フリーウエアをインストールしようとした際に明らかに幾つものインストーラが発動したので、アンチウイルスソフトを使い取り除こうとしているのですが、ブラウザソフトのリンクのプロパティを見ると”Qtipr.com”が加えられています。除去してもしばらくすると復活しております。どのように対処してよいかをご教示いただけますと幸いです。よろしくお願いいたします。
以下に情報を貼り付けます:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 14:33:53, on 2017/04/10
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Huawei\Huawei Precision TouchPad On Screen Display Utility\OSDLaunch.exe
c:\program files (x86)\teamviewer\TeamViewer.exe
C:\Program Files (x86)\Huawei\Huawei Precision TouchPad On Screen Display Utility\osd.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\HmNetMonitor\HmNetMonitor.exe
C:\Program Files (x86)\HmNetMonitor\HmNetMonT.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\pCloud Drive\pCloud.exe
C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
C:\Program Files (x86)\Firefox Developer Edition\firefox.exe
C:\Users\Minori K\Downloads\HijackThis (1).exe
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKLM\..\Run: [0PrecisionTouchPadOsd] "C:\Program Files (x86)\Huawei\Huawei Precision TouchPad On Screen Display Utility\osd.exe"
O4 - HKLM\..\Run: [firstRun] "C:\Program Files (x86)\Huawei\Huawei Precision TouchPad On Screen Display Utility\FirstStartWin.exe"
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [pCloud] C:\Program Files (x86)\pCloud Drive\pCloud.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
O4 - HKCU\..\Run: [UnHackMe Monitor] C:\Program Files (x86)\UnHackMe\hackmon.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2845019785-115572126-1591411733-1000\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'defaultuser0')
O4 - Global Startup: Lunascape6.lnk = C:\Program Files (x86)\Lunascape\Lunascape6\Luna.exe
O4 - Global Startup: 秀丸ネットモニター.lnk = C:\Program Files (x86)\HmNetMonitor\HmNetMonitor.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O21 - SSODL: EldosMountNotificator-cbfs6 - {56656E6F-E673-41B1-9701-E9AE0F8503D0} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {6B56B5CB-0410-4928-BA56-F27DA0F9FB59} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {56656E6F-E673-41B1-9701-E9AE0F8503D0} - C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\IntelCpHDCPSvc.exe
O23 - Service: Dolby DAX2 API Service (DAX2API) - Unknown owner - C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem34.inf,%ServiceDisplayName%;ESIF Upper Framework Service (esifsvc) - Intel Corporation - C:\WINDOWS\SysWoW64\esif_uf.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_0745f11ce6fc197c\igfxCUIService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MateService - Unknown owner - C:\Program Files (x86)\MateTrans\MateService.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: osdService (osdsvc) - Huawei Technologies Co., Ltd. - C:\Program Files (x86)\Huawei\Huawei Precision TouchPad On Screen Display Utility\osdsvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom ISD Service (WTabletServiceISD) - Wacom Technology, Corp. - C:\Program Files\Tablet\ISD\WTabletServiceISD.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
O23 - Service: ZoneAlarm ICM Service - Check Point Software Technologies Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe
--
End of file - 10216 bytes
CCleanerで出力したファイルの内容:
3D Builder Microsoft Corporation 2017/04/06 12.0.3131.0
Autodesk SketchBook Autodesk 2016/06/22 179 MB 8.00.0001
AVG AVG Technologies 2017/04/09 1.171.3.211
AVG PC TuneUp AVG Technologies 2017/04/09 71.8 MB 16.74.2.60831
AVG Protection AVG Technologies 2017/04/09 726 MB 17.3.3011
CCleaner Piriform 2017/04/09 5.28
Dolby Audio X2 Windows API SDK Dolby Laboratories, Inc. 2017/04/06 16.7 MB 0.6.3.44
Dolby Audio X2 Windows APP Dolby Laboratories, Inc. 2016/06/22 40.2 MB 0.5.3.31
Firefox Developer Edition 54.0a2 (x86 ja) Mozilla 2017/04/10 89.7 MB 54.0a2
Google Chrome Google Inc. 2017/04/10 57.0.2987.133
