悪代官の伏魔殿掲示板別館

お世話になります。
YAHOO知恵袋にて同様の症状に対してコメントされておられましたんので、お伺いいたしました。

症状としては、楽天市場を表示すると「Related Products」、「Best Value」という広告が表示され困っております。
広告の削除方法と、この症状に起こりうる影響などをご教授いただきたくよろしくお願いいたします。

スクリーンショトと各ログを添付いたします。

HJTのログ
***************
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 14:47:38, on 2017/01/04
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\EPSON\MyEPSON Connect\mep.exe
C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE15\CSISYN~1.EXE
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\Minoru\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DVDFab Passkey] "C:\Program Files (x86)\DVDFab Passkey\DVDFabPasskey.exe"
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILMJ.EXE /EPT "EPLTarget\P0000000000000000" /M "EP-706A Series"
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: クリックで Lync 通話 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: クリックで Lync 通話 - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Internet Security\ekrn.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Security Assist - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
O23 - Service: Intel(R) Security Assist Helper (isaHelperSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyEPSON Connect Service - SEIKO EPSON CORPORATION - C:\Program Files (x86)\EPSON\MyEPSON Connect\mepService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RunBooster Service (RunBooster) - SkyNET Corporation - C:\Program Files\RunBooster\RunBoosterService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9478 bytes
***************


CCのインストール情報ログ
***************
3D Builder Microsoft Corporation 2016/12/01 12.0.3131.0
Adobe Reader XI (11.0.18) - Japanese Adobe Systems Incorporated 2016/10/13 413 MB 11.0.18
CCleaner Piriform 2017/01/04 19.0 MB 5.25
CyberLink Media Suite 10 CyberLink Corp. 2016/10/12 105 MB 10.0
DVD Decrypter (Remove Only) 2016/10/16
DVD Shrink 3.2 DVD Shrink 2016/10/21 969 KB
DVDFab 9.3.1.6 (19/09/2016) Fengtao Software Inc. 2016/10/12 166 MB
DVDFab Passkey 8.2.8.5 (11/08/2016) Fengtao Software Inc. 2016/10/25 8.96 MB
EPSON EP-706A Series プリンター アンインストール SEIKO EPSON Corporation 2016/10/10
Epson Print CD Seiko Epson Corporation 2016/10/10 75.3 MB 2.44.00
EPSON Scan Seiko Epson Corporation 2016/10/10
Epson Software Updater SEIKO EPSON CORPORATION 2016/10/10 15.4 MB 4.4.3
ESET Internet Security ESET, spol. s r.o. 2017/01/04 263 MB 10.0.369.3
Groove ミュージック Microsoft Corporation 2016/12/16 10.16112.10211.0
ImgBurn LIGHTNING UK! 2016/10/12 3.14 MB 2.5.8.0
Intel(R) Management Engine Components Intel Corporation 2016/09/20 11.0.6.1194
Intel(R) Processor Graphics Intel Corporation 2016/11/04 21.20.16.4534
Intel(R) Rapid Storage Technology Intel Corporation 2016/09/20 14.8.0.1042
Intel(R) Serial IO Intel Corporation 2016/09/20 30.63.1519.7
Intel® Security Assist Intel Corporation 2016/09/20 1.64 MB 1.0.1.620
Java 8 Update 101 Oracle Corporation 2016/10/10 186 MB 8.0.1010.13
LINE LINE Corporation 2016/12/07 5.4.6.0
Logicool Unifying ソフトウェア 2.50 Logicool 2016/12/15 6.98 MB 2.50.25
Microsoft Office Professional Plus 2013 Microsoft Corporation 2016/12/14 55.7 MB 15.0.4569.1506
Microsoft OneDrive Microsoft Corporation 2016/12/13 88.7 MB 17.3.6720.1207
Microsoft Solitaire Collection Microsoft Studios 2016/12/13 3.12.12120.0
Microsoft Sticky Notes Microsoft Corporation 2016/12/15 1.3.0.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2016/10/07 9.69 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2016/10/07 9.05 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2016/10/07 9.05 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2016/10/12 8.23 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2016/10/07 12.2 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2016/10/07 17.0 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2016/10/07 17.0 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/10/12 16.4 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/10/12 25.5 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/10/12 22.2 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2016/10/07 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2016/10/07 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 Microsoft Corporation 2016/10/07 22.5 MB 14.0.23506.0
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 Microsoft Corporation 2016/10/07 18.7 MB 14.0.23506.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2016/10/14 8.01 MB 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2016/10/14 8.01 MB 10.0.50903
MyEPSON Portal SEIKO EPSON Corporation 2016/10/10
OneNote Microsoft Corporation 2016/12/16 17.7668.57601.0
People Microsoft Corporation 2016/12/08 10.1.3160.0
PowerDirector CyberLink Corp. 2016/10/07 336 MB 12.0.4502.0
Realtek Ethernet Controller Driver Realtek 2016/09/20 3.96 MB 10.9.422.2016
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2016/09/20 45.6 MB 6.0.1.7855
RunBooster SkyNET Corporation 2016/10/10 1.81 MB 1.0.2
Store Purchase App Microsoft Corporation 2016/10/10 11608.1000.2431.0
VLC media player VideoLAN 2016/10/12 120 MB 2.2.4
WinRAR 5.31 (64-bit) win.rar GmbH 2016/10/13 5.37 MB 5.31.0
Xbox Microsoft Corporation 2016/12/23 24.24.20004.0
Xbox Identity Provider Microsoft Corporation 2016/10/10 11.19.19003.0
はじめに Microsoft Corporation 2016/12/14 4.2.29.0
アプリ インストーラー Microsoft Corporation 2016/10/10 1.0.2181.0
アラーム & クロック Microsoft Corporation 2016/12/13 10.1612.3343.0
カメラ Microsoft Corporation 2016/12/13 2016.1101.20.0
ストア Microsoft Corporation 2016/12/14 11610.1001.23.0
テレBing Microsoft Corporation 2016/10/10 1.0.1.0
ニュース Microsoft Corporation 2016/12/25 4.18.41.0
フィードバック Hub Microsoft Corporation 2016/11/17 1.1610.3143.0
フォト Microsoft Corporation 2016/11/23 16.1118.10000.0
ボイス レコーダー Microsoft Corporation 2016/12/13 10.1612.3352.0
マップ Microsoft Corporation 2016/12/14 5.1611.3342.0
メッセージング Microsoft Corporation 2016/10/10 3.19.1001.0
メール/カレンダー Microsoft Corporation 2016/12/18 17.7714.42037.0
天気 Microsoft Corporation 2016/12/16 4.18.37.0
新しい Office を始めよう Microsoft Corporation 2016/11/17 17.7608.23501.0
映画 & テレビ Microsoft Corporation 2016/12/14 10.16112.10221.0
電卓 Microsoft Corporation 2016/12/13 10.1612.3341.0

***************

こんにちは、IVNOと申します。
完璧にマルチメディア系による感染ですね。
マルチメディア系の厄介なところは、仮に一度マルウェアを駆除したとしてもアップデートするたびに再感染するところです。
ですのでマルチメディア系は速やかに全処分となるでしょう。
またほかにもAdobe ReaderやJava等、セキュリティ上重要とされるアップデートが行われていないため、こちらも一度削除しましょう。

それでは作業準備を行いましょう。

まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。

それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もある場合があります、その場合でも一応説明を再度ご確認ください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードし、作業指示のある場合にのみ手順に従ってお使いください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないようになされてください。

GeekUninstaller(以下GU)
ダウンロード
http://www.geekuninstaller.com/geek.zip
ファイル直リンクです。zipファイルですので使用前に展開してください。
展開が完了した後のzipファイルは不要となりますので、そちらは削除を行ってください。
GU本体の削除を案内された際は、そのままごみ箱に処分してください。

CCleaner(以下CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はGUなどでアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読み、こちらが指示した以外の操作はしないようになされてください。

以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。

それでは処置を開始しましょう。

PCをセーフモードで起動してください。
Windows Vistaまたは7の方は以下を参考になされてください。
http://www.pc-master.jp/sousa/s-safemode.html
Windows 8または8.1の方は以下を参考になされてください。
http://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=015917
Windows 10の方は以下を参考になされてください。
https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=017878

HJTを起動させ、今一度スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O4 - HKCU\..\Run: [DVDFab Passkey] "C:\Program Files (x86)\DVDFab Passkey\DVDFabPasskey.exe"
O23 - Service: RunBooster Service (RunBooster) - SkyNET Corporation - C:\Program Files\RunBooster\RunBoosterService64.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、HJTを終了させGUを起動させてください。
以下の項目を探し出し、ダブルクリックで削除を行ってください。

Adobe Reader XI (11.0.18) - Japanese Adobe Systems Incorporated 2016/10/13 413 MB 11.0.18
DVD Decrypter (Remove Only) 2016/10/16
DVD Shrink 3.2 DVD Shrink 2016/10/21 969 KB
DVDFab 9.3.1.6 (19/09/2016) Fengtao Software Inc. 2016/10/12 166 MB
DVDFab Passkey 8.2.8.5 (11/08/2016) Fengtao Software Inc. 2016/10/25 8.96 MB
ImgBurn LIGHTNING UK! 2016/10/12 3.14 MB 2.5.8.0
Java 8 Update 101 Oracle Corporation 2016/10/10 186 MB 8.0.1010.13
RunBooster SkyNET Corporation 2016/10/10 1.81 MB 1.0.2
VLC media player VideoLAN 2016/10/12 120 MB 2.2.4

GU上に表示されているソフトウェアをダブルクリックで削除できます。
削除が完了すると自動的にスキャンが開始されますので、
スキャンが完了しましたらOKを押して削除を完了させてください。
GUでのアンインストールが完了しましたら、GUを終了させてください。
Windowsインストーラーがどうとかの表示が出た場合はPCを通常モードで再起動し、
その状態で改めて該当ソフトウェアのみをアンインストールしてください。
通常モードとセーフモードを使い分けながらご案内しているすべてのソフトウェアの削除が完了するまで続けてください。
PCを通常モードで再起動させてください。
キーボードの左Ctrlと左Altの間にあるスタートボタンを押しながらRボタンを押します。
ファイル名を指定して実行と言うものが起動しますので、そちらに半角英数で以下を入力してください。

cleanmgr

入力が完了しましたらエンターキーを押してください。
C:ドライブを選択してOKを押します。
スキャンが開始されますので完了するまでお待ちください。
スキャンが完了すると一覧が表示されますので、すべてにチェックを入れてOKを押してください。
ただし、OKを押すとごみ箱の中身を含めてすべて削除されますので、
ごみ箱の中に必要なファイルが入っている場合はご注意ください。
CCを起動させてください。
「ツール」→「スタートアップ」→「Windows」のタブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
同じく「スケジュールされたタスク」のタブ、「コンテキストメニュー」のタブもログ保存を行います。
次にブラウザプラグインの項目を開き、「Internet Explorer」、「Firefox」、「Google Chrome」の各タブもログ保存を行います。
タブが存在しないものがある場合、そちらは飛ばしてログ取得を続けてください。
保存したログをすべて貼り付けてご連絡をお願いいたします。

お世話なります。
早速のご回答ありがとうございました。

手順の中で、
「隠しファイルと拡張子を表示設定にしてください(やり方↓）
　http://pasofaq.jp/windows/mycomputer/hiddenfile.htm」
とありましたが、何故かリンクが開けず、この部分（隠しファイルの表示設定）については飛ばして進めています。

各ログを貼り付けさせて戴きますので、ご確認お願いいたします。

*****
CCログ Windows

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run EPLTarget\P0000000000000000 SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILMJ.EXE /EPT "EPLTarget\P0000000000000000" /M "EP-706A Series"
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKLM:Run CLMLServer_For_P2G8 CyberLink "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
有効 HKLM:Run CLVirtualDrive CyberLink Corp. "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s



*****
CCログ　コンテキストメニュー
有効 Directory PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 Drive CLVDShellExt Cyberlink C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll
有効 Drive ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 Drive PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 File CLVDShellExt Cyberlink C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll
有効 File ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 File WinRAR Alexander Roshal C:\Program Files\WinRAR\rarext.dll
有効 File WinRAR32 Alexander Roshal C:\Program Files\WinRAR\rarext32.dll
有効 Folder ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 Folder WinRAR Alexander Roshal C:\Program Files\WinRAR\rarext.dll
有効 Folder WinRAR32 Alexander Roshal C:\Program Files\WinRAR\rarext32.dll


