悪代官の伏魔殿掲示板

初めまして、Maltaと申します。PCの挙動がおかしくなり、調べに調べてこの掲示板に辿り着きました。巷のウイルス除去ソフトでは太刀打ちできませんでした。どうかお助けください。手間を惜しまず向かい合う覚悟はできてます…
以下ログです。


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:25:04, on 2017/01/06
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Fujitsu\DustSolution\HokoriApp.exe
C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Program Files (x86)\Fujitsu\F-LINK\WSDMAIN.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\masa\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=
O1 - Hosts: 0.0.0.1 mssplus.mcafee.com
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
O4 - HKLM\..\Run: [CorelDA] C:\Program Files (x86)\Corel\MLSDK\CorelDesktopAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [f.lux] "C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\RunOnce: [iCloud] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe"
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #1] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #1] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.474\SSScheduler.exe
O4 - Global Startup: My Cloud リモートアクセス設定スタートアップ.lnk = C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCRemoteAccess.exe
O4 - Global Startup: スタートアップツール.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DataExchangeUtilityService - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\F-LINK\DEUService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FJAgentSVC - 富士通株式会社 - C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe
O23 - Service: FJAutoSignIn - FUJITSU LIMITED - C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe
O23 - Service: FUJ02E3Service - FUJITSU LIMITED - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.474\McCHSvc.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: My Cloud ビデオ サーバー - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\VDMS\dms_svc.exe
O23 - Service: My Cloud ビデオ サーバー＋ - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\Cindy\dms_sync_svc.exe
O23 - Service: My Cloud Eco DX Service (MyCloudEcoSvc) - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe
O23 - Service: MyCloudRemoteAccessConnectSvc - Unknown owner - C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCTunnel.exe
O23 - Service: MyCloudRemoteAccessSvc - Unknown owner - C:\Program Files (x86)\Fujitsu\MCRemoteAccess\svcMPPFclient.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: PFNService - FUJITSU LIMITED - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: PCカルテ スケジュール サービス (SKARUTE) - FUJITSU LIMITED - C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SSPF HGW Service (SSPFHGWService) - Unknown owner - C:\Program Files (x86)\Fujitsu\MCEcoUty\MCEcoUty.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: UDSS - Unknown owner - C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

--
End of file - 11792 bytes



そしてこれは悪代官さんの範囲外のことかもしれないのですが、iPhoneでwebを閲覧しているときも別のページに飛ばされます。こちらはリンクを開こうとすると強制で知らないページに飛ばされます。気になるのが、この現象が起きるのが我が家のWi-Fiでネットに繋げているときだけという点です。
何か解決の糸口が見つかればいいのですが…。よろしくお願いします。

こんばんは。
ここの管理人の悪代官です。
家老ではなく悪代官です。その証拠に過労です（謎

まずはHJTログと説明を見せていただきました。
詳しい説明ありがとうございます。おかげでだいぶ状況も見えてきました。

>iPhoneでwebを閲覧しているときも別のページに飛ばされます

>この現象が起きるのが我が家のWi-Fiでネットに繋げているときだけ

どうやらまたルーターのファームウェア改ざんされている疑いがありますね。

では慎重に調べていきましょうか。

まず、HJTログだけでは最初の解析もできないので、もうひとつの「インストール情報ログ」もとってもらえますか。
http://akumaden.web.fc2.com/prepare.html

情報ログもとったらそれを続きのレスで見せてください。

それと追加の確認もお願いします。

まずお使いのルーターの機種（型番）を教えてください。

それと無線ルーターなら、ルーターを通さずモデムから直接PCに有線接続してみてその状態で動作確認して、件の異常が起きるかどうかの報告も教えてください。
これは環境上できないなら無理にやらなくてもいいので、そのことだけ教えてくれてもいいです。

HJTログだけでもいくつか問題点は見えてますが、情報ログと追加の内容の確認してから本格的に解析してみましょう

こんばんは。お返事ありがとうございます。
掲示板の前置き改めて目を通させてもらいました。Googlechromeブラウザは非推奨だったんですね。アンインストールした方がいいでしょうか。

ログ貼ります。

2007 Office system 互換機能パック Microsoft Corporation 2015/04/12 66.9 MB 12.0.6514.5001
3D Builder Microsoft Corporation 2016/12/01 12.0.3131.0
@niftyでブロードバンド ニフティ株式会社 2013/10/03 439 KB 1.00.000
Adobe Flash Player 24 NPAPI Adobe Systems Incorporated 2016/12/14 19.4 MB 24.0.0.186
Apple Application Support（32 ビット） Apple Inc. 2017/01/06 159 MB 5.2
Apple Application Support（64 ビット） Apple Inc. 2017/01/06 178 MB 5.2
Apple Mobile Device Support Apple Inc. 2016/10/30 41.6 MB 10.0.1.3
Apple Software Update Apple Inc. 2016/06/02 4.91 MB 2.2.0.150
Bonjour Apple Inc. 2016/06/02 3.28 MB 3.1.0.1
BooksV FUJITSU 2016/10/08 1.1.7.0
Candy Crush Soda Saga king.com 2016/12/21 1.80.600.0
CCleaner Piriform 2017/01/07 5.25
Corel Digital Studio for FUJITSU Corel Corporation 2016/10/08 54.1 MB 1.5.25.156.2
Corel WinDVD Corel Inc. 2014/02/10 237 MB 10.9.0.115
DigiBookBrowser Version 1.5.3.87 LECRE Inc. 2013/10/03 8.57 MB 1.5.3.87
F-Launcher FUJITSU LIMITED 2013/10/03 0.99 MB 2.2.1.0
F-LINK FUJITSU LIMITED 2014/04/27 5.47 MB 3.3.0.0
f.lux 2016/10/08
Fresh Paint Microsoft Corporation 2016/10/08 3.1.10156.0
Fujitsu BIOS Driver FUJITSU LIMITED 2013/10/03 1.34 MB 1.1.1.0
Google Chrome Google Inc. 2016/12/12 360 MB 55.0.2883.87
Google Toolbar for Internet Explorer Google Inc. 2016/12/01 15.8 MB 7.5.8231.2252
Groove ミュージック Microsoft Corporation 2016/12/16 10.16112.10211.0
iCloud Apple Inc. 2017/01/06 165 MB 6.1.0.30
Inspirium辞書検索ライブラリ Fujitsu 2013/10/03 1.33 MB 2.0.8
Intel(R) Management Engine Components Intel Corporation 2013/10/22 9.5.14.1724
Intel(R) Processor Graphics Intel Corporation 2015/06/14 10.18.14.4170
iTunes Apple Inc. 2017/01/06 310 MB 12.5.4.42
Java 8 Update 71 Oracle Corporation 2016/01/23 177 MB 8.0.710.15
McAfee Security Scan Plus McAfee, Inc. 2016/12/28 10.2 MB 3.11.474.2
MetroTwit Pixel Tucker Pty Ltd 2016/10/08 1.2.0.1
Microsoft OneDrive Microsoft Corporation 2016/12/09 88.7 MB 17.3.6720.1207
Microsoft Solitaire Collection Microsoft Studios 2016/12/13 3.12.12120.0
Microsoft SQL Server Compact 3.5 SP2 JPN Microsoft Corporation 2013/10/03 8.02 MB 3.5.8080.0
Microsoft SQL Server Compact 3.5 SP2 x64 JPN Microsoft Corporation 2013/10/03 10.3 MB 3.5.8080.0
Microsoft SQL Server Compact 4.0 SP1 x64 JPN Microsoft Corporation 2015/10/15 28.8 MB 4.0.8876.1
Microsoft Sticky Notes Microsoft Corporation 2016/12/14 1.3.0.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/02/10 9.69 MB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2014/02/10 18.0 MB 9.0.30729
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/10/03 18.4 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/10/03 22.2 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Corporation 2016/10/08 17.4 MB 11.0.51106.1
Microsoft Wi-Fi Microsoft Corporation 2016/10/08 1.1604.4.0
Moo0 ボイス録音器 1.43 2016/10/08 4.24 MB
Mozilla Firefox 43.0.1 (x86 ja) Mozilla 2016/10/29 89.6 MB 43.0.1
Mozilla Maintenance Service Mozilla 2016/10/08 341 KB 43.0.1.5828
MSN トラベル Microsoft Corporation 2016/10/08 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/10/08 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/10/08 3.0.4.336
music.jp  for FUJITSU MTI LTD 2016/10/08 2.11.0.1
My Cloud エコDX FUJITSU 2016/10/08 2.2.0.2
My Cloud エコDX Utility FUJITSU LIMITED 2015/06/14 316 MB 2.1.1.0
My Cloud エコDX設定Utility FUJITSU LIMITED 2016/03/07 3.48 MB 2.2.0.2
My Cloud スタート FUJITSU 2016/10/08 2.3.0.2
My Cloud データ連携Utility 富士通株式会社 2014/04/27 29.9 MB 1.00.03.006
My Cloud ビデオ サーバー DigiOn 2015/10/15 30.7 MB 3.3.30.0
My Cloud ビデオ2 DigiOn 2016/10/08 1.2.1.9
My Cloud フォト CYBERLINK.COM CORPORATION. 2016/10/08 1.0.3219.33373
My Cloud ホーム FUJITSU 2016/10/08 1.1.1.1
My Cloud ミュージック sMedio Inc 2016/10/08 1.0.0.110
My Cloud モバイルアクセス sMedio Inc 2016/10/08 2.3.0.42
My Cloud モバイルアクセス設定Utility FUJITSU LIMITED 2016/03/07 75.0 KB 3.00.0000
My Cloud リモートアクセス設定Utility FUJITSU LIMITED 2014/04/27 2.51 MB 1.0.000.008
NAVITIME for FUJITSU NAVITIMEJAPAN 2016/10/08 2.0.4.0
NetworkPlayer サーバー DigiOn 2013/10/03 11.5 MB 4.51
nissen Smart Catalog Nissen.Co.,LTD 2016/10/08 1.2.0.27
OneNote Microsoft Corporation 2017/01/05 17.7668.57681.0
Opener Tiny Opener 2016/12/13 1.2.28.0
PCカルテ FUJITSU LIMITED 2016/07/21 6.38 MB 2.4.0.0
People Microsoft Corporation 2016/12/08 10.1.3160.0
Pixiaフルセット版 Wacom Co., Ltd. 2014/03/05 81.6 MB 4.80d
Plugfree NETWORK 富士通株式会社 2016/10/08 7.97 MB 7.1.0.1
PreSonus Studio One 2 x64 PreSonus Audio Electronics 2016/10/08 166 MB 2.6.0.24200
Realtek Card Reader Realtek Semiconductor Corp. 2013/10/03 13.4 MB 6.2.9200.29068
Realtek Ethernet Controller Driver Realtek 2013/10/03 3.06 MB 8.18.621.2013
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/10/11 43.2 MB 6.0.1.7571
Roxio Creator LJ Roxio 2016/10/08 5.22 MB 12.2.37.11
Search App by Ask 2015/04/29
Skype プレビュー Skype 2016/12/14 11.10.145.0
Skype(TM) 7.30 Skype Technologies S.A. 2016/12/12 159 MB 7.30.105
Store Purchase App Microsoft Corporation 2016/10/08 11608.1000.2431.0
Sway Microsoft Corporation 2016/12/08 17.7668.45141.0
Twitter Twitter Inc. 2016/12/07 5.4.1.0
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/11/09 2.30 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/04/02 26.3 MB 16.0.1404.1
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/30 18.0 KB 16.0.1515.1
WebTablet FB Plugin 32 bit Wacom Technology Corp. 2016/10/08 2.1.0.3
WebTablet FB Plugin 64 bit Wacom Technology Corp. 2016/10/08 2.1.0.3
Windows スキャン Microsoft Corporation 2016/10/08 6.3.9654.17133
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02E3) System (07/02/2013 1.30.1.0) FUJITSU LIMITED 2016/10/08 07/02/2013 1.30.1.0
Windows リーディング リスト Microsoft Corporation 2016/10/08 6.3.9654.21234
Xbox Microsoft Corporation 2016/12/22 24.24.20004.0
Xbox Identity Provider Microsoft Corporation 2016/10/08 11.19.19003.0
Yahoo!オークション (ft) Yahoo! JAPAN 2016/10/08 2.0.0.4
お手入れナビ FUJITSU LIMITED 2013/10/03 2.01 MB 5.12.00.000
はじめに Microsoft Corporation 2016/12/14 4.2.29.0
アップデートナビ FUJITSU LIMITED 2016/04/09 4.29 MB 1.2.0076
アプリ インストーラー Microsoft Corporation 2016/10/08 1.0.2181.0
アプリ コネクター Microsoft Corporation 2016/10/08 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/12/13 10.1612.3343.0
カメラ Microsoft Corporation 2016/12/13 2016.1101.20.0
キーボード状態表示ツール FUJITSU LIMITED 2013/10/03 140 KB 1.0.2.0
サポートツール 「パソコンの情報」と「トラブル解決ナビの起動」 FUJITSU LIMITED 2013/10/03 1.65 MB 1.2.0.0
シュフーチラシアプリ for FUJITSU TOPPAN PRINTING CO., LTD. 2016/10/08 1.4.0.0
スタートアップツール 東日本電信電話株式会社 2014/02/27 4.58 MB 6.1
ストア Microsoft Corporation 2016/12/14 11610.1001.23.0
スポーツ Microsoft Corporation 2016/12/16 4.18.37.0
ソフトウェアディスク検索 FUJITSU LIMITED 2013/10/03 960 KB 2.0.0.0
チケットメーカー FUJITSU LIMITED 2013/10/03 318 KB 3.1.0.0
ニュース Microsoft Corporation 2016/12/23 4.18.41.0
バックアップナビ FUJITSU LIMITED 2013/10/03 12.1 MB 2.3.0.0
パソコン乗換ガイド 株式会社富士通ソフトウェアテクノロジーズ 2013/10/03 30.5 MB 1.1.0.1
フィードバック Hub Microsoft Corporation 2017/01/05 1.1611.3471.0
フォト Microsoft Corporation 2016/11/23 16.1118.10000.0
ペイントツールSAI Ver.1 2016/10/08
ペンタブレット Wacom Technology Corp. 2016/10/08
ボイス レコーダー Microsoft Corporation 2016/12/14 10.1612.3352.0
マイミュージアム FUJITSU 2016/10/08 1.2.0.3
マップ Microsoft Corporation 2016/12/14 5.1611.3342.0
マネー Microsoft Corporation 2016/12/16 4.18.37.0
メッセージング Microsoft Corporation 2016/10/08 3.19.1001.0
メール/カレンダー Microsoft Corporation 2016/12/16 17.7714.42037.0
モバイル コンパニオン Microsoft Corporation 2016/10/08 10.1609.2561.0
リモートサポートツール 東日本電信電話株式会社 2014/02/27 784 KB
リーダー Microsoft Corporation 2016/10/08 6.4.9926.18471
ワコム タブレット Wacom Technology Corp. 2016/10/08 6.3.7-6
健康生活日記 FUJITSU 2016/10/08 2.0.1.4
天気 Microsoft Corporation 2016/12/16 4.18.37.0
宿探 for FUJITSU 繝舌Μ繝･繝ｼ繧ｳ繝槭・繧ｹ繹ｱ 2016/10/08 1.3.0.3
富士通PC 辞書セット(広辞苑第六版+リーダーズ英和辞典+新和英中辞典+現代用語の基礎知識＋学研パーソナル統合辞典) 富士通株式会社 2013/10/03 1.00 MB 2.0.0
富士通アドバイザー FUJITSU LIMITED 2016/07/21 11.6 MB 4.6.3.0
富士通パソコン お客様サポート FUJITSU 2016/10/08 1.0.0.2
富士通拡張機能ユーティリティ FUJITSU LIMITED 2013/10/03 157 KB 3.6.0.0
新しい Office を始めよう Microsoft Corporation 2016/11/16 17.7608.23501.0
映画 & テレビ Microsoft Corporation 2016/12/14 10.16112.10221.0
書き込み機能拡張ユーティリティ FUJITSU LIMITED 2013/10/03 1.92 MB 2.3.0.0
有料 Wi-Fi & 携帯ネットワーク Microsoft Corporation 2016/10/08 1.1607.6.0
楽天gateway 讌ｽ螟ｩ譬ｪ蠑丈ｼ夂､ｾ 2016/10/14 3.0.2.0
楽天レシピ 讌ｽ螟ｩ譬ｪ蠑丈ｼ夂､ｾ 2016/10/08 1.2.0.0
筆ぐるめ 20 富士ソフト株式会社 2013/10/03 611 MB 20.00.0008
自動サインイン設定 FUJITSU LIMITED 2013/10/03 207 KB 1.0.2.0
電卓 Microsoft Corporation 2016/12/14 10.1612.3341.0
電子辞書 FUJITSU LIMITED 2013/10/03 11.2 MB 5.0.2.0
電話 Microsoft Corporation 2016/10/08 2.17.27003.0
＠メニュー 2013/10/22 1.89 MB V7.0
＠メニュー FUJITSU LIMITED 2013/10/03 1.89 MB 7.2.0.0


