cinemap-1.9cv16.03が消せないです…
タイトルの通りなのですが、
まだリカバリーモードでのアンインストールは試みておりません。先にそちらを試した方が賢明だったでしょうか?
一応ログを貼らせていただきます。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:38:22, on 2015/10/05
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.0\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.40\deploy\LoLPatcher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.40\deploy\LoLPatcherUx.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.40\deploy\LoLPatcherUx.exe
C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.40\deploy\LoLPatcherUx.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\konko_000\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: [SpUninstallCleanUp] REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f
O4 - HKCU\..\Run: [EPSON49ADFC (EP-804A)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHQJ.EXE /FU "C:\Users\KONKO_~1\AppData\Local\Temp\E_SF0D3.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - Global Startup: Killer Network Manager.lnk = ?
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: CyberLink Product - 2015/01/06 14:21:17 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: CD Feature (gyvixodu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SSFK - TODO: <公司名> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Survarium-Steam Update Service - Unknown owner - C:\Program Files (x86)\Steam\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe (file missing)
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files (x86)\WeatherTool\2.0.0.10750\WeatherService.exe
O23 - Service: Properties Digital Photo (tihuzyqu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\JWdsManProJ\WdsManPro.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14376 bytes


7-Zip 9.38 beta 2015/10/04
Alliance of Valiant Arms 株式会社ゲームオン 2015/08/13 307
Apple Application Support(32 ビット) Apple Inc. 2015/04/10 94.2 MB 3.1.3
Apple Application Support(64 ビット) Apple Inc. 2015/04/10 107 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/03/18 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2015/01/22 2.38 MB 2.1.3.127
Bandisoft MPEG-1 Decoder 2015/09/30
Bing Bar Microsoft Corporation 2015/01/18 464 KB 7.1.362.0
Black Desert GameOn 2015/07/18 22
Bonjour Apple Inc. 2015/01/22 2.00 MB 3.0.0.10
Borderlands 2 Gearbox Software 2015/09/27
CCleaner Piriform 2015/10/05 5.10
Child of Light Ubisoft Montréal 2015/06/13
CinemaP-1.9cV04.10 Cinema PlusV04.10 2015/10/04 1.36.01.22
Clicker Heroes 2015/08/02
CLOSERS SEGA Games 2015/08/22 1.0.0.0
Common GameOn 2015/02/11 12045000
Crypt of the NecroDancer Brace Yourself Games 2015/02/02
CyberLink Media Suite 10 CyberLink Corp. 2015/01/06 1.05 GB 10.0
CyberLink PowerProducer 5.5 CyberLink Corp. 2015/01/06 168 MB 5.5.3.4118
Deathtrap NeocoreGames 2015/08/15
DMM ゲームランチャー 2015/09/30
DMMGamesPlugin 2015/09/30
Don't Starve Together Beta Klei Entertainment 2015/08/02
Dragon's Dogma Online CAPCOM CO., LTD. 2015/08/08 71.4 MB 1.00.0000
DungeonStriker EYEDENTITY GAMES 2015/09/30 2.00.0000
Dying Light Techland 2015/05/25
ELSWORD NHN PlayArt Corp. 2015/03/06 3.33 MB 1.0
EPSON EP-804A プリンター アンインストール SEIKO EPSON Corporation 2015/02/24
ETDWare PS/2-X64 11.13.5.3_WHQL ELAN Microelectronic Corp. 2015/01/06 11.13.5.3
Fallout 3 - Game of the Year Edition Bethesda Game Studios 2015/09/23
FINAL FANTASY XIV - A Realm Reborn SQUARE ENIX CO., LTD. 2015/01/08 1.0.0000
FMEAutomator 3 ぶれぼ 2015/02/03 2.27 MB 3.3.1.0
Glyph Trion Worlds, Inc. 2015/07/21 77.7 MB
Google Chrome Google Inc. 2015/07/16 45.0.2454.101
How To Survive Third Person Eko Software 2015/09/06
iCloud Apple Inc. 2015/05/28 91.6 MB 4.1.1.53
Intel Driver Update Utility Intel 2015/08/27 19.6 MB 2.2.0.2
Intel(R) Management Engine Components Intel Corporation 2015/01/06 9.5.23.1766
Intel(R) Processor Graphics Intel Corporation 2015/01/06 10.18.10.3383
Intel(R) Rapid Storage Technology Intel Corporation 2015/01/06 12.9.0.1001
Intel(R) Update Manager Intel Corporation 2015/01/12 22.6 MB 2.3.1338
iTunes Apple Inc. 2015/04/10 233 MB 12.1.2.27
Java 8 Update 31 Oracle Corporation 2015/01/22 6.07 MB 8.0.310
Java 8 Update 51 Oracle Corporation 2015/07/25 9.36 MB 8.0.510
Java 8 Update 51 (64-bit) Oracle Corporation 2015/07/25 89.1 MB 8.0.510
Kingsoft Office 2013 (9.1.0.4059) Kingsoft Corp. 2015/01/06 9.1.0.4059
KRITIKA GameOn 2015/02/10 43960480
League of Legends Riot Games 2015/10/05 3.0.1
Left 4 Dead 2 Valve 2015/08/21
LoiLo Game Recorder LoiLo inc. 2015/04/12 7.40 MB 1.1.0.1
LoiLoScope 2 LoiLo inc 2015/04/12 166 MB 2.5.4.2
LORD of VERMILION ARENA SQUARE ENIX CO., LTD. 2015/06/07 6.02 MB 1.0.0.0
Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 2015/09/24 31.3 MB 3.5.92.0
Microsoft Games for Windows Marketplace Microsoft Corporation 2015/09/24 6.03 MB 3.5.67.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2015/09/27 4.47 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2015/04/23 6.88 MB 8.0.59192
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2015/03/07 12.4 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2015/01/06 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2015/01/11 11.5 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2015/09/27 1.41 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2015/01/06 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2015/01/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2015/01/11 8.78 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2015/05/25 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/05/25 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2015/07/25 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2015/07/25 17.1 MB 12.0.30501.0
Microsoft XNA Framework Redistributable 4.0 Microsoft Corporation 2015/05/06 9.44 MB 4.0.20823.0
Minecraft Mojang 2015/06/23 1.22 MB 1.0.3.0
Minecraft 1.8 Packages 2015/04/07
Mp3tag v2.70 Florian Heidenreich 2015/06/28 v2.70
NCLauncher (NCSOFT) NCSOFT 2015/03/01
Neffy 1,2,5,0 CDNetworks 2015/01/08 1,2,5,0
Niconico Live Encoder niwango, inc. 2015/01/21 2.0.4
NVIDIA GeForce Experience 2.5.12.11 NVIDIA Corporation 2015/08/27 2.5.12.11
NVIDIA PhysX システム ソフトウェア 9.15.0428 NVIDIA Corporation 2015/08/27 9.15.0428
NVIDIA グラフィックス ドライバー 355.60 NVIDIA Corporation 2015/08/27 355.60
Origin Electronic Arts, Inc. 2015/01/11 9.5.3.636
osu! ppy Pty Ltd 2015/08/01 123 MB latest
PHANTASY STAR ONLINE 2 SEGA 2015/01/14 7.24 MB
Phantom Breaker: Battle Grounds MAGES. 2015/06/29
Pmangインストールマネージャー GameOn,Pmang 2015/01/08 1.0.1.1
Portal 2 Valve 2015/08/23
PROTOTYPE 2 Radical Entertainment 2015/01/08
Qualcomm Atheros Performance Suite Qualcomm Atheros 2015/01/06 1.1.38.1037
REALTEK Bluetooth Driver 2015/01/06 3.800.800.121313
Realtek Card Reader Realtek Semiconductor Corp. 2015/01/06 6.2.9600.21243
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/01/06 6.0.1.7161
REALTEK Wireless LAN Driver 2015/01/06 1.00.0234
RPGツクール2000 ランタイムパッケージ 2015/02/13
RPGツクールVX Ace RTP Enterbrain 2015/08/23 194 MB 1.00
RPGツクールVX RTP Enterbrain 2015/08/13 42.1 MB 1.02
SCM Application 2015/01/06 4.07 MB 13.014.01026
SEGA Common 2 SEGA Games 2015/08/22 2.0.0.0
Serious Sam 3: BFE Croteam 2015/08/14
Skype Click to Call Microsoft Corporation 2015/05/28 9.84 MB 7.4.0.9058
Skype(TM) 7.8 Skype Technologies S.A. 2015/08/22 71.1 MB 7.8.102
Sound Blaster Cinema Creative Technology Limited 2015/01/06 1.00.05
Steam 2015/01/06
Steam Valve Corporation 2015/01/08 2.10.91.91
Terraria Re-Logic 2015/05/12
The Desktop Weather 2.0 Baidu Japan Inc. 2015/10/04 2.0.0.10750
Time Clickers Proton Studio Inc 2015/08/14
Trove North America Trion Worlds, Inc. 2015/07/21
Unity Unity Technologies ApS 2015/03/25 5.0.0f4
Unity Web Player Unity Technologies ApS 2015/01/12 12.0 MB 4.6.1f1
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2015/01/11 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/09/09 41.7 MB 16.0.1404.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2015/09/09 11.6 MB 15.0.2013
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/28 9.00 KB 16.0.1515.1
Uplay Ubisoft 2015/06/13 4.3
Visual Basic 6.0 ランタイム SP6 for TTSneo ゆうと 2015/01/18 2.73 MB 1.0.0.0
Windows ドライバ パッケージ - ENE TECHNOLOGY INC. (WUDFRd) HIDClass (02/08/2013 1.1.0.0) ENE TECHNOLOGY INC. 2015/01/06 02/08/2013 1.1.0.0
X-Downloader X-Legend 2015/05/04 1.0000
XAOC Winking 2015/09/22 12.8 GB 1.0.0.0
《Crystal Crest》 バージョン 1.0 GRETECH JAPAN Corp 2015/04/04 3.96 GB 1.0
やります!アンコちゃん co278640 2015/02/20
ドラゴンクエストX オンライン SQUARE ENIX CO., LTD. 2015/07/13 1.0.1.0
ニコ生デスクトップキャプチャー(XP) SEASON2 Consolas 2015/01/09 376 KB 1.16
バンダイナムコオンライン ランチャー 株式会社バンダイナムコオンライン 2015/02/20 1.0.1
マカフィー インターネットセキュリティ McAfee, Inc. 2015/07/11 14.0.1076
メイプルストーリー 2015/08/08
機動戦士ガンダムオンライン 株式会社バンダイナムコオンライン 2015/02/20 1.27 MB 1.0.0.1
  • konko_
  • 2015/10/05 (Mon) 23:03:03
返信フォームへ 
Re: cinemap-1.9cv16.03が消せないです…
感染しているであろうウイルス?はOutBrowseは確認しております。cinemaPをアンインストールしようとする際に毎度必ず発生し、マカフィーが検出し、知らせてくれます。

発生場所はc:user/username/AppData/Local/Microsoft/Windows/INetCache/IE ←の中の4つのフォルダのどれかにランダムで、同時に
c:user/username/AppData/Local/Temp ←内に複数のよくわからないファイルとともに同時刻に作成されています。

対応策等何かあるのでしたら何卒よろしくお願いします
  • konko_
  • 2015/10/05 (Mon) 23:29:35
返信フォームへ 
とりあえずプレイしていないゲームは消しましょう
こんばんは、IVNOと申します。
その辺は案外すんなり削除できるものです。

それでは作業準備を行いましょう。

まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。

それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓)
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のソフトウェアをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。

GeekUninstaller(通称:GU)
ダウンロード
http://www.geekuninstaller.com/geek.zip
ファイル直リンクです。zipファイルですので使用前に展開してください。
削除の際はそのままごみ箱に処分してください。
解説
http://www.gigafree.net/system/install/geekuninstaller.html

「CCleaner」(通称:CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はGUなどでアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。

準備できたら作業を開始しましょう。

まずは以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新バージョンの確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml
条項に同意しますのボタンを押して数十秒程度お待ちいただくとJavaが起動します。
Javaが旧バージョンである場合はそのまま最新バージョンのダウンロードページに移動します。
Javaが最新バージョンの場合は旧バージョンの削除画面が出現しますので、指示に従って旧バージョンを削除してください。

以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。

PCをセーフモードで起動してください(やり方↓)
http://www.pc-master.jp/sousa/s-safemode.html
Windows 8または8.1の方は以下を参考になされてください。
http://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=015917
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O4 - HKLM\..\RunOnce: [SpUninstallCleanUp] REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: CD Feature (gyvixodu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: SSFK - TODO: <公司名> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\JWdsManProJ\WdsManPro.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、GUを起動させ、以下を削除してください。

Bing Bar Microsoft Corporation 2015/01/18 464 KB 7.1.362.0
CinemaP-1.9cV04.10 Cinema PlusV04.10 2015/10/04 1.36.01.22
Kingsoft Office 2013 (9.1.0.4059) Kingsoft Corp. 2015/01/06 9.1.0.4059
The Desktop Weather 2.0 Baidu Japan Inc. 2015/10/04 2.0.0.10750