*****
CCログ　スケジュールされたタスク

〔空白〕


*****
CCログ　ブラウザプラグイン

有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
無効 Extension クリックで Lync 通話 Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
無効 Extension クリックで Lync 通話 Microsoft Corporation C:\Program Files\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL
無効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
無効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\Office15\OCHelper.dll

ログを確認いたしましたが、これはセーフモードで取得されたCCのログですね？
HJTやCCはその性質上、セーフモードでは一部正常に動作しないことがあります。
お手数ですが通常モードでログの再取得を行ってください。
拡張子や隠しファイルの設定については、こちらで必要に応じて用意することにします。

申し訳ございません。
再度添付いたします。
ご確認お願いいたします。

*****
CCログ Windows

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run EPLTarget\P0000000000000000 SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILMJ.EXE /EPT "EPLTarget\P0000000000000000" /M "EP-706A Series"
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKLM:Run CLMLServer_For_P2G8 CyberLink "C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
有効 HKLM:Run CLVirtualDrive CyberLink Corp. "C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run Logitech Download Assistant Microsoft Corporation C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s


*****
CCログ　コンテキストメニュー

有効 Directory PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 Drive CLVDShellExt Cyberlink C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll
有効 Drive ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 Drive PowerShell ウィンドウをここに開く(S) powershell.exe -noexit -command Set-Location '%V'
有効 File CLVDShellExt Cyberlink C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll
有効 File ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 File WinRAR Alexander Roshal C:\Program Files\WinRAR\rarext.dll
有効 File WinRAR32 Alexander Roshal C:\Program Files\WinRAR\rarext32.dll
有効 Folder ESET Smart Security - Context Menu Shell Extension ESET C:\Program Files\ESET\ESET Internet Security\shellExt.dll
有効 Folder WinRAR Alexander Roshal C:\Program Files\WinRAR\rarext.dll
有効 Folder WinRAR32 Alexander Roshal C:\Program Files\WinRAR\rarext32.dll


*****
CCログ　スケジュールされたタスク

有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task EPSON EP-706A Series Update {DA372D8E-34E7-47B0-A6FE-E662E7BCF9EF} SEIKO EPSON CORPORATION C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLMJ.EXE /EXE:"{DA372D8E-34E7-47B0-A6FE-E662E7BCF9EF}" /F:"Update"
有効 Task OneDrive Standalone Update Task v2 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe


*****
CCログ　ブラウザプラグイン

有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
無効 Extension クリックで Lync 通話 Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
無効 Extension クリックで Lync 通話 Microsoft Corporation C:\Program Files\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL
無効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
無効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\Office15\OCHelper.dll

ログを確認いたしました。
今のところ異常個所は見受けられないようですので、もう少し踏み込んで調べてみましょう。

以下のソフトウェアをご用意ください。

OTL(OldTimer's List-It)
http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/
緑のDownloadボタンを押してダウンロードを行ってください。
ダウンロードが完了しましたら、わかりやすい場所に移動させておいてください。
なおOTLはHJT等と同じく通常起動時の異常個所を調査するために使いますので、
セーフモードでのスキャンは行わないようになされてください。
削除の際はOTLを起動させ、CleanUpボタンを押すことで削除が可能です。

準備ができましたら作業を開始しましょう。

OTLを起動させてください。
OTLが表示されましたら、上部中央にある「Scan All Users」にチェックを入れます。
「Costom Scans/Fixes」の項目に以下をコピペします。

------コピペここから------
SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT
------コピペここまで------

コピペが完了しましたら、OTLを除き、ブラウザを含めて可能な限りすべてのソフトウェアを終了させてください。
ソフトウェアを終了させたら、青い文字の「Run Scan」ボタンをクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtの2つのログが出力されますので、そちらをそれぞれ貼り付けてご連絡ください。
なお、OTLはその特性上、非常に長文となります。
文字数カウンター等のサイトを活用して文字数の合計が3万文字程度になるように調整し、
ログを分割されて貼り付けを行うようになされてください。

OTLログを7分割にて送付致します。

OTL logfile created on: 2017/01/05 16:45:30 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Minoru\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.91 Gb Total Physical Memory | 6.27 Gb Available Physical Memory | 79.31% Memory free
9.16 Gb Paging File | 7.64 Gb Available in Paging File | 83.37% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 231.89 Gb Total Space | 191.74 Gb Free Space | 82.68% Space Free | Partition Type: NTFS
Drive D: | 1863.01 Gb Total Space | 1326.65 Gb Free Space | 71.21% Space Free | Partition Type: NTFS
Drive F: | 2794.52 Gb Total Space | 436.32 Gb Free Space | 15.61% Space Free | Partition Type: NTFS

Computer Name: MINORU-PC2 | User Name: Minoru | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2017/01/05 16:42:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Minoru\Desktop\OTL.exe
PRC - [2016/12/13 23:01:04 | 001,517,280 | ---- | M] (Microsoft Corporation) -- C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2016/10/21 19:02:44 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2016/08/08 14:16:06 | 000,703,696 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\epson\MyEPSON Connect\mepService.exe
PRC - [2016/08/04 17:27:48 | 002,391,248 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\epson\MyEPSON Connect\mep.exe
PRC - [2016/05/25 22:54:10 | 000,209,184 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2016/05/25 22:52:56 | 000,416,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2016/03/18 11:03:10 | 000,008,704 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
PRC - [2015/11/04 11:28:22 | 000,323,056 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2015/11/04 11:28:20 | 000,019,440 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2015/10/29 12:16:25 | 000,110,008 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
PRC - [2015/10/28 21:06:40 | 000,085,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2016/12/13 23:01:04 | 001,244,376 | ---- | M] () -- C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
MOD - [2014/12/08 16:28:07 | 000,627,672 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
MOD - [2014/12/08 15:28:12 | 000,016,856 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2016/12/09 19:28:24 | 000,764,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2016/12/09 18:24:21 | 002,275,840 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:22:23 | 000,082,944 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:50 | 000,339,456 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:10 | 000,407,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:19:59 | 000,411,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:19:35 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:16:35 | 000,560,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2016/11/11 18:14:35 | 002,104,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:57 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/11/11 18:06:19 | 000,650,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2016/11/11 18:05:32 | 004,136,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:16 | 000,691,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:03 | 001,232,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:30:35 | 000,635,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:19:44 | 000,805,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:[b]64bit:[/b] - [2016/11/02 19:16:47 | 000,265,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2016/11/02 19:16:27 | 000,770,560 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2016/11/01 23:05:54 | 000,480,224 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe -- (cplspcon)
SRV:[b]64bit:[/b] - [2016/11/01 23:05:54 | 000,341,984 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV:[b]64bit:[/b] - [2016/11/01 23:05:54 | 000,301,536 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe -- (cphs)
SRV:[b]64bit:[/b] - [2016/10/15 12:42:44 | 000,539,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\usocore.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2016/10/15 12:37:03 | 001,980,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2016/10/11 12:58:18 | 002,815,520 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Internet Security\ekrn.exe -- (ekrn)
SRV:[b]64bit:[/b] - [2016/10/05 18:18:56 | 000,983,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2016/09/16 01:40:41 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:[b]64bit:[/b] - [2016/09/16 01:38:15 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2016/09/16 01:38:00 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2016/09/16 01:38:00 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:45 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:03 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2016/09/16 01:23:51 | 001,020,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2016/09/07 13:59:55 | 000,095,232 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2016/09/07 13:55:30 | 000,781,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2016/09/07 13:40:44 | 001,312,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2016/08/20 14:17:48 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2016/08/06 12:36:20 | 000,447,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2016/08/06 12:34:01 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:50 | 000,082,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:47 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:18 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:10 | 001,836,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:06 | 000,347,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:42 | 000,088,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,161,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,055,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:37 | 000,718,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,183,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dcpsvc.dll -- (DcpSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,827,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,044,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_456e56)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:20 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:19 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,287,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,122,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,590,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 001,512,448 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 001,184,256 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,574,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\tileobjserver.dll -- (tiledatamodelsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,387,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,358,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,326,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:07 | 001,159,680 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,729,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,197,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:05 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,321,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2016/02/19 12:07:46 | 000,974,632 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2015/11/04 11:28:20 | 000,019,440 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2014/04/14 18:59:04 | 000,389,896 | ---- | M] () [Auto | Running] -- C:\Program Files\CyberLink\Shared files\RichVideo64.exe -- (RichVideo64)
SRV:[b]64bit:[/b] - [2012/05/17 00:00:00 | 000,144,560 | ---- | M] (Seiko Epson Corporation) [Auto | Running] -- C:\Windows\SysNative\escsvc64.exe -- (EpsonScanSvc)
SRV - [2016/12/09 17:54:48 | 000,483,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2016/11/11 16:19:35 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2016/11/11 16:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2016/11/01 23:05:54 | 000,480,224 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe -- (cplspcon)
SRV - [2016/11/01 23:05:54 | 000,341,984 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe -- (igfxCUIService2.0.0.0)
SRV - [2016/11/01 23:05:54 | 000,301,536 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe -- (cphs)
SRV - [2016/10/21 19:02:44 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2016/08/08 14:16:06 | 000,703,696 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files (x86)\epson\MyEPSON Connect\mepService.exe -- (MyEPSON Connect Service)
SRV - [2016/08/06 12:33:24 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2016/07/16 20:42:55 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2016/07/16 20:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2016/05/25 22:54:10 | 000,209,184 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2016/05/25 22:52:56 | 000,416,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2016/03/18 11:03:14 | 000,335,360 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe -- (Intel(R)
SRV - [2016/03/18 11:03:10 | 000,008,704 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe -- (isaHelperSvc)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2016/12/09 19:30:39 | 000,377,184 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2016/11/11 19:00:25 | 000,219,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2016/11/11 18:26:51 | 000,258,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2016/11/02 19:55:52 | 000,048,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:[b]64bit:[/b] - [2016/11/01 23:05:54 | 011,033,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2016/10/15 13:37:01 | 000,063,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2016/10/15 13:30:16 | 000,557,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2016/10/15 12:31:37 | 000,227,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,232,072 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,212,096 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\edevmon.sys -- (edevmon)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,177,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,091,784 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,076,416 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,048,768 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\ekbdflt.sys -- (ekbdflt)
DRV:[b]64bit:[/b] - [2016/10/13 14:39:14 | 000,015,488 | ---- | M] (ESET) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\eelam.sys -- (eelam)
DRV:[b]64bit:[/b] - [2016/10/05 19:35:31 | 000,279,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)

