7.0 Skype Technologies S.A. 2015/04/15 95.8 MB 7.0.102
SonicStage 4.4 Sony Corporation 2010/12/10 35.0 MB 4.4
Sway 2016/07/18
Synaptics Pointing Device Driver Synaptics Incorporated 2016/05/21 46.4 MB 17.0.10.51
TOSHIBA ConfigFree TOSHIBA Corporation 2010/06/04 144 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 16.7 MB 2.1.0.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2010/06/04 259 MB 3.01.2.07-B
TOSHIBA Hardware Setup TOSHIBA Corporation 2016/09/07 259 MB 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2010/06/04 259 MB 1.0.80.5
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2010/06/04 9.61 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2010/06/04 53.0 MB 1.6.1.0
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 5.44 MB 2.1.0.4
TOSHIBA ReelTime TOSHIBA Corporation 2010/05/06 88.4 MB 1.6.06.32
TOSHIBA Service Station TOSHIBA 2012/09/27 259 MB 2.2.9
TOSHIBA Supervisor Password TOSHIBA Corporation 2016/09/07 259 MB 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2010/06/04 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2010/06/04 115 MB 1.3.3
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 42.5 MB 2.0.9.0817
trotux - Uninstall 2016/08/27
Twitter 2016/07/10
Windows DVD プレイヤー Microsoft Corporation 2016/05/23 3.6.13291.0
Windows Live Sync Microsoft Corporation 2010/05/06 5.53 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2016/05/22 12.1 MB 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 448 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 3.87 MB 5.000.818.5
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2016/08/03 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2016/08/03 02/06/2007 3.1
WinRAR 4.20 (32-bit) win.rar GmbH 2016/05/22 3.89 MB 4.20.0
Xbox Microsoft Corporation 2016/07/10 15.18.14017.0
Yahoo!ツールバー Yahoo! JAPAN. 2016/05/22 3.15 MB 8.0.0.3
おたすけナビ 東芝情報機器株式会社 2010/05/06 37.4 MB 6.0.2
はがきデザインキット Japan Post Service Co., Ltd. 2016/05/22 13.6 MB v4.2.2
アプリ コネクター Microsoft Corporation 2016/05/23 1.3.3.0
ストア Microsoft Corporation 2016/05/22 11602.1.26.0
メッセージング & Skype Microsoft Corporation 2016/05/23 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/07/10 17.6965.40901.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/06/04 78.1 MB 3.1.0.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 464 MB 17.00.0000
電話 Microsoft Corporation 2016/06/03 2.17.27003.0

おはようございます。
ここの管理人の悪代官です。
上様に不届きで成敗されるのが嫌なので、日アサのドキドキな美少女戦隊にお仕置きされてます。
「この悪代官が、あなたの不届き取り戻して見せる！」（謎

説明とログを見せてもらいました。
ハッキリ書きますが、かなり怪しい状態です。
その中でもまず下記を確認します。
BankID s臾erhetsprogram Finansiell ID-Teknik BID AB 2015/11/20 49.8 MB 7.0.1.8

trotux - Uninstall 2016/08/27

これはご自身で必要として入れたものですか？
ご自身で入れたならどういう経緯で入れたかを次回レスで教えてください。
覚えもないのに入っていたなら遠慮なく削除します。

他にも色々と問題点見えてます。
時間はかかってもいいですから落ち着いてひとつずつ確実にかかってください。

まず最初にお伝えしておきます。
見てのとおり現在相談者さん多数のため、相談受けてから皆さんに順番にレスできるまで、毎回1日かそれ以上かかる可能性もあるので、すみませんがご了承ください。

では以下の説明をよく見てから、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てきたらそれらは絶対にクリックしないでください。
「GeekUninstaller」（通称：GU）
説明ページ↓
http://www.gigafree.net/system/install/geekuninstaller.html
ダウンロード↓
http://www.geekuninstaller.com/download
「download free」をクリック、保存後、解凍してください。
片付ける時はフォルダごと手動で削除してください。

「CCleaner」（通称：CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードしてください。なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
片付けるときはアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【Windowsにダメージを与えてしまうおそれもある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、自分が指示した以外の操作はしないように。

そして下記ページは作業開始前に必ず熟読して、必要な場合が出たらそれに沿って対処してください。この対処が必要な事例が増えています。
http://note.chiebukuro.yahoo.co.jp/detail/n335704

準備できたら作業開始です。
なお、このあとの作業で探しても見つからないものはスルーして進めていいですが、指示した対象外の物は絶対にいじらないようによく見て作業してください。

また、作業のうえで削除指示するものもあるはずですが、ご自身で必要として入れたものがあればそれの削除は保留して、次のレスでその旨を教えてください。

最初にWindowsUpdateの確認して、必要な更新があればそれを全部更新してください。
ですがそこで更新ができないようならこの後に説明する作業はせずに更新失敗の旨をレスで教えてください。
WUが正常にできなくすることで、感染の解析処置を阻害してくる危険なマルウェアが激増しているためです。
Windowsの各種更新(WindowsUpdate)は常に最新に適用しておかないと、それだけで危険な感染はすぐにでも起きますよ。

なお、Windows10への更新はユーザー自身がよほど必要でなければ非推奨です。
http://www.japan-secure.com/entry/Windows_Update_7.html
http://www.japan-secure.com/entry/how_to_suppress_the_free_upgrade_of_Windows_10.html

少なくとも下記のアプリは旧バージョンです。
Adobe AIR Adobe Systems Incorporated 2016/05/22 20.0 MB 3.4.0.2710

RealPlayer (RealTimes) RealNetworks 2016/08/26 183 MB 18.1.4

Skype(TM) 7.0 Skype Technologies S.A. 2015/04/15 95.8 MB 7.0.102

各種アプリの更新を怠っただけでも、脆弱性を悪用されて深刻な感染はあっさり起きます。
使うなら最新版に更新してください。使わないアプリならアンインストールが安全です。
他にも旧バージョンないか調べて、あれば同様に更新するか、アンインストールしてください。

ここでWindowsの標準機能である「システムの復元」での復元ポイントをひとつ、手動で作成しておいてください。
これはこの後の作業で、間違って対象外のものをいじってしまうとそれだけでWindowsに深刻な不具合を起こすこともあるので、万一の際に復元可能にしておくためです。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point

GUを使って下記をアンインストールしてください。
Adobe Reader X (10.1.16) - Japanese Adobe Systems Incorporated 2015/10/22 281 MB 10.1.16

i-フィルター 5.0 Digital Arts 2010/05/06 226 MB 5.00.14.0110

J2SE Runtime Environment 5.0 Update 15 Sun Microsystems, Inc. 2011/08/24 121 MB 1.5.0.150

Java 7 Update 9 Oracle 2012/09/26 147 MB 7.0.90

Java(TM) 6 Update 26 Sun Microsystems, Inc. 2010/05/06 14.0 MB 6.0.260

pdfアプリが必要なら、下記を入れておくといいでしょう。
http://www.forest.impress.co.jp/library/software/pdfxchedit/

今度はPCをセーフモードで起動してください（やり方↓）
http://www.pc-master.jp/sousa/s-safemode.html
Win8の場合は以下を参考に。
http://freesoft.tvbok.com/win8/tips-and-tools/safemode.html

セーフモードでGUを使って、下記をアンインストールしてください。先に確認したものの判断はお任せします。
BankID s臾erhetsprogram Finansiell ID-Teknik BID AB 2015/11/20 49.8 MB 7.0.1.8

GOM Player Gretech Corporation 2016/07/18 109 MB 2.3.3.5254

trotux - Uninstall 2016/08/27

WinRAR 4.20 (32-bit) win.rar GmbH 2016/05/22 3.89 MB 4.20.0

HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、こちらが指示した以外のものは絶対にチェックを入れないでください。
O2 - BHO: ifp5toolbar - {0FAF6F52-1AD4-4282-9EA1-3EC884DA7AA3} - C:\Program Files\Digital Arts\IFP5\app\bin\ifp5toolbar.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)

O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot

O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)

O23 - Service: b19f7ac45e70375cd1a6dad956d23e2a - Unknown owner - C:\Program Files\6c8437848cdd651941470cb1377345ee\582fd4d9aac6a7ddc5956073747a5411.exe (file missing)

O23 - Service: CHNGTSvc - Unknown owner - c:\exervice.exe (file missing)

O23 - Service: Thujoscoats Monitor (ThjmonitorTerkaystazerch.exe) - Unknown owner - C:\Program Files\Vemiing_\ThjmonitorTerkaystazerch.exe (file missing)

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
探しても見つからないものはスルーして進めていいです。

マイコンピュータのCドライブを開いて、下記のフォルダ、ファイルを探して、見つかればゴミ箱に削除してください。
C:\Program Files\6c8437848cdd651941470cb1377345ee

c:\exervice.exe

C:\Program Files\Vemiing_
探しても見つからないときはスルーでいいですが、見つかったのに削除できないときは無理に進めずキャンセルして次回レスでそれを教えてください。

ここでPCを通常モードで再起動してから、スタートメニューの「アクセサリ」→「システムツール」から「ディスククリーンアップ」を起動してください。
起動したら対象ドライブでCドライブを選択してスキャンして、表示された中の「ダウンロードされたプログラムファイル」「インターネット一時ファイル」「一時ファイル」の項目だけチェックを入れてから「OK」「ファイルの削除」を押してください。
これを実行すると選択した部分のゴミファイルが掃除されます。

これを実行することで作業時にスキャンで検出される無駄なゴミファイルも減るのでその分かなり時間や解析も楽になるのです。
「ごみ箱」など他の項目にチェックしないのは、間違って正常なファイルを削除しないためと、もし正常なファイルを削除してごみ箱に入れても戻せるようにするための措置です。

続いてCCを起動してください。
起動したら、「ツール」→」「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できるので、ログをデスクトップにでも保存しておいてください。

次に「スケジュールされたタスク」タブと「コンテキストメニュー」タブのログも同じ要領で保存してください。

続いて今度はCC画面の左側にある「Browser Plugin」の項目から「InternetExplorer」タブ以下の各タブも順番に開いて、そのログもとっておいてください。

CCの各ログをとったらCCは終了してください。

このあとブラウザを起動して、数時間ほどPC状態を様子見したあと、あらたにHJTとCCでのインストール情報ログを取り直してください。

取り直した両ログと、CCの各ログを返信に貼って、状態報告とともにレスください。
それらを見てから続きの作業を指示します。

念押ししますが本当にかなり怪しい状態です。
最悪の場合安全優先でリカバリでの対処になる可能性も高いので、必要なデータは最初に全部バックアップしておいてください

悪代官様
早速のご指導ありがとうございます。相当怪しい状態ですか…。覚悟します。
まず、BankID s臾erhetsprogram Finansiell ID-Teknik BID AB 2015/11/20 49.8 MB 7.0.1.8
ですが、海外在住につき、現地の銀行の手続きをするために銀行カードを差すカードリーダを使用するのがデフォルトです。
そのためにBankIDのアプリをダウンロードするので、それではないかと思います。
が、今回は一旦アンインストールすることにします。
次にtrotux - Uninstall 2016/08/27 ですが、これがブラウザ乗っ取りの本尊だと疑っていました。
プログラムのアンイストールからアンインストールを選択しても、指定したモジュールが見つかりませんとなり、アンインストールができていませんでした。今回も教えていただいた方法でやりましたが、やはりアンインストールはできませんでした。
その時のキャプチャを添付しておきます。

HJTのスキャンとFix後、Cドライブを検索しましたが、
C:\Program Files\6c8437848cdd651941470cb1377345ee

c:\exervice.exe

C:\Program Files\Vemiing_
の３つは見つけられませんでした。

数時間様子を見ていますが、起動時にエラーメッセージが出ることと（別フォームにキャプチャ貼ります）、Chromeで相変わらずGo0gleというページが起動される以外は問題ありません。

取り直した両ログとCCの各ログを以下に貼ります。
お忙しいところ申し訳ありませんがご指導お願い申し上げます。

HJT＿Install情報

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 21:17:14, on 2016/09/08
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0545)


Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Users\masaki\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
C:\Windows\System32\IME\SHARED\imebroker.exe
C:\Windows\helppane.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\System32\LockAppHost.exe
C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\masaki\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=wscript C:\WINDOWS\run.vbs,
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (file missing)
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll",DllRegisterServer
O4 - HKLM\..\RunOnce: [B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll",DllRegisterServer
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\masaki\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: RealTimes.lnk = C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll/105
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.localhost
O15 - Trusted Zone: http://*.webcompanion.com
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{c90db4f7-a028-4704-bf94-c953da71a6be}: NameServer = 188.120.239.115,8.8.8.8
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll (file missing)
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: b19f7ac45e70375cd1a6dad956d23e2a - Unknown owner - C:\Program Files\6c8437848cdd651941470cb1377345ee\582fd4d9aac6a7ddc5956073747a5411.exe (file missing)
O23 - Service: CHNGTSvc - Unknown owner - c:\exervice.exe (file missing)
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: RealTimes Desktop Service - RealNetworks, Inc. - c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Thujoscoats Monitor (ThjmonitorTerkaystazerch.exe) - Unknown owner - C:\Program Files\Vemiing_\ThjmonitorTerkaystazerch.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 12966 bytes



CC install情報

3D Builder Microsoft Corporation 2016/05/28 11.1.8.0
Adobe AIR Adobe Systems Incorporated 2016/05/22 20.0 MB 3.4.0.2710
Adobe Help Manager Adobe Systems Incorporated 2016/05/22 183 MB 4.0.244
Apple Application Support（32 ビット） Apple Inc. 2015/06/09 131 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/12/01 37.0 MB 9.1.0.6
Apple Software Update Apple Inc. 2012/03/24 4.53 MB 2.1.3.127
CCleaner Piriform 2016/09/07 5.21
DivXセットアップ DivX, LLC 2016/07/18 6.07 MB 3.0.0.68
Garmin Express Garmin Ltd or its subsidiaries 2016/08/26 212 MB 4.1.25.0
Google Chrome Google Inc. 2016/09/04 343 MB 53.0.2785.89
Handelsbanken card reader Todos Data System AB 2011/10/21 562 KB 1.00.0000
iCloud Apple Inc. 2015/06/09 79.5 MB 4.1.1.53
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2010/06/04 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 2010/05/03 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2010/06/04 9.5.7.1002
iTunes Apple Inc. 2015/12/01 271 MB 12.3.1.23
Microsoft Office 2010 Microsoft Corporation 2016/08/26 41.6 MB 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2014/10/07 33.8 MB 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2016/08/28 63.2 MB 5.1.50428.0
Microsoft Solitaire Collection 2016/07/18
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 3.44 MB 3.1.0000
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2010/08/07 348 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2011/06/16 600 KB 8.0.56336
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Corporation 2010/08/07 203 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 Microsoft Corporation 2011/08/24 2.92 MB 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2012/06/22 444 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 1.16 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/11/01 448 KB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2011/06/16 1.17 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 26.3 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/07/18 17.1 MB 12.0.30501.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Microsoft Corporation 2016/08/26 11.9 MB 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - 日本語 Microsoft Corporation 2016/08/26 11.9 MB 10.0.50903
Microsoft Wi-Fi Microsoft Corporation 2016/05/23 1.1604.4.0
Norton Security Symantec Corporation 2016/07/18 572 MB 22.7.1.32
OneNote 2016/09/08
PCあんしん点検ユーティリティ TOSHIBA Corporation 2010/06/04 5.75 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 19.5 MB 4.0.2
Picasa 3 Google, Inc. 2016/07/26 82.2 MB 3.9.140.248
RealPlayer (RealTimes) RealNetworks 2016/08/26 183 MB 18.1.4
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2010/06/04 8.04 MB 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2010/06/04 4.78 MB 2.00.0013
Skype Click to Call Skype Technologies S.A. 2011/12/10 16.4 MB 5.6.8442
Skype を手に入れよう Skype 2016/05/23 3.2.1.0
Skype(TM) 7.0 Skype Technologies S.A. 2015/04/15 95.8 MB 7.0.102
SonicStage 4.4 Sony Corporation 2010/12/10 35.0 MB 4.4
Sway 2016/07/18
Synaptics Pointing Device Driver Synaptics Incorporated 2016/05/21 46.4 MB 17.0.10.51
TOSHIBA ConfigFree TOSHIBA Corporation 2010/06/04 144 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 16.7 MB 2.1.0.2
TOSHIBA DVD PLAYER TOSHIBA Corporation 2010/06/04 259 MB 3.01.2.07-B
TOSHIBA Hardware Setup TOSHIBA Corporation 2016/09/07 259 MB 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2010/06/04 259 MB 1.0.80.5
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2010/06/04 9.61 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2010/06/04 53.0 MB 1.6.1.0
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 5.44 MB 2.1.0.4
TOSHIBA ReelTime TOSHIBA Corporation 2010/05/06 88.4 MB 1.6.06.32
TOSHIBA Service Station TOSHIBA 2012/09/27 259 MB 2.2.9
TOSHIBA Supervisor Password TOSHIBA Corporation 2016/09/07 259 MB 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2010/06/04 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2010/06/04 115 MB 1.3.3
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 42.5 MB 2.0.9.0817
trotux - Uninstall 2016/08/27
Twitter 2016/07/10
Windows DVD プレイヤー Microsoft Corporation 2016/05/23 3.6.13291.0
Windows Live Sync Microsoft Corporation 2010/05/06 5.53 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2016/05/22 12.1 MB 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 448 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 3.87 MB 5.000.818.5
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2016/08/03 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2016/08/03 02/06/2007 3.1
Xbox Microsoft Corporation 2016/09/08 19.20.24006.0
Yahoo!ツールバー Yahoo! JAPAN. 2016/05/22 3.15 MB 8.0.0.3
おたすけナビ 東芝情報機器株式会社 2010/05/06 37.4 MB 6.0.2
はがきデザインキット Japan Post Service Co., Ltd. 2016/05/22 13.6 MB v4.2.2
はじめに Microsoft Corporation 2016/09/08 4.0.12.0
アプリ コネクター Microsoft Corporation 2016/05/23 1.3.3.0
ストア Microsoft Corporation 2016/05/22 11602.1.26.0
メッセージング & Skype Microsoft Corporation 2016/05/23 2.15.20002.0
メール/カレンダー Microsoft Corporation 2016/09/08 17.7167.40721.0
東芝HDD/SSDアラータ TOSHIBA Corporation 2010/06/04 78.1 MB 3.1.0.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 464 MB 17.00.0000
電話 Microsoft Corporation 2016/06/03 2.17.27003.0

CC各ログ

CC startup
無効 HKCU:Run AppleIEDAV Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\AppleIEDAV.exe
有効 HKCU:Run ApplePhotoStreams Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
無効 HKCU:Run ApplePhotoStreams Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
無効 HKCU:Run Chromium "c:\users\kanako nakamura\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
無効 HKCU:Run GarminExpressTrayApp Garmin Ltd. or its subsidiaries "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run iCloudDrive Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
無効 HKCU:Run iCloudServices Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\masaki\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
無効 HKCU:Run swg "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
無効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
無効 HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
無効 HKLM:Run AdobeCS6ServiceManager Adobe Systems Incorporated "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
無効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
無効 HKLM:Run cAudioFilterAgent Conexant Systems, Inc. C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
無効 HKLM:Run DivXMediaServer DivX, LLC C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe
無効 HKLM:Run DivXUpdate "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
有効 HKLM:Run HotKeysCmds Intel Corporation C:\WINDOWS\system32\hkcmd.exe
無効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
有効 HKLM:Run IgfxTray Intel Corporation C:\WINDOWS\system32\igfxtray.exe
無効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run Persistence Intel Corporation C:\WINDOWS\system32\igfxpers.exe
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\downloader2.exe
無効 HKLM:Run SmartAudio Conexant Systems, Inc. C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
無効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
無効 HKLM:Run SunJavaUpdateSched Sun Microsystems, Inc. "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
無効 HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
無効 HKLM:Run TiltMouse C:\windows\TiltMouseUI.exe
無効 HKLM:Run TkBellExe RealNetworks, Inc. "c:\program files\real\realplayer\Update\realsched.exe" -osboot
無効 HKLM:Run TKRTL TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
無効 HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
無効 HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
無効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
無効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
無効 HKLM:Run Unattend0000000001{0C0F4D63-7BD9-4236-800D-20BBC2D90DB1} C:\tosutils\palakidou\palakidou.exe
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXAccountViewPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDCFServicesPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLibraryPanePlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXLicenseWriterPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXMediaManagerV2Plugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXPlaybackServicesPlugin.dll",DllRegisterServer
有効 HKLM:RunOnce B Register C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll Microsoft Corporation "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Player\DPXPlugins\DPXTicketManagerPlugin.dll",DllRegisterServer
無効 Startup Common Personal.lnk C:\Program Files\Personal\bin\Personal.exe
有効 Startup Common RealTimes.lnk RealNetworks, Inc. C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
有効 Startup User OneNote 2010 画面の領域の取り込みと起動.lnk Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

CC scheduled task
有効 Task DivXUpdate DivX, LLC C:\Program Files\Common Files\DivX Shared\Qt4.8\DivXUpdate.exe
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task RealUpgradeLogonTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealUpgradeScheduledTaskS-1-5-21-1571685306-2572540633-1985467208-1003 RealNetworks, Inc. C:\Program Files\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task snf C:\ProgramData\Quoteex\Quoteex.exe shuz -f "C:\ProgramData\Quoteex\Touchla.dat" -a SNF C:\ProgramData\Quoteexs\snp.sc snf
有効 Task snp C:\ProgramData\Quoteex\Quoteex.exe shuz -f "C:\ProgramData\Quoteex\Touchla.dat" -a SNP http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D?publisher=APSFWakeNet&co=SE&userid=c1273fe1-ca75-1844-5959-209100578534&searchtype=sc&installDate=27/08/2016&barcodeid=51198003&channelid=3&av=windows snp
有効 Task {33872B2A-B43D-473C-9B35-AD9105FA21C9} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a C:\WINDOWS\3e6c3dcfe2ddd0f945a60290e23f2a11.exe
有効 Task {37233B6D-0577-4B26-8D2A-7BA0AA7F45F1} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\ZipTool\Uninstall.exe" -c -m=control

CC context

有効 Directory


KuaiZipShlExt
有効 Directory Browse in Adobe Bridge CS6 Adobe Systems, Inc. C:\Program Files\Adobe\Adobe Bridge CS6\Bridge.exe "%L"
有効 Directory JZipShlExt C:\Program Files\ZipTool\JZipExt.dll
有効 Drive


KuaiZipShlExt
有効 Drive JZipShlExt C:\Program Files\ZipTool\JZipExt.dll
有効 Drive Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files\Norton Security\Engine\22.7.1.32\NavShExt.dll"
有効 File


KuaiZipShlExt
有効 File 00avast
有効 File BUContextMenu Symantec Corporation C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll
有効 File JZContextMenuExt C:\Program Files\ZipTool\JZipExt.dll
有効 File JZipShlExt C:\Program Files\ZipTool\JZipExt.dll
有効 File PhotoStreamsExt Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll
有効 File Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files\Norton Security\Engine\22.7.1.32\NavShExt.dll"
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. c:\program files\real\realplayer\RPDS\Bin\rpcontextmenu.dll
有効 Folder BUContextMenu Symantec Corporation C:\Program Files\Norton Security\Engine\22.7.1.32\buShell.dll
有効 Folder Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files\Norton Security\Engine\22.7.1.32\NavShExt.dll"

CC Browser plug in IE
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension Skype Click to Call Skype Technologies S.A. C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper C:\Program Files\Java\jre6\bin\jp2ssv.dll
有効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper Skype Browser Helper Skype Technologies S.A. C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
無効 Helper TmBpIeBHO Class C:\Program Files\Trend Micro\AMSP\Module\20002\7.1.1104\7.1.1104\TmBpIe32.dll
無効 Helper TOSHIBA Media Controller Plug-in <TOSHIBA> C:\Program Files\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
有効 Helper Yahoo!ツールバーフィッシング警告 Yahoo Japan Corporation. C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\ypho.dll
有効 Helper Yahoo!ツールバーヘルパー Yahoo! JAPAN C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll
有効 Toolbar Yahoo!ツールバー Yahoo! JAPAN C:\Program Files\Yahoo!J\Toolbar\8_0_0_3\Modules\YahooToolBar.dll

