悪代官の伏魔殿掲示板
AdwCleanerで検出されました
ご無沙汰してます。以前この掲示板でお世話になりましたdainoteです。
AdwCleanerでスキャンしたところ、PUP.Optional.Legacyが検出されました。
他にもまだ残ってるんじゃないかと思い相談に来ました。

関係してないかもしれませんが、steamのkenshiというゲームを起動したらPCがフリーズしました。
普段フリーズすることがないので、その時にスキャンしたら検出されました。
今そのゲームはアンインストールしましたが、その後起動していない時にファイアウォールの警告が出たりしていました。
よろしくお願いします。
  • dainote
  • 2018/05/31 (Thu) 15:16:59
返信フォームへ 
CCのログ
7-Zip 18.05 (x64) Igor Pavlov 2018/05/20 4.93 MB 18.05
Avast Free Antivirus AVAST Software 2018/05/20 18.4.2338
AviSynth+ 2506 The Public 2018/05/21 8.35 MB 2506.0
Bless GameOn 2018/05/29 43537480
Candy Crush Soda Saga king.com 2018/05/20 1.114.500.0
CCleaner Piriform 2018/05/31 5.43
Common GameOn 2018/05/29 17059936
COMODO Firewall COMODO Security Solutions Inc. 2018/05/20 10.2.0.6526
Counter-Strike: Global Offensive Valve 2018/05/20
Dolby Access Dolby Laboratories 2018/05/20 2.2.173.0
Dolby Digital Liveパック Creative Technology Limited 2018/05/20 3.03
DTS Connect Pack Creative Technology Limited 2018/05/20 1.00
ffdshow x64 v1.3.4533 [2014-09-29] 2018/05/21 14.7 MB 1.3.4533.0
Google Chrome Google Inc. 2018/05/20 66.0.3359.181
Groove ミュージック Microsoft Corporation 2018/05/26 10.18041.14611.0
Hidden City: アイテム探しアドベンチャー G5 Entertainment AB 2018/05/20 1.22.2201.0
Microsoft OneDrive Microsoft Corporation 2018/05/30 101 MB 18.091.0506.0003
Microsoft Pay Microsoft Corporation 2018/05/20 2.1.18009.0
Microsoft Solitaire Collection Microsoft Studios 2018/05/20 4.1.5154.0
Microsoft Sticky Notes Microsoft Corporation 2018/05/20 2.1.18.0
Microsoft Store Microsoft Corporation 2018/05/20 11804.1001.10.0
Microsoft Store エクスペリエンス ホスト Microsoft Corporation 2018/05/20 11804.1001.9.0
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2018/05/30 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2018/05/30 11.1 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2018/05/20 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2018/05/20 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 Microsoft Corporation 2018/05/20 23.6 MB 14.13.26020.0
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 Microsoft Corporation 2018/05/20 20.1 MB 14.13.26020.0
Mixed Reality ビューアー Microsoft Corporation 2018/05/20 4.1804.19012.0
MPC-HC 1.7.16 (64-bit) MPC-HC Team 2018/05/21 48.0 MB 1.7.16
MU LEGEND JAPAN Webzen 2018/05/23 13.6 GB 1.0.0.0
My Office Microsoft Corporation 2018/05/20 17.9328.1700.0
NVIDIA 3D Vision コントローラー ドライバー 390.41 NVIDIA Corporation 2018/05/25 390.41
NVIDIA 3D Vision ドライバー 397.93 NVIDIA Corporation 2018/05/25 397.93
NVIDIA GeForce Experience 3.14.0.139 NVIDIA Corporation 2018/05/24 3.14.0.139
NVIDIA HD オーディオ ドライバー 1.3.37.4 NVIDIA Corporation 2018/05/25 1.3.37.4
NVIDIA PhysX システム ソフトウェア 9.17.0524 NVIDIA Corporation 2018/05/20 9.17.0524
NVIDIA グラフィックス ドライバー 397.93 NVIDIA Corporation 2018/05/25 397.93
OneNote Microsoft Corporation 2018/05/22 17.9330.20531.0
People Microsoft Corporation 2018/05/25 10.1805.1361.0
PLAYERUNKNOWN'S BATTLEGROUNDS PUBG Corporation 2018/05/20
Pmangインストールマネージャー GameOn,Pmang 2018/05/29 1.0.1.1
Print 3D Microsoft Corporation 2018/05/20 2.0.10611.0
Prismata Lunarch Studios 2018/05/21
SketchBook Autodesk Inc. 2018/05/20 1.8.1.0
Skype Skype 2018/05/22 12.1815.209.0
Sound Blaster Z-Series Creative Technology Limited 2018/05/20 155 MB 1.01.10
Sound Blaster Z-Series Extras Creative Technology Limited 2018/05/20 1.0
Steam Valve Corporation 2018/05/20 2.10.91.91
SVP 4 Free SVP Team 2018/05/21 90.2 MB 4.2
TeraPad 2018/05/21
Web メディア拡張機能 Microsoft Corporation 2018/05/20 1.0.10671.0
WEBZEN Browser Extension バージョン 1.13.014 WEBZEN 2018/05/22 4.47 MB 1.13.014
Xbox Microsoft Corporation 2018/05/22 41.41.18005.0
Xbox Game bar Microsoft Corporation 2018/05/20 1.28.25001.0
Xbox Game Speech Window Microsoft Corporation 2018/05/20 1.21.13002.0
Xbox gaming overlay Microsoft Corporation 2018/05/20 1.15.1001.0
Xbox Identity Provider Microsoft Corporation 2018/05/20 12.39.13003.1000
Xbox Live Microsoft Corporation 2018/05/20 1.11.29001.0
アプリ インストーラー Microsoft Corporation 2018/05/20 1.0.20921.0
アラーム & クロック Microsoft Corporation 2018/05/20 10.1805.1361.0
カメラ Microsoft Corporation 2018/05/20 2018.227.30.1000
ニュース Microsoft Corporation 2018/05/20 4.24.11382.0
バブルウィッチ3 king.com 2018/05/23 4.6.6.0
ヒント Microsoft Corporation 2018/05/20 6.10.10872.0
フィードバック Hub Microsoft Corporation 2018/05/20 1.1712.1141.0
フォト Microsoft Corporation 2018/05/26 2018.18041.15210.0
ペイント 3D Microsoft Corporation 2018/05/22 4.1805.15037.0
ボイス レコーダー Microsoft Corporation 2018/05/20 10.1805.1201.0
マップ Microsoft Corporation 2018/05/20 5.1711.10477.1000
マーチ オブ エンパイア - 領土戦争 Gameloft. 2018/05/20 3.2.0.9
メッセージング Microsoft Corporation 2018/05/20 3.38.22001.0
メール/カレンダー Microsoft Corporation 2018/05/25 17.9226.21755.0
モバイル通信プラン Microsoft Corporation 2018/05/20 4.1805.1291.0
問い合わせ Microsoft Corporation 2018/05/20 10.1706.10952.0
天気 Microsoft Corporation 2018/05/20 4.24.11294.0
日本語 ローカル エクスペリエンス パック Microsoft Corporation 2018/05/23 17134.3.7.0
映画 & テレビ Microsoft Corporation 2018/05/20 10.17122.16211.1000
電卓 Microsoft Corporation 2018/05/20 10.1805.1201.0
  • dainote
  • 2018/05/31 (Thu) 15:18:48
返信フォームへ 
hijackthisのログ
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 14:58:13, on 2018/05/31
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\360cm\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
E:\Downloads\test\HijackThis.exe

F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Sound Blaster Z-Series Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe" /r
O4 - HKCU\..\Run: [OneDrive] "C:\Users\360cm\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{177f0968-4cbe-4b83-a018-47ba7985625b}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: COMODO Internet Security Helper Service (CmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @oem10.inf,%Creative.CTHdaSvcDesc%;Sound Blaster Audio Service (CtHdaSvc) - Creative Technology Ltd - C:\Windows\sysWow64\CtHdaSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\Windows\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\Windows\system32\xbgmsvc.exe (file missing)

--
End of file - 6960 bytes
  • dainote
  • 2018/05/31 (Thu) 15:19:28
返信フォームへ 
AdwCleanerのログ
# -------------------------------
# Malwarebytes AdwCleaner 7.1.1.0
# -------------------------------
# Build: 04-27-2018
# Database: 2018-05-29.2
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-30-2018
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted C:\Windows\uninstaller.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************


########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

以上です。
  • dainote
  • 2018/05/31 (Thu) 15:20:25
返信フォームへ 
AC過剰反応の疑いが大ですが
こんばんは。
お久しぶりですね。
http://akudaikan-0.bbs.fc2.com/?act=reply&tid=7659482

>AdwCleanerでスキャンしたところ、PUP.Optional.Legacyが検出されました

なるほど、それですか。
他の方の事例でも見つかって慌ててる方もおられましたが、その検出はACによる過剰反応もあるんですよ。
といっても本当に悪質なモノをACが検出することもあるので全部が全部誤検出でもありませんが、今回のログを見る限りでは過剰反応の可能性が大でしょう。

それでも他の問題点がまたあるといけないので、できるかぎり健康診断しましょうか。
先スレの手順も思い出しながら解析作業にかかってください。
作業ツール類もGUを含めて準備しておいてください。

まずはCC(CCleaner)でスタートアップとブラウザプラグインの各タブのログを取ってから、それをレスで見せてください。
曲者が入り込むときはたいていこのあたりに現れる事が多いので、そこから探ってみましょう
  • 悪代官
  • 2018/05/31 (Thu) 18:03:34
返信フォームへ 
スタートアップとブラウザプラグインの各タブのログ
誤検出ならよかったです。

startup_windows
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\360cm\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
有効 HKLM:Run COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} COMODO C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
有効 HKLM:Run SecurityHealth Microsoft Corporation %ProgramFiles%\Windows Defender\MSASCuiL.exe
有効 HKLM:Run Sound Blaster Z-Series Control Panel Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe" /r
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\Windows\UpdReg.EXE

startup_スケジュールされたタスク
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
無効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
無効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
無効 Task NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
無効 Task NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
無効 Task NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
無効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
無効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
無効 Task NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
無効 Task NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
無効 Task NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
無効 Task NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
無効 Task OneDrive Standalone Update Task-S-1-5-21-3439630269-1255355716-76200077-1001 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe

startup_コンテキストメニュー
有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 Directory ファイルの所有権
有効 Drive Comodo Antivirus COMODO C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll
有効 Drive PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 File 00asw AVAST Software C:\Program Files\AVAST Software\Avast\ashShA64.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File avast AVAST Software C:\Program Files\AVAST Software\Avast\ashShA64.dll
有効 File Comodo Antivirus COMODO C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll
有効 Folder 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Folder avast AVAST Software C:\Program Files\AVAST Software\Avast\ashShA64.dll
有効 Folder Comodo Antivirus COMODO C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll

browserPlugins_IE
空白

browserPlugins_chrome
有効 App Gmail 8.1 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google ドライブ 14.1 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Google オフライン ドキュメント 1.4 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1
有効 Extension WEBZEN Starter 1.0.2 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\momdjgkdjbfllifenjdpknnkaddhnheg\1.0.2_1
有効 Extension スプレッドシート 1.2 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スライド 0.10 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension ドキュメント 0.10 ユーザー 1 C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
  • dainote
  • 2018/05/31 (Thu) 19:21:44
返信フォームへ 
CC常駐保護はオフ推奨で
作業と報告、ご苦労様です。
CCの各ログを見せてもらいましたが、やはりおかしなところは見えません。
AC検出のほうは過剰反応の疑いがいよいよ強まりましたね。

ところでCCの常駐保護機能が有効になっているので、そこはオフにしておくといいです。
CCを起動して画面左の「オプション」→モニタリング」蘭で「システムモニタリング」と「アクティブモニタリング」のチェックは外しておくと、常駐保護が外れるのでPC動作も幾分軽くなります。
環境によってはこれが有効になっているだけで目に見えてPC動作が重くなることもあるので、よほどCCで細かい設定操作したい上級者以外はオフ推奨です。

それと確認を見落としてましたが、下記はご自身で入れたセキュリティソフトでしたか?
>Avast Free Antivirus AVAST Software 2018/05/20 18.4.2338

前回スレの時はavastを入れてなかったようですが、その後使いだしたのならそこはいいです。
でも覚えがないのに入っていたなら、CCの更新かインストール時にバンドルで入った疑いがあります。
https://blogs.yahoo.co.jp/fukumadenbekkan/58098442.html

CCは毎回ではないものの、更新のリリース時にちょくちょくavastをバンドルさせてくるので要注意です。

avastの確認ができたら、次はOTLで大詰めの解析しましょう。
これも前回スレで使ったので使い方もわかるとは思いますが、確認を兼ねて再度案内します。

以下のツールを準備してください。
OTL(OldTimer Listit)
「Download」ボタンからDLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。
ただし、Windows10をお使いの場合は本体ファイルをそのまま削除すればいいです。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで1万文字以内に分割して、複数回に分けてレス送信してください。
1万文字を越えた投稿はfc2の文字数制限で途切れてしまうためです。
http://www1.odn.ne.jp/megukuma/count.htm

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです




このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらPCをまたセーフモードで再起動してOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」(赤字のボタン)を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
  • 悪代官
  • 2018/06/01 (Fri) 20:25:55
返信フォームへ 
OTLのログ1
OTL logfile created on: 2018/06/02 10:55:13 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.17134.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

15.94 Gb Total Physical Memory | 13.50 Gb Available Physical Memory | 84.69% Memory free
18.31 Gb Paging File | 14.30 Gb Available in Paging File | 78.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 118.64 Gb Total Space | 83.90 Gb Free Space | 70.72% Space Free | Partition Type: NTFS
Drive D: | 447.13 Gb Total Space | 373.43 Gb Free Space | 83.52% Space Free | Partition Type: NTFS
Drive E: | 2794.52 Gb Total Space | 2356.31 Gb Free Space | 84.32% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-Q6EI1QL | User Name: 360cm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2018/06/02 10:52:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
PRC - [2018/05/30 05:37:29 | 001,628,832 | ---- | M] (Microsoft Corporation) -- C:\Users\360cm\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2018/05/23 05:01:00 | 000,764,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
PRC - [2018/05/21 02:36:47 | 000,630,240 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
PRC - [2018/05/20 17:58:27 | 012,007,128 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2018/04/12 08:34:51 | 000,661,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontdrvhost.exe
PRC - [2017/01/18 02:04:46 | 000,122,880 | ---- | M] (Creative Technology Ltd) -- C:\Windows\SysWOW64\CtHdaSvc.exe
PRC - [2014/11/24 16:53:18 | 000,877,056 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
PRC - [2012/10/08 16:53:20 | 000,423,424 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2018/05/20 17:58:28 | 067,126,928 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2018/05/20 17:57:57 | 000,482,520 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\streamback.dll
MOD - [2018/05/20 17:57:55 | 000,293,592 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2018/05/23 05:01:00 | 000,764,896 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe -- (NVDisplay.ContainerLocalSystem)
SRV:[b]64bit:[/b] - [2018/05/21 02:36:43 | 000,764,896 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -- (NvContainerNetworkService)
SRV:[b]64bit:[/b] - [2018/05/21 02:36:43 | 000,764,896 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -- (NvContainerLocalSystem)
SRV:[b]64bit:[/b] - [2018/05/20 20:52:27 | 000,885,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2018/05/20 20:31:30 | 001,456,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WpcDesktopMonSvc.dll -- (WpcMonSvc)
SRV:[b]64bit:[/b] - [2018/05/20 20:26:16 | 003,389,952 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2018/05/20 20:25:35 | 000,835,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2018/05/20 20:24:07 | 001,485,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\InstallService.dll -- (InstallService)
SRV:[b]64bit:[/b] - [2018/05/20 20:23:00 | 000,847,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2018/05/20 20:22:58 | 000,684,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2018/05/20 17:57:56 | 000,317,280 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2018/05/20 17:57:55 | 007,620,096 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe -- (aswbIDSAgent)
SRV:[b]64bit:[/b] - [2018/04/28 19:58:14 | 000,976,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Spectrum.exe -- (spectrum)
SRV:[b]64bit:[/b] - [2018/04/28 12:58:16 | 003,086,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2018/04/12 08:35:21 | 000,681,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2018/04/12 08:35:21 | 000,667,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2018/04/12 08:35:21 | 000,427,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2018/04/12 08:35:21 | 000,400,896 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:44 | 001,359,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lpasvc.dll -- (wlpasvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,950,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,824,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NaturalAuth.dll -- (NaturalAuthentication)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,637,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WFDSConMgrSvc.dll -- (WFDSConMgrSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,590,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,121,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:42 | 000,712,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SharedRealitySvc.dll -- (SharedRealitySvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:41 | 000,858,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:41 | 000,761,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SecurityHealthService.exe -- (SecurityHealthService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:41 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:39 | 000,219,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvc.dll -- (diagsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:38 | 000,671,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:37 | 000,303,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:37 | 000,198,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:34 | 001,273,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:33 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:33 | 000,153,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,507,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:25 | 000,058,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:24 | 001,027,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:24 | 000,081,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
  • dainote
  • 2018/06/02 (Sat) 11:07:52
返信フォームへ 
OTLのログ2
OTLのログ2