OTLログを分割して送付いたします。

DRV:[b]64bit:[/b] - [2016/10/05 19:09:07 | 000,064,352 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:[b]64bit:[/b] - [2016/09/16 11:08:56 | 000,821,224 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2016/09/16 02:29:54 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2016/09/16 02:29:03 | 000,081,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2016/09/16 02:15:56 | 000,130,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2016/09/16 02:14:50 | 000,119,648 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:[b]64bit:[/b] - [2016/09/16 01:36:57 | 000,719,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2016/09/10 22:21:43 | 000,118,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\capimg.sys -- (CapImg)
DRV:[b]64bit:[/b] - [2016/09/07 14:29:32 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2016/08/20 15:06:57 | 000,108,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2016/08/20 14:20:50 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2016/08/06 13:29:13 | 000,199,008 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2016/08/06 13:16:50 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:[b]64bit:[/b] - [2016/07/16 23:27:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2016/07/16 23:27:05 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2016/07/16 20:44:01 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:06 | 000,123,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,290,144 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,044,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,928,608 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:28 | 000,107,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:28 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,263,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,201,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,151,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,031,584 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:18 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\irda.sys -- (irda)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,168,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,156,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\registry.sys -- (clreg)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,066,560 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,210,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,090,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,088,576 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2016/07/16 20:42:03 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,535,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,381,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,137,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,096,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:55 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,176,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,064,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,050,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,033,280 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:54 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 002,104,160 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,842,584 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,526,176 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,346,976 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,123,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\scmdisk0101.sys -- (scmdisk0101)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,108,896 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,105,824 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,101,216 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,083,296 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,082,776 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,077,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,064,864 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,061,792 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,032,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,032,096 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,026,976 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn.sys -- (bcmfn)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 003,418,976 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,533,856 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,048,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:52 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2016/07/16 20:41:50 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:[b]64bit:[/b] - [2016/05/17 12:00:12 | 000,937,728 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2016/03/28 22:01:56 | 000,186,424 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2015/12/08 02:53:18 | 000,051,704 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2015/12/08 02:53:18 | 000,039,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2015/11/12 20:05:48 | 001,467,912 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2015/07/20 13:52:46 | 000,185,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iaLPSS2_I2C.sys -- (iaLPSS2_I2C)
DRV:[b]64bit:[/b] - [2015/07/20 13:52:46 | 000,084,264 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iaLPSS2_GPIO2.sys -- (iaLPSS2_GPIO2)
DRV:[b]64bit:[/b] - [2015/06/08 17:46:02 | 000,100,624 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV - [2016/11/01 23:05:54 | 011,033,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igdkmd64.sys -- (igfx)
DRV - [2016/07/16 20:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {386BB471-D763-4B37-B1BE-2BE9A45FC225}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{386BB471-D763-4B37-B1BE-2BE9A45FC225}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRNAM1&src=IE11TR&pc=NMTE;
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {386BB471-D763-4B37-B1BE-2BE9A45FC225}
IE - HKLM\..\SearchScopes\{386BB471-D763-4B37-B1BE-2BE9A45FC225}: "URL" = http://www.bing.com/search?q={searchTerms}&form=PRNAM1&src=IE11TR&pc=NMTE;


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://oem17win10.msn.com/?pc=NMTE
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://oem17win10.msn.com/?pc=NMTE
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 8D 67 1C 6A C4 39 D2 01 [binary data]
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 26 00 00 00 8D 11 38 30 74 AA BA F8 55 5B 22 9C 13 D0 09 20 16 D7 5F 34 90 09 2B 11 8D 89 D9 9D 77 DC 08 C4 16 90 11 D4 30 EF 02 00 00 00 0E 00 00 00 69 50 59 61 6D 44 6E 58 4F 31 51 25 33 64 [binary data]
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\..\SearchScopes,DefaultScope = {386BB471-D763-4B37-B1BE-2BE9A45FC225}
IE - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)


[2016/09/13 09:30:18 | 000,043,424 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

O1 HOSTS File: ([2016/07/16 20:45:37 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)

OTLログを分割して送付いたします。

O4 - HKLM..\Run: [CLMLServer_For_P2G8] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
O4 - HKLM..\Run: [CLVirtualDrive] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILMJ.EXE /EPT "EPLTarget\P0000000000000000" /M "EP-706A Series" File not found
O4 - HKU\S-1-5-21-2733000339-1796968654-3674550117-1001..\Run: [OneDrive] C:\Users\Minoru\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:[b]64bit:[/b] - ..Trusted Domains: eset.com ([help] http in Trusted sites)
O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{eb1553cb-323a-4a8d-9dab-d12a9dad7060}: DhcpNameServer = 192.168.0.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/02/24 09:41:44 | 000,000,027 | R--- | M] () - F:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {31699572-6286-3C1C-A03C-511D59181038} - .NET Framework
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {71A5A636-652F-3BE0-BC14-02545E9F5EC7} - .NET Framework
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2017/01/05 16:42:06 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Minoru\Desktop\OTL.exe
[2017/01/05 16:40:57 | 000,000,000 | -H-D | C] -- C:\OneDriveTemp
[2017/01/05 10:31:34 | 000,000,000 | ---D | C] -- C:\Users\Minoru\Desktop\backups
[2017/01/05 09:58:50 | 003,954,712 | ---- | C] (Geek Unіnstaller) -- C:\Users\Minoru\Desktop\geek64.exe
[2017/01/05 09:58:50 | 000,000,000 | ---D | C] -- C:\Users\Minoru\AppData\Roaming\Geek Uninstaller
[2017/01/05 09:58:34 | 006,960,152 | ---- | C] (Geek Unіnstaller) -- C:\Users\Minoru\Desktop\geek.exe
[2017/01/04 14:39:11 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Minoru\Desktop\HijackThis.exe
[2017/01/04 14:15:57 | 000,000,000 | ---D | C] -- C:\Users\Minoru\AppData\Local\ESET
[2017/01/04 14:14:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2017/01/04 14:14:18 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2017/01/04 14:14:18 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2017/01/04 14:04:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2016/12/28 21:43:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/12/28 19:39:29 | 000,000,000 | ---D | C] -- C:\Users\Minoru\AppData\Roaming\11792
[2016/12/27 14:02:49 | 000,000,000 | ---D | C] -- C:\即削除 DVD
[2016/12/15 20:46:46 | 008,168,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2016/12/15 20:46:46 | 004,612,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2016/12/15 20:46:46 | 003,306,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2016/12/15 20:46:46 | 001,852,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2016/12/15 20:46:46 | 001,589,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2016/12/15 20:46:46 | 001,274,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2016/12/15 20:46:46 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2016/12/15 20:46:45 | 003,059,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2016/12/15 20:46:45 | 002,138,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2016/12/15 20:46:45 | 001,100,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2016/12/15 20:46:45 | 000,989,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2016/12/15 20:46:45 | 000,947,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.efi
[2016/12/15 20:46:45 | 000,811,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.exe
[2016/12/15 20:46:45 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2016/12/15 20:46:45 | 000,353,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TextInputFramework.dll
[2016/12/15 20:46:45 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016/12/15 20:46:44 | 003,777,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2016/12/15 20:46:44 | 001,988,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2016/12/15 20:46:44 | 001,692,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2016/12/15 20:46:44 | 000,956,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.desktop.dll
[2016/12/15 20:46:44 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Core.TextInput.dll
[2016/12/15 20:46:44 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InputLocaleManager.dll
[2016/12/15 20:46:44 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EditBufferTestHook.dll
[2016/12/15 20:46:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WordBreakers.dll
[2016/12/15 20:46:43 | 006,285,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2016/12/15 20:46:43 | 002,275,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2016/12/15 20:46:43 | 001,293,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2016/12/15 20:46:43 | 000,981,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll
[2016/12/15 20:46:43 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\facecredentialprovider.dll
[2016/12/15 20:46:42 | 007,816,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2016/12/15 20:46:42 | 001,121,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2016/12/15 20:46:42 | 000,425,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aadcloudap.dll
[2016/12/15 20:46:40 | 002,820,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2016/12/15 20:46:39 | 004,749,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_nt.dll
[2016/12/15 20:46:39 | 003,616,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2016/12/15 20:46:39 | 002,998,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2016/12/15 20:46:39 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ShareHost.dll
[2016/12/15 20:46:39 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TextInputFramework.dll
[2016/12/15 20:46:39 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Core.TextInput.dll
[2016/12/15 20:46:39 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32k.sys
[2016/12/15 20:46:39 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InputLocaleManager.dll
[2016/12/15 20:46:39 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditBufferTestHook.dll
[2016/12/15 20:46:39 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WordBreakers.dll
[2016/12/15 20:46:38 | 005,114,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdp.dll
[2016/12/15 20:46:38 | 001,461,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2016/12/15 20:46:36 | 001,572,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32full.dll
[2016/12/15 20:46:36 | 001,415,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32full.dll
[2016/12/15 20:46:36 | 000,764,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2016/12/15 20:46:36 | 000,455,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\securekernel.exe
[2016/12/15 20:46:36 | 000,241,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHost.dll
[2016/12/15 20:46:35 | 001,354,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2016/12/15 20:46:35 | 001,173,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2016/12/15 20:46:35 | 001,051,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2016/12/15 20:46:35 | 000,894,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2016/12/15 20:46:35 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Shell.dll
[2016/12/15 20:46:34 | 006,668,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016/12/15 20:46:34 | 001,490,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2016/12/15 20:46:34 | 001,267,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll
[2016/12/15 20:46:34 | 000,846,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinTypes.dll
[2016/12/15 20:46:33 | 003,198,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdp.dll
[2016/12/15 20:46:33 | 002,913,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll
[2016/12/15 20:46:33 | 002,166,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2016/12/15 20:46:33 | 001,637,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2016/12/15 20:46:33 | 001,004,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\enterprisecsps.dll
[2016/12/15 20:46:33 | 000,886,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2016/12/15 20:46:33 | 000,861,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2016/12/15 20:46:33 | 000,807,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2016/12/15 20:46:33 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ShareHost.dll
[2016/12/15 20:46:33 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll
[2016/12/15 20:46:33 | 000,288,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wincorlib.dll
[2016/12/15 20:46:33 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceEnroller.exe
[2016/12/15 20:46:33 | 000,137,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2016/12/15 20:46:32 | 006,044,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2016/12/15 20:46:32 | 000,822,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakradiag.dll
[2016/12/15 20:46:32 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2016/12/15 20:46:32 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wincorlib.dll
[2016/12/15 20:46:32 | 000,377,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys

OTLログを分割して送付いたします。

[2016/12/15 20:46:32 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdmregistration.dll
[2016/12/15 20:46:32 | 000,168,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcrypt.dll
[2016/12/15 20:46:32 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mdmregistration.dll
[2016/12/15 20:46:31 | 008,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2016/12/15 20:46:31 | 004,746,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016/12/15 20:46:31 | 001,512,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2016/12/15 20:46:31 | 000,730,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2016/12/15 20:46:31 | 000,402,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2016/12/15 20:46:31 | 000,261,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\indexeddbserver.dll
[2016/12/15 20:46:31 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll
[2016/12/15 20:46:30 | 000,658,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2016/12/15 20:46:30 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2016/12/15 20:46:29 | 022,563,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2016/12/15 20:46:29 | 001,738,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2016/12/15 20:46:28 | 019,413,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2016/12/15 20:46:27 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\indexeddbserver.dll
[2016/12/15 20:46:25 | 002,677,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2016/12/15 20:46:25 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CryptoWinRT.dll
[2016/12/15 20:46:25 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016/12/15 20:46:25 | 000,172,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2016/12/15 20:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2016/12/15 20:34:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logicool
[2016/12/15 20:34:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd
[2016/12/09 22:50:51 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.Resources.dll
[2016/12/09 22:50:51 | 001,232,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dosvc.dll
[2016/12/09 22:50:51 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDXService.dll
[2016/12/09 22:50:51 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnprv.dll
[2016/12/09 22:50:51 | 000,603,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ContentDeliveryManager.Utilities.dll
[2016/12/09 22:50:51 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Internal.Management.dll
[2016/12/09 22:50:50 | 017,188,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2016/12/09 22:50:50 | 002,277,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2016/12/09 22:50:50 | 001,357,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2016/12/09 22:50:50 | 000,760,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NMAA.dll
[2016/12/09 22:50:50 | 000,715,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapControlCore.dll
[2016/12/09 22:50:50 | 000,379,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apprepsync.dll
[2016/12/09 22:50:50 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apprepsync.dll
[2016/12/09 22:50:50 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apprepapi.dll
[2016/12/09 22:50:50 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apprepapi.dll
[2016/12/09 22:50:50 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSManHTTPConfig.exe
[2016/12/09 22:50:49 | 006,109,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mos.dll
[2016/12/09 22:50:49 | 001,992,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2016/12/09 22:50:48 | 005,380,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BingMaps.dll
[2016/12/09 22:50:48 | 002,800,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2016/12/09 22:50:48 | 002,682,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2016/12/09 22:50:48 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JpMapControl.dll
[2016/12/09 22:50:48 | 000,590,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2016/12/09 22:50:48 | 000,534,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2016/12/09 22:50:48 | 000,347,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2016/12/09 22:50:48 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2016/12/09 22:50:48 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DisplayManager.dll
[2016/12/09 22:50:46 | 003,370,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.StateRepository.dll
[2016/12/09 22:50:46 | 000,263,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Storage.ApplicationData.dll
[2016/12/09 22:50:46 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.StateRepositoryClient.dll
[2016/12/09 22:50:45 | 001,859,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2016/12/09 22:50:45 | 001,123,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2016/12/09 22:50:45 | 000,539,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PlayToManager.dll
[2016/12/09 22:50:44 | 003,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2016/12/09 22:50:44 | 002,362,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapRouter.dll
[2016/12/09 22:50:44 | 002,109,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapGeocoder.dll
[2016/12/09 22:50:44 | 001,886,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2016/12/09 22:50:44 | 001,069,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MrmCoreR.dll
[2016/12/09 22:50:44 | 000,952,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2016/12/09 22:50:44 | 000,418,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2016/12/09 22:50:44 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\domgmt.dll
[2016/12/09 22:50:43 | 004,423,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2016/12/09 22:50:43 | 001,755,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceFlows.DataModel.dll
[2016/12/09 22:50:43 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StoreAgent.dll
[2016/12/09 22:50:43 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmkvsrcsnk.dll
[2016/12/09 22:50:43 | 000,424,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2016/12/09 22:50:43 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapConfiguration.dll
[2016/12/09 22:50:43 | 000,266,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\policymanager.dll
[2016/12/09 22:50:43 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgentUserBroker.exe
[2016/12/09 22:50:43 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\InstallAgent.exe
[2016/12/09 22:50:43 | 000,163,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RTWorkQ.dll
[2016/12/09 22:50:43 | 000,157,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CloudStorageWizard.exe
[2016/12/09 22:50:43 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmcertinst.exe
[2016/12/09 22:50:43 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MapsBtSvc.dll
[2016/12/09 22:50:43 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserbroker.dll
[2016/12/09 22:50:43 | 000,091,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfaudiocnv.dll
[2016/12/09 22:50:43 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HttpsDataSource.dll
[2016/12/09 22:50:43 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MosStorage.dll
[2016/12/09 22:50:42 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dmenrollengine.dll
[2016/12/09 22:50:42 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2016/12/09 22:50:42 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/12/09 22:50:40 | 004,136,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.StateRepository.dll
[2016/12/09 22:50:40 | 002,828,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2016/12/09 22:50:40 | 002,186,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hevcdecoder.dll
[2016/12/09 22:50:40 | 000,842,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2016/12/09 22:50:40 | 000,574,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_StorageSense.dll
[2016/12/09 22:50:40 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActivationManager.dll
[2016/12/09 22:50:40 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtcuiu.dll
[2016/12/09 22:50:40 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll
[2016/12/09 22:50:40 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EnterpriseModernAppMgmtCSP.dll
[2016/12/09 22:50:40 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EDPCleanup.exe
[2016/12/09 22:50:40 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.StateRepositoryClient.dll
[2016/12/09 22:50:40 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
[2016/12/09 22:50:40 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReportingCSP.dll
[2016/12/09 22:50:40 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.StateRepositoryBroker.dll
[2016/12/09 22:50:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EAMProgressHandler.dll
[2016/12/09 22:50:39 | 002,482,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2016/12/09 22:50:39 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppReadiness.dll
[2016/12/09 22:50:39 | 000,431,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efswrt.dll
[2016/12/09 22:50:38 | 002,852,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsThresholdAdminFlowUI.dll
[2016/12/09 22:50:38 | 002,104,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll
[2016/12/09 22:50:38 | 002,084,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceFlows.DataModel.dll
[2016/12/09 22:50:38 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Search.dll
[2016/12/09 22:50:38 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ngccredprov.dll
[2016/12/09 22:50:38 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NgcCtnr.dll
[2016/12/09 22:50:38 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PlayToManager.dll
[2016/12/09 22:50:38 | 000,382,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2016/12/09 22:50:38 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDXTaskFactory.dll
[2016/12/09 22:50:38 | 000,258,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\xboxgip.sys
[2016/12/09 22:50:38 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppCapture.dll
[2016/12/09 22:50:37 | 003,542,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2016/12/09 22:50:37 | 002,510,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetworkMobileSettings.dll
[2016/12/09 22:50:37 | 000,637,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2016/12/09 22:50:37 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bcastdvr.exe
[2016/12/09 22:50:37 | 000,360,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemSettingsAdminFlows.exe
[2016/12/09 22:50:36 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2016/12/09 22:50:36 | 001,336,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsecedit.dll
[2016/12/09 22:50:36 | 001,228,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2016/12/09 22:50:36 | 001,220,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscui.cpl
[2016/12/09 22:50:36 | 000,454,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2016/12/09 22:50:36 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptngc.dll
[2016/12/09 22:50:36 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActivationManager.dll
[2016/12/09 22:50:36 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2016/12/09 22:50:36 | 000,198,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2016/12/09 22:50:36 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscinterop.dll
[2016/12/09 22:50:36 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VEStoreEventHandlers.dll
[2016/12/09 22:50:36 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\BcastDVRHelper.dll
[2016/12/09 22:50:36 | 000,152,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RTWorkQ.dll
[2016/12/09 22:50:36 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Shell.Search.UriHandler.dll
[2016/12/09 22:50:35 | 013,868,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2016/12/09 22:50:35 | 006,474,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mspaint.exe
[2016/12/09 22:50:35 | 001,631,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.Resources.dll
[2016/12/09 22:50:35 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdpsvc.dll
[2016/12/09 22:50:34 | 001,600,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2016/12/09 22:50:34 | 001,366,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2016/12/09 22:50:34 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2016/12/09 22:50:34 | 000,960,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\modernexecserver.dll
[2016/12/09 22:50:34 | 000,882,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeManagerObj.dll
[2016/12/09 22:50:34 | 000,743,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2016/12/09 22:50:34 | 000,339,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdpusersvc.dll
[2016/12/09 22:50:34 | 000,219,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2016/12/09 22:50:34 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EditionUpgradeHelper.dll
[2016/12/09 22:50:34 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ACPBackgroundManagerPolicy.dll
[2016/12/09 22:50:33 | 007,626,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2016/12/09 22:50:33 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonController.dll
[2016/12/09 22:50:33 | 000,673,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2016/12/09 22:50:33 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Internal.Management.dll
[2016/12/09 22:50:32 | 004,311,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2016/12/09 22:50:32 | 001,418,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2016/12/09 22:50:32 | 000,869,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MrmCoreR.dll
[2016/12/09 22:50:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dmenrollengine.dll
[2016/12/09 22:50:32 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuuhext.dll
[2016/12/09 22:50:32 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VPNv2CSP.dll
[2016/12/09 22:50:31 | 002,484,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2016/12/09 22:50:31 | 002,009,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRHInproc.dll
[2016/12/09 22:50:31 | 001,726,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll
[2016/12/09 22:50:31 | 001,556,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll
[2016/12/09 22:50:31 | 001,477,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsecedit.dll
[2016/12/09 22:50:31 | 000,746,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdtcprx.dll
[2016/12/09 22:50:31 | 000,711,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Search.dll
[2016/12/09 22:50:31 | 000,248,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\policymanager.dll
[2016/12/09 22:50:31 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceReactivation.dll
[2016/12/09 22:50:30 | 001,002,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2016/12/09 22:50:30 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2016/12/09 22:50:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sendmail.dll
[2016/12/09 22:50:30 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
[2016/12/09 22:50:30 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpremove.exe
[2016/12/09 22:50:30 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xolehlp.dll
[2016/12/09 22:50:30 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Shell.Search.UriHandler.dll
[2016/12/09 22:50:29 | 004,708,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2016/12/09 22:50:29 | 002,287,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2016/12/09 22:50:29 | 000,506,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairing.dll
[2016/12/09 22:50:29 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LaunchWinApp.exe
[2016/12/09 22:50:28 | 002,213,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2016/12/09 22:50:28 | 000,519,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ngccredprov.dll
[2016/12/09 22:50:28 | 000,499,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\LogonController.dll
[2016/12/09 22:50:28 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptngc.dll
[2016/12/09 22:50:27 | 007,219,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.storage.dll
[2016/12/09 22:50:27 | 005,722,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\windows.storage.dll