CC Browser plug in Chrome

有効 App Gmail 8.1 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google ドライブ 14.1 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Google Cast 15.1120.0.4 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd\15.1120.0.4_0
有効 Extension Google オフライン ドキュメント 1.4 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1
有効 Extension Google スプレッドシート 1.1 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
無効 Extension Wize Search 1.0.11 最初のユーザー C:\Users\masaki\AppData\Local\Google\Chrome\User Data\Default\Extensions\feeilhmlfcpfchpbgoknoeefdkbgionj\1.0.11_0

CC browser plug in Firefox

何もなし


以上、よろしくお願いいたします。

起動時のエラーメッセージキャプチャ

作業と報告、ご苦労様です。

>まず、BankID s臾erhetsprogram Finansiell ID-Teknik BID AB 2015/11/20 49.8 MB 7.0.1.8
>ですが、海外在住につき、現地の銀行の手続きをするために銀行カードを差すカードリーダを使用するのがデフォルトです。
>そのためにBankIDのアプリをダウンロードするので、それではないかと思います。
>が、今回は一旦アンインストールすることにします。

なるほど、そういうことでしたか。
ただ、ネットバンキングに使っているPCでのトラブルとすると、本当に危険な種のマルウェア感染だった場合うかつに時間かけて調べている間にどんどん傷口広げてしまう恐れがあります。

実際今回のログを見ると、当掲示板で他の方の相談に多い動きとはまったく異なる様相のログが出ています。

>次にtrotux - Uninstall 2016/08/27 ですが、これがブラウザ乗っ取りの本尊だと疑っていました。

これも怪しいのは確定ですが、削除もまともにできない（させない）となると尚更油断できません。

>C:\Program Files\6c8437848cdd651941470cb1377345ee

>c:\exervice.exe

>C:\Program Files\Vemiing_
>の３つは見つけられませんでした。

処置の後に探しても見つからない時は処置でフォルダごと削除されたこともあるのですが、

>数時間様子を見ていますが、起動時にエラーメッセージが出ることと（別フォームにキャプチャ貼ります）、Chromeで相変わらずGo0gleというページが起動される以外は問題ありません。

画像も見せてもらいましたが、やはりまだ消えてはいません。

ハッキリ書きますが、安全優先で考えてリカバリがもっとも安全確実です。
海外在住と言うことから、日本国内のサイトとは別の経路で感染受けた可能性が大です。

まずはLANケーブルを抜くなりしてネットから物理的に切断してから、必要なデータのバックアップしてください。

ネットから切断するのは作業中でも外部から不正アクセス受けたら作業を阻害されるおそれもあるためです。

バックアップができたらすみやかにPCのリカバリにかかってください。
この場合、信頼できないサイトや経緯から入手したファイルやアプリ等はバックアップせず破棄が安全です。

リカバリができたら今度はWindowsUpdateやセキュリティソフトを含む各種プログラムも最新状態まで更新してください。
最新になったらそこで最新状態のアンチウイルスソフトでフルスキャンして、感染や検出がなければリカバリ成功です。

リカバリ前のPCで入力したことのある各種パスワード等はすべて変更してください。
特にネットショッピングやバンキングにかかわる情報は最優先で変更です。

ここまでの作業できたらまたHJTログとインストール情報ログと、CCでの各タブのログも取り直して、それらをレスください。
また、リカバリ後のPC状態も教えてください。

ここまでのログを見た限りでは、かなり手間はかかるもの処置できる可能性もありはします。

ですが処置できる望みがあってもそれを完全に始末できるまでの間にmasakinさんのPCとそれに入っているデータを危険に晒すことはできません。
今回は安全優先でリカバリのみを推奨します。

本当に悪質危険なマルウェアでは、リカバリ後でもPC内に生き残る種もあります。
そういう種のマルウェアも幾度か見つけましたが、その場合はもうひと手間かけて対処することになります。

上記の説明を読んだら大至急データのバックアップとリカバリの準備にかかってください

悪代官様
さっそく丁寧なお返事いただきありがとうございます。
リカバリ（初体験ですが）して身元の明らかなファイルだけにしてみます。
少し時間がかかると思いますが必ず帰ってきたいと思いますので、またご指導お願いいたします。

悪代官様
さっそくリカバリーしました。
windows updateで更新し、Nortonで全スキャンしましたが、cookieによる追跡が11件検出され、解決されました。
リカバリー後の状況ですが、起動時のエラーもなくなり、起動にかかる時間もかなり早くなりました。Windows7に戻りましたが、10にはアップグレードしない予定です。
HJTをかけるとキャプチャ写真で添付したようなアラートが出ます。これはリカバリーの前も同じでした。

各ログをとったので見ていただけますでしょうか。
よろしくお願いいたします。

HJT

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 0:29:24, on 2016/09/10
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coNatHst.exe
C:\Users\kanako\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live サインイン ヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseUI.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9186 bytes

CC install

Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 2016/09/09 10.0.45.2
Adobe Reader 9.3 - Japanese Adobe Systems Incorporated 2010/05/06 262 MB 9.3.0
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2016/09/09 1.0.0.26
CCleaner Piriform 2016/09/10 5.21
Conexant HD Audio Conexant 2016/09/09 4.119.0.61
Corel Digital Studio SE Corel Corporation 2016/09/09 843 MB 1.5.10.51
Corel WinDVD Corel Inc. 2016/09/09 194 MB 10.0.5.349
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/05/06 18.1 MB 3.70.7
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/05/06 3.7.0.7_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/05/06 81.2 MB 4.5.1
Google Chrome Google Inc. 2016/09/09 53.0.2785.101
Google Toolbar for Internet Explorer Google Inc. 2016/09/09
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2016/09/09 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 2016/09/09 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2016/09/10 9.5.7.1002
Java(TM) 6 Update 17 Sun Microsystems, Inc. 2010/05/06 97.6 MB 6.0.170
LoiLoScope LoiLo 2010/05/06 86.6 MB 1.7.28
Microsoft Office 2010 Microsoft Corporation 2016/09/09 14.0.4763.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2010/05/06 16.7 MB 14.0.4763.1000
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 1.72 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/09/09 2.38 MB 8.0.56336
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/05/06 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/05/06 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 596 KB 9.0.30729
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/05/06 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2016/09/09 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2016/09/09 1.33 MB 4.20.9876.0
Norton Security Symantec Corporation 2016/09/09 22.7.1.32
PCあんしん点検ユーティリティ TOSHIBA Corporation 2016/09/09 2.87 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 11.4 MB 4.0.2
PlayReady PC Runtime amd64 Microsoft Corporation 2010/05/06 2.05 MB 1.3.0
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2016/09/09 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2016/09/09 2.00.0013
Synaptics Pointing Device Driver Synaptics Incorporated 2016/09/09 15.0.8.1
TOSHIBA Bulletin Board TOSHIBA Corporation 2016/09/09 1.6.07.64
TOSHIBA ConfigFree TOSHIBA Corporation 2016/09/09 72.8 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 8.38 MB 2.1.0.2 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2016/09/09 3.01.2.07-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2016/09/09 6.99 MB 1.2.11.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2016/09/09 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2016/09/09 1.0.80.5.64
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2016/09/09 4.80 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2016/09/09 27.9 MB 1.6.1.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 2.79 MB 2.1.0.4 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2016/09/09 1.6.06.64
TOSHIBA Service Station TOSHIBA 2016/09/09 2.1.40
TOSHIBA Speech Engines Version V9.50 2016/09/09
TOSHIBA Speech System MT Engine Version 9.0 2016/09/09
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2016/09/09
TOSHIBA Supervisor Password TOSHIBA Corporation 2016/09/09 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2016/09/09 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2016/09/09 61.4 MB 1.3.3.64
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 21.2 MB 2.0.9.0817
Windows Live Sync Microsoft Corporation 2010/05/06 2.76 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2010/05/06 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 224 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 1.93 MB 5.000.818.5
東芝HDD/SSDアラータ TOSHIBA Corporation 2016/09/09 39.1 MB 3.1.64.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 567 MB 17.00.0000

CC　startup

Yes HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
Yes HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
Yes HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run Adobe Reader Speed Launcher Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Yes HKLM:Run cAudioFilterAgent Conexant Systems, Inc. C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
Yes HKLM:Run FlipViewer Library E-Book Systems Inc. "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
Yes HKLM:Run HotKeysCmds Intel Corporation C:\windows\system32\hkcmd.exe
Yes HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
Yes HKLM:Run IgfxTray Intel Corporation C:\windows\system32\igfxtray.exe
Yes HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
Yes HKLM:Run Persistence Intel Corporation C:\windows\system32\igfxpers.exe
Yes HKLM:Run SmartAudio Conexant Systems, Inc. C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
Yes HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
Yes HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
Yes HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
Yes HKLM:Run TiltMouse C:\windows\TiltMouseUI.exe
Yes HKLM:Run TKRTL TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
Yes HKLM:Run TosNC TOSHIBA Corporation %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
Yes HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
Yes HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
Yes HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
Yes HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
Yes HKLM:Run Unattend0000000001{49B781C7-F4B7-4987-BBFD-18A9D8202F97} C:\tosutils\palakidou\palakidou.exe


CC_scheduledtask

Yes Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
Yes Task ConfigFree Startup Programs TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
Yes Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
Yes Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler


CC_context

Yes Drive Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
Yes Drive Ulead UDF Driver Ulead Systems, Inc. c:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll
Yes File BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
Yes File Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
Yes Folder BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
Yes Folder Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"

以上です。よろしくお願いいたします。

追加ですが、リカバリ前の9o0gle乗っ取りはなくなりました。

作業と報告、ご苦労様です。
リカバリもできたようですね。

>HJTをかけるとキャプチャ写真で添付したようなアラートが出ます。これはリカバリーの前も同じでした

はい、それはセキュリティソフトでHJTの動作に過剰反応しているメッセージですが、そこは危険はないのでかまわず「ok」で進めていいです。
具体的にはHJTが、Windows標準のhostsファイルにアクセスする動作に過剰反応している物です。

>リカバリ前の9o0gle乗っ取りはなくなりました

症状は異常もなくなったということですね。

現在のログを見せてもらいました。

Win10にはアップグレードしないようなのでそれはいいですが、WindowsUpdateはしっかり適用してください。
Win7のサービスパックも適用必須です。
>Platform: Windows 7 (WinNT 6.00.3504)

無印Win7のままではどれほど高性能なセキュリティソフトを使っていてもOS自体の脆弱性は防げません。

他の脆弱性も修正しましょう。
まず下記はアンインストールしておいてください。
Adobe Reader 9.3 - Japanese Adobe Systems Incorporated 2010/05/06 262 MB 9.3.0
Java(TM) 6 Update 17 Sun Microsystems, Inc. 2010/05/06 97.6 MB 6.0.170

pdfアプリが必要なら下記をお勧めします。
http://www.forest.impress.co.jp/library/software/pdfxchedit/

次に下記アプリを準備してください。
「AdwCleaner」（通称：AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンです。アクセスしてファイルをデスクトップにでも保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。
使い方は下記サイト様に詳しい説明があるのでサンショウウオ↓
http://www.japan-secure.com/entry/adwcleaner.html

Malwarebytes' Anti-Malware（通称・MBAM）
本家サイト
http://www.malwarebytes.org/

ダウンロード
https://www.malwarebytes.org/mwb-download/thankyou/
ファイル直リンです。保存しておいてください。

使い方の説明サイト
http://www.gigafree.net/security/MalwarebytesAnti-MalwareFree.html

準備できたらMBAMをインストールとアップデートまでしておいてください。
ただし、ここではまだスキャンはしないように。

続いてここで一度ACを起動してください。
起動するとまず定義の更新が行われるはずなので、更新だけしてから、それができたらACは一旦終了してください。
ここではスキャンもしなくていいです。

両ツールのアップデートができたらディスククリーンアップを使ってゴミファイルの掃除したあと、PCをセーフモードで再起動してしてください。

続いてPCをセーフモード起動してから、先に一度起動したACを再度起動してください。
起動したら今度は「スキャン」したあと、そのスキャン終了後に検出されたものがあったら「除去」を押してください。
表示された画面で「はい」を選択すると処置開始されます。

処置完了したらそこでPCを通常モードで再起動してください。

再起動後にACのあらたなログが出るので、それをデスクトップにでも保存しておいてください。
ですが、もし作業後にログが出ないorわからない場合はマイコンピュータのCドライブを開くとその直下に以下のような名前のファイルが作成されているので、それがACのログです。
>AdwCleaner[英数字].txt
同じような名前のログが複数ある時は、作成日時が作業処置時のファイルが対象のログです。

ACでの作業ができたら次はMBAMの作業です。
またセーフモード起動してからMBAM起動してスキャンしてください。
MBAM起動したら「スキャン」タブで「カスタムスキャン」選択後、Cドライブを含む全ドライブを選択してください。
それとルートキットスキャンの項目もチェック入れておいてください。

この形でスキャンすると時間はかかりますができるだけ細かくスキャンするためです。

両ツールのスキャンの順番はどちらからでもいいですが、なにか検出されたらそれを選択して「remove」（隔離）したあと、再起動を促す表示が出たらそこで一度PCを再起動してください。
もし再起動表示が出ないときは手動で再起動してください。

またMBAMスキャン終了後、画面右下にその結果を知らせるメッセージが出るので、それを押すとその結果が表示されるはずです。
そこで「ログを保存」を押すとそのログが保存可能になります。
そのログをデスクトップにでも保存しておいてください。
このログ確認が特に重要なので、忘れないようにお願いします。

このあとしばらくPC状態を様子見後、作業後に保存したACとMBAMのログを返信に貼り付けて、それを状態報告とともにレスで見せてください。

悪代官様
お世話になっております。
ACとMBAMをやってみました。
ログを貼りますのでご指導お願いいたします。
コンピューターの情報を見ると、Windows 7 home premium, Service Pack1 となっているので、これはサービスパック１にアップグレードされたということでよろしいでしょうか。

以下　ログです。

# AdwCleaner v6.010 - ログファイルの作成日 10/09/2016 作成時間 22:07:28
# ToolsLibによる 12/08/2016 の更新日
# データベース : 2016-08-24.2 [ローカル]
# オペレーティングシステム : Windows 7 Home Premium Service Pack 1 (X64)
# ユーザー名 : kanako - KANAKO-PC
# 実行場所 : C:\Users\kanako\Desktop\AdwCleaner.exe
# モード：安全
# サポート : https://toolslib.net/forum



***** [ サービス ] *****

[-] 削除済みサービス：Partner Service


***** [ フォルダ ] *****

[-] 削除済みフォルダ：C:\ProgramData\Partner
[#] 再起動時に削除されたフォルダ：：C:\ProgramData\Application Data\Partner


***** [ ファイル ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ ショートカット ] *****



***** [ スケジュール済みタスク ] *****



***** [ レジストリ ] *****

[-] 削除済みキー：HKLM\SOFTWARE\Classes\kt_bho.KettleBho
[-] 削除済みキー：HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
[-] 削除済みキー：HKLM\SOFTWARE\Classes\LXImageTool.ZIPTool
[-] 削除済みキー：HKLM\SOFTWARE\Classes\LXImageTool.ZIPTool.1
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] 削除済みキー：HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] 削除済みキー：[x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：[x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
[-] 削除済みキー：HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
[-] 削除済みキー：HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
[-] 削除済みキー：HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[#] 再起動時に削除されたキー：HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
[-] 削除済みキー：HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll


***** [ ブラウザ ] *****



*************************

:: "Tracing" キーを削除しました
:: Winsock設定を削除しました

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3122 バイト] - [10/09/2016 22:07:28]
C:\AdwCleaner\AdwCleaner[S0].txt - [3521 バイト] - [10/09/2016 22:06:26]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [3276 バイト] ##########

MBAM

Malwarebytes Anti-Malware
www.malwarebytes.org

スキャン日付: 2016/09/10
スキャン時刻: 22:19
ログファイル: 20160910MBAM log.txt
管理者: はい

バージョン: 2.2.1.1043
マルウェアデータベース: v2016.09.10.08
ルートキットデータベース: v2016.08.15.01
ライセンス: 無料版
マルウェア保護機能: 無効
悪質ウェブサイト保護機能: 無効
自己防衛: 無効

OS: Windows 7 Service Pack 1
CPU: x64
ファイルシステム: NTFS
ユーザー: kanako

スキャン形式: カスタムスキャン
結果: 完了しました
スキャンされたオブジェクト数: 444096
経過時間: 1 時間, 9 分, 46 秒

メモリ: 有効
スタートアップ: 有効
ファイルシステム: 有効
アーカイブ: 有効
ルートキット: 有効
ヒューリスティック: 有効
PUP: 有効
PUM: 有効

プロセス: 0
（なし悪意のある項目を検出）

モジュール: 0
（なし悪意のある項目を検出）

レジストリキー: 0
（なし悪意のある項目を検出）

レジストリ値: 0
（なし悪意のある項目を検出）

レジストリデータ: 0
（なし悪意のある項目を検出）

フォルダー: 0
（なし悪意のある項目を検出）

ファイル: 0
（なし悪意のある項目を検出）

物理セクタ: 0
（なし悪意のある項目を検出）


(end)

レスが遅くなってすみません。

>コンピューターの情報を見ると、Windows 7 home premium, Service Pack1 となっているので、これはサービスパック１にアップグレードされたということでよろしいでしょうか。

はい、現在はSPも適用して最新状態になってるのでいいです。
先に見せてもらったHJTログでは、まだSPがあててない状態でしたので確認しました↓
>Platform: Windows 7 (WinNT 6.00.3504)
>MSIE: Internet Explorer v8.00 (8.00.7600.16385)

IEも最新の11になっていればいいです。

さて両ツールのログを見たところ、MBAMは検出ないですがACで結構見つかりました。
また信頼できないサイトで何か拾ってしまったようですが、それらはAC上から全部処置していればいいです。

ではもう少し踏み込んで調べましょう。
リカバリ後でも油断すると悪玉はすぐに入り込みます。

以下のツールを準備してください。
OTL(OldTimer Listit)
「Download」ボタンからDLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。
ただし、Windows10をお使いの場合は本体ファイルをそのまま削除すればいいです。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで1万文字以内に分割して、複数回に分けてレス送信してください。
1万文字を越えた投稿はfc2の文字数制限で途切れてしまうためです。
http://www1.odn.ne.jp/megukuma/count.htm

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです

お世話になります。
OTLログを貼ります。

OTL logfile created on: 2016/09/12 20:26:41 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\kanako\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.80 Gb Total Physical Memory | 1.69 Gb Available Physical Memory | 44.38% Memory free
7.61 Gb Paging File | 4.82 Gb Available in Paging File | 63.33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 399.97 Gb Total Space | 359.22 Gb Free Space | 89.81% Space Free | Partition Type: NTFS
Drive D: | 50.00 Gb Total Space | 49.91 Gb Free Space | 99.82% Space Free | Partition Type: NTFS

Computer Name: KANAKO-PC | User Name: kanako | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2016/08/16 20:55:18 | 000,289,080 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe
PRC - [2010/04/14 10:49:34 | 000,028,320 | ---- | M] () -- c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
PRC - [2010/03/11 07:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2010/02/22 06:23:50 | 000,304,496 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2009/12/09 09:21:56 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009/12/09 09:21:52 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/10/27 03:05:58 | 000,222,592 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
PRC - [2009/10/27 03:04:58 | 002,091,632 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
PRC - [2009/07/28 13:26:42 | 000,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
PRC - [2009/03/10 11:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2007/01/04 12:48:50 | 000,112,152 | ---- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/09/10 16:43:42 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2010/04/06 07:53:14 | 000,258,928 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2010/03/31 07:43:38 | 000,835,952 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:[b]64bit:[/b] - [2010/02/05 10:44:48 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
SRV:[b]64bit:[/b] - [2009/11/05 15:05:28 | 000,489,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV:[b]64bit:[/b] - [2009/07/28 08:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2016/08/16 20:55:18 | 000,289,080 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe -- (NS)
SRV - [2010/04/14 10:49:34 | 000,028,320 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe -- (UDSS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/11 07:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/01/28 09:44:40 | 000,249,200 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
SRV - [2009/12/09 09:21:56 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009/12/09 09:21:52 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009/10/27 03:05:58 | 000,222,592 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe -- (TPCHKarteSVC)
SRV - [2009/10/06 02:21:50 | 000,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/03/10 11:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
SRV - [2007/01/04 12:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2016/09/09 23:34:35 | 000,101,112 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:[b]64bit:[/b] - [2016/08/10 04:40:59 | 001,627,352 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\SymEFASI64.sys -- (SymEFASI)
DRV:[b]64bit:[/b] - [2016/08/10 04:40:49 | 000,567,536 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\symnets.sys -- (SymNetS)
DRV:[b]64bit:[/b] - [2016/08/10 04:39:28 | 000,291,056 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\Ironx64.sys -- (SymIRON)
DRV:[b]64bit:[/b] - [2016/08/10 04:38:32 | 000,174,328 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\ccSetx64.sys -- (ccSet_NS)
DRV:[b]64bit:[/b] - [2016/08/10 04:38:25 | 000,773,360 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\srtsp64.sys -- (SRTSP)
DRV:[b]64bit:[/b] - [2016/08/10 04:38:25 | 000,048,888 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1607010.020\srtspx64.sys -- (SRTSPX)
DRV:[b]64bit:[/b] - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/11/20 15:32:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/20 15:32:46 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2010/11/20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010/04/26 18:23:08 | 001,103,904 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
DRV:[b]64bit:[/b] - [2010/03/31 07:50:16 | 000,724,536 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:[b]64bit:[/b] - [2010/03/10 11:51:32 | 000,316,464 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2010/03/05 10:15:14 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:[b]64bit:[/b] - [2010/02/22 11:03:42 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010/02/20 01:24:34 | 010,300,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010/02/10 08:01:58 | 000,158,720 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010/02/02 22:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2010/02/01 03:29:48 | 000,232,992 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2010/01/15 05:22:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2009/09/17 05:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009/07/30 13:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV:[b]64bit:[/b] - [2009/07/14 08:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/07 01:51:42 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FwLnk.sys -- (FwLnk)
DRV:[b]64bit:[/b] - [2009/06/19 12:15:22 | 000,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:[b]64bit:[/b] - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2007/04/17 04:51:50 | 000,014,112 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\regi.sys -- (regi)
DRV - [2016/09/09 21:10:20 | 000,876,760 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.7.1.32\Definitions\IPSDefs\20160909.001\IDSviA64.sys -- (IDSVia64)
DRV - [2016/09/07 16:26:54 | 001,854,712 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.7.1.32\Definitions\BASHDefs\20160907.004\BHDrvx64.sys -- (BHDrvx64)
DRV - [2016/04/27 22:16:14 | 000,156,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2016/04/27 22:16:05 | 000,497,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/04/17 13:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\drivers\regi.sys -- (regi)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSJH&bmod=TSJH
IE - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSJH&bmod=TSJH
IE - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C1A2A613-35F1-4FCF-B27F-2840527B6556}: C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\COFFADDON\ [2016/09/09 23:34:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C1A2A613-35F1-4FCF-B27F-2840527B6556}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon\ [2016/09/09 23:34:50 | 000,000,000 | ---D | M]


[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe\2015.7.0.69_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif\1.0.5_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5316.725.0.13_0\

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (i-フィルター 5.0 ブラウザヘルパー) - {0FAF6F52-1AD4-4282-9EA1-3EC884DA7AA3} - C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar64.dll File not found
O2:[b]64bit:[/b] - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll (Google Inc.)
O2 - BHO: (FlpLauncher Class) - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\Program Files (x86)\E-Book Systems\FlipViewer\fvbho140.dll (E-Book Systems Inc.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (TOSHIBA Media Controller Plug-in) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:[b]64bit:[/b] - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\CoIEPlg.dll (Symantec Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [] File not found
O4:[b]64bit:[/b] - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosNC] C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Unattend0000000001{49B781C7-F4B7-4987-BBFD-18A9D8202F97}] C:\tosutils\palakidou\palakidou.exe File not found
O4 - HKLM..\Run: [FlipViewer Library] C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe (E-Book Systems Inc.)
O4 - HKLM..\Run: [TiltMouse] C:\Windows\TiltMouseUI.exe ()
O4 - HKLM..\Run: [TKRTL] C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe (TOSHIBA Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2561528459-3886755028-4122387636-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: Google サイドウィキ... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O8 - Extra context menu item: Google サイドウィキ... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:[b]64bit:[/b] - ..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O15 - HKLM\..Trusted Domains: fresheye.com ([dynabook] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{846EF11E-E696-42F5-9123-85D63820BB52}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