SRV:[b]64bit:[/b] - [2018/04/12 08:34:23 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:23 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,773,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,335,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (PrintWorkflowUserSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicesFlowUserSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicePickerUserSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BluetoothUserService_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,051,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BcastDVRUserService_575be21)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:19 | 000,750,080 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\DevicesFlowBroker.dll -- (DevicesFlowUserSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:19 | 000,195,584 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:17 | 001,371,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,824,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,712,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,514,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BTAGService.dll -- (BTAGService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,395,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthAvctpSvc.dll -- (BthAvctpSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,057,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 001,495,040 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 001,220,096 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,785,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,582,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,463,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,392,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WaaSMedicSvc.dll -- (WaaSMedicSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,345,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,307,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,281,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,241,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,176,128 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,096,768 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,091,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,058,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xboxgipsvc.dll -- (XboxGipSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,044,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 004,970,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 001,248,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SEMgrSvc.dll -- (SEMgrSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 000,376,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PushToInstall.dll -- (PushToInstall)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 000,048,640 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 001,458,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 001,308,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GraphicsPerfSvc.dll -- (GraphicsPerfSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 000,059,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xbgmsvc.exe -- (xbgm)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:08 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.WARP.JITService.dll -- (WarpJITSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:07 | 001,115,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:07 | 000,092,160 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
  • dainote
  • 2018/06/02 (Sat) 11:10:33
返信フォームへ 
OTLのログ3
OTLのログ3

SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 002,248,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 001,395,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TokenBroker.dll -- (TokenBroker)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 001,033,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,632,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,266,752 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\CapabilityAccessManager.dll -- (camsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,235,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,149,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 001,364,992 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\bcastdvruserservice.dll -- (BcastDVRUserService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 001,148,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,673,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,411,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vac.dll -- (VacSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,356,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dusmsvc.dll -- (DusmSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,199,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LanguageOverlayServer.dll -- (LxpSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,163,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SgrmBroker.exe -- (SgrmBroker)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:02 | 000,464,384 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Microsoft.Bluetooth.UserService.dll -- (BluetoothUserService)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:02 | 000,063,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipxlatcfg.dll -- (IpxlatCfgSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 002,197,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,309,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,289,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,060,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:47 | 003,441,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2018/04/11 06:05:00 | 000,324,608 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2018/03/13 17:21:10 | 011,395,096 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (CmdAgent)
SRV:[b]64bit:[/b] - [2018/03/13 17:14:20 | 002,876,096 | ---- | M] (COMODO) [On_Demand | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:[b]64bit:[/b] - [2018/03/11 03:20:00 | 000,495,616 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\OpenSSH\ssh-agent.exe -- (ssh-agent)
SRV - [2018/05/21 02:36:47 | 000,630,240 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe -- (NvTelemetryContainer)
SRV - [2018/05/20 20:32:35 | 000,567,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2018/05/20 20:11:11 | 001,108,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\InstallService.dll -- (InstallService)
SRV - [2018/05/20 18:11:58 | 006,076,936 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2018/05/20 17:15:10 | 004,632,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17639.18041-0\NisSrv.exe -- (WdNisSvc)
SRV - [2018/05/20 17:15:10 | 000,104,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17639.18041-0\MsMpEng.exe -- (WinDefend)
SRV - [2018/05/19 08:01:24 | 001,672,992 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2018/04/12 08:35:22 | 000,312,832 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV - [2018/04/12 08:35:02 | 000,729,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\FlightSettings.dll -- (wisvc)
SRV - [2018/04/12 08:34:57 | 000,138,240 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV - [2018/04/12 08:34:48 | 000,592,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2018/04/12 08:34:47 | 004,469,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2018/04/12 08:34:45 | 000,999,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\TokenBroker.dll -- (TokenBroker)
SRV - [2018/04/12 08:34:45 | 000,965,632 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2018/04/12 08:34:45 | 000,072,192 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\tzautoupdate.dll -- (tzautoupdate)
SRV - [2018/04/12 08:34:45 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2018/04/12 08:33:47 | 003,441,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2018/03/29 23:12:00 | 008,019,808 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2017/01/18 02:04:46 | 000,122,880 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Windows\SysWOW64\CtHdaSvc.exe -- (CtHdaSvc)
SRV - [2012/10/08 16:53:20 | 000,423,424 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2018/05/24 03:21:54 | 017,194,584 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\nv_dispi.inf_amd64_f32bf428bbff8aa5\nvlddmkm.sys -- (nvlddmkm)
DRV:[b]64bit:[/b] - [2018/05/23 07:00:54 | 000,227,928 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2018/05/21 02:36:27 | 000,031,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2018/05/20 21:33:14 | 000,105,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
  • dainote
  • 2018/06/02 (Sat) 11:12:09
返信フォームへ 
OTLのログ4
OTLのログ4

DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,460,520 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,381,552 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,205,976 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,196,640 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswArPot.sys -- (aswArPot)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,159,120 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,111,360 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,085,968 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:59 | 000,046,968 | ---- | M] (AVAST Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:56 | 001,027,720 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:55 | 000,343,752 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbloga.sys -- (aswblog)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:55 | 000,227,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys -- (aswbidsdriver)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:55 | 000,199,440 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbidsha.sys -- (aswbidsh)
DRV:[b]64bit:[/b] - [2018/05/20 17:57:55 | 000,057,680 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbuniva.sys -- (aswbuniv)
DRV:[b]64bit:[/b] - [2018/05/20 17:15:11 | 000,313,888 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wd\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2018/05/20 17:15:11 | 000,061,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wd\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2018/05/20 17:15:11 | 000,046,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wd\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2018/04/28 13:29:42 | 000,382,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2018/04/28 09:25:24 | 000,068,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvhci.sys -- (nvvhci)
DRV:[b]64bit:[/b] - [2018/04/13 01:34:17 | 000,037,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2018/04/13 01:34:15 | 000,057,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpatialGraphFilter.sys -- (SpatialGraphFilter)
DRV:[b]64bit:[/b] - [2018/04/13 01:34:13 | 000,030,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:44 | 000,781,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,119,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 000,091,544 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 000,060,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bam.sys -- (bam)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,128,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,039,424 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afunix.sys -- (afunix)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:28 | 000,254,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:25 | 000,088,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,175,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,034,208 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 001,921,944 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,414,208 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\cldflt.sys -- (CldFlt)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,217,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,209,816 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:19 | 000,945,560 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:19 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:15 | 000,021,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdmCompanionFilter.sys -- (WdmCompanionFilter)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,282,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,154,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,152,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,151,960 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,128,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,082,944 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,075,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,067,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,039,328 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshwnclx.sys -- (HwNClx0101)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,169,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,164,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,092,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bindflt.sys -- (bindflt)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,082,432 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
  • dainote
  • 2018/06/02 (Sat) 11:13:21
返信フォームへ 
OTLのログ5
OTLのログ5

DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,082,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,072,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,055,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,128,000 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,063,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SgrmAgent.sys -- (SgrmAgent)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,058,272 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2018/04/12 08:34:04 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:58 | 000,030,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winnat.sys -- (WinNat)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,226,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,140,192 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,127,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,073,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,055,808 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,039,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ramdisk.sys -- (Ramdisk)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:54 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipt.sys -- (IPT)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,565,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,434,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,287,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,232,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,097,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,054,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,050,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,050,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:52 | 000,018,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,292,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,144,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,098,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,029,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,028,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:51 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 001,836,952 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,885,144 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAVC.sys -- (iaStorAVC)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,842,648 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,611,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,526,232 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,505,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbhost.sys -- (mausbhost)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,321,432 | ---- | M] (Chelsio Communications) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,305,560 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,197,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,156,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,128,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,108,952 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,105,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pmem.sys -- (pmem)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvdimm.sys -- (nvdimm)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,079,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
  • dainote
  • 2018/06/02 (Sat) 11:14:41
返信フォームへ 
OTLのログ6
OTLのログ6

DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,075,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,072,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,064,920 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,061,848 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,058,776 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,056,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbip.sys -- (mausbip)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,048,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,047,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,038,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bttflt.sys -- (bttflt)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,033,184 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\hvcrash.sys -- (hvcrash)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,033,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SDFRd.sys -- (SDFRd)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,032,152 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,031,128 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,029,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,018,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys -- (swenum)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,016,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:49 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 003,419,032 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 001,135,520 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,533,912 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,259,480 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,177,192 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,145,816 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ItSas35i.sys -- (ItSas35i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,128,408 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,124,312 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,123,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,107,416 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rhproxy.sys -- (rhproxy)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,083,360 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,082,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,082,328 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\megasas35i.sys -- (megasas35i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,075,160 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,064,408 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,063,904 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,027,032 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pnpmem.sys -- (PNPMEM)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:48 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,524,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,174,592 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_BXT_P.sys -- (iaLPSS2i_I2C_BXT_P)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,171,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,118,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,091,648 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,088,576 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_BXT_P.sys -- (iaLPSS2i_GPIO2_BXT_P)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,079,360 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
  • dainote
  • 2018/06/02 (Sat) 11:15:58
返信フォームへ 
OTLのログ7
OTLのログ7

DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,060,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CAD.sys -- (CAD)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2018/04/12 08:33:45 | 000,036,864 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:[b]64bit:[/b] - [2018/03/15 17:47:24 | 000,067,432 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2018/02/01 23:21:16 | 000,044,056 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)
DRV:[b]64bit:[/b] - [2017/01/18 02:04:26 | 000,042,792 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cthdb.sys -- (cthdb)
DRV:[b]64bit:[/b] - [2017/01/18 02:04:24 | 001,074,984 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cthda.sys -- (cthda)
DRV:[b]64bit:[/b] - [2016/09/06 14:59:26 | 000,204,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV - [2018/06/01 20:06:44 | 000,048,656 | ---- | M] (Wellbia.com Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\xhunter1.sys -- (xhunter1)
DRV - [2018/05/24 03:21:54 | 017,194,584 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f32bf428bbff8aa5\nvlddmkm.sys -- (nvlddmkm)
DRV - [2018/04/12 08:34:58 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\afunix.sys -- (afunix)
DRV - [2018/04/12 08:33:49 | 000,018,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys -- (swenum)
DRV - [2018/04/12 08:33:45 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys -- (CompositeBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 01 99 1C C7 47 F9 D3 01 [binary data]
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 33 00 00 00 8D F4 11 00 74 41 F9 D2 55 40 C1 5E 19 E2 2C 9F 02 E3 7D 8E CF C8 DB 85 80 7D 37 9C 7C C5 A9 62 1B 1B 5D 06 4B 5E 41 3D F9 61 40 D2 C3 A8 95 51 F8 71 5B 02 00 00 00 0E 00 00 00 4C 7A 55 52 49 66 43 4F 42 47 77 25 33 64 [binary data]
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)



[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\momdjgkdjbfllifenjdpknnkaddhnheg\1.0.2_1\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.4_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
CHR - Extension: No name found = C:\Users\360cm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6618.312.0.2_0\

O1 HOSTS File: ([2018/04/12 08:36:39 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:[b]64bit:[/b] - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvLaunch.exe (AVAST Software)
O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe (COMODO)
O4:[b]64bit:[/b] - HKLM..\Run: [SecurityHealth] C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Sound Blaster Z-Series Control Panel] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3439630269-1255355716-76200077-1001..\Run: [OneDrive] C:\Users\360cm\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableFullTrustStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUwpStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportFullTrustStartupTasks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportUwpStartupTasks = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{177f0968-4cbe-4b83-a018-47ba7985625b}: NameServer = 8.8.8.8,8.8.4.4
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  • dainote
  • 2018/06/02 (Sat) 11:17:35
返信フォームへ 
OTLのログ8
OTLのログ8

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C6658531-8DB9-3115-B6D1-F89B57830CFC} - .NET Framework
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {B82EE9BD-ADE2-3058-8091-78419781EC8E} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2018/06/02 09:18:49 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2018/06/01 10:33:24 | 000,000,000 | -H-D | C] -- C:\VTRoot
[2018/06/01 10:26:52 | 000,000,000 | ---D | C] -- C:\NPE
[2018/06/01 10:26:16 | 000,119,888 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SMR521.SYS.bak
[2018/06/01 07:21:53 | 000,000,000 | ---D | C] -- C:\Users\360cm\Documents\Black Desert
[2018/06/01 04:42:36 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\NPE
[2018/06/01 04:42:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2018/05/31 15:02:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2018/05/29 10:58:23 | 000,000,000 | ---D | C] -- C:\Users\360cm\Documents\Bless
[2018/05/29 10:18:48 | 000,048,656 | ---- | C] (Wellbia.com Co., Ltd.) -- C:\Windows\xhunter1.sys
[2018/05/29 10:16:20 | 002,848,992 | ---- | C] (GameOn) -- C:\Windows\uninstaller.exe
[2018/05/28 04:05:48 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2018/05/25 00:03:18 | 000,132,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2018/05/25 00:03:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VulkanRT
[2018/05/25 00:00:45 | 040,347,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2018/05/25 00:00:45 | 031,278,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2018/05/25 00:00:45 | 025,991,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2018/05/25 00:00:45 | 017,784,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2018/05/25 00:00:45 | 015,195,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2018/05/25 00:00:45 | 013,727,792 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvptxJitCompiler.dll
[2018/05/25 00:00:45 | 011,273,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvptxJitCompiler.dll
[2018/05/25 00:00:45 | 004,350,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2018/05/25 00:00:45 | 003,760,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2018/05/25 00:00:45 | 002,013,784 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6439793.dll
[2018/05/25 00:00:45 | 001,688,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2018/05/25 00:00:45 | 001,563,584 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2018/05/25 00:00:45 | 001,467,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6439793.dll
[2018/05/25 00:00:45 | 001,419,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2018/05/25 00:00:45 | 001,357,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFThevc.dll
[2018/05/25 00:00:45 | 001,347,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFTH264.dll
[2018/05/25 00:00:45 | 001,216,952 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2018/05/25 00:00:45 | 001,157,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvfatbinaryLoader.dll
[2018/05/25 00:00:45 | 001,092,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2018/05/25 00:00:45 | 001,069,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFThevc.dll
[2018/05/25 00:00:45 | 001,063,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFTH264.dll
[2018/05/25 00:00:45 | 000,904,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvfatbinaryLoader.dll
[2018/05/25 00:00:45 | 000,814,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2018/05/25 00:00:45 | 000,749,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvDecMFTMjpeg.dll
[2018/05/25 00:00:45 | 000,652,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2018/05/25 00:00:45 | 000,634,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmcumd.dll
[2018/05/25 00:00:45 | 000,627,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2018/05/25 00:00:45 | 000,608,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvDecMFTMjpeg.dll
[2018/05/25 00:00:45 | 000,518,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2018/05/25 00:00:45 | 000,047,648 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2018/05/25 00:00:44 | 035,250,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2018/05/25 00:00:44 | 004,125,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2018/05/25 00:00:44 | 000,474,040 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\NVIDIA Corporation\Drs\dbInstaller.exe
[2018/05/24 06:30:30 | 007,519,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2018/05/24 06:30:30 | 006,567,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2018/05/24 06:30:28 | 025,844,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2018/05/24 06:30:26 | 023,862,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Hydrogen.dll
[2018/05/24 06:30:23 | 022,001,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2018/05/24 06:30:22 | 008,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
  • dainote
  • 2018/06/02 (Sat) 11:18:55
返信フォームへ 
OTLのログ9
OTLのログ9