OTLログを分割して送付いたします。

[2016/12/09 22:50:27 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.dll
[2016/12/09 22:50:26 | 000,328,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Storage.ApplicationData.dll
[2016/12/09 22:50:25 | 001,473,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2016/12/09 22:50:24 | 004,130,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2016/12/09 22:50:24 | 000,620,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcastdvr.exe
[2016/12/09 22:50:23 | 001,062,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2016/12/09 22:50:23 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BcastDVRHelper.dll
[2016/12/09 22:50:23 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DisplayManager.dll
[2016/12/09 22:50:23 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppCapture.dll
[2016/12/09 22:50:22 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtcprx.dll
[2016/12/09 22:50:22 | 000,870,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmkvsrcsnk.dll
[2016/12/09 22:50:22 | 000,374,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2016/12/09 22:50:22 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpapisrv.dll
[2016/12/09 22:50:22 | 000,187,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CloudStorageWizard.exe
[2016/12/09 22:50:22 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2016/12/09 22:50:22 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dialserver.dll
[2016/12/09 22:50:22 | 000,142,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\migisol.dll
[2016/12/09 22:50:22 | 000,126,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfaudiocnv.dll
[2016/12/09 22:50:22 | 000,122,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2016/12/09 22:50:22 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProvSysprep.dll
[2016/12/09 22:50:21 | 002,611,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2016/12/09 22:50:21 | 001,691,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe
[2016/12/09 22:50:21 | 000,936,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NMAA.dll
[2016/12/09 22:50:21 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairing.dll
[2016/12/09 22:50:21 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdtcuiu.dll
[2016/12/09 22:50:21 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RjvMDMConfig.dll
[2016/12/09 22:50:21 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgentc.exe
[2016/12/09 22:50:21 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSManHTTPConfig.exe
[2016/12/09 22:50:20 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapControlCore.dll
[2016/12/09 22:50:20 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efswrt.dll
[2016/12/09 22:50:20 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IdCtrls.dll
[2016/12/09 22:50:19 | 007,654,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mos.dll
[2016/12/09 22:50:18 | 001,709,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2016/12/09 22:50:17 | 007,812,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BingMaps.dll
[2016/12/09 22:50:17 | 006,664,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspaint.exe
[2016/12/09 22:50:17 | 004,673,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2016/12/09 22:50:17 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JpMapControl.dll
[2016/12/09 22:50:16 | 001,969,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hevcdecoder.dll
[2016/12/09 22:50:15 | 009,131,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2016/12/09 22:50:15 | 002,206,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2016/12/09 22:50:15 | 001,430,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2016/12/09 22:50:13 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsStore.dll
[2016/12/09 22:50:13 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\moshostcore.dll
[2016/12/09 22:50:12 | 003,441,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapRouter.dll
[2016/12/09 22:50:12 | 002,953,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapGeocoder.dll
[2016/12/09 22:50:11 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieproxy.dll
[2016/12/09 22:50:11 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupugc.exe
[2016/12/09 22:50:11 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2016/12/09 22:50:10 | 003,400,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2016/12/09 22:50:10 | 000,632,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasapi32.dll
[2016/12/09 22:50:10 | 000,587,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2016/12/09 22:50:10 | 000,557,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\StoreAgent.dll
[2016/12/09 22:50:10 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DataSenseHandlers.dll
[2016/12/09 22:50:10 | 000,489,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetSetupShim.dll
[2016/12/09 22:50:10 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapConfiguration.dll
[2016/12/09 22:50:10 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2016/12/09 22:50:10 | 000,388,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2016/12/09 22:50:10 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NetSetupShim.dll
[2016/12/09 22:50:10 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieproxy.dll
[2016/12/09 22:50:10 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2016/12/09 22:50:10 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgentUserBroker.exe
[2016/12/09 22:50:10 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\InstallAgent.exe
[2016/12/09 22:50:10 | 000,167,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2016/12/09 22:50:10 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MapsBtSvc.dll
[2016/12/09 22:50:10 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sendmail.dll
[2016/12/09 22:50:10 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umpoext.dll
[2016/12/09 22:50:10 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MosStorage.dll
[2016/12/09 22:50:10 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\moshost.dll
[2016/12/09 22:50:10 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LaunchWinApp.exe
[2016/12/09 22:50:10 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2016/12/09 22:50:09 | 001,196,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscui.cpl
[2016/12/09 22:50:09 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscinterop.dll
[2016/12/09 22:50:09 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NetCfgNotifyObjectHost.exe
[2016/12/09 22:50:09 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NetCfgNotifyObjectHost.exe
[2016/12/09 22:50:09 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CbtBackgroundManagerPolicy.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2017/01/05 16:42:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Minoru\Desktop\OTL.exe
[2017/01/05 16:40:32 | 3398,172,672 | -HS- | M] () -- C:\hiberfil.sys
[2017/01/05 16:40:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017/01/05 15:39:20 | 002,992,256 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017/01/05 15:39:20 | 001,091,990 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017/01/05 15:39:20 | 000,905,396 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2017/01/05 15:39:20 | 000,505,122 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017/01/05 15:39:20 | 000,432,000 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2017/01/05 15:35:03 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2017/01/05 10:40:13 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job
[2017/01/05 10:38:51 | 003,954,712 | ---- | M] (Geek Unіnstaller) -- C:\Users\Minoru\Desktop\geek64.exe
[2017/01/05 10:22:36 | 000,133,819 | ---- | M] () -- C:\Users\Minoru\Desktop\無題.ec4
[2017/01/05 09:58:48 | 006,960,152 | ---- | M] (Geek Unіnstaller) -- C:\Users\Minoru\Desktop\geek.exe
[2017/01/04 19:08:34 | 000,080,628 | ---- | M] () -- C:\Users\Minoru\Desktop\5298.jpg
[2017/01/04 14:54:14 | 000,131,954 | ---- | M] () -- C:\Users\Minoru\Desktop\キャプチャ.PNG
[2017/01/04 14:45:43 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Minoru\Desktop\HijackThis.exe
[2017/01/04 14:14:19 | 000,002,128 | ---- | M] () -- C:\Users\Public\Desktop\インターネットバンキング保護.lnk
[2016/12/28 21:43:21 | 000,000,870 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/12/28 17:18:01 | 001,084,797 | ---- | M] () -- C:\Users\Minoru\Documents\無題.png
[2016/12/28 12:41:34 | 000,000,941 | ---- | M] () -- C:\Windows\tasks\EPSON EP-706A Series Update {DA372D8E-34E7-47B0-A6FE-E662E7BCF9EF}.job
[2016/12/27 20:32:19 | 000,000,751 | ---- | M] () -- C:\Users\Minoru\Desktop\即削除 DVD - ショートカット.lnk
[2016/12/17 00:08:38 | 000,417,400 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2016/12/14 20:54:39 | 000,001,215 | ---- | M] () -- C:\Users\Minoru\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2016/12/12 08:56:25 | 000,835,576 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2016/12/12 08:56:25 | 000,177,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2016/12/09 22:39:57 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\enrollmentapi.dll
[2016/12/09 19:42:15 | 001,637,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2016/12/09 19:42:14 | 000,137,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2016/12/09 19:34:34 | 001,051,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2016/12/09 19:34:34 | 000,894,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2016/12/09 19:33:26 | 001,354,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2016/12/09 19:33:26 | 001,173,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2016/12/09 19:32:11 | 007,816,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2016/12/09 19:30:39 | 000,377,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\clfs.sys
[2016/12/09 19:29:23 | 002,681,200 | ---- | M] () -- C:\Windows\SysNative\CoreUIComponents.dll
[2016/12/09 19:28:24 | 000,764,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CoreMessaging.dll
[2016/12/09 19:27:38 | 000,172,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2016/12/09 19:20:21 | 002,677,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2016/12/09 19:20:16 | 000,658,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms2.sys
[2016/12/09 19:20:13 | 000,402,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2016/12/09 19:20:12 | 001,738,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2016/12/09 19:19:35 | 001,293,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\LicenseManager.dll
[2016/12/09 19:19:21 | 000,168,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bcrypt.dll
[2016/12/09 19:18:21 | 002,913,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll
[2016/12/09 19:18:16 | 001,100,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvix64.exe
[2016/12/09 19:18:15 | 001,267,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll
[2016/12/09 19:18:14 | 000,811,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.exe
[2016/12/09 19:18:12 | 000,947,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvloader.efi
[2016/12/09 19:18:09 | 000,989,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hvax64.exe
[2016/12/09 19:15:26 | 008,168,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Protection.PlayReady.dll
[2016/12/09 19:15:18 | 001,988,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2016/12/09 19:14:50 | 001,274,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2016/12/09 19:14:33 | 000,241,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CloudExperienceHost.dll
[2016/12/09 19:11:15 | 002,048,496 | ---- | M] () -- C:\Windows\SysWow64\CoreUIComponents.dll
[2016/12/09 19:10:58 | 001,461,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2016/12/09 19:10:40 | 001,572,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32full.dll
[2016/12/09 19:09:27 | 000,455,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\securekernel.exe
[2016/12/09 19:01:08 | 000,861,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\LicenseManager.dll
[2016/12/09 18:59:25 | 000,846,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WinTypes.dll
[2016/12/09 18:59:24 | 002,166,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2016/12/09 18:57:01 | 001,852,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2016/12/09 18:57:00 | 006,668,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Protection.PlayReady.dll
[2016/12/09 18:52:21 | 001,415,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\gdi32full.dll
[2016/12/09 18:47:29 | 022,563,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\edgehtml.dll
[2016/12/09 18:45:47 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WordBreakers.dll
[2016/12/09 18:42:29 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2016/12/09 18:41:22 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wincorlib.dll
[2016/12/09 18:41:06 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WordBreakers.dll
[2016/12/09 18:40:38 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\win32k.sys
[2016/12/09 18:38:39 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.LockScreen.dll
[2016/12/09 18:37:29 | 000,261,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\indexeddbserver.dll
[2016/12/09 18:37:10 | 000,411,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\facecredentialprovider.dll
[2016/12/09 18:37:01 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Shell.dll
[2016/12/09 18:36:56 | 000,425,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aadcloudap.dll
[2016/12/09 18:36:32 | 000,410,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2016/12/09 18:36:09 | 003,059,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2016/12/09 18:36:05 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.LockScreen.dll
[2016/12/09 18:36:02 | 006,285,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2016/12/09 18:34:52 | 000,822,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakradiag.dll
[2016/12/09 18:34:31 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wincorlib.dll
[2016/12/09 18:33:42 | 003,777,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2016/12/09 18:33:37 | 001,589,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2016/12/09 18:32:18 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2016/12/09 18:31:20 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\indexeddbserver.dll
[2016/12/09 18:31:11 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2016/12/09 18:30:32 | 019,413,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\edgehtml.dll
[2016/12/09 18:30:31 | 004,612,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2016/12/09 18:29:51 | 004,749,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers_nt.dll
[2016/12/09 18:28:55 | 001,004,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\enterprisecsps.dll
[2016/12/09 18:28:12 | 003,306,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2016/12/09 18:27:55 | 005,114,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cdp.dll
[2016/12/09 18:27:36 | 000,981,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll
[2016/12/09 18:26:32 | 008,129,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Chakra.dll
[2016/12/09 18:26:01 | 001,692,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.onecore.dll
[2016/12/09 18:25:28 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\CryptoWinRT.dll
[2016/12/09 18:24:21 | 002,275,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2016/12/09 18:22:27 | 001,490,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2016/12/09 18:22:06 | 002,820,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InputService.dll
[2016/12/09 18:21:48 | 004,746,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2016/12/09 18:21:42 | 003,616,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kfull.sys
[2016/12/09 18:21:31 | 001,512,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\win32kbase.sys
[2016/12/09 18:21:04 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ShareHost.dll
[2016/12/09 18:20:36 | 000,730,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll

OTLログを分割して送付いたします。

[2016/12/09 18:20:35 | 003,198,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\cdp.dll
[2016/12/09 18:20:33 | 006,044,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Chakra.dll
[2016/12/09 18:20:32 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceEnroller.exe
[2016/12/09 18:20:05 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mdmregistration.dll
[2016/12/09 18:19:46 | 000,433,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TextInputFramework.dll
[2016/12/09 18:19:45 | 001,121,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aadtb.dll
[2016/12/09 18:19:43 | 000,261,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Core.TextInput.dll
[2016/12/09 18:19:32 | 000,119,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\InputLocaleManager.dll
[2016/12/09 18:19:32 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\EditBufferTestHook.dll
[2016/12/09 18:18:36 | 002,138,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InputService.dll
[2016/12/09 18:18:23 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mdmregistration.dll
[2016/12/09 18:17:55 | 000,886,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aadtb.dll
[2016/12/09 18:17:08 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ShareHost.dll
[2016/12/09 18:16:56 | 002,998,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\win32kfull.sys
[2016/12/09 18:16:03 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\TextInputFramework.dll
[2016/12/09 18:15:59 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Core.TextInput.dll
[2016/12/09 18:15:51 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\EditBufferTestHook.dll
[2016/12/09 18:15:49 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\InputLocaleManager.dll
[2016/12/09 17:54:48 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\CoreMessaging.dll