GU上に表示されているソフトウェアをダブルクリックで削除できます。
削除が完了したら自動的にスキャンが始まりますので、検出されたごみすべてにチェックを入れてOKを押してください。
またこのタイミングで、プレイしていないゲームはすべて削除しておいてください。
GUでのアンインストールが完了しましたらGUを終了させてください。
Windowsインストーラーがどうとかの表示が出た場合はPCを通常モードで再起動し、
その状態で改めて該当ソフトウェアのみをアンインストールしてください。
通常モードとセーフモードを使い分けながらご案内しているすべてのソフトウェアの削除が完了するまで続けてください。
ご案内していたすべてのソフトウェアの削除が完了しましたら、
キーボードの左Ctrlと左Altの間にあるスタートボタンを押しながらRボタンを押します。
ファイル名を指定して実行と言うものが起動しますので、そちらに半角英数で以下を入力してください。

cleanmgr

入力が完了しましたらエンターキーを押してください。
C:ドライブを選択してOKを押します。
スキャンが開始されますので完了するまでお待ちください。
スキャンが完了すると一覧が表示されますので、すべてにチェックを入れてOKを押してください。
ただし、OKを押すとごみ箱の中身を含めてすべて削除されますので、
ごみ箱の中に必要なファイルが入っている場合はご注意ください。

処置が完了しましたらPCを通常モードで再起動させてください。
導入されているセキュリティソフトのウイルス定義ファイルを更新し、
すべてのドライブを対象としてフルスキャンを行ってください。
フルスキャンが完了しましたらHJTのログ、CCのインストール情報ログを再取得し、
それらを貼り付けてフルスキャンの結果とともにご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/06 (Tue) 00:30:39
返信フォームへ 
Re: cinemap-1.9cv16.03が消せないです…
フルスキャンするところまで行ったのですが、
途中で脅威が発見されたと警告が出現、インストールされたプログラムを確認するといくつかが復活しておりました。。。

セーフティーモードにてHJTを開いた際の5つの項目をチェック、fixすると再起動を促されたため、再起動後セーフティーモードへ再度以降し、そのままGUにてアンインストールを開始、アンインストール終了後通常モードへ移行、フルスキャンという流れで進めたのですが、フルスキャン終了後HJTを起動、確認すると全て残っていたのでその時点から少々しくじっていた様です…

Setupというプログラムが cinemaPと同じ働きをしだしたのですが、かなり危険な状態とみた方がいいでしょうか?

一応今現在の状況を報告いたします。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:53:46, on 2015/10/06
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\konko_000\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [gmsd_jp_005010107] "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
O4 - HKLM\..\RunOnce: [upgmsd_jp_005010107.exe] C:\Users\konko_000\AppData\Local\gmsd_jp_005010107\upgmsd_jp_005010107.exe -runonce
O4 - HKCU\..\Run: [EPSON49ADFC (EP-804A)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHQJ.EXE /FU "C:\Users\KONKO_~1\AppData\Local\Temp\E_SF0D3.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Killer Network Manager.lnk = ?
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: CyberLink Product - 2015/01/06 14:21:17 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: CD Feature (gyvixodu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PP 1.10.0.24 Client Service (ppsvc_1.10.0.24) - PhraseProfessor - C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Service\ppsvc.exe
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SSFK - TODO: <公司名> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Survarium-Steam Update Service - Unknown owner - C:\Program Files (x86)\Steam\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe (file missing)
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files (x86)\WeatherTool\2.0.0.10750\WeatherService.exe
O23 - Service: Properties Digital Photo (tihuzyqu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\iWdsManProi\WdsManPro.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13916 bytes

7-Zip 9.38 beta 2015/10/04
Apple Application Support(32 ビット) Apple Inc. 2015/04/10 94.2 MB 3.1.3
Apple Application Support(64 ビット) Apple Inc. 2015/04/10 107 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/03/18 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2015/01/22 2.38 MB 2.1.3.127
Bandisoft MPEG-1 Decoder 2015/09/30
Bing Bar 2015/01/18
Black Desert GameOn 2015/07/18 22
Bonjour Apple Inc. 2015/01/22 2.00 MB 3.0.0.10
Borderlands 2 Gearbox Software 2015/09/27
CCleaner Piriform 2015/10/05 5.10
Child of Light Ubisoft Montréal 2015/06/13
Clicker Heroes 2015/08/02
CLOSERS SEGA Games 2015/08/22 1.0.0.0
Common GameOn 2015/02/11 12045000
Crypt of the NecroDancer Brace Yourself Games 2015/02/02
CyberLink Media Suite 10 CyberLink Corp. 2015/01/06 1.05 GB 10.0
CyberLink PowerProducer 5.5 CyberLink Corp. 2015/01/06 168 MB 5.5.3.4118
Deathtrap NeocoreGames 2015/08/15
DMM ゲームランチャー 2015/09/30
DMMGamesPlugin 2015/09/30
Dragon's Dogma Online CAPCOM CO., LTD. 2015/08/08 71.4 MB 1.00.0000
DungeonStriker EYEDENTITY GAMES 2015/09/30 2.00.0000
Dying Light Techland 2015/05/25
EPSON EP-804A プリンター アンインストール SEIKO EPSON Corporation 2015/02/24
ETDWare PS/2-X64 11.13.5.3_WHQL ELAN Microelectronic Corp. 2015/01/06 11.13.5.3
Fallout 3 - Game of the Year Edition Bethesda Game Studios 2015/09/23
FINAL FANTASY XIV - A Realm Reborn SQUARE ENIX CO., LTD. 2015/01/08 1.0.0000
FMEAutomator 3 ぶれぼ 2015/02/03 2.27 MB 3.3.1.0
GamesDesktop 015.005010107 GAMESDESKTOP 2015/10/06 6.15 MB
Glyph Trion Worlds, Inc. 2015/07/21 77.7 MB
Google Chrome Google Inc. 2015/07/16 45.0.2454.101
How To Survive Third Person Eko Software 2015/09/06
iCloud Apple Inc. 2015/05/28 91.6 MB 4.1.1.53
Intel Driver Update Utility Intel 2015/08/27 19.6 MB 2.2.0.2
Intel(R) Management Engine Components Intel Corporation 2015/01/06 9.5.23.1766
Intel(R) Processor Graphics Intel Corporation 2015/01/06 10.18.10.3383
Intel(R) Rapid Storage Technology Intel Corporation 2015/01/06 12.9.0.1001
Intel(R) Update Manager Intel Corporation 2015/01/12 22.6 MB 2.3.1338
iTunes Apple Inc. 2015/04/10 233 MB 12.1.2.27
Java 8 Update 60 Oracle Corporation 2015/10/06 20.6 MB 8.0.600.27
KRITIKA GameOn 2015/02/10 43960480
League of Legends Riot Games 2015/10/05 3.0.1
Left 4 Dead 2 Valve 2015/08/21
LoiLo Game Recorder LoiLo inc. 2015/04/12 7.40 MB 1.1.0.1
LoiLoScope 2 LoiLo inc 2015/04/12 166 MB 2.5.4.2
LORD of VERMILION ARENA SQUARE ENIX CO., LTD. 2015/06/07 6.02 MB 1.0.0.0
Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 2015/09/24 31.3 MB 3.5.92.0
Microsoft Games for Windows Marketplace Microsoft Corporation 2015/09/24 6.03 MB 3.5.67.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2015/09/27 4.47 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2015/04/23 6.88 MB 8.0.59192
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2015/03/07 12.4 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2015/01/06 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2015/01/11 11.5 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2015/09/27 1.41 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2015/01/06 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2015/01/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2015/01/11 8.78 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2015/05/25 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/05/25 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2015/07/25 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2015/07/25 17.1 MB 12.0.30501.0
Microsoft XNA Framework Redistributable 4.0 Microsoft Corporation 2015/05/06 9.44 MB 4.0.20823.0
Minecraft Mojang 2015/06/23 1.22 MB 1.0.3.0
Minecraft 1.8 Packages 2015/04/07
Mp3tag v2.70 Florian Heidenreich 2015/06/28 v2.70
NCLauncher (NCSOFT) NCSOFT 2015/03/01
Neffy 1,2,5,0 CDNetworks 2015/01/08 1,2,5,0
Niconico Live Encoder niwango, inc. 2015/01/21 2.0.4
NVIDIA GeForce Experience 2.5.12.11 NVIDIA Corporation 2015/08/27 2.5.12.11
NVIDIA PhysX システム ソフトウェア 9.15.0428 NVIDIA Corporation 2015/08/27 9.15.0428
NVIDIA グラフィックス ドライバー 355.60 NVIDIA Corporation 2015/08/27 355.60
Origin Electronic Arts, Inc. 2015/01/11 9.5.3.636
osu! ppy Pty Ltd 2015/08/01 123 MB latest
PHANTASY STAR ONLINE 2 SEGA 2015/01/14 7.24 MB
PhraseProfessor 1.10.0.24 PhraseProfessor 2015/10/06 1.10.0.24
Pmangインストールマネージャー GameOn,Pmang 2015/01/08 1.0.1.1
Portal 2 Valve 2015/08/23
PROTOTYPE 2 Radical Entertainment 2015/01/08
Qualcomm Atheros Performance Suite Qualcomm Atheros 2015/01/06 1.1.38.1037
REALTEK Bluetooth Driver 2015/01/06 3.800.800.121313
Realtek Card Reader Realtek Semiconductor Corp. 2015/01/06 6.2.9600.21243
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/01/06 6.0.1.7161
REALTEK Wireless LAN Driver 2015/01/06 1.00.0234
RPGツクール2000 ランタイムパッケージ 2015/02/13
RPGツクールVX Ace RTP Enterbrain 2015/08/23 194 MB 1.00
RPGツクールVX RTP Enterbrain 2015/08/13 42.1 MB 1.02
SCM Application 2015/01/06 4.07 MB 13.014.01026
SEGA Common 2 SEGA Games 2015/08/22 2.0.0.0
Serious Sam 3: BFE Croteam 2015/08/14
Skype Click to Call Microsoft Corporation 2015/05/28 9.84 MB 7.4.0.9058
Skype(TM) 7.8 Skype Technologies S.A. 2015/08/22 71.1 MB 7.8.102
Sound Blaster Cinema Creative Technology Limited 2015/01/06 1.00.05
Steam 2015/01/06
Steam Valve Corporation 2015/01/08 2.10.91.91
Terraria Re-Logic 2015/05/12
The Desktop Weather 2.0 Baidu Japan Inc. 2015/10/06 2.0.0.10750
Unity Unity Technologies ApS 2015/03/25 5.0.0f4
Unity Web Player Unity Technologies ApS 2015/01/12 12.0 MB 4.6.1f1
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2015/01/11 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/09/09 41.7 MB 16.0.1404.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2015/09/09 11.6 MB 15.0.2013
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/28 9.00 KB 16.0.1515.1
Uplay Ubisoft 2015/06/13 4.3
Visual Basic 6.0 ランタイム SP6 for TTSneo ゆうと 2015/01/18 2.73 MB 1.0.0.0
Windows ドライバ パッケージ - ENE TECHNOLOGY INC. (WUDFRd) HIDClass (02/08/2013 1.1.0.0) ENE TECHNOLOGY INC. 2015/01/06 02/08/2013 1.1.0.0
XAOC Winking 2015/09/22 12.8 GB 1.0.0.0
《Crystal Crest》 バージョン 1.0 GRETECH JAPAN Corp 2015/04/04 3.96 GB 1.0
やります!アンコちゃん co278640 2015/02/20
ドラゴンクエストX オンライン SQUARE ENIX CO., LTD. 2015/07/13 1.0.1.0
ニコ生デスクトップキャプチャー(XP) SEASON2 Consolas 2015/01/09 376 KB 1.16
マカフィー インターネットセキュリティ McAfee, Inc. 2015/07/11 14.0.1076
  • konko_
  • 2015/10/06 (Tue) 23:09:12
返信フォームへ 
フルスキャンの結果もお願いいたします
マカフィーではフルスキャンを行うとスキャン結果を出力できるようになります。
スキャン終了後であればいつでも出力できますので、そちらを出力して貼り付けてご連絡ください。

確かに一部復活している模様です、
念のために今一度処置を行いましょう。

PCをセーフモードで起動してください。
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O4 - HKLM\..\Run: [gmsd_jp_005010107] "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
O4 - HKLM\..\RunOnce: [upgmsd_jp_005010107.exe] C:\Users\konko_000\AppData\Local\gmsd_jp_005010107\upgmsd_jp_005010107.exe -runonce
O4 - HKCU\..\Run: [EPSON49ADFC (EP-804A)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHQJ.EXE /FU "C:\Users\KONKO_~1\AppData\Local\Temp\E_SF0D3.tmp" /EF "HKCU"
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: The Desktop Weather Service (TheDesktopWeatherService) - Unknown owner - C:\Program Files (x86)\WeatherTool\2.0.0.10750\WeatherService.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、GUを起動させ、以下を削除してください。