OTL3です

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2016/09/12 20:23:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\kanako\Desktop\OTL.exe
[2016/09/10 21:57:11 | 000,192,216 | ---- | C] (Malwarebytes) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2016/09/10 21:56:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2016/09/10 21:56:19 | 000,140,672 | ---- | C] (Malwarebytes) -- C:\windows\SysNative\drivers\mbamchameleon.sys
[2016/09/10 21:56:19 | 000,064,896 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mwac.sys
[2016/09/10 21:56:19 | 000,027,008 | ---- | C] (Malwarebytes) -- C:\windows\SysNative\drivers\mbam.sys
[2016/09/10 21:56:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2016/09/10 21:56:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2016/09/10 21:55:42 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Programs
[2016/09/10 21:54:08 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2016/09/10 21:42:47 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2016/09/10 21:42:47 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Adobe
[2016/09/10 18:03:04 | 000,058,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe
[2016/09/10 18:03:04 | 000,044,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll
[2016/09/10 18:03:03 | 002,620,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll
[2016/09/10 18:02:18 | 000,700,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll
[2016/09/10 18:02:18 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll
[2016/09/10 18:02:18 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wudriver.dll
[2016/09/10 18:02:18 | 000,038,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll
[2016/09/10 18:02:17 | 000,581,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapi.dll
[2016/09/10 18:02:17 | 000,036,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wups.dll
[2016/09/10 18:01:37 | 000,198,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll
[2016/09/10 18:01:37 | 000,179,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuwebv.dll
[2016/09/10 18:01:37 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe
[2016/09/10 18:01:37 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapp.exe
[2016/09/10 16:46:28 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IEUDINIT.EXE
[2016/09/10 16:43:47 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2016/09/10 16:43:47 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2016/09/10 16:43:43 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2016/09/10 16:43:43 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2016/09/10 16:43:43 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jsIntl.dll
[2016/09/10 16:43:43 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2016/09/10 16:43:43 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2016/09/10 16:43:43 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jsIntl.dll
[2016/09/10 16:43:43 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript9diag.dll
[2016/09/10 16:43:43 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2016/09/10 16:43:43 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2016/09/10 16:43:43 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2016/09/10 16:43:43 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2016/09/10 16:43:43 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2016/09/10 16:43:43 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2016/09/10 16:43:43 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2016/09/10 16:43:43 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2016/09/10 16:43:43 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2016/09/10 16:43:43 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2016/09/10 16:43:43 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2016/09/10 16:43:43 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2016/09/10 16:43:43 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2016/09/10 16:43:43 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2016/09/10 16:43:43 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2016/09/10 16:43:43 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2016/09/10 16:43:43 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2016/09/10 16:43:43 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2016/09/10 16:43:43 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2016/09/10 16:43:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2016/09/10 16:43:43 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MshtmlDac.dll
[2016/09/10 16:43:43 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2016/09/10 16:43:43 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2016/09/10 16:43:43 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
[2016/09/10 16:43:43 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2016/09/10 16:43:43 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2016/09/10 16:43:43 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieetwproxystub.dll
[2016/09/10 16:43:43 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2016/09/10 16:43:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2016/09/10 16:43:43 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2016/09/10 16:43:42 | 006,026,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2016/09/10 16:43:42 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2016/09/10 16:43:42 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2016/09/10 16:43:42 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2016/09/10 16:43:42 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9diag.dll
[2016/09/10 16:43:42 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2016/09/10 16:43:42 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2016/09/10 16:43:42 | 000,720,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2016/09/10 16:43:42 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2016/09/10 16:43:42 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2016/09/10 16:43:42 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2016/09/10 16:43:42 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2016/09/10 16:43:42 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2016/09/10 16:43:42 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2016/09/10 16:43:42 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2016/09/10 16:43:42 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2016/09/10 16:43:42 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2016/09/10 16:43:42 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2016/09/10 16:43:42 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2016/09/10 16:43:42 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2016/09/10 16:43:42 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2016/09/10 16:43:42 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2016/09/10 16:43:42 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollector.exe
[2016/09/10 16:43:42 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2016/09/10 16:43:42 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2016/09/10 16:43:42 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2016/09/10 16:43:42 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2016/09/10 16:43:42 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MshtmlDac.dll
[2016/09/10 16:43:42 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2016/09/10 16:43:42 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\JavaScriptCollectionAgent.dll
[2016/09/10 16:43:42 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2016/09/10 16:43:42 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2016/09/10 16:43:42 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2016/09/10 16:43:42 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2016/09/10 16:43:42 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwproxystub.dll
[2016/09/10 16:43:42 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2016/09/10 16:43:42 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2016/09/10 16:43:42 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2016/09/10 16:43:42 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2016/09/10 16:43:42 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2016/09/10 16:43:42 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollectorres.dll
[2016/09/10 16:43:02 | 005,549,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2016/09/10 16:43:02 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2016/09/10 16:43:02 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2016/09/10 16:43:02 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2016/09/10 16:43:02 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kernel32.dll
[2016/09/10 16:43:02 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\advapi32.dll
[2016/09/10 16:43:02 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tdh.dll
[2016/09/10 16:43:02 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tdh.dll
[2016/09/10 16:43:02 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KernelBase.dll
[2016/09/10 16:43:02 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64win.dll
[2016/09/10 16:43:02 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\conhost.exe
[2016/09/10 16:43:02 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64.dll
[2016/09/10 16:43:02 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winsrv.dll
[2016/09/10 16:43:02 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\smss.exe
[2016/09/10 16:43:02 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\csrsrv.dll
[2016/09/10 16:43:02 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setup16.exe
[2016/09/10 16:43:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntvdm64.dll
[2016/09/10 16:43:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntvdm64.dll
[2016/09/10 16:43:02 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wow64cpu.dll
[2016/09/10 16:43:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\instnm.exe
[2016/09/10 16:43:02 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\apisetschema.dll
[2016/09/10 16:43:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2016/09/10 16:43:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wow32.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2016/09/10 16:43:02 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\user.exe
[2016/09/10 16:42:43 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\netio.sys
[2016/09/10 16:42:43 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\FWPKCLNT.SYS
[2016/09/10 16:42:32 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskhost.exe
[2016/09/10 16:40:26 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d2d1.dll
[2016/09/10 16:40:26 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msmpeg2vdec.dll
[2016/09/10 16:40:26 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10warp.dll
[2016/09/10 16:40:26 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msmpeg2vdec.dll
[2016/09/10 16:40:26 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsPrint.dll
[2016/09/10 16:40:26 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DWrite.dll
[2016/09/10 16:40:26 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecs.dll
[2016/09/10 16:40:26 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10.dll
[2016/09/10 16:40:26 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsPrint.dll
[2016/09/10 16:40:26 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10level9.dll
[2016/09/10 16:40:26 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll
[2016/09/10 16:40:26 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMPhoto.dll
[2016/09/10 16:40:26 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMPhoto.dll
[2016/09/10 16:40:26 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll
[2016/09/10 16:40:26 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxgi.dll
[2016/09/10 16:40:26 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1core.dll
[2016/09/10 16:40:26 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10core.dll
[2016/09/10 16:40:26 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecsExt.dll
[2016/09/10 16:40:26 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UIAnimation.dll
[2016/09/10 16:40:26 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1.dll
[2016/09/10 16:40:26 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UIAnimation.dll
[2016/09/10 16:40:26 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016/09/10 16:40:26 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016/09/10 16:40:26 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016/09/10 16:40:26 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016/09/10 16:38:24 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d11.dll
[2016/09/10 16:38:24 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3d11.dll
[2016/09/10 13:18:45 | 000,000,000 | ---D | C] -- C:\windows\SysNative\SPReview
[2016/09/10 13:18:07 | 000,000,000 | ---D | C] -- C:\windows\SysNative\EventProviders
[2016/09/10 08:25:24 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dfshim.dll
[2016/09/10 08:25:24 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netfxperf.dll
[2016/09/10 08:25:16 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dfshim.dll
[2016/09/10 08:25:12 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstscax.dll
[2016/09/10 08:25:12 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\TsUsbFlt.sys
[2016/09/10 08:25:12 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2016/09/10 08:25:08 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstscax.dll
[2016/09/10 08:25:02 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfc40.dll
[2016/09/10 08:25:02 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfc40u.dll
[2016/09/10 08:24:59 | 002,314,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tquery.dll
[2016/09/10 08:24:58 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmp.dll
[2016/09/10 08:24:58 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssrch.dll
[2016/09/10 08:24:57 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mmcndmgr.dll
[2016/09/10 08:24:56 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mf.dll
[2016/09/10 08:24:56 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xpsservices.dll
[2016/09/10 08:24:56 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc.dll
[2016/09/10 08:24:56 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_isv.dll
[2016/09/10 08:24:56 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_isv.dll
[2016/09/10 08:24:56 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_isv.exe
[2016/09/10 08:24:56 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate.exe
[2016/09/10 08:24:54 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rpcrt4.dll
[2016/09/10 08:24:54 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc.dll
[2016/09/10 08:24:54 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_isv.exe
[2016/09/10 08:24:54 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate.exe
[2016/09/10 08:24:53 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ole32.dll
[2016/09/10 08:24:52 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\esent.dll
[2016/09/10 08:24:52 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RacEngn.dll
[2016/09/10 08:24:52 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskschd.dll
[2016/09/10 08:24:52 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spwizui.dll
[2016/09/10 08:24:51 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mf.dll
[2016/09/10 08:24:51 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ExplorerFrame.dll
[2016/09/10 08:24:51 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\diagperf.dll
[2016/09/10 08:24:50 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vssapi.dll
[2016/09/10 08:24:50 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mssrch.dll
[2016/09/10 08:24:50 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CertEnroll.dll
[2016/09/10 08:24:50 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\NaturalLanguage6.dll
[2016/09/10 08:24:49 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UIRibbon.dll
[2016/09/10 08:24:49 | 002,872,320 | ---- | C] (Microsoft Corporation) -- C:\windows\explorer.exe
[2016/09/10 08:24:49 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mcupdate_GenuineIntel.dll
[2016/09/10 08:24:48 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmp.dll
[2016/09/10 08:24:48 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMVCORE.DLL
[2016/09/10 08:24:48 | 001,698,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\esent.dll
[2016/09/10 08:24:47 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spinstall.exe
[2016/09/10 08:24:47 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHost.exe
[2016/09/10 08:24:47 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spreview.exe
[2016/09/10 08:24:47 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHost.exe
[2016/09/10 08:24:47 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpdd.dll
[2016/09/10 08:24:47 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PresentationHostProxy.dll
[2016/09/10 08:24:47 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PresentationHostProxy.dll
[2016/09/10 08:24:46 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSAT.exe
[2016/09/10 08:24:46 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CertEnroll.dll
[2016/09/10 08:24:46 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMVDECOD.DLL
[2016/09/10 08:24:46 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tquery.dll
[2016/09/10 08:24:46 | 000,960,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CPFilters.dll
[2016/09/10 08:24:45 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3d9.dll
[2016/09/10 08:24:45 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RacEngn.dll
[2016/09/10 08:24:44 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\AuthFWSnapin.dll
[2016/09/10 08:24:44 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\AuthFWSnapin.dll
[2016/09/10 08:24:44 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SearchFolder.dll
[2016/09/10 08:24:42 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dbgeng.dll
[2016/09/10 08:24:42 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dwmcore.dll
[2016/09/10 08:24:33 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\crypt32.dll
[2016/09/10 08:24:31 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ExplorerFrame.dll
[2016/09/10 08:24:30 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\actxprxy.dll
[2016/09/10 08:24:29 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsasrv.dll
[2016/09/10 08:24:29 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TSWorkspace.dll
[2016/09/10 08:24:28 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imapi2fs.dll
[2016/09/10 08:24:28 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstsc.exe
[2016/09/10 08:24:28 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sqmapi.dll
[2016/09/10 08:24:27 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netlogon.dll
[2016/09/10 08:24:27 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CPFilters.dll
[2016/09/10 08:24:26 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\explorer.exe
[2016/09/10 08:24:26 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\authui.dll
[2016/09/10 08:24:26 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\setupapi.dll
[2016/09/10 08:24:26 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\propsys.dll
[2016/09/10 08:24:26 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\taskschd.dll
[2016/09/10 08:24:25 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\werconcpl.dll
[2016/09/10 08:24:25 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
[2016/09/10 08:24:25 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbc32.dll
[2016/09/10 08:24:25 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskeng.exe
[2016/09/10 08:24:25 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dnsapi.dll
[2016/09/10 08:24:24 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\certmgr.dll
[2016/09/10 08:24:24 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstsc.exe
[2016/09/10 08:24:24 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\user32.dll
[2016/09/10 08:24:23 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scavengeui.dll
[2016/09/10 08:24:22 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wer.dll
[2016/09/10 08:24:20 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\localspl.dll
[2016/09/10 08:24:20 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PortableDeviceApi.dll
[2016/09/10 08:24:20 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\webio.dll
[2016/09/10 08:24:20 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\certcli.dll
[2016/09/10 08:24:20 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tsmf.dll
[2016/09/10 08:24:20 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ncsi.dll
[2016/09/10 08:24:19 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdtctm.dll
[2016/09/10 08:24:19 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dwmcore.dll
[2016/09/10 08:24:19 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdrm.dll
[2016/09/10 08:24:19 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shlwapi.dll
[2016/09/10 08:24:18 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netshell.dll
[2016/09/10 08:24:18 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbc32.dll
[2016/09/10 08:24:18 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmicmiplugin.dll
[2016/09/10 08:24:18 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netcfgx.dll
[2016/09/10 08:24:18 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winlogon.exe
[2016/09/10 08:24:18 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ws2_32.dll
[2016/09/10 08:24:18 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\framedynos.dll
[2016/09/10 08:24:18 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tcpmonui.dll
[2016/09/10 08:24:17 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\quartz.dll
[2016/09/10 08:24:17 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\quartz.dll
[2016/09/10 08:24:17 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\usp10.dll
[2016/09/10 08:24:17 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\comdlg32.dll
[2016/09/10 08:24:17 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsm.exe
[2016/09/10 08:24:16 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Query.dll
[2016/09/10 08:24:16 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\TSWorkspace.dll
[2016/09/10 08:24:16 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpps.dll
[2016/09/10 08:24:16 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drvstore.dll
[2016/09/10 08:24:16 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\apphelp.dll
[2016/09/10 08:24:16 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tsmf.dll
[2016/09/10 08:24:16 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdsata.sys
[2016/09/10 08:24:16 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dot3api.dll
[2016/09/10 08:24:15 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wpdshext.dll
[2016/09/10 08:24:15 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\azroles.dll
[2016/09/10 08:24:15 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\QAGENT.DLL
[2016/09/10 08:24:14 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dbgeng.dll
[2016/09/10 08:24:14 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Vault.dll
[2016/09/10 08:24:14 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssvp.dll
[2016/09/10 08:24:14 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\samsrv.dll
[2016/09/10 08:24:14 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\win32spl.dll
[2016/09/10 08:24:14 | 000,722,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\EncDec.dll
[2016/09/10 08:24:14 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lpksetup.exe
[2016/09/10 08:24:14 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winresume.efi
[2016/09/10 08:24:14 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cmd.exe
[2016/09/10 08:24:14 | 000,281,600 | ---- | C] (Microsoft) -- C:\windows\SysNative\DShowRdpFilter.dll
[2016/09/10 08:24:13 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winload.exe
[2016/09/10 08:24:12 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMVDECOD.DLL
[2016/09/10 08:24:12 | 001,118,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sbe.dll
[2016/09/10 08:24:12 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sxs.dll
[2016/09/10 08:24:12 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netcfgx.dll
[2016/09/10 08:24:12 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\webio.dll
[2016/09/10 08:24:11 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pnidui.dll
[2016/09/10 08:24:11 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winload.efi
[2016/09/10 08:24:11 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ipsmsnap.dll
[2016/09/10 08:24:11 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskcomp.dll
[2016/09/10 08:24:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfds.dll
[2016/09/10 08:24:11 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Wldap32.dll
[2016/09/10 08:24:11 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mcbuilder.exe
[2016/09/10 08:24:11 | 000,252,928 | ---- | C] (Microsoft) -- C:\windows\SysWow64\DShowRdpFilter.dll
[2016/09/10 08:24:11 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\upnp.dll
[2016/09/10 08:24:11 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\storport.sys
[2016/09/10 08:24:10 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mmcndmgr.dll
[2016/09/10 08:24:10 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\webservices.dll
[2016/09/10 08:24:10 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\imapi2fs.dll
[2016/09/10 08:24:10 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winresume.exe
[2016/09/10 08:24:10 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\hgprint.dll
[2016/09/10 08:24:10 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netfxperf.dll
[2016/09/10 08:24:09 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\authui.dll
[2016/09/10 08:24:09 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sqlsrv32.dll
[2016/09/10 08:24:09 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fveapi.dll
[2016/09/10 08:24:09 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winsta.dll
[2016/09/10 08:24:09 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dot3api.dll
[2016/09/10 08:24:08 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mcmde.dll
[2016/09/10 08:24:08 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gdi32.dll
[2016/09/10 08:24:08 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSNP.ax
[2016/09/10 08:24:08 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\schtasks.exe
[2016/09/10 08:24:08 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mcbuilder.exe
[2016/09/10 08:24:08 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\prncache.dll
[2016/09/10 08:24:07 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\certmgr.dll
[2016/09/10 08:24:07 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wlanpref.dll
[2016/09/10 08:24:07 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMNetMgr.dll
[2016/09/10 08:24:06 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xpsservices.dll
[2016/09/10 08:24:06 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\evr.dll
[2016/09/10 08:24:06 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\photowiz.dll
[2016/09/10 08:24:06 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drvstore.dll
[2016/09/10 08:24:06 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vpnike.dll
[2016/09/10 08:24:06 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wintrust.dll
[2016/09/10 08:24:06 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\userenv.dll
[2016/09/10 08:24:05 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\AudioSes.dll
[2016/09/10 08:24:05 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\framedyn.dll
[2016/09/10 08:24:04 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SyncCenter.dll
[2016/09/10 08:24:04 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMPEncEn.dll
[2016/09/10 08:24:04 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppobjs.dll
[2016/09/10 08:24:04 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpmde.dll
[2016/09/10 08:24:04 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpeffects.dll
[2016/09/10 08:24:04 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aepdu.dll
[2016/09/10 08:24:04 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cmd.exe
[2016/09/10 08:24:04 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfreadwrite.dll
[2016/09/10 08:24:03 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aeinv.dll
[2016/09/10 08:24:02 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\win32spl.dll
[2016/09/10 08:24:02 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\framedynos.dll
[2016/09/10 08:24:02 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fde.dll
[2016/09/10 08:24:01 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSATAPI.dll
[2016/09/10 08:24:01 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfds.dll
[2016/09/10 08:24:00 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\localsec.dll
[2016/09/10 08:24:00 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imapi2.dll
[2016/09/10 08:24:00 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netdiagfx.dll
[2016/09/10 08:24:00 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bcryptprimitives.dll
[2016/09/10 08:24:00 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\stobject.dll
[2016/09/10 08:24:00 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\credui.dll
[2016/09/10 08:24:00 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2016/09/10 08:23:59 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tcpipcfg.dll
[2016/09/10 08:23:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\QSHVHOST.DLL
[2016/09/10 08:23:59 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetpp.dll
[2016/09/10 08:23:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netid.dll
[2016/09/10 08:23:59 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\davclnt.dll
[2016/09/10 08:23:58 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\themeui.dll
[2016/09/10 08:23:58 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gameux.dll
[2016/09/10 08:23:58 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\printui.dll
[2016/09/10 08:23:58 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\azroles.dll
[2016/09/10 08:23:58 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mspbda.dll
[2016/09/10 08:23:58 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\biocpl.dll
[2016/09/10 08:23:58 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msinfo32.exe
[2016/09/10 08:23:58 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scansetting.dll
[2016/09/10 08:23:58 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spp.dll
[2016/09/10 08:23:58 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ncsi.dll
[2016/09/10 08:23:57 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PhotoScreensaver.scr
[2016/09/10 08:23:57 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\splwow64.exe
[2016/09/10 08:23:56 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dbghelp.dll
[2016/09/10 08:23:56 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mscms.dll
[2016/09/10 08:23:56 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdri.dll
[2016/09/10 08:23:56 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winspool.drv
[2016/09/10 08:23:56 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wusa.exe
[2016/09/10 08:23:56 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfreadwrite.dll
[2016/09/10 08:23:56 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rpchttp.dll
[2016/09/10 08:23:56 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IPHLPAPI.DLL
[2016/09/10 08:23:56 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\basecsp.dll
[2016/09/10 08:23:56 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aitagent.exe
[2016/09/10 08:23:55 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msi.dll
[2016/09/10 08:23:55 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FirewallControlPanel.dll
[2016/09/10 08:23:55 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wisptis.exe
[2016/09/10 08:23:55 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\taskcomp.dll
[2016/09/10 08:23:55 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XpsRasterService.dll
[2016/09/10 08:23:55 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PkgMgr.exe
[2016/09/10 08:23:55 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ocsetup.exe
[2016/09/10 08:23:54 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcore.dll
[2016/09/10 08:23:54 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\calc.exe
[2016/09/10 08:23:54 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\EncDec.dll
[2016/09/10 08:23:54 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\evr.dll
[2016/09/10 08:23:54 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DXP.dll
[2016/09/10 08:23:54 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppwinob.dll
[2016/09/10 08:23:54 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WinSATAPI.dll
[2016/09/10 08:23:54 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cfgmgr32.dll
[2016/09/10 08:23:54 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ocsetapi.dll
[2016/09/10 08:23:53 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ci.dll
[2016/09/10 08:23:53 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sqlsrv32.dll
[2016/09/10 08:23:53 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntshrui.dll
[2016/09/10 08:23:53 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\eapp3hst.dll
[2016/09/10 08:23:53 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\eapphost.dll
[2016/09/10 08:23:53 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\upnp.dll
[2016/09/10 08:23:53 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mprapi.dll
[2016/09/10 08:23:52 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UIRibbon.dll
[2016/09/10 08:23:52 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mmsys.cpl
[2016/09/10 08:23:52 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\t2embed.dll
[2016/09/10 08:23:52 | 000,128,000 | ---- | C] (Microsoft) -- C:\windows\SysNative\Robocopy.exe
[2016/09/10 08:23:52 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\thumbcache.dll
[2016/09/10 08:23:52 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\windows\SysNative\drivers\HpSAMD.sys
[2016/09/10 08:23:51 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netshell.dll
[2016/09/10 08:23:51 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DxpTaskSync.dll
[2016/09/10 08:23:51 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PerfCenterCPL.dll
[2016/09/10 08:23:51 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\hal.dll
[2016/09/10 08:23:50 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\themeui.dll
[2016/09/10 08:23:50 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSMPEG2ENC.DLL
[2016/09/10 08:23:50 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\puiobj.dll
[2016/09/10 08:23:50 | 000,367,104 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
[2016/09/10 08:23:50 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scecli.dll
[2016/09/10 08:23:50 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\Classpnp.sys
[2016/09/10 08:23:50 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspicli.dll
[2016/09/10 08:23:50 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dwmredir.dll
[2016/09/10 08:23:50 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\prncache.dll
[2016/09/10 08:23:50 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msasn1.dll
[2016/09/10 08:23:50 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\windows\SysNative\drivers\amdxata.sys
[2016/09/10 08:23:49 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\printui.dll
[2016/09/10 08:23:49 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DXPTaskRingtone.dll
[2016/09/10 08:23:49 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\onex.dll
[2016/09/10 08:23:48 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpeffects.dll
[2016/09/10 08:23:48 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\aaclient.dll
[2016/09/10 08:23:48 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\net1.exe
[2016/09/10 08:23:48 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rpchttp.dll
[2016/09/10 08:23:47 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wdc.dll
[2016/09/10 08:23:47 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfc42u.dll
[2016/09/10 08:23:47 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usbport.sys
[2016/09/10 08:23:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\scansetting.dll
[2016/09/10 08:23:46 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sdengin2.dll
[2016/09/10 08:23:46 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msftedit.dll
[2016/09/10 08:23:46 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wlangpui.dll
[2016/09/10 08:23:46 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\scesrv.dll
[2016/09/10 08:23:45 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netcenter.dll
[2016/09/10 08:23:45 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\VAN.dll
[2016/09/10 08:23:45 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\StructuredQuery.dll
[2016/09/10 08:23:45 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wiadefui.dll
[2016/09/10 08:23:45 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dskquoui.dll
[2016/09/10 08:23:45 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\samcli.dll
[2016/09/10 08:23:44 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pnidui.dll
[2016/09/10 08:23:44 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wlangpui.dll
[2016/09/10 08:23:44 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srchadmin.dll
[2016/09/10 08:23:44 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SndVol.exe
[2016/09/10 08:23:44 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\QSHVHOST.DLL
[2016/09/10 08:23:44 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\aaclient.dll
[2016/09/10 08:23:44 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\consent.exe
[2016/09/10 08:23:44 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\QUTIL.DLL
[2016/09/10 08:23:44 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\regapi.dll
[2016/09/10 08:23:44 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wscapi.dll
[2016/09/10 08:23:43 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\webservices.dll
[2016/09/10 08:23:43 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\timedate.cpl
[2016/09/10 08:23:43 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fde.dll
[2016/09/10 08:23:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\t2embed.dll
[2016/09/10 08:23:43 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\setupcl.exe
[2016/09/10 08:23:42 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SyncCenter.dll
[2016/09/10 08:23:42 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\appwiz.cpl
[2016/09/10 08:23:42 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TabletPC.cpl
[2016/09/10 08:23:42 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rastls.dll
[2016/09/10 08:23:42 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wksprt.exe
[2016/09/10 08:23:42 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netdiagfx.dll
[2016/09/10 08:23:42 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wscapi.dll
[2016/09/10 08:23:40 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\hgcpl.dll
[2016/09/10 08:23:40 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msconfig.exe
[2016/09/10 08:23:40 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netiohlp.dll
[2016/09/10 08:23:40 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\basecsp.dll
[2016/09/10 08:23:40 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lsmproxy.dll
[2016/09/10 08:23:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mimefilt.dll
[2016/09/10 08:23:39 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSMPEG2ENC.DLL
[2016/09/10 08:23:39 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdpcore.dll
[2016/09/10 08:23:39 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\AuxiliaryDisplayCpl.dll
[2016/09/10 08:23:39 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\clusapi.dll
[2016/09/10 08:23:39 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mpg2splt.ax
[2016/09/10 08:23:39 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fdeploy.dll
[2016/09/10 08:23:38 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WFS.exe
[2016/09/10 08:23:38 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\riched20.dll
[2016/09/10 08:23:38 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\imapi2.dll
[2016/09/10 08:23:38 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mtxclu.dll
[2016/09/10 08:23:38 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbGDCoInstaller.dll
[2016/09/10 08:23:38 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\Diskdump.sys
[2016/09/10 08:23:37 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\gameux.dll
[2016/09/10 08:23:37 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\DXPTaskRingtone.dll
[2016/09/10 08:23:37 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dnscmmc.dll
[2016/09/10 08:23:36 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SensorsCpl.dll
[2016/09/10 08:23:36 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\themecpl.dll
[2016/09/10 08:23:36 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMPEncEn.dll
[2016/09/10 08:23:36 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mssvp.dll
[2016/09/10 08:23:36 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\powercpl.dll
[2016/09/10 08:23:36 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\eudcedit.exe
[2016/09/10 08:23:36 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sharemediacpl.dll
[2016/09/10 08:23:36 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\onex.dll
[2016/09/10 08:23:36 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\logoncli.dll
[2016/09/10 08:23:36 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nci.dll
[2016/09/10 08:23:36 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RpcRtRemote.dll
[2016/09/10 08:23:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Narrator.exe
[2016/09/10 08:23:35 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\autochk.exe
[2016/09/10 08:23:35 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\autofmt.exe
[2016/09/10 08:23:35 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Faultrep.dll
[2016/09/10 08:23:35 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netjoin.dll
[2016/09/10 08:23:35 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netiohlp.dll
[2016/09/10 08:23:35 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\hbaapi.dll
[2016/09/10 08:23:34 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\autoconv.exe
[2016/09/10 08:23:34 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\autochk.exe
[2016/09/10 08:23:34 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\autofmt.exe
[2016/09/10 08:23:34 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\autoconv.exe
[2016/09/10 08:23:34 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\comctl32.dll
[2016/09/10 08:23:34 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ipsmsnap.dll
[2016/09/10 08:23:34 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msinfo32.exe
[2016/09/10 08:23:34 | 000,232,448 | ---- | C] (Micr