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2017/01/05 10:25:32 | 000,000,214 | ---- | C] () -- C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job
[2017/01/04 19:22:02 | 000,133,819 | ---- | C] () -- C:\Users\Minoru\Desktop\無題.ec4
[2017/01/04 19:08:34 | 000,080,628 | ---- | C] () -- C:\Users\Minoru\Desktop\5298.jpg
[2017/01/04 14:52:53 | 000,131,954 | ---- | C] () -- C:\Users\Minoru\Desktop\キャプチャ.PNG
[2017/01/04 14:14:19 | 000,002,128 | ---- | C] () -- C:\Users\Public\Desktop\インターネットバンキング保護.lnk
[2016/12/28 17:04:44 | 001,084,797 | ---- | C] () -- C:\Users\Minoru\Documents\無題.png
[2016/12/27 20:32:19 | 000,000,751 | ---- | C] () -- C:\Users\Minoru\Desktop\即削除 DVD - ショートカット.lnk
[2016/12/27 20:27:03 | 000,000,941 | ---- | C] () -- C:\Windows\tasks\EPSON EP-706A Series Update {DA372D8E-34E7-47B0-A6FE-E662E7BCF9EF}.job
[2016/12/15 20:46:43 | 002,681,200 | ---- | C] () -- C:\Windows\SysNative\CoreUIComponents.dll
[2016/12/15 20:46:28 | 002,048,496 | ---- | C] () -- C:\Windows\SysWow64\CoreUIComponents.dll
[2016/11/01 23:05:56 | 000,141,320 | ---- | C] () -- C:\Windows\SysWow64\libEGL.dll
[2016/11/01 23:05:56 | 000,112,136 | ---- | C] () -- C:\Windows\SysWow64\libGLESv2.dll
[2016/11/01 23:05:56 | 000,101,384 | ---- | C] () -- C:\Windows\SysWow64\libGLESv1_CM.dll
[2016/10/10 21:05:12 | 000,265,728 | ---- | C] () -- C:\Windows\SysWow64\Windows.Perception.Stub.dll
[2016/09/20 13:48:27 | 001,085,764 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2016/09/20 13:45:49 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2016/09/20 13:19:15 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2016/07/16 20:47:57 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2016/07/16 20:47:57 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2016/07/16 20:43:04 | 000,055,296 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2016/07/16 20:43:00 | 000,019,968 | ---- | C] () -- C:\Windows\SysWow64\GamePanelExternalHook.dll
[2016/07/16 20:42:55 | 000,167,640 | ---- | C] () -- C:\Windows\SysWow64\chs_singlechar_pinyin.dat
[2016/07/16 20:42:53 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2016/07/16 20:42:49 | 000,304,640 | ---- | C] () -- C:\Windows\SysWow64\HrtfApo.dll
[2016/07/16 20:42:48 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2016/07/16 20:42:43 | 000,002,307 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2016/07/16 20:42:12 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2016/11/11 19:01:16 | 007,219,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2016/11/11 16:47:14 | 005,722,832 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2016/07/16 20:42:31 | 000,977,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2016/07/16 20:42:56 | 000,779,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2016/07/16 20:42:31 | 000,518,656 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2016/10/12 14:44:05 | 000,000,000 | RH-D | M] -- C:\MSOCache
[2017/01/05 16:40:57 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp
[2017/01/05 10:34:10 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2017/01/05 16:40:57 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp\S-1-5-21-2733000339-1796968654-3674550117-1001
[2016/10/10 21:49:52 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2016/09/20 13:45:54 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2017/01/05 09:43:33 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2017/01/01 23:52:45 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser
[2016/10/07 13:50:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CAE\06cb1963
[2016/10/07 13:33:29 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\OLRSubmission.exe
[2016/10/14 22:02:18 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PDR12.exe
[2016/10/14 22:02:46 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Power2Go8.exe
[2016/10/08 08:31:55 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Power2GoExpress8.exe
[2017/01/02 00:18:09 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD.exe
[2017/01/02 00:18:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD12.exe
[2016/10/14 22:00:38 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD12ML.exe
[2016/10/07 13:30:52 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Setup.exe
[2016/10/07 13:28:06 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\ToGo
[2016/10/14 22:02:26 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CLUpdater\Power2Go\8.0
[2016/10/14 22:02:04 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CLUpdater\PowerDirector\12.0
[2016/10/14 22:00:46 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\CLUpdater\PowerDVD\12.0
[2016/10/14 22:02:26 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\Power2Go\8.0
[2016/10/14 22:02:03 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\PowerDirector\12.0
[2016/10/14 22:00:00 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\PowerDVD\12.0
[2016/10/23 00:52:24 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\PowerDVD\12.2
[2016/10/10 21:49:33 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\PRINTER
[2016/10/10 21:45:17 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\EPSON EP-706A Series\Language
[2016/10/10 21:45:17 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\EPSON EP-706A Series\UT
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2016/12/10 22:32:05 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\RetailDemo
[2016/10/10 21:45:51 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2016/10/07 13:11:52 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2017/01/01 23:52:45 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser
[2016/10/07 13:50:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CAE\06cb1963
[2016/10/07 13:33:29 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\OLRSubmission.exe
[2016/10/14 22:02:18 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PDR12.exe
[2016/10/14 22:02:46 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Power2Go8.exe
[2016/10/08 08:31:55 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Power2GoExpress8.exe
[2017/01/02 00:18:09 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD.exe
[2017/01/02 00:18:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD12.exe
[2016/10/14 22:00:38 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\PowerDVD12ML.exe
[2016/10/07 13:30:52 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\Setup.exe
[2016/10/07 13:28:06 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CBE\D8D760AC-ACA2-493e-9623-61E9D47DE89C\ToGo
[2016/10/14 22:02:26 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CLUpdater\Power2Go\8.0
[2016/10/14 22:02:04 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CLUpdater\PowerDirector\12.0
[2016/10/14 22:00:46 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\CLUpdater\PowerDVD\12.0
[2016/10/14 22:02:26 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\Power2Go\8.0
[2016/10/14 22:02:03 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\PowerDirector\12.0
[2016/10/14 22:00:00 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\PowerDVD\12.0
[2016/10/23 00:52:24 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\PowerDVD\12.2
[2016/10/10 21:49:33 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\PRINTER
[2016/10/10 21:45:17 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\EPSON EP-706A Series\Language
[2016/10/10 21:45:17 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\EPSON EP-706A Series\UT
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2016/12/10 22:32:05 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\RetailDemo
[2016/10/10 21:45:51 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2016/07/16 20:47:48 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2016/10/10 15:41:56 | 000,000,000 | -H-D | M] -- C:\Users\defaultuser0\AppData
[2016/10/10 15:42:21 | 000,000,000 | -H-D | M] -- C:\Users\defaultuser0\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2016/10/10 15:43:58 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData
[2016/11/08 22:31:38 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2016/10/10 15:45:43 | 000,000,000 | RH-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\Burn\Burn
[2017/01/05 10:22:41 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCache\Content.MSO
[2017/01/03 17:03:05 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCache\Content.Word
[2016/10/10 21:31:34 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2016/10/10 15:44:38 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE
[2016/10/10 15:44:38 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2016/10/10 15:44:38 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2016/12/28 16:53:56 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Local\VirtualStore\ProgramData
[2016/10/10 15:44:40 | 000,000,000 | -H-D | M] -- C:\Users\Minoru\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2016/12/10 23:03:32 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2017/01/05 10:36:17 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2016/07/16 20:47:50 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{0E664C43-955A-44a4-9262-599F535207E1}\Version\12.0
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{29964B14-C117-46b6-B108-11F211ED9388}\Version\6.0
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{397A21FB-EADF-4116-9027-32B8FA04C3E2}\Version\8.0
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{4230527D-88E1-4fb5-9EDD-606F3AD2B389}\Version\2.5
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{63E98B26-4583-4418-958D-B6BD95DFE5C9}\Version\2.50
[2016/10/07 13:49:18 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{A2540FA5-4E6F-4a42-A327-D947EC8F2323}\Version\5.0
[2016/10/14 22:02:25 | 000,000,000 | -H-D | M] -- C:\Users\Public\Documents\CyberLink\Power2Go8
[2017/01/04 14:14:29 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2016/09/20 13:19:07 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2017/01/04 14:14:32 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2017/01/05 10:40:13 | 000,000,214 | ---- | M] () -- C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job
[2016/12/28 12:41:34 | 000,000,941 | ---- | M] () -- C:\Windows\tasks\EPSON EP-706A Series Update {DA372D8E-34E7-47B0-A6FE-E662E7BCF9EF}.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

OTLログを分割して送付いたします。


Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Samsung SSD 750 EVO 250GB
Partitions: 3
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD20EFRX-68EUZN0
Partitions: 4
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 - External hard disk media
Interface type: USB
Media Type: External hard disk media
Model: BUFFALO External HDD USB Device
Partitions: 1
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 232.00GB
Starting Offset: 122683392
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 900.00MB
Starting Offset: 249115443200
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1,863.00GB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #2, Partition #0
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 2,795.00GB
Starting Offset: 524288
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
No service found with a name of AeLookupSvc
SRV:[b]64bit:[/b] - [2016/09/16 01:38:02 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,095,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2016/10/15 12:48:52 | 001,054,208 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:09 | 000,795,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2016/07/16 20:42:55 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:17 | 000,453,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2016/07/16 20:42:46 | 000,347,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:10 | 000,134,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,081,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,888,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,360,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2016/07/16 20:42:55 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,264,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:37 | 000,112,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:18 | 000,036,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2016/07/16 20:42:46 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2016/11/02 19:25:18 | 000,541,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:11 | 000,391,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2016/07/16 20:42:16 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
No service found with a name of MMCSS
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,259,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2016/10/05 18:29:19 | 000,368,640 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2016/10/15 12:36:20 | 000,792,064 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2016/07/16 20:42:04 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2016/11/11 18:20:29 | 000,657,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,888,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2016/09/07 14:24:28 | 000,057,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2016/11/11 18:16:14 | 000,184,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:27 | 000,305,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:40 | 000,617,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2016/07/16 20:43:04 | 000,566,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2016/07/16 20:42:36 | 000,948,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:39 | 000,309,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2016/07/16 20:43:02 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:42 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2016/09/16 01:35:48 | 000,358,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:15 | 001,443,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:23 | 000,942,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2016/11/11 18:11:57 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:47 | 000,147,968 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2016/09/16 01:22:47 | 001,709,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:06 | 000,893,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:43:50 | 000,646,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,065,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2016/07/16 20:42:45 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:31 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2016/11/11 18:04:24 | 002,317,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2016/07/16 20:42:13 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2016/09/07 13:37:20 | 002,370,048 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2016/11/11 18:03:50 | 000,283,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >

Extrasログを分割して送付いたします。

OTL Extras logfile created on: 2017/01/05 16:45:30 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Minoru\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.91 Gb Total Physical Memory | 6.27 Gb Available Physical Memory | 79.31% Memory free
9.16 Gb Paging File | 7.64 Gb Available in Paging File | 83.37% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 231.89 Gb Total Space | 191.74 Gb Free Space | 82.68% Space Free | Partition Type: NTFS
Drive D: | 1863.01 Gb Total Space | 1326.65 Gb Free Space | 71.21% Space Free | Partition Type: NTFS
Drive F: | 2794.52 Gb Total Space | 436.32 Gb Free Space | 15.61% Space Free | Partition Type: NTFS