以上インストール情報ログです。ご査収をば…
ルーターの機種は
Logitec　LAN-W301NR
です。
モデムから直接引っ張ってくることは出来ませんでした。ご容赦ください。
よろしくお願いします。

早速の作業と報告、ご苦労様です。

>Googlechromeブラウザは非推奨だったんですね。アンインストールした方がいいでしょうか

自分の私見ではChroemはお勧めしてませんが、各ユーザーの環境や用途で必要とすれば判断はお任せしています。
Chromeはうまく使えば便利なブラウザですがその仕様から、一度ブラウザ内に感染受けると他のブラウザよりも解析処置が厄介なため、できれば他のブラウザを推奨と言うことです。

インストール情報ログも見せてもらいました。
予想してましたがやはりいくつか問題点ありますね。

では本格的に作業にかかりましょう。
時間はかかってもいいですから落ち着いてひとつずつ確実に進めてください。

まず最初にお伝えしておきます。
見てのとおり現在相談者さん多数のため、相談受けてから皆さんに順番にレスできるまで、毎回1日かそれ以上かかる可能性もあるので、すみませんがご了承ください。

では以下の説明をよく見てから、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てきたらそれらは絶対にクリックしないでください。
「GeekUninstaller」（通称：GU）
説明ページ↓
http://www.gigafree.net/system/install/geekuninstaller.html
ダウンロード↓
http://www.geekuninstaller.com/download
「download free」をクリック、保存後、解凍してください。
片付ける時はフォルダごと手動で削除してください。

「CCleaner」（通称：CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードしてください。なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
片付けるときはアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【Windowsにダメージを与えてしまうおそれもある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、自分が指示した以外の操作はしないように。

そして下記ページは作業開始前に必ず熟読して、必要な場合が出たらそれに沿って対処してください。この対処が必要な事例が増えています。
http://note.chiebukuro.yahoo.co.jp/detail/n335704

準備できたら作業開始です。
なお、このあとの作業で探しても見つからないものはスルーして進めていいですが、指示した対象外の物は絶対にいじらないようによく見て作業してください。

また、作業のうえで削除指示するものもあるはずですが、ご自身で必要として入れたものがあればそれの削除は保留して、次のレスでその旨を教えてください。

最初に下記ページをよく見てから
http://dl.logitec.co.jp/software.php?pn=LST-D-436
その説明に沿ってルーターのファームウェアを更新しておいてください。
更新後にルーターの再設定が必要になるはずなので、間違えずに以前の設定を適用してください。

次にWindowsUpdateの確認して、必要な更新があればそれを全部更新してください。
ですがそこで更新ができないようならこの後に説明する作業はせずに更新失敗の旨をレスで教えてください。
WUが正常にできなくすることで、感染の解析処置を阻害してくる危険なマルウェアが激増しているためです。
Windowsの各種更新(WindowsUpdate)は常に最新に適用しておかないと、それだけで危険な感染はすぐにでも起きますよ。

なお、Windows10への更新はユーザー自身がよほど必要でなければ非推奨です。
http://www.japan-secure.com/entry/Windows_Update_7.html
http://www.japan-secure.com/entry/how_to_suppress_the_free_upgrade_of_Windows_10.html

少なくとも下記のアプリは旧バージョンです。
>Mozilla Firefox 43.0.1 (x86 ja) Mozilla 2016/10/29 89.6 MB 43.0.1

各種アプリの更新を怠っただけでも、脆弱性を悪用されて深刻な感染はあっさり起きます。
使うなら最新版に更新してください。使わないアプリならアンインストールが安全です。
他にも旧バージョンないか調べて、あれば同様に更新するか、アンインストールしてください。

ここでWindowsの標準機能である「システムの復元」での復元ポイントをひとつ、手動で作成しておいてください。
これはこの後の作業で、間違って対象外のものをいじってしまうとそれだけでWindowsに深刻な不具合を起こすこともあるので、万一の際に復元可能にしておくためです。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point

GUを使って下記をアンインストールしてください。
>Java 8 Update 71 Oracle Corporation 2016/01/23 177 MB 8.0.710.15

今度はPCをセーフモードで起動してください（やり方↓）
http://www.pc-master.jp/sousa/s-safemode.html
Win8の場合は以下を参考に。
http://freesoft.tvbok.com/win8/tips-and-tools/safemode.html

セーフモードでGUを使って、下記をアンインストールしてください。
>McAfee Security Scan Plus McAfee, Inc. 2016/12/28 10.2 MB 3.11.474.2

HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、こちらが指示した以外のものは絶対にチェックを入れないでください。
>O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll

>O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll

>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

>O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.11.474\SSScheduler.exe

>O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.474\McCHSvc.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
探しても見つからないものはスルーして進めていいです。

ここでPCを通常モードで再起動してから、スタートメニューの「アクセサリ」→「システムツール」から「ディスククリーンアップ」を起動してください。
起動したら対象ドライブでCドライブを選択してスキャンして、表示された中の「ダウンロードされたプログラムファイル」「インターネット一時ファイル」「一時ファイル」の項目だけチェックを入れてから「OK」「ファイルの削除」を押してください。
これを実行すると選択した部分のゴミファイルが掃除されます。

これを実行することで作業時にスキャンで検出される無駄なゴミファイルも減るのでその分かなり時間や解析も楽になるのです。
「ごみ箱」など他の項目にチェックしないのは、間違って正常なファイルを削除しないためと、もし正常なファイルを削除してごみ箱に入れても戻せるようにするための措置です。

続いてCCを起動してください。
起動したら、「ツール」→」「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できるので、ログをデスクトップにでも保存しておいてください。

次に「スケジュールされたタスク」タブと「コンテキストメニュー」タブのログも同じ要領で保存してください。

続いて今度はCC画面の左側にある「Browser Plugin」の項目から「InternetExplorer」タブ以下の各タブも順番に開いて、そのログもとっておいてください。

CCの各ログをとったらCCは終了してください。

このあとブラウザを起動して、数時間ほどPC状態を様子見したあと、あらたにHJTとCCでのインストール情報ログを取り直してください。

取り直した両ログと、CCの各ログを返信に貼って、状態報告とともにレスください。
それらを見てから続きの作業を指示します。

こんにちは。ルーターとFirefoxの更新OKです。
ちゃっちゃかログ貼ります。

作業数時間後取り直したHJTとCCのログ

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:28:19, on 2017/01/08
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Fujitsu\F-LINK\WSDMAIN.exe
C:\Program Files (x86)\Fujitsu\DustSolution\HokoriApp.exe
C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
C:\Users\masa\Downloads\HijackThis.exe
C:\Program Files (x86)\Fujitsu\FJAgent\Engines\CheckCdsEngine\CheckCdsEngine.exe
C:\Program Files (x86)\Corel\MLE2\MLEngine.exe
C:\Program Files (x86)\Corel\FaceEngine\FaceEngine.exe
C:\Program Files (x86)\Corel\Corel Digital Studio SE\GeneralMediaParser.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
O4 - HKLM\..\Run: [CorelDA] C:\Program Files (x86)\Corel\MLSDK\CorelDesktopAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [f.lux] "C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #1] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #1] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe /Crashed (User 'Default user')
O4 - Global Startup: My Cloud リモートアクセス設定スタートアップ.lnk = C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCRemoteAccess.exe
O4 - Global Startup: スタートアップツール.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{b899bea2-82f4-4919-8254-e8c0cee53eb8}: NameServer = 192.168.2.1
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: DataExchangeUtilityService - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\F-LINK\DEUService.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FJAgentSVC - 富士通株式会社 - C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe
O23 - Service: FJAutoSignIn - FUJITSU LIMITED - C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe
O23 - Service: FUJ02E3Service - FUJITSU LIMITED - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: My Cloud ビデオ サーバー - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\VDMS\dms_svc.exe
O23 - Service: My Cloud ビデオ サーバー＋ - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\Cindy\dms_sync_svc.exe
O23 - Service: My Cloud Eco DX Service (MyCloudEcoSvc) - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe
O23 - Service: MyCloudRemoteAccessConnectSvc - Unknown owner - C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCTunnel.exe
O23 - Service: MyCloudRemoteAccessSvc - Unknown owner - C:\Program Files (x86)\Fujitsu\MCRemoteAccess\svcMPPFclient.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: PFNService - FUJITSU LIMITED - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: PCカルテ スケジュール サービス (SKARUTE) - FUJITSU LIMITED - C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SSPF HGW Service (SSPFHGWService) - Unknown owner - C:\Program Files (x86)\Fujitsu\MCEcoUty\MCEcoUty.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: UDSS - Unknown owner - C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