OTL4です
[2016/09/10 08:23:34 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppcomapi.dll
[2016/09/10 08:23:34 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msutb.dll
[2016/09/10 08:23:34 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cabview.dll
[2016/09/10 08:23:34 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\regapi.dll
[2016/09/10 08:23:34 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mimefilt.dll
[2016/09/10 08:23:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vpnikeapi.dll
[2016/09/10 08:23:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\proquota.exe
[2016/09/10 08:23:33 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sbe.dll
[2016/09/10 08:23:33 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wpd_ci.dll
[2016/09/10 08:23:33 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nshipsec.dll
[2016/09/10 08:23:33 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\powercpl.dll
[2016/09/10 08:23:33 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\srchadmin.dll
[2016/09/10 08:23:33 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\eapphost.dll
[2016/09/10 08:23:33 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tcpipcfg.dll
[2016/09/10 08:23:33 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\schtasks.exe
[2016/09/10 08:23:33 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bcdsrv.dll
[2016/09/10 08:23:33 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shsetup.dll
[2016/09/10 08:23:33 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\audiodg.exe
[2016/09/10 08:23:33 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\windows\SysNative\fms.dll
[2016/09/10 08:23:32 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sdclt.exe
[2016/09/10 08:23:32 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mmsys.cpl
[2016/09/10 08:23:32 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\AuxiliaryDisplayCpl.dll
[2016/09/10 08:23:32 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wlanui.dll
[2016/09/10 08:23:32 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msihnd.dll
[2016/09/10 08:23:32 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanconn.dll
[2016/09/10 08:23:32 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\framedyn.dll
[2016/09/10 08:23:32 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\scsiport.sys
[2016/09/10 08:23:32 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\prntvpt.dll
[2016/09/10 08:23:32 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mscorier.dll
[2016/09/10 08:23:32 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mscorier.dll
[2016/09/10 08:23:31 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Display.dll
[2016/09/10 08:23:31 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SmiEngine.dll
[2016/09/10 08:23:31 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fontext.dll
[2016/09/10 08:23:31 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qedit.dll
[2016/09/10 08:23:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\timedate.cpl
[2016/09/10 08:23:31 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mprddm.dll
[2016/09/10 08:23:31 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\QAGENT.DLL
[2016/09/10 08:23:31 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netid.dll
[2016/09/10 08:23:30 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wdc.dll
[2016/09/10 08:23:30 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mblctr.exe
[2016/09/10 08:23:30 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\batmeter.dll
[2016/09/10 08:23:30 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSCOVER.exe
[2016/09/10 08:23:30 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSNP.ax
[2016/09/10 08:23:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\hidclass.sys
[2016/09/10 08:23:29 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\scesrv.dll
[2016/09/10 08:23:29 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpsrcwp.dll
[2016/09/10 08:23:28 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Vault.dll
[2016/09/10 08:23:28 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rastls.dll
[2016/09/10 08:23:28 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\untfs.dll
[2016/09/10 08:23:28 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nci.dll
[2016/09/10 08:23:27 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bootres.dll
[2016/09/10 08:23:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wlanpref.dll
[2016/09/10 08:23:27 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DiagCpl.dll
[2016/09/10 08:23:27 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMNetMgr.dll
[2016/09/10 08:23:27 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\usercpl.dll
[2016/09/10 08:23:27 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fontsub.dll
[2016/09/10 08:23:27 | 000,098,816 | ---- | C] (Microsoft) -- C:\windows\SysWow64\Robocopy.exe
[2016/09/10 08:23:27 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rtutils.dll
[2016/09/10 08:23:26 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wpccpl.dll
[2016/09/10 08:23:26 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MCEWMDRMNDBootstrap.dll
[2016/09/10 08:23:26 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ksproxy.ax
[2016/09/10 08:23:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSTPager.ax
[2016/09/10 08:23:25 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\DxpTaskSync.dll
[2016/09/10 08:23:25 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Display.dll
[2016/09/10 08:23:25 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\taskmgr.exe
[2016/09/10 08:23:25 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SndVolSSO.dll
[2016/09/10 08:23:25 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rasppp.dll
[2016/09/10 08:23:25 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dot3cfg.dll
[2016/09/10 08:23:24 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\puiobj.dll
[2016/09/10 08:23:24 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mtxclu.dll
[2016/09/10 08:23:24 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
[2016/09/10 08:23:24 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxdiagn.dll
[2016/09/10 08:23:24 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shdocvw.dll
[2016/09/10 08:23:24 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XpsRasterService.dll
[2016/09/10 08:23:24 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\hbaapi.dll
[2016/09/10 08:23:24 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\userinit.exe
[2016/09/10 08:23:23 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\prnfldr.dll
[2016/09/10 08:23:23 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\termmgr.dll
[2016/09/10 08:23:23 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pdh.dll
[2016/09/10 08:23:23 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\eudcedit.exe
[2016/09/10 08:23:23 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskmgr.exe
[2016/09/10 08:23:23 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\proquota.exe
[2016/09/10 08:23:22 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wiadefui.dll
[2016/09/10 08:23:22 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\untfs.dll
[2016/09/10 08:23:22 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSAC3ENC.DLL
[2016/09/10 08:23:22 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sppcomapi.dll
[2016/09/10 08:23:22 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rasppp.dll
[2016/09/10 08:23:22 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\ataport.sys
[2016/09/10 08:23:22 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\logoncli.dll
[2016/09/10 08:23:22 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WPDShServiceObj.dll
[2016/09/10 08:23:22 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\shsetup.dll
[2016/09/10 08:23:21 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\accessibilitycpl.dll
[2016/09/10 08:23:21 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\FirewallControlPanel.dll
[2016/09/10 08:23:21 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\appwiz.cpl
[2016/09/10 08:23:21 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcorekmts.dll
[2016/09/10 08:23:21 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cabview.dll
[2016/09/10 08:23:21 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\userinit.exe
[2016/09/10 08:23:20 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SensorsCpl.dll
[2016/09/10 08:23:20 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\themecpl.dll
[2016/09/10 08:23:20 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\zipfldr.dll
[2016/09/10 08:23:20 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\slui.exe
[2016/09/10 08:23:20 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\FWPUCLNT.DLL
[2016/09/10 08:23:20 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dnscmmc.dll
[2016/09/10 08:23:18 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PhotoScreensaver.scr
[2016/09/10 08:23:18 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msieftp.dll
[2016/09/10 08:23:18 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\hgcpl.dll
[2016/09/10 08:23:18 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\defaultlocationcpl.dll
[2016/09/10 08:23:18 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Mpeg2Data.ax
[2016/09/10 08:23:17 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fontext.dll
[2016/09/10 08:23:17 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sud.dll
[2016/09/10 08:23:17 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DeviceCenter.dll
[2016/09/10 08:23:17 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\localsec.dll
[2016/09/10 08:23:17 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\scecli.dll
[2016/09/10 08:23:17 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mscories.dll
[2016/09/10 08:23:16 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\networkmap.dll
[2016/09/10 08:23:16 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cryptui.dll
[2016/09/10 08:23:16 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ActionCenter.dll
[2016/09/10 08:23:16 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qdvd.dll
[2016/09/10 08:23:16 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mprddm.dll
[2016/09/10 08:23:16 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\taskbarcpl.dll
[2016/09/10 08:23:16 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\OnLineIDCpl.dll
[2016/09/10 08:23:16 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SndVolSSO.dll
[2016/09/10 08:23:16 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\psisrndr.ax
[2016/09/10 08:23:15 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\batmeter.dll
[2016/09/10 08:23:15 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\VAN.dll
[2016/09/10 08:23:15 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PerfCenterCPL.dll
[2016/09/10 08:23:15 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\usercpl.dll
[2016/09/10 08:23:15 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qedit.dll
[2016/09/10 08:23:15 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srcore.dll
[2016/09/10 08:23:15 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wlanui.dll
[2016/09/10 08:23:15 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\intl.cpl
[2016/09/10 08:23:15 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\twext.dll
[2016/09/10 08:23:14 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netcenter.dll
[2016/09/10 08:23:14 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\OobeFldr.dll
[2016/09/10 08:23:14 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dsuiext.dll
[2016/09/10 08:23:14 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qdvd.dll
[2016/09/10 08:23:14 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\azroleui.dll
[2016/09/10 08:23:14 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bcdedit.exe
[2016/09/10 08:23:14 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SndVol.exe
[2016/09/10 08:23:14 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\uxlib.dll
[2016/09/10 08:23:14 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\recovery.dll
[2016/09/10 08:23:14 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\prntvpt.dll
[2016/09/10 08:23:14 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cca.dll
[2016/09/10 08:23:14 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpwsx.dll
[2016/09/10 08:23:14 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\w32tm.exe
[2016/09/10 08:23:13 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\accessibilitycpl.dll
[2016/09/10 08:23:13 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\spwizeng.dll
[2016/09/10 08:23:13 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MediaMetadataHandler.dll
[2016/09/10 08:23:13 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\azroleui.dll
[2016/09/10 08:23:13 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\efscore.dll
[2016/09/10 08:23:13 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\isoburn.exe
[2016/09/10 08:23:13 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tzutil.exe
[2016/09/10 08:23:13 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sisbkup.dll
[2016/09/10 08:23:12 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cryptui.dll
[2016/09/10 08:23:12 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sdcpl.dll
[2016/09/10 08:23:12 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bthprops.cpl
[2016/09/10 08:23:12 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\main.cpl
[2016/09/10 08:23:12 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shwebsvc.dll
[2016/09/10 08:23:12 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\systemcpl.dll
[2016/09/10 08:23:12 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\recdisc.exe
[2016/09/10 08:23:12 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSAC3ENC.DLL
[2016/09/10 08:23:12 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\syncui.dll
[2016/09/10 08:23:12 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\VBICodec.ax
[2016/09/10 08:23:12 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netplwiz.dll
[2016/09/10 08:23:12 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netjoin.dll
[2016/09/10 08:23:12 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\autoplay.dll
[2016/09/10 08:23:12 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fdeploy.dll
[2016/09/10 08:23:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\httpapi.dll
[2016/09/10 08:23:11 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\networkmap.dll
[2016/09/10 08:23:11 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ActionCenterCPL.dll
[2016/09/10 08:23:11 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\certcli.dll
[2016/09/10 08:23:11 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wlanmsm.dll
[2016/09/10 08:23:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Faultrep.dll
[2016/09/10 08:23:11 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sysclass.dll
[2016/09/10 08:23:11 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\adsldp.dll
[2016/09/10 08:23:11 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ncryptui.dll
[2016/09/10 08:23:11 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sspisrv.dll
[2016/09/10 08:23:10 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sud.dll
[2016/09/10 08:23:10 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ActionCenter.dll
[2016/09/10 08:23:10 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sysmon.ocx
[2016/09/10 08:23:10 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spwizeng.dll
[2016/09/10 08:23:10 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\termmgr.dll
[2016/09/10 08:23:10 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\prnfldr.dll
[2016/09/10 08:23:10 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wusa.exe
[2016/09/10 08:23:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2016/09/10 08:23:10 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msieftp.dll
[2016/09/10 08:23:10 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\photowiz.dll
[2016/09/10 08:23:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MediaMetadataHandler.dll
[2016/09/10 08:23:10 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MFPlay.dll
[2016/09/10 08:23:10 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\OnLineIDCpl.dll
[2016/09/10 08:23:10 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vdsutil.dll
[2016/09/10 08:23:10 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\AuxiliaryDisplayServices.dll
[2016/09/10 08:23:10 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ksxbar.ax
[2016/09/10 08:23:09 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\bthprops.cpl
[2016/09/10 08:23:09 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msscp.dll
[2016/09/10 08:23:09 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sqlcese30.dll
[2016/09/10 08:23:09 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\shwebsvc.dll
[2016/09/10 08:23:09 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sysmon.ocx
[2016/09/10 08:23:09 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\intl.cpl
[2016/09/10 08:23:09 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ReAgent.dll
[2016/09/10 08:23:09 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rstrui.exe
[2016/09/10 08:23:09 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iprtrmgr.dll
[2016/09/10 08:23:09 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sethc.exe
[2016/09/10 08:23:09 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iprtrmgr.dll
[2016/09/10 08:23:09 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\defaultlocationcpl.dll
[2016/09/10 08:23:09 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\SmartcardCredentialProvider.dll
[2016/09/10 08:23:09 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbccp32.dll
[2016/09/10 08:23:09 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ifsutil.dll
[2016/09/10 08:23:09 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntlanman.dll
[2016/09/10 08:23:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dot3cfg.dll
[2016/09/10 08:23:09 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpd3d.dll
[2016/09/10 08:23:09 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tsgqec.dll
[2016/09/10 08:23:09 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ftp.exe
[2016/09/10 08:23:09 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sisbkup.dll
[2016/09/10 08:23:08 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmdrmsdk.dll
[2016/09/10 08:23:08 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ActionCenterCPL.dll
[2016/09/10 08:23:08 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drmmgrtn.dll
[2016/09/10 08:23:08 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\DeviceCenter.dll
[2016/09/10 08:23:08 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ssText3d.scr
[2016/09/10 08:23:08 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\unimdm.tsp
[2016/09/10 08:23:08 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbcjt32.dll
[2016/09/10 08:23:08 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iTVData.dll
[2016/09/10 08:23:08 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbctrac.dll
[2016/09/10 08:23:08 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\efscore.dll
[2016/09/10 08:23:08 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\syncui.dll
[2016/09/10 08:23:08 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\autoplay.dll
[2016/09/10 08:23:08 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srvcli.dll
[2016/09/10 08:23:08 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UserAccountControlSettings.dll
[2016/09/10 08:23:08 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanprotdim.dll
[2016/09/10 08:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secur32.dll
[2016/09/10 08:23:08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\slwga.dll
[2016/09/10 08:23:07 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\OobeFldr.dll
[2016/09/10 08:23:07 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpmde.dll
[2016/09/10 08:23:07 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\systemcpl.dll
[2016/09/10 08:23:07 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ntprint.dll
[2016/09/10 08:23:07 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ntprint.dll
[2016/09/10 08:23:07 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wavemsp.dll
[2016/09/10 08:23:07 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\DevicePairingFolder.dll
[2016/09/10 08:23:07 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dskquoui.dll
[2016/09/10 08:23:07 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\powercfg.cpl
[2016/09/10 08:23:07 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\SmartcardCredentialProvider.dll
[2016/09/10 08:23:07 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\NAPHLPR.DLL
[2016/09/10 08:23:07 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nslookup.exe
[2016/09/10 08:23:07 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WSTPager.ax
[2016/09/10 08:23:07 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\acppage.dll
[2016/09/10 08:23:06 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\networkexplorer.dll
[2016/09/10 08:23:06 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\blackbox.dll
[2016/09/10 08:23:06 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nshwfp.dll
[2016/09/10 08:23:06 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\srrstr.dll
[2016/09/10 08:23:06 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sethc.exe
[2016/09/10 08:23:06 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dpx.dll
[2016/09/10 08:23:06 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\activeds.dll
[2016/09/10 08:23:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mpg2splt.ax
[2016/09/10 08:23:06 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ksproxy.ax
[2016/09/10 08:23:06 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpsrcwp.dll
[2016/09/10 08:23:06 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netplwiz.dll
[2016/09/10 08:23:06 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bcdboot.exe
[2016/09/10 08:23:06 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\NAPHLPR.DLL
[2016/09/10 08:23:06 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppnp.dll
[2016/09/10 08:23:06 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\migisol.dll
[2016/09/10 08:23:06 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cabinet.dll
[2016/09/10 08:23:06 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\windows\SysWow64\fms.dll
[2016/09/10 08:23:05 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cdosys.dll
[2016/09/10 08:23:05 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\remotepg.dll
[2016/09/10 08:23:05 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\httpapi.dll
[2016/09/10 08:23:04 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdosys.dll
[2016/09/10 08:23:04 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nshipsec.dll
[2016/09/10 08:23:04 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wkscli.dll
[2016/09/10 08:23:03 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dfrgui.exe
[2016/09/10 08:23:02 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msftedit.dll
[2016/09/10 08:23:02 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kstvtune.ax
[2016/09/10 08:23:02 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\isoburn.exe
[2016/09/10 08:23:01 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ReAgent.dll
[2016/09/10 08:23:01 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wavemsp.dll
[2016/09/10 08:23:00 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wlanmsm.dll
[2016/09/10 08:23:00 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSCard.dll
[2016/09/10 08:23:00 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ftp.exe
[2016/09/10 08:22:59 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpdxm.dll
[2016/09/10 08:22:58 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dot3ui.dll
[2016/09/10 08:22:58 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wsnmp32.dll
[2016/09/10 08:22:56 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\net1.exe
[2016/09/10 08:22:55 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dfrgui.exe
[2016/09/10 08:22:53 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dsuiext.dll
[2016/09/10 08:22:53 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wvc.dll
[2016/09/10 08:22:53 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wsqmcons.exe
[2016/09/10 08:22:53 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tzutil.exe
[2016/09/10 08:22:52 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\blackbox.dll
[2016/09/10 08:22:52 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmdrmdev.dll
[2016/09/10 08:22:52 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ocsetup.exe
[2016/09/10 08:22:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WerFaultSecure.exe
[2016/09/10 08:22:51 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wvc.dll
[2016/09/10 08:22:49 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wimgapi.dll
[2016/09/10 08:22:49 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfps.dll
[2016/09/10 08:22:48 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\unimdm.tsp
[2016/09/10 08:22:48 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dxgmms1.sys
[2016/09/10 08:22:48 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PkgMgr.exe
[2016/09/10 08:22:48 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mstask.dll
[2016/09/10 08:22:48 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\twext.dll
[2016/09/10 08:22:48 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mapistub.dll
[2016/09/10 08:22:48 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mapi32.dll
[2016/09/10 08:22:47 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\OpcServices.dll
[2016/09/10 08:22:47 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Bubbles.scr
[2016/09/10 08:22:47 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qcap.dll
[2016/09/10 08:22:47 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFPlatform.dll
[2016/09/10 08:22:47 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setupugc.exe
[2016/09/10 08:22:47 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\unimdmat.dll
[2016/09/10 08:22:47 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\windows\twain_32.dll
[2016/09/10 08:22:47 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2016/09/10 08:22:46 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\main.cpl
[2016/09/10 08:22:46 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\diskraid.exe
[2016/09/10 08:22:46 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qasf.dll
[2016/09/10 08:22:46 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ifsutil.dll
[2016/09/10 08:22:46 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\uxlib.dll
[2016/09/10 08:22:46 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iscsium.dll
[2016/09/10 08:22:46 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\slwga.dll
[2016/09/10 08:22:45 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ssText3d.scr
[2016/09/10 08:22:45 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Mystify.scr
[2016/09/10 08:22:45 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Ribbons.scr
[2016/09/10 08:22:45 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msvfw32.dll
[2016/09/10 08:22:44 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nslookup.exe
[2016/09/10 08:22:44 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mciavi32.dll
[2016/09/10 08:22:44 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\muifontsetup.dll
[2016/09/10 08:22:43 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmdrmsdk.dll
[2016/09/10 08:22:43 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2016/09/10 08:22:43 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\clusapi.dll
[2016/09/10 08:22:43 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpencom.dll
[2016/09/10 08:22:43 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\perfmon.exe
[2016/09/10 08:22:43 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmpshell.dll
[2016/09/10 08:22:42 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\DevicePairingFolder.dll
[2016/09/10 08:22:41 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msscp.dll
[2016/09/10 08:22:41 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wimserv.exe
[2016/09/10 08:22:41 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\diskraid.exe
[2016/09/10 08:22:41 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\AzSqlExt.dll
[2016/09/10 08:22:41 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netutils.dll
[2016/09/10 08:22:40 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qasf.dll
[2016/09/10 08:22:40 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tlscsp.dll
[2016/09/10 08:22:40 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\umb.dll
[2016/09/10 08:22:40 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\NAPCRYPT.DLL
[2016/09/10 08:22:40 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\acppage.dll
[2016/09/10 08:22:39 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dbghelp.dll
[2016/09/10 08:22:39 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSAPI.dll
[2016/09/10 08:22:39 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ActionQueue.dll
[2016/09/10 08:22:39 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdpencom.dll
[2016/09/10 08:22:39 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\perfmon.exe
[2016/09/10 08:22:39 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\remotepg.dll
[2016/09/10 08:22:39 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\windows\bfsvc.exe
[2016/09/10 08:22:39 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fontsub.dll
[2016/09/10 08:22:39 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\runonce.exe
[2016/09/10 08:22:38 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMADMOD.DLL
[2016/09/10 08:22:38 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\drmmgrtn.dll
[2016/09/10 08:22:38 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\raschap.dll
[2016/09/10 08:22:38 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\raschap.dll
[2016/09/10 08:22:38 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wpdwcn.dll
[2016/09/10 08:22:38 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\input.dll
[2016/09/10 08:22:38 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wiavideo.dll
[2016/09/10 08:22:38 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbccp32.dll
[2016/09/10 08:22:38 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\QUTIL.DLL
[2016/09/10 08:22:38 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\NAPCRYPT.DLL
[2016/09/10 08:22:38 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\syssetup.dll
[2016/09/10 08:22:37 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpdxm.dll
[2016/09/10 08:22:37 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ocsetapi.dll
[2016/09/10 08:22:37 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MdSched.exe
[2016/09/10 08:22:37 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UserAccountControlSettings.dll
[2016/09/10 08:22:37 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PrintIsolationProxy.dll
[2016/09/10 08:22:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\vpnikeapi.dll
[2016/09/10 08:22:36 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\onexui.dll
[2016/09/10 08:22:36 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMVSDECD.DLL
[2016/09/10 08:22:36 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nltest.exe
[2016/09/10 08:22:36 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mstask.dll
[2016/09/10 08:22:36 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bitsadmin.exe
[2016/09/10 08:22:36 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iTVData.dll
[2016/09/10 08:22:36 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dxdiagn.dll
[2016/09/10 08:22:36 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wpdwcn.dll
[2016/09/10 08:22:36 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vdsbas.dll
[2016/09/10 08:22:36 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\vdsbas.dll
[2016/09/10 08:22:36 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\rmcast.sys
[2016/09/10 08:22:36 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Kswdmcap.ax
[2016/09/10 08:22:36 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\logagent.exe
[2016/09/10 08:22:36 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\runonce.exe
[2016/09/10 08:22:35 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmdrmdev.dll
[2016/09/10 08:22:35 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\eapp3hst.dll
[2016/09/10 08:22:35 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MFPlay.dll
[2016/09/10 08:22:35 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shacct.dll
[2016/09/10 08:22:35 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\QSVRMGMT.DLL
[2016/09/10 08:22:35 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tabcal.exe
[2016/09/10 08:22:35 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vss_ps.dll
[2016/09/10 08:22:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cscapi.dll
[2016/09/10 08:22:34 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WMSPDMOD.DLL
[2016/09/10 08:22:34 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmdrmnet.dll
[2016/09/10 08:22:34 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WPDSp.dll
[2016/09/10 08:22:34 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msnetobj.dll
[2016/09/10 08:22:34 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mssphtb.dll
[2016/09/10 08:22:34 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\bitsadmin.exe
[2016/09/10 08:22:34 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qcap.dll
[2016/09/10 08:22:34 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_ssp_isv.dll
[2016/09/10 08:22:34 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\shacct.dll
[2016/09/10 08:22:34 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpshell.dll
[2016/09/10 08:22:34 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\logman.exe
[2016/09/10 08:22:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\unimdmat.dll
[2016/09/10 08:22:34 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\lsmproxy.dll
[2016/09/10 08:22:33 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Bubbles.scr
[2016/09/10 08:22:33 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sqlcese30.dll
[2016/09/10 08:22:33 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\qdv.dll
[2016/09/10 08:22:33 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pdh.dll
[2016/09/10 08:22:33 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PortableDeviceSyncProvider.dll
[2016/09/10 08:22:33 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mprapi.dll
[2016/09/10 08:22:33 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\secproc_ssp.dll
[2016/09/10 08:22:33 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdpd3d.dll
[2016/09/10 08:22:33 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iscsium.dll
[2016/09/10 08:22:32 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\OpcServices.dll
[2016/09/10 08:22:32 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PortableDeviceStatus.dll
[2016/09/10 08:22:32 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PortableDeviceStatus.dll
[2016/09/10 08:22:32 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WPDSp.dll
[2016/09/10 08:22:32 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dot3ui.dll
[2016/09/10 08:22:32 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Ribbons.scr
[2016/09/10 08:22:32 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\PortableDeviceSyncProvider.dll
[2016/09/10 08:22:32 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbctrac.dll
[2016/09/10 08:22:32 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fphc.dll
[2016/09/10 08:22:32 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\kstvtune.ax
[2016/09/10 08:22:32 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\logman.exe
[2016/09/10 08:22:32 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spbcd.dll
[2016/09/10 08:22:32 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\olethk32.dll
[2016/09/10 08:22:32 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ncryptui.dll
[2016/09/10 08:22:31 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Mystify.scr
[2016/09/10 08:22:31 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\powercfg.cpl
[2016/09/10 08:22:31 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\desk.cpl
[2016/09/10 08:22:31 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\QSVRMGMT.DLL
[2016/09/10 08:22:31 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mapistub.dll
[2016/09/10 08:22:31 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Mpeg2Data.ax
[2016/09/10 08:22:31 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\takeown.exe
[2016/09/10 08:22:31 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\PnPUnattend.exe
[2016/09/10 08:22:31 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tsgqec.dll
[2016/09/10 08:22:31 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\utildll.dll
[2016/09/10 08:22:30 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\IMJP10.IME
[2016/09/10 08:22:30 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMADMOD.DLL
[2016/09/10 08:22:30 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMVSDECD.DLL
[2016/09/10 08:22:30 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\VBICodec.ax
[2016/09/10 08:22:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\EhStorAPI.dll
[2016/09/10 08:22:30 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dot3msm.dll
[2016/09/10 08:22:30 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wiavideo.dll
[2016/09/10 08:22:30 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Kswdmcap.ax
[2016/09/10 08:22:30 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fphc.dll
[2016/09/10 08:22:30 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\avifil32.dll
[2016/09/10 08:22:30 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\amstream.dll
[2016/09/10 08:22:30 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\setbcdlocale.dll
[2016/09/10 08:22:30 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\takeown.exe
[2016/09/10 08:22:29 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmdrmnet.dll
[2016/09/10 08:22:29 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\qdv.dll
[2016/09/10 08:22:29 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sqmapi.dll
[2016/09/10 08:22:29 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cmstp.exe
[2016/09/10 08:22:29 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\QCLIPROV.DLL
[2016/09/10 08:22:29 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\psisrndr.ax
[2016/09/10 08:22:29 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\netapi32.dll
[2016/09/10 08:22:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CertPolEng.dll
[2016/09/10 08:22:29 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\djoin.exe
[2016/09/10 08:22:29 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shimgvw.dll
[2016/09/10 08:22:29 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\HotStartUserAgent.dll
[2016/09/10 08:22:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nrpsrv.dll
[2016/09/10 08:22:28 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFx.dll
[2016/09/10 08:22:28 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msnetobj.dll
[2016/09/10 08:22:28 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFHost.exe
[2016/09/10 08:22:28 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sppinst.dll
[2016/09/10 08:22:28 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cmstp.exe
[2016/09/10 08:22:28 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MSDvbNP.ax
[2016/09/10 08:22:28 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\QCLIPROV.DLL
[2016/09/10 08:22:28 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\cca.dll
[2016/09/10 08:22:28 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WavDest.dll
[2016/09/10 08:22:27 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WMSPDMOD.DLL
[2016/09/10 08:22:27 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msorcl32.dll
[2016/09/10 08:22:27 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\diskpart.exe
[2016/09/10 08:22:27 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iscsicli.exe
[2016/09/10 08:22:27 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mydocs.dll
[2016/09/10 08:22:27 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setupcln.dll
[2016/09/10 08:22:27 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fdProxy.dll
[2016/09/10 08:22:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MuiUnattend.exe
[2016/09/10 08:22:27 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\g711codc.ax
[2016/09/10 08:22:27 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\vfwwdm32.dll
[2016/09/10 08:22:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wsnmp32.dll
[2016/09/10 08:22:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\MultiDigiMon.exe
[2016/09/10 08:22:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pdhui.dll
[2016/09/10 08:22:27 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\relog.exe
[2016/09/10 08:22:27 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\AzSqlExt.dll
[2016/09/10 08:22:27 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sscore.dll
[2016/09/10 08:22:26 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_ssp.exe
[2016/09/10 08:22:26 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RMActivate_ssp_isv.exe
[2016/09/10 08:22:26 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\itircl.dll
[2016/09/10 08:22:26 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\itircl.dll
[2016/09/10 08:22:26 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iscsicli.exe
[2016/09/10 08:22:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mydocs.dll
[2016/09/10 08:22:26 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\diskpart.exe
[2016/09/10 08:22:26 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\desk.cpl
[2016/09/10 08:22:26 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dot3msm.dll
[2016/09/10 08:22:26 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mobsync.exe
[2016/09/10 08:22:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_ssp_isv.dll
[2016/09/10 08:22:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\secproc_ssp.dll
[2016/09/10 08:22:26 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\resutils.dll
[2016/09/10 08:22:26 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\amstream.dll
[2016/09/10 08:22:26 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rastapi.dll
[2016/09/10 08:22:26 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\spbcd.dll
[2016/09/10 08:22:26 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\browcli.dll
[2016/09/10 08:22:26 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wkscli.dll
[2016/09/10 08:22:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\vbisurf.ax
[2016/09/10 08:22:26 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\relog.exe
[2016/09/10 08:22:26 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdmo.dll
[2016/09/10 08:22:26 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netiougc.exe
[2016/09/10 08:22:26 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\netbtugc.exe
[2016/09/10 08:22:26 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\syssetup.dll
[2016/09/10 08:22:26 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\BWUnpairElevated.dll
[2016/09/10 08:22:25 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\onexui.dll
[2016/09/10 08:22:25 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\IMJP10.IME
[2016/09/10 08:22:25 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSTIFF.dll
[2016/09/10 08:22:25 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_ssp.exe
[2016/09/10 08:22:25 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RMActivate_ssp_isv.exe
[2016/09/10 08:22:25 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppc.dll
[2016/09/10 08:22:25 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmpps.dll
[2016/09/10 08:22:25 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\eappgnui.dll
[2016/09/10 08:22:25 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\eappgnui.dll
[2016/09/10 08:22:25 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imagehlp.dll
[2016/09/10 08:22:25 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\findstr.exe
[2016/09/10 08:22:25 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\tlscsp.dll
[2016/09/10 08:22:25 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CertPolEng.dll
[2016/09/10 08:22:25 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\findstr.exe
[2016/09/10 08:22:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\luainstall.dll
[2016/09/10 08:22:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ksxbar.ax
[2016/09/10 08:22:25 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mciqtz32.dll
[2016/09/10 08:22:25 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\choice.exe
[2016/09/10 08:22:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\prevhost.exe
[2016/09/10 08:22:25 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WerFaultSecure.exe
[2016/09/10 08:22:25 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ReAgentc.exe