Bing Bar 2015/01/18

GU上に表示されているソフトウェアをダブルクリックで削除できます。
削除が完了したら自動的にスキャンが始まりますので、検出されたごみすべてにチェックを入れてOKを押してください。
GUでのアンインストールが完了しましたらGUを終了させてください。
GU上では表示されていない場合、代わりにCCを起動させてアンインストールを行ってください。
CCでのアンインストールが動作しない場合は、代わりにエントリの削除を行ってください。
Windowsインストーラーがどうとかの表示が出た場合はPCを通常モードで再起動し、
その状態で改めて該当ソフトウェアのみをアンインストールしてください。
通常モードとセーフモードを使い分けながらご案内しているすべてのソフトウェアの削除が完了するまで続けてください。
ご案内していたすべてのソフトウェアの削除が完了しましたら、
キーボードの左Ctrlと左Altの間にあるスタートボタンを押しながらRボタンを押します。
ファイル名を指定して実行と言うものが起動しますので、そちらに半角英数で以下を入力してください。

cleanmgr

入力が完了しましたらエンターキーを押してください。
C:ドライブを選択してOKを押します。
スキャンが開始されますので完了するまでお待ちください。
スキャンが完了すると一覧が表示されますので、すべてにチェックを入れてOKを押してください。
ただし、OKを押すとごみ箱の中身を含めてすべて削除されますので、
ごみ箱の中に必要なファイルが入っている場合はご注意ください。

処置が完了しましたらPCを通常モードで再起動させてください。
HJTのログ、CCのインストール情報ログを再取得し、
上記のフルスキャンのログとともにご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/07 (Wed) 06:01:40
返信フォームへ 
やはり復活してしまいます
フルスキャンの結果出力の仕方が少々分からず、困惑しております。

ただ、やはり復活してしまうファイルがいくつかあるみたいです。Bing BarはGUで探しても見つかりませんでした、CCでは発見されるのですが…

O4 - HKLM\..\Run: [gmsd_jp_005010107] "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
これはセーフティーモードで見たときは見かけなかったです。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 5:50:22, on 2015/10/08
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\konko_000\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Web Amplified 1.0.0.7 - {4f93c386-c677-4212-9bc8-47814de68c52} - C:\Program Files (x86)\Web Amplified\WebAmplifiedbho.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [gmsd_jp_005010107] "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
O4 - HKLM\..\RunOnce: [upgmsd_jp_005010107.exe] C:\Users\konko_000\AppData\Local\gmsd_jp_005010107\upgmsd_jp_005010107.exe -runonce
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Global Startup: Killer Network Manager.lnk = ?
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: CyberLink Product - 2015/01/06 14:21:17 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: CD Feature (gyvixodu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PP 1.10.0.24 Client Service (ppsvc_1.10.0.24) - PhraseProfessor - C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Service\ppsvc.exe
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SSFK - TODO: <公司名> - C:\Program Files (x86)\SFK\SSFK.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Survarium-Steam Update Service - Unknown owner - C:\Program Files (x86)\Steam\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe (file missing)
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: Properties Digital Photo (tihuzyqu) - Unknown owner - C:\Program.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: WdsManPro Service (WdsManPro) - DTools LIMITED - C:\ProgramData\FWdsManProF\WdsManPro.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13540 bytes


7-Zip 9.38 beta 2015/10/04
Apple Application Support(32 ビット) Apple Inc. 2015/04/10 94.2 MB 3.1.3
Apple Application Support(64 ビット) Apple Inc. 2015/04/10 107 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/03/18 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2015/01/22 2.38 MB 2.1.3.127
Bandisoft MPEG-1 Decoder 2015/09/30
Bing Bar
Black Desert GameOn 2015/07/18 22
Bonjour Apple Inc. 2015/01/22 2.00 MB 3.0.0.10
Borderlands 2 Gearbox Software 2015/09/27
CCleaner Piriform 2015/10/05 5.10
Child of Light Ubisoft Montréal 2015/06/13
Clicker Heroes 2015/08/02
CLOSERS SEGA Games 2015/08/22 1.0.0.0
Common GameOn 2015/02/11 12045000
Crypt of the NecroDancer Brace Yourself Games 2015/02/02
CyberLink Media Suite 10 CyberLink Corp. 2015/01/06 1.05 GB 10.0
CyberLink PowerProducer 5.5 CyberLink Corp. 2015/01/06 168 MB 5.5.3.4118
Deathtrap NeocoreGames 2015/08/15
DMM ゲームランチャー 2015/09/30
DMMGamesPlugin 2015/09/30
Dragon's Dogma Online CAPCOM CO., LTD. 2015/08/08 71.4 MB 1.00.0000
DungeonStriker EYEDENTITY GAMES 2015/09/30 2.00.0000
Dying Light Techland 2015/05/25
EPSON EP-804A プリンター アンインストール SEIKO EPSON Corporation 2015/02/24
ETDWare PS/2-X64 11.13.5.3_WHQL ELAN Microelectronic Corp. 2015/01/06 11.13.5.3
Fallout 3 - Game of the Year Edition Bethesda Game Studios 2015/09/23
FINAL FANTASY XIV - A Realm Reborn SQUARE ENIX CO., LTD. 2015/01/08 1.0.0000
FMEAutomator 3 ぶれぼ 2015/02/03 2.27 MB 3.3.1.0
GamesDesktop 015.005010107 GAMESDESKTOP 2015/10/07 6.15 MB
Glyph Trion Worlds, Inc. 2015/07/21 77.7 MB
Google Chrome Google Inc. 2015/07/16 45.0.2454.101
How To Survive Third Person Eko Software 2015/09/06
iCloud Apple Inc. 2015/05/28 91.6 MB 4.1.1.53
Intel Driver Update Utility Intel 2015/08/27 19.6 MB 2.2.0.2
Intel(R) Management Engine Components Intel Corporation 2015/01/06 9.5.23.1766
Intel(R) Processor Graphics Intel Corporation 2015/01/06 10.18.10.3383
Intel(R) Rapid Storage Technology Intel Corporation 2015/01/06 12.9.0.1001
Intel(R) Update Manager Intel Corporation 2015/01/12 22.6 MB 2.3.1338
iTunes Apple Inc. 2015/04/10 233 MB 12.1.2.27
Java 8 Update 60 Oracle Corporation 2015/10/06 20.6 MB 8.0.600.27
KRITIKA GameOn 2015/02/10 43960480
League of Legends Riot Games 2015/10/05 3.0.1
Left 4 Dead 2 Valve 2015/08/21
LoiLo Game Recorder LoiLo inc. 2015/04/12 7.40 MB 1.1.0.1
LoiLoScope 2 LoiLo inc 2015/04/12 166 MB 2.5.4.2
LORD of VERMILION ARENA SQUARE ENIX CO., LTD. 2015/06/07 6.02 MB 1.0.0.0
Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 2015/09/24 31.3 MB 3.5.92.0
Microsoft Games for Windows Marketplace Microsoft Corporation 2015/09/24 6.03 MB 3.5.67.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2015/09/27 4.47 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2015/04/23 6.88 MB 8.0.59192
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2015/03/07 12.4 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2015/01/06 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2015/01/11 11.5 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2015/09/27 1.41 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2015/01/06 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2015/01/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2015/01/11 8.78 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2015/05/25 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/05/25 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2015/07/25 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2015/07/25 17.1 MB 12.0.30501.0
Microsoft XNA Framework Redistributable 4.0 Microsoft Corporation 2015/05/06 9.44 MB 4.0.20823.0
Minecraft Mojang 2015/06/23 1.22 MB 1.0.3.0
Minecraft 1.8 Packages 2015/04/07
Mp3tag v2.70 Florian Heidenreich 2015/06/28 v2.70
NCLauncher (NCSOFT) NCSOFT 2015/03/01
Neffy 1,2,5,0 CDNetworks 2015/01/08 1,2,5,0
Niconico Live Encoder niwango, inc. 2015/01/21 2.0.4
NVIDIA GeForce Experience 2.5.12.11 NVIDIA Corporation 2015/08/27 2.5.12.11
NVIDIA PhysX システム ソフトウェア 9.15.0428 NVIDIA Corporation 2015/08/27 9.15.0428
NVIDIA グラフィックス ドライバー 355.60 NVIDIA Corporation 2015/08/27 355.60
Origin Electronic Arts, Inc. 2015/01/11 9.5.3.636
osu! ppy Pty Ltd 2015/08/01 123 MB latest
PHANTASY STAR ONLINE 2 SEGA 2015/01/14 7.24 MB
PhraseProfessor 1.10.0.24 PhraseProfessor 2015/10/07 1.10.0.24
Pmangインストールマネージャー GameOn,Pmang 2015/01/08 1.0.1.1
Portal 2 Valve 2015/08/23
PROTOTYPE 2 Radical Entertainment 2015/01/08
Qualcomm Atheros Performance Suite Qualcomm Atheros 2015/01/06 1.1.38.1037
REALTEK Bluetooth Driver 2015/01/06 3.800.800.121313
Realtek Card Reader Realtek Semiconductor Corp. 2015/01/06 6.2.9600.21243
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/01/06 6.0.1.7161
REALTEK Wireless LAN Driver 2015/01/06 1.00.0234
RPGツクール2000 ランタイムパッケージ 2015/02/13
RPGツクールVX Ace RTP Enterbrain 2015/08/23 194 MB 1.00
RPGツクールVX RTP Enterbrain 2015/08/13 42.1 MB 1.02
SCM Application 2015/01/06 4.07 MB 13.014.01026
SEGA Common 2 SEGA Games 2015/08/22 2.0.0.0
Serious Sam 3: BFE Croteam 2015/08/14
Skype Click to Call Microsoft Corporation 2015/05/28 9.84 MB 7.4.0.9058
Skype(TM) 7.8 Skype Technologies S.A. 2015/08/22 71.1 MB 7.8.102
Sound Blaster Cinema Creative Technology Limited 2015/01/06 1.00.05
Steam 2015/01/06
Steam Valve Corporation 2015/01/08 2.10.91.91
Terraria Re-Logic 2015/05/12
Unity Unity Technologies ApS 2015/03/25 5.0.0f4
Unity Web Player Unity Technologies ApS 2015/01/12 12.0 MB 4.6.1f1
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2015/01/11 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/09/09 41.7 MB 16.0.1404.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2015/09/09 11.6 MB 15.0.2013
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/28 9.00 KB 16.0.1515.1
Uplay Ubisoft 2015/06/13 4.3
Visual Basic 6.0 ランタイム SP6 for TTSneo ゆうと 2015/01/18 2.73 MB 1.0.0.0
Web Amplified Web Amplified 2015/10/07 732 KB 2015.10.07.111724
Windows ドライバ パッケージ - ENE TECHNOLOGY INC. (WUDFRd) HIDClass (02/08/2013 1.1.0.0) ENE TECHNOLOGY INC. 2015/01/06 02/08/2013 1.1.0.0
XAOC Winking 2015/09/22 12.8 GB 1.0.0.0
《Crystal Crest》 バージョン 1.0 GRETECH JAPAN Corp 2015/04/04 3.96 GB 1.0
やります!アンコちゃん co278640 2015/02/20
ドラゴンクエストX オンライン SQUARE ENIX CO., LTD. 2015/07/13 1.0.1.0
ニコ生デスクトップキャプチャー(XP) SEASON2 Consolas 2015/01/09 376 KB 1.16
マカフィー インターネットセキュリティ McAfee, Inc. 2015/07/11 14.0.1076
  • konko_
  • 2015/10/08 (Thu) 06:01:51
返信フォームへ 
ログ出力手順です
簡単に記述いたします。
以下URLの【対応手順 - 3. スキャンログの取得】を参考に、
マカフィーでログ出力を行ってください。
http://service.mcafee.com/FAQDocument.aspx?lc=1041&id=TS101715
  • IVNO
  • MAIL
  • 2015/10/08 (Thu) 17:59:56
返信フォームへ 
マカフィーのログです
前回のフルスキャン時のものを貼っていきます。

10/7/2015 8:58:54 PM Scan Started: 10/07/2015 08:58:54 PM

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\693964.dll" "BrowseFox-FWK" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\6939.dll" "BrowseFox-FWL" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\6939a927ce.dll" "BrowseFox-FWV" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\6939a927ce64.dll" "BrowseFox-FWM" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.CompatibilityChecker.dll" "BrowseFox-FUT" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.BrowserAdapter.dll" "BrowseFox-FAB" "3"

10/7/2015 10:31:08 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.ExpExt.dll" "BrowseFox-FAB" "3"

10/7/2015 10:31:09 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.PurBrowseG.dll" "BrowseFox-FAB" "3"

10/7/2015 10:31:09 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.GCUpdate.dll" "BrowseFox-FAB" "3"

10/7/2015 10:46:46 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\YB7J3RLU\SmartWebInstaller[1].exe" "Generic PUP.x" "3"

10/7/2015 10:46:46 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\6FBANSN4\setup_362[1].exe" "Generic PUP.s" "3"

10/7/2015 10:46:47 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\6FBANSN4\prepreinstaller_win[1].exe" "Artemis!7A2E7F9E96B5" "3"

10/7/2015 11:14:38 PM "C:\Windows\Temp\80E0.tmp.exe" "Artemis!2F9482E99727" "2"