--
End of file - 11635 bytes



2007 Office system 互換機能パック Microsoft Corporation 2015/04/12 66.9 MB 12.0.6514.5001
3D Builder Microsoft Corporation 2016/12/01 12.0.3131.0
Adobe Flash Player 24 NPAPI Adobe Systems Incorporated 2016/12/14 19.4 MB 24.0.0.186
Apple Application Support（32 ビット） Apple Inc. 2017/01/06 159 MB 5.2
Apple Application Support（64 ビット） Apple Inc. 2017/01/06 178 MB 5.2
Apple Mobile Device Support Apple Inc. 2016/10/30 41.6 MB 10.0.1.3
Apple Software Update Apple Inc. 2016/06/02 4.91 MB 2.2.0.150
Bonjour Apple Inc. 2016/06/02 3.28 MB 3.1.0.1
BooksV FUJITSU 2016/10/08 1.1.7.0
Candy Crush Soda Saga king.com 2016/12/21 1.80.600.0
CCleaner Piriform 2017/01/08 19.0 MB 5.25
Corel Digital Studio for FUJITSU Corel Corporation 2016/10/08 54.1 MB 1.5.25.156.2
Corel WinDVD Corel Inc. 2014/02/10 237 MB 10.9.0.115
F-LINK FUJITSU LIMITED 2014/04/27 5.47 MB 3.3.0.0
f.lux 2016/10/08
Fresh Paint Microsoft Corporation 2016/10/08 3.1.10156.0
Fujitsu BIOS Driver FUJITSU LIMITED 2013/10/03 1.34 MB 1.1.1.0
Google Chrome Google Inc. 2016/12/12 360 MB 55.0.2883.87
Google Toolbar for Internet Explorer Google Inc. 2016/12/01 15.8 MB 7.5.8231.2252
Groove ミュージック Microsoft Corporation 2016/12/16 10.16112.10211.0
iCloud Apple Inc. 2017/01/06 165 MB 6.1.0.30
Inspirium辞書検索ライブラリ Fujitsu 2013/10/03 1.33 MB 2.0.8
Intel(R) Management Engine Components Intel Corporation 2013/10/22 9.5.14.1724
Intel(R) Processor Graphics Intel Corporation 2015/06/14 10.18.14.4170
iTunes Apple Inc. 2017/01/06 310 MB 12.5.4.42
MetroTwit Pixel Tucker Pty Ltd 2016/10/08 1.2.0.1
Microsoft OneDrive Microsoft Corporation 2016/12/09 88.7 MB 17.3.6720.1207
Microsoft Solitaire Collection Microsoft Studios 2016/12/13 3.12.12120.0
Microsoft SQL Server Compact 3.5 SP2 JPN Microsoft Corporation 2013/10/03 8.02 MB 3.5.8080.0
Microsoft SQL Server Compact 3.5 SP2 x64 JPN Microsoft Corporation 2013/10/03 10.3 MB 3.5.8080.0
Microsoft SQL Server Compact 4.0 SP1 x64 JPN Microsoft Corporation 2015/10/15 28.8 MB 4.0.8876.1
Microsoft Sticky Notes Microsoft Corporation 2016/12/14 1.3.0.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/02/10 9.69 MB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2014/02/10 18.0 MB 9.0.30729
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/10/03 18.4 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/10/03 22.2 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Corporation 2016/10/08 17.4 MB 11.0.51106.1
Microsoft Wi-Fi Microsoft Corporation 2016/10/08 1.1604.4.0
Mozilla Firefox 47.0.2 (x86 ja) Mozilla 2017/01/08 183 MB 47.0.2
Mozilla Maintenance Service Mozilla 2017/01/08 341 KB 47.0.2.6148
MSN トラベル Microsoft Corporation 2016/10/08 3.0.4.336
MSN フード&レシピ Microsoft Corporation 2016/10/08 3.0.4.336
MSN ヘルスケア Microsoft Corporation 2016/10/08 3.0.4.336
music.jp  for FUJITSU MTI LTD 2016/10/08 2.11.0.1
My Cloud エコDX FUJITSU 2016/10/08 2.2.0.2
My Cloud エコDX Utility FUJITSU LIMITED 2015/06/14 316 MB 2.1.1.0
My Cloud エコDX設定Utility FUJITSU LIMITED 2016/03/07 3.48 MB 2.2.0.2
My Cloud スタート FUJITSU 2016/10/08 2.3.0.2
My Cloud データ連携Utility 富士通株式会社 2014/04/27 29.9 MB 1.00.03.006
My Cloud ビデオ サーバー DigiOn 2015/10/15 30.7 MB 3.3.30.0
My Cloud ビデオ2 DigiOn 2016/10/08 1.2.1.9
My Cloud フォト CYBERLINK.COM CORPORATION. 2016/10/08 1.0.3219.33373
My Cloud ホーム FUJITSU 2016/10/08 1.1.1.1
My Cloud ミュージック sMedio Inc 2016/10/08 1.0.0.110
My Cloud モバイルアクセス sMedio Inc 2016/10/08 2.3.0.42
My Cloud モバイルアクセス設定Utility FUJITSU LIMITED 2016/03/07 75.0 KB 3.00.0000
My Cloud リモートアクセス設定Utility FUJITSU LIMITED 2014/04/27 2.51 MB 1.0.000.008
NAVITIME for FUJITSU NAVITIMEJAPAN 2016/10/08 2.0.4.0
NetworkPlayer サーバー DigiOn 2013/10/03 11.5 MB 4.51
nissen Smart Catalog Nissen.Co.,LTD 2016/10/08 1.2.0.27
OneNote Microsoft Corporation 2017/01/05 17.7668.57681.0
Opener Tiny Opener 2016/12/13 1.2.28.0
PCカルテ FUJITSU LIMITED 2016/07/21 6.38 MB 2.4.0.0
People Microsoft Corporation 2016/12/08 10.1.3160.0
Pixiaフルセット版 Wacom Co., Ltd. 2014/03/05 81.6 MB 4.80d
Plugfree NETWORK 富士通株式会社 2016/10/08 7.97 MB 7.1.0.1
PreSonus Studio One 2 x64 PreSonus Audio Electronics 2016/10/08 166 MB 2.6.0.24200
Realtek Card Reader Realtek Semiconductor Corp. 2013/10/03 13.4 MB 6.2.9200.29068
Realtek Ethernet Controller Driver Realtek 2013/10/03 3.06 MB 8.18.621.2013
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/10/11 43.2 MB 6.0.1.7571
Roxio Creator LJ Roxio 2016/10/08 5.22 MB 12.2.37.11
Search App by Ask 2015/04/29
Skype プレビュー Skype 2016/12/14 11.10.145.0
Skype(TM) 7.30 Skype Technologies S.A. 2016/12/12 159 MB 7.30.105
Store Purchase App Microsoft Corporation 2016/10/08 11608.1000.2431.0
Sway Microsoft Corporation 2016/12/08 17.7668.45141.0
Twitter Twitter Inc. 2016/12/07 5.4.1.0
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/11/09 2.30 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/04/02 26.3 MB 16.0.1404.1
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/30 18.0 KB 16.0.1515.1
WebTablet FB Plugin 32 bit Wacom Technology Corp. 2016/10/08 2.1.0.3
WebTablet FB Plugin 64 bit Wacom Technology Corp. 2016/10/08 2.1.0.3
Windows スキャン Microsoft Corporation 2016/10/08 6.3.9654.17133
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02E3) System (07/02/2013 1.30.1.0) FUJITSU LIMITED 2016/10/08 07/02/2013 1.30.1.0
Windows リーディング リスト Microsoft Corporation 2016/10/08 6.3.9654.21234
Xbox Microsoft Corporation 2016/12/22 24.24.20004.0
Xbox Identity Provider Microsoft Corporation 2016/10/08 11.19.19003.0
Yahoo!オークション (ft) Yahoo! JAPAN 2016/10/08 2.0.0.4
お手入れナビ FUJITSU LIMITED 2013/10/03 2.01 MB 5.12.00.000
はじめに Microsoft Corporation 2016/12/14 4.2.29.0
アップデートナビ FUJITSU LIMITED 2016/04/09 4.29 MB 1.2.0076
アプリ インストーラー Microsoft Corporation 2016/10/08 1.0.2181.0
アプリ コネクター Microsoft Corporation 2016/10/08 1.3.3.0
アラーム & クロック Microsoft Corporation 2016/12/13 10.1612.3343.0
カメラ Microsoft Corporation 2016/12/13 2016.1101.20.0
キーボード状態表示ツール FUJITSU LIMITED 2013/10/03 140 KB 1.0.2.0
サポートツール 「パソコンの情報」と「トラブル解決ナビの起動」 FUJITSU LIMITED 2013/10/03 1.65 MB 1.2.0.0
シュフーチラシアプリ for FUJITSU TOPPAN PRINTING CO., LTD. 2016/10/08 1.4.0.0
スタートアップツール 東日本電信電話株式会社 2014/02/27 4.58 MB 6.1
ストア Microsoft Corporation 2016/12/14 11610.1001.23.0
スポーツ Microsoft Corporation 2016/12/16 4.18.37.0
ソフトウェアディスク検索 FUJITSU LIMITED 2013/10/03 960 KB 2.0.0.0
チケットメーカー FUJITSU LIMITED 2013/10/03 318 KB 3.1.0.0
ニュース Microsoft Corporation 2016/12/23 4.18.41.0
バックアップナビ FUJITSU LIMITED 2013/10/03 12.1 MB 2.3.0.0
パソコン乗換ガイド 株式会社富士通ソフトウェアテクノロジーズ 2013/10/03 30.5 MB 1.1.0.1
フィードバック Hub Microsoft Corporation 2017/01/05 1.1611.3471.0
フォト Microsoft Corporation 2016/11/23 16.1118.10000.0
ペイントツールSAI Ver.1 2016/10/08
ペンタブレット Wacom Technology Corp. 2016/10/08
ボイス レコーダー Microsoft Corporation 2016/12/14 10.1612.3352.0
マイミュージアム FUJITSU 2016/10/08 1.2.0.3
マップ Microsoft Corporation 2016/12/14 5.1611.3342.0
マネー Microsoft Corporation 2016/12/16 4.18.37.0
メッセージング Microsoft Corporation 2016/10/08 3.19.1001.0
メール/カレンダー Microsoft Corporation 2016/12/16 17.7714.42037.0
モバイル コンパニオン Microsoft Corporation 2016/10/08 10.1609.2561.0
リモートサポートツール 東日本電信電話株式会社 2014/02/27 784 KB
リーダー Microsoft Corporation 2016/10/08 6.4.9926.18471
ワコム タブレット Wacom Technology Corp. 2016/10/08 6.3.7-6
健康生活日記 FUJITSU 2016/10/08 2.0.1.4
天気 Microsoft Corporation 2016/12/16 4.18.37.0
宿探 for FUJITSU 繝舌Μ繝･繝ｼ繧ｳ繝槭・繧ｹ繹ｱ 2016/10/08 1.3.0.3
富士通PC 辞書セット(広辞苑第六版+リーダーズ英和辞典+新和英中辞典+現代用語の基礎知識＋学研パーソナル統合辞典) 富士通株式会社 2013/10/03 1.00 MB 2.0.0
富士通アドバイザー FUJITSU LIMITED 2016/07/21 11.6 MB 4.6.3.0
富士通パソコン お客様サポート FUJITSU 2016/10/08 1.0.0.2
富士通拡張機能ユーティリティ FUJITSU LIMITED 2013/10/03 157 KB 3.6.0.0
新しい Office を始めよう Microsoft Corporation 2016/11/16 17.7608.23501.0
映画 & テレビ Microsoft Corporation 2016/12/14 10.16112.10221.0
書き込み機能拡張ユーティリティ FUJITSU LIMITED 2013/10/03 1.92 MB 2.3.0.0
有料 Wi-Fi & 携帯ネットワーク Microsoft Corporation 2016/10/08 1.1607.6.0
楽天gateway 讌ｽ螟ｩ譬ｪ蠑丈ｼ夂､ｾ 2016/10/14 3.0.2.0
楽天レシピ 讌ｽ螟ｩ譬ｪ蠑丈ｼ夂､ｾ 2016/10/08 1.2.0.0
筆ぐるめ 20 富士ソフト株式会社 2013/10/03 611 MB 20.00.0008
自動サインイン設定 FUJITSU LIMITED 2013/10/03 207 KB 1.0.2.0
電卓 Microsoft Corporation 2016/12/14 10.1612.3341.0
電子辞書 FUJITSU LIMITED 2013/10/03 11.2 MB 5.0.2.0
電話 Microsoft Corporation 2016/10/08 2.17.27003.0
＠メニュー 2013/10/22 1.89 MB V7.0
＠メニュー FUJITSU LIMITED 2013/10/03 1.89 MB 7.2.0.0