[2018/05/24 06:30:22 | 007,436,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2018/05/24 06:30:21 | 016,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2018/05/24 06:30:21 | 007,582,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2018/05/24 06:30:21 | 001,017,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2adec.dll
[2018/05/24 06:30:20 | 013,873,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2018/05/24 06:30:20 | 004,867,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2018/05/24 06:30:20 | 004,372,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeContent.dll
[2018/05/24 06:30:20 | 001,665,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2018/05/24 06:30:20 | 000,861,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2adec.dll
[2018/05/24 06:30:19 | 005,782,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2018/05/24 06:30:19 | 003,392,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2018/05/24 06:30:19 | 002,364,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2018/05/24 06:30:19 | 002,178,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2018/05/24 06:30:18 | 006,661,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2018/05/24 06:30:18 | 006,044,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2018/05/24 06:30:18 | 004,787,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2018/05/24 06:30:18 | 004,402,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2018/05/24 06:30:18 | 003,389,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2018/05/24 06:30:18 | 002,366,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebRuntimeManager.dll
[2018/05/24 06:30:17 | 009,159,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2018/05/24 06:30:17 | 002,699,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2018/05/24 06:30:17 | 001,456,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcDesktopMonSvc.dll
[2018/05/24 06:30:17 | 000,947,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2018/05/24 06:30:17 | 000,457,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll
[2018/05/24 06:30:16 | 003,655,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2018/05/24 06:30:16 | 003,320,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2018/05/24 06:30:16 | 002,564,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2018/05/24 06:30:16 | 002,536,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2018/05/24 06:30:16 | 001,800,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.appcore.dll
[2018/05/24 06:30:16 | 001,665,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comsvcs.dll
[2018/05/24 06:30:16 | 001,649,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2018/05/24 06:30:16 | 001,462,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.appcore.dll
[2018/05/24 06:30:16 | 001,271,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HoloSI.PCShell.dll
[2018/05/24 06:30:16 | 001,210,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll
[2018/05/24 06:30:16 | 001,209,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2018/05/24 06:30:16 | 000,894,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webplatstorageserver.dll
[2018/05/24 06:30:16 | 000,864,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2018/05/24 06:30:16 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2018/05/24 06:30:16 | 000,813,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeManager.dll
[2018/05/24 06:30:16 | 000,804,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2018/05/24 06:30:16 | 000,748,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2018/05/24 06:30:16 | 000,416,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll
[2018/05/24 06:30:15 | 002,900,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2018/05/24 06:30:15 | 002,896,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2018/05/24 06:30:15 | 002,236,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2018/05/24 06:30:15 | 001,348,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2018/05/24 06:30:15 | 001,318,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ISM.dll
[2018/05/24 06:30:15 | 001,303,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Vpn.dll
[2018/05/24 06:30:15 | 001,034,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2018/05/24 06:30:15 | 001,017,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyDecMFT.dll
[2018/05/24 06:30:15 | 001,012,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2018/05/24 06:30:15 | 001,005,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll
[2018/05/24 06:30:15 | 000,944,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Mirage.Internal.dll
[2018/05/24 06:30:15 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2018/05/24 06:30:15 | 000,775,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2018/05/24 06:30:15 | 000,747,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2018/05/24 06:30:15 | 000,735,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2018/05/24 06:30:15 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2018/05/24 06:30:15 | 000,669,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2018/05/24 06:30:15 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActivationManager.dll
[2018/05/24 06:30:15 | 000,625,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PsmServiceExtHost.dll
[2018/05/24 06:30:15 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgeIso.dll
[2018/05/24 06:30:14 | 001,634,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32full.dll
[2018/05/24 06:30:14 | 001,456,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2018/05/24 06:30:14 | 001,307,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSVPXENC.dll
[2018/05/24 06:30:14 | 001,258,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2018/05/24 06:30:14 | 001,148,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2018/05/24 06:30:14 | 001,140,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2018/05/24 06:30:14 | 000,983,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2018/05/24 06:30:14 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2018/05/24 06:30:14 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2018/05/24 06:30:14 | 000,861,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DolbyDecMFT.dll
[2018/05/24 06:30:14 | 000,783,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyHrtfEnc.dll
[2018/05/24 06:30:14 | 000,713,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSVideoDSP.dll
[2018/05/24 06:30:14 | 000,677,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HeadTrackerStorage.dll
[2018/05/24 06:30:14 | 000,567,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcblaunch.exe
[2018/05/24 06:30:14 | 000,560,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2018/05/24 06:30:14 | 000,347,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2018/05/24 06:30:14 | 000,308,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2018/05/24 06:30:14 | 000,088,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys
[2018/05/24 06:30:13 | 006,816,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2018/05/24 06:30:13 | 006,527,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2018/05/24 06:30:13 | 002,486,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreUIComponents.dll
[2018/05/24 06:30:13 | 001,947,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2018/05/24 06:30:13 | 001,295,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVPXENC.dll
[2018/05/24 06:30:13 | 001,097,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2018/05/24 06:30:13 | 001,063,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2018/05/24 06:30:13 | 000,992,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Vpn.dll
[2018/05/24 06:30:13 | 000,988,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2018/05/24 06:30:13 | 000,759,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicensingWinRT.dll
  • dainote
  • 2018/06/02 (Sat) 11:21:22
返信フォームへ 
OTLのログ10
OTLのログ10

[2018/05/24 06:30:13 | 000,722,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2018/05/24 06:30:13 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Mirage.Internal.dll
[2018/05/24 06:30:13 | 000,653,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicensingWinRT.dll
[2018/05/24 06:30:13 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EdgeManager.dll
[2018/05/24 06:30:13 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2018/05/24 06:30:13 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Phoneutil.dll
[2018/05/24 06:30:13 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgeIso.dll
[2018/05/24 06:30:13 | 000,234,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyMATEnc.dll
[2018/05/24 06:30:13 | 000,193,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\skci.dll
[2018/05/24 06:30:13 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppHostRegistrationVerifier.exe
[2018/05/24 06:30:13 | 000,105,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stornvme.sys
[2018/05/24 06:30:12 | 003,283,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreUIComponents.dll
[2018/05/24 06:30:12 | 002,371,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2018/05/24 06:30:12 | 002,331,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2018/05/24 06:30:12 | 002,084,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2018/05/24 06:30:12 | 002,016,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2018/05/24 06:30:12 | 001,559,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2018/05/24 06:30:12 | 001,454,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32full.dll
[2018/05/24 06:30:12 | 001,174,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2018/05/24 06:30:12 | 001,033,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\modernexecserver.dll
[2018/05/24 06:30:12 | 001,012,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2018/05/24 06:30:12 | 000,941,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasdlg.dll
[2018/05/24 06:30:12 | 000,885,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2018/05/24 06:30:12 | 000,863,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdlg.dll
[2018/05/24 06:30:12 | 000,792,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2018/05/24 06:30:12 | 000,567,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2018/05/24 06:30:12 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActivationManager.dll
[2018/05/24 06:30:12 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasplap.dll
[2018/05/24 06:30:12 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasplap.dll
[2018/05/24 06:30:12 | 000,413,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2018/05/24 06:30:12 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWfdProvider.dll
[2018/05/24 06:30:12 | 000,317,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Phoneutil.dll
[2018/05/24 06:30:12 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FSClient.dll
[2018/05/24 06:30:12 | 000,272,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave.dll
[2018/05/24 06:30:12 | 000,269,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave_secure.dll
[2018/05/24 06:30:12 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FSClient.dll
[2018/05/24 06:30:12 | 000,238,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HoloShellRuntime.dll
[2018/05/24 06:30:12 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wevtutil.exe
[2018/05/24 06:30:12 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallServiceTasks.dll
[2018/05/24 06:30:12 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wevtutil.exe
[2018/05/24 06:30:12 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallServiceTasks.dll
[2018/05/24 06:30:12 | 000,131,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rmclient.dll
[2018/05/24 06:30:12 | 000,130,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hvsocket.sys
[2018/05/24 06:30:12 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTimeUtil.dll
[2018/05/24 06:30:12 | 000,101,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rmclient.dll
[2018/05/24 06:30:12 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TelephonyInteractiveUser.dll
[2018/05/24 06:30:12 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTimeUtil.dll
[2018/05/24 06:30:12 | 000,094,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2018/05/24 06:30:12 | 000,089,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CompPkgSup.dll
[2018/05/24 06:30:12 | 000,077,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CompPkgSup.dll
[2018/05/24 06:30:11 | 005,951,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2018/05/24 06:30:11 | 004,929,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2018/05/24 06:30:11 | 004,706,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdp.dll
[2018/05/24 06:30:11 | 004,563,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2018/05/24 06:30:11 | 004,336,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2018/05/24 06:30:11 | 004,070,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2018/05/24 06:30:11 | 002,961,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdp.dll
[2018/05/24 06:30:11 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2018/05/24 06:30:11 | 001,292,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GamePanel.exe
[2018/05/24 06:30:11 | 001,036,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2018/05/24 06:30:11 | 000,871,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.BackgroundMediaPlayback.dll
[2018/05/24 06:30:11 | 000,869,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2018/05/24 06:30:11 | 000,849,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Playback.MediaPlayer.dll
[2018/05/24 06:30:11 | 000,835,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhoneService.dll
[2018/05/24 06:30:11 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2018/05/24 06:30:11 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.BackgroundMediaPlayback.dll
[2018/05/24 06:30:11 | 000,646,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2018/05/24 06:30:11 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Playback.MediaPlayer.dll
[2018/05/24 06:30:11 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2018/05/24 06:30:11 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2018/05/24 06:30:11 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2018/05/24 06:30:11 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ApiSetHost.AppExecutionAlias.dll
[2018/05/24 06:30:11 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ApiSetHost.AppExecutionAlias.dll
[2018/05/24 06:30:11 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSHEIF.dll
[2018/05/24 06:30:11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSHEIF.dll
[2018/05/24 06:30:10 | 001,485,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallService.dll
[2018/05/24 06:30:10 | 001,108,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallService.dll
[2018/05/24 06:30:10 | 000,788,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DHolographicDisplay.dll
[2018/05/24 06:30:10 | 000,401,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2018/05/24 06:30:10 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RasMediaManager.dll
[2018/05/24 06:30:10 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\HoloShellRuntime.dll
[2018/05/23 01:24:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2018/05/23 01:24:27 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2018/05/23 01:24:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2018/05/23 01:24:27 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2018/05/23 01:24:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2018/05/23 01:24:05 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll
[2018/05/23 01:24:05 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2018/05/23 01:24:04 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2018/05/23 01:24:01 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll
  • dainote
  • 2018/06/02 (Sat) 11:23:07
返信フォームへ 
OTLのログ11
OTLのログ11

[2018/05/23 01:24:01 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2018/05/23 01:24:01 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2018/05/23 01:23:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MU LEGEND JAPAN
[2018/05/22 02:50:47 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\CrashDumps
[2018/05/22 02:44:23 | 008,019,808 | ---- | C] (INCA Internet Co., Ltd.) -- C:\Windows\SysWow64\GameMon.des
[2018/05/22 02:44:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\INCA Shared
[2018/05/22 02:37:59 | 000,230,920 | ---- | C] (WEBZEN, INC.) -- C:\Windows\SysWow64\EPWZCmnCtrl.dll
[2018/05/22 02:37:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WEBZEN
[2018/05/22 02:26:26 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\VCLStylesSkin
[2018/05/22 02:17:20 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBZEN
[2018/05/21 18:32:34 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\Macromedia
[2018/05/21 16:59:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraPad
[2018/05/21 16:59:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeraPad
[2018/05/21 01:51:27 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\NVIDIA
[2018/05/21 01:51:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
[2018/05/21 01:51:11 | 000,000,000 | ---D | C] -- C:\Program Files\MPC-HC
[2018/05/21 01:50:13 | 002,300,928 | ---- | C] (Abysmal Software) -- C:\Windows\SysNative\DevIL.dll
[2018/05/21 01:50:13 | 001,927,168 | ---- | C] (The Public) -- C:\Windows\SysNative\AviSynth.dll
[2018/05/21 01:50:13 | 001,527,808 | ---- | C] (The Public) -- C:\Windows\SysWow64\AviSynth.dll
[2018/05/21 01:50:13 | 000,764,416 | ---- | C] (Abysmal Software) -- C:\Windows\SysWow64\DevIL.dll
[2018/05/21 01:50:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AviSynth+
[2018/05/21 01:50:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow x64
[2018/05/21 01:50:08 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2018/05/21 01:50:05 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\SVP4
[2018/05/21 01:49:59 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SVP 4
[2018/05/21 01:49:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SVP 4
[2018/05/21 01:26:03 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\DBG
[2018/05/21 00:09:09 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\Prismata
[2018/05/20 20:24:32 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\UnrealEngine
[2018/05/20 20:24:32 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\TslGame
[2018/05/20 20:24:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BattlEye
[2018/05/20 20:24:22 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2018/05/20 20:24:22 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2018/05/20 20:24:22 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2018/05/20 20:24:22 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2018/05/20 20:24:22 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2018/05/20 20:24:22 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2018/05/20 20:24:22 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2018/05/20 20:24:22 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2018/05/20 20:24:22 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2018/05/20 20:24:22 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2018/05/20 20:24:21 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2018/05/20 20:24:21 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2018/05/20 20:24:21 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2018/05/20 20:24:21 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2018/05/20 20:24:21 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2018/05/20 20:24:21 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2018/05/20 20:24:20 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2018/05/20 20:24:20 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2018/05/20 20:24:20 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2018/05/20 20:24:20 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2018/05/20 20:24:20 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2018/05/20 20:24:20 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2018/05/20 20:24:20 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2018/05/20 20:24:20 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2018/05/20 20:24:19 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2018/05/20 20:24:19 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2018/05/20 20:24:19 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2018/05/20 20:24:19 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2018/05/20 20:24:19 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2018/05/20 20:24:19 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2018/05/20 20:24:18 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2018/05/20 20:24:18 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2018/05/20 20:24:18 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2018/05/20 20:24:18 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2018/05/20 20:24:18 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2018/05/20 20:24:18 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2018/05/20 20:24:18 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2018/05/20 20:24:18 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2018/05/20 20:24:18 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2018/05/20 20:24:18 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2018/05/20 20:24:18 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2018/05/20 20:24:18 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2018/05/20 20:24:17 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2018/05/20 20:24:17 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2018/05/20 20:24:17 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2018/05/20 20:24:17 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2018/05/20 20:24:17 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2018/05/20 20:24:17 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2018/05/20 20:24:17 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2018/05/20 20:24:17 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2018/05/20 20:24:16 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2018/05/20 20:24:16 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2018/05/20 20:24:16 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2018/05/20 20:24:16 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2018/05/20 20:24:15 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2018/05/20 20:24:15 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2018/05/20 20:24:15 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2018/05/20 20:24:15 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2018/05/20 20:24:15 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2018/05/20 20:24:15 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2018/05/20 20:24:14 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2018/05/20 20:24:14 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2018/05/20 20:24:14 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2018/05/20 20:24:14 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
  • dainote
  • 2018/06/02 (Sat) 11:24:36
返信フォームへ 
OTLのログ12
OTLのログ12

[2018/05/20 20:24:14 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2018/05/20 20:24:14 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2018/05/20 20:24:13 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2018/05/20 20:24:13 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2018/05/20 20:24:13 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2018/05/20 20:24:13 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2018/05/20 20:24:13 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2018/05/20 20:24:13 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2018/05/20 20:24:12 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2018/05/20 20:24:12 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2018/05/20 20:24:12 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2018/05/20 20:24:12 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2018/05/20 20:24:12 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2018/05/20 20:24:12 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2018/05/20 20:24:12 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2018/05/20 20:24:12 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2018/05/20 20:24:12 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2018/05/20 20:24:12 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2018/05/20 20:24:12 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2018/05/20 20:24:12 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2018/05/20 20:24:11 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2018/05/20 20:24:11 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2018/05/20 20:24:11 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2018/05/20 20:24:11 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2018/05/20 20:24:11 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2018/05/20 20:24:11 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2018/05/20 20:24:10 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2018/05/20 20:24:10 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2018/05/20 20:24:10 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2018/05/20 20:24:10 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2018/05/20 20:24:10 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2018/05/20 20:24:10 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2018/05/20 20:24:09 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2018/05/20 20:24:09 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2018/05/20 20:24:09 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2018/05/20 20:24:09 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2018/05/20 20:24:09 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2018/05/20 20:24:09 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2018/05/20 20:24:09 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2018/05/20 20:24:09 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2018/05/20 20:24:08 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2018/05/20 20:24:08 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2018/05/20 20:24:07 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2018/05/20 20:24:07 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2018/05/20 20:24:07 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2018/05/20 20:24:07 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2018/05/20 20:24:07 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2018/05/20 20:24:07 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2018/05/20 20:24:06 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2018/05/20 20:24:06 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2018/05/20 20:24:06 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2018/05/20 20:24:06 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2018/05/20 20:24:06 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2018/05/20 20:24:06 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2018/05/20 20:24:06 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2018/05/20 20:24:06 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2018/05/20 20:24:06 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2018/05/20 20:24:06 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2018/05/20 20:24:05 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2018/05/20 20:24:05 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2018/05/20 20:24:05 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2018/05/20 20:24:05 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2018/05/20 20:24:05 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2018/05/20 20:24:05 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2018/05/20 20:24:04 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2018/05/20 20:24:04 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2018/05/20 20:24:04 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2018/05/20 20:24:04 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2018/05/20 20:24:04 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2018/05/20 20:24:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2018/05/20 20:24:03 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2018/05/20 20:24:03 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2018/05/20 20:24:03 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2018/05/20 20:24:03 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2018/05/20 20:24:02 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2018/05/20 20:24:02 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2018/05/20 20:24:02 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2018/05/20 20:24:02 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2018/05/20 20:24:01 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2018/05/20 20:24:01 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2018/05/20 20:24:01 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2018/05/20 20:24:01 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2018/05/20 20:24:01 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2018/05/20 20:24:01 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2018/05/20 20:24:00 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2018/05/20 20:24:00 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2018/05/20 20:24:00 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2018/05/20 20:24:00 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2018/05/20 20:23:59 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2018/05/20 20:23:59 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2018/05/20 20:23:59 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
  • dainote
  • 2018/06/02 (Sat) 11:26:05
返信フォームへ 
OTLのログ13
OTLのログ13