10/7/2015 11:23:27 PM Total objects scanned: 519728

10/7/2015 11:23:27 PM Objects detected: 15

10/7/2015 11:23:27 PM Scan Done: 10/07/2015 11:23:27 PM

一応こちらも
10/7/2015 9:25:24 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\YB7J3RLU\SmartWebInstaller[1].exe" "Generic PUP.x" "3"

10/7/2015 9:25:42 PM "C:\Users\konko_000\AppData\Local\Temp\nsj25C7.tmp" "Generic PUP.x" "3"

10/7/2015 9:26:41 PM "C:\Users\konko_000\AppData\Local\Temp\nsv5BF7.tmp" "Generic PUP.s" "3"

10/7/2015 9:26:41 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\6FBANSN4\setup_362[1].exe" "Generic PUP.s" "3"

10/7/2015 9:29:00 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.ExpExt.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:13 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.CompatibilityChecker.dll" "BrowseFox-FUT" "3"

10/7/2015 9:29:14 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.BrowserAdapter.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:14 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.GCUpdate.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:14 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.PurBrowseG.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:14 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.ExpExt.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:15 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.CompatibilityChecker.dll" "BrowseFox-FUT" "3"

10/7/2015 9:29:15 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.GCUpdate.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:15 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.PurBrowseG.dll" "BrowseFox-FAB" "3"

10/7/2015 9:29:15 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:29:15 PM "C:\Program Files (x86)\Web Amplified\bin\6939.dll" "BrowseFox-FWL" "3"

10/7/2015 9:29:16 PM "C:\Program Files (x86)\Web Amplified\bin\693964.dll" "BrowseFox-FWK" "3"

10/7/2015 9:29:16 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:29:16 PM "C:\Program Files (x86)\Web Amplified\bin\6939a927ce.dll" "BrowseFox-FWV" "3"

10/7/2015 9:29:16 PM "C:\Program Files (x86)\Web Amplified\bin\6939a927ce64.dll" "BrowseFox-FWM" "3"

10/7/2015 9:29:16 PM "C:\PROGRAM FILES (X86)\WEB AMPLIFIED\BIN\WebAmplified.PurBrowse64.exe" "BrowseFox-FYV" "3"

10/7/2015 9:29:33 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:29:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:29:39 PM "C:\Users\konko_000\AppData\Local\Temp\nspF106.tmp\Mntz_Installer.exe" "Artemis!7A2E7F9E96B5" "3"

10/7/2015 9:29:39 PM "C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\IE\6FBANSN4\prepreinstaller_win[1].exe" "Artemis!7A2E7F9E96B5" "3"

10/7/2015 9:30:03 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:30:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:30:33 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:30:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:31:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:31:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:31:32 PM "C:\Users\konko_000\AppData\Local\Temp\is-T4MP2.tmp\GetHomepage.exe" "Artemis!AFEF41B351D8" "2"

10/7/2015 9:31:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:31:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:32:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:32:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:32:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:32:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:33:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:33:16 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:33:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:33:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:34:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:34:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:34:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:34:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:35:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:35:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:35:34 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:35:37 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:36:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:36:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:36:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:36:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:37:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:37:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:37:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:37:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:38:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:38:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:38:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:38:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:39:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:39:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:39:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:39:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:40:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:41:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:41:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:41:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:41:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:41:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:42:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:42:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:42:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:42:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:43:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:43:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:43:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:43:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:44:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:44:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:44:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:44:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:45:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:45:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:45:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:45:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:46:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:46:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:46:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:46:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:47:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:47:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:47:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:47:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:48:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:48:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:48:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:48:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:49:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:49:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:49:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:49:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:50:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:50:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:50:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:50:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:51:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:51:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:51:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:51:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:52:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:52:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:52:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:52:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:53:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:53:37 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:53:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:53:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:54:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:54:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:54:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:54:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:55:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:55:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:55:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:55:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:56:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:56:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:56:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:56:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:57:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:57:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:57:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:57:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:58:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:58:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:58:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:58:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:59:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:59:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 9:59:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 9:59:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:00:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:00:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:00:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:00:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:01:25 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:01:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:01:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:01:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:06:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:06:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:07:07 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:07:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:07:37 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:07:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:08:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:08:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:08:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:08:48 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:09:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:09:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:09:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:09:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:10:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:10:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:10:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:10:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:11:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:11:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:11:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:11:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:12:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:12:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:12:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:12:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:13:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:13:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:13:42 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:13:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:14:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:14:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:14:42 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:14:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:15:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:15:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:17:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:17:55 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:18:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:18:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:19:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:19:05 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:19:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:19:35 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:21:19 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:21:19 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:22:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:22:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:22:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:22:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:23:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:23:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:23:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:23:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:24:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:24:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:24:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:24:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:25:26 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:25:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:25:56 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:25:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:26:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:26:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:26:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:26:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:27:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:27:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:27:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:28:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:28:27 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:28:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:28:57 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:29:07 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:29:18 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.CompatibilityChecker.dll" "BrowseFox-FUT" "3"

10/7/2015 10:29:28 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.BrowserAdapter.dll" "BrowseFox-FAB" "3"

10/7/2015 10:29:38 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.ExpExt.dll" "BrowseFox-FAB" "3"

10/7/2015 10:29:49 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.PurBrowseG.dll" "BrowseFox-FAB" "3"

10/7/2015 10:29:59 PM "C:\Program Files (x86)\Web Amplified\bin\plugins\WebAmplified.GCUpdate.dll" "BrowseFox-FAB" "3"

10/7/2015 10:30:09 PM "C:\PROGRAM FILES (X86)\WEB AMPLIFIED\BIN\WebAmplified.PurBrowse64.exe" "BrowseFox-FYV" "3"

10/7/2015 10:30:19 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:30:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:30:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:30:50 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:31:01 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:31:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:31:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:31:32 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:31:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:31:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:32:04 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:32:14 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:32:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:32:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:32:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:33:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:33:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:33:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:33:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:34:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:34:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:34:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:34:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:35:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:35:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:35:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:35:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:36:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:36:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:36:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:36:58 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:37:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:37:28 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:37:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:37:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:38:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:38:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:38:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:38:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:39:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:39:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:39:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:39:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:40:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:40:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:40:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:40:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:40:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:41:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:41:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:41:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:41:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:42:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:42:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:42:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:42:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:43:29 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:43:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:43:59 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:44:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:44:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:44:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:45:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:45:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:45:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:45:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:46:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:46:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:46:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:46:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:47:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:47:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:47:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:47:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:48:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:48:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:48:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:48:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:49:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:49:01 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:49:30 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:49:31 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:50:00 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:50:01 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:50:31 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:50:31 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:51:01 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:51:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:51:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:51:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:52:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:52:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:52:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:52:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:53:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:53:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:53:38 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:53:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:54:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:54:08 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:54:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:54:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:55:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:55:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:55:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:55:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:56:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:56:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:56:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:56:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:57:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:57:09 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:57:39 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:57:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:58:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:58:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:58:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:58:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:59:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:59:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 10:59:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 10:59:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:00:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:00:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:00:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:00:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:01:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:01:20 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:01:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:01:50 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:02:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:02:20 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:02:40 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:02:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:03:10 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:03:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:03:41 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:03:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:04:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:04:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:04:41 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:04:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:05:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:05:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:05:41 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:05:51 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:06:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:06:21 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:06:41 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:06:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:07:11 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:07:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:07:42 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:07:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:08:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:08:15 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:08:42 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:08:52 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:09:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:09:22 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:09:42 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:09:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:10:12 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:10:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:10:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:10:53 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:11:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:11:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:11:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:11:45 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:12:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:12:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:12:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:12:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:13:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:13:23 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:13:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:13:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:14:13 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:14:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:14:43 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:14:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:15:14 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:15:24 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:15:44 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7/2015 11:15:54 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter.exe" "BrowseFox-FVR" "3"

10/7/2015 11:16:14 PM "C:\Program Files (x86)\Web Amplified\bin\WebAmplified.BrowserAdapter64.exe" "BrowseFox-FUU" "3"

10/7
  • konko_
  • 2015/10/08 (Thu) 21:36:27
返信フォームへ 
次のログ取得を
BrowseFox、SmartWeb、Win-PrePreですか。
文字数上限を上回る文字数であったためログが途中で途切れていますが、
Win-PrePreは公式ページからダウンロードしたものは感染せず、
公式ページ以外からダウンロードしたものは感染している状態です。
今回検出されたのは公式ページ以外からダウンロードしたものなのでしょう。

では続けてCCで別のログを取得してください。

CCを起動させてください。
「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
取得したCCの各ログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。
  • IVNO
  • MAIL
  • 2015/10/08 (Thu) 22:17:07
返信フォームへ 
各種ログです
IE,Chromeよりもスケジュールされたタスクに色々ある状態ですね…
IE、Chrome、スケジュールの順で貼っていきます

有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
無効 Helper Web Amplified 1.0.0.7 C:\Program Files (x86)\Web Amplified\WebAmplifiedbho.dll

有効 App Gmail 8.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google Search 0.0.0.30 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0
有効 App Google ドライブ 14.0 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Adblock Plus 1.9.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0
有効 Extension AdBlock Pro 3.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.3_0
無効 Extension dmm_trigger 1.0.0.6 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekecocnhcgghjgbihpbgdimpobbkfpe\1.0.0.6_0
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Google ドキュメント オフライン 0.5 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0
無効 Extension Web Amplified 1.0.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eommccnccbmlocdmeeohoecobffenoma\1.0.1_0