次にCCの各ログ貼ります


有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run f.lux Flux Software LLC "C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
有効 HKCU:Run iCloudDrive Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
有効 HKCU:Run iCloudPhotos Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run swg Google Inc. "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
有効 HKLM:Run CorelDA COREL TW CORP. C:\Program Files (x86)\Corel\MLSDK\CorelDesktopAgent.exe
有効 HKLM:Run FJUPDNV_Chitose FUJITSU LIMITED C:\Program Files\Fujitsu\chitose\updatenv.exe
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run MMAPacth FUJITSU LIMITED C:\fujitsu\MMAPacth\gexc.exe
有効 HKLM:Run NetworkPlayerServerHelper DigiOn, Inc. "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
有効 HKLM:Run WindowsDefender "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
無効 Startup Common My Cloud リモートアクセス設定スタートアップ.lnk FUJITSU LIMITED C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCRemoteAccess.exe
無効 Startup Common スタートアップツール.lnk C:\windows\Installer\{59371BA1-09B5-41FC-A394-ED4A60EAB6B0}\_2D5B028BC6970090749C77.exe


有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task Buenosearch Updater C:\Users\masa\AppData\Local\\Buenosearch\\Buenosearch\\2.2.0.0\Buenosearchupdt.exe /updt
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task OneDrive Standalone Update Task C:\Users\masa\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
有効 Task OneDrive Standalone Update Task v2 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
無効 Task Optimize Start Menu Cache Files-S-1-5-21-1594266205-1355842802-1588290031-1001
有効 Task Optimize Start Menu Cache Files-S-1-5-21-1594266205-1355842802-1588290031-500
有効 Task RunAsStdUser Task C:\Users\masa\Downloads\VoiceRecorder 1.43\VoiceRecorder.exe
有効 Task {3AFEDCAD-4BEA-4147-8407-226FDCE0FA03} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\masa\Downloads\VoiceRecorder 1.43\uninstaller.exe"
有効 Task {4A38CD24-58F6-45A2-8126-B1E739993C5D} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\masa\Downloads\PreSonus Studio One 2 Installer (x64).exe" -d C:\Users\masa\Downloads
有効 Task {779C6082-720D-4365-8C7A-D857EF0EF406} Microsoft Corporation C:\windows\system32\pcalua.exe -a C:\Users\masa\Downloads\PaintToolSAI\sai.exe -d C:\Users\masa\Downloads\PaintToolSAI


有効 Directory MOBK McAfee, Inc. C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll
有効 Directory PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 Drive MOBK McAfee, Inc. C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll
有効 Drive PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 File McCtxMenuFrmWrk c:\PROGRA~1\mcafee\msc\MCCTXM~1.DLL
有効 File MOBK McAfee, Inc. C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll
有効 File PhotoStreamsExt Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll
有効 Folder McCtxMenuFrmWrk c:\PROGRA~1\mcafee\msc\MCCTXM~1.DLL
有効 Folder MOBK McAfee, Inc. C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll


有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll


有効 Extension Firefox Hello 1.3.2 Mozilla default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
有効 Extension Firefox Hotfix 20160826.01 Mozilla default-1425828209302 Firefox 47.0.2 C:\Users\masa\AppData\Roaming\Mozilla\Firefox\Profiles\54oicydw.default-1425828209302\extensions\firefox-hotfix@mozilla.org.xpi
有効 Extension Multi-process staged rollout 1.0 default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
有効 Extension Places Maintenance 2.0.2 Marco Bonardo default-1425828209302 Firefox 47.0.2 C:\Users\masa\AppData\Roaming\Mozilla\Firefox\Profiles\54oicydw.default-1425828209302\extensions\places-maintenance@bonardo.net.xpi
有効 Extension Pocket 1.0.2 default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
有効 Extension Websense Helper 1.0 default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Mozilla Firefox\browser\features\websensehelper@mozilla.org.xpi
有効 Plugin 1.4.8.866 Google Inc. default-1425828209302 Firefox 47.0.2 C:\Users\masa\AppData\Roaming\Mozilla\Firefox\Profiles\54oicydw.default-1425828209302\gmp-widevinecdm\1.4.8.866\widevinecdm.dll
無効 Plugin Google Update 1.3.32.7 Google Inc. default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
無効 Plugin Intel® Identity Protection Technology 4.0.5.0 Intel Corporation default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
無効 Plugin Intel® Identity Protection Technology 4.0.5.0 Intel Corporation default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
有効 Plugin Java Deployment Toolkit 8.0.710.15 11.71.2.15 default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npdeployJava1.dll
有効 Plugin Java(TM) Platform SE 8 U71 11.71.2.15 default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll
無効 Plugin OpenH264 Video Codec 1.4 default-1425828209302 Firefox 47.0.2 C:\Users\masa\AppData\Roaming\Mozilla\Firefox\Profiles\54oicydw.default-1425828209302\gmp-gmpopenh264\1.4\gmpopenh264.dll
有効 Plugin Primetime Content Decryption Module provided by Adobe Systems, Incorporated 17 Adobe Systems Inc default-1425828209302 Firefox 47.0.2 C:\Users\masa\AppData\Roaming\Mozilla\Firefox\Profiles\54oicydw.default-1425828209302\gmp-eme-adobe\17\eme-adobe.dll
有効 Plugin Shockwave Flash 24.0.0.186 Adobe Systems Incorporated default-1425828209302 Firefox 47.0.2 C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll
有効 Plugin WacomTabletPlugin 2.1.0.3 Wacom default-1425828209302 Firefox 47.0.2 C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll


有効 App Gmail 8.1 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google ドライブ 14.1 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Google オフライン ドキュメント 1.4 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Tabtter UserStreamsHelper 1.2.10 ユーザー 1 C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\anbkoicflbagjpoadmjemgjaaibdmien\1.2.10_0


以上です。
ログが足りない等々、不備があればご指摘くだされば幸いです。
それから、McAfeeを消してPCからセキュリティーソフトが取り払われた状態になってしまったのですが、何か代替品を入れるべきですか？それとも今は余計なものはPCに入れないべきでしょうか。
よろしくお願いします。

作業と報告、ご苦労様です。

>McAfeeを消してPCからセキュリティーソフトが取り払われた状態になってしまったのですが、何か代替品を入れるべきですか？それとも今は余計なものはPCに入れないべきでしょうか。

はい、先に消したマカフィーは基本的にはセキュリティソフトとは言えないものです。
>McAfee Security Scan Plus McAfee, Inc. 2016/12/28 10.2 MB 3.11.474.2

これはマカフィーとはいってもス手動スキャンと検出機能のみの簡易ツールで、常駐保護機能はありません。
これを入れるのは他社の常駐型セキュリティソフトを入れているPCで、補助として使いたい場合限定の場合です。
本来は複数の常駐型セキュリティソフトを入れると競合で深刻な不具合起こすため、同種のセキュリティソフトは複数入れることはできませんが、この簡易マカフィーだけは他社セキュリティソフトと併用可能です。

それとMaltaさんのPCはWin8か10のようですね。
Win8以降ではWindows自体にアンチウイルスソフトとして「Windows Defender」が入っています。
これはWin7以前では「Microsoft Security Essentials」(MSE)と呼ばれているものでしたが、Win8以降ではその範囲を広げてWindowsに最初から入っています。

ここで注意するのはWin8以降のPCに他社のアンチウイルスソフトを入れると、WDは自動的に無効停止状態になります。
前述のセキュリティソフト競合を避けるための仕様です。
他社のアンチウイルスソフトをアンインストールするとその時点でWDは動作再開します。

現在そのPCに他社のアンチウイルスソフトを入れてないならWDが機能しているので最低限のウイルス対策は動いているでしょう。

ですがWDは専門他社のセキュリティソフトと比べると、機能的に届かない部分もあり、セキュリティを固めたいなら専門他社の信頼できるセキュリティソフトを入れたほうが無難です。
いまはまだいいので、今回のスレが解決するまでに何か候補に考えているセキュリティソフトがあればそのアプリ名を教えてください。
よくわからないならそれもあとで自分から案内してもいいです。

さて、続きのログと報告も見せてもらいました。
ルーター更新はできたようなのでいいですね。

その後まだ前述の異常が出ていればそのことも教えてください。

それとまた続きの作業もしましょう。
今のところはログ上ではおかしなところは見えませんが、この時点でもまだ全体は解析できてないので油断しないでください。

次は下記のツールを準備してください。
「AdwCleaner」（通称：AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンです。アクセスしてファイルをデスクトップにでも保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。
使い方は下記サイト様に詳しい説明があるのでサンショウウオ↓
http://www.japan-secure.com/entry/adwcleaner.html

Malwarebytes' Anti-Malware（通称・MBAM）
本家サイト
http://www.malwarebytes.org/

ダウンロード
https://www.malwarebytes.org/mwb-download/thankyou/
ファイル直リンです。保存しておいてください。

使い方の説明サイト
http://www.gigafree.net/security/MalwarebytesAnti-MalwareFree.html

準備できたらMBAMをインストールとアップデートまでしておいてください。
ただし、ここではまだスキャンはしないように。

続いてここで一度ACを起動してください。
起動するとまず定義の更新が行われるはずなので、更新だけしてから、それができたらACは一旦終了してください。
ここではスキャンもしなくていいです。

両ツールのアップデートができたらディスククリーンアップを使ってゴミファイルの掃除したあと、PCをセーフモードで再起動してしてください。

続いてPCをセーフモード起動してから、先に一度起動したACを再度起動してください。
起動したら今度は「スキャン」したあと、そのスキャン終了後に検出されたものがあったら「除去」を押してください。
表示された画面で「はい」を選択すると処置開始されます。

処置完了したらそこでPCを通常モードで再起動してください。

再起動後にACのあらたなログが出るので、それをデスクトップにでも保存しておいてください。
ですが、もし作業後にログが出ないorわからない場合はマイコンピュータのCドライブを開くとその直下に以下のような名前のファイルが作成されているので、それがACのログです。
>AdwCleaner[英数字].txt
同じような名前のログが複数ある時は、作成日時が作業処置時のファイルが対象のログです。

ACでの作業ができたら次はMBAMの作業です。
またセーフモード起動してからMBAM起動してスキャンしてください。
MBAM起動したら「スキャン」タブで「カスタムスキャン」選択後、Cドライブを含む全ドライブを選択してください。
それとルートキットスキャンの項目もチェック入れておいてください。

この形でスキャンすると時間はかかりますができるだけ細かくスキャンするためです。

両ツールのスキャンの順番はどちらからでもいいですが、なにか検出されたらそれを選択して「remove」（隔離）したあと、再起動を促す表示が出たらそこで一度PCを再起動してください。
もし再起動表示が出ないときは手動で再起動してください。

またMBAMスキャン終了後、画面右下にその結果を知らせるメッセージが出るので、それを押すとその結果が表示されるはずです。
そこで「ログを保存」を押すとそのログが保存可能になります。
そのログをデスクトップにでも保存しておいてください。
このログ確認が特に重要なので、忘れないようにお願いします。

このあとしばらくPC状態を様子見後、作業後に保存したACとMBAMのログを返信に貼り付けて、それを状態報告とともにレスで見せてください

こんばんは。
ご指導いただいた手順通り進めましたが、いくつか不安な点もあるのでログを貼りつつお聞きします。

マカフィーはセキュリティソフトではなかったんですね。そこからして無知でした。
よろしければセキュリティソフトの件もお教えいただければ嬉しいです。

ルーターの更新の時点ではまだ異常は続いておりました。
しかし今回MBAMを使ったあとは、新しいタブは開くものの、そのページにはMBAMのロゴが表示されるだけで今までのようなものとは違いました。が、やはりiPhoneでは同じ現象が続きます…。
ちなみに今更ですが…、2525動画の動画視聴ページでは、リンクではなくてそのページのどこかをクリックしただけで新しいタブが開き、知らないページに飛ばされ、ポップアップが表示されたり、悪いときにはそのポップアップが消えなかったりページを閉じられないようにされたり…という現象でした。2525だけ同じページであっても一定時間が過ぎると必ずこの現象が起きます。リンクを踏んでいないのにも関わらずどこかに飛ばされるのは何故でしょう…？

ACのスキャンでは検出されたものはありませんでした。
それと、Cドライブの中にログがありませんでしたので、アプリ内のログファイルから取ってきたのですが大丈夫でしょうか…一応ログ貼ります。


# AdwCleaner v6.042 - ログファイルの作成日 08/01/2017 作成時間 20:11:33
# Malwarebytesによる 06/01/2017 の更新日
# データベース : 2017-01-06.1 [ローカル]
# オペレーティングシステム : Windows 10 Home (X64)
# ユーザー名 : masa - TRISTAN
# 実行場所 : C:\Users\masa\Downloads\AdwCleaner.exe
# モード：スキャン
# サポート : https://www.malwarebytes.com/support



***** [ サービス ] *****

悪意あるサービスを検出しませんでした。


***** [ フォルダ ] *****

悪意あるフォルダを検出しませんでした。


***** [ ファイル ] *****

悪意あるファイルを検出しませんでした。


***** [ DLL ] *****

悪意あるDLLsファイルを検出しませんでした。


***** [ WMI ] *****

悪意あるキーを検出しませんでした。


***** [ ショートカット ] *****

改ざん済みショートカットを検出しませんでした。


***** [ スケジュール済みタスク ] *****

悪意あるタスクを検出しませんでした。


***** [ レジストリ ] *****

悪意あるレジストリ要素を検索しています ...