[2018/05/20 20:23:59 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2018/05/20 20:23:59 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2018/05/20 20:23:59 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2018/05/20 20:23:58 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2018/05/20 20:23:58 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2018/05/20 20:23:58 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2018/05/20 20:23:58 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2018/05/20 20:23:58 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2018/05/20 20:23:58 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2018/05/20 20:23:57 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2018/05/20 20:23:57 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2018/05/20 20:23:56 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2018/05/20 20:23:56 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2018/05/20 20:23:55 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2018/05/20 20:23:55 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2018/05/20 20:23:54 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2018/05/20 20:23:54 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2018/05/20 20:23:54 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2018/05/20 20:23:54 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2018/05/20 20:23:53 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2018/05/20 20:23:53 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2018/05/20 19:47:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2018/05/20 19:47:40 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Google
[2018/05/20 19:42:33 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Creative
[2018/05/20 19:41:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Creative
[2018/05/20 19:40:06 | 000,466,520 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2018/05/20 19:40:06 | 000,445,016 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2018/05/20 19:40:06 | 000,123,480 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2018/05/20 19:40:06 | 000,109,144 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2018/05/20 19:40:06 | 000,090,112 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\Updreg.EXE
[2018/05/20 19:40:05 | 001,898,496 | ---- | C] (Creative) -- C:\Windows\SysNative\Sens_oal.dll
[2018/05/20 19:40:05 | 001,609,728 | ---- | C] (Creative) -- C:\Windows\SysWow64\Sens_oal.dll
[2018/05/20 19:40:03 | 000,647,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mscomct2.ocx
[2018/05/20 19:40:03 | 000,053,248 | ---- | C] (Creative Technology Ltd ) -- C:\Windows\Ctregrun.exe
[2018/05/20 19:39:57 | 000,183,808 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysNative\CTOPT352.dll
[2018/05/20 19:39:57 | 000,167,424 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysWow64\CTOPT352.dll
[2018/05/20 19:39:57 | 000,042,496 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\AddCat.exe
[2018/05/20 19:39:57 | 000,042,496 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\AddCat.exe
[2018/05/20 19:39:51 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2018/05/20 19:39:45 | 000,088,576 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysNative\CTOPT399.dll
[2018/05/20 19:39:45 | 000,079,360 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysWow64\CTOPT399.dll
[2018/05/20 19:39:45 | 000,061,440 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysWow64\CTChkAud.dll
[2018/05/20 19:39:45 | 000,049,664 | ---- | C] (Creative Technology Ltd) -- C:\Windows\SysNative\CTChkAud.dll
[2018/05/20 19:39:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
[2018/05/20 19:39:41 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2018/05/20 19:39:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2018/05/20 19:39:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2018/05/20 19:31:18 | 002,496,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2018/05/20 19:31:18 | 002,164,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2018/05/20 19:31:18 | 001,312,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRtmpStreamer64.dll
[2018/05/20 19:30:43 | 000,067,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2018/05/20 19:28:01 | 000,000,000 | ---D | C] -- C:\Users\360cm\ansel
[2018/05/20 19:28:00 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\NVIDIA
[2018/05/20 19:27:54 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\NVIDIA Corporation
[2018/05/20 19:27:30 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2018/05/20 19:27:30 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2018/05/20 19:27:30 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2018/05/20 19:27:30 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2018/05/20 19:27:29 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2018/05/20 19:27:29 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2018/05/20 19:27:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2018/05/20 19:26:43 | 000,209,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2018/05/20 19:26:43 | 000,169,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2018/05/20 19:26:35 | 005,947,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2018/05/20 19:26:35 | 002,612,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2018/05/20 19:26:35 | 001,767,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2018/05/20 19:26:35 | 000,633,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2018/05/20 19:26:35 | 000,450,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2018/05/20 19:26:35 | 000,124,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2018/05/20 19:26:35 | 000,083,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2018/05/20 19:26:21 | 000,552,024 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2018/05/20 19:26:21 | 000,456,792 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2018/05/20 19:25:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NVIDIA Corporation
[2018/05/20 19:25:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NVIDIA Corporation\Drs
[2018/05/20 19:25:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2018/05/20 19:24:20 | 000,068,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvhci.sys
[2018/05/20 19:24:19 | 000,227,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2018/05/20 19:24:18 | 004,855,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2018/05/20 19:24:18 | 001,990,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6439764.dll
[2018/05/20 19:24:18 | 001,467,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6439764.dll
[2018/05/20 19:15:57 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\MPC-HC
[2018/05/20 19:15:35 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Programs
[2018/05/20 19:13:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2018/05/20 19:13:29 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2018/05/20 18:06:36 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Steam
[2018/05/20 18:05:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2018/05/20 18:05:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2018/05/20 17:58:33 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\CEF
[2018/05/20 17:58:33 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\AVAST Software
[2018/05/20 17:58:04 | 001,027,720 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2018/05/20 17:58:04 | 000,460,520 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2018/05/20 17:58:04 | 000,381,552 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswVmm.sys
[2018/05/20 17:58:04 | 000,343,752 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbloga.sys
[2018/05/20 17:58:04 | 000,227,504 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys
[2018/05/20 17:58:04 | 000,205,976 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2018/05/20 17:58:04 | 000,199,440 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsha.sys
[2018/05/20 17:58:04 | 000,196,640 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswArPot.sys
  • dainote
  • 2018/06/02 (Sat) 11:27:54
返信フォームへ 
OTLのログ14
OTLのログ14

[2018/05/20 17:58:04 | 000,159,120 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2018/05/20 17:58:04 | 000,111,360 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2018/05/20 17:58:04 | 000,085,968 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2018/05/20 17:58:04 | 000,057,680 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbuniva.sys
[2018/05/20 17:58:04 | 000,046,968 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
[2018/05/20 17:58:02 | 000,376,536 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2018/05/20 17:58:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVAST Software
[2018/05/20 17:57:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2018/05/20 17:53:54 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2018/05/20 17:32:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
[2018/05/20 17:32:06 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2018/05/20 17:28:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Shared Space
[2018/05/20 17:28:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2018/05/20 17:28:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2018/05/20 17:23:07 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\D3DSCache
[2018/05/20 17:18:37 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2018/05/20 17:18:35 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2018/05/20 17:18:26 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2018/05/20 17:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2018/05/20 17:15:13 | 000,313,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdFilter.sys
[2018/05/20 17:15:13 | 000,061,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdNisDrv.sys
[2018/05/20 17:15:13 | 000,046,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdBoot.sys
[2018/05/20 17:14:48 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\PlaceholderTileLogoFolder
[2018/05/20 17:12:07 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2018/05/20 17:12:04 | 141,696,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MRT-KB890830.exe
[2018/05/20 17:11:13 | 019,525,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HologramCompositor.dll
[2018/05/20 17:11:10 | 003,086,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2018/05/20 17:11:08 | 012,500,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2018/05/20 17:11:07 | 001,380,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\comsvcs.dll
[2018/05/20 17:11:07 | 001,034,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ApplyTrustOffline.exe
[2018/05/20 17:11:07 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Spectrum.exe
[2018/05/20 17:11:07 | 000,788,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2018/05/20 17:11:07 | 000,776,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2018/05/20 17:11:07 | 000,604,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\securekernel.exe
[2018/05/20 17:11:07 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\updatehandlers.dll
[2018/05/20 17:11:07 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerceptionSimulationExtensions.dll
[2018/05/20 17:11:07 | 000,543,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2018/05/20 17:11:07 | 000,473,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dcntel.dll
[2018/05/20 17:11:06 | 001,586,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2018/05/20 17:11:06 | 001,565,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxPackaging.dll
[2018/05/20 17:11:06 | 001,550,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2018/05/20 17:11:06 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2018/05/20 17:11:06 | 001,426,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxPackaging.dll
[2018/05/20 17:11:06 | 001,191,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2018/05/20 17:11:06 | 000,836,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2018/05/20 17:11:06 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2018/05/20 17:11:06 | 000,695,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hhctrl.ocx
[2018/05/20 17:11:06 | 000,665,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2018/05/20 17:11:06 | 000,494,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFault.exe
[2018/05/20 17:11:06 | 000,434,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFault.exe
[2018/05/20 17:11:06 | 000,382,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys
[2018/05/20 17:11:06 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SharedPCCSP.dll
[2018/05/20 17:11:06 | 000,134,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.dll
[2018/05/20 17:11:06 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcimage.dll
[2018/05/20 17:11:05 | 008,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2018/05/20 17:11:05 | 002,170,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2018/05/20 17:11:05 | 000,917,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2018/05/20 17:11:05 | 000,585,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.rs3.dll
[2018/05/20 17:11:05 | 000,581,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hhctrl.ocx
[2018/05/20 17:11:05 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2018/05/20 17:11:05 | 000,474,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.rs2.dll
[2018/05/20 17:11:05 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Cortana.Analog.dll
[2018/05/20 17:11:05 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll
[2018/05/20 17:11:04 | 013,570,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2018/05/20 17:11:04 | 007,987,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2018/05/20 17:11:04 | 001,534,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2018/05/20 17:11:04 | 001,421,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpbase.dll
[2018/05/20 17:11:04 | 001,235,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpbase.dll
[2018/05/20 17:11:04 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.rs4.dll
[2018/05/20 17:11:04 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.rs1.dll
[2018/05/20 17:11:04 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.th.dll
[2018/05/20 17:11:04 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MixedReality.Broker.dll
[2018/05/20 17:11:04 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.win81.dll
[2018/05/20 17:11:04 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.win8rtm.dll
[2018/05/20 17:08:21 | 000,000,000 | -H-D | C] -- C:\Users\360cm\MicrosoftEdgeBackups
[2018/05/20 17:03:03 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Comms
[2018/05/20 17:01:25 | 000,000,000 | R--D | C] -- C:\Users\360cm\OneDrive
[2018/05/20 17:01:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
[2018/05/20 17:00:55 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\MicrosoftEdge
[2018/05/20 16:59:53 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Publishers
[2018/05/20 16:59:51 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2018/05/20 16:59:51 | 000,000,000 | R--D | C] -- C:\Users\360cm\Searches
[2018/05/20 16:59:51 | 000,000,000 | R--D | C] -- C:\Users\360cm\Contacts
[2018/05/20 16:59:51 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2018/05/20 16:59:51 | 000,000,000 | R--D | C] -- C:\Users\360cm\3D Objects
[2018/05/20 16:59:51 | 000,000,000 | -H-D | C] -- C:\Users\360cm\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2018/05/20 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\VirtualStore
[2018/05/20 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Packages
[2018/05/20 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\ConnectedDevicesPlatform
[2018/05/20 16:59:51 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\Adobe
[2018/05/20 16:58:57 | 000,000,000 | --SD | C] -- C:\Users\360cm\AppData\Roaming\Microsoft
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Videos
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Saved Games
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Pictures
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Music
  • dainote
  • 2018/06/02 (Sat) 11:29:30
返信フォームへ 
OTLのログ15
OTLのログ15

[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Links
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Favorites
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Documents
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\Desktop
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2018/05/20 16:58:57 | 000,000,000 | R--D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\スタート メニュー
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\AppData\Local\Temporary Internet Files
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Templates
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\SendTo
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Recent
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\PrintHood
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\NetHood
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Documents\My Videos
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Documents\My Pictures
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Documents\My Music
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\My Documents
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Local Settings
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\AppData\Local\History
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Cookies
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\Application Data
[2018/05/20 16:58:57 | 000,000,000 | -HSD | C] -- C:\Users\360cm\AppData\Local\Application Data
[2018/05/20 16:58:57 | 000,000,000 | -H-D | C] -- C:\Users\360cm\AppData
[2018/05/20 16:58:57 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Temp
[2018/05/20 16:58:57 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Local\Microsoft
[2018/05/20 16:58:57 | 000,000,000 | ---D | C] -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2018/05/20 16:58:15 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2018/05/20 16:58:13 | 000,000,000 | ---D | C] -- C:\ProgramData\USOShared
[2018/05/20 16:58:12 | 002,752,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PrintConfig.dll
[2018/05/20 16:56:13 | 000,000,000 | -HSD | C] -- C:\Recovery
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\デスクトップ
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\スタート メニュー
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Templates
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Videos
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Pictures
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\My Music
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Documents
[2018/05/20 16:56:11 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2018/05/20 16:55:00 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2018/05/20 16:54:57 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\wd
[2018/05/20 16:54:56 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2018/05/20 16:54:49 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\Microsoft
[2018/05/20 16:54:49 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SleepStudy
[2018/05/20 16:54:49 | 000,000,000 | ---D | C] -- C:\Windows\ServiceProfiles
[2018/05/20 16:54:48 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2018/05/20 16:54:28 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2018/06/02 10:44:17 | 000,000,002 | ---- | M] () -- C:\Windows\data.gameon
[2018/06/02 09:22:22 | 000,009,108 | ---- | M] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2018/06/02 09:18:26 | 2549,133,311 | -HS- | M] () -- C:\hiberfil.sys
[2018/06/02 09:18:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2018/06/01 20:06:44 | 000,048,656 | ---- | M] (Wellbia.com Co., Ltd.) -- C:\Windows\xhunter1.sys
[2018/06/01 10:34:12 | 001,447,762 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2018/06/01 10:34:12 | 000,699,762 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2018/06/01 10:34:12 | 000,480,294 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2018/06/01 10:34:12 | 000,132,702 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2018/06/01 10:34:12 | 000,132,262 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2018/06/01 10:29:26 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2018/06/01 10:26:16 | 000,119,888 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SMR521.SYS.bak
[2018/06/01 05:11:00 | 000,000,189 | ---- | M] () -- C:\Users\360cm\Desktop\黒い砂漠.url
[2018/05/27 16:43:36 | 000,930,514 | ---- | M] () -- C:\Users\360cm\Documents\test.htm
[2018/05/24 06:33:28 | 000,271,488 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2018/05/24 03:21:52 | 000,627,232 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2018/05/24 03:21:50 | 001,419,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2018/05/24 03:21:50 | 001,092,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2018/05/24 03:21:50 | 000,518,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2018/05/24 03:21:40 | 001,563,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2018/05/24 03:21:40 | 001,467,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6439793.dll
[2018/05/24 03:21:40 | 001,216,952 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2018/05/24 03:21:38 | 002,013,784 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6439793.dll
[2018/05/24 03:21:36 | 000,749,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvDecMFTMjpeg.dll
[2018/05/24 03:21:36 | 000,608,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvDecMFTMjpeg.dll
[2018/05/24 03:21:34 | 013,727,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvptxJitCompiler.dll
[2018/05/24 03:21:34 | 004,350,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2018/05/24 03:21:32 | 011,273,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvptxJitCompiler.dll
[2018/05/24 03:21:32 | 003,760,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2018/05/24 03:21:26 | 031,278,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2018/05/24 03:21:24 | 040,347,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2018/05/24 03:21:20 | 025,991,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2018/05/24 03:21:18 | 000,634,576 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmcumd.dll
[2018/05/24 03:21:16 | 035,250,536 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2018/05/24 03:21:14 | 001,157,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvfatbinaryLoader.dll
[2018/05/24 03:21:12 | 000,904,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvfatbinaryLoader.dll
[2018/05/24 03:21:12 | 000,814,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2018/05/24 03:21:12 | 000,652,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2018/05/24 03:21:10 | 001,357,000 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFThevc.dll
[2018/05/24 03:21:10 | 001,069,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFThevc.dll
[2018/05/24 03:21:08 | 001,347,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncMFTH264.dll
[2018/05/24 03:21:08 | 001,063,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncMFTH264.dll
[2018/05/24 03:20:58 | 000,474,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\NVIDIA Corporation\Drs\dbInstaller.exe
[2018/05/24 03:20:44 | 017,784,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2018/05/24 03:20:40 | 015,195,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2018/05/24 03:20:38 | 004,855,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2018/05/24 03:20:36 | 004,125,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2018/05/23 07:00:54 | 001,688,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2018/05/23 07:00:54 | 001,512,680 | ---- | M] () -- C:\Windows\SysNative\drivers\NVIDIA Corporation\Drs\nvdrsdb.bin
[2018/05/23 07:00:54 | 000,227,928 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2018/05/23 07:00:54 | 000,047,648 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2018/05/23 07:00:54 | 000,044,277 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2018/05/23 05:09:28 | 000,132,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2018/05/23 04:58:00 | 002,612,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2018/05/23 04:57:59 | 005,947,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2018/05/23 04:57:29 | 001,767,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2018/05/23 04:57:28 | 000,450,960 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2018/05/23 04:57:28 | 000,124,200 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
  • dainote
  • 2018/06/02 (Sat) 11:31:01
返信フォームへ 
OTLのログ16
OTLのログ16