有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-1-6 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-1-6.exe /rawdata=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
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-1-7 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-1-7.exe /rawdata=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
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-11 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-11.exe /rawdata=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
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-3 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-3.exe /rawdata=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
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-5 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-5.exe /rawdata=nKEcaJ9qMzmdu22/KuiE3J/5WUSCKz8j73uyowhHRBD8hzFUyWq8jpd61xqrxCeFfKgyF4InTg0cCiKuKIBBG0hylGNyqu9LbZn8KGE2R1Qoe3SqvvCRq0yDJlv2h5hoA0WoLRmaSwwCDBcfvw14X4+r2AlAeTtXdZT/atKmeqrCWm+gvMcJUoDf2rmKvgNyBDexoVtiggCURmkq9mtvOqYekMDvmf850P0D3tnHyS6/a8ooJXgRoDrdcE+7iuDSf0TOwp9JMdPvCbvw+kv4Nt4+uLBOnE8tZ16dpwSblNOUA157tPlwmpdg69WLoTJWmrpN2u3aXdAEFOVNkKXGkluJdGYEfdVExvqRJJwVQQ5B19CJU+ihMp2ufeugyjmRe+3qHpbBl5FB5n6pt42Hv70//5mK9Lf+IFwzpE70kd82TdCMPwCh/8uaA1cOIRycfl8ADExjUAl0DwIzF8ojCyyraxyKccYlu2UQCvYNB6DyB4pkbtMlcn+wOj6oz3WWEmkAi2tLK3gvX8hr+eBIbvEUpyKJUsSjkstSaW4Q/zK92LdLhe4Zv36nss4PhhfHkruwtvUBgvQPGXL5wHmOK2qNSGT2fCmF483ypl8Jugpk4zsWnM+KNNsMUXQjVt9SvnJrUIm8EF9MNC+q0V9SUWG3lQXJb2A17+VkFMplQG4kDXq+i8HBPDGCiI1hgoyuxAJPmzrkqKhdCFQgRXyOA79VpQBrDjVz4esYSCUOdQgpQp4AuOvmGxHPYW/b4P5kviGjIofrqv7hfZeNadaV3WqnrNtpXewLkHmpdIzdgfSLZEdy38UbGItAqSO9wxT/sHXNb5PXxQbVijOD1eD2vRkCDRd/IA0eeQEZIeWBUnMtXWb+ll3lje/noICJYsxjV9S2WN3IQVaUx37YYdwF4u3NFYDYnPeuSvahz9BFRUoWSyviwQfp+as3/vEB6rIQ6W9n6dIYFK0j/a4LI6ZtaYU+FufUtDzPC/mWI2eWjmT4IYsZUSUNYHeOV0Nhet/F
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-6 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-6.exe /rawdata=ume0p9EIXOBLFyHocFGPbE/Im+qM1Gq5Wh7IvZa2e875BqV05U2LFSKofXHi1+zpCEwkQcBaOU2QTZB4O94JTz4efAGBv3wf2qCTRy0oKn3tvPbVEL/HNcs7Z+v00VvhH4SAyVYp72nvF1S+0DmhhJggncWUcMpRrqzeecdQvYmrTmi21TgtvsiTSkU6cavhFyXAKs9keaPGDN3TMI01H1LufUg3M8bkE1ux3+ImScwAzuPe5Pty26jf96BE7lf2qQa64qIl3gpoflKaK2tDXjDiff5AXEJVTqiuAAYSdl0LnATTtCfqEiQy14unRzGAj2Er2ApythjHUPgZOj/moI7YOjLw3QtgyoSIcIhlsgqGYMI4CKliiQxBOBs4q4HoGv/AzAaMFYiWdSGyl2W/VfEjaU1ErgoHYdkFJMrmmMD/H7H0lMLNezRyfSV03AOvH0J2DBzZuvoHr7pQwN9h/W1ulNQkgzCLei7Ec9sI72vT17kmnbeY7FuqOsH+ljIsAVTGxx6KrnXvPJ6GlD7LrvMEQfYKj+dXZKMP+RfQ5LufQzvPohKVgRSKFyF3sw8kCxXRhW921KQHWT2z1m06OaLf1UJHt2TjzSy8P5ZsbevdG9XC6cogAR/BWcXiAkKw5t3lxNogfPQ0vw/q70fBTc3T36fJLpNobdLOWe2BbPFELfmATu0mrEDJ4mFX6WwW7FrMTrQg6dyT/87gxSxM9q1cm3irM65wP0crKUZO4bk9CPEpRCLIbPK7ZBAubOKQuGLj8+ZqQRwmvD8y/lDl53qxF54ZV1+ux+tbD/L9bpP5EQBLOTGJbMHnndGmhELLD5QDqhTt+dvVMDoZWlpEW3TLFoopyIJJeRVJUmEjkGpE5wnbaSH2N+X8OHd/IraKujZ8Q2EqC7vg57u+93k3elkySanBISpU8coiqmyIbNBcrX6Z5hsNRTUigJFD2JJ6TXi6Ebush0N50s3bigaTzEAVyiXJyO3iKtucNveXO1Err74b0fb8UTcZdKYeCzklQsoomOes0Kk7EO6NZ9ljepXDbyxoXhC7ZiOxD0sBT8kL5sRQZ5dJWWmMocjhEvcCep/AmfWML8kcyrXKwHgJnWwzRebaUULnI56EUeiHbFE2sA6j3zxyB5y7UfJpnAIEprsNePbohLXdx/pu1+7Eee5Hz/1TnUvAoJRHX2E03ToToeJ6OmCvtqUefS5+UdORYm/Du5bLLjs6grL7A0ijdiC04R/H2bXcIQ1XDl4PvwgcTxWxflovBxFtIvanbY5TfWvUho4dmmL9imwN8rURiz5oROELDnc05ekUUxMyRW/nzQEM1ymyj/80Wz/FxamKlZ/Rw3J0fmtd4VsY7YOtzF4fdywCwqJwxtHzQOglDPeM2+j0Lqo7z9YWtQbu3UK0Q+D+f1XEM0N4RNqOspMKxhRlZQLL/6wQHu3ZpD3Ri73G7QrEaHjzaKnwgqWLzK3BjGMFtZ3/ZUzC9qNm5c7wIcwqkZG12DEsvROaurQ9EaOlxJ4fnrZ1NAITE58F3JbxdWP5xBc/80vxr8/Ii9rTFVj3nG8cbyKUXe1WIFI9jBNHRde0iuNM8Opkh5BqEX83LwYbf47dWkjil9p6eou2OsNU9wOgSZK/E7tapj7hK4IYwtn578eVPrWC9rImNpCDPblX1oHQnXcsqqj1UvfP6qNAFE6wnpzmW+38Ve7GS26woe35CbnR1sOlkd+K7CsnAiRWpW4kmFaFyz3E8De8BfF4E8CQKCOGfqntSwnCzyX4195Pf51VEewKNPzTLOdpoWBa0/kskWPy2ttva1X9NhFCSLaUqGjbWZtP2yvm1gpLkMS0pFQLYDClEWeIsTmj3AfnOg722RWaG4o5jhK6QT6Qw8S6OOxq6phYJ0WwE2zvMRQe+bcACOApm1wcNts3DYxMDepMO03zDz+chIMm3F/Veb0tthAnI1BzpAoV3y4SQzhc/xeEq2Pmfp2/b0vl+MYP4ZWCxDWlpJeDcq5pT0VkHmIEdLgiEd8WYtQYke1WwibIgsvxMoJjeg2FPoyawSpKTuIx5QUsgcyULF2zLHenNKjyBCUAdad3CP0g/VFognv7IDzTpbK9OAZ2MIrHOCz7OTaXGRNbl/UFMFhi5Qhi2pxsxvh2t4xdJiy8VYmvvK8JlKQUDicWW3SISXP9b6+cUzoKQcsLlTwFyAcr1bKyUr4ON398GfEirrs9GwemPnNo5uTNVwLhPE4JqFAdsZRS1MCrO+jcSbkoANlk/hSvxY5Xka0XCaIRk06/5gOYOWJTCDazO4/lHZjWlO5xwWIYsnIRIcaCjE5UmoWAh2Rzega8Bgl8mxQbHnDi76N4E/iVPhAtTI023zvXCbgt23/c9opv4a1LulvR/XIHxJ99AQ/OSPXCsyQgYiIIBRQCJYmuObO37VbCamf3cEbB7omv2ijtY63q2v0BCNI/j21UJwYe+3Xpce0l43im3kw180EcL39hkYPH/4YKxz5nHnLkq+QK1CuNdGIAHzPNRM/niKNglchygzLx8DL/CkoB20alPTfQqqjVeET+61Y/
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-7 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-7.exe /rawdata=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
有効 Task AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2 C:\Users\konko_000\AppData\Local\AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2\AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2.exe /asru /reinstalltask
有効 Task Apple Diagnostics Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
有効 Task BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} Baidu C:\Program Files (x86)\baidu\update\baidujp_update.exe -Update
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task globalUpdateUpdateTaskMachineCore globalUpdate C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /c
有効 Task globalUpdateUpdateTaskMachineUA globalUpdate C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /ua /installsource scheduler
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 Intel® Services Manager C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon Intel® Services Manager "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task LaunchSignup C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe frompopup
有効 Task McAfee Remediation (Prepare) McAfee, Inc. C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
無効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1001
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-500
有効 Task PhraseProfessor Auto Updater 1.10.0.24 Core PhraseProfessor C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe checkupdate
有効 Task PhraseProfessor Auto Updater 1.10.0.24 Pending Update PhraseProfessor C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe update
有効 Task ReportInstall c:\programdata\{e2207449-ca03-fe4f-e220-07449ca0d127}\1901350484341992968e.exe --startup=1 --single
有効 Task WpsUpdateTask_Administrator C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task WpsUpdateTask_konko_000 C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task {3DAB7F62-8633-4337-B9E6-10557E37CEB6} Google Inc. "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.10.80.101/ja/go/help.faq.installer?LastError=1601
有効 Task {E6124CCB-D7B6-436B-AAB1-EC961D094A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\amarecco310c\amarecco310c\AmaRecCo.exe -d C:\amarecco310c\amarecco310c
  • konko_
  • 2015/10/08 (Thu) 22:52:01
返信フォームへ 
Windowsタブがありません
ログを確認いたしましたが、Windowsタブがありません。
こちらのご提示をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/09 (Fri) 01:20:54
返信フォームへ 
見落としていました
申し訳ありませんでした。
こちら、Windowsタブのログです

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
有効 HKCU:Run iCloudDrive Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKLM:Run BDRegion cyberlink C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
有効 HKLM:Run BtServer Realtek Semiconductor Corporation "C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe"
有効 HKLM:Run CLMLServer CyberLink "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
有効 HKLM:Run ETDCtrl ELAN Microelectronics Corp. %ProgramFiles%\Elantech\ETDCtrl.exe
有効 HKLM:Run gmsd_jp_005010105
有効 HKLM:Run gmsd_jp_005010107 L Agence Exclusive "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
有効 HKLM:Run gmsd_jp_005010109 L Agence Exclusive "C:\Program Files (x86)\gmsd_jp_005010109\gmsd_jp_005010109.exe"
有効 HKLM:Run gmsd_jp_226
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\Windows\system32\hkcmd.exe"
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run IgfxTray Intel Corporation "C:\Windows\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\Windows\system32\igfxpers.exe"
有効 HKLM:Run Radio Manager MSI C:\Program Files (x86)\SCM\Radio Manager.exe
有効 HKLM:Run rec_en_77
有効 HKLM:Run RemoteControl10 CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
有効 HKLM:Run SCM MSI C:\Program Files (x86)\SCM\SCM.exe
有効 HKLM:Run Sound Blaster Cinema Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run UpdatePPShortCut CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\Windows\UpdReg.EXE
有効 HKLM:RunOnce upgmsd_jp_005010107.exe L Agence Exclusive C:\Users\konko_000\AppData\Local\gmsd_jp_005010107\upgmsd_jp_005010107.exe -runonce
有効 Startup Common Killer Network Manager.lnk Flexera Software LLC C:\Windows\Installer\{FF3BFE8F-D4B5-428A-9E62-464DCA7EBCFF}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe

  • konko_
  • 2015/10/09 (Fri) 21:26:45
返信フォームへ 
CCで処置を
壮絶です。
とりあえず消すことに注力しましょう。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。

Windows
有効 HKLM:Run gmsd_jp_005010105
有効 HKLM:Run gmsd_jp_005010107 L Agence Exclusive "C:\Program Files (x86)\gmsd_jp_005010107\gmsd_jp_005010107.exe"
有効 HKLM:Run gmsd_jp_005010109 L Agence Exclusive "C:\Program Files (x86)\gmsd_jp_005010109\gmsd_jp_005010109.exe"
有効 HKLM:Run gmsd_jp_226
有効 HKLM:Run rec_en_77
有効 HKLM:RunOnce upgmsd_jp_005010107.exe L Agence Exclusive C:\Users\konko_000\AppData\Local\gmsd_jp_005010107\upgmsd_jp_005010107.exe -runonce

Google Chrome
有効 Extension AdBlock Pro 3.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.3_0
無効 Extension Web Amplified 1.0.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eommccnccbmlocdmeeohoecobffenoma\1.0.1_0

スケジュールされたタスク※序盤の一部だけ記述します
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-1-6 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-1-6.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-1-7 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-1-7.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-11 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-11.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-3 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-3.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-5 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-5.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-6 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-6.exe
有効 Task 1a6a8721-b58e-429f-80a4-bb17deea77ff-7 C:\Program Files (x86)\CinemaP-1.9cV04.10\1a6a8721-b58e-429f-80a4-bb17deea77ff-7.exe
有効 Task AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2 C:\Users\konko_000\AppData\Local\AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2\AEEEAE11-8C10-4EDC-8FE2-363B85CDEAA2.exe /asru /reinstalltask
有効 Task BaiduJP_Update_{8099779F-A13B-403e-B39A-65133857586B} Baidu C:\Program Files (x86)\baidu\update\baidujp_update.exe -Update
有効 Task globalUpdateUpdateTaskMachineCore globalUpdate C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /c
有効 Task globalUpdateUpdateTaskMachineUA globalUpdate C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /ua /installsource scheduler
有効 Task LaunchSignup C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe frompopup
有効 Task PhraseProfessor Auto Updater 1.10.0.24 Core PhraseProfessor C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe checkupdate
有効 Task PhraseProfessor Auto Updater 1.10.0.24 Pending Update PhraseProfessor C:\Program Files (x86)\PhraseProfessor_1.10.0.24\Update\PhraseProfessorAutoUpdateClient.exe update
有効 Task ReportInstall c:\programdata\{e2207449-ca03-fe4f-e220-07449ca0d127}\1901350484341992968e.exe --startup=1 --single

無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
またGoogle Chrome等で削除ができない場合も放置で先に進みましょう。
CCでの作業が完了しましたら、PCを手動で再起動させてください。
CCのスタートアップのログを再取得し、貼り付けてご連絡ください。
  • IVNO
  • MAIL
  • 2015/10/09 (Fri) 23:43:54
返信フォームへ 
CCでの作業を完了しました
言われたものは手順道理に削除しました。
触れていないIE、Chrome以外のログを貼ります。

Win
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
有効 HKCU:Run iCloudDrive Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKLM:Run BDRegion cyberlink C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
有効 HKLM:Run BtServer Realtek Semiconductor Corporation "C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe"
有効 HKLM:Run CLMLServer CyberLink "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
有効 HKLM:Run ETDCtrl ELAN Microelectronics Corp. %ProgramFiles%\Elantech\ETDCtrl.exe
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\Windows\system32\hkcmd.exe"
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run IgfxTray Intel Corporation "C:\Windows\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\Windows\system32\igfxpers.exe"
有効 HKLM:Run Radio Manager MSI C:\Program Files (x86)\SCM\Radio Manager.exe
有効 HKLM:Run RemoteControl10 CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
有効 HKLM:Run SCM MSI C:\Program Files (x86)\SCM\SCM.exe
有効 HKLM:Run Sound Blaster Cinema Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run UpdatePPShortCut CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\Windows\UpdReg.EXE
有効 Startup Common Killer Network Manager.lnk Flexera Software LLC C:\Windows\Installer\{FF3BFE8F-D4B5-428A-9E62-464DCA7EBCFF}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe


スケジュール
有効 Task Apple Diagnostics Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
有効 Task bvxvexvbg C:\Users\konko_000\AppData\Local\bvxvexvbg\bvxvexvbg.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task McAfee Remediation (Prepare) McAfee, Inc. C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
無効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1001
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-500
有効 Task WpsUpdateTask_Administrator C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task WpsUpdateTask_konko_000 C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task {3DAB7F62-8633-4337-B9E6-10557E37CEB6} Google Inc. "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.10.80.101/ja/go/help.faq.installer?LastError=1601
有効 Task {E6124CCB-D7B6-436B-AAB1-EC961D094A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\amarecco310c\amarecco310c\AmaRecCo.exe -d C:\amarecco310c\amarecco310c
  • konko_
  • 2015/10/10 (Sat) 00:45:46
返信フォームへ 
Google Chromeは処置してないのでしょうか
Google Chromeについての処置案内もしていたはずなのですが、
こちらは行われていないと言うことなのでしょうか。
  • IVNO
  • MAIL
  • 2015/10/10 (Sat) 01:45:00
返信フォームへ 
書き方が悪かったです
消せなかったためスルーしました。
  • konko_
  • 2015/10/10 (Sat) 12:39:31
返信フォームへ 
各ブラウザのリセットを
CCでは削除できなかったと言うことですね。
Google Chrome本体から直接削除する方法もありますが、
今回はブラウザのリセットということで対応しましょう。
ただしこの沈静化は、とりあえず活動させなくするだけのものであり、駆除が完了するわけではありません。
駆除に関するご案内につきましては、沈静化作業の後にご案内いたします。
それでは主要ブラウザごとに記述いたします。

Internet Exploterの場合
コントロールパネルを開きます。
ネットワークとインターネット→インターネットオプションを開きます。
詳細設定タブを開き、下部にあるリセットボタンを押します。
項目が表示されますので、そのままリセットを押します。

Firefoxの場合
画面上部右側にある三のようなマークを押します。
?マークのヘルプメニューを開き、トラブルシューティング情報をクリックします。
Firefox の性能改善と言う項目がありますので、そちらのFirefoxをリフレッシュのボタンを押します。

Google Chromeの場合
画面上部右側にある三のようなマークを押します。
設定をクリックします。
詳細設定を表示と書かれた青い文字をクリックします。
最下部に設定のリセットボタンがありますので、そちらを押してリセットを行います。

本作業が終了いたしましたら数時間程度の様子見を行い、その結果をご連絡ください。
  • IVNO
  • MAIL
  • 2015/10/10 (Sat) 18:04:55
返信フォームへ 
今作業を終えました。
今作業を終えたので、0時辺りまで様子を見て、改めて結果を報告したいと思います。
  • konko_
  • 2015/10/10 (Sat) 21:06:58
返信フォームへ 
現状報告です
様子見したところ、何も触らずに放置していると極たまにPCの修理がどうのと言う広告が出現これは普通に出てきました。
次に、広告を消そうとした際にブラウザ内の適当な箇所をクリックしてしまい、一瞬だけ表示され、すぐに消える広告の様なものを確認しました。
広告が表示されていない状態でブラウザをクリックしてみたところ同じように一瞬だけ開こうとされる広告の様なものを確認しましたが、それ以外は特になかったです。
  • konko_
  • 2015/10/11 (Sun) 00:23:55
返信フォームへ 
続けてGoogle Chromeで処置を
では続けてGoogle Chromeから直接削除を行いましょう。
Google Chromeを開き、メニューから拡張機能を表示させてください。
以下のものを見つけ出して削除を行ってください。

有効 Extension AdBlock Pro 3.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.3_0
無効 Extension Web Amplified 1.0.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eommccnccbmlocdmeeohoecobffenoma\1.0.1_0

ここでの処置の有無をお知らせください。
  • IVNO
  • MAIL
  • 2015/10/11 (Sun) 11:55:22
返信フォームへ 
Chromeの処置
言われた拡張機能の削除を完了しました。
CCのログを貼っておきます

有効 App Gmail 8.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google Search 0.0.0.30 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0
有効 App Google ドライブ 14.0 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Adblock Plus 1.9.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0
無効 Extension dmm_trigger 1.0.0.6 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekecocnhcgghjgbihpbgdimpobbkfpe\1.0.0.6_0
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Google ドキュメント オフライン 0.5 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0
  • konko_
  • 2015/10/11 (Sun) 22:07:08
返信フォームへ 
ACで処置を
CCでの処置は完了したみたいですね。
では続けて処置を行いましょう。

以下のソフトウェアをご用意ください。

「AdwCleaner」(通称:AC)
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
ソフトウェアを一度起動させることにより自動的にアップデートが始まります。
アップデートが完了しましたら今は何もせずに終了させてください。
本ソフトウェアの削除指示があった際は起動後に「アンインストール」ボタンを押せば自動で削除されます。

準備できたら作業を開始しましょう。

PCをセーフモードで起動させてください。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleaningまたは削除をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動前後いずれかにACのログが表示さますので、そちらを貼り付けてご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/12 (Mon) 02:16:28
返信フォームへ 
ACのログです
作業を完了したため、ログを貼ります。

***** [ サービス ] *****

[-] サービス 削除済み項目 : CltMngSvc
[-] サービス 削除済み項目 : globalUpdate
[-] サービス 削除済み項目 : globalUpdatem
[-] サービス 削除済み項目 : Orbiter
[-] サービス 削除済み項目 : SPPD
[-] サービス 削除済み項目 : TheDesktopWeatherService
[-] サービス 削除済み項目 : SSFK
[-] サービス 削除済み項目 : WdsManPro
[-] サービス 削除済み項目 : fucydolu
[-] サービス 削除済み項目 : gyvixodu
[-] サービス 削除済み項目 : tihuzyqu
[-] サービス 削除済み項目 : pfnfd_1_10_0_8
[-] サービス 削除済み項目 : ppfd_vw_1_10_0_24
[-] サービス 削除済み項目 : ppsvc_1.10.0.24
[-] サービス 削除済み項目 : wsfd_vw_1_10_0_20

***** [ フォルダ ] *****

[-] フォルダ 削除済み項目 : C:\Program Files (x86)\globalUpdate
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\predm
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\SearchProtect
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\WinZipper
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\ORBTR
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\Crossbrowse
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\WeatherTool
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\SFK
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\RockeetDDeaaL
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\PhraseProfessor_1.10.0.24
[!] フォルダ ノット 削除済み項目 : C:\Program Files (x86)\Crossbrowse
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\gmsd_jp_005010107
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\gmsd_jp_005010109
[-] フォルダ 削除済み項目 : C:\ProgramData\apn
[-] フォルダ 削除済み項目 : C:\ProgramData\6WdsManPro6
[-] フォルダ 削除済み項目 : C:\ProgramData\cWdsManProc
[-] フォルダ 削除済み項目 : C:\ProgramData\FWdsManProF
[-] フォルダ 削除済み項目 : C:\ProgramData\iWdsManProi
[-] フォルダ 削除済み項目 : C:\ProgramData\JWdsManProJ
[-] フォルダ 削除済み項目 : C:\ProgramData\XWdsManProX
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
[-] フォルダ 削除済み項目 : C:\Users\KONKO_~1\AppData\Local\Temp\wizz
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\globalUpdate
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\SearchProtect
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\bvxvexvbg
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\gmsd_jp_005010107
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\gmsd_jp_005010109
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\03000200-1444623553-0500-0006-000700080009
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\WinZipper
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\mystartsearch
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\WeatherTool
[-] フォルダ 削除済み項目 : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool

***** [ ファイル ] *****

[-] ファイル 削除済み項目 : C:\END
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb
[-] ファイル 削除済み項目 : C:\Windows\AppPatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb
[-] ファイル 削除済み項目 : C:\Windows\Reimage.ini
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\SPPD.sys
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\ppfd_vt_1_10_0_24.sys
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\ppfd_vw_1_10_0_24.sys

***** [ DLLs ] *****


***** [ ショートカット ] *****

[-] ショートカット 駆除済み項目 : C:\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk

***** [ スケジュールタスク ] *****

[-] タスク 削除済み項目 : amiupdaterExd
[-] タスク 削除済み項目 : amiupdaterExi
[-] タスク 削除済み項目 : bvxvexvbg
[-] タスク 削除済み項目 : 1a6a8721-b58e-429f-80a4-bb17deea77ff-10_user
[-] タスク 削除済み項目 : 1a6a8721-b58e-429f-80a4-bb17deea77ff-5_user

***** [ レジストリ ] *****

[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\driverscanner
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] キー 削除済み項目 : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] キー 削除済み項目 : HKLM\SOFTWARE\a690a876-c5b2-4e85-bfa0-e8f63b97d804
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.001
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.z
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{7A6DCEC2-55AB-418F-A903-93D0DF482809}
[-] 値 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKCU\Software\GlobalUpdate
[-] キー 削除済み項目 : HKCU\Software\InstallCore
[-] キー 削除済み項目 : HKCU\Software\InstalledBrowserExtensions
[-] キー 削除済み項目 : HKCU\Software\SearchProtect
[-] キー 削除済み項目 : HKCU\Software\Softonic
[-] キー 削除済み項目 : HKCU\Software\Tutorials
[-] キー 削除済み項目 : HKCU\Software\TutoTag
[-] キー 削除済み項目 : HKCU\Software\Vittalia
[-] キー 削除済み項目 : HKCU\Software\Reimage
[-] キー 削除済み項目 : HKCU\Software\GAMESDESKTOP
[-] キー 削除済み項目 : HKCU\Software\Super Optimizer
[-] キー 削除済み項目 : HKCU\Software\CrossBrowser
[-] キー 削除済み項目 : HKCU\Software\YorkNewCin
[-] キー 削除済み項目 : HKCU\Software\HighDefAction
[-] キー 削除済み項目 : HKCU\Software\ArenaHD
[-] キー 削除済み項目 : HKCU\Software\WeatherTool
[-] キー 削除済み項目 : HKCU\Software\PRODUCTSETUP
[-] キー 削除済み項目 : HKCU\Software\DAILYPCCLEAN
[-] キー 削除済み項目 : HKCU\Software\WEBAPP
[-] キー 削除済み項目 : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] キー 削除済み項目 : HKCU\Software\AppDataLow\Software\Crossrider
[-] キー 削除済み項目 : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] キー 削除済み項目 : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] キー 削除済み項目 : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\delta-homesSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\GlobalUpdate
[-] キー 削除済み項目 : HKLM\SOFTWARE\hdcode
[-] キー 削除済み項目 : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] キー 削除済み項目 : HKLM\SOFTWARE\istartsurfSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\SearchProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Tutorials
[-] キー 削除済み項目 : HKLM\SOFTWARE\V9
[-] キー 削除済み項目 : HKLM\SOFTWARE\winzipersvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\mystartsearchSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\ORBTR
[-] キー 削除済み項目 : HKLM\SOFTWARE\GAMESDESKTOP
[-] キー 削除済み項目 : HKLM\SOFTWARE\SPPDCOM
[-] キー 削除済み項目 : HKLM\SOFTWARE\Crossbrowse
[-] キー 削除済み項目 : HKLM\SOFTWARE\YorkNewCin
[-] キー 削除済み項目 : HKLM\SOFTWARE\HighDefAction
[-] キー 削除済み項目 : HKLM\SOFTWARE\ArenaHD
[-] キー 削除済み項目 : HKLM\SOFTWARE\WdsManPro
[-] キー 削除済み項目 : HKLM\SOFTWARE\PhraseProfessor_1.10.0.24
[!] キー ノット 削除済み項目 : HKLM\SOFTWARE\Crossbrowse
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PhraseProfessor_1.10.0.24
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_jp_005010107_is1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_jp_005010109_is1
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\GlobalUpdate
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\InstallCore
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\InstalledBrowserExtensions
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\SearchProtect
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Softonic
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Tutorials
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\TutoTag
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Vittalia
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Reimage
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\GAMESDESKTOP
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Super Optimizer
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\CrossBrowser
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\YorkNewCin
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\HighDefAction
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\ArenaHD
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\WeatherTool
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\PRODUCTSETUP
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\DAILYPCCLEAN
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\WEBAPP
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Reimage
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\YorkNewCin
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\HighDefAction
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\ArenaHD
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\WeatherTool
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherTool
[!] キー ノット 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\AppDataLow\Software\Crossrider
[!] キー ノット 削除済み項目 : HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] データ 復元済み項目 : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] データ 復元済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] キー 削除済み項目 : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[-] データ 復元済み項目 : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] データ 復元済み項目 : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
[-] データ 復元済み項目 : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]