***** [ Webブラウザ ] *****

悪意あるFirefoxベースの要素を検出しませんでした。
悪意あるChromiumベースの要素を検出しませんでした。

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [18368 バイト] - [26/11/2016 08:15:47]
C:\AdwCleaner\AdwCleaner[C2].txt - [1440 バイト] - [02/12/2016 03:46:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [17463 バイト] - [26/11/2016 07:02:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [1831 バイト] - [02/12/2016 03:45:50]
C:\AdwCleaner\AdwCleaner[S2].txt - [1902 バイト] - [08/01/2017 19:58:09]
C:\AdwCleaner\AdwCleaner[S3].txt - [1819 バイト] - [08/01/2017 20:11:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1896 バイト] ##########


以上ACログです。
次いでMBAMログを貼ります。こちらもまた作業後ログが出てこず、アプリの中からログらしきものを引っ張ってきました…

-スキャンの詳細-
プロセス: 0
(悪意のあるアイテムは検出されませんでした)

モジュール: 0
(悪意のあるアイテムは検出されませんでした)

レジストリキー: 0
(悪意のあるアイテムは検出されませんでした)

レジストリ値: 0
(悪意のあるアイテムは検出されませんでした)

データストリーム: 0
(悪意のあるアイテムは検出されませんでした)

フォルダ: 0
(悪意のあるアイテムは検出されませんでした)

ファイル: 30
PUP.Optional.InstallCore, C:\$RECYCLE.BIN\S-1-5-21-1594266205-1355842802-1588290031-1001\$RNV0BRP.ZIP, 隔離済み, [8], [300936],1.0.0
PUP.Optional.InstallCore, C:\$RECYCLE.BIN\S-1-5-21-1594266205-1355842802-1588290031-1001\$RTLA65M.ZIP, 隔離済み, [8], [300936],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\1.3.26.6\CHROMEXT64.DLL, 隔離済み, [152], [94008],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\1.3.26.6\EDINPDEG.DLL, 隔離済み, [152], [83472],1.0.0
PUP.Optional.PayByAds, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\1.3.26.6\RES.DLL, 隔離済み, [3833], [299212],1.0.0
PUP.Optional.OptiAds, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\2.1.0.0\BUENOSEARCH.EXE, 隔離済み, [19468], [301138],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\1.3.26.6\JNPLBPDN.DLL, 隔離済み, [152], [85579],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\1.3.26.6\HLPR64.EXE, 隔離済み, [152], [88214],1.0.0
PUP.Optional.OptiAds, C:\ADWCLEANER\QUARANTINE\FILES\KMKYTTFQPRQSJAMWOEKHLGKOXACOJQNX\BUENOSEARCH\2.1.0.0\BUENOSEARCHUPDT.EXE, 隔離済み, [19468], [301138],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\BUENOSEARCHAPP.DLL, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\BUENOSEARCHENG.DLL, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\BUENOSEARCHSRV.EXE, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\BUENOSEARCHTLBR.DLL, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\UNINSTALL.EXE, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.BuenoSearch, C:\ADWCLEANER\QUARANTINE\FILES\FQKOTGQIIAWGUJETYVNJNZBQSNRIIKRX\BUENOSEARCH\1.8.28.7\BH\BUENOSEARCH.DLL, 隔離済み, [3742], [8338],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\JXZWEGKRDHBQXNAXUOBQQYECOWKOLBBP\SHPLUS.DLL, 隔離済み, [152], [321812],1.0.0
PUP.Optional.Montiera, C:\ADWCLEANER\QUARANTINE\FILES\JXZWEGKRDHBQXNAXUOBQQYECOWKOLBBP\SHUPD.EXE, 隔離済み, [152], [321812],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCLDR.EXE, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCLDR_X64.EXE, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCSRV.DLL, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCSRVSTUB.DLL, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCSRVSTUB_X64.DLL, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Generic, C:\ADWCLEANER\QUARANTINE\FILES\TSGTXGQNQQEMNKEHQHPADWMAWOGPPBXC\TOOLBAR\UPDATER\IDC\IDCSRV_X64.DLL, 隔離済み, [1629], [345551],1.0.0
PUP.Optional.ASK.Gen, C:\USERS\MASA\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\55HA0F9Q.DEFAULT\EXTENSIONS\TOOLBAR_ORJ-ST-SPE@APN.ASK.COM.XPI, 隔離済み, [14602], [245526],1.0.0
PUP.Optional.OpenCandy, C:\USERS\MASA\APPDATA\ROAMING\RMI\OFFER_DOWNLOADER.EXE, 隔離済み, [645], [144862],1.0.0
PUP.Optional.BuenoSearch, C:\USERS\MASA\DESKTOP\OLD FIREFOX DATA\55HA0F9Q.DEFAULT\EXTENSIONS\FFXTLBR@BUENOSEARCH.COM\UNINSTALL.EXE, 隔離済み, [3742], [76301],1.0.0
PUP.Optional.SofTonic, C:\USERS\MASA\DOWNLOADS\SOFTONICDOWNLOADER_FOR_METROTWIT.EXE, 隔離済み, [3715], [8262],1.0.0
PUP.Optional.InstallCore, C:\USERS\MASA\DOWNLOADS\IMAGERESIZERSETUP.EXE, 隔離済み, [8], [274630],1.0.0
PUP.Optional.InstallCore, C:\USERS\MASA\DOWNLOADS\ZIPINSTALL.ZIP, 隔離済み, [8], [300936],1.0.0
PUP.Optional.OpenCandy, C:\USERS\MASA\DOWNLOADS\METROTWIT-1.1.0.EXE, 隔離済み, [645], [297667],1.0.0

物理セクタ: 0
(悪意のあるアイテムは検出されませんでした)


(end)


もしこれではダメだというときはやり直します。
よろしくお願いします。

レスが遅くなってすみません。先程まで風呂入ってました（←うちの風呂には由○かおるはいません

>ルーターの更新の時点ではまだ異常は続いておりました。
>しかし今回MBAMを使ったあとは、新しいタブは開くものの、そのページにはMBAMのロゴが表示されるだけで今までのようなものとは違いました。が、やはりiPhoneでは同じ現象が続きます

はい、ルーター改ざんの疑いはまだ晴れてませんが、その他に重要なことをひとつ思い出したので追加で確認します。

その異常が出るのはブラウザにChromeをお使いの時ですか？
PCとスマホでともにChromeをお使いなら、それも同期（ログイン）状態で使っていますか？

Chromeの拡張に仕込まれたモノが原因の異常では、同期状態で使う他のPCやスマホでも同じ異常が発生します。
なのでこの場合はもうひと手間かけて処置することになります。

Chromeの同期の有無について次回レス時に教えてください。

>ACのスキャンでは検出されたものはありませんでした。

そのようですね。ではそこはいいです。

>それと、Cドライブの中にログがありませんでしたので、アプリ内のログファイルから取ってきたのですが大丈夫でしょうか

これも正しい対応です。
MBAMで悪名高いBuenoSearch等が検出されてますね。
それもMBAM上から処置したならいいです。

では今度は別のツールで別角度からも調べます。

以下のツールを準備してください。
OTL(OldTimer Listit)
「Download」ボタンからDLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。
ただし、Windows10をお使いの場合は本体ファイルをそのまま削除すればいいです。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで1万文字以内に分割して、複数回に分けてレス送信してください。
1万文字を越えた投稿はfc2の文字数制限で途切れてしまうためです。
http://www1.odn.ne.jp/megukuma/count.htm

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです。
それとChromeとその同期についてのお返事もお願いします

こんばんは、今回もよろしくお願いします。
普段は、WEB閲覧はPCではクロームを、iPhoneではsafariを使っています。
それとPCのクロームは、一度現象が治らないものかと思いインストールし直してリセットしています。
ログ貼ります

OTL logfile created on: 2017/01/12 20:35:47 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\masa\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.91 Gb Total Physical Memory | 5.23 Gb Available Physical Memory | 66.16% Memory free
9.16 Gb Paging File | 6.32 Gb Available in Paging File | 69.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 221.94 Gb Total Space | 132.72 Gb Free Space | 59.80% Space Free | Partition Type: NTFS
Drive D: | 221.94 Gb Total Space | 221.77 Gb Free Space | 99.92% Space Free | Partition Type: NTFS