[2018/05/23 04:57:26 | 000,633,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll
[2018/05/23 04:57:26 | 000,083,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll
[2018/05/22 15:43:13 | 008,186,102 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2018/05/21 15:46:31 | 000,002,342 | ---- | M] () -- C:\Users\360cm\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2018/05/21 04:45:55 | 000,308,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2018/05/21 04:45:13 | 000,094,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2018/05/21 04:42:39 | 001,649,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2018/05/21 04:42:16 | 001,634,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32full.dll
[2018/05/21 04:42:07 | 000,759,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LicensingWinRT.dll
[2018/05/21 04:27:36 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2018/05/21 04:26:45 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasplap.dll
[2018/05/21 04:24:51 | 002,084,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2018/05/21 04:23:51 | 003,655,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2018/05/21 04:23:24 | 000,899,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2018/05/21 04:23:02 | 004,070,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2018/05/21 04:23:01 | 000,947,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2018/05/21 04:22:22 | 001,292,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\GamePanel.exe
[2018/05/21 04:22:19 | 000,941,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasdlg.dll
[2018/05/21 04:22:16 | 001,665,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\comsvcs.dll
[2018/05/21 04:22:01 | 000,804,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2018/05/21 03:17:30 | 001,454,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32full.dll
[2018/05/21 03:15:43 | 000,653,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\LicensingWinRT.dll
[2018/05/21 03:02:28 | 000,461,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rasplap.dll
[2018/05/21 03:00:16 | 000,864,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2018/05/21 03:00:10 | 002,896,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2018/05/21 02:59:53 | 002,016,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2018/05/21 02:59:36 | 000,863,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdlg.dll
[2018/05/21 02:59:12 | 000,747,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2018/05/21 02:36:52 | 002,496,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2018/05/21 02:36:52 | 002,164,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2018/05/21 02:36:52 | 001,312,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvRtmpStreamer64.dll
[2018/05/21 01:59:16 | 023,862,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Hydrogen.dll
[2018/05/21 01:45:10 | 001,271,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\HoloSI.PCShell.dll
[2018/05/21 01:39:24 | 000,944,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Mirage.Internal.dll
[2018/05/21 01:39:18 | 000,788,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DHolographicDisplay.dll
[2018/05/21 01:36:26 | 003,733,312 | ---- | M] () -- C:\Windows\SysNative\Windows.Mirage.dll
[2018/05/21 01:35:54 | 000,677,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\HeadTrackerStorage.dll
[2018/05/21 01:34:27 | 000,238,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\HoloShellRuntime.dll
[2018/05/21 00:30:00 | 000,001,951 | ---- | M] () -- C:\Windows\NvTelemetryContainerRecovery.bat
[2018/05/21 00:04:09 | 000,658,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Mirage.Internal.dll
[2018/05/21 00:00:13 | 002,841,312 | ---- | M] () -- C:\Windows\SysWow64\Windows.Mirage.dll
[2018/05/20 23:54:41 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\HoloShellRuntime.dll
[2018/05/20 21:33:22 | 000,748,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2018/05/20 21:33:14 | 000,105,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stornvme.sys
[2018/05/20 21:01:37 | 001,140,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2018/05/20 21:01:05 | 000,983,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2018/05/20 20:59:43 | 000,269,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave_secure.dll
[2018/05/20 20:58:52 | 000,272,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SgrmEnclave.dll
[2018/05/20 20:55:21 | 000,567,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tcblaunch.exe
[2018/05/20 20:55:20 | 000,193,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\skci.dll
[2018/05/20 20:55:17 | 001,063,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SecConfig.efi
[2018/05/20 20:55:12 | 001,456,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2018/05/20 20:55:05 | 001,174,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2018/05/20 20:54:56 | 001,017,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2adec.dll
[2018/05/20 20:54:38 | 001,012,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2018/05/20 20:54:11 | 002,564,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2018/05/20 20:54:05 | 000,722,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2018/05/20 20:54:01 | 001,800,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.appcore.dll
[2018/05/20 20:53:57 | 001,017,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyDecMFT.dll
[2018/05/20 20:53:48 | 001,258,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2018/05/20 20:53:35 | 001,012,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2018/05/20 20:53:28 | 002,178,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2018/05/20 20:53:28 | 001,947,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2018/05/20 20:53:23 | 004,402,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2018/05/20 20:53:17 | 002,371,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2018/05/20 20:53:11 | 000,088,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys
[2018/05/20 20:53:07 | 000,131,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rmclient.dll
[2018/05/20 20:53:02 | 000,792,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2018/05/20 20:53:01 | 006,816,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2018/05/20 20:52:56 | 001,209,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2018/05/20 20:52:53 | 009,159,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2018/05/20 20:52:46 | 007,436,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2018/05/20 20:52:44 | 007,519,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2018/05/20 20:52:43 | 001,148,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2018/05/20 20:52:42 | 000,347,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2018/05/20 20:52:38 | 000,089,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CompPkgSup.dll
[2018/05/20 20:52:30 | 000,735,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2018/05/20 20:52:29 | 000,413,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2018/05/20 20:52:27 | 000,885,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2018/05/20 20:52:27 | 000,416,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSAudDecMFT.dll
[2018/05/20 20:52:24 | 001,097,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2018/05/20 20:52:24 | 000,130,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hvsocket.sys
[2018/05/20 20:52:15 | 003,283,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreUIComponents.dll
[2018/05/20 20:52:11 | 000,713,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSVideoDSP.dll
[2018/05/20 20:35:53 | 025,844,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2018/05/20 20:35:06 | 000,861,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2adec.dll
[2018/05/20 20:34:53 | 016,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2018/05/20 20:34:42 | 000,861,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\DolbyDecMFT.dll
[2018/05/20 20:34:03 | 001,462,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.appcore.dll
[2018/05/20 20:33:21 | 000,457,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAudDecMFT.dll
[2018/05/20 20:33:21 | 000,101,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\rmclient.dll
  • dainote
  • 2018/06/02 (Sat) 11:32:58
返信フォームへ 
OTLのログ17
OTLのログ17

[2018/05/20 20:33:14 | 002,331,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2018/05/20 20:33:03 | 001,665,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2018/05/20 20:32:56 | 001,559,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2018/05/20 20:32:52 | 004,787,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2018/05/20 20:32:50 | 006,044,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll
[2018/05/20 20:32:48 | 002,536,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2018/05/20 20:32:48 | 001,034,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2018/05/20 20:32:45 | 006,567,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2018/05/20 20:32:40 | 000,077,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CompPkgSup.dll
[2018/05/20 20:32:39 | 006,527,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2018/05/20 20:32:39 | 002,486,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreUIComponents.dll
[2018/05/20 20:32:38 | 000,560,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2018/05/20 20:32:36 | 000,988,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2018/05/20 20:32:35 | 000,567,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2018/05/20 20:31:30 | 001,456,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WpcDesktopMonSvc.dll
[2018/05/20 20:30:14 | 008,188,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2018/05/20 20:29:22 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InstallServiceTasks.dll
[2018/05/20 20:28:25 | 000,119,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UserDataTimeUtil.dll
[2018/05/20 20:28:15 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppHostRegistrationVerifier.exe
[2018/05/20 20:28:09 | 004,372,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeContent.dll
[2018/05/20 20:28:04 | 004,706,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdp.dll
[2018/05/20 20:27:43 | 000,295,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\FSClient.dll
[2018/05/20 20:27:27 | 000,109,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ApiSetHost.AppExecutionAlias.dll
[2018/05/20 20:27:05 | 000,344,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RasMediaManager.dll
[2018/05/20 20:26:43 | 001,307,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSVPXENC.dll
[2018/05/20 20:26:42 | 003,392,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2018/05/20 20:26:36 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MSHEIF.dll
[2018/05/20 20:26:34 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TelephonyInteractiveUser.dll
[2018/05/20 20:26:31 | 000,356,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dafWfdProvider.dll
[2018/05/20 20:26:16 | 003,389,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2018/05/20 20:26:02 | 000,236,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wevtutil.exe
[2018/05/20 20:26:02 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakradiag.dll
[2018/05/20 20:25:52 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Phoneutil.dll
[2018/05/20 20:25:42 | 004,563,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2018/05/20 20:25:35 | 022,001,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2018/05/20 20:25:35 | 004,867,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2018/05/20 20:25:35 | 000,835,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PhoneService.dll
[2018/05/20 20:24:57 | 000,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PsmServiceExtHost.dll
[2018/05/20 20:24:51 | 003,320,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2018/05/20 20:24:49 | 007,582,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2018/05/20 20:24:48 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2018/05/20 20:24:45 | 000,894,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\webplatstorageserver.dll
[2018/05/20 20:24:30 | 000,898,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WpcWebFilter.dll
[2018/05/20 20:24:28 | 000,813,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EdgeManager.dll
[2018/05/20 20:24:07 | 001,485,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InstallService.dll
[2018/05/20 20:24:05 | 000,234,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyMATEnc.dll
[2018/05/20 20:23:40 | 001,318,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ISM.dll
[2018/05/20 20:23:38 | 000,933,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2018/05/20 20:23:07 | 005,951,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2018/05/20 20:23:06 | 002,366,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WebRuntimeManager.dll
[2018/05/20 20:23:05 | 002,364,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2018/05/20 20:23:02 | 013,873,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2018/05/20 20:23:00 | 000,847,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2018/05/20 20:22:58 | 000,684,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2018/05/20 20:22:23 | 000,871,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.BackgroundMediaPlayback.dll
[2018/05/20 20:22:16 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2018/05/20 20:21:52 | 000,783,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DolbyHrtfEnc.dll
[2018/05/20 20:21:48 | 002,236,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2018/05/20 20:21:48 | 000,401,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2018/05/20 20:21:42 | 000,849,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Playback.MediaPlayer.dll
[2018/05/20 20:21:40 | 001,210,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wpnapps.dll
[2018/05/20 20:21:35 | 000,775,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2018/05/20 20:21:30 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\modernexecserver.dll
[2018/05/20 20:21:28 | 001,303,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Vpn.dll
[2018/05/20 20:21:24 | 001,371,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2018/05/20 20:21:17 | 000,505,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgeIso.dll
[2018/05/20 20:21:11 | 000,652,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ActivationManager.dll
[2018/05/20 20:17:47 | 002,961,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdp.dll
[2018/05/20 20:17:03 | 002,699,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2018/05/20 20:16:56 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UserDataTimeUtil.dll
[2018/05/20 20:16:53 | 006,661,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2018/05/20 20:16:22 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ApiSetHost.AppExecutionAlias.dll
[2018/05/20 20:16:05 | 000,239,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\FSClient.dll
[2018/05/20 20:15:55 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallServiceTasks.dll
[2018/05/20 20:15:46 | 004,336,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2018/05/20 20:15:05 | 002,900,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2018/05/20 20:15:02 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSHEIF.dll
[2018/05/20 20:14:40 | 000,331,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgeIso.dll
[2018/05/20 20:14:36 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wevtutil.exe
[2018/05/20 20:14:25 | 001,295,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVPXENC.dll
[2018/05/20 20:14:24 | 005,782,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2018/05/20 20:13:54 | 000,615,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\EdgeManager.dll
[2018/05/20 20:13:39 | 000,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\webplatstorageserver.dll
[2018/05/20 20:13:16 | 000,630,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Playback.MediaPlayer.dll
[2018/05/20 20:13:16 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Phoneutil.dll
[2018/05/20 20:13:13 | 004,929,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2018/05/20 20:13:03 | 000,646,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Playback.BackgroundMediaPlayer.dll
[2018/05/20 20:12:59 | 000,992,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Vpn.dll
  • dainote
  • 2018/06/02 (Sat) 11:34:47
返信フォームへ 
OTLのログ18
OTLのログ18