***** [ Webブラウザ ] *****

[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : search.ask.com
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : trovi.search
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch.com
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch_
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch__
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch___
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch____
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.trovi.com/?gd=&ctid=CT3321539&octid=EB_ORIGINAL_CTID&ISID=M7D271F9F-1B04-420E-95CB-1B07D077DA78&SearchSource=55&CUI=&UM=8&UP=SP2C51AF1C-D187-4325-AAE8-FFBF759393EC&D=100915&SSPV=
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.mystartsearch.com/?type=hp&ts=1444067493&z=3df5682d06c6f25f6c6e0eag2zfz7z8e1q5m8o1m5c&from=cmi&uid=TOSHIBAXMQ01ABD100_Y4O9S3V8SXXY4O9S3V8S
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.mystartsearch.com/?type=hp&ts=1444220763&z=4de9917fb8b2effdc408198gcz7z4zaoao3ecw8caq&from=cmi&uid=TOSHIBAXMQ01ABD100_Y4O9S3V8SXXY4O9S3V8S
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] 削除済み項目 : hxxp://www.mystartsearch.com/webfavicon.ico
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] 削除済み項目 : booedmolknjekdopkepjjeckmjkdpfgl
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] 削除済み項目 : flpcjncodpafbgdpnkljologafpionhb
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] 削除済み項目 : hxxp://www.trovi.com/?gd=&ctid=CT3325157&octid=EB_ORIGINAL_CTID&ISID=MB80D0199-A665-4CAC-9378-6754F0F06A51&SearchSource=55&CUI=&UM=8&UP=SPE2B31153-B3E6-4B9E-8790-D49D6A132CAD&D=100415&SSPV=

*************************

:: Winsock設定を初期化しました

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [26214 バイト] ##########
  • konko_
  • 2015/10/12 (Mon) 05:30:45
返信フォームへ 
ログの最初の部分がありません
ACのログが途中からとなっているようです。
ログ全文を張りなおしてご連絡ください。
  • IVNO
  • MAIL
  • 2015/10/12 (Mon) 16:55:28
返信フォームへ 
ACログ貼り直し
前文は不要かと勝手な判断をしてしまいました。申し訳ないです。
ユーザー名は不要かと思うのでそこは削除して再度貼らせていただきます。
お手数をおかけして申し訳ないです。

# AdwCleaner v5.013 - ログファイルの作成日 12/10/2015 作成時間 05:22:27
# 更新日 09/10/2015 作成元 Xplode
# データベース : 2015-10-09.3 [サーバー]
# オペレーティングシステム : Windows 8.1 (x64)
# 実行場所 : C:\Users\konko_000\Downloads\AdwCleaner.exe
# オプション : 削除
# サポート : http://toolslib.net/forum

***** [ サービス ] *****

[-] サービス 削除済み項目 : CltMngSvc
[-] サービス 削除済み項目 : globalUpdate
[-] サービス 削除済み項目 : globalUpdatem
[-] サービス 削除済み項目 : Orbiter
[-] サービス 削除済み項目 : SPPD
[-] サービス 削除済み項目 : TheDesktopWeatherService
[-] サービス 削除済み項目 : SSFK
[-] サービス 削除済み項目 : WdsManPro
[-] サービス 削除済み項目 : fucydolu
[-] サービス 削除済み項目 : gyvixodu
[-] サービス 削除済み項目 : tihuzyqu
[-] サービス 削除済み項目 : pfnfd_1_10_0_8
[-] サービス 削除済み項目 : ppfd_vw_1_10_0_24
[-] サービス 削除済み項目 : ppsvc_1.10.0.24
[-] サービス 削除済み項目 : wsfd_vw_1_10_0_20

***** [ フォルダ ] *****

[-] フォルダ 削除済み項目 : C:\Program Files (x86)\globalUpdate
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\predm
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\SearchProtect
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\WinZipper
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\ORBTR
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\Crossbrowse
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\WeatherTool
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\SFK
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\RockeetDDeaaL
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\PhraseProfessor_1.10.0.24
[!] フォルダ ノット 削除済み項目 : C:\Program Files (x86)\Crossbrowse
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\gmsd_jp_005010107
[-] フォルダ 削除済み項目 : C:\Program Files (x86)\gmsd_jp_005010109
[-] フォルダ 削除済み項目 : C:\ProgramData\apn
[-] フォルダ 削除済み項目 : C:\ProgramData\6WdsManPro6
[-] フォルダ 削除済み項目 : C:\ProgramData\cWdsManProc
[-] フォルダ 削除済み項目 : C:\ProgramData\FWdsManProF
[-] フォルダ 削除済み項目 : C:\ProgramData\iWdsManProi
[-] フォルダ 削除済み項目 : C:\ProgramData\JWdsManProJ
[-] フォルダ 削除済み項目 : C:\ProgramData\XWdsManProX
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PepperZip
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] フォルダ 削除済み項目 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP
[-] フォルダ 削除済み項目 : C:\Users\KONKO_~1\AppData\Local\Temp\wizz
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\globalUpdate
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\SearchProtect
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\bvxvexvbg
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\gmsd_jp_005010107
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\gmsd_jp_005010109
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Local\03000200-1444623553-0500-0006-000700080009
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\WinZipper
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\mystartsearch
[-] フォルダ 削除済み項目 : C:\Users\konko_000\AppData\Roaming\WeatherTool
[-] フォルダ 削除済み項目 : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\WeatherTool

***** [ ファイル ] *****

[-] ファイル 削除済み項目 : C:\END
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.boostsaves.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage
[-] ファイル 削除済み項目 : C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.mystartsearch.com_0.localstorage-journal
[-] ファイル 削除済み項目 : C:\Windows\AppPatch\Custom\{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb
[-] ファイル 削除済み項目 : C:\Windows\AppPatch\Custom\Custom64\{cf2797aa-b7ec-e311-8ed9-005056c00008}.sdb
[-] ファイル 削除済み項目 : C:\Windows\Reimage.ini
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\SPPD.sys
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\ppfd_vt_1_10_0_24.sys
[-] ファイル 削除済み項目 : C:\Windows\SysNative\drivers\ppfd_vw_1_10_0_24.sys

***** [ DLLs ] *****


***** [ ショートカット ] *****

[-] ショートカット 駆除済み項目 : C:\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk

***** [ スケジュールタスク ] *****

[-] タスク 削除済み項目 : amiupdaterExd
[-] タスク 削除済み項目 : amiupdaterExi
[-] タスク 削除済み項目 : bvxvexvbg
[-] タスク 削除済み項目 : 1a6a8721-b58e-429f-80a4-bb17deea77ff-10_user
[-] タスク 削除済み項目 : 1a6a8721-b58e-429f-80a4-bb17deea77ff-5_user

***** [ レジストリ ] *****

[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\driverscanner
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] キー 削除済み項目 : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] キー 削除済み項目 : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] キー 削除済み項目 : HKLM\SOFTWARE\a690a876-c5b2-4e85-bfa0-e8f63b97d804
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.001
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.z
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Classes\TypeLib\{7A6DCEC2-55AB-418F-A903-93D0DF482809}
[-] 値 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] キー 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKCU\Software\GlobalUpdate
[-] キー 削除済み項目 : HKCU\Software\InstallCore
[-] キー 削除済み項目 : HKCU\Software\InstalledBrowserExtensions
[-] キー 削除済み項目 : HKCU\Software\SearchProtect
[-] キー 削除済み項目 : HKCU\Software\Softonic
[-] キー 削除済み項目 : HKCU\Software\Tutorials
[-] キー 削除済み項目 : HKCU\Software\TutoTag
[-] キー 削除済み項目 : HKCU\Software\Vittalia
[-] キー 削除済み項目 : HKCU\Software\Reimage
[-] キー 削除済み項目 : HKCU\Software\GAMESDESKTOP
[-] キー 削除済み項目 : HKCU\Software\Super Optimizer
[-] キー 削除済み項目 : HKCU\Software\CrossBrowser
[-] キー 削除済み項目 : HKCU\Software\YorkNewCin
[-] キー 削除済み項目 : HKCU\Software\HighDefAction
[-] キー 削除済み項目 : HKCU\Software\ArenaHD
[-] キー 削除済み項目 : HKCU\Software\WeatherTool
[-] キー 削除済み項目 : HKCU\Software\PRODUCTSETUP
[-] キー 削除済み項目 : HKCU\Software\DAILYPCCLEAN
[-] キー 削除済み項目 : HKCU\Software\WEBAPP
[-] キー 削除済み項目 : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[-] キー 削除済み項目 : HKCU\Software\AppDataLow\Software\Crossrider
[-] キー 削除済み項目 : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] キー 削除済み項目 : HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] キー 削除済み項目 : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
[-] キー 削除済み項目 : HKLM\SOFTWARE\delta-homesSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\GlobalUpdate
[-] キー 削除済み項目 : HKLM\SOFTWARE\hdcode
[-] キー 削除済み項目 : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] キー 削除済み項目 : HKLM\SOFTWARE\istartsurfSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\SearchProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Tutorials
[-] キー 削除済み項目 : HKLM\SOFTWARE\V9
[-] キー 削除済み項目 : HKLM\SOFTWARE\winzipersvc
[-] キー 削除済み項目 : HKLM\SOFTWARE\mystartsearchSoftware
[-] キー 削除済み項目 : HKLM\SOFTWARE\ORBTR
[-] キー 削除済み項目 : HKLM\SOFTWARE\GAMESDESKTOP
[-] キー 削除済み項目 : HKLM\SOFTWARE\SPPDCOM
[-] キー 削除済み項目 : HKLM\SOFTWARE\Crossbrowse
[-] キー 削除済み項目 : HKLM\SOFTWARE\YorkNewCin
[-] キー 削除済み項目 : HKLM\SOFTWARE\HighDefAction
[-] キー 削除済み項目 : HKLM\SOFTWARE\ArenaHD
[-] キー 削除済み項目 : HKLM\SOFTWARE\WdsManPro
[-] キー 削除済み項目 : HKLM\SOFTWARE\PhraseProfessor_1.10.0.24
[!] キー ノット 削除済み項目 : HKLM\SOFTWARE\Crossbrowse
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PhraseProfessor_1.10.0.24
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_jp_005010107_is1
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gmsd_jp_005010109_is1
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\GlobalUpdate
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\InstallCore
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\InstalledBrowserExtensions
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\SearchProtect
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Softonic
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Tutorials
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\TutoTag
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Vittalia
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Reimage
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\GAMESDESKTOP
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Super Optimizer
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\CrossBrowser
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\YorkNewCin
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\HighDefAction
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\ArenaHD
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\WeatherTool
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\PRODUCTSETUP
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\DAILYPCCLEAN
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\WEBAPP
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Reimage
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\YorkNewCin
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\HighDefAction
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\ArenaHD
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\WeatherTool
[-] キー 削除済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherTool
[!] キー ノット 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\AppDataLow\Software\Crossrider
[!] キー ノット 削除済み項目 : HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
[!] キー ノット 削除済み項目 : HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] キー 削除済み項目 : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GLOBALUPDATE.EXE
[-] データ 復元済み項目 : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] データ 復元済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] キー 削除済み項目 : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] キー ノット 削除済み項目 : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[!] キー ノット 削除済み項目 : HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
[-] データ 復元済み項目 : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] データ 復元済み項目 : HKLM\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command []
[-] データ 復元済み項目 : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]
[-] データ 復元済み項目 : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs]

***** [ Webブラウザ ] *****

[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : search.ask.com
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : trovi.search
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch.com
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch_
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch__
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch___
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch____
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] 削除済み項目 : mystartsearch
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.trovi.com/?gd=&ctid=CT3321539&octid=EB_ORIGINAL_CTID&ISID=M7D271F9F-1B04-420E-95CB-1B07D077DA78&SearchSource=55&CUI=&UM=8&UP=SP2C51AF1C-D187-4325-AAE8-FFBF759393EC&D=100915&SSPV=
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.mystartsearch.com/?type=hp&ts=1444067493&z=3df5682d06c6f25f6c6e0eag2zfz7z8e1q5m8o1m5c&from=cmi&uid=TOSHIBAXMQ01ABD100_Y4O9S3V8SXXY4O9S3V8S
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] 削除済み項目 : hxxp://www.mystartsearch.com/?type=hp&ts=1444220763&z=4de9917fb8b2effdc408198gcz7z4zaoao3ecw8caq&from=cmi&uid=TOSHIBAXMQ01ABD100_Y4O9S3V8SXXY4O9S3V8S
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] 削除済み項目 : hxxp://www.mystartsearch.com/webfavicon.ico
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] 削除済み項目 : booedmolknjekdopkepjjeckmjkdpfgl
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] 削除済み項目 : flpcjncodpafbgdpnkljologafpionhb
[-] [C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] 削除済み項目 : hxxp://www.trovi.com/?gd=&ctid=CT3325157&octid=EB_ORIGINAL_CTID&ISID=MB80D0199-A665-4CAC-9378-6754F0F06A51&SearchSource=55&CUI=&UM=8&UP=SPE2B31153-B3E6-4B9E-8790-D49D6A132CAD&D=100415&SSPV=

*************************

:: Winsock設定を初期化しました

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [26214 バイト] ##########
  • konko_
  • 2015/10/12 (Mon) 20:29:49
返信フォームへ 
ACは削除しMBAMで処置を
ACの結果は良好です。
Google Chromeのアドオンにかなりの量が食い込んでいる模様です。
アカウントの同期を行っていると駆除しても自動復活するため、
同期を行っている場合は直ちに停止させ、同期の削除を行ってください。
ACは不要となりますので、ACを起動させてアンインストールボタンを押して削除なされてください。