Computer Name: TRISTAN | User Name: masa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2017/01/12 20:34:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\masa\Downloads\OTL.exe
PRC - [2017/01/12 20:08:35 | 001,517,280 | ---- | M] (Microsoft Corporation) -- C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2016/12/17 06:17:18 | 000,288,920 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
PRC - [2016/11/17 10:58:42 | 000,356,664 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
PRC - [2016/11/17 10:58:38 | 000,067,384 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2016/11/17 10:58:18 | 000,110,392 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
PRC - [2016/11/17 01:28:56 | 000,067,384 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
PRC - [2016/11/17 01:28:54 | 001,269,048 | ---- | M] (Apple, Inc.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
PRC - [2014/02/04 11:18:10 | 001,125,104 | ---- | M] (Fujitsu) -- C:\Program Files (x86)\Fujitsu\F-LINK\WSDMAIN.exe
PRC - [2014/02/04 11:17:44 | 000,261,872 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files (x86)\Fujitsu\F-LINK\DEUService.exe
PRC - [2013/12/05 01:35:57 | 000,621,336 | ---- | M] (Wacom Technology, Corp.) -- C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
PRC - [2013/11/11 15:21:40 | 000,981,304 | ---- | M] (Corel Corp.) -- C:\Program Files (x86)\Corel\FaceEngine\FaceEngine.exe
PRC - [2013/10/24 07:39:14 | 001,017,224 | ---- | M] (Flux Software LLC) -- C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe
PRC - [2013/10/15 15:34:30 | 000,223,056 | ---- | M] (富士通株式会社) -- C:\Program Files (x86)\Fujitsu\FJAgent\Engines\CheckCdsEngine\CheckCdsEngine.exe
PRC - [2013/10/11 19:48:22 | 001,892,712 | ---- | M] (Corel) -- C:\Program Files (x86)\Corel\MLE2\MLEngine.exe
PRC - [2013/10/10 21:24:08 | 000,095,056 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\MCRemoteAccess\svcMPPFclient.exe
PRC - [2013/09/09 13:08:26 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/09/09 13:08:22 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013/08/10 03:13:46 | 000,156,488 | ---- | M] (Corel) -- C:\Program Files (x86)\Corel\Corel Digital Studio SE\GeneralMediaParser.exe
PRC - [2013/08/10 03:12:36 | 000,030,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
PRC - [2013/07/19 10:59:00 | 000,237,976 | ---- | M] (富士通株式会社) -- C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe
PRC - [2013/06/26 18:35:36 | 000,083,752 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files (x86)\Fujitsu\DustSolution\HokoriApp.exe
PRC - [2012/10/09 08:15:51 | 000,039,808 | ---- | M] (Wacom Technology) -- C:\Program Files\Tablet\Wacom\WacomHost.exe
PRC - [2012/08/10 17:13:38 | 000,448,384 | ---- | M] (DigiOn, Inc.) -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
PRC - [2012/08/10 17:13:38 | 000,116,608 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
PRC - [2010/05/20 16:15:00 | 000,110,736 | R--- | M] (InterVideo) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2010/03/11 14:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2016/11/17 01:29:02 | 001,041,720 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2016/11/17 01:28:48 | 000,189,752 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
MOD - [2016/09/01 18:13:20 | 000,080,184 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2013/11/11 15:21:38 | 000,773,944 | ---- | M] () -- C:\Program Files (x86)\Corel\FaceEngine\FaceCoreEngine.dll
MOD - [2013/08/10 03:14:02 | 000,694,600 | ---- | M] () -- C:\Program Files (x86)\Corel\Corel Digital Studio SE\uviplA6.dll
MOD - [2013/08/10 03:14:00 | 000,026,952 | ---- | M] () -- C:\Program Files (x86)\Corel\Corel Digital Studio SE\uvipl.dll
MOD - [2012/08/10 15:08:54 | 000,200,704 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_av.dll
MOD - [2012/08/10 15:08:54 | 000,184,320 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_util.dll
MOD - [2012/08/10 15:08:54 | 000,163,840 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_upnp.dll
MOD - [2012/08/10 15:08:54 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_msd.dll
MOD - [2012/08/10 15:08:54 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_media.dll
MOD - [2012/08/10 15:08:54 | 000,049,152 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_access_control.dll
MOD - [2012/08/10 15:08:54 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_char_util.dll
MOD - [2012/08/10 15:08:54 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_device_manager.dll
MOD - [2012/08/10 15:08:54 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_printer.dll
MOD - [2012/07/03 13:24:00 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_crawler_fs.dll
MOD - [2012/07/03 13:24:00 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_playlist.dll
MOD - [2012/07/03 13:24:00 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_metadata.dll
MOD - [2012/07/03 13:24:00 | 000,020,480 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\dixim_crawler.dll
MOD - [2012/02/21 16:23:52 | 000,559,244 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\sqlite3.dll
MOD - [2012/02/21 16:23:52 | 000,374,784 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\libxml2.dll
MOD - [2012/02/21 16:23:52 | 000,290,816 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\onig.dll
MOD - [2009/04/30 17:24:42 | 000,180,224 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\uchardet.dll
MOD - [2008/05/13 19:47:28 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\libexpat.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/12/14 13:13:42 | 004,317,648 | ---- | M] (Malwarebytes) [Auto | Running] -- C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe -- (MBAMService)
SRV:[b]64bit:[/b] - [2016/12/09 19:28:24 | 000,764,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2016/12/09 18:24:21 | 002,275,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:22:23 | 000,082,944 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:50 | 000,339,456 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:10 | 000,407,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:19:59 | 000,411,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:19:35 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:16:35 | 000,560,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2016/11/11 18:14:35 | 002,104,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:57 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/11/11 18:06:19 | 000,650,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2016/11/11 18:05:32 | 004,136,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:16 | 000,691,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:03 | 001,232,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:30:35 | 000,635,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:19:44 | 000,805,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:[b]64bit:[/b] - [2016/11/02 19:16:47 | 000,265,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:16:27 | 000,770,560 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2016/10/15 12:42:44 | 000,539,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2016/10/15 12:37:03 | 001,980,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,447,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:21 | 001,312,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:21 | 001,020,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:21 | 000,781,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:21 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:16 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:16 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:16 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 000,095,232 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2016/10/05 18:18:56 | 000,983,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:50 | 000,082,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:47 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:18 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:10 | 001,836,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:06 | 000,347,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:42 | 000,088,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,161,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,055,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:37 | 000,718,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,183,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,827,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_b457e9)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:20 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:19 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,287,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,122,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,590,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 001,512,448 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 001,184,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,574,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,387,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,358,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,326,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:07 | 001,159,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,729,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,197,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,321,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2016/05/27 15:50:54 | 000,374,360 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV:[b]64bit:[/b] - [2016/02/17 20:13:48 | 000,072,128 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe -- (SKARUTE)
SRV:[b]64bit:[/b] - [2016/02/09 09:46:51 | 000,015,872 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\chitose\updnvsrv.exe -- (UpdateNaviInstallService)
SRV:[b]64bit:[/b] - [2014/06/20 10:30:38 | 000,189,912 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2014/06/20 10:23:12 | 000,219,752 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2013/12/05 01:35:57 | 000,621,336 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Wacom\WTabletServicePro.exe -- (WTabletServicePro)
SRV:[b]64bit:[/b] - [2013/08/21 13:52:26 | 002,219,520 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe -- (PFNService)
SRV:[b]64bit:[/b] - [2013/08/08 17:10:46 | 000,084,888 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe -- (FJAutoSignIn)
SRV:[b]64bit:[/b] - [2013/07/18 17:07:44 | 000,074,448 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe -- (FUJ02E3Service)
SRV:[b]64bit:[/b] - [2013/05/11 17:45:54 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/05/11 17:45:38 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2008/05/02 07:37:30 | 004,510,504 | ---- | M] (Wacom Technology, Corp.) [Disabled | Stopped] -- C:\Windows\SysNative\Pen_Tablet.exe -- (TabletServicePen)
SRV - [2017/01/08 00:28:32 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016/12/14 17:01:15 | 000,270,936 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016/12/09 17:54:48 | 000,483,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2016/11/11 16:19:35 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2016/11/11 16:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2016/10/08 23:41:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2016/09/20 12:54:54 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2016/07/16 20:42:55 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2016/07/16 20:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2016/05/27 15:50:54 | 000,302,176 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2015/05/18 11:15:16 | 000,028,424 | ---- | M] (FUJITSU LIMITED) [On_Demand | Stopped] -- C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe -- (MyCloudEcoSvc)
SRV - [2014/04/22 15:07:34 | 000,323,584 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\Cindy\dms_sync_svc.exe -- (My Cloud ビデオ サーバー＋)
SRV - [2014/04/22 15:07:32 | 000,208,896 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\VDMS\dms_svc.exe -- (My Cloud ビデオ サーバー)
SRV - [2014/02/04 11:17:44 | 000,261,872 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files (x86)\Fujitsu\F-LINK\DEUService.exe -- (DataExchangeUtilityService)
SRV - [2013/10/10 21:24:08 | 000,095,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Fujitsu\MCRemoteAccess\svcMPPFclient.exe -- (MyCloudRemoteAccessSvc)
SRV - [2013/10/10 21:24:08 | 000,084,304 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Fujitsu\MCRemoteAccess\MCTunnel.exe -- (MyCloudRemoteAccessConnectSvc)
SRV - [2013/09/09 13:08:26 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/09/09 13:08:22 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/08/10 03:12:36 | 000,030,536 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe -- (UDSS)
SRV - [2013/07/19 10:59:00 | 000,237,976 | ---- | M] (富士通株式会社) [Auto | Running] -- C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe -- (FJAgentSVC)
SRV - [2012/08/10 17:13:38 | 000,116,608 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe -- (NetworkPlayer Server)
SRV - [2010/05/20 16:15:00 | 000,110,736 | R--- | M] (InterVideo) [Auto | Running] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2010/04/13 20:11:18 | 000,231,224 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe -- (MOBKbackup)
SRV - [2010/03/11 14:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)

ログ②です

[color=#E56717]========== Driver Services (All) ==========[/color]