[2018/05/20 20:12:53 | 001,348,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2018/05/20 20:12:36 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WpcWebFilter.dll
[2018/05/20 20:11:50 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.BackgroundMediaPlayback.dll
[2018/05/20 20:11:35 | 001,005,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wpnapps.dll
[2018/05/20 20:11:18 | 001,036,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2018/05/20 20:11:11 | 001,108,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallService.dll
[2018/05/20 20:11:11 | 000,669,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2018/05/20 20:11:05 | 000,528,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ActivationManager.dll
[2018/05/20 19:40:06 | 000,466,520 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2018/05/20 19:40:06 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2018/05/20 19:40:06 | 000,123,480 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2018/05/20 19:40:06 | 000,109,144 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2018/05/20 19:39:23 | 000,000,105 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2018/05/20 19:07:02 | 000,001,310 | ---- | M] () -- C:\Windows\SysNative\tcbres.wim
[2018/05/20 17:57:59 | 000,460,520 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2018/05/20 17:57:59 | 000,381,552 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswVmm.sys
[2018/05/20 17:57:59 | 000,376,536 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2018/05/20 17:57:59 | 000,205,976 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2018/05/20 17:57:59 | 000,196,640 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswArPot.sys
[2018/05/20 17:57:59 | 000,159,120 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2018/05/20 17:57:59 | 000,111,360 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2018/05/20 17:57:59 | 000,085,968 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2018/05/20 17:57:59 | 000,046,968 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
[2018/05/20 17:57:56 | 001,027,720 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2018/05/20 17:57:55 | 000,343,752 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbloga.sys
[2018/05/20 17:57:55 | 000,227,504 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys
[2018/05/20 17:57:55 | 000,199,440 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsha.sys
[2018/05/20 17:57:55 | 000,057,680 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbuniva.sys
[2018/05/20 17:26:41 | 000,018,716 | ---- | M] () -- C:\Windows\SysNative\srms-apr.dat
[2018/05/20 17:15:11 | 000,313,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdFilter.sys
[2018/05/20 17:15:11 | 000,061,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdNisDrv.sys
[2018/05/20 17:15:11 | 000,046,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd\WdBoot.sys
[2018/05/20 17:12:05 | 141,696,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MRT-KB890830.exe
[2018/05/20 16:55:40 | 000,150,809 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2018/05/20 16:55:40 | 000,150,809 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2018/05/20 16:54:57 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2018/05/19 02:08:50 | 000,018,716 | ---- | M] () -- C:\Windows\SysWow64\srms-apr.dat
[2018/05/15 01:01:56 | 000,001,951 | ---- | M] () -- C:\Windows\NvContainerRecovery.bat
[2018/05/09 06:23:18 | 000,552,024 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2018/05/09 06:23:18 | 000,456,792 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2018/05/09 06:22:04 | 001,990,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6439764.dll
[2018/05/09 06:22:04 | 001,467,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6439764.dll
[2 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2018/06/01 10:33:22 | 000,009,108 | ---- | C] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2018/06/01 05:11:00 | 000,000,189 | ---- | C] () -- C:\Users\360cm\Desktop\黒い砂漠.url
[2018/05/29 10:18:20 | 000,000,002 | ---- | C] () -- C:\Windows\data.gameon
[2018/05/27 16:43:36 | 000,930,514 | ---- | C] () -- C:\Users\360cm\Documents\test.htm
[2018/05/25 00:00:45 | 001,512,680 | ---- | C] () -- C:\Windows\SysNative\drivers\NVIDIA Corporation\Drs\nvdrsdb.bin
[2018/05/24 06:30:19 | 003,733,312 | ---- | C] () -- C:\Windows\SysNative\Windows.Mirage.dll
[2018/05/24 06:30:17 | 002,841,312 | ---- | C] () -- C:\Windows\SysWow64\Windows.Mirage.dll
[2018/05/24 06:30:12 | 000,018,716 | ---- | C] () -- C:\Windows\SysWow64\srms-apr.dat
[2018/05/24 06:30:12 | 000,018,716 | ---- | C] () -- C:\Windows\SysNative\srms-apr.dat
[2018/05/24 06:30:11 | 000,001,310 | ---- | C] () -- C:\Windows\SysNative\tcbres.wim
[2018/05/20 19:47:56 | 000,002,359 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2018/05/20 19:47:56 | 000,002,342 | ---- | C] () -- C:\Users\360cm\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2018/05/20 19:40:01 | 000,007,062 | ---- | C] () -- C:\Windows\SysWow64\audiopid.vxd
[2018/05/20 19:39:57 | 000,005,783 | ---- | C] () -- C:\Windows\SysNative\CTOPT352.cat
[2018/05/20 19:39:57 | 000,005,687 | ---- | C] () -- C:\Windows\SysWow64\CTOPT352.cat
[2018/05/20 19:39:45 | 000,005,594 | ---- | C] () -- C:\Windows\SysNative\CTOPT399.cat
[2018/05/20 19:39:45 | 000,005,498 | ---- | C] () -- C:\Windows\SysWow64\CTOPT399.cat
[2018/05/20 19:39:08 | 000,004,850 | ---- | C] () -- C:\Windows\cthdaENG.reg
[2018/05/20 19:39:08 | 000,004,708 | ---- | C] () -- C:\Windows\cthdaJPN.reg
[2018/05/20 19:39:08 | 000,000,105 | RH-- | C] () -- C:\Windows\ctfile.rfc
[2018/05/20 19:26:41 | 000,001,951 | ---- | C] () -- C:\Windows\NvTelemetryContainerRecovery.bat
[2018/05/20 19:26:35 | 008,186,102 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2018/05/20 19:26:27 | 000,001,951 | ---- | C] () -- C:\Windows\NvContainerRecovery.bat
[2018/05/20 19:24:18 | 000,044,277 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2018/05/20 17:58:29 | 000,001,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
[2018/05/20 17:11:09 | 001,953,280 | ---- | C] () -- C:\Windows\SysNative\rdpnano.dll
[2018/05/20 17:00:23 | 001,447,762 | ---- | C] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2018/05/20 16:58:57 | 000,002,301 | ---- | C] () -- C:\Users\360cm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
[2018/05/20 16:58:57 | 000,000,352 | ---- | C] () -- C:\Users\360cm\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2018/05/20 16:58:57 | 000,000,334 | ---- | C] () -- C:\Users\360cm\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2018/05/20 16:56:03 | 2549,133,311 | -HS- | C] () -- C:\hiberfil.sys
[2018/05/20 16:55:40 | 000,150,809 | ---- | C] () -- C:\Windows\SysWow64\license.rtf
[2018/05/20 16:55:40 | 000,150,809 | ---- | C] () -- C:\Windows\SysNative\license.rtf
[2018/05/20 16:55:27 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2018/05/20 16:54:57 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2018/05/20 16:54:48 | 016,777,216 | -HS- | C] () -- C:\swapfile.sys
[2018/05/20 16:54:48 | 000,271,488 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2018/04/21 00:30:40 | 000,828,728 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1-999-0-0-0.dll
[2018/04/21 00:30:40 | 000,828,728 | ---- | C] () -- C:\Windows\SysWow64\vulkan-1.dll
[2018/04/21 00:30:24 | 000,591,160 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo-1-999-0-0-0.exe
[2018/04/21 00:30:24 | 000,591,160 | ---- | C] () -- C:\Windows\SysWow64\vulkaninfo.exe
[2018/04/12 08:38:34 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2018/04/12 08:38:34 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2018/04/12 08:34:55 | 000,518,144 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2018/04/12 08:34:50 | 000,054,272 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2018/04/12 08:34:49 | 000,002,404 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2018/04/12 08:34:47 | 000,364,200 | ---- | C] () -- C:\Windows\SysWow64\InputHost.dll
[2018/04/12 08:34:46 | 003,575,808 | ---- | C] () -- C:\Windows\SysWow64\Windows.UI.Input.Inking.Analysis.dll
[2018/04/12 08:34:46 | 000,025,600 | ---- | C] () -- C:\Windows\SysWow64\Windows.WARP.JITService.exe
[2018/04/12 08:34:45 | 000,329,216 | ---- | C] () -- C:\Windows\SysWow64\ssdm.dll
[2018/04/12 08:34:45 | 000,223,232 | ---- | C] () -- C:\Windows\SysWow64\HeatCore.dll
[2018/04/12 08:34:45 | 000,167,640 | ---- | C] () -- C:\Windows\SysWow64\chs_singlechar_pinyin.dat
[2018/04/12 08:34:45 | 000,111,616 | ---- | C] () -- C:\Windows\SysWow64\WindowsDefaultHeatProcessor.dll
[2018/04/12 08:34:45 | 000,055,808 | ---- | C] () -- C:\Windows\SysWow64\xboxgipsynthetic.dll
[2018/04/12 08:34:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2018/04/12 08:34:30 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
  • dainote
  • 2018/06/02 (Sat) 11:36:17
返信フォームへ 
OTLのログ19
OTLのログ19


[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2018/05/20 20:52:46 | 007,436,632 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2018/05/20 20:32:50 | 006,044,104 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2018/04/12 08:34:40 | 000,973,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2018/04/12 08:34:55 | 000,785,408 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2018/04/12 08:34:40 | 000,524,288 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2018/06/02 09:18:49 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp
[2018/06/01 10:29:59 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2018/06/01 10:43:35 | 000,000,000 | -H-D | M] -- C:\VTRoot
[2018/06/02 09:18:49 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp\S-1-5-21-3439630269-1255355716-76200077-1001
[2018/05/20 19:40:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2018/05/31 15:09:56 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2018/05/20 16:56:12 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2018/05/20 16:56:11 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2018/05/20 16:58:57 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData
[2018/06/01 06:48:58 | 000,000,000 | -H-D | M] -- C:\Users\360cm\MicrosoftEdgeBackups
[2018/06/01 10:30:25 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2018/06/01 10:30:25 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
[2018/06/01 10:30:20 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\IECompatCache\Low
[2018/06/01 10:30:20 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\IECompatUaCache\Low
[2018/06/01 10:30:20 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2018/05/20 16:59:51 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE
[2018/05/20 16:59:51 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2018/05/20 16:59:51 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2018/05/20 19:30:13 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\NVIDIA Corporation\Shield Apps\StreamingAssets
[2018/05/30 07:57:05 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\Content.MSO
[2018/05/20 16:59:52 | 000,000,000 | -H-D | M] -- C:\Users\360cm\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2018/05/20 16:56:12 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2018/04/12 08:38:20 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2018/05/24 06:34:02 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2018/06/01 04:43:44 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2018/04/12 08:38:24 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2018/05/20 16:58:57 | 000,000,000 | -H-D | M] -- C:\VTRoot\HarddiskVolume4\Users\360cm\AppData
[2018/04/12 08:38:25 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2018/04/12 08:38:21 | 000,000,000 | -H-D | M] -- C:\Windows\LanguageOverlayCache
[2018/05/22 12:35:24 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2018/05/20 17:58:24 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ADATA SP900
Partitions: 3
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: SanDisk SDSSDA480G
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD30EZRZ-00Z5HB0
Partitions: 1
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 499.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 524288000
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 119.00GB
Starting Offset: 645922816
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 447.00GB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #2, Partition #0
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 2,795.00GB
Starting Offset: 1048576
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
No service found with a name of AeLookupSvc
SRV:[b]64bit:[/b] - [2018/04/12 08:34:06 | 000,166,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:14 | 000,091,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:07 | 001,374,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:12 | 000,778,752 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,089,088 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2018/04/12 08:34:50 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,486,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2018/04/12 08:34:51 | 000,331,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2018/04/13 01:34:16 | 000,133,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,094,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2018/04/28 12:55:36 | 001,160,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:23 | 000,352,768 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2018/04/12 08:34:51 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,300,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:41 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:27 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2018/04/12 08:34:51 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:34 | 000,604,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
  • dainote
  • 2018/06/02 (Sat) 11:37:41
返信フォームへ 
OTLのログ20
OTLのログ20

SRV:[b]64bit:[/b] - [2018/04/12 08:34:24 | 000,441,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
No service found with a name of MMCSS
SRV:[b]64bit:[/b] - [2018/04/12 08:34:44 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,507,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,367,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:20 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:15 | 000,119,296 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:41 | 000,768,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2018/04/12 08:34:33 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2018/05/20 20:23:36 | 000,932,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2018/04/28 12:55:36 | 001,160,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:32 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:23 | 000,057,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 000,266,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:23 | 000,613,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2018/04/12 08:34:51 | 000,564,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2018/04/12 08:34:36 | 000,889,344 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:36 | 000,308,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2018/04/12 08:35:00 | 000,254,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:36 | 000,069,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,394,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 001,540,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2018/05/20 20:24:25 | 001,767,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2018/05/20 20:22:58 | 000,684,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2018/04/12 08:33:53 | 000,146,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV - [2018/05/20 17:15:10 | 000,104,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17639.18041-0\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:15 | 001,854,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:10 | 000,883,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (mpssvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:24 | 000,611,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:29 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2018/04/12 08:34:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:40 | 000,224,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2018/04/28 12:56:40 | 002,902,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:44 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:43 | 002,583,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2018/04/12 08:34:22 | 000,271,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 216 bytes -> C:\Users\360cm\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity

< End of report >
  • dainote
  • 2018/06/02 (Sat) 11:38:34
返信フォームへ 
Extrasのログ1
Extrasのログ1

OTL Extras logfile created on: 2018/06/02 10:55:13 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = E:\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.17134.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

15.94 Gb Total Physical Memory | 13.50 Gb Available Physical Memory | 84.69% Memory free
18.31 Gb Paging File | 14.30 Gb Available in Paging File | 78.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 118.64 Gb Total Space | 83.90 Gb Free Space | 70.72% Space Free | Partition Type: NTFS
Drive D: | 447.13 Gb Total Space | 373.43 Gb Free Space | 83.52% Space Free | Partition Type: NTFS
Drive E: | 2794.52 Gb Total Space | 2356.31 Gb Free Space | 84.32% Space Free | Partition Type: NTFS

Computer Name: DESKTOP-Q6EI1QL | User Name: 360cm | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = F8 D2 D3 4D 10 F0 D3 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{13DAD12B-0A39-46FD-9831-55C50023899D}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{68E828D7-8201-48AA-AFF7-1A93D6A2C2EA}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{79C8D125-CE47-45DE-BE6E-591A55864366}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{AF8E2DCD-6F8B-45B5-82D8-73CF8C8C3053}" = lport=48010 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{B1CCD317-1BD1-480B-9293-072E8F83C9F3}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{CFE8ECD5-EBC2-4244-8C16-62FA6B59FE29}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{DC653EB6-3B33-46EA-95D7-C2ADC7E35520}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{028A40CC-D757-4818-A523-7E6BD001035D}" = dir=in | name=@{microsoft.zunemusic_10.18041.14611.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{03EA26B0-D979-4F43-A2E7-7C107810CD4C}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{05C63438-EAEC-4BD2-9089-387A019CE49C}" = dir=out | name=microsoft solitaire collection |
"{061271B7-85ED-4D88-8393-2ADA5C26FCC3}" = dir=out | name=xbox |
"{07D5C8BA-ED1F-4530-B3CD-F920A29CEBA8}" = dir=in | name=microsoft sticky notes |
"{08D1253C-F09B-466A-9049-70368F0279C4}" = dir=out | name=@{microsoft.windowscalculator_10.1805.1201.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscalculator/resources/appstorename} |
  • dainote
  • 2018/06/02 (Sat) 11:41:09
返信フォームへ 
Extrasのログ2
Extrasのログ2

"{0A053936-A727-4766-8D21-37BE86C17A07}" = dir=in | name=@{microsoft.microsoftedge_42.17134.1.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{0ED0B721-771C-4C44-BE6C-8FDF578771E7}" = dir=out | name=@{microsoft.zunevideo_10.17122.16211.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{15B0591F-3400-455E-8F85-81EF982C9A0A}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{19B5FFAF-6E97-4D0D-8347-48B15AA982E7}" = dir=out | name=@{king.com.bubblewitch3saga_4.6.6.0_x86__kgqvnymyfvs32?ms-resource://king.com.bubblewitch3saga/resources/appname} |
"{1ADC7317-DC71-4F11-95BF-78E230E52BDC}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{1D6F8A44-EC8D-46B1-B73C-8AF46EF84F25}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.9330.20915.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{1E5B47BD-4675-4591-93AA-7367F3667894}" = dir=out | name=@{microsoft.desktopappinstaller_1.0.20921.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{22E07860-96DA-46D3-A975-D2D60D05B039}" = protocol=6 | dir=in | app=c:\program files\ccleaner\ccupdate.exe |
"{28B280FE-D6EA-403C-B541-DAFCA4E863C3}" = dir=in | name=@{microsoft.microsoftofficehub_17.9328.1700.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{28F49DD2-4791-46AF-BE63-66E8C01B5CFC}" = dir=in | name=@{microsoft.skypeapp_12.1815.209.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{2A09B79D-171E-4E62-8BAD-BA645721BD39}" = dir=out | name=@{microsoft.people_10.1805.1361.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{2A6F9DD2-132D-460B-B02A-49C63B3E0D46}" = dir=out | name=microsoft sticky notes |
"{2AA2A23D-73EE-4C3A-885E-4A58A09781C2}" = dir=out | name=xbox tcui |
"{2CA94DC4-292D-4C2F-B3E1-AC840CAFEBA2}" = dir=out | name=@{microsoft.windowscamera_2018.227.30.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscamera/resources/appstorename} |
"{3900EFF9-26BE-4931-AB97-B3CA4EF51774}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{3DEF0BE4-2A9E-48B3-8A64-DCA50E27DF26}" = dir=in | name=print 3d |
"{41E3FCF6-08DD-40AD-B0CA-0B14A418CC23}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{4274CE59-FC53-4AB6-AB26-EC051F2AB965}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\bin\cef\cef.win7\steamwebhelper.exe |
"{43DEDA57-7C41-415E-9325-D2F8C7C2F7AB}" = dir=in | name=@{microsoft.oneconnect_4.1805.1291.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{44653D05-8645-4737-B642-826B62C556ED}" = dir=out | name=@{microsoft.messaging_3.38.22001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{44D9846B-CA4C-4C7D-8719-33B1A22BA5AA}" = dir=in | name=@{microsoft.desktopappinstaller_1.0.20921.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{45E0993E-0296-4579-BD84-1C4CAD439A38}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{494713F2-6273-4C8D-AF03-04ECD6DCA9FF}" = dir=out | name=shell input application |
"{4A731384-65BB-4D96-9CAC-657EFCBD2DEC}" = dir=out | name=@{a278ab0d.marchofempires_3.2.0.9_x86__h6adky7gbf63m?ms-resource://a278ab0d.marchofempires/resources/marchofempires} |
"{4CA92DB2-1D55-4FE8-8600-A3D11570BE12}" = dir=out | name=xbox gaming overlay |
"{4E089F69-6C61-44A2-AD1C-126177E37B03}" = dir=in | name=win32webviewhost |
"{524510ED-A7F3-49C0-99DF-B22E389E360E}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe |
"{56B2594D-BA16-4F77-91F6-3FCEA0DAFD05}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{59CC25CD-3E9F-404F-8E17-952C12EAD1A2}" = dir=out | name=@{microsoft.storepurchaseapp_11804.1001.9.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.storepurchaseapp/resources/displaytitle} |
"{59CDB9E5-649A-459E-B041-F6FC98C79BD4}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\bin\cef\cef.win7\steamwebhelper.exe |
"{5C4281F4-F0BD-43B8-B94D-2F1EC8DD9FAC}" = dir=out | name=@{microsoft.zunemusic_10.18041.14611.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{5CB8B9A8-1CD6-48DE-8DE0-65C850187757}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{5E089073-5F97-4CC5-8223-BBD7E7347A26}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.17134.1_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{5F46C70E-357A-4DE6-9FFB-BE2DE6E2D2C1}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\prismata\prismata.exe |
"{61833E51-33D6-4BF0-982D-0A6DAC86050F}" = dir=out | name=@{microsoft.bingnews_4.24.11382.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{62361215-1F35-4F55-963A-C4CB3C8EF1A5}" = dir=out | name=@{microsoft.ppiprojection_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{65B97A0E-22E4-4D1A-A29A-EFE84564D0FC}" = dir=in | name=@{a278ab0d.marchofempires_3.2.0.9_x86__h6adky7gbf63m?ms-resource://a278ab0d.marchofempires/resources/marchofempires} |
"{675B3406-A2DC-4350-AB08-7A7AECF58EFA}" = dir=in | name=xbox |
"{6E28DCCB-1A31-44C0-85CE-2BD682BD5CB5}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame_be.exe |
"{6EC11666-7DAD-4596-83BE-D11BAD3845E0}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{715556E7-3145-4B18-9C3E-6E254597AF35}" = dir=out | name=win32webviewhost |
"{72E6D4EB-7BB0-4959-83B5-0DAEBE28447E}" = dir=out | name=onenote |
"{75A22BF8-9875-4137-ADA0-8059ACAD939C}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{76BED8A8-180B-444A-98F4-2826AAA3F996}" = dir=out | name=@{microsoft.oneconnect_4.1805.1291.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{77329A17-793D-479E-A633-4AD0E6568308}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{78089A58-E242-4D91-8573-80561E0CBB1A}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1712.1141.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{7A029014-7A69-49F8-B6E8-2C9275D39FD8}" = dir=out | name=candy crush soda saga |
"{7A10526C-F16A-461F-B386-6E002B24F2CF}" = dir=out | name=@{microsoft.microsoftedge_42.17134.1.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{8195C9FD-7683-45F8-9FF5-53EB8F074CF7}" = dir=in | name=@{microsoft.windows.photos_2018.18041.15210.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{83545D1F-6962-4969-AB98-78038C92D7D9}" = dir=out | name=autodesk sketchbook |
"{83F3C2C3-B059-4109-8DA4-5D97FCFF3302}" = dir=in | name=@{microsoft.windows.cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{8850A021-94B8-4A67-9B7C-818ACE26BBB6}" = dir=out | name=print 3d |
"{8A10019B-D0FD-46C6-83FC-FF3467A0D133}" = dir=out | name=@{microsoft.xboxidentityprovider_12.41.24002.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{8A458D5C-845E-4EC8-8072-2D4D43F78ADD}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1712.1141.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{9323EA9F-ED42-4908-BD6F-5CCE2C6D57CA}" = dir=in | name=@{microsoft.ppiprojection_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{99266A0B-F60F-4568-9C62-2406D132D17B}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{9A933E84-D4FA-4464-8BBA-F5B36210F71B}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.9330.20915.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{9C139AE9-F8C7-476D-88D1-D88AF5C465DF}" = dir=in | name=@{microsoft.ppiprojection_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{9E7A2D6A-CECC-47D9-A413-A42D763A80C2}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{A297E800-9EE0-4DBF-A21D-9EE4913AB0DF}" = dir=out | name=@{microsoft.windows.holographicfirstrun_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.holographicfirstrun/resources/pkgdisplayname} |
  • dainote
  • 2018/06/02 (Sat) 11:42:23
返信フォームへ 
Extrasのログ3
Extrasのログ3