OTL5です
[2016/09/10 08:22:24 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RDPENCDD.dll
[2016/09/10 08:22:24 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sppc.dll
[2016/09/10 08:22:24 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mobsync.exe
[2016/09/10 08:22:24 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\windows\SysWow64\iccvid.dll
[2016/09/10 08:22:24 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\manage-bde.exe
[2016/09/10 08:22:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\inetmib1.dll
[2016/09/10 08:22:24 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\MSDvbNP.ax
[2016/09/10 08:22:24 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\repair-bde.exe
[2016/09/10 08:22:24 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUDFCoinstaller.dll
[2016/09/10 08:22:24 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\luainstall.dll
[2016/09/10 08:22:24 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wdiasqmmodule.dll
[2016/09/10 08:22:24 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mciqtz32.dll
[2016/09/10 08:22:24 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\shimgvw.dll
[2016/09/10 08:22:24 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\unlodctr.exe
[2016/09/10 08:22:24 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\profprov.dll
[2016/09/10 08:22:24 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\prevhost.exe
[2016/09/10 08:22:24 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msdmo.dll
[2016/09/10 08:22:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dnscacheugc.exe
[2016/09/10 08:22:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\schedcli.dll
[2016/09/10 08:22:24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\spopk.dll
[2016/09/10 08:22:24 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spopk.dll
[2016/09/10 08:22:24 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\muifontsetup.dll
[2016/09/10 08:22:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\odbcconf.dll
[2016/09/10 08:22:23 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\inetmib1.dll
[2016/09/10 08:22:23 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\g711codc.ax
[2016/09/10 08:22:23 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSMON.dll
[2016/09/10 08:22:23 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\odbcconf.dll
[2016/09/10 08:22:23 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\vbisurf.ax
[2016/09/10 08:22:23 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\elsTrans.dll
[2016/09/10 08:22:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\rdprefdrvapi.dll
[2016/09/10 08:22:23 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fixmapi.exe
[2016/09/10 08:22:22 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UIRibbonRes.dll
[2016/09/10 08:22:22 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UIRibbonRes.dll
[2016/09/10 08:22:22 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\napdsnap.dll
[2016/09/10 08:22:22 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\windows\SysNative\atmlib.dll
[2016/09/10 08:22:22 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\browcli.dll
[2016/09/10 08:22:22 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dsauth.dll
[2016/09/10 08:22:22 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\LogonUI.exe
[2016/09/10 08:22:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\tdi.sys
[2016/09/10 08:22:22 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdprefdrvapi.dll
[2016/09/10 08:22:22 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\TRAPI.dll
[2016/09/10 08:22:22 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\perfts.dll
[2016/09/10 08:22:21 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\imkr80.ime
[2016/09/10 08:22:21 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\napdsnap.dll
[2016/09/10 08:22:21 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\SysWow64\atmlib.dll
[2016/09/10 08:22:21 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\usbrpm.sys
[2016/09/10 08:22:21 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dsauth.dll
[2016/09/10 08:22:21 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cscdll.dll
[2016/09/10 08:22:21 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\bitsperf.dll
[2016/09/10 08:22:21 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\elsTrans.dll
[2016/09/10 08:22:21 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\TRAPI.dll
[2016/09/10 08:22:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\bitsperf.dll
[2016/09/10 08:22:21 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FXSUNATD.exe
[2016/09/10 08:22:21 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\schedcli.dll
[2016/09/10 08:22:20 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\imkr80.ime
[2016/09/10 08:22:20 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\USBCAMD2.sys
[2016/09/10 08:22:20 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shgina.dll
[2016/09/10 08:22:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wsdchngr.dll
[2016/09/10 08:22:20 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wsdchngr.dll
[2016/09/10 08:22:20 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\shgina.dll
[2016/09/10 08:22:20 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wshirda.dll
[2016/09/10 08:22:20 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sscore.dll
[2016/09/10 08:22:20 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\riched32.dll
[2016/09/10 08:22:19 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wshirda.dll
[2016/09/10 08:22:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\rdpcfgex.dll
[2016/09/10 08:22:18 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\C_ISCII.DLL
[2016/09/10 08:22:18 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\C_ISCII.DLL
[2016/09/10 08:22:18 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\riched32.dll
[2016/09/10 08:22:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spwmp.dll
[2016/09/10 08:22:18 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\spwmp.dll
[2016/09/10 08:22:17 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmploc.DLL
[2016/09/10 08:22:17 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shunimpl.dll
[2016/09/10 08:22:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDTUQ.DLL
[2016/09/10 08:22:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDTUF.DLL
[2016/09/10 08:22:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDSG.DLL
[2016/09/10 08:22:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\kbdlk41a.dll
[2016/09/10 08:22:17 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDGKL.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDTUQ.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDTUF.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDSG.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDSF.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDPO.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDNEPR.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\kbdlk41a.dll
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTAM.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINBEN.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDGR1.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDGR1.DLL
[2016/09/10 08:22:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDGKL.DLL
[2016/09/10 08:22:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msdxm.ocx
[2016/09/10 08:22:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dxmasf.dll
[2016/09/10 08:22:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msdxm.ocx
[2016/09/10 08:22:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dxmasf.dll
[2016/09/10 08:22:17 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2016/09/10 08:22:16 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmploc.DLL
[2016/09/10 08:22:16 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDCZ1.DLL
[2016/09/10 08:22:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDCZ1.DLL
[2016/09/10 08:22:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDUS.DLL
[2016/09/10 08:22:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDUGHR1.DLL
[2016/09/10 08:22:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDTAJIK.DLL
[2016/09/10 08:22:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDMON.DLL
[2016/09/10 08:22:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINHIN.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDUS.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDUGHR1.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDTURME.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDTAJIK.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDMON.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDMAORI.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDLT1.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTEL.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDGEO.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDGEO.DLL
[2016/09/10 08:22:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDBLR.DLL
[2016/09/10 08:22:15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDLT1.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINTAM.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINORI.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINMAR.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINKAN.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDINBEN.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDBULG.DLL
[2016/09/10 08:22:14 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDBLR.DLL
[2016/09/10 08:22:14 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDBULG.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDTURME.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDSF.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDPO.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDNEPR.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDMAORI.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINTEL.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINORI.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINMAR.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINKAN.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDINHIN.DLL
[2016/09/10 08:22:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\KBDBASH.DLL
[2016/09/10 08:22:12 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\KBDBASH.DLL
[2016/09/10 08:22:11 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nlsbres.dll
[2016/09/10 08:22:11 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nlsbres.dll
[2016/09/10 08:22:11 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\BlbEvents.dll
[2016/09/10 08:22:11 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\pifmgr.dll
[2016/09/10 08:22:11 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\pifmgr.dll
[2016/09/10 08:22:11 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\spwizres.dll
[2016/09/10 08:22:11 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\spwizres.dll
[2016/09/10 08:22:11 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dpnaddr.dll
[2016/09/10 08:22:11 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dpnaddr.dll
[2016/09/10 08:22:00 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\lzhfldr2.dll
[2016/09/10 08:22:00 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\lzhfldr2.dll
[2016/09/10 08:21:32 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wdscore.dll
[2016/09/10 08:21:31 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dpx.dll
[2016/09/10 08:17:42 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wbemcomn.dll
[2016/09/10 00:32:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AV
[2016/09/10 00:28:36 | 000,000,000 | ---D | C] -- C:\Users\kanako\Desktop\fukumaden
[2016/09/10 00:15:50 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\kanako\Desktop\HijackThis.exe
[2016/09/10 00:13:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/09/10 00:13:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2016/09/10 00:10:06 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Geek Uninstaller
[2016/09/09 23:44:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2016/09/09 23:35:51 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Trend Micro
[2016/09/09 23:34:35 | 000,101,112 | ---- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
[2016/09/09 23:34:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2016/09/09 23:34:26 | 001,627,352 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymEFASI64.sys
[2016/09/09 23:34:26 | 000,773,360 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtsp64.sys
[2016/09/09 23:34:26 | 000,567,536 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\symnets.sys
[2016/09/09 23:34:26 | 000,291,056 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\Ironx64.sys
[2016/09/09 23:34:26 | 000,048,888 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtspx64.sys
[2016/09/09 23:34:26 | 000,024,192 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymELAM.sys
[2016/09/09 23:34:25 | 000,174,328 | R--- | C] (Symantec Corporation) -- C:\windows\SysNative\drivers\NSx64\1607010.020\ccSetx64.sys
[2016/09/09 23:34:13 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\NSx64
[2016/09/09 23:34:13 | 000,000,000 | ---D | C] -- C:\windows\SysNative\drivers\NSx64\1607010.020
[2016/09/09 23:34:12 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
[2016/09/09 23:34:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Security
[2016/09/09 23:32:59 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2016/09/09 23:32:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2016/09/09 23:31:56 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
[2016/09/09 23:31:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2016/09/09 23:27:25 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Deployment
[2016/09/09 23:27:25 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Apps
[2016/09/09 22:53:03 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Macromedia
[2016/09/09 22:42:35 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Google
[2016/09/09 22:42:35 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Google
[2016/09/09 22:37:32 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Toshiba
[2016/09/09 22:35:45 | 000,000,000 | ---D | C] -- C:\windows\SysNative\MRT
[2016/09/09 22:35:14 | 000,000,000 | ---D | C] -- C:\windows\Migration
[2016/09/09 22:34:51 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\poqexec.exe
[2016/09/09 22:34:51 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\poqexec.exe
[2016/09/09 22:34:40 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\EOSNotify.exe
[2016/09/09 22:21:40 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\TOSHIBA_Corporation
[2016/09/09 22:20:24 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\DLaunch
[2016/09/09 22:20:17 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\DPortal
[2016/09/09 22:20:12 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Adobe
[2016/09/09 22:20:07 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\GIZMO2
[2016/09/09 22:20:06 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\EBookSys
[2016/09/09 22:19:47 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Toshiba
[2016/09/09 22:18:43 | 000,000,000 | R--D | C] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016/09/09 22:18:43 | 000,000,000 | R--D | C] -- C:\Users\kanako\Searches
[2016/09/09 22:18:43 | 000,000,000 | R--D | C] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016/09/09 22:18:42 | 000,000,000 | -H-D | C] -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2016/09/09 22:18:33 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Identities
[2016/09/09 22:18:29 | 000,000,000 | R--D | C] -- C:\Users\kanako\Contacts
[2016/09/09 22:18:26 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\VirtualStore
[2016/09/09 22:17:19 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\WinBatch
[2016/09/09 22:16:57 | 000,000,000 | --SD | C] -- C:\Users\kanako\AppData\Roaming\Microsoft
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Videos
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Saved Games
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Pictures
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Music
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Links
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Favorites
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Downloads
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Documents
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\Desktop
[2016/09/09 22:16:57 | 000,000,000 | R--D | C] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\スタート メニュー
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\AppData\Local\Temporary Internet Files
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Templates
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\SendTo
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Recent
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\PrintHood
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\NetHood
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Documents\My Videos
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Documents\My Pictures
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Documents\My Music
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\My Documents
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Local Settings
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\AppData\Local\History
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Cookies
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\Application Data
[2016/09/09 22:16:57 | 000,000,000 | -HSD | C] -- C:\Users\kanako\AppData\Local\Application Data
[2016/09/09 22:16:57 | 000,000,000 | -H-D | C] -- C:\Users\kanako\AppData
[2016/09/09 22:16:57 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Temp
[2016/09/09 22:16:57 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Local\Microsoft
[2016/09/09 22:16:57 | 000,000,000 | ---D | C] -- C:\Users\kanako\AppData\Roaming\Media Center Programs
[2016/09/09 22:16:52 | 000,000,000 | -HSD | C] -- C:\ProgramData\デスクトップ
[2016/09/09 22:16:52 | 000,000,000 | -HSD | C] -- C:\ProgramData\スタート メニュー
[2016/09/09 15:02:27 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2016/09/09 15:02:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2016/09/09 15:02:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2016/09/09 15:02:03 | 000,000,000 | ---D | C] -- C:\TOSAPINS
[2016/09/09 15:00:04 | 000,000,000 | ---D | C] -- C:\ProgramData\InterVideo
[2016/09/09 14:59:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Digital Studio for TOSHIBA
[2016/09/09 14:58:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Corel
[2016/09/09 14:58:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Media Components
[2016/09/09 14:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems
[2016/09/09 14:58:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Ulead Systems
[2016/09/09 14:58:03 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_10.dll
[2016/09/09 14:58:03 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_10.dll
[2016/09/09 14:58:02 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_36.dll
[2016/09/09 14:58:02 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_36.dll
[2016/09/09 14:58:02 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_36.dll
[2016/09/09 14:58:02 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_35.dll
[2016/09/09 14:58:02 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_36.dll
[2016/09/09 14:58:02 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_35.dll
[2016/09/09 14:58:02 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_36.dll
[2016/09/09 14:58:02 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_35.dll
[2016/09/09 14:58:02 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_36.dll
[2016/09/09 14:58:02 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_35.dll
[2016/09/09 14:58:02 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_9.dll
[2016/09/09 14:58:02 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_9.dll
[2016/09/09 14:58:01 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_35.dll
[2016/09/09 14:58:01 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_34.dll
[2016/09/09 14:58:01 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_35.dll
[2016/09/09 14:58:01 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_34.dll
[2016/09/09 14:58:01 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_34.dll
[2016/09/09 14:58:01 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_34.dll
[2016/09/09 14:58:01 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_34.dll
[2016/09/09 14:58:01 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_34.dll
[2016/09/09 14:58:01 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_8.dll
[2016/09/09 14:58:01 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_8.dll
[2016/09/09 14:58:01 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xinput1_3.dll
[2016/09/09 14:58:01 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_3.dll
[2016/09/09 14:58:01 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_2.dll
[2016/09/09 14:58:01 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_2.dll
[2016/09/09 14:58:00 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_33.dll
[2016/09/09 14:58:00 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_33.dll
[2016/09/09 14:58:00 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_33.dll
[2016/09/09 14:58:00 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_33.dll
[2016/09/09 14:58:00 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_33.dll
[2016/09/09 14:58:00 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10.dll
[2016/09/09 14:58:00 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_33.dll
[2016/09/09 14:58:00 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10.dll
[2016/09/09 14:58:00 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_7.dll
[2016/09/09 14:58:00 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_6.dll
[2016/09/09 14:58:00 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_5.dll
[2016/09/09 14:58:00 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_7.dll
[2016/09/09 14:58:00 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_6.dll
[2016/09/09 14:58:00 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_5.dll
[2016/09/09 14:57:59 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_31.dll
[2016/09/09 14:57:59 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_31.dll
[2016/09/09 14:57:59 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_4.dll
[2016/09/09 14:57:59 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_4.dll
[2016/09/09 14:57:59 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\x3daudio1_1.dll
[2016/09/09 14:57:59 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\x3daudio1_1.dll
[2016/09/09 14:57:58 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_3.dll
[2016/09/09 14:57:58 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_2.dll
[2016/09/09 14:57:58 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_1.dll
[2016/09/09 14:57:58 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_3.dll
[2016/09/09 14:57:58 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_2.dll
[2016/09/09 14:57:58 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_1.dll
[2016/09/09 14:57:58 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xinput1_2.dll
[2016/09/09 14:57:58 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xinput1_1.dll
[2016/09/09 14:57:58 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_2.dll
[2016/09/09 14:57:58 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_1.dll
[2016/09/09 14:57:56 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_30.dll
[2016/09/09 14:57:56 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_30.dll
[2016/09/09 14:57:55 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_29.dll
[2016/09/09 14:57:55 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_0.dll
[2016/09/09 14:57:55 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_0.dll
[2016/09/09 14:57:55 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\x3daudio1_0.dll
[2016/09/09 14:57:55 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\x3daudio1_0.dll
[2016/09/09 14:57:54 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_25.dll
[2016/09/09 14:57:54 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_28.dll
[2016/09/09 14:57:54 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_27.dll
[2016/09/09 14:57:54 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_26.dll
[2016/09/09 14:57:54 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_25.dll
[2016/09/09 14:57:54 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_28.dll
[2016/09/09 14:57:54 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_27.dll
[2016/09/09 14:57:54 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_26.dll
[2016/09/09 14:57:53 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_24.dll
[2016/09/09 14:57:53 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_24.dll
[2016/09/09 14:56:26 | 000,014,112 | ---- | C] (InterVideo) -- C:\windows\SysNative\drivers\regi.sys
[2016/09/09 14:56:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
[2016/09/09 14:56:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InterVideo
[2016/09/09 14:56:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Protexis
[2016/09/09 14:56:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Corel
[2016/09/09 14:56:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Corel
[2016/09/09 14:56:04 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_29.dll
[2016/09/09 14:55:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Toshiba Shared
[2016/09/09 14:55:27 | 000,482,384 | ---- | C] (TOSHIBA Corporation) -- C:\windows\SysNative\drivers\tos_sps64.sys
[2016/09/09 14:55:26 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_41.dll
[2016/09/09 14:55:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA DVD PLAYER
[2016/09/09 14:54:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Toshiba
[2016/09/09 14:52:52 | 000,000,000 | ---D | C] -- C:\windows\Downloaded Installations
[2016/09/09 14:52:25 | 000,020,480 | ---- | C] (Darfon Electronics Corp.) -- C:\windows\SysNative\drivers\DFfilter.sys
[2016/09/09 14:52:11 | 007,367,200 | ---- | C] (Realtek Semiconductor Corp.) -- C:\windows\SysNative\RTSUSTORicon.dll
[2016/09/09 14:52:07 | 000,232,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\windows\SysNative\drivers\RtsUStor.sys
[2016/09/09 14:52:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2016/09/09 14:51:35 | 000,000,000 | ---D | C] -- C:\windows\SysWow64\Atheros_L1e
[2016/09/09 14:51:21 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2016/09/09 14:50:34 | 001,103,904 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\windows\SysNative\drivers\rtl8192se.sys
[2016/09/09 14:50:34 | 000,932,384 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\windows\SysNative\drivers\rtl8192ce.sys
[2016/09/09 14:50:34 | 000,612,352 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\windows\SysNative\drivers\rtl819xp.sys
[2016/09/09 14:50:34 | 000,450,048 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\windows\SysNative\drivers\rtl8187B.sys
[2016/09/09 14:50:34 | 000,442,368 | ---- | C] (Realtek Semiconductor Corporation ) -- C:\windows\SysNative\drivers\rtl8187Se.sys
[2016/09/09 14:50:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek WLAN Driver
[2016/09/09 14:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\CONEXANT
[2016/09/09 14:44:23 | 000,024,576 | ---- | C] (Toshiba) -- C:\windows\SysWow64\TSCI.dll
[2016/09/09 14:44:23 | 000,024,576 | ---- | C] (Toshiba) -- C:\windows\SysWow64\THCI.dll
[2016/09/09 14:42:30 | 000,538,136 | ---- | C] (Intel Corporation) -- C:\windows\SysNative\drivers\iaStor.sys
[2016/09/09 14:39:36 | 000,000,000 | ---D | C] -- C:\windows\SoftwareDistribution
[2016/09/09 14:39:09 | 000,000,000 | ---D | C] -- C:\Intel
[2016/09/09 14:38:33 | 000,000,000 | ---D | C] -- C:\TOSHIBA
[2016/09/09 14:34:39 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2016/09/12 20:24:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\kanako\Desktop\OTL.exe
[2016/09/12 19:47:57 | 001,220,036 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2016/09/12 19:47:57 | 000,616,008 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2016/09/12 19:47:57 | 000,391,024 | ---- | M] () -- C:\windows\SysNative\perfh011.dat
[2016/09/12 19:47:57 | 000,106,522 | ---- | M] () -- C:\windows\SysNative\perfc011.dat
[2016/09/12 19:47:57 | 000,106,388 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2016/09/12 19:47:50 | 000,016,080 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016/09/12 19:47:50 | 000,016,080 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016/09/12 19:47:40 | 000,000,686 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/09/12 19:40:30 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2016/09/12 19:40:22 | 3063,033,856 | -HS- | M] () -- C:\hiberfil.sys
[2016/09/12 15:41:38 | 000,323,627 | ---- | M] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\VT20160912.003
[2016/09/11 23:32:01 | 000,000,690 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/09/10 22:19:05 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\windows\SysNative\drivers\MBAMSwissArmy.sys
[2016/09/10 21:56:22 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/09/10 21:53:31 | 003,826,240 | ---- | M] () -- C:\Users\kanako\Desktop\AdwCleaner.exe
[2016/09/10 18:51:03 | 000,429,672 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2016/09/10 18:03:24 | 001,574,626 | ---- | M] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\Cat.DB
[2016/09/10 16:43:47 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\MsSpellCheckingFacility.exe
[2016/09/10 16:43:47 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\elshyph.dll
[2016/09/10 16:43:43 | 002,052,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inetcpl.cpl
[2016/09/10 16:43:43 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmlmedia.dll
[2016/09/10 16:43:43 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jsIntl.dll
[2016/09/10 16:43:43 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dll
[2016/09/10 16:43:43 | 000,664,064 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2016/09/10 16:43:43 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jsIntl.dll
[2016/09/10 16:43:43 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript9diag.dll
[2016/09/10 16:43:43 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieapfltr.dat
[2016/09/10 16:43:43 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2016/09/10 16:43:43 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\html.iec
[2016/09/10 16:43:43 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msls31.dll
[2016/09/10 16:43:43 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\elshyph.dll
[2016/09/10 16:43:43 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\url.dll
[2016/09/10 16:43:43 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msrating.dll
[2016/09/10 16:43:43 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iexpress.exe
[2016/09/10 16:43:43 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wextract.exe
[2016/09/10 16:43:43 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\occache.dll
[2016/09/10 16:43:43 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iepeers.dll
[2016/09/10 16:43:43 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieUnatt.exe
[2016/09/10 16:43:43 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\IEAdvpack.dll
[2016/09/10 16:43:43 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2016/09/10 16:43:43 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2016/09/10 16:43:43 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\inseng.dll
[2016/09/10 16:43:43 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmled.dll
[2016/09/10 16:43:43 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\SetIEInstalledDate.exe
[2016/09/10 16:43:43 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2016/09/10 16:43:43 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\icardie.dll
[2016/09/10 16:43:43 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\MshtmlDac.dll
[2016/09/10 16:43:43 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tdc.ocx
[2016/09/10 16:43:43 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2016/09/10 16:43:43 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\JavaScriptCollectionAgent.dll
[2016/09/10 16:43:43 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\pngfilt.dll
[2016/09/10 16:43:43 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\mshtmler.dll
[2016/09/10 16:43:43 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ieetwproxystub.dll
[2016/09/10 16:43:43 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2016/09/10 16:43:43 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\licmgr10.dll
[2016/09/10 16:43:43 | 000,016,303 | ---- | M] () -- C:\windows\SysWow64\ieuinit.inf
[2016/09/10 16:43:43 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedssync.exe
[2016/09/10 16:43:42 | 006,026,240 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2016/09/10 16:43:42 | 002,125,824 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inetcpl.cpl
[2016/09/10 16:43:42 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmlmedia.dll
[2016/09/10 16:43:42 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2016/09/10 16:43:42 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9diag.dll
[2016/09/10 16:43:42 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2016/09/10 16:43:42 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dll
[2016/09/10 16:43:42 | 000,720,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2016/09/10 16:43:42 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2016/09/10 16:43:42 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieapfltr.dat
[2016/09/10 16:43:42 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\vbscript.dll
[2016/09/10 16:43:42 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtmsft.dll
[2016/09/10 16:43:42 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\html.iec
[2016/09/10 16:43:42 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxtrans.dll
[2016/09/10 16:43:42 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\url.dll
[2016/09/10 16:43:42 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msrating.dll
[2016/09/10 16:43:42 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iexpress.exe
[2016/09/10 16:43:42 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\occache.dll
[2016/09/10 16:43:42 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieUnatt.exe
[2016/09/10 16:43:42 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wextract.exe
[2016/09/10 16:43:42 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iepeers.dll
[2016/09/10 16:43:42 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\IEAdvpack.dll
[2016/09/10 16:43:42 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollector.exe
[2016/09/10 16:43:42 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2016/09/10 16:43:42 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\inseng.dll
[2016/09/10 16:43:42 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmled.dll
[2016/09/10 16:43:42 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\SetIEInstalledDate.exe
[2016/09/10 16:43:42 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\MshtmlDac.dll
[2016/09/10 16:43:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\icardie.dll
[2016/09/10 16:43:42 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\JavaScriptCollectionAgent.dll
[2016/09/10 16:43:42 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tdc.ocx
[2016/09/10 16:43:42 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2016/09/10 16:43:42 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\pngfilt.dll
[2016/09/10 16:43:42 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshtmler.dll
[2016/09/10 16:43:42 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwproxystub.dll
[2016/09/10 16:43:42 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\imgutil.dll
[2016/09/10 16:43:42 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2016/09/10 16:43:42 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\licmgr10.dll
[2016/09/10 16:43:42 | 000,016,303 | ---- | M] () -- C:\windows\SysNative\ieuinit.inf
[2016/09/10 16:43:42 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\mshta.exe
[2016/09/10 16:43:42 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeedssync.exe
[2016/09/10 16:43:42 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ieetwcollectorres.dll
[2016/09/10 16:43:02 | 005,549,504 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ntoskrnl.exe
[2016/09/10 16:43:02 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ntkrnlpa.exe
[2016/09/10 16:43:02 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ntoskrnl.exe
[2016/09/10 16:43:02 | 001,732,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ntdll.dll
[2016/09/10 16:43:02 | 001,161,216 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\kernel32.dll
[2016/09/10 16:43:02 | 000,878,080 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\advapi32.dll
[2016/09/10 16:43:02 | 000,859,648 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\tdh.dll
[2016/09/10 16:43:02 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\tdh.dll
[2016/09/10 16:43:02 | 000,424,448 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\KernelBase.dll
[2016/09/10 16:43:02 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wow64win.dll
[2016/09/10 16:43:02 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\conhost.exe
[2016/09/10 16:43:02 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wow64.dll
[2016/09/10 16:43:02 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\winsrv.dll
[2016/09/10 16:43:02 | 000,112,640 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\smss.exe
[2016/09/10 16:43:02 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\csrsrv.dll
[2016/09/10 16:43:02 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\setup16.exe
[2016/09/10 16:43:02 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ntvdm64.dll
[2016/09/10 16:43:02 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\ntvdm64.dll
[2016/09/10 16:43:02 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\wow64cpu.dll
[2016/09/10 16:43:02 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\instnm.exe
[2016/09/10 16:43:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\apisetschema.dll
[2016/09/10 16:43:02 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2016/09/10 16:43:02 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2016/09/10 16:43:02 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\wow32.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2016/09/10 16:43:02 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2016/09/10 16:43:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2016/09/10 16:43:02 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\user.exe
[2016/09/10 16:42:43 | 000,376,688 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\netio.sys
[2016/09/10 16:42:43 | 000,288,088 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\drivers\FWPKCLNT.SYS
[2016/09/10 16:42:32 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\taskhost.exe
[2016/09/10 16:40:26 | 003,928,064 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d2d1.dll
[2016/09/10 16:40:26 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msmpeg2vdec.dll
[2016/09/10 16:40:26 | 002,565,120 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10warp.dll
[2016/09/10 16:40:26 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msmpeg2vdec.dll
[2016/09/10 16:40:26 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\XpsPrint.dll
[2016/09/10 16:40:26 | 001,643,520 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\DWrite.dll
[2016/09/10 16:40:26 | 001,424,384 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecs.dll
[2016/09/10 16:40:26 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10.dll
[2016/09/10 16:40:26 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\XpsPrint.dll
[2016/09/10 16:40:26 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10level9.dll
[2016/09/10 16:40:26 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\XpsGdiConverter.dll
[2016/09/10 16:40:26 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WMPhoto.dll
[2016/09/10 16:40:26 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\WMPhoto.dll
[2016/09/10 16:40:26 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\XpsGdiConverter.dll
[2016/09/10 16:40:26 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\dxgi.dll
[2016/09/10 16:40:26 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1core.dll
[2016/09/10 16:40:26 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10core.dll
[2016/09/10 16:40:26 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\WindowsCodecsExt.dll
[2016/09/10 16:40:26 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\UIAnimation.dll
[2016/09/10 16:40:26 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d10_1.dll
[2016/09/10 16:40:26 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\UIAnimation.dll
[2016/09/10 16:40:26 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016/09/10 16:40:26 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016/09/10 16:40:26 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2016/09/10 16:40:26 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016/09/10 16:40:26 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2016/09/10 16:38:24 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\d3d11.dll
[2016/09/10 16:38:24 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\d3d11.dll
[2016/09/10 15:31:27 | 000,002,280 | ---- | M] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/09/10 15:07:08 | 000,002,180 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/09/10 13:25:15 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msclmd.dll
[2016/09/10 13:25:15 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msclmd.dll
[2016/09/10 00:15:50 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\kanako\Desktop\HijackThis.exe
[2016/09/10 00:13:40 | 000,000,833 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/09/10 00:09:30 | 002,626,201 | ---- | M] () -- C:\Users\kanako\Desktop\geek.zip
[2016/09/09 23:34:35 | 000,101,112 | ---- | M] (Symantec Corporation) -- C:\windows\SysNative\drivers\SYMEVENT64x86.SYS
[2016/09/09 23:34:35 | 000,008,270 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
[2016/09/09 23:34:35 | 000,000,856 | ---- | M] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
[2016/09/09 23:34:33 | 000,002,379 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security.lnk
[2016/09/09 23:31:56 | 000,001,277 | ---- | M] () -- C:\Users\kanako\Desktop\Norton Installation Files.lnk
[2016/09/09 22:42:30 | 000,001,396 | ---- | M] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2016/09/09 22:18:25 | 000,000,824 | ---- | M] () -- C:\windows\SysNative\drivers\etc\tmvsthfud.bin
[2016/09/09 22:18:24 | 000,000,824 | ---- | M] () -- C:\windows\SysNative\drivers\etc\tmvsthfss.bin
[2016/09/09 15:14:16 | 000,157,242 | ---- | M] () -- C:\windows\SysWow64\license.rtf
[2016/09/09 15:14:16 | 000,157,242 | ---- | M] () -- C:\windows\SysNative\license.rtf
[2016/09/09 15:10:57 | 000,000,000 | ---- | M] () -- C:\windows\NDSTray.INI
[2016/09/09 14:56:51 | 000,000,040 | -H-- | M] () -- C:\windows\SysNative\ivireg.ivr
[2016/09/09 14:55:26 | 000,001,774 | ---- | M] () -- C:\Users\Public\Desktop\BD DVD PLAYER.lnk
[2016/09/09 14:51:23 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2016/09/09 14:41:26 | 000,015,708 | ---- | M] () -- C:\windows\SysNative\results.xml
[2016/09/08 06:26:38 | 000,323,627 | ---- | M] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\VT20160907.032
[2016/08/16 21:01:43 | 000,000,172 | ---- | M] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\isolate.ini