DRV:[b]64bit:[/b] - [2017/01/12 20:28:27 | 000,102,856 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\farflt.sys -- (MBAMFarflt)
DRV:[b]64bit:[/b] - [2017/01/12 20:28:27 | 000,091,584 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebProtection)
DRV:[b]64bit:[/b] - [2017/01/12 20:28:08 | 000,043,968 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtection)
DRV:[b]64bit:[/b] - [2017/01/12 20:28:07 | 000,250,816 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2017/01/12 20:27:47 | 000,077,408 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mbae64.sys -- (ESProtectionDriver)
DRV:[b]64bit:[/b] - [2017/01/08 19:50:50 | 000,176,064 | ---- | M] (Malwarebytes) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\MBAMChameleon.sys -- (MBAMChameleon)
DRV:[b]64bit:[/b] - [2016/12/09 19:30:39 | 000,377,184 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2016/12/09 19:20:20 | 002,189,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV:[b]64bit:[/b] - [2016/12/09 19:18:47 | 000,624,048 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:[b]64bit:[/b] - [2016/11/11 19:13:08 | 000,352,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\fastfat.sys -- (fastfat)
DRV:[b]64bit:[/b] - [2016/11/11 19:12:17 | 000,128,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\partmgr.sys -- (partmgr)
DRV:[b]64bit:[/b] - [2016/11/11 19:00:25 | 000,219,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2016/11/11 19:00:24 | 000,223,584 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV:[b]64bit:[/b] - [2016/11/11 19:00:00 | 000,335,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pci.sys -- (pci)
DRV:[b]64bit:[/b] - [2016/11/11 18:59:55 | 000,433,504 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\rdbss.sys -- (rdbss)
DRV:[b]64bit:[/b] - [2016/11/11 18:26:51 | 000,258,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2016/11/11 18:26:20 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\modem.sys -- (Modem)
DRV:[b]64bit:[/b] - [2016/11/11 18:15:06 | 000,282,624 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV:[b]64bit:[/b] - [2016/11/11 18:14:34 | 000,713,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\srv2.sys -- (srv2)
DRV:[b]64bit:[/b] - [2016/11/02 20:12:35 | 002,255,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\SysNative\drivers\ntfs.sys -- (NTFS)
DRV:[b]64bit:[/b] - [2016/11/02 20:03:21 | 000,714,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:[b]64bit:[/b] - [2016/11/02 19:55:52 | 000,048,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:[b]64bit:[/b] - [2016/11/02 19:23:23 | 000,101,888 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\bowser.sys -- (bowser)
DRV:[b]64bit:[/b] - [2016/10/15 13:37:01 | 000,063,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2016/10/15 13:30:16 | 000,557,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2016/10/15 13:21:45 | 002,537,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tcpip.sys -- (Tcpip6)
DRV:[b]64bit:[/b] - [2016/10/15 13:21:45 | 002,537,824 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tcpip.sys -- (Tcpip)
DRV:[b]64bit:[/b] - [2016/10/15 13:21:43 | 001,100,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\http.sys -- (HTTP)
DRV:[b]64bit:[/b] - [2016/10/15 13:21:41 | 000,584,032 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afd.sys -- (AFD)
DRV:[b]64bit:[/b] - [2016/10/15 12:31:37 | 000,227,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:34 | 000,409,088 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\srv.sys -- (srv)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,719,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,649,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,133,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecdd.sys -- (KSecDD)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,108,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:26 | 000,450,392 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mrxsmb.sys -- (mrxsmb)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:26 | 000,248,320 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\srvnet.sys -- (srvnet)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 000,168,800 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 000,119,648 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,130,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,081,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbdhid.sys -- (kbdhid)
DRV:[b]64bit:[/b] - [2016/10/08 23:41:08 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidusb.sys -- (HidUsb)
DRV:[b]64bit:[/b] - [2016/10/08 23:31:56 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2016/10/05 19:35:31 | 000,279,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2016/10/05 19:22:30 | 001,181,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ndis.sys -- (NDIS)
DRV:[b]64bit:[/b] - [2016/10/05 19:09:07 | 000,064,352 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:[b]64bit:[/b] - [2016/10/05 18:34:11 | 000,144,896 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\dfsc.sys -- (Dfsc)
DRV:[b]64bit:[/b] - [2016/10/05 18:20:40 | 000,143,872 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mrxdav.sys -- (MRxDAV)
DRV:[b]64bit:[/b] - [2016/09/10 22:21:43 | 000,118,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2016/07/17 07:20:30 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV:[b]64bit:[/b] - [2016/07/17 07:20:29 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2016/07/17 07:20:23 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2016/07/17 07:20:22 | 000,177,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpdr.sys -- (RDPDR)
DRV:[b]64bit:[/b] - [2016/07/16 20:44:01 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:06 | 000,123,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,290,144 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,044,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,212,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipnat.sys -- (IPNAT)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,104,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rasl2tp.sys -- (Rasl2tp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,096,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\raspptp.sys -- (PptpMiniport)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,079,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wanarp.sys -- (wanarpv6)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,079,872 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\wanarp.sys -- (wanarp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,077,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rassstp.sys -- (RasSstp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndproxy.sys -- (ndproxy)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndistapi.sys -- (NdisTapi)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mstee.sys -- (MSTEE)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mspqm.sys -- (MSPQM)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mspclock.sys -- (MSPCLOCK)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,189,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiswan.sys -- (ndiswanlegacy)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,189,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiswan.sys -- (NdisWan)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,107,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mskssrv.sys -- (MSKSSRV)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ksthunk.sys -- (ksthunk)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,723,968 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\PEAuth.sys -- (PEAUTH)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,320,000 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\udfs.sys -- (udfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,172,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,085,344 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\fileinfo.sys -- (FileInfo)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,062,816 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,928,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,391,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volsnap.sys -- (volsnap)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,367,456 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volmgrx.sys -- (volmgrx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,279,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\netbt.sys -- (NetBT)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,267,104 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,216,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WUDFRd.sys -- (WUDFWpdMtp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,216,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WUDFRd.sys -- (WUDFWpdFs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,216,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WUDFRd.sys -- (WUDFRd)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,099,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,092,160 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cdfs.sys -- (cdfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:32 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:28 | 000,107,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:28 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,861,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Wdf01000.sys -- (Wdf01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,377,696 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\fltMgr.sys -- (FltMgr)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,361,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\msrpc.sys -- (MsRPC)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,334,848 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\exfat.sys -- (exfat)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,263,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,201,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,151,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tdx.sys -- (tdx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,104,800 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mountmgr.sys -- (mountmgr)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,068,608 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\SysNative\drivers\npfs.sys -- (Npfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndisuio.sys -- (Ndisuio)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,051,552 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\nsiproxy.sys -- (nsiproxy)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,031,232 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\WINDOWS\SysNative\drivers\msfs.sys -- (Msfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\null.sys -- (Null)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,126,304 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\mup.sys -- (Mup)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:19 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:18 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:17 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\beep.sys -- (Beep)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,125,952 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\luafv.sys -- (luafv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,035,840 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\filetrace.sys -- (Filetrace)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,533,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nwifi.sys -- (NativeWifiP)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vwififlt.sys -- (vwififlt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,158,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tunnel.sys -- (tunnel)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,081,408 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rspndr.sys -- (rspndr)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,081,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\raspppoe.sys -- (RasPppoe)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lltdio.sys -- (lltdio)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tcpipreg.sys -- (tcpipreg)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,114,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bridge.sys -- (MsBridge)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,057,184 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\netbios.sys -- (NetBIOS)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,035,680 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,028,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\asyncmac.sys -- (AsyncMac)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irenum.sys -- (IRENUM)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,168,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,156,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\registry.sys -- (clreg)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,066,560 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mpsdrv.sys -- (mpsdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,160,608 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\pacer.sys -- (Psched)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,085,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rasacd.sys -- (RasAcd)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,210,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,090,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,088,576 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,535,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,501,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbhub.sys -- (usbhub)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,381,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,169,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbccgp.sys -- (usbccgp)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,137,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,129,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBSTOR.SYS -- (USBSTOR)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,096,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,096,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbehci.sys -- (usbehci)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,089,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winusb.sys -- (WINUSB)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbuhci.sys -- (usbuhci)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbohci.sys -- (usbohci)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,176,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,114,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\i8042prt.sys -- (i8042prt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,108,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbth.sys -- (HidBth)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,064,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,062,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbdclass.sys -- (kbdclass)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mouclass.sys -- (mouclass)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,050,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,033,280 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mouhid.sys -- (mouhid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sermouse.sys -- (sermouse)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,017,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swenum.sys -- (swenum)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 002,104,160 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,842,584 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,705,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpi.sys -- (ACPI)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,575,840 | ---- | M] (LSI Corporation, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\megasr.sys -- (megasr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,526,176 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,412,000 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorV.sys -- (iaStorV)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,346,976 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,277,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msiscsi.sys -- (iScsiPrt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,235,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,173,056 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cdrom.sys -- (cdrom)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,166,752 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\vsmraid.sys -- (vsmraid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,166,240 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\nvstor.sys -- (nvstor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,150,368 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\nvraid.sys -- (nvraid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,134,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\intelppm.sys -- (intelppm)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,131,936 | ---- | M] (PMC-Sierra, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\arcsas.sys -- (arcsas)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,123,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\scmdisk0101.sys -- (scmdisk0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,123,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdk8.sys -- (AmdK8)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,120,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,119,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\processr.sys -- (Processor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,110,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sbp2port.sys -- (sbp2port)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,108,896 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,108,896 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas.sys -- (LSI_SAS)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,105,824 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,101,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\disk.sys -- (disk)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,101,216 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,096,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\parport.sys -- (Parport)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,089,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IPMIDrv.sys -- (IPMIDRV)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,083,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serial.sys -- (Serial)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,082,776 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,081,760 | ---- | M] (Silicon Integrated Systems) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sisraid4.sys -- (SiSRaid4)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,080,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volmgr.sys -- (volmgr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,077,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,064,864 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,061,792 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,059,744 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\megasas.sys -- (megasas)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\umbus.sys -- (umbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,044,896 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sisraid2.sys -- (SiSRaid2)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,043,360 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mssmbios.sys -- (mssmbios)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,036,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fdc.sys -- (fdc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,032,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,032,096 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacompen.sys -- (WacomPen)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\atapi.sys -- (atapi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\flpydisk.sys -- (flpydisk)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serenum.sys -- (Serenum)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,022,880 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\isapnp.sys -- (isapnp)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,019,296 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\intelide.sys -- (intelide)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,018,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\msisadrv.sys -- (msisadrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wmiacpi.sys -- (WmiAcpi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sfloppy.sys -- (sfloppy)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\pciide.sys -- (pciide)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\errdev.sys -- (ErrDev)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 003,418,976 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,533,856 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,083,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hdaudbus.sys -- (HDAudBus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,048,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\monitor.sys -- (monitor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,016,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\drmkaud.sys -- (drmkaud)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\pcmcia.sys -- (pcmcia)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,104,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,102,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbcir.sys -- (usbcir)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthmodem.sys -- (BTHMODEM)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\circlass.sys -- (circlass)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,046,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidir.sys -- (HidIr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,036,192 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,027,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbprint.sys -- (usbprint)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:[b]64bit:[/b] - [2016/05/27 15:50:52 | 007,936,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2016/01/15 00:03:42 | 000,046,200 | ---- | M] (FUJITSU LIMITED) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\FBIOSDRV.sys -- (FBIOSDRV)
DRV:[b]64bit:[/b] - [2015/12/02 20:02:48 | 004,594,456 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTKVHD64.sys -- (IntcAzAudAddService)
DRV:[b]64bit:[/b] - [2015/11/05 16:23:40 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:[b]64bit:[/b] - [2015/06/10 23:08:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2015/06/05 02:12:54 | 000,310,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:[b]64bit:[/b] - [2015/03/05 06:08:34 | 000,042,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2014/06/20 10:38:22 | 000,072,128 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2014/06/20 10:31:06 | 000,348,552 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2014/06/20 10:26:02 | 000,786,296 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2014/06/20 10:23:40 | 000,523,792 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2014/06/20 10:21:48 | 000,313,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2014/06/20 10:20:54 | 000,181,704 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:[b]64bit:[/b] - [2014/06/20 10:09:34 | 000,070,600 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2014/04/27 15:44:00 | 000,020,736 | ---- | M] (DigiOn, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\diximdd.sys -- (DiximDd)
DRV:[b]64bit:[/b] - [2013/11/12 09:16:03 | 000,090,424 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wachidrouter.sys -- (WacHidRouter)
DRV:[b]64bit:[/b] - [2013/11/12 09:16:03 | 000,015,160 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wacomrouterfilter.sys -- (wacomrouterfilter)
DRV:[b]64bit:[/b] - [2013/11/12 09:16:02 | 000,014,136 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf)
DRV:[b]64bit:[/b] - [2013/09/09 13:08:22 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013/08/12 18:57:16 | 000,021,200 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02e3.sys -- (FUJ02E3)
DRV:[b]64bit:[/b] - [2013/07/19 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2013/06/21 18:35:14 | 000,816,344 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2010/04/13 20:10:24 | 000,066,040 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\MOBK.sys -- (MOBKFilter)
DRV:[b]64bit:[/b] - [2007/02/16 09:11:26 | 000,012,976 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WacomVKHid.sys -- (WacomVKHid)
DRV - [2016/07/16 20:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus)

ログ③です。

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{E3540476-31E9-4519-A9CB-62BAB950F9E7}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=FSJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
IE - HKLM\..\SearchScopes\{E3540476-31E9-4519-A9CB-62BAB950F9E7}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=FSJB


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fujitsu13.msn.com/?pc=FSJB
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://azby.fmworld.net/?ref=201310 [binary data]
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://azby.fmworld.net/?ref=201310 [binary data]
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 8E 39 D8 42 27 55 D1 01 [binary data]
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 1F 00 00 00 E4 36 A3 E6 7F FE 09 3B 44 33 8E 63 3E B6 60 8E 9B D0 42 E6 64 6F 61 B0 D2 E7 D5 5D 8E 5D BF 02 00 00 00 0E 00 00 00 65 68 67 4B 7A 32 76 47 6F 63 51 25 33 64 [binary data]
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.countryCode: "JP"
FF - prefs.js..browser.search.region: "JP"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0.2
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.3: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.3: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 47.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 47.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2014/02/27 21:40:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\Extensions
[2017/01/08 00:34:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\Firefox\Profiles\54oicydw.default-1425828209302\extensions
[2017/01/08 23:22:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\Firefox\Profiles\55ha0f9q.default\extensions
[2017/01/08 00:34:56 | 000,023,373 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\extensions\firefox-hotfix@mozilla.org.xpi
[2017/01/08 00:34:56 | 000,049,371 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\extensions\places-maintenance@bonardo.net.xpi
[2017/01/08 00:34:57 | 000,006,253 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\features\{aa2ee16e-1656-4fec-a7ea-a03ddb4dd9fb}\e10srollout@mozilla.org.xpi
[2017/01/08 00:35:00 | 000,838,245 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\features\{aa2ee16e-1656-4fec-a7ea-a03ddb4dd9fb}\firefox@getpocket.com.xpi
[2017/01/08 00:34:57 | 000,005,391 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\features\{aa2ee16e-1656-4fec-a7ea-a03ddb4dd9fb}\loop@mozilla.org.xpi
[2017/01/08 00:34:57 | 000,005,745 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\54oicydw.default-1425828209302\features\{aa2ee16e-1656-4fec-a7ea-a03ddb4dd9fb}\websensehelper@mozilla.org.xpi
[2015/04/29 01:45:58 | 000,561,487 | ---- | M] () (No name found) -- C:\Users\masa\AppData\Roaming\mozilla\firefox\profiles\55ha0f9q.default\extensions\toolbar_ORJ-SPE@apn.ask.com.xpi
[2017/01/08 00:28:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2017/01/08 00:33:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\anbkoicflbagjpoadmjemgjaaibdmien\1.2.10_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\masa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5516.1005.0.3_0\