"{A5DBB561-7080-44EC-BD0D-C1B8960E0E79}" = dir=out | name=@{828b5831.hiddencitymysteryofshadows_1.22.2201.0_x86__ytsefhwckbdv6?ms-resource://828b5831.hiddencitymysteryofshadows/resources/appname} |
"{A5E7AE5B-76EE-4A2D-8289-5C40AE86F315}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{A68B26C4-F398-4800-952F-A154BE0BAA22}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe |
"{A6D9C88F-8C21-4E65-A597-25DCFAA3E932}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{A837DFED-C6FE-4032-8970-94732151BC30}" = dir=in | name=autodesk sketchbook |
"{AA8D9C10-FA1F-4AAA-8D46-DE4C9D2EB593}" = dir=in | name=@{microsoft.zunevideo_10.17122.16211.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{AAF1195D-1D2A-430C-A20F-D0270CC7C024}" = dir=in | name=onenote |
"{ADF747BB-DD07-4956-9F48-308FDDBCEE7D}" = dir=out | name=@{microsoft.ppiprojection_10.0.17134.1_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{AF2E2E48-449C-44D4-8170-69456046D359}" = dir=out | name=@{microsoft.microsoft3dviewer_4.1804.19012.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoft3dviewer/common.view.uwp/resources/storeappname} |
"{B10C97BF-E1B5-44F2-9E00-A38B09358139}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame_be.exe |
"{B2FD3AA2-033B-49A9-810A-5A01541F9436}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\prismata\prismata.exe |
"{B3527E3D-8231-4883-83FD-9508489A358C}" = dir=in | name=dolby access |
"{B909B217-1213-4698-80B5-FED23443FD17}" = dir=out | name=@{microsoft.skypeapp_12.1815.209.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{BC5D2B73-0E55-48A9-8ED2-84FFD4D018A7}" = dir=out | name=microsoft pay |
"{BCE3ECF8-361F-4204-A0EB-804981293551}" = dir=out | name=@{microsoft.windowsstore_11804.1001.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{C0C67219-F206-40BB-9116-D9C860FEE39C}" = dir=out | name=@{microsoft.windowsmaps_5.1711.10477.1000_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{D3EEF200-64F3-474C-A7AD-1132F787D45B}" = dir=out | name=@{microsoft.getstarted_6.10.10872.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{D5B9954B-B0CC-48BB-BAA9-A907B4DB2AB4}" = dir=in | name=@{microsoft.windowsstore_11804.1001.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{DB24D8CE-9458-4102-A37D-3DB57AF09711}" = dir=out | name=@{microsoft.windows.photos_2018.18041.15210.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{E01E61E7-ED5F-4B5B-A144-2A532864CE2D}" = dir=out | name=@{microsoft.windows.cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{E070538D-678A-4931-8164-CE07BE18F885}" = dir=out | name=@{microsoft.bingweather_4.24.11294.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{EBCA5703-28E1-4E83-AAE2-0DE94FD7EDEB}" = dir=out | name=dolby access |
"{ECB16A4E-3699-400E-9F5C-6DE14D5D28C5}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{ECF71AC2-C665-4D5B-987D-3D22A3D1B49D}" = protocol=17 | dir=in | app=c:\program files\ccleaner\ccupdate.exe |
"{EE580791-7F67-479E-889B-E8C8D5CF1FC4}" = dir=out | name=@{microsoft.microsoftofficehub_17.9328.1700.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{EEFF5291-5320-4DFF-AF0D-64CAED1D892F}" = dir=out | name=@{microsoft.gethelp_10.1706.10952.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.gethelp/resources/appdisplayname} |
"{F1F2AC7B-ECEC-4137-AFD6-A368CA7DE785}" = dir=in | name=@{microsoft.messaging_3.38.22001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{F20492CB-EA5B-4DCE-9330-9EC20CEA5EC8}" = dir=out | name=@{microsoft.lockapp_10.0.17134.1_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{F5F4A755-2368-4664-9DC7-D7149B40BF7B}" = dir=out | name=xbox game bar |
"{F98F1208-3C83-4177-8015-74673302116F}" = dir=out | name=@{microsoft.accountscontrol_10.0.17134.1_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{FB0F695B-51B0-44A8-9B2C-9005643C4B93}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.17134.1_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{FFCE4DEB-3661-4680-AD83-4AAE66419FEA}" = dir=out | name=@{microsoft.mspaint_4.1805.15037.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mspaint/resources/appname} |
"TCP Query User{0D6E92AC-8222-4FD0-AB85-E784497D920E}D:\gameon\bless\binaries\win64\bless.exe" = protocol=6 | dir=in | app=d:\gameon\bless\binaries\win64\bless.exe |
"TCP Query User{7D68DF72-89B3-43E6-B733-9EBE7E9547B8}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe |
"UDP Query User{6882F8BB-50E9-4FA6-A548-E3A43C30115A}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe |
"UDP Query User{A39981C1-EBD7-4BCE-9A83-841AC601614B}D:\gameon\bless\binaries\win64\bless.exe" = protocol=17 | dir=in | app=d:\gameon\bless\binaries\win64\bless.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{221D6DB4-46E2-333C-B09B-5F49351D0980}" = Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.13.26020
"{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1" = MPC-HC 1.7.16 (64-bit)
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{9A106F13-BA73-4E76-AB5E-D37BAEF94A24}" = COMODO Firewall
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel" = NVIDIA Ansel
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision ドライバー 397.93
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA コントロール パネル 397.93
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA グラフィックス ドライバー 397.93
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 3.14.0.139
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision コントローラー ドライバー 390.41
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 31.2.0.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX システム ソフトウェア 9.17.0524
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 31.2.0.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer" = DisplayDriverAnalyzer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = NVIDIA SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD オーディオ ドライバー 1.3.37.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvBackend" = NVIDIA Backend
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer" = NVIDIA Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.ContainerTelemetryApiHelper" = NVIDIA TelemetryApi helper for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.LocalSystem" = NVIDIA LocalSystem Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.MessageBus" = NVIDIA Message Bus for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NetworkService" = NVIDIA NetworkService Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.Session" = NVIDIA Session Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.User" = NVIDIA User Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainer" = NVIDIA Display Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainerLS" = NVIDIA Display Container LS
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayPluginWatchdog" = NVIDIA Display Watchdog Plugin
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplaySessionContainer" = NVIDIA Display Session Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs" = NVIDIA NodeJS
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvPlugin.Watchdog" = NVIDIA Watchdog Plugin for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry" = NVIDIA Telemetry Client
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetryContainer" = NVIDIA Telemetry Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci" = NVIDIA Virtual Host Controller
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_OSC" = Nvidia Share
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 3.14.0.139
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = NVIDIA SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 4.06.0
"{C5ECDB9A-D9B0-3107-BA85-1269998A5B3E}" = Microsoft Visual C++ 2017 x64 Additional Runtime - 14.13.26020
"7-Zip" = 7-Zip 18.05 (x64)
"COMODO Internet Security" = COMODO Firewall
"ffdshow64_is1" = ffdshow x64 v1.3.4533 [2014-09-29]
"Steam App 490220" = Prismata
  • dainote
  • 2018/06/02 (Sat) 11:43:27
返信フォームへ 
Extrasのログ4
Extrasのログ4

"Steam App 578080" = PLAYERUNKNOWN'S BATTLEGROUNDS
"Steam App 730" = Counter-Strike: Global Offensive

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{5c045b7f-e561-4794-91f8-c6cda0893107}" = Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{7474cd6e-76cc-4257-837e-5b9261e526af}" = Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020
"{895D5198-C5DB-375E-86AB-133F4DAA9FE2}" = Microsoft Visual C++ 2017 x86 Additional Runtime - 14.13.26020
"{8F271F6C-6E7B-3D0A-951B-6E7B694D78BD}" = Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.13.26020
"{95723791-2C44-454B-9220-C65D47D70E9C}_is1" = WEBZEN Browser Extension バージョン 1.13.014
"{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}" = Sound Blaster Z-Series Extras
"{AC78780F-BACA-4805-8D4F-AE1B52B7E7D3}_is1" = AviSynth+ 2506
"{DAB64FB1-0BBB-486E-9C57-A3E34F463AEB}" = Sound Blaster Z-Series
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{MU2JPK2C-VH2O-Z2AQ-N26J-M2VJEWJEUE52}_is1" = MU LEGEND JAPAN
"Avast Antivirus" = Avast Free Antivirus
"Dolby Digital Live Pack" = Dolby Digital Liveパック
"DTS Connect Pack" = DTS Connect Pack
"Google Chrome" = Google Chrome
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Pmang" = Pmangインストールマネージャー
"Pmang_BlackDesert_live" = Black Desert
"Pmang_common" = Common
"Steam" = Steam
"TeraPad" = TeraPad

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{95758a2a-db9c-4b08-bf69-a4f2838ee3d8}" = SVP 4 Free
"OneDriveSetup.exe" = Microsoft OneDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2018/05/21 13:50:48 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MULegend.exe、バージョン: 1.0.12621.0、タイム スタンプ: 0x5afad58c
障害が発生しているモジュール名:
MSCTF.dll、バージョン: 10.0.17134.1、タイム スタンプ: 0xf5079aad 例外コード: 0xc000041d 障害オフセット: 0x0002a20f
障害が発生しているプロセス
ID: 0x9d4 障害が発生しているアプリケーションの開始時刻: 0x01d3f12c08c99d57 障害が発生しているアプリケーション パス: D:\Program
Files (x86)\Webzen\MU_LEGEND_JAPAN\Binaries\Win32\MULegend.exe 障害が発生しているモジュール パス:
C:\Windows\System32\MSCTF.dll レポート ID: 9355b148-f745-4d3f-8d6e-6e6dde142720 障害が発生しているパッケージの完全な名前:
? 障害が発生しているパッケージに関連するアプリケーション ID: ?

Error - 2018/05/21 19:09:49 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Hang | ID = 1002
Description = プログラム MicrosoftEdgeCP.exe バージョン 11.0.17134.48 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、セキュリティとメンテナンス
コントロール パネルで、問題の履歴を参照してください。 プロセス ID: f2c 開始時刻: 01d3f158ac00f74b 終了時刻: 12 アプリケーション パス:
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

レポート
ID: e6ca8d31-4f9f-4edd-9580-94f1f602078a 障害が発生しているパッケージのフル ネーム: Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe

障害が発生しているパッケージに関連するアプリケーション
ID: ContentProcess

Error - 2018/05/25 23:51:08 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MicrosoftEdgeCP.exe、バージョン: 11.0.17134.48、タイム スタンプ:
0x5ae3f17b 障害が発生しているモジュール名: edgehtml.dll、バージョン: 11.0.17134.81、タイム スタンプ: 0x7b3796b1
例外コード:
0x80020003 障害オフセット: 0x00000000003c020c 障害が発生しているプロセス ID: 0x1cc4 障害が発生しているアプリケーションの開始時刻:
0x01d3f495545682d4 障害が発生しているアプリケーション パス: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
障害が発生しているモジュール
パス: C:\Windows\SYSTEM32\edgehtml.dll レポート ID: 3da7499e-ea64-4849-b4d1-117a955559c0
障害が発生しているパッケージの完全な名前:
Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe 障害が発生しているパッケージに関連するアプリケーション
ID: ContentProcess

Error - 2018/05/28 0:51:03 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Hang | ID = 1002
Description = プログラム Microsoft.Photos.exe バージョン 2018.18041.15210.0 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、セキュリティとメンテナンス
コントロール パネルで、問題の履歴を参照してください。 プロセス ID: 1628 開始時刻: 01d3f62790ab742b 終了時刻: 4294967295 アプリケーション
パス: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18041.15210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

レポート
ID: 7ae27c2b-b91d-4f75-870c-e646d7ea6625 障害が発生しているパッケージのフル ネーム: Microsoft.Windows.Photos_2018.18041.15210.0_x64__8wekyb3d8bbwe

障害が発生しているパッケージに関連するアプリケーション
ID: App

Error - 2018/05/28 23:21:57 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MicrosoftEdgeCP.exe、バージョン: 11.0.17134.48、タイム スタンプ:
0x5ae3f17b 障害が発生しているモジュール名: edgehtml.dll、バージョン: 11.0.17134.81、タイム スタンプ: 0x7b3796b1
例外コード:
0x80020003 障害オフセット: 0x00000000003c020c 障害が発生しているプロセス ID: 0x3900 障害が発生しているアプリケーションの開始時刻:
0x01d3f6cc828ff1a0 障害が発生しているアプリケーション パス: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
障害が発生しているモジュール
パス: C:\Windows\SYSTEM32\edgehtml.dll レポート ID: 0a46e12d-0ab1-422a-8c36-9c1e9db0c95f
障害が発生しているパッケージの完全な名前:
Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe 障害が発生しているパッケージに関連するアプリケーション
ID: ContentProcess

Error - 2018/05/29 21:16:52 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Hang | ID = 1002
Description = プログラム kenshi_x64.exe バージョン 0.0.0.0 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、セキュリティとメンテナンス
コントロール パネルで、問題の履歴を参照してください。 プロセス ID: 2984 開始時刻: 01d3f7b374ac7c29 終了時刻: 6 アプリケーション パス:
D:\Program Files (x86)\Steam\steamapps\common\Kenshi\kenshi_x64.exe レポート ID: 114a95b3-5b40-4457-9b54-9958509e39b8

障害が発生しているパッケージのフル
ネーム: ? 障害が発生しているパッケージに関連するアプリケーション ID: ?