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2016/09/12 20:03:25 | 000,323,627 | ---- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\VT20160912.003
[2016/09/10 21:56:22 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/09/10 21:53:27 | 003,826,240 | ---- | C] () -- C:\Users\kanako\Des

OTL6です
[2016/09/10 21:53:27 | 003,826,240 | ---- | C] () -- C:\Users\kanako\Desktop\AdwCleaner.exe
[2016/09/10 16:43:43 | 000,016,303 | ---- | C] () -- C:\windows\SysWow64\ieuinit.inf
[2016/09/10 16:43:42 | 000,016,303 | ---- | C] () -- C:\windows\SysNative\ieuinit.inf
[2016/09/10 08:24:48 | 000,347,904 | ---- | C] () -- C:\windows\SysNative\systemsf.ebd
[2016/09/10 08:22:24 | 000,010,429 | ---- | C] () -- C:\windows\SysNative\ScavengeSpace.xml
[2016/09/10 08:22:04 | 000,105,559 | ---- | C] () -- C:\windows\SysWow64\RacRules.xml
[2016/09/10 08:22:04 | 000,105,559 | ---- | C] () -- C:\windows\SysNative\RacRules.xml
[2016/09/10 08:21:25 | 000,001,041 | ---- | C] () -- C:\windows\SysWow64\tcpbidi.xml
[2016/09/10 07:10:39 | 000,323,627 | ---- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\VT20160907.032
[2016/09/10 00:13:40 | 000,000,833 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/09/10 00:09:18 | 002,626,201 | ---- | C] () -- C:\Users\kanako\Desktop\geek.zip
[2016/09/09 23:34:39 | 001,574,626 | ---- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\Cat.DB
[2016/09/09 23:34:35 | 000,008,270 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.CAT
[2016/09/09 23:34:35 | 000,000,856 | ---- | C] () -- C:\windows\SysNative\drivers\SYMEVENT64x86.INF
[2016/09/09 23:34:33 | 000,002,379 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security.lnk
[2016/09/09 23:34:15 | 000,304,279 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymVTcer.dat
[2016/09/09 23:34:15 | 000,003,466 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\symefasi.inf
[2016/09/09 23:34:15 | 000,001,441 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymNet.inf
[2016/09/09 23:34:15 | 000,001,438 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtsp64.inf
[2016/09/09 23:34:15 | 000,001,421 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtspx64.inf
[2016/09/09 23:34:15 | 000,001,098 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\symELAM.inf
[2016/09/09 23:34:15 | 000,000,854 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\ccSetx64.inf
[2016/09/09 23:34:15 | 000,000,768 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\Iron.inf
[2016/09/09 23:34:13 | 000,009,959 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymELAM64.cat
[2016/09/09 23:34:13 | 000,008,254 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\SymEFASI64.cat
[2016/09/09 23:34:13 | 000,008,250 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\ccsetx64.cat
[2016/09/09 23:34:13 | 000,008,244 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtspx64.cat
[2016/09/09 23:34:13 | 000,008,240 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\symnet64.cat
[2016/09/09 23:34:13 | 000,008,240 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\srtsp64.cat
[2016/09/09 23:34:13 | 000,008,232 | R--- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\iron.cat
[2016/09/09 23:34:13 | 000,000,172 | ---- | C] () -- C:\windows\SysNative\drivers\NSx64\1607010.020\isolate.ini
[2016/09/09 23:31:56 | 000,001,277 | ---- | C] () -- C:\Users\kanako\Desktop\Norton Installation Files.lnk
[2016/09/09 23:28:27 | 000,002,280 | ---- | C] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2016/09/09 23:28:27 | 000,002,192 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016/09/09 23:28:27 | 000,002,180 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2016/09/09 23:27:39 | 000,000,690 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/09/09 23:27:38 | 000,000,686 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/09/09 22:42:30 | 000,001,396 | ---- | C] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2016/09/09 22:18:55 | 000,001,372 | ---- | C] () -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016/09/09 22:16:57 | 000,000,290 | ---- | C] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2016/09/09 22:16:57 | 000,000,272 | ---- | C] () -- C:\Users\kanako\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2016/09/09 15:10:57 | 000,000,000 | ---- | C] () -- C:\windows\NDSTray.INI
[2016/09/09 15:02:51 | 000,000,845 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\アプリケーションの再インストール.lnk
[2016/09/09 14:56:27 | 000,000,040 | -H-- | C] () -- C:\windows\SysNative\ivireg.ivr
[2016/09/09 14:55:26 | 000,001,786 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BD DVD PLAYER.lnk
[2016/09/09 14:55:26 | 000,001,774 | ---- | C] () -- C:\Users\Public\Desktop\BD DVD PLAYER.lnk
[2016/09/09 14:52:25 | 000,136,704 | ---- | C] () -- C:\windows\TiltMouseUI.exe
[2016/09/09 14:52:25 | 000,032,768 | ---- | C] () -- C:\windows\MouseCPL.dll
[2016/09/09 14:52:25 | 000,003,490 | ---- | C] () -- C:\windows\TiltConfig.ini
[2016/09/09 14:51:23 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2016/09/09 14:50:33 | 000,451,072 | ---- | C] () -- C:\windows\SysWow64\ISSRemoveSP.exe
[2016/09/09 14:41:26 | 000,015,708 | ---- | C] () -- C:\windows\SysNative\results.xml
[2016/09/09 14:35:08 | 3063,033,856 | -HS- | C] () -- C:\hiberfil.sys

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2010/11/20 15:27:25 | 014,174,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010/11/20 14:21:19 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2010/05/06 15:48:41 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2016/09/10 21:56:19 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2016/09/09 22:49:10 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2009/07/14 07:32:38 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2009/07/14 13:16:07 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2009/07/14 07:32:38 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2016/09/09 22:16:52 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2009/07/14 07:32:38 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2009/07/14 13:16:07 | 000,000,000 | RH-D | M] -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2009/07/14 07:32:38 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2009/07/14 05:20:08 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2016/09/09 22:16:57 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData
[2016/09/09 23:32:21 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Local\Microsoft\Device Metadata\dmrccache\downloads
[2016/09/09 22:18:56 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2016/09/09 22:44:14 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
[2016/09/09 22:19:47 | 000,000,000 | RH-D | M] -- C:\Users\kanako\AppData\Local\Microsoft\Windows\Burn\Burn
[2016/09/09 22:19:46 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2016/09/10 21:37:55 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\DNTException\Low
[2016/09/10 21:37:55 | 000,000,000 | -H-D | M] -- C:\Users\kanako\AppData\Roaming\Microsoft\Windows\IECompatUACache\Low
[2016/09/10 21:56:22 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2009/07/14 04:34:59 | 000,000,000 | RH-D | M] -- C:\Users\Public\Favorites
[2016/09/09 22:28:19 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2009/07/14 06:45:47 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2009/07/14 06:45:47 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData
[2016/09/09 22:28:46 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Media Player\アート キャッシュ

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2016/09/12 19:47:40 | 000,000,686 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/09/12 20:33:03 | 000,000,690 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST9500325AS
Partitions: 4
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 1.00GB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 400.00GB
Starting Offset: 1573912576
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: Extended w/Extended Int 13
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 50.00GB
Starting Offset: 431043379200
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 14.00GB
Starting Offset: 484730470400
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2009/07/14 03:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:40 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2009/07/14 03:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:23 | 000,849,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:45 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:[b]64bit:[/b] - [2009/07/14 03:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 03:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:47 | 000,136,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2010/11/20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2010/11/20 15:26:04 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 14:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2010/11/20 15:26:07 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2009/07/14 03:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 03:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2010/11/20 15:26:39 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2009/07/14 03:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 03:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:22 | 000,303,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:27 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:21 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:[b]64bit:[/b] - [2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2009/07/14 03:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:24 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:25 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:26 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:25 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 14:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2010/11/20 15:27:25 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:26 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 14:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:23 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:27 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:[b]64bit:[/b] - [2010/11/20 15:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:25 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:28 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:[b]64bit:[/b] - [2010/11/20 15:26:59 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:28 | 000,580,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:24:58 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 14:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2014/05/14 18:23:46 | 002,477,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2010/11/20 15:26:07 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2009/07/14 03:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:[b]64bit:[/b] - [2010/11/20 15:27:28 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >
以上、よろしくお願いいたします。