Computer Name: MINORU-PC2 | User Name: Minoru | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location '%V' (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 00 A7 47 8F F6 12 D2 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
"DontEnumerateCommonFilesUpgradeExe" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{4424FBA0-D311-4EF7-B01B-E61DC49D89E7}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\outlook.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0036C5B4-6F60-4B24-BF8F-0B006D2DD3B1}" = dir=in | name=@{microsoft.zunevideo_3.6.19281.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{00DE661F-685D-47E2-B830-0FC8EA5A9E55}" = dir=in | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{07D9C2E0-05D6-46A7-940F-DA57C8D17FDA}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.14393.576_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{084675CC-FCA2-4896-9BD1-38D37BC2DC18}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{08C48CE9-2218-4CB4-BB91-B121230E05CF}" = dir=out | name=@{microsoft.accountscontrol_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{098FAE58-D3D0-45CA-88AE-D35152A504B3}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{09ABD9CD-64F9-4C11-9F6E-465EEC6A6607}" = dir=out | name=store purchase app |
"{0A092275-9D60-4B4E-9FC7-431CB9C1C79A}" = dir=out | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{0B30F9BD-708D-47EC-A66A-EAB0F7824DC9}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{0D9B2CBC-2378-4FE1-B887-7F5B2D39C4D9}" = dir=in | name=microsoft solitaire collection |
"{0E293322-8659-490F-ACE0-CB1D39ED7F16}" = dir=in | name=@{microsoft.windows.photos_16.511.8780.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{0E7CF069-E0F7-41F3-A3AB-234FE7942F11}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.7714.42037.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{10334429-7E22-4E9C-A327-74703C771193}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.3.1741.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{107F2889-074F-40E5-85CE-A0ED1022BEF0}" = dir=out | name=@{microsoft.accountscontrol_10.0.14393.576_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{11957987-3B9E-4D43-84A8-5553E4E691E5}" = dir=out | name=@{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{11B7287A-6601-4DCB-8879-ABF5F70C7321}" = dir=out | name=line |
"{124A9A59-49CE-44B9-9A2D-965E11F38569}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6868.41201.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{13832572-AF84-40B5-8BA4-4C975A922366}" = dir=in | name=onenote |
"{15BA9865-3537-4EF4-B14A-86A8F73B194E}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{1C617881-A50A-4B71-960C-0C4787DDDC93}" = dir=out | name=@{microsoft.oneconnect_1.1605.17.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnect/appstorename} |
"{1D35500C-1B85-4CC1-AB33-9C07C75BF3C8}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{1E060DC4-4FE5-4A07-B177-5ACB0BFDC88C}" = dir=out | name=@{microsoft.microsoftofficehub_17.7608.23501.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{1E45ED37-1CDF-454F-BB2D-AAB5A49146E6}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{236A3910-125B-4BBA-A3BB-0E5D9F86F4B7}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{246FE2E1-3597-4278-A3BC-260849672F1E}" = dir=in | name=microsoft sticky notes |
"{25ADCF66-3A92-4F5C-9222-FDF16E4DF3CE}" = dir=out | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{25EE8406-C6B4-44A2-B225-2F58BC889ADC}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{2641B5A2-01AA-4A10-876B-4CC4E13EC0A3}" = dir=in | name=@{microsoft.zunemusic_3.6.19261.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{267E4195-6C2F-4A1D-9ED6-7DAF886E4BFA}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1610.3143.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{27277A5C-A9B6-4ADF-B617-CFABAA621CA4}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{27798BDC-B072-4B53-A738-DEDAED94B197}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{27FFE0E7-9246-45BE-AF83-EB279C75F806}" = dir=out | name=@{microsoft.windowsmaps_5.1603.1830.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{28D3B6AE-8714-457F-B054-E886D9FAABB7}" = dir=in | name=@{microsoft.bingweather_4.18.37.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{2C33FB3E-9E15-4F2F-97AC-9233F0587010}" = dir=out | name=@{microsoft.3dbuilder_11.0.47.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{2DA8391A-F2D8-4BB0-AC71-5A533DFF9768}" = dir=in | name=xbox |
"{33D37922-1AB3-4AA1-A55D-8AB2295878F9}" = dir=out | name=microsoft sticky notes |
"{343FC815-DDB9-44FA-B057-2BA92DD2CEEC}" = dir=out | name=@{microsoft.windows.photos_16.1118.10000.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{348CA8D5-9C66-4E2A-B305-B5E2DEE6E891}" = dir=in | name=@{microsoft.bingnews_4.18.41.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{38CC1EF5-B232-401C-A829-8D1DD8082CCC}" = dir=in | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{3A0906AC-06DF-4899-B487-415907C05E31}" = dir=out | name=@{microsoft.zunemusic_10.16112.10211.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{3BFD1E2B-AB5E-4A86-B7F4-8FD5A3D58081}" = dir=out | name=@{microsoft.xboxidentityprovider_11.19.19003.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{3EDB636F-DF41-45D9-9888-5571C8C9AB61}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{3F3CBAB5-63DC-4126-83E7-C44A0E555FB6}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{439F11DF-73FD-48FA-A480-5680BB181C3E}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{458EE656-16A1-4B81-B582-2DBCD2E5BFFC}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{46EC9D8B-4656-415A-9546-D731A88F2CCB}" = dir=out | name=windows_ie_ac_001 |
"{47329BA3-1ED3-4BE3-8216-70BC8CCD30BA}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{479D62D9-6E0D-4D05-85A5-0628C7827D7E}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{49F9786B-8452-4A92-848B-4C950B214AEC}" = dir=in | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{4B0B3D07-CFCD-4577-B5B8-F2449B4C9964}" = dir=out | name=@{microsoft.skypeapp_11.4.86.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{4BB36C5D-485F-4445-A42D-252A4B86E32F}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{4D9235E6-7B5C-4200-BB3C-DECFAE541483}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{4E8EFE5D-65E1-4D44-856A-3D61D0446D4F}" = dir=out | name=windows_ie_ac_001 |
"{4F1B868D-7F08-4A6F-A593-A30266248B60}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{527B88F9-DA46-40AC-A3FC-F544DD105DF6}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{53F901E9-A01B-48F2-A5B8-91682A385D7E}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.1610.3143.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{5432C85F-491D-4D03-BD1F-B731EA59B965}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{58D741BB-3F05-4DE1-8C7A-42B6DA0459AE}" = dir=in | name=@{microsoft.skypeapp_11.4.86.0_x64__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/skypevideo_productname} |
"{5BB1542B-D12A-4BAE-9FE4-9B85D83904C3}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{5CF5AB5F-907C-443F-A5F5-D00026A9ECD5}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{5D02DDA2-ECDA-4319-860B-5EB50F8EC253}" = dir=out | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{5EB474A0-AE89-48BB-A33E-E6D4B71E235B}" = dir=out | name=onenote |
"{5ED07E0E-2EC4-4DD2-B296-9BB2A84C99B3}" = dir=in | name=@{microsoft.windows.photos_16.1118.10000.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{5FED5FC0-3299-4AC8-9147-3024E236F304}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{62A1A2D5-2652-42F9-A48A-EEA8110278AF}" = dir=out | name=@{microsoft.accountscontrol_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{65E2B5BE-F26E-43E8-AA1F-5DD1557D4A6B}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{67B435D8-B11C-49C4-9F06-63BF5B95846C}" = dir=out | name=@{microsoft.windowsstore_11610.1001.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{6C40D514-7309-49A4-84DA-736D78C8505C}" = dir=out | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{6E41106E-9EAA-4213-A1D0-AF932CB7DC8F}" = dir=out | name=@{microsoft.people_10.0.11902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{7051894A-23B6-4830-A511-012FBE63D2E8}" = dir=in | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{70806E81-88DD-4834-A517-84D273665806}" = dir=in | name=@{microsoft.microsoftofficehub_17.6801.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{72C18D1F-C729-4BA6-8227-57414EF1F8E7}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{751ECF93-3ECC-4187-8141-D28627D0ABD9}" = dir=out | name=@{microsoft.zunevideo_10.16112.10221.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{77B67B9D-134F-4A39-BAC9-566F74F60AF1}" = dir=out | name=@{microsoft.bingweather_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{78DFEB65-326F-470D-BB5B-F075D1269695}" = dir=out | name=@{microsoft.bingnews_4.18.41.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{79DF13A7-1FD0-4C74-BF8A-992CA193984B}" = dir=out | name=@{microsoft.getstarted_4.2.29.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{7B015B0B-BBFA-4FB2-8296-466C6DAEAEEA}" = dir=out | name=microsoft solitaire collection |
"{7BAE4148-45F7-45D6-9159-4F4BB029B2F6}" = dir=out | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{7CAA13A1-CB0E-446F-930B-84F1B8FF18F1}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6868.41201.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{7DA8D145-A9A9-4FAD-9558-06861F2F6F00}" = dir=out | name=テレbing |
"{86507172-F90D-47C7-8A31-BB9A8DD73714}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{86C4D543-0933-4191-A107-67050FAD9755}" = dir=in | name=@{microsoft.zunemusic_10.16112.10211.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{86C6A81D-61E6-459C-AC72-C8F61FA59714}" = dir=out | name=microsoft sticky notes |
"{8DB3F4FC-4DFA-4D64-81CE-55795E4E52AB}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{9073EA9F-3800-4CD3-AD92-08CB116CFFB0}" = dir=out | name=@{microsoft.3dbuilder_12.0.3131.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{91B36CBD-B2DE-4510-99C1-1E3B9C0F1E92}" = dir=out | name=onenote |
"{922C6A99-A932-4A24-A8CF-EEEE67D14834}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd12\movie\powerdvd cinema\powerdvdcinema12.exe |
"{94CC4DF8-3B54-46E7-A0A3-CBE167669D4D}" = dir=in | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{97A6C6C1-0352-46A1-B81D-6A5683F07A08}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{9A093578-5F31-4A42-BB82-047068246859}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{9C464A56-18BC-45AB-8733-0D2A7FDC67ED}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{9CDA1CED-7307-4B5D-91AD-819B1A9D710C}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{9E0D87AD-2668-4D4F-95D0-779C77DA4B81}" = dir=in | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{9F1A2E9C-AE03-46AB-A984-CAA82AD065EB}" = dir=in | name=@{microsoft.windowsfeedbackhub_1.3.1741.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{9F46443F-6A89-487F-BECA-36FECE8754CD}" = dir=in | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{A057D23A-BEC7-4F24-8524-3384745F8490}" = dir=out | name=@{microsoft.windowsmaps_5.1611.3342.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{A2393A34-36A9-4A51-A647-4155B487243C}" = dir=out | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{A359DFD4-EEA5-45B4-A432-2B17C5D27233}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{A529C9C8-3FD7-4B57-B31B-3F3266E2077D}" = dir=in | name=microsoft solitaire collection |
"{A683DC70-D118-48D2-8A81-67DBA8B70F71}" = dir=in | name=line |
"{A6A30886-084B-4091-A48D-6CEE1D767319}" = dir=out | name=@{microsoft.bingweather_4.18.37.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{A9FE715D-4965-446F-A464-D7D0FD696DA0}" = dir=out | name=@{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{AD2E037F-D68C-475D-B66C-30D6AC2F49EA}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{AD786DCC-BE69-49D9-A04C-9B679FCBD5FE}" = dir=out | name=xbox |
"{AF3B94D6-CC76-4818-81B0-3DFD653A03CD}" = dir=out | name=@{microsoft.xboxidentityprovider_11.18.16009.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{AF72854B-3D03-4322-8B01-785DE5430C79}" = dir=in | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{B00EF084-1625-4EEB-A809-DD9DB4651B9C}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{B1BE39D8-4B49-43F8-ADF7-7A81E1FC424E}" = dir=out | name=@{microsoft.getstarted_3.11.3.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{B6FCFA76-6F66-4FBC-BC74-70F370F8DD18}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{B771E17D-4765-43F9-AD09-273ACF619BA2}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{B843297D-6F16-454B-AD43-813E7129CE63}" = dir=out | name=@{microsoft.windowsstore_11606.1001.39.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{B8EA8053-37A0-41C6-9440-5306E9B9D804}" = dir=out | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{B921F0DD-24CA-46A5-A37D-7E39BFA25272}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{BAAFD777-2CC2-4845-80FB-93E5F18A1C9D}" = dir=in | name=@{windows.contactsupport_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{BBFBE2C5-296B-4A82-BAF8-D7A5AFDF8229}" = dir=in | name=@{microsoft.bingweather_4.9.51.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{BFC17ACA-66DF-4709-A916-1C5A3894A1EF}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{C1F459EA-F04C-45F7-BF35-6DD145185372}" = dir=out | name=@{microsoft.microsoftofficehub_17.6801.23751.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{C2C755EB-7D7D-41A5-B51A-31E0A22083BE}" = dir=in | name=@{microsoft.windowsstore_11606.1001.39.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{C4935F05-0449-4EDB-BAFF-3D42DBD5EDC9}" = dir=out | name=store purchase app |
"{C6408173-250E-4662-ACF6-622E85843B3B}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{CDD152CE-C122-4E07-AC35-8A9C5EFCCD80}" = dir=out | name=xbox |
"{CEFC282D-0454-4F97-91E7-A357184E9E64}" = dir=out | name=microsoft solitaire collection |
"{D1C169C6-74ED-40CF-AC7B-1E7BD33D620D}" = dir=in | name=onenote |
"{D1FB24F6-4D11-4233-B73E-F1C03C6F98D9}" = dir=in | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{D23617B3-4DBC-403D-B766-C4D55FF4F7A0}" = dir=out | name=@{microsoft.people_10.1.3160.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{D84B650A-EB15-4AAA-B9A9-FAA2B38D50BD}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{D9D7581A-DC3C-410E-9E0E-C38B67F41136}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{DC583AA3-EAC0-474C-B08D-56DA0AFFCFAD}" = dir=in | name=@{microsoft.microsoftofficehub_17.7608.23501.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{DCE53A99-27F7-444F-B86D-C7931C48C792}" = dir=out | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{DD94417B-F9CD-4FD5-9C06-FF736B3C88F4}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.7714.42037.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{E16172D4-C761-46EA-BC42-205ED2A73EC9}" = dir=out | name=@{microsoft.lockapp_10.0.14393.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{E3FC59A3-D5EC-467D-9270-FB8A155509DD}" = dir=out | name=@{microsoft.windows.cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{E57BE6E2-026D-4F21-91E8-ADEE1AD5841A}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{EAD05173-12AA-4AA9-B108-56822361D819}" = dir=out | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |

Extrasログを分割して送付いたします。

"{EB18BBA4-88F0-4A79-998B-1F8F7D743E87}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.14393.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{F061F587-6CB7-49AF-B954-267047342184}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{F14EB711-2865-40E7-A492-BD6F7A3ED013}" = dir=out | name=@{microsoft.messaging_3.19.1001.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/resources/appstorename} |
"{F68BDEA7-6DA5-4DD6-B8C7-3D549F0FD300}" = dir=in | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{F7C0D25B-D24D-4BE3-B3B7-656D4D5B0046}" = dir=out | name=@{microsoft.zunemusic_3.6.19261.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{F8A34999-3B2F-4C0F-AB75-6069AE44D4C4}" = dir=in | name=@{microsoft.microsoftedge_38.14393.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{F91DA80A-0BA6-4ECC-935E-9203F2B827BB}" = dir=in | name=@{microsoft.zunevideo_10.16112.10221.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{F99B12AA-EAE3-458A-8CFF-C33F34A2B251}" = dir=out | name=@{microsoft.zunevideo_3.6.19281.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{FB4C157F-44EE-4084-AF92-ACE207391B9F}" = dir=in | name=xbox |
"{FC26EBCD-7573-4F3A-BBDD-84183A859432}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{FC3BFD6E-1696-46BA-A79F-7B60E328375A}" = dir=out | name=@{microsoft.ppiprojection_10.0.14393.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{FF572BC4-408E-447D-B862-F690D9CF7278}" = dir=in | name=@{microsoft.windowsstore_11610.1001.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{FFE656CA-F922-4314-BC78-E7A565828B5C}" = dir=out | name=@{microsoft.windows.photos_16.511.8780.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{335F9123-9306-4DB0-AF07-9C636317EE9D}" = Intel(R) ME UninstallLegacy
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{3973721B-C2ED-4505-98B6-752897ECF2F1}" = Intel® Trusted Connect Service Client
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{43E67915-502D-3B7E-8FCD-ABB40088E45C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{54EC951C-4197-4AA4-803B-101F127BBB38}" = Intel(R) Management Engine Components
"{55398EAC-F58E-4F19-B553-BDF8B9EFD839}" = Intel(R) Chipset Device Software
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{69B404DD-8CB7-4EB5-A570-44744300AEE3}" = ESET Internet Security
"{70A78B94-1B16-46A1-8C7A-A59F7B28B425}" = Intel(R) Serial IO
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{90150000-002A-0000-1000-0000000FF1CE}" = Microsoft Office 64-bit Components 2013
"{90150000-002A-0411-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Japanese) 2013
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}" = Intel(R) Serial IO
"{A1C31BA5-5438-3A07-9EEE-A5FB2D0FDE36}" = Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23506
"{B0B194F8-E0CE-33FE-AA11-636428A4B73D}" = Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23506
"{B66F70B4-34E5-429A-9F55-7129E0833A45}" = Intel(R) Rapid Storage Technology
"{BD135157-92CB-471A-9BFF-BB04E6ECF25B}" = Intel(R) Management Engine Components
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D2837730-4960-3B35-8088-201387FD3BDB}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN
"{E1646825-D391-42A0-93AA-27FA810DA093}" = CyberLink PowerDirector 12
"CCleaner" = CCleaner
"EPSON EP-706A Series" = EPSON EP-706A Series プリンター アンインストール
"Logitech Unifying" = Logicool Unifying ソフトウェア 2.50
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語
"WinRAR archiver" = WinRAR 5.31 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1045AB6F-6151-3634-8C2C-EE308AA1A6A7}" = Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23506
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"{23daf363-3020-4059-b3ae-dc4ad39fed19}" = Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506
"{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"{3361D415-BA35-4143-B301-661991BA6219}" = MyEPSON Portal
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}" = Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
"{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}" = CyberLink PhotoDirector 5
"{65AD78AD-D23D-3A1E-9305-3AE65CD522C2}" = Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23506
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink MediaShow 6
"{90150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0411-0000-0000000FF1CE}" = Microsoft Access MUI (Japanese) 2013
"{90150000-0016-0411-0000-0000000FF1CE}" = Microsoft Excel MUI (Japanese) 2013
"{90150000-0018-0411-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (Japanese) 2013
"{90150000-0019-0411-0000-0000000FF1CE}" = Microsoft Publisher MUI (Japanese) 2013
"{90150000-001A-0411-0000-0000000FF1CE}" = Microsoft Outlook MUI (Japanese) 2013
"{90150000-001B-0411-0000-0000000FF1CE}" = Microsoft Word MUI (Japanese) 2013
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-0411-0000-0000000FF1CE}" = Microsoft Office 校正ツール 2013 - 日本語
"{90150000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2013
"{90150000-0044-0411-0000-0000000FF1CE}" = Microsoft InfoPath MUI (Japanese) 2013
"{90150000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2013
"{90150000-0090-0411-0000-0000000FF1CE}" = Microsoft DCF MUI (Japanese) 2013
"{90150000-00A1-0411-0000-0000000FF1CE}" = Microsoft OneNote MUI (Japanese) 2013
"{90150000-00BA-0411-0000-0000000FF1CE}" = Microsoft Groove MUI (Japanese) 2013
"{90150000-00E1-0411-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Japanese) 2013
"{90150000-00E2-0411-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Japanese) 2013
"{90150000-012B-0411-0000-0000000FF1CE}" = Microsoft Lync MUI (Japanese) 2013
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-0804-1033-1959-001824205020}" = Adobe Refresh Manager
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B294CE94-FE0F-4427-910C-180AF9FCFED1}" = Intel® Security Assist
"{B46BEA36-0B71-4A4E-AE41-87241643FA0A}" = CyberLink PowerDVD 12
"{B4F0E794-11F5-4971-85EC-6D7F2E4DAC68}" = Epson Software Updater
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint 2.5
"{c7f54569-0018-439c-809a-48046a4d4ebc}" = インテル® チップセット デバイス ソフトウェア
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{D16A31F9-276D-4968-A753-FFEAC56995D0}" = Epson Print CD
"{E3F7F270-4ADD-3DA6-8B35-A924C134D49F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"EPSON Scanner" = EPSON Scan
"InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}" = CyberLink Media Suite 10
"MyEPSON Connect" = MyEPSON Portal
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-2733000339-1796968654-3674550117-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"OneDriveSetup.exe" = Microsoft OneDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2016/12/28 6:39:06 | Computer Name = MINORU-PC2 | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: DVDFabPasskey.exe、バージョン: 8.2.8.5、タイム スタンプ: 0x57ac2d32
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0xc601c62c
障害が発生しているプロセス
ID: 0x17c4 障害が発生しているアプリケーションの開始時刻: 0x01d260f69d38254e 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\DVDFab Passkey\DVDFabPasskey.exe 障害が発生しているモジュール パス: unknown レポート ID:
02d557cc-c3eb-4fd2-99ce-2a5485cd9851 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2016/12/28 6:56:27 | Computer Name = MINORU-PC2 | Source = Application Hang | ID = 1002
Description = プログラム DVDFab.exe バージョン 9.3.1.6 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、セキュリティとメンテナンス
コントロール パネルで、問題の履歴を参照してください。 プロセス ID: 13dc 開始時刻: 01d260f6a84b093a 終了時刻: 4294967295 アプリケーション
パス: C:\Program Files (x86)\DVDFab 9\DVDFab.exe レポート ID: 4592e2b3-ccec-11e6-b563-4ccc6a66b6db

障害が発生しているパッケージのフル
ネーム: 障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2016/12/28 8:44:00 | Computer Name = MINORU-PC2 | Source = SideBySide | ID = 16842787
Description = "C:\Program Files (x86)\Microsoft Office\Office15\lync.exe.Manifest"
のアクティブ化コンテキストの生成に失敗しました。マニフェストまたはポリシー ファイル "C:\Program Files (x86)\Microsoft Office\Office15\UccApi.DLL"
行 1 のエラーです。 マニフェスト内のコンポーネント ID が要求されたコンポーネントの ID と一致しません。 参照は UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"
です。 定義は UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0" です。 詳細な診断を行うには
sxstrace.exe を実行してください。

Error - 2016/12/28 8:44:04 | Computer Name = MINORU-PC2 | Source = SideBySide | ID = 16842785
Description = "c:\program files (x86)\cyberlink\photodirector5\kernel\ces\CES_AudioCacheAgent.exe.Manifest"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ PDR.X,type="win32",version="1.0.0.0" が見つかりませんでした。
詳細な診断を行うには
sxstrace.exe を実行してください。

Error - 2016/12/28 8:44:04 | Computer Name = MINORU-PC2 | Source = SideBySide | ID = 16842785
Description = "c:\program files (x86)\cyberlink\photodirector5\kernel\ces\CES_CacheAgent.exe.Manifest"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ PDR.X,type="win32",version="1.0.0.0" が見つかりませんでした。
詳細な診断を行うには
sxstrace.exe を実行してください。

Error - 2017/01/01 7:32:45 | Computer Name = MINORU-PC2 | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: DVDFabPasskey.exe、バージョン: 8.2.8.5、タイム スタンプ: 0x57ac2d32
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0xc601c62c
障害が発生しているプロセス
ID: 0xcd0 障害が発生しているアプリケーションの開始時刻: 0x01d26422c5538ae1 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\DVDFab Passkey\DVDFabPasskey.exe 障害が発生しているモジュール パス: unknown レポート ID:
815721dc-4c8f-4076-8818-8c7580319a29 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2017/01/01 10:47:20 | Computer Name = MINORU-PC2 | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: DVDFabPasskey.exe、バージョン: 8.2.8.5、タイム スタンプ: 0x57ac2d32
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0xc601c62c
障害が発生しているプロセス
ID: 0x1c2c 障害が発生しているアプリケーションの開始時刻: 0x01d2643df45ddc36 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\DVDFab Passkey\DVDFabPasskey.exe 障害が発生しているモジュール パス: unknown レポート ID:
15b5888f-430a-4ebb-9819-1932f34eb2df 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2017/01/02 10:09:39 | Computer Name = MINORU-PC2 | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: DVDFabPasskey.exe、バージョン: 8.2.8.5、タイム スタンプ: 0x57ac2d32
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0xc601c62c
障害が発生しているプロセス
ID: 0x1774 障害が発生しているアプリケーションの開始時刻: 0x01d26501db7e174a 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\DVDFab Passkey\DVDFabPasskey.exe 障害が発生しているモジュール パス: unknown レポート ID:
f6616aca-e3f9-41d7-aff4-b7d4f7401c95 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2017/01/03 2:53:35 | Computer Name = MINORU-PC2 | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: DVDFabPasskey.exe、バージョン: 8.2.8.5、タイム スタンプ: 0x57ac2d32
障害が発生しているモジュール名:
unknown、バージョン: 0.0.0.0、タイム スタンプ: 0x00000000 例外コード: 0xc0000005 障害オフセット: 0xc601c62c
障害が発生しているプロセス
ID: 0x1fbc 障害が発生しているアプリケーションの開始時刻: 0x01d2658e1ab29f99 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\DVDFab Passkey\DVDFabPasskey.exe 障害が発生しているモジュール パス: unknown レポート ID:
17fafbd1-3925-4d36-b6d8-567de33db181 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2017/01/03 3:06:17 | Computer Name = MINORU-PC2 | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = 暗号化サービスで、システム ライター オブジェクトで OnIdentity() の呼び出しを処理中にエラーが発生しました。 Details:
AddLegacyDriverFiles:
Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System
Error: アクセスが拒否されました。 。

[ isaAgentLog Events ]
Error - 2016/10/18 9:40:15 | Computer Name = DESKTOP-QR0LIIE | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/10/28 10:27:17 | Computer Name = DESKTOP-QR0LIIE | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/11/04 10:30:11 | Computer Name = DESKTOP-QR0LIIE | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/11/11 10:30:12 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/11/19 12:06:23 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/11/26 22:29:36 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/12/04 8:43:28 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/12/11 8:49:49 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/12/21 9:03:45 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

Error - 2016/12/28 9:03:46 | Computer Name = MINORU-PC2 | Source = isaAgent | ID = 1135
Description = 1.0.1.620: Unexpected error: リモート サーバーがエラーを返しました: (404) 見つかりません

[ System Events ]
Error - 2016/12/28 6:38:53 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =

Error - 2016/12/28 7:06:42 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =

Error - 2017/01/01 7:31:54 | Computer Name = MINORU-PC2 | Source = Microsoft-Windows-Kernel-Boot | ID = 29
Description =

Error - 2017/01/01 7:32:02 | Computer Name = MINORU-PC2 | Source = EventLog | ID = 6008
Description = 以前のシステム シャットダウン ( ?2016/?12/?28 23:13:12) は予期されていませんでした。

Error - 2017/01/01 7:36:02 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =

Error - 2017/01/01 10:47:06 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =

Error - 2017/01/02 10:09:14 | Computer Name = MINORU-PC2 | Source = Microsoft-Windows-Kernel-Boot | ID = 29
Description =

Error - 2017/01/02 10:09:19 | Computer Name = MINORU-PC2 | Source = EventLog | ID = 6008
Description = 以前のシステム シャットダウン ( ?2017/?01/?01 23:51:37) は予期されていませんでした。

Error - 2017/01/02 10:09:26 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =

Error - 2017/01/03 2:53:22 | Computer Name = MINORU-PC2 | Source = DCOM | ID = 10016
Description =


< End of report >

ご確認お願いいたします。

ログを確認いたしました。
原因が判明いたしました。
DVD Fabにより感染したトロイの木馬バックドア型と悪性ルートキットによる仕業です。
現在PCが無断で遠隔操作されている可能性があります。
ルートキットの影響によりどこに感染しているか特定ができませんので、データを残しているとリカバリ後のPCに再感染する可能性があります。
外部保存されているUSBかHDDかがあるかと思いますが、それも感染しているため全データを破棄してリカバリを行ってください。
それから、破棄を行うようにご案内したデータを破棄されていないのが確認できましたので、
以降のご案内は打ち切りとさせていただきます。

破棄されていないデータとは何でしょうか？
指示通りにしたつもりなんですが。