Error - 2018/05/31 23:30:17 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: BlackDesert64.exe、バージョン: 0.0.0.0、タイム スタンプ: 0x5b0ed088
障害が発生しているモジュール名:
BlackDesert64.exe、バージョン: 0.0.0.0、タイム スタンプ: 0x5b0ed088 例外コード: 0xc0000005 障害オフセット:
0x00000000006fe6af 障害が発生しているプロセス ID: 0x1b98 障害が発生しているアプリケーションの開始時刻: 0x01d3f958d8d947b3
障害が発生しているアプリケーション
パス: D:\GameOn\BlackDesert_live\bin64\BlackDesert64.exe 障害が発生しているモジュール パス: D:\GameOn\BlackDesert_live\bin64\BlackDesert64.exe
レポート
ID: 65dc22c7-9032-407e-bf74-dfb673d66cc2 障害が発生しているパッケージの完全な名前: ? 障害が発生しているパッケージに関連するアプリケーション
ID: ?

Error - 2018/06/01 21:02:35 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: PmangDownloader.exe、バージョン: 1.0.0.0、タイム スタンプ: 0x5a790f0f
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc00001a5 障害オフセット: 0x007b001f
障害が発生しているプロセス
ID: 0xdd4 障害が発生しているアプリケーションの開始時刻: 0x01d3fa0d6401cfe5 障害が発生しているアプリケーション パス: D:\GameOn\Common
files\626\PmangDownloader.exe 障害が発生しているモジュール パス: unknown レポート ID: 8fb9f760-ab07-4bd1-ba21-60dbe5fcb8e0
障害が発生しているパッケージの完全な名前:
? 障害が発生しているパッケージに関連するアプリケーション ID: ?

Error - 2018/06/01 21:02:38 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: PmangDownloader.exe、バージョン: 1.0.0.0、タイム スタンプ: 0x5a790f0f
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0x000a3bca
障害が発生しているプロセス
ID: 0xdd4 障害が発生しているアプリケーションの開始時刻: 0x01d3fa0d6401cfe5 障害が発生しているアプリケーション パス: D:\GameOn\Common
files\626\PmangDownloader.exe 障害が発生しているモジュール パス: unknown レポート ID: 42eed91e-9639-4b3c-a542-e4a1bf7886ff
障害が発生しているパッケージの完全な名前:
? 障害が発生しているパッケージに関連するアプリケーション ID: ?

Error - 2018/06/01 21:44:44 | Computer Name = DESKTOP-Q6EI1QL | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: BlackDesert64.exe、バージョン: 0.0.0.0、タイム スタンプ: 0x5b10ab07
障害が発生しているモジュール名:
BlackDesert64.exe、バージョン: 0.0.0.0、タイム スタンプ: 0x5b10ab07 例外コード: 0xc0000005 障害オフセット:
0x00000000006fe57f 障害が発生しているプロセス ID: 0x8e4 障害が発生しているアプリケーションの開始時刻: 0x01d3fa1338b2c670
障害が発生しているアプリケーション
パス: D:\GameOn\BlackDesert_live\bin64\BlackDesert64.exe 障害が発生しているモジュール パス: D:\GameOn\BlackDesert_live\bin64\BlackDesert64.exe
レポート
ID: 26f307b5-b791-42e2-bbb9-a453de85891e 障害が発生しているパッケージの完全な名前: ? 障害が発生しているパッケージに関連するアプリケーション
ID: ?

[ COMODO Internet Security Trace Events ]
Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7
  • dainote
  • 2018/06/02 (Sat) 11:44:55
返信フォームへ 
Extrasのログ5
Extrasのログ5

Error - 2018/05/31 1:35:43 | Computer Name = DESKTOP-Q6EI1QL | Source = cmdagent | ID = 1
Description = Error HTTP request, host: cis.td.security.comodo.com, code: 2ee7

[ System Events ]
Error - 2018/06/01 3:13:46 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 4:44:25 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 4:58:04 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 5:44:45 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 5:50:45 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 6:54:04 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 9:29:41 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 9:38:56 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 20:20:00 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =

Error - 2018/06/01 21:44:28 | Computer Name = DESKTOP-Q6EI1QL | Source = DCOM | ID = 10016
Description =


< End of report >


以上です。
avastは自分で入れてます。
他に無料アンチウイルスソフトでお勧めがありましたら教えてください。
  • dainote
  • 2018/06/02 (Sat) 11:49:35
返信フォームへ 
avastは高性能ですが天然でもあります
今夜もレスが遅くなってすみません。
でも人生は手遅れなので大丈夫です(謎

OTLスキャンログを見せてもらいました。
文字数制限のせいで一度に投稿できないとはいえ20回以上に分割投稿、ご苦労様でした。

avastもご自身で入れたようなのでそれもいいです。
avastは高性能ですがそれゆえ誤検出や他のアプリとの干渉も多いので、何か検出されたら慌ててすぐ削除せずにその結果をよくみてから判断しましょう。
アニメかゲームに例えて言えば頭がよくて性格も優しいのに普段の行動ではひとりで転びまくるドジっ娘なヒロインポジションでしょうか(違

ログを見たところではやはり危険な痕跡はなさそうですが、少しゴミがあるのでそれだけ掃除しますか。
6月1日にNortonパワーイレイサーの痕跡も見えてますが、このツールはWindows正規のエントリやシステムまでも誤検出の恐れが高い諸刃の剣なので、今後もこれを使おうとする局面があればそのときはリカバリ覚悟の自己責任でお願いします。

ネットゲームをプレイしていたせいか全体にネトゲのエントリもかなり出ていてそれもログが長くなった要因かと思いますが、ネトゲはのめりこまない範囲でほどほどに楽しんでください。
ネトゲのアカウントを作ってそれをインストールするということは、『それ専用の出入口も作る』ようなものなので、信頼できない運営会社の怪しいネトゲに手を出すとログイン中はもとよりログアウト後でも油断できないことになりかねません。
各社から出ているセキュリティソフトでも様々なネトゲ関連ファイルやレジストリが検出されることもあり、誤検出でもそうでなくても注意はしておくことです。

ではOTLで掃除にかかりましょう。

このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらPCをまたセーフモードで再起動してOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」(赤字のボタン)を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
------------------------------------------
:OTL
IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 01 99 1C C7 47 F9 D3 01 [binary data]
IE - HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 33 00 00 00 8D F4 11 00 74 41 F9 D2 55 40 C1 5E 19 E2 2C 9F 02 E3 7D 8E CF C8 DB 85 80 7D 37 9C 7C C5 A9 62 1B 1B 5D 06 4B 5E 41 3D F9 61 40 D2 C3 A8 95 51 F8 71 5B 02 00 00 00 0E 00 00 00 4C 7A 55 52 49 66 43 4F 42 47 77 25 33 64 [binary data]
[2018/06/01 10:26:52 | 000,000,000 | ---D | C] -- C:\NPE

:Files
C:\NPE

:reg

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------------------------------------------
  • 悪代官
  • 2018/06/02 (Sat) 22:09:39
返信フォームへ 
OTLのログです
All processes killed
========== OTL ==========
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page_TIMESTAMP| /E : value set successfully!
HKU\S-1-5-21-3439630269-1255355716-76200077-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy| /E : value set successfully!
C:\NPE folder moved successfully.
========== FILES ==========
File\Folder C:\NPE not found.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: 360cm
->Temp folder emptied: 289864544 bytes
->Temporary Internet Files folder emptied: 914691 bytes
->Google Chrome cache emptied: 273332964 bytes
->Flash cache emptied: 379 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 538.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 06032018_122103

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


OTLの処置後、特に問題ありません。
  • dainote
  • 2018/06/05 (Tue) 18:53:58
返信フォームへ 
kenshiはどこから入手しましたか?
作業と報告、ご苦労様です。

>OTLの処置後、特に問題ありません

はい、症状としては異常は出てないようですね。
ログも見せてもらいましたが、掃除もできたようです。

ところで最初の投稿にあった内容で、自分が気づかなかった部分が見つかりました。

>steamのkenshiというゲームを起動したらPCがフリーズしました

そのkenshiですが、まだ正式には販売もされてないようですね。

どこからそのファイルを購入してダウンロードしたか教えてもらえますか。
というのも、開発中のベータ版と称して実際は信頼できないファイルを配布しているところがある問題も出てますので。

もしおかしなところからDLしたファイルを実行していたなら、既に重篤な事態になっていてもおかしくありません。
正規ではないファイルを実行しながら、ここで各種解析での作業で明らかなマルウェアらしい痕跡が見えなかったなら該当のファイルそのものがかなり巧妙に作られた『爆弾』のおそれも大です。
  • 悪代官
  • 2018/06/05 (Tue) 20:41:33
返信フォームへ 
Re: AdwCleanerで検出されました
kenshiはsteamで購入して、steamからダウンロードしました。
このゲーム自体かなり負担が大きいみたいで、フリーズもあるのかなと思いました。

  • dainote
  • 2018/06/06 (Wed) 18:26:31
返信フォームへ 
DLした実行ファイルをスキャンしますか
レスが遅くなってすみません。

>kenshiはsteamで購入して、steamからダウンロードしました。
>このゲーム自体かなり負担が大きいみたいで、フリーズもあるのかなと思いました

はい、steamで購入して公式からDLされたわけですね。
ではそこはいいですが、ある情報によると件のkenshiはそれ自体があまり評価よくないとの声もひっかかりましたので、今回の検出も含めてシロと断定は難しいようです。

購入後にDLした実行ファイルはまだ保存していますか?
保存していたらそのファイルをスキャンしてください。
https://www.virustotal.com/ja/
「virustotal」

「ファイルを選択」で対象ファイルを選択後、「スキャンする」で開始されます。
しばらく待ってスキャン終了したら結果が出るので、その結果ページのURLを返信に貼ってレスください。
  • 悪代官
  • 2018/06/06 (Wed) 21:28:49
返信フォームへ 
削除済みです
既にゲームはアンインストールし返金しました。
ウイルスによっては今までの診断で見つからない場合もあるのでしょうか?
  • dainote
  • 2018/06/07 (Thu) 16:38:40
返信フォームへ 
解析できない以上、安全優先で考えると
今夜もまたレスが遅くなってごめんなさい。

>既にゲームはアンインストールし返金しました。

なるほど、該当ファイルはもう削除したので解析もできないようですね。
ではそこは置いときましょう。

>ウイルスによっては今までの診断で見つからない場合もあるのでしょうか?

どの社のアンチウイルスソフトも被害報告とそのデータを得てから、その対策を立てます。
データがない最新の脅威に対しては検出もできないので、常に後手後手に回るのがセキュリティソフトの常です。
実際当掲示板に来られる相談者さんがたは明らかな異常が出ているのにお使いのセキュリティソフトでは検出できずに対処もわからなくて掲示板に駆け込んでくる方が大半です。

それでも各種解析ツールを使って手動目視での作業すれば、正規でない不審プログラムは高確率で見つけることもできるので、見つけたマルウェアを正しい手順で処置するわけです。

今回は件のkenshiが明らかなマルウェアでないとしても、PCに異常を起こす恐れがあるモノと判定されたわけで、本体である実行ファイルを解析すれば真正の脅威か誤検出か判定できた望みもありましたが、対象が消えているなら判定もできないので予想だけで闇雲な処置もできません。

こういう場合は確実な対処としては、必要かつ信頼できるデータのバックアップしたうえでそれが済み次第PCのリカバリ(初期化)して、初期状態からPC環境とセキュリティ意識を再構築し直すのがもっとも安全でしょう。
「石橋を叩いて渡る」というより「あつものに懲りてなますを吹く」に近い様相ですが、わずかでも危険が考えられてその素性が見えないのでは思い過ごしとスルーするより、安全策を優先するべきです。

バックアップは手間でしょうが、いつ破裂するか不明な爆弾を抱えたままPCを使い続けるよりリカバリ後の出直しするほうがはるかに安全です。

これも案内しておくと、ネトゲのチートツールやそれに使うファイル等は実際には相当の高確率でマルウェア同梱またはそれ自体がマルウェアなのが現状です。
しかもチート偽装マルウェアは市販の高性能アンチウイルスソフトでもおいそれとは検出もできない巧妙なものばかりで、危険性も他の種類のマルウェアより段違いで危険な性質も有します。
そういったチート偽装マルウェア感染PCの相談受けたこともありますが、ログを見て一目で手の施しようがない深刻な状態とわかり即リカバリの案内したことも既に2桁以上の回数あります。

ネトゲと言うのはゲームや運営会社によっては、インストールするとPCにそれ専用のトンネルを作るような挙動もあります。
特定のポートを使って通信してゲームするという形ですが、ゲームをしない時間もポートは開いたままでネトゲのサーバーに水面下で通信しているとしたらどう思いますか?
HJTのログだけでも、ユーザーが覚えもないのに中東にあるサーバーに通信している痕跡が見えた事例もかなりありました。

多くの方に対して自分がよく口にしてますが次の言葉を頭に入れておいてください。

「ネトゲはのめりこまない範囲でプレイしてください」

この意味も先の案内を考えればわかると思います。

お忙しいかもしれないので今すぐとは言いませんができるだけ早いうちにバックアップとリカバリの準備にかかることを案内しておきます
  • 悪代官
  • 2018/06/07 (Thu) 22:15:46
返信フォームへ 
リカバリをしました
返信遅くなってすみません。
リカバリをして少し様子を見てました。

>>「ネトゲはのめりこまない範囲でプレイしてください」
ネトゲは辞められそうにないです…
ただダウンロード、インストールするものはもう少し考えようと思います。

リカバリ後に二つ気になったことがあるので、ご教授頂けるとありがたいです。

①avastでスマートスキャンをしたんですが、ルーターにWiFi?のCVE-2017-14491の脆弱性が見つかりました。
誤検出かもしれないと思い、時間おいてスキャンをやり直したら検出されませんでした。
ただ気になって調べ方があったので試してみました。
nslookup -type=txt -class=chaos version.bind 192.168.0.1
をcmdでやってみました

サーバー: ntt.setup
Address: 192.168.1.1

version.bind text =

"dnsmasq-2.40"

上の結果が出たんですが、dnsmasqが2.78以下は脆弱性があると書いてました。
ルーターのバージョンは最新なんですが、まだ対策されてないということでしょうか?
ルーター:PR-500MI バージョン:05.00.0010

②ファイアウォールのログに気になるものがあったので教えてください。
アプリケーション:Windows Operating System, アクション:ブロック, 方向:in, プロトコル:ICMPv4, 送信元IP:8.8.8.8 送信元ポート:Destination Unreachable, 送信先IP:192.168.1.5, 送信先ポート:Destination Unreachable

上のログが6件ありました。ICMPはFWでフィルタリングしているのでログが残ってても不思議じゃないんですが、
この数件だけなので気になっています。

問題ない事を知識がなく不安がってるだけかもしれないですが、よろしくお願いします。
  • dainote
  • 2018/06/16 (Sat) 06:53:25
返信フォームへ 
リカバリ後のログも見ましょうか
こんばんは。

安全策でリカバリされたようですね。それがもっとも確実でしょう。

ルーターの脆弱性で気になったようですね。
では下記ページを読んでから
http://pcmainbuilding.blog.fc2.com/blog-entry-5.html

その手順に沿ってルーターのDNS設定を見てください。
そこでもし改ざんされているようなら設定を修正してください。
改ざんされていなければそのままで。

しばらく前にルーターのファームウェア改ざん事例が見つかったりで、ルーター使用もセキュリティ効果を高める保証はないこともわかってきました。
ファームウェアを最新にしていても脆弱性は見つかるのが常なので、メーカーが対策を講じて更新リリースされるのを待つことになります。

ファイアウォールのログも見たところ不審には見えませんね。

よければリカバリ後の状態も見ましょうか。
またHJTログと、CCでインストール情報と各タブのログも取り直してからそれらをレスで見せてください。

リカバリで何かつまずいてない限り、その後の各種更新もできていれば危険はないかと思いますが、どこで何を拾わされるか油断ならない時代になったのも確かなので油断せずにいきましょう
  • 悪代官
  • 2018/06/16 (Sat) 21:15:27
返信フォームへ 

返信フォーム
プレビュー (投稿前に内容を確認)
  
Template by  マシマロック