Extraもありました。
よろしくお願いします。

OTL Extras logfile created on: 2016/09/12 20:26:42 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\kanako\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.80 Gb Total Physical Memory | 1.69 Gb Available Physical Memory | 44.38% Memory free
7.61 Gb Paging File | 4.82 Gb Available in Paging File | 63.33% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 399.97 Gb Total Space | 359.22 Gb Free Space | 89.81% Space Free | Partition Type: NTFS
Drive D: | 50.00 Gb Total Space | 49.91 Gb Free Space | 99.82% Space Free | Partition Type: NTFS

Computer Name: KANAKO-PC | User Name: kanako | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2561528459-3886755028-4122387636-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AutoUpdateDisableNotify" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0429CED1-4C7F-4AFA-A479-F31C6F86F62D}" = rport=10243 | protocol=6 | dir=out | app=system |
"{0542FDE6-BF2D-41D0-93DC-1AB46435645B}" = rport=137 | protocol=17 | dir=out | app=system |
"{104BCECB-C5C7-4ACE-A49E-AC6C57251EED}" = lport=2869 | protocol=6 | dir=in | app=system |
"{342E8A6F-429A-427D-AB25-D13A3482B7EE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{4195D40E-F13E-45F2-B3D3-69B5C5AE1A4D}" = lport=445 | protocol=6 | dir=in | app=system |
"{4469E9E6-C678-4ABD-A789-D2AA8D09F7E3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6817AF7B-CAD5-4E89-A8E8-2A8F34178D54}" = rport=138 | protocol=17 | dir=out | app=system |
"{6B7BC6C8-DBC2-4A55-AA62-5C560D622C07}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7124DAD4-05F3-4550-9757-D065C71C20B9}" = lport=137 | protocol=17 | dir=in | app=system |
"{806E8B4E-AF67-463E-A5F0-E9CBD68C9020}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{80FC9BA1-7BD8-4A36-94AE-34780034683B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{87C6F57F-5F3D-408E-80C7-D50AB121E952}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B49954B-DF65-4735-8A86-996DAB2B80AB}" = lport=138 | protocol=17 | dir=in | app=system |
"{9229F21B-450C-48D9-9AB2-123ADF36D373}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9C7DE815-ED7F-46D0-B425-3927093E92D7}" = rport=445 | protocol=6 | dir=out | app=system |
"{A04A7215-2115-4B42-B609-17243A8D92F8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A50EF94D-CCDC-49B6-BC74-ED0A5E97EBDC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A5C09BC3-8533-4BBD-AA48-51C907055085}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A92A0CFC-BAEE-4E14-8CEB-DA790554C52B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B1BDB00E-9A88-43FF-B441-368313586C65}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B4635CFD-CA5D-4A6C-B7C1-6D78B9E1419A}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B9B35D48-A4CD-4E4F-923B-60F30C66FDDF}" = lport=139 | protocol=6 | dir=in | app=system |
"{DF3ED2D2-B9A5-40D7-8226-1D4C32E063E7}" = rport=139 | protocol=6 | dir=out | app=system |
"{E8DD94C6-AA15-4FE3-B683-133EA8EABC62}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F0FDDEFF-7E12-419F-94A9-0211C1FAD13F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03B7CD3A-467F-4962-AE33-6810375A0A00}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{0DBC55D5-64AB-4DBA-9AC8-BCA2308A524B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1A0F609C-0F3B-46BA-ABD1-D58F4A318E9A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1E9B1942-1C9C-4B77-8136-8876F60DABE9}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{322D1152-72E8-4412-82F7-B7E02F13CE4A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{428B1564-DF7B-44E0-8D03-AC641C5DAA99}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{5AB41831-FB84-4DFF-9F63-B71783AB407B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{618D59FC-A02A-4CF9-9A14-3F7A025DF21C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{6423AB55-0F24-458B-89F9-01D368F520F2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CE3ADF3-BF89-4CE3-A07F-678FB111F8EA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7074B05D-B2AE-469B-A713-2A281E6B4C7C}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{737AFCC6-2A97-44F9-9326-EE7EDA4BFDDB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7CF416DE-5086-4FA7-8FBC-B71074B751A9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{84326577-46B8-4752-974D-169936453C37}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{893E5141-93EE-435B-B996-C0544BAE81AA}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A152B290-C029-49FC-91C2-F3DE84F4CDC9}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{AB818F94-B443-4A11-9D4E-131E7BCCDC54}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B3BE7CE0-311A-4F92-AE87-A08DD900239B}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{B91A12DF-054A-4FE1-9155-4163DD189AD4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{BFFB266A-59AB-4FF2-B2A2-07BBD981E6B0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D0901767-39B4-4753-BDDE-5D9D9B328650}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D107D9E8-E029-4DA1-8E12-735AA8AE18B4}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{D80CB739-FB98-45C3-ABE4-0978798CFF6E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E1D66AF6-A9D2-402C-AB40-7905CCC4D52B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E44002FE-B28D-4492-A3A9-FF1A021C7FA4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E9D43930-9D32-48F0-9CFF-6378065578D5}" = protocol=6 | dir=out | app=system |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{90140000-0016-0411-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2010
"{90140000-0018-0411-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2010
"{90140000-001A-0411-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2010
"{90140000-001B-0411-1000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0411-1000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2010
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-0028-0411-1000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-002C-0411-1000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0411-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Japanese) 2010
"{90140000-006E-0411-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2010
"{90140000-00A1-0411-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Japanese) 2010
"{91140000-0013-0000-1000-0000000FF1CE}" = Microsoft Office Essentials 2010
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0119-0411-1000-0000000FF1CE}" = Microsoft Office ナビ 2010
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{9F1F4E90-5808-3CA8-8FF6-A5B0E60AF268}" = Microsoft .NET Framework 4 Client Profile JPN Language Pack
"{A0E99122-25C1-4CA4-9063-499A2A814EB6}" = TOSHIBA ReelTime
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C14518AF-1A0F-4D39-8011-69BAA01CD380}" = TOSHIBA Bulletin Board
"{D2837730-4960-3B35-8088-201387FD3BDB}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"{E2C24FE1-C6BB-4A4B-8B7F-BF2521DEB91E}" = Share64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile JPN Language Pack" = Microsoft .NET Framework 4 Client Profile Language Pack - 日本語
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語
"Office14.EssentialsR" = Microsoft Office 2010
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{E185BD5C-0E10-479F-AF44-63D3A068446A}" = Corel Digital Studio SE
"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"{073B89C3-BA88-41B5-965F-B35A88EAE838}" = TOSHIBA Supervisor Password
"{0D795777-9D60-4692-8386-F2B3F2B5E5BF}" = Label@Once 1.0
"{0F3EF57F-D82E-4668-A199-6E7D13E85413}" = 筆ぐるめ Ver.17
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live アップロード ツール
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{283276C7-67EF-4EE4-8663-E46013148330}" = Windows Live サインイン アシスタント
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
"{402ED4A1-8F5B-387A-8688-997ABF58B8F2}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{457C231F-853D-4FB6-8E8D-72B73A113637}" = Windows Live Messenger
"{51F0CC36-5EB0-4B9E-8F97-6AE9AD81BD7A}" = PCあんしん点検ユーティリティ
"{5C1F18D2-F6B7-4242-B803-B5A78648185D}" = Corel WinDVD
"{607BE7BF-7C28-4ADB-A4A0-385962B901C3}" = TOSHIBA ConfigFree
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{72C24C23-C53D-11D4-88AB-00809880EBD8}" = TOSHIBA Speech Engines Version V9.50
"{76CEAD65-6592-4B05-BB5B-E8C1F2713C39}" = LoiLoScope
"{7E4CB404-F1E4-4E81-A1CB-2CBB310481D1}" = MLE
"{8644F312-3393-423A-89CB-250C0FE58C09}" = Windows Live メール
"{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}" = TOSHIBA Hardware Setup
"{90FD3224-976C-42AE-AFD1-69F91D4915DF}" = Windows Live ムービー メーカー
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}" = TOSHIBA Media Controller
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D8C60-A55F-4fed-B2B9-173001290E16}" = Realtek WLAN Driver
"{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station
"{AEDA8B17-9571-4839-9240-F93E41198E19}" = Windows Live Sync
"{B19AC6F9-6B60-431D-AC74-18F1998F35C8}" = TOSHIBA 無線LANらくらく設定
"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"{B8ED7934-A409-485D-8A9B-B6E13FD70649}" = Windows Live おすすめパック
"{B9CF1C2E-6B3C-409C-A12B-836DAFC18059}" = Windows Live フォト ギャラリー
"{C4EA8443-092F-4818-8B5D-B8E25CC91135}" = TOSHIBA Speech System MT Engine Version 9.0
"{CBC67D3C-C7BF-4747-A15A-CFAA80833D1A}" = Toshiba Tilt Mouse
"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"{D9A053A4-EEF6-41DE-ADA1-454A4AFB0195}" = PC引越ナビ
"{DBBC37B3-6920-4C33-842F-EBD0B8E3FC74}" = ebi.BookReader3J
"{E1754ED2-CD39-4F5F-AC98-0271EAE1C116}" = Setup
"{E185BD5C-0E10-479F-AF44-63D3A068446A}" = ICA
"{E24A5C1E-8647-43FD-838B-DF7149D492E4}" = DeviceIO
"{E2C2F547-4C5B-45F9-8445-C59E223CCB08}" = ContentHD
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3C1C994-CA69-4B3C-A290-C311617DE271}" = Contents
"{E5636C06-A318-4CF3-803B-5BD9F5C10822}" = PureHD
"{E5D50A9A-B973-46DE-89E4-8BDDD8A9F988}" = Share
"{E6ABA0E9-65E7-4366-9770-514ED4341611}" = VIO
"{E7EFA8C8-4CDE-4466-8E0E-01C04589ED90}" = ISCOM
"{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder
"{EA6625D5-E563-4FE3-8D98-B3F5B64CBC67}" = IPM_OEM
"{EDD9E0C4-B402-40DF-B33D-405CA1E23BA6}" = DFPro
"{EFCD79EC-BC89-46F5-9256-B487CD7E7812}" = FlipViewer 4.5
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}" = TOSHIBA Media Controller Plug-in
"{FC05D86B-2D16-477D-A3D2-7D12970583D0}" = Windows Live Writer
"{FF7DB6B3-1288-4A82-A42A-14F76420DC42}" = Windows Live Call
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"ebi.SampleContents_is1" = ebi.SampleContents
"Google Chrome" = Google Chrome
"InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package
"InstallShield_{A0E99122-25C1-4CA4-9063-499A2A814EB6}" = TOSHIBA ReelTime
"InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA ecoユーティリティ
"InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}" = TOSHIBA Bulletin Board
"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = 東芝HDD/SSDアラータ
"InstallShield_{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder 3.7
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware バージョン 2.2.1.1043
"NS" = Norton Security
"WinLiveSuite_Wave3" = Windows Live おすすめパック

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2016/09/09 9:10:48 | Computer Name = WIN-LOP7O2IHF0Q | Source = SideBySide | ID = 16842787
Description = "C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.Exe"
のアクティブ化コンテキストの生成に失敗しました。マニフェストまたはポリシー ファイル "C:\Program Files (x86)\Windows Live\Photo
Gallery\WLMFDS.DLL" 行 8 のエラーです。 マニフェスト内のコンポーネント ID が要求されたコンポーネントの ID と一致しません。 参照は
WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1" です。 定義は WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"
です。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2016/09/09 9:10:48 | Computer Name = WIN-LOP7O2IHF0Q | Source = SideBySide | ID = 16842787
Description = "C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.Exe"
のアクティブ化コンテキストの生成に失敗しました。マニフェストまたはポリシー ファイル "C:\Program Files (x86)\Windows Live\Photo
Gallery\WLMFDS.DLL" 行 8 のエラーです。 マニフェスト内のコンポーネント ID が要求されたコンポーネントの ID と一致しません。 参照は
WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1" です。 定義は WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"
です。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2016/09/09 16:32:20 | Computer Name = kanako-PC | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: Explorer.EXE、バージョン: 6.1.7600.16450、タイム スタンプ: 0x4aebab8d
障害が発生しているモジュール名:
mso.dll_unloaded、バージョン: 0.0.0.0、タイム スタンプ: 0x4ba906d8 例外コード: 0xc0000005 障害オフセット: 0x000007feed474960
障害が発生しているプロセス
ID: 0x7b0 障害が発生しているアプリケーションの開始時刻: 0x01d20ad71e58cc78 障害が発生しているアプリケーション パス: C:\windows\Explorer.EXE
障害が発生しているモジュール
パス: mso.dll レポート ID: 8172ae91-76cc-11e6-b6ec-00266c512500

Error - 2016/09/10 1:31:58 | Computer Name = kanako-PC | Source = Microsoft-Windows-Backup | ID = 517
Description = '2016-09-10T05:28:36.197898400Z' に開始したバックアップ操作は、次のエラー コード '2155348010'
(%%2155348010) のため失敗しました。イベントの詳細で解決策を確認し、問題の解決後にバックアップ操作を再実行してください。

Error - 2016/09/10 1:32:00 | Computer Name = kanako-PC | Source = Windows Backup | ID = 4104
Description =

[ System Events ]
Error - 2016/09/09 16:18:52 | Computer Name = kanako-PC | Source = Service Control Manager | ID = 7022
Description = Windows Search サービスは開始時にハングしました。

Error - 2016/09/09 16:41:09 | Computer Name = kanako-PC | Source = Service Control Manager | ID = 7023
Description = Windows Modules Installer サービスは、次のエラーで終了しました: %%16405


< End of report >

作業と報告、ご苦労様です。
OTLのスキャンログを見せてもらいました。

少しばかりゴミが見つかったので、今度はそれをOTLから掃除しましょう。

このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらPCをまたセーフモードで再起動してOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」（赤字のボタン）を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
------------------------------------------
:OTL
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install

:Files

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------------------------------------------

悪代官様
お世話になります。
OTLで掃除をしました。
状況ですが、コンピューターの反応が重たい感じがします。特に起動して５分程度。これはリカバリ以前から感じていたことでした。Chromeで一つのタブを開いた状態で、タスクマネージャーによるとCPU使用率27％、プロセス81、物理メモリ2.57GB（67％）ということですが、普通はこんなものでしょうか。タスクマネージャーのキャプチャを添付するので見ていただけませんか？chrome.exeだけで8個もありますが、これが普通なのかもしれません。素人で申し訳ないです。

以下、OTLのRun and Fixのログです。

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{89B4C1CD-B018-4511-B0A1-5476DBF70820}\ not found.
========== FILES ==========
========== COMMANDS ==========
C:\windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: kanako
->Temp folder emptied: 13151985 bytes
->Temporary Internet Files folder emptied: 142984285 bytes
->Google Chrome cache emptied: 391429372 bytes
->Flash cache emptied: 434 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 168002004 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50631 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 682.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 09132016_211843

Files\Folders moved on Reboot...
C:\Users\kanako\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\kanako\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

よろしくお願いいたします

作業と報告、ご苦労様です。

>Chromeで一つのタブを開いた状態で、タスクマネージャーによるとCPU使用率27％、プロセス81、物理メモリ2.57GB（67％）ということですが、普通はこんなものでしょうか

>chrome.exeだけで8個もありますが

はい、実はChormeはそれも結構報告が多い問題でして。
プロセスで8個も多重起動するのも珍しくありません。
他にもChromeは妙なバグ？や過負荷の例も直接間接で幾度も見聞きしています。
そういうこともあるので自分の私見ではChromeは他の方にお勧めするブラウザとは見ていません。

OTLでの処置自体はできたようなので、OTLは準備時の説明に沿って片付けていいです。

ここで全体の見直ししますか。

お手数ですがまたHJTログと、CCでインストール情報ログと各タブのログも取り直して、それらをレスで見せてください。
何か取りこぼしか、処置後に別口の感染でも受けてないかを含めて全体を洗い直します

悪代官様
お世話になります。
各ログを貼ります。よろしくお願いいたします。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 20:12:28, on 2016/09/14
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coNatHst.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Users\kanako\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O2 - BHO: Windows Live サインイン ヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (file missing)
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseUI.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9624 bytes

CC_install

Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 2016/09/09 10.0.45.2
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2016/09/09 1.0.0.26
CCleaner Piriform 2016/09/10 5.21
Conexant HD Audio Conexant 2016/09/09 4.119.0.61
Corel Digital Studio SE Corel Corporation 2016/09/09 843 MB 1.5.10.51
Corel WinDVD Corel Inc. 2016/09/09 194 MB 10.0.5.349
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/05/06 18.1 MB 3.70.7
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/05/06 3.7.0.7_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/05/06 81.2 MB 4.5.1
Google Chrome Google Inc. 2016/09/09 53.0.2785.101
Google Toolbar for Internet Explorer Google Inc. 2016/09/09
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2016/09/09 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 2016/09/09 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2016/09/10 9.5.7.1002
LoiLoScope LoiLo 2010/05/06 86.6 MB 1.7.28
Malwarebytes Anti-Malware バージョン 2.2.1.1043 Malwarebytes 2016/09/10 66.8 MB 2.2.1.1043
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 2016/09/10 38.8 MB 4.0.30319
Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 Microsoft Corporation 2016/09/10 2.93 MB 4.0.30319
Microsoft Office 2010 Microsoft Corporation 2016/09/10 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2016/09/10 17.1 MB 14.0.7015.1000
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 1.72 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/09/10 300 KB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/05/06 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/09/10 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/05/06 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/09/10 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2016/09/10 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2016/09/10 10.0.50903
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/05/06 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2016/09/09 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2016/09/09 1.33 MB 4.20.9876.0
Norton Security Symantec Corporation 2016/09/09 22.7.1.32
PCあんしん点検ユーティリティ TOSHIBA Corporation 2016/09/09 2.87 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 11.4 MB 4.0.2
PlayReady PC Runtime amd64 Microsoft Corporation 2010/05/06 2.05 MB 1.3.0
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2016/09/09 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2016/09/09 2.00.0013
Synaptics Pointing Device Driver Synaptics Incorporated 2016/09/09 15.0.8.1
TOSHIBA Bulletin Board TOSHIBA Corporation 2016/09/09 1.6.07.64
TOSHIBA ConfigFree TOSHIBA Corporation 2016/09/09 72.8 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 8.38 MB 2.1.0.2 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2016/09/09 3.01.2.07-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2016/09/09 6.99 MB 1.2.11.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2016/09/09 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2016/09/09 1.0.80.5.64
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2016/09/09 4.80 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2016/09/09 27.9 MB 1.6.1.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 2.79 MB 2.1.0.4 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2016/09/09 1.6.06.64
TOSHIBA Service Station TOSHIBA 2016/09/09 2.1.40
TOSHIBA Speech Engines Version V9.50 2016/09/09
TOSHIBA Speech System MT Engine Version 9.0 2016/09/09
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2016/09/09
TOSHIBA Supervisor Password TOSHIBA Corporation 2016/09/09 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2016/09/09 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2016/09/09 61.4 MB 1.3.3.64
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 21.2 MB 2.0.9.0817
Windows Live Sync Microsoft Corporation 2010/05/06 2.76 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2010/05/06 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 224 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 1.93 MB 5.000.818.5
東芝HDD/SSDアラータ TOSHIBA Corporation 2016/09/09 39.1 MB 3.1.64.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 567 MB 17.00.0000

CC_startup

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run cAudioFilterAgent Conexant Systems, Inc. C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
有効 HKLM:Run FlipViewer Library E-Book Systems Inc. "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
有効 HKLM:Run HotKeysCmds Intel Corporation C:\windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
有効 HKLM:Run IgfxTray Intel Corporation C:\windows\system32\igfxtray.exe
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Persistence Intel Corporation C:\windows\system32\igfxpers.exe
有効 HKLM:Run SmartAudio Conexant Systems, Inc. C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
有効 HKLM:Run TiltMouse C:\windows\TiltMouseUI.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
有効 HKLM:Run TosNC TOSHIBA Corporation %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
有効 HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
有効 HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run Unattend0000000001{49B781C7-F4B7-4987-BBFD-18A9D8202F97} C:\tosutils\palakidou\palakidou.exe

CC_schedule
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

CC_context

有効 Drive Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
有効 Drive Ulead UDF Driver Ulead Systems, Inc. c:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll
有効 File BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
有効 File MBAMShlExt Malwarebytes C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 File Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
有効 Folder BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
有効 Folder MBAMShlExt Malwarebytes C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 Folder Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"

IE startup

有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
無効 Helper FlpLauncher Class E-Book Systems Inc. C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll
有効 Helper i-フィルター 5.0 ブラウザヘルパー C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar64.dll
無効 Helper Java(tm) Plug-In 2 SSV Helper C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
無効 Helper TOSHIBA Media Controller Plug-in <TOSHIBA> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
無効 Helper Windows Live サインイン ヘルパー Microsoft Corporation C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll

Chrome startup

有効 App Gmail 8.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google ドライブ 14.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Google オフライン ドキュメント 1.4 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Norton Identity Safe 1.0.5 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif\1.0.5_0
有効 Extension Norton Security Toolbar 2015.7.0.69 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe\2015.7.0.69_0

以上です。

作業と報告、ご苦労様です。

現在のログを見せてもらいました。
まだ少し問題点が残ってるのでそれを修正しましょう。

下記がまだ旧バージョンなので危険です。
>Adobe Flash Player 10 ActiveX Adobe Systems Incorporated 2016/09/09 10.0.45.2

これは一度GUでアンインストールの後、ディスククリーンアップしてから、公式サイトから最新版を入れなおしてください。

次にCCの「WIE」タブ内の下記をともに「無効」「エントリの削除」してください。
>有効 Helper i-フィルター 5.0 ブラウザヘルパー C:\Program Files (x86)\Digital Arts\IFP5\app\bin\ifp5toolbar64.dll

>無効 Helper Java(tm) Plug-In 2 SSV Helper C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

これができたら再度CCでIEタブのログとインストール情報ログだけ取り直して、それをまた見せてください

お世話になります。
Flash player のダウンロードの前にディスククリーンアップを忘れてしまい、ダウンロード後にクリーンアップしました。
ログを貼ります。
Adobe Flash Player 23 NPAPI Adobe Systems Incorporated 2016/09/15 19.2 MB 23.0.0.162
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2016/09/09 1.0.0.26
CCleaner Piriform 2016/09/10 5.21
Conexant HD Audio Conexant 2016/09/09 4.119.0.61
Corel Digital Studio SE Corel Corporation 2016/09/09 843 MB 1.5.10.51
Corel WinDVD Corel Inc. 2016/09/09 194 MB 10.0.5.349
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/05/06 18.1 MB 3.70.7
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/05/06 3.7.0.7_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/05/06 81.2 MB 4.5.1
Google Chrome Google Inc. 2016/09/09 53.0.2785.101
Google Toolbar for Internet Explorer Google Inc. 2016/09/09
Intel(R) Graphics Media Accelerator Driver Intel Corporation 2016/09/09 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 2016/09/09 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 2016/09/10 9.5.7.1002
LoiLoScope LoiLo 2010/05/06 86.6 MB 1.7.28
Malwarebytes Anti-Malware バージョン 2.2.1.1043 Malwarebytes 2016/09/10 66.8 MB 2.2.1.1043
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 2016/09/10 38.8 MB 4.0.30319
Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 Microsoft Corporation 2016/09/10 2.93 MB 4.0.30319
Microsoft Office 2010 Microsoft Corporation 2016/09/10 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2016/09/10 17.1 MB 14.0.7015.1000
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 1.72 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/09/10 300 KB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/05/06 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/09/10 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/05/06 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/09/10 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2016/09/10 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2016/09/10 10.0.50903
Mozilla Firefox 48.0.2 (x86 ja) Mozilla 2016/09/14 90.5 MB 48.0.2
Mozilla Maintenance Service Mozilla 2016/09/14 231 KB 48.0.2
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/05/06 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2016/09/09 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2016/09/09 1.33 MB 4.20.9876.0
Norton Security Symantec Corporation 2016/09/09 22.7.1.32
PCあんしん点検ユーティリティ TOSHIBA Corporation 2016/09/09 2.87 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 11.4 MB 4.0.2
PlayReady PC Runtime amd64 Microsoft Corporation 2010/05/06 2.05 MB 1.3.0
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2016/09/09 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2016/09/09 2.00.0013
Synaptics Pointing Device Driver Synaptics Incorporated 2016/09/09 15.0.8.1
TOSHIBA Bulletin Board TOSHIBA Corporation 2016/09/09 1.6.07.64
TOSHIBA ConfigFree TOSHIBA Corporation 2016/09/09 72.8 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 8.38 MB 2.1.0.2 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2016/09/09 3.01.2.07-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2016/09/09 6.99 MB 1.2.11.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2016/09/09 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2016/09/09 1.0.80.5.64
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2016/09/09 4.80 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2016/09/09 27.9 MB 1.6.1.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 2.79 MB 2.1.0.4 for x64
TOSHIBA ReelTime TOSHIBA Corporation 2016/09/09 1.6.06.64
TOSHIBA Service Station TOSHIBA 2016/09/09 2.1.40
TOSHIBA Speech Engines Version V9.50 2016/09/09
TOSHIBA Speech System MT Engine Version 9.0 2016/09/09
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0 2016/09/09
TOSHIBA Supervisor Password TOSHIBA Corporation 2016/09/09 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2016/09/09 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2016/09/09 61.4 MB 1.3.3.64
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 21.2 MB 2.0.9.0817
Windows Live Sync Microsoft Corporation 2010/05/06 2.76 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2010/05/06 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 224 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 1.93 MB 5.000.818.5
東芝HDD/SSDアラータ TOSHIBA Corporation 2016/09/09 39.1 MB 3.1.64.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 567 MB 17.00.0000