Groove ミュージック Microsoft Corporation 2017/04/06 10.17022.10301.0
Huawei Precision TouchPad On Screen Display Utility Huawei Technologies Co., Ltd. 2016/06/22 1.13 MB 1.7.0.0
Intel(R) Dynamic Platform and Thermal Framework Intel Corporation 2017/04/08 13.3 MB 8.1.10607.289
Intel(R) HID Event Filter Intel Corporation 2017/04/08 2.98 MB 1.1.0.311
Intel(R) Processor Graphics Intel Corporation 2017/04/06 20.19.15.4454
Intel(R) Serial IO Intel Corporation 2016/06/22 30.63.1603.5
Intel(R) Virtual Buttons Intel Corporation 2017/04/08 2.28 MB 1.1.0.21
Intel® Integrated Sensor Solution Intel Corporation 2017/04/08 20.8 MB 3.0.30.1044
Lunascape6 (All Users) Lunascape 2017/04/08 245 MB 6.15.0.27562
Malwarebytes バージョン 3.0.6.1469 Malwarebytes 2017/04/09 127 MB 3.0.6.1469
MateTrans Huawei Technologies Co., Ltd. 2016/06/22 48.4 MB 1.2.26
Microsoft Solitaire Collection Microsoft Studios 2017/04/08 3.16.3302.0
Microsoft Sticky Notes Microsoft Corporation 2017/04/08 1.8.0.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2017/04/07 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 Microsoft Corporation 2017/04/07 22.5 MB 14.0.23506.0
MonitorManage Huawei Technologies Co., Ltd. 2016/06/22 5.26 MB 1.0.0.5
Mozilla Maintenance Service Mozilla 2017/04/09 257 KB 54.0a2
OneNote Microsoft Corporation 2017/04/07 17.7967.57751.0
pCloud Drive pCloud AG 2017/04/10 24.2 MB 3.5.6.0
People Microsoft Corporation 2017/04/07 10.2.831.0
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2017/04/08 46.7 MB 6.0.1.7794
Realtek USB Ethernet Controller All-In-One Windows Driver Realtek 2016/06/22 1.90 MB 10.8.422.2016
Skype Skype 2017/04/10 11.13.133.0
Spybot - Search & Destroy Safer-Networking Ltd. 2017/04/09 154 MB 2.4.40
Store Purchase App Microsoft Corporation 2017/04/06 11608.1000.2431.0
TeamViewer 12 TeamViewer 2017/04/09 62.4 MB 12.0.75813
UnHackMe 4.80 release Greatis Software, LLC. 2017/04/10
Visual Studio 2012 x64 Redistributables AVG Technologies 2017/04/09 13.0 MB 14.0.0.1
Visual Studio 2012 x86 Redistributables AVG Technologies CZ, s.r.o. 2017/04/09 40.0 KB 14.0.0.1
Wacom Pen Wacom Technology Corp. 2017/04/07 43.9 MB 7.3.4-28
Windows ドライバ パッケージ - Fingerprint Cards AB (fpc_wbdi) Biometric (03/03/2016 3.18.1.8) Fingerprint Cards AB 2017/04/07 03/03/2016 3.18.1.8
Windows ドライバ パッケージ - Fingerprint Cards AB (mshidkmdf) HIDClass (03/03/2016 3.18.1.8) Fingerprint Cards AB 2017/04/07 03/03/2016 3.18.1.8
Xbox Microsoft Corporation 2017/04/06 27.27.28010.0
Xbox Identity Provider Microsoft Corporation 2017/04/06 11.19.19003.0
ZoneAlarm Free Firewall Check Point 2017/04/09 55.0 MB 15.1.501.17249
アプリ インストーラー Microsoft Corporation 2017/04/06 1.0.10332.0
アラーム & クロック Microsoft Corporation 2017/04/06 10.1703.602.0
カメラ Microsoft Corporation 2017/04/06 2017.214.20.0
ストア Microsoft Corporation 2017/04/06 11701.1001.99.0
ニュース Microsoft Corporation 2017/04/06 4.18.41.0
ヒント Microsoft Corporation 2017/04/06 5.0.13.0
フィードバック Hub Microsoft Corporation 2017/04/08 1.1702.811.0
フォト Microsoft Corporation 2017/04/06 17.313.10010.0
ボイス レコーダー Microsoft Corporation 2017/04/06 10.1703.601.0
マップ Microsoft Corporation 2017/04/06 5.1703.762.0
マネー Microsoft Corporation 2017/04/06 4.18.37.0
メッセージング Microsoft Corporation 2017/04/06 3.19.1001.0
メール/カレンダー Microsoft Corporation 2017/04/07 17.8104.42377.0
モバイル コンパニオン Microsoft Corporation 2017/04/06 10.1609.2561.0
天気 Microsoft Corporation 2017/04/06 4.18.52.0
新しい Office を始めよう Microsoft Corporation 2017/04/06 17.8017.5925.0
映画 & テレビ Microsoft Corporation 2017/04/06 10.17022.10311.0
有料 Wi-Fi & 携帯ネットワーク Microsoft Corporation 2017/04/06 1.1607.6.0
秀丸ネットモニター 有限会社サイトー企画 2017/04/09 1.97 MB V3.10
電卓 Microsoft Corporation 2017/04/06 10.1703.601.0
電話 Microsoft Corporation 2017/04/06 2.15.28004.0
何卒よろしくお願いいたします。
マルウエア(アドウエア)が取り除けません
- GSH
- 2017/04/10 (Mon) 14:43:36