O1 HOSTS File: ([2017/01/08 01:02:08 | 000,000,846 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [FJUPDNV_Chitose] C:\Program Files\Fujitsu\chitose\updatenv.exe (FUJITSU LIMITED)
O4:[b]64bit:[/b] - HKLM..\Run: [Malwarebytes TrayApp] C:\PROGRAM FILES/MALWAREBYTES/ANTI-MALWARE\mbamtray.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [MMAPacth] C:\Fujitsu\MMAPacth\GExc.exe (FUJITSU LIMITED)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [WindowsDefender] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4 - HKLM..\Run: [CorelDA] C:\Program Files (x86)\Corel\MLSDK\CorelDesktopAgent.exe (COREL TW CORP.)
O4 - HKLM..\Run: [NetworkPlayerServerHelper] C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe (DigiOn, Inc.)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [f.lux] C:\Users\masa\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [iCloudPhotos] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Apple Inc.)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\Run: [OneDrive] C:\Users\masa\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\RunOnce: [Uninstall 17.3.6720.1207] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\masa\AppData\Local\Microsoft\OneDrive\17.3.6720.1207" File not found
O4 - HKU\S-1-5-21-1594266205-1355842802-1588290031-1001..\RunOnce: [Uninstall 17.3.6720.1207\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\masa\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{b899bea2-82f4-4919-8254-e8c0cee53eb8}: NameServer = 192.168.2.1
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\MCSNIE~1.DLL File not found
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {31699572-6286-3C1C-A03C-511D59181038} - .NET Framework
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\inf\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {71A5A636-652F-3BE0-BC14-02545E9F5EC7} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2017/01/12 20:08:56 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2017/01/08 19:50:50 | 000,176,064 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMChameleon.sys
[2017/01/08 19:50:39 | 000,102,856 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2017/01/08 19:50:39 | 000,091,584 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2017/01/08 19:50:37 | 000,043,968 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2017/01/08 19:50:33 | 000,250,816 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2017/01/08 19:50:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
[2017/01/08 19:50:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2017/01/08 19:50:21 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes
[2017/01/08 01:33:49 | 000,000,000 | ---D | C] -- C:\Users\masa\Desktop\ログ情報
[2017/01/08 00:39:43 | 000,000,000 | ---D | C] -- C:\Users\masa\AppData\Roaming\TriWorks
[2017/01/08 00:28:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2017/01/07 23:32:08 | 000,000,000 | ---D | C] -- C:\Users\masa\AppData\Roaming\Geek Uninstaller
[2017/01/07 16:13:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2017/01/07 16:13:42 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2017/01/06 17:08:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2017/01/06 17:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2017/01/06 17:07:40 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2017/01/06 17:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2016/12/14 08:40:45 | 008,168,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2016/12/14 08:40:44 | 004,612,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2016/12/14 08:40:44 | 003,306,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2016/12/14 08:40:43 | 003,059,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2016/12/14 08:40:43 | 001,852,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2016/12/14 08:40:43 | 001,589,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdtctm.dll
[2016/12/14 08:40:43 | 001,274,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2016/12/14 08:40:43 | 001,100,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2016/12/14 08:40:43 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2016/12/14 08:40:42 | 002,138,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputService.dll
[2016/12/14 08:40:42 | 000,989,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2016/12/14 08:40:42 | 000,947,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.efi
[2016/12/14 08:40:42 | 000,811,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.exe
[2016/12/14 08:40:42 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2016/12/14 08:40:42 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2016/12/14 08:40:41 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016/12/14 08:40:41 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2016/12/14 08:40:40 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputLocaleManager.dll
[2016/12/14 08:40:40 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2016/12/14 08:40:40 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2016/12/14 08:40:38 | 006,285,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2016/12/14 08:40:38 | 003,777,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2016/12/14 08:40:38 | 001,293,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2016/12/14 08:40:37 | 007,816,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2016/12/14 08:40:37 | 001,988,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2016/12/14 08:40:36 | 002,275,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2016/12/14 08:40:36 | 001,692,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2016/12/14 08:40:36 | 001,121,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aadtb.dll
[2016/12/14 08:40:35 | 002,820,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2016/12/14 08:40:35 | 000,425,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aadcloudap.dll
[2016/12/14 08:40:35 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\facecredentialprovider.dll
[2016/12/14 08:40:34 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2016/12/14 08:40:34 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2016/12/14 08:40:34 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2016/12/14 08:40:34 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2016/12/14 08:40:33 | 004,749,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2016/12/14 08:40:33 | 003,616,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2016/12/14 08:40:33 | 002,998,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2016/12/14 08:40:33 | 000,981,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2016/12/14 08:40:33 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2016/12/14 08:40:33 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Shell.dll
[2016/12/14 08:40:33 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2016/12/14 08:40:32 | 001,461,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2016/12/14 08:40:30 | 005,114,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdp.dll
[2016/12/14 08:40:29 | 001,572,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32full.dll
[2016/12/14 08:40:29 | 001,415,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gdi32full.dll
[2016/12/14 08:40:29 | 000,764,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreMessaging.dll
[2016/12/14 08:40:29 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ShareHost.dll
[2016/12/14 08:40:29 | 000,241,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHost.dll
[2016/12/14 08:40:27 | 001,354,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2016/12/14 08:40:27 | 001,173,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2016/12/14 08:40:27 | 001,051,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2016/12/14 08:40:27 | 000,894,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2016/12/14 08:40:27 | 000,455,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\securekernel.exe
[2016/12/14 08:40:25 | 006,668,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016/12/14 08:40:24 | 001,637,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2016/12/14 08:40:24 | 001,490,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2016/12/14 08:40:24 | 000,137,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2016/12/14 08:40:23 | 003,198,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cdp.dll
[2016/12/14 08:40:23 | 002,913,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2016/12/14 08:40:23 | 002,166,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2016/12/14 08:40:23 | 000,886,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aadtb.dll
[2016/12/14 08:40:23 | 000,861,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2016/12/14 08:40:23 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ShareHost.dll
[2016/12/14 08:40:22 | 001,267,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2016/12/14 08:40:22 | 001,004,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2016/12/14 08:40:22 | 000,846,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2016/12/14 08:40:22 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CoreMessaging.dll
[2016/12/14 08:40:22 | 000,377,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2016/12/14 08:40:22 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceEnroller.exe
[2016/12/14 08:40:22 | 000,168,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcrypt.dll
[2016/12/14 08:40:21 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2016/12/14 08:40:21 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2016/12/14 08:40:21 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2016/12/14 08:40:21 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2016/12/14 08:40:20 | 008,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2016/12/14 08:40:20 | 001,512,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2016/12/14 08:40:20 | 000,402,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2016/12/14 08:40:20 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\indexeddbserver.dll
[2016/12/14 08:40:19 | 000,658,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2016/12/14 08:40:19 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2016/12/14 08:40:18 | 022,563,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgehtml.dll
[2016/12/14 08:40:18 | 019,413,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgehtml.dll
[2016/12/14 08:40:17 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\indexeddbserver.dll
[2016/12/14 08:40:16 | 006,044,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2016/12/14 08:40:16 | 002,677,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll
[2016/12/14 08:40:15 | 004,746,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2016/12/14 08:40:15 | 001,738,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2016/12/14 08:40:14 | 000,730,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2016/12/14 08:40:14 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CryptoWinRT.dll
[2016/12/14 08:40:14 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016/12/14 08:40:14 | 000,172,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sspicli.dll
[2016/12/14 08:40:13 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2016/12/14 08:40:13 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2017/01/12 20:28:27 | 000,102,856 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2017/01/12 20:28:27 | 000,091,584 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2017/01/12 20:28:08 | 000,043,968 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2017/01/12 20:28:07 | 000,250,816 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2017/01/12 20:27:47 | 000,077,408 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2017/01/12 20:04:59 | 000,000,180 | ---- | M] () -- C:\WINDOWS\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
[2017/01/12 20:04:30 | 3397,939,200 | -HS- | M] () -- C:\hiberfil.sys
[2017/01/12 20:04:27 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2017/01/08 23:28:23 | 001,438,080 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2017/01/08 23:28:23 | 000,799,104 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2017/01/08 23:28:23 | 000,313,798 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2017/01/08 23:28:23 | 000,200,006 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2017/01/08 23:28:23 | 000,117,182 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2017/01/08 23:22:18 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2017/01/08 20:36:10 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2017/01/08 19:50:50 | 000,176,064 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMChameleon.sys
[2017/01/08 19:50:29 | 000,001,912 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2017/01/08 00:38:53 | 000,001,682 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2017/01/07 16:19:27 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2017/01/06 17:08:19 | 000,001,822 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016/12/23 01:59:37 | 000,000,626 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2016/12/23 01:59:29 | 000,612,400 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[1 C:\WINDOWS\SysNative\*.tmp files -> C:\WINDOWS\SysNative\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017/01/08 19:50:29 | 000,001,912 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2017/01/08 19:50:27 | 000,077,408 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2017/01/08 01:06:27 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2017/01/07 16:13:45 | 000,000,863 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2017/01/06 17:08:19 | 000,001,822 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016/12/21 03:33:29 | 001,090,104 | ---- | C] () -- C:\Users\masa\IMAG0006.JPG
[2016/12/21 03:33:29 | 001,083,808 | ---- | C] () -- C:\Users\masa\IMAG0005.JPG
[2016/12/14 08:40:36 | 002,681,200 | ---- | C] () -- C:\WINDOWS\SysNative\CoreUIComponents.dll
[2016/12/14 08:40:15 | 002,048,496 | ---- | C] () -- C:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/10/08 23:49:25 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2016/10/08 23:47:44 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2016/10/08 23:41:11 | 000,265,728 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2016/07/16 20:47:57 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2016/07/16 20:47:57 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2016/07/16 20:43:04 | 000,055,296 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2016/07/16 20:43:00 | 000,019,968 | ---- | C] () -- C:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2016/07/16 20:42:55 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2016/07/16 20:42:53 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2016/07/16 20:42:49 | 000,304,640 | ---- | C] () -- C:\WINDOWS\SysWow64\HrtfApo.dll
[2016/07/16 20:42:48 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2016/07/16 20:42:43 | 000,002,307 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2016/07/16 20:42:12 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2015/05/09 16:32:14 | 000,001,682 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2015/04/20 00:25:28 | 000,000,017 | ---- | C] () -- C:\Users\masa\AppData\Local\resmon.resmoncfg

[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016/11/11 19:01:16 | 007,219,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016/11/11 16:47:14 | 005,722,832 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2016/07/16 20:42:31 | 000,977,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2016/07/16 20:42:56 | 000,779,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2016/07/16 20:42:31 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2017/01/12 20:08:56 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp
[2017/01/08 19:50:21 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2017/01/12 20:08:56 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp\S-1-5-21-1594266205-1355842802-1588290031-1001
[2017/01/08 00:42:17 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2013/10/03 17:20:30 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2017/01/12 20:39:41 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2016/12/12 06:42:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\RetailDemo
[2016/10/09 00:20:16 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2016/10/09 00:18:39 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2016/12/12 06:42:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\RetailDemo
[2016/10/09 00:20:16 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2016/10/08 23:54:47 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData
[2014/02/26 13:36:27 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2016/10/09 02:13:39 | 000,000,000 | RH-D | M] -- C:\Users\masa\AppData\Local\Microsoft\Windows\Burn\Burn
[2017/01/06 17:13:50 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2016/01/05 18:39:32 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2016/01/05 18:39:32 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2017/01/08 01:31:01 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\Content.MSO
[2017/01/08 01:31:01 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\Content.Word.44C9BAFC-241F-400F-AC0D-FAFEFDDCC2DB
[2015/07/12 19:04:47 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Local\VirtualStore\ProgramData
[2016/10/09 00:04:30 | 000,000,000 | -H-D | M] -- C:\Users\masa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2014/04/28 17:27:58 | 000,000,000 | -H-D | M] -- C:\Users\masa\Music\Corel
[2014/04/30 22:07:35 | 000,000,000 | -H-D | M] -- C:\Users\masa\Music\My Cloud DB
[2016/12/21 03:17:52 | 000,000,000 | -H-D | M] -- C:\Users\masa\Pictures\My Cloud DB
[2014/04/30 22:07:35 | 000,000,000 | -H-D | M] -- C:\Users\masa\Videos\My Cloud DB
[2016/12/12 06:58:03 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2017/01/08 19:50:29 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2016/10/09 00:07:23 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2016/07/16 20:47:50 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2016/10/08 23:55:58 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2016/10/08 23:55:58 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2016/12/23 01:59:37 | 000,000,626 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2017/01/08 20:36:10 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD5000AAKX-07U6AA0
Partitions: 6
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 768.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 768.00MB
Starting Offset: 806354944
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 260.00MB
Starting Offset: 1611661312
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 222.00GB
Starting Offset: 2018508800
Hidden sectors: 0


DeviceID: Disk #0, Partition #4
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 222.00GB
Starting Offset: 240324182016
Hidden sectors: 0


DeviceID: Disk #0, Partition #5
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 20.00GB
Starting Offset: 478629855232
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
No service found with a name of AeLookupSvc
SRV:[b]64bit:[/b] - [2016/10/08 23:41:19 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,095,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2016/10/15 12:48:52 | 001,054,208 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,795,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2016/07/16 20:42:55 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:17 | 000,453,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2016/07/16 20:42:46 | 000,347,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:10 | 000,134,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,081,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,888,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,360,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2016/07/16 20:42:55 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,264,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:37 | 000,112,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:18 | 000,036,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2016/07/16 20:42:46 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2016/11/02 19:25:18 | 000,541,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,391,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
No service found with a name of MMCSS
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,259,072 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2016/10/05 18:29:19 | 000,368,640 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2016/10/15 12:36:20 | 000,792,064 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:29 | 000,657,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,888,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 000,057,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2016/11/11 18:16:14 | 000,184,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,305,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:40 | 000,617,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2016/07/16 20:43:04 | 000,566,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,948,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,309,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2016/07/16 20:43:02 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:42 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 000,358,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:15 | 001,443,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:23 | 000,942,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:57 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:47 | 000,147,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:11 | 001,709,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,893,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:50 | 000,646,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,065,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2016/07/16 20:42:45 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:31 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:24 | 002,317,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2016/10/08 23:41:29 | 002,370,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:03:50 | 000,283,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 237 bytes -> C:\Users\masa\SkyDrive:ms-properties

< End of report >


以上でOTLのログはすべてです。

こんばんは。
OTLスキャンログを見せてもらいました。

OTL.txtはそれでいいですが、もうひとつのExtra.txtは出ませんでしたか？

一応このログも検索して見つかればその内容を見せてください。
探しても見つからないならそのことだけ教えてください。

なお、自分から次のレスできるのは明日になるのでご了承ください