IE

有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
無効 Helper FlpLauncher Class E-Book Systems Inc. C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
無効 Helper TOSHIBA Media Controller Plug-in <TOSHIBA> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
無効 Helper Windows Live サインイン ヘルパー Microsoft Corporation C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll

よろしくお願いいたします。

作業と報告、ご苦労様です。
また続きのログを見せてもらいました。

AdobeやFirefoxの更新も無事できてますね。
IEタブのほうもきれいになってます。

現在異常も出てないなら、ここからは様子見しましょう。
普通にPCを使いながらでいいので1週間様子見してください。

1週間後にまたHJTログと、CCでインストール情報ログと各タブのログを取り直して、それらを様子見中の状態報告とともにレスください。

この時点でのログと状態がおそらく最後の分かれ目になるはずです

悪代官様
どうもありがとうございます。様子見ます。

悪代官さま
お世話になっております。
一週間たち、状況報告です。
コンピューターの状態は、非常に重たく、常に何かBackgroundで走っている感じです。FFの立ち上げから検索バーに入力できるまでに２分以上待つような状況で、非常にストレスです。
この間にコンピューターに加えた変化というと、adobeのイラストソフトを信頼できる所から正規でインストールしたくらいです。フォトショップとイラストレーターで十分なのですが、その他の余計なものもインストールされてしまった可能性はあります。

以下、ログを貼らせていただきます。（入力文字の変換にもとても時間がかかっています…）

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 21:15:23, on 2016/09/23
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 48.0.2 (x86 ja)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Users\kanako\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O2 - BHO: Windows Live サインイン ヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseUI.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11078 bytes

Install

Adobe Acrobat X Pro - English, Fran軋is, Deutsch Adobe Systems 2016/09/22 1.97 GB 10.0.0
Adobe AIR Adobe Systems Inc. 2016/09/22 2.5.1.17730
Adobe Community Help Adobe Systems Incorporated. 2016/09/22 3.4.980
Adobe Content Viewer Adobe Systems Incorporated 2016/09/22 1.4.0
Adobe Creative Suite 5.5 Design Standard Adobe Systems Incorporated 5.5
Adobe Flash Player 23 NPAPI Adobe Systems Incorporated 23.0.0.162
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Atheros Communications Inc. 2016/09/09 1.0.0.26
CCleaner Piriform 5.21
Conexant HD Audio Conexant 4.119.0.61
Corel Digital Studio SE Corel Corporation 1.5.10.51
Corel WinDVD Corel Inc. 2016/09/09 194 MB 10.0.5.349
ebi.BookReader3J eBOOK Initiative Japan Co., Ltd. 2010/05/06 18.1 MB 3.70.7
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2010/05/06 3.7.0.7_MSI_T
FlipViewer 4.5 E-Book Systems Inc. 2010/05/06 81.2 MB 4.5.1
Google Chrome Google Inc. 2016/09/09 53.0.2785.116
Google Toolbar for Internet Explorer Google Inc. 2016/09/09
Intel(R) Graphics Media Accelerator Driver Intel Corporation 8.15.10.2086
Intel(R) Management Engine Components Intel Corporation 6.0.0.1179
Intel(R) Rapid Storage Technology Intel Corporation 9.5.7.1002
LoiLoScope LoiLo 2010/05/06 86.6 MB 1.7.28
Malwarebytes Anti-Malware バージョン 2.2.1.1043 Malwarebytes 2016/09/10 2.2.1.1043
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 2016/09/10 4.0.30319
Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 Microsoft Corporation 4.0.30319
Microsoft Office 2010 Microsoft Corporation 14.0.7015.1000
Microsoft Office ナビ 2010 Microsoft Corporation 2016/09/10 17.1 MB 14.0.7015.1000
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2010/05/06 1.72 MB 3.1.0000
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/09/10 300 KB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2010/05/06 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/09/10 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2010/05/06 598 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2010/05/06 596 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/09/10 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/09/10 11.1 MB 10.0.40219
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2016/09/10 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 10.0.50903
Mozilla Firefox 48.0.2 (x86 ja) Mozilla 48.0.2
Mozilla Maintenance Service Mozilla 48.0.2
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 2010/05/06 1.26 MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 2016/09/09 1.27 MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 2016/09/09 1.33 MB 4.20.9876.0
Norton Security Symantec Corporation 2016/09/09 22.7.1.32
PCあんしん点検ユーティリティ TOSHIBA Corporation 2016/09/09 2.87 MB 1.1.0.0
PC引越ナビ 東芝情報機器株式会社 2010/05/06 11.4 MB 4.0.2
PlayReady PC Runtime amd64 Microsoft Corporation 2010/05/06 2.05 MB 1.3.0
Realtek USB 2.0 Card Reader Realtek Semiconductor Corp. 2016/09/09 6.1.7600.30111
Realtek WLAN Driver REALTEK Semiconductor Corp. 2016/09/09 2.00.0013
Synaptics Pointing Device Driver Synaptics Incorporated 15.0.8.1
TOSHIBA Bulletin Board TOSHIBA Corporation 1.6.07.64
TOSHIBA ConfigFree TOSHIBA Corporation 2016/09/09 72.8 MB 8.0.28
TOSHIBA Disc Creator TOSHIBA Corporation 2010/05/06 8.38 MB 2.1.0.2 for x64
TOSHIBA DVD PLAYER TOSHIBA Corporation 2016/09/09 3.01.2.07-B
TOSHIBA ecoユーティリティ TOSHIBA Corporation 2016/09/09 1.2.11.64
TOSHIBA Hardware Setup TOSHIBA Corporation 2.00.06
TOSHIBA Media Controller TOSHIBA CORPORATION 2016/09/09 1.0.80.5.64
TOSHIBA Media Controller Plug-in TOSHIBA CORPORATION 2016/09/09 4.80 MB 1.0.5.10
TOSHIBA PC Health Monitor TOSHIBA Corporation 2016/09/09 27.9 MB 1.6.1.64
TOSHIBA Recovery Media Creator TOSHIBA Corporation 2010/05/06 2.79 MB 2.1.0.4 for x64
TOSHIBA ReelTime TOSHIBA Corporation 1.6.06.64
TOSHIBA Service Station TOSHIBA 2016/09/09 2.1.40
TOSHIBA Speech Engines Version V9.50
TOSHIBA Speech System MT Engine Version 9.0
Toshiba Speech System NLS TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password TOSHIBA Corporation 2.00.03
Toshiba Tilt Mouse TOSHIBA Corporation 2016/09/09 1.00.0036
TOSHIBA Value Added Package TOSHIBA Corporation 2016/09/09 1.3.3.64
TOSHIBA 無線LANらくらく設定 TOSHIBA Corporation 2010/05/06 21.2 MB 2.0.9.0817
Windows Live Sync Microsoft Corporation 2010/05/06 2.76 MB 14.0.8089.726
Windows Live おすすめパック Microsoft Corporation 2010/05/06 14.0.8089.0726
Windows Live アップロード ツール Microsoft Corporation 2010/05/06 224 KB 14.0.8014.1029
Windows Live サインイン アシスタント Microsoft Corporation 2010/05/06 1.93 MB 5.000.818.5
東芝HDD/SSDアラータ TOSHIBA Corporation 2016/09/09 3.1.64.6
筆ぐるめ Ver.17 富士ソフト株式会社 2010/05/06 567 MB 17.00.0000


Start up
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKLM:Run 00TCrdMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
有効 HKLM:Run Acrobat Assistant 8.0 Adobe Systems Inc. "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
有効 HKLM:Run Adobe Acrobat Speed Launcher Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
有効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
有効 HKLM:Run AdobeCS5.5ServiceManager Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
有効 HKLM:Run cAudioFilterAgent Conexant Systems, Inc. C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
有効 HKLM:Run FlipViewer Library E-Book Systems Inc. "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
有効 HKLM:Run HotKeysCmds Intel Corporation C:\windows\system32\hkcmd.exe
有効 HKLM:Run HSON TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TBS\HSON.exe
有効 HKLM:Run IgfxTray Intel Corporation C:\windows\system32\igfxtray.exe
有効 HKLM:Run IME14 JPN Setup Microsoft Corporation C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
有効 HKLM:Run Persistence Intel Corporation C:\windows\system32\igfxpers.exe
有効 HKLM:Run SmartAudio Conexant Systems, Inc. C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
有効 HKLM:Run SmoothView TOSHIBA Corporation %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
有効 HKLM:Run SwitchBoard Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run Teco "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r
有効 HKLM:Run TiltMouse C:\windows\TiltMouseUI.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
有効 HKLM:Run TosNC TOSHIBA Corporation %ProgramFiles%\Toshiba\BulletinBoard\TosNcCore.exe
有効 HKLM:Run TosReelTimeMonitor TOSHIBA Corporation %ProgramFiles%\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
有効 HKLM:Run TosSENotify TOSHIBA Corporation C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run TPwrMain TOSHIBA Corporation %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
有効 HKLM:Run Unattend0000000001{49B781C7-F4B7-4987-BBFD-18A9D8202F97} C:\tosutils\palakidou\palakidou.exe

Scheduled task

有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

Context

有効 Directory Browse in Adobe Bridge CS5.1 Adobe Systems, Inc. C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L"
有効 Drive Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
有効 Drive Ulead UDF Driver Ulead Systems, Inc. c:\Program Files (x86)\Common Files\Ulead Systems\DVD\USIShex.dll
有効 File Adobe.Acrobat.ContextMenu Adobe Systems Inc. C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll
有効 File BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
有効 File MBAMShlExt Malwarebytes C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 File Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"
有効 Folder Adobe.Acrobat.ContextMenu Adobe Systems Inc. C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll
有効 Folder BUContextMenu Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\buShell.dll
有効 Folder MBAMShlExt Malwarebytes C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
有効 Folder Symantec.Norton.Antivirus.IEContextMenu Symantec Corporation "C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\NavShExt.dll"

IE

有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
有効 Helper Adobe PDF Conversion Toolbar Helper Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
有効 Helper Adobe PDF Link Helper Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
無効 Helper FlpLauncher Class E-Book Systems Inc. C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
無効 Helper Google Toolbar Notifier BHO Google Inc. C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Helper Norton Identity Protection Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
無効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
有効 Helper SmartSelect Class Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
無効 Helper TOSHIBA Media Controller Plug-in <TOSHIBA> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
無効 Helper Windows Live サインイン ヘルパー Microsoft Corporation C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
有効 Toolbar Adobe PDF Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
無効 Toolbar Norton Toolbar Symantec Corporation C:\Program Files (x86)\Norton Security\Engine64\22.7.1.32\coIEPlg.dll

FF

有効 Extension Adblock Plus 2.7.3 Wladimir Palant default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
無効 Extension Adobe Acrobat - Create PDF 1.0 Adobe Systems Incorporated default Firefox 48.0.2 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
有効 Extension Firefox Hello 1.4.4 Mozilla default Firefox 48.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
有効 Extension Firefox Hello Beta 1.4.4 Mozilla default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\features\{ff0c17ee-4688-4324-b5c6-d7e0ae79c316}\loop@mozilla.org.xpi
有効 Extension Firefox Hotfix 20160826.01 Mozilla default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\extensions\firefox-hotfix@mozilla.org.xpi
有効 Extension Multi-process staged rollout 1.1 default Firefox 48.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
有効 Extension Multi-process staged rollout 1.2 default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\features\{ff0c17ee-4688-4324-b5c6-d7e0ae79c316}\e10srollout@mozilla.org.xpi
無効 Extension Norton Identity Safe 2016.7.1.9 Symantec Corporation default Firefox 48.0.2 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.7.1.32\coFFAddon
有効 Extension Pocket 1.0.4 default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\features\{ff0c17ee-4688-4324-b5c6-d7e0ae79c316}\firefox@getpocket.com.xpi
有効 Plugin 1.4.8.866 Google Inc. default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\gmp-widevinecdm\1.4.8.866\widevinecdm.dll
有効 Plugin Adobe Acrobat 10.0.0.396 Adobe Systems Inc. default Firefox 48.0.2 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\browser\nppdf32.dll
有効 Plugin Google Update 1.3.31.5 Google Inc. default Firefox 48.0.2 C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll
有効 Plugin Microsoft Office 2010 14.0.4730.1010 Microsoft Corporation default Firefox 48.0.2 C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
有効 Plugin Microsoft Office 2010 14.0.4761.1000 Microsoft Corporation default Firefox 48.0.2 C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
有効 Plugin OpenH264 Video Codec 1.6 Mozilla Corporation default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\gmp-gmpopenh264\1.6\gmpopenh264.dll
有効 Plugin Primetime Content Decryption Module provided by Adobe Systems, Incorporated 17 Adobe Systems Inc default Firefox 48.0.2 C:\Users\kanako\AppData\Roaming\Mozilla\Firefox\Profiles\rxottrtg.default\gmp-eme-adobe\17\eme-adobe.dll
有効 Plugin Shockwave Flash 23.0.0.162 Adobe Systems Incorporated default Firefox 48.0.2 C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll
有効 Plugin Windows Live® Photo Gallery 14.0.8081.709 Microsoft Corporation default Firefox 48.0.2 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

Chrome

有効 App Gmail 8.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google ドライブ 14.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Google オフライン ドキュメント 1.4 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Norton Identity Safe 1.0.5 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif\1.0.5_0
有効 Extension Norton Security Toolbar 2015.7.0.69 ユーザー 1 C:\Users\kanako\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe\2015.7.0.69_0

以上です。よろしくお願いいたします。

こんばんは。
様子見後の報告ですね。

>コンピューターの状態は、非常に重たく、常に何かBackgroundで走っている感じです。FFの立ち上げから検索バーに入力できるまでに２分以上待つような状況で、非常にストレスです。

なるほど、また動作が重い状態ですか。
現在の各ログも見せてもらいました。
adobeアプリも信頼できる経緯で入れたならいいかと思いますが、ちょっと確認しましょう。

GUを使って一度CCをアンインストールしてください。

削除後にPC再起動の後、動作が軽くなったかどうかを報告ください。

もしやまたCCの常駐機能が負荷かけているかもしれないので、その確認します

悪代官様
お忙しいところありがとうございます。
CC削除して再起動したところ、とても軽くなりました。
ひとまず、このまま使いたいと思います。

レスが遅くなってすみません。

>CC削除して再起動したところ、とても軽くなりました

やはりCCの常駐が負荷かけてましたか。
これもどんどん重くなってきてますね。
改善したならそこはいいでしょう。

一応確認しますが、CCは今後も継続で使用予定ですか？
使わないならそのまま入れなおししなければいいです。

再使用するならそのことをレスでお返事ください。
この場合は無難な使い方を案内します

悪代官様
有難うございます。
個人的には使う予定はありません。
というか、使い方もいまいちわからないものですから…
このまま入れずに行こうと思います。

今日もレスが遅くなりました。

CCは今後は使う予定なしとのことですね。
ではそのままでいいでしょう。

念のため、またHJTログだけ取り直してそれを見せてください。

おそらくもうおかしなものは入ってないでしょうが、最後の最後でひとつでも見落としがあるとここまで頑張って作業してくれた苦労が水の泡になりかねないので、急がなくていいですからお時間ある時にログとれたらそれをレスください

悪代官さま
お世話になります。
お忙しい中、本当にありがとうございます。
HJTのログを貼らせていただきます。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:19:42, on 2016/09/26
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

FIREFOX: 49.0.1 (x86 ja)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Users\kanako\Desktop\HijackThis.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlpLauncher Class - {4401FDC3-7996-4774-8D2B-C1AE9CD6CC25} - C:\PROGRA~2\E-BOOK~1\FLIPVI~1\fvbho140.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O2 - BHO: Windows Live サインイン ヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\coIEPlg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [FlipViewer Library] "C:\Program Files (x86)\E-Book Systems\FlipViewer\FlipViewerLibrary.exe" /showmode=hide
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [TiltMouse] C:\windows\TiltMouseUI.exe
O4 - HKLM\..\Run: [TKRTL] %ProgramFiles%\TOSHIBA\TKRTL\KarteLite.exe -h
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: Google サイドウィキ... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: このコンテンツを引用 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Windows Live Writer でこのコンテンツに関する記事を書く(&B) - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://dynabook.fresheye.com (HKLM)
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree プロファイルサービス (ConfigFree Service) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Security (NS) - Symantec Corporation - C:\Program Files (x86)\Norton Security\Engine\22.7.1.32\NS.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: UDSS - Unknown owner - c:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11049 bytes

よろしくお願いします。

こんばんは。
現在のHJTログを見せてもらいました。
こちらのログでも妙なモノはなさそうですね。

では先に見えていた残りの問題点の修正します。
下記ブラウザがまだ最新になってないはずなので、
>Mozilla Firefox 48.0.2 (x86 ja) Mozilla 48.0.2

これは更新してください。
現在の最新版は49.0.1のはずです。
使わないならそのままGUでアンインストールしていればいいです。

更新して最新になればいいですが、もし更新できないときはそのことを教えてください。
時々更新不全ぼバグも出ているので、その場合は安全な対処法を案内します

どうもありがとうございます。
FFの確認をしたところ、49.0.1で最新ですと出ました。
これで大丈夫でしょうか。
総合的に判断して、悪代官様おすすめのブラウザはどれになるのでしょうか。
教えていただけるとうれしいです。

作業と報告、ご苦労様です。

>FFの確認をしたところ、49.0.1で最新ですと出ました

FFは最新版になりましたね。それなら問題ないです。

ブラウザでは各ユーザーのPC環境や使い勝手も含めて選択も別れるでしょうが、自分の私見ではFFが無難に使えると思います。

Windows標準のIEは昔から悪意の者による攻撃が最多だったせいで、他のブラウザよりも脆弱性が絶えませんでした。
今でもIEはそれを引きずることが多いので、初心者ユーザーにとっては最初からWindowsに入っているブラウザのIEをそのまま使うことが多く、その結果IEの脆弱性を突く形での攻撃でやられてしまうおそれも高くなります。

Chromeはその性能や使い勝手で、世界中で急激にユーザー激増して、アンケートによってはIE以上のシェアを獲得しているとも言われますが、Chromeは動作が重くなるなどの問題点もいくつか指摘されてます。
また、各ブラウザごとに感染や異常が起きた際にChromeは他ブラウザよりも解析と処置が困難なことが多いのです。
当掲示板の過去相談でも、IEやFFでは解析と処置ができたのにChromeだけは他ブラウザのような作業ができず、最後まで処置が残ることも珍しくありません。
これはChrome自体の仕様による問題ですが、それ以外の面でもChromeは一般ユーザーから様々な問題点の指摘や悪評も聞きます。
つまり普段は使いやすく便利なブラウザかもしれませんがいざトラブルに陥ったらChromeはもっとも対処が厄介なブラウザと自分は見ています。

FFは今でこそChromeにシェアを追い抜かれてますが、使いやすさと各種拡張は他ブラウザより豊富です。
そしてこれがもっとも大きいのですが、いざ感染やトラブルに陥った場合、FFはその対処が一番容易です。
最悪でも一度FFをアンインストールしたあと、残存ファイルもきれいに掃除したあとならFFを再インストールしても同じ異常を引きずることもかなり少ないのです。

もうひとつ、Operaもありますがこれは先ごろ中国企業傘下に入ってしまったことで、世界中のOperaユーザーが一斉にアンインストール、以後は非使用を決めるなどの動きが顕著に現れてます。
ただ以前Operaの元CEOだった人物が新たに開発、リリースした Vivaldiというブラウザがあり、これがOperaの『安全かつ安定した後継版』と見られています。
後継版とは言っても Vivaldi自体の歴史はまだ浅いので、今後どこまでの評価とシェアを得られるかはわかりませんが、Operaを使おうと思うなら Vivaldiを選ぶのが無難かと思います。

そしてこれも書いておくと、どのブラウザを使ってもユーザー自身が怪しいor信頼できないリンクやサイトにアクセスしてたら危険は同じということです。
ブラウザもセキュリティソフトも、ユーザー自身が手を出してしまったものについては拒否できません。

さて現在はもう異常も出てませんか。
異常なければ本題の相談も終了でいいでしょう。
作業に使った各ツールは導入時の説明に沿って片付けてください。

異常は消えても以後の再被害を防ぐための自衛はここからがスタートラインです。
ブラウザの設定を少し固めるだけでも、セキュリティ上の効果を高めることが可能です。
「インターネットオプション」→「プライバシー」→「詳細設定」と開いて、「自動cookie処理」と「サードパーティのcookieをブロック」にチェックして「適用」して「OK」。
これをやっておくと、多くの危険サイトからの保護にかなり有効です。
が、これもすべての危険サイトに有効でもないし、本物の危険サイトではこの程度ではまったく太刀打ちできないので、過信はしないこと。
また、「すべてのcookieをブロックする」設定にすると、プロバイダのメールボックスなどログイン必要なページに入れなくなる弊害も出るので、これは状況を考えて使い分けるといいでしょう。
安全なサイトでもcookieブロックだと閲覧や投稿ができなくなるところもあるのでこれも注意。

次に、アンチウイルスやファイアウォール等のセキュリティソフトの使い方も注意してください。
セキュリティソフトはただ入れてさえいればそれだけでフル機能を発揮するものではありません。
設定と機能をできるだけ把握して、正しく使うことが重要です。
間違った使い方すると、本来ならブロックできた感染でもあっさりスルーします。

また、いくら高性能なセキュリティソフトがあっても、ユーザーが自分から危険なサイトやファイルにアクセスしてたらまったく保護もできません。
セキュリティソフトは使い方次第でその性能を、倍にも半にも無にも変動させます。

そして百聞は一見にしかず。
現在この掲示板で継続中や解決済みの他スレもできるだけ見ておくことをおすすめします。
同様、類似、別種含めて参考になる部分は多いでしょう。

今回はリカバリしたうえでの仕切り直しになりましたが、今後も必要なデータのバックアップはこまめにとっておきましょう。
感染だけでなく単純にハード的要因でPCの正常使用や、HDD内のデータ取り出しもできなくなった場合にバックアップがあれば代用or買い替えPCでデータの継続使用も容易です。
PCのセキュリティと安定運用はともに両立させましょう。

PCの自衛のうえでは覚えておくべきことは山ほどありますが、最初から全部頭に詰め込む必要はありません。
わかる範囲からひとつずつでも消化して、PC環境とセキュリティ意識を再構築していきましょう。

慣れない作業を長期間頑張ってくれてお疲れ様でした。
以後は安全で快適なPCライフを

悪代官様
長い間懇切丁寧に対応してくださってありがとうございました。
自分の不注意から招いたPCのトラブルに対し、これほど真摯に相談に乗っていただき、感激しております。
相談に乗っていただいている経過中、他の方のケースも読ませていただき、たいへん勉強になりました。
自分の今までの考え方がどれほど甘かったか、思い知らされました。
セキュリティーについてはたくさん勉強しなくてはいけないこともありますが、今後は気を付けて使っていきたいと思います。
どうもありがとうございました。