以下のソフトウェアをご用意ください。

Malwarebytes Anti-Malware(通称:MBAM)
旧バージョンダウンロード↓(ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます)
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
Google Chrome以外のブラウザでダウンロードしてください。
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
ウイルス定義ファイルのバージョンアップが完了すると、再度最新バージョンをダウンロードしたと出ますので、
再びキャンセルを押してアップデートを中止してください。
MBAMが起動したら設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
この段階ではスキャンは行いませんので、設定が完了したらMBAMを終了させておいてください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
片付け時はセーフモードでGUを利用してアンインストールしてください。

ここで使うのはFree(無償版)です。

準備が完了しましたら作業を開始いたします。
PCをセーフモードで起動してください。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分~1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
処置の設定が完了するとPCの再起動を促されますので、指示に従って通常モードで再起動してください。
再起動前後にログが出ますので、取得されたログを貼り付け、ご報告をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/13 (Tue) 02:23:49
返信フォームへ 
MBAMログ
MBAMでの作業を終えましたので、ログを提出します。
ACの時と同じように、ユーザー名の部分だけ除いて貼らせていただきます。

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

定義バージョン: v2015.10.13.03

Windows 8 x64 NTFS (セーフモード)
Internet Explorer 11.0.9600.18036

2015/10/14 0:03:13
mbam-log-2015-10-14 (00-03-13).txt

スキャンタイプ: フルスキャン (C:\|)
有効なスキャン領域: メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン  | ヒューリスティック/Shuriken エンジンを使用してスキャン  | 不審なプログラム (PUP) | 不審な変更 (PUM)
無効なスキャン領域: ピア・ツー・ピアプログラム(P2P)
スキャンしたアイテム数: 824140
経過時間: 1 時間, 45 分, 9 秒

メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)

メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリキーの検出: 25
HKCR\CLSID\{4f93c386-c677-4212-9bc8-47814de68c52} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKCR\TypeLib\{96364f10-7926-4614-99df-4913655fa872} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKCR\Interface\{DB5CA0A2-55B7-41BC-BBE0-1F6E7E4AA2B1} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F93C386-C677-4212-9BC8-47814DE68C52} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{4F93C386-C677-4212-9BC8-47814DE68C52} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F93C386-C677-4212-9BC8-47814DE68C52} (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKCR\TypeLib\{157B1AA6-3E5C-404A-9118-C1D91F537040} (PUP.Optional.Multiplug) -> 正常に隔離され削除されました。
HKCR\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326} (PUP.Optional.Multiplug) -> 正常に隔離され削除されました。
HKCU\Software\CinemaP-1.9cV04.10-nv (PUP.Optional.Cinema) -> 正常に隔離され削除されました。
HKCU\Software\CinemaP-1.9cV04.10-nv-ie (PUP.Optional.Cinema) -> 正常に隔離され削除されました。
HKCU\Software\MedPlayNVr3.3-nv-ie (PUP.Optional.MediaPlayer) -> 正常に隔離され削除されました。
HKCU\Software\Web Amplified (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\PhraseFinder_1.10.0.8 (PUP.Optional.PhraseFinder) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\WordShark_1.10.0.20 (PUP.Optional.WordShark) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASAPI32 (PUP.Optional.MixVideoPlayer) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\MixVideoPlayer_RASMANCS (PUP.Optional.MixVideoPlayer) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\PhraseProfessorAutoUpdateClient_RASAPI32 (PUP.Optional.PhraseProfessor) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\PhraseProfessorAutoUpdateClient_RASMANCS (PUP.Optional.PhraseProfessor) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\WordSharkAutoUpdateClient_RASAPI32 (PUP.Optional.WordShark) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Tracing\WordSharkAutoUpdateClient_RASMANCS (PUP.Optional.WordShark) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1146AC44-2F03-4431-B4FD-889BC837521F}{cae99edb} (PUP.Optional.MultiPlug) -> 正常に隔離され削除されました。
HKLM\SOFTWARE\POLICIES\GOOGLE\UPDATE (PUM.Security.Hijack.DisableChromeUpdates) -> 正常に隔離され削除されました。
HKLM\Software\CinemaP-1.9cV04.10-nv (PUP.Optional.Cinema) -> 正常に隔離され削除されました。
HKLM\Software\CinemaP-1.9cV04.10-nv-ie (PUP.Optional.Cinema) -> 正常に隔離され削除されました。
HKLM\Software\Web Amplified (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。

レジストリ値の検出: 1
HKLM\SOFTWARE\Policies\Google\Update|DisableAutoUpdateChecksCheckboxValue (PUM.Security.Hijack.DisableChromeUpdates) -> データ: 1 -> 正常に隔離され削除されました。

レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)

フォルダの検出: 6
C:\Users\konko_000\AppData\Roaming\0V1L2Z2Z1T1I1L1T (PUP.Optional.BundleInstaller) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Roaming\0V1L2Z2Z1T1I1L1T\Minecraft 1.8 Packages (PUP.Optional.BundleInstaller) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531 (PUP.Optional.GlobalUpdate) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\Web Amplified (PUP.Optional.WebAmplified) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42 (PUP.Optional.Managera) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B (PUP.Optional.ExTutil) -> 正常に隔離され削除されました。

ファイルの検出: 61
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\globalupdate.exe.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdate.exe.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\globalupdateCrashHandler.exe.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdate.dll.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\goopdateres_en.dll.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psmachine.dll.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0\psuser.dll.vir (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ORBTR\orbiter.dll.vir (PUP.Optional.Conduit) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\CltMngSvc.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\SPtool.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin\uninstall.pun.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\RN32.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\SPtool64.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin\cltmngui.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\bvxvexvbg\bvxvexvbg.exe.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\bvxvexvbg\pbqrmvbub.vir (PUP.Optional.SearchProtect) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\5229.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\9006.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\9035.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\9081.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\9251.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\9280.exe (PUP.Optional.CrossRider) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nsaE4A.tmp (PUP.Optional.MyStartSearch.ShrtCln) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nsg6B34.tmp (PUP.Optional.MyStartSearch.ShrtCln) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nso5494.tmp (PUP.Optional.MyStartSearch.ShrtCln) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nsv80BB.tmp (PUP.Optional.MyStartSearch.ShrtCln) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\7zO7F30.tmp\Setup__6092_il2671908.exe (PUP.Optional.Amonetize) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\globalupdate.exe (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\globalupdateBroker.exe (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\globalupdateCrashHandler.exe (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\globalupdateOnDemand.exe (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\goopdate.dll (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\goopdateres_en.dll (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\psmachine.dll (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\psuser.dll (PUP.Optional.ModGoog) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-81P7D.tmp\465.exe (PUP.Optional.Tuto4PC) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-81P7D.tmp\package_weatherTool_installer_multilang.exe (PUP.Optional.Tuto4PC) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-91N4O.tmp\420.exe (PUP.Optional.EoRezo) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-NEN7G.tmp\gentlemjmp_irow.exe (PUP.Optional.Tuto4PC) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-T4MP2.tmp\465.exe (PUP.Optional.EoRezo) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\is-T4MP2.tmp\473.exe (PUP.Optional.EoRezo) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nssED2D.tmp\nsCBHTML5.dll (PUP.Optional.CheckOffer) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\nssED2D.tmp\setup.exe (PUP.Optional.ShopAndSave) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\WIZZTEMP\newversion.exe (PUP.Optional.MaxDriverUpdater) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\vitruvian-installer-install-v0003 (PUP.Optional.Vitruvian) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\vitruvian-installer-processes-v0002 (PUP.Optional.Vitruvian) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\vitruvian-installer-scheduledtasks-v0001 (PUP.Optional.Vitruvian) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\vitruvian-installer-softwareregkeys-v0002 (PUP.Optional.Vitruvian) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Roaming\0V1L2Z2Z1T1I1L1T\Minecraft 1.8 Packages\uninstaller.exe (PUP.Optional.BundleInstaller) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\comh.31531\globalupdateHelper.msi (PUP.Optional.GlobalUpdate) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42\cs.js (PUP.Optional.Managera) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\39fdaae5-8e0e-493c-88ec-e05c3be06e42\manifest.json (PUP.Optional.Managera) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\bk.js (PUP.Optional.ExTutil) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\cs.js (PUP.Optional.ExTutil) -> 正常に隔離され削除されました。
C:\Users\konko_000\AppData\Local\Temp\D8ADFCCA-EE7E-442C-9999-C4D14FEF360B\manifest.json (PUP.Optional.ExTutil) -> 正常に隔離され削除されました。

(終)
  • konko_
  • 2015/10/14 (Wed) 19:37:11
返信フォームへ 
MBAMは削除しJRTでスキャンを
時間ないので本題だけ記述します。
MBAMはセーフモードでGUを利用してアンインストールしてください。

以下のソフトウェアをご用意ください。

Malwarebytes Junkware Removal tool(通称:JRT)
http://downloads.malwarebytes.org/file/jrt
クリックするとファイルがダウンロードされますので、わかりやすい場所に保存なされてください。
削除時は本体ごとゴミ箱に入れて削除してください。

準備ができたら作業を開始いたします。
今回の作業は通常モードのままで結構です。
JRTを起動させてください。
エンターキーなどのキーを押してスキャンを開始します。
現段階で稼働中のマルウェアが検出された場合は完全駆除のために再起動するかと問われますが、
その場合はNキーを押して再起動はキャンセルしてください。
すべての検出が終わると結果が表示されますので、わかりやすい場所に保存してください。
保存が完了しましたら、検出の有無を問わず一度PCを手動で再起動させてください。
再起動が完了しましたら、JRTのログを貼り付けてご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/15 (Thu) 19:16:00
返信フォームへ 
JRTのログです
作業を完了しました。

では、ログですが、ユーザー名が表記されていたのでユーザー名のみを消して貼らせて頂きます。

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 8.1 x64
Ran by on 2015/10/15 at 21:32:57.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks

Successfully deleted: [Task] C:\Windows\Tasks\HNZUOISR.job



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Web Amplified
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Web Amplified



~~~ Files

Successfully deleted: [File] C:\Users\konko_000\AppData\Roaming\appdataFr25.bin
Successfully deleted: [File] C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Successfully deleted: [File] C:\Users\konko_000\AppData\Roaming\HNZUOISR
Successfully deleted: [File] C:\Users\konko_000\AppData\Roaming\HNZUOISR.exe
Successfully deleted: [File] C:\Windows\SysWOW64\REN855E.tmp



~~~ Folders

Successfully deleted: [Folder] C:\Users\konko_000\Appdata\Local\crashrpt
Successfully deleted: [Folder] C:\users\Public\Documents\guid



~~~ Chrome


[C:\Users\konko_000\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\konko_000\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\konko_000\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\konko_000\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2015/10/15 at 21:36:23.21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  • konko_
  • 2015/10/15 (Thu) 21:47:45
返信フォームへ 
JRTは削除しOTLでスキャンを
JRTの結果は良好です。
JRTは不要となりますので、導入時の指示に従って削除なされてください。
ここから先、OTLとHPでの処置は、人力検査、手動駆除となります。
そのためどの部分を書き換えたかが明確に分からなければ処置できなくなる場合があります。
ユーザー名を書き換えるのであれば、【ユーザー名】などと明らかに置換したことが分かる内容でお願いいたします。

以下のソフトウェアをご準備ください。

OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。
ただし、Windows 10の方に限り「Cleanup」ボタンを押さずにファイルのみ削除してください。
このOTLでのスキャンは再度ご案内する場合がありますが、
その際はこちらの手順をそのまま繰り返していただくこととなります。
OTLで再度スキャンをと言われた場合、こちらの作業のやり直しをお願いいたします。

OTLを起動させる前にブラウザを含め、可能な限りのソフトウェアを終了させてください。
ソフトウェアの終了が完了しましたら、OTLを起動させてください。
表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に以下をコピペしてください。

------コピペこの下より------
SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT
------コピペこの上まで------

コピペが完了しましたら、Run Scanをクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、そちらを貼り付けてご連絡ください。
なお、OTLはその特性上、非常に長文となります。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、英数字換算で約6万文字です。
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html
  • IVNO
  • MAIL
  • 2015/10/16 (Fri) 21:09:52
返信フォームへ 
OTLログ1
ユーザー名の件、了解しました。
ユーザー名は置換せずにそのまま貼ることにします。

では、ログを順次貼っていきます。
OTL logfile created on: 2015/10/16 21:35:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\konko_000\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18036)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.92 Gb Total Physical Memory | 5.83 Gb Available Physical Memory | 73.57% Memory free
15.92 Gb Paging File | 13.21 Gb Available in Paging File | 82.98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.81 Gb Total Space | 484.37 Gb Free Space | 52.77% Space Free | Partition Type: NTFS

Computer Name: メイン | User Name: 骨々 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/10/16 21:32:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\konko_000\Downloads\OTL.exe
PRC - [2015/10/12 09:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2015/10/12 09:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2015/09/24 11:34:44 | 000,815,944 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/08/07 20:06:30 | 002,634,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/08/07 20:06:30 | 001,871,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015/04/26 14:02:14 | 000,043,816 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2015/04/26 14:01:50 | 000,043,816 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
PRC - [2015/03/20 18:12:26 | 000,060,712 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
PRC - [2014/01/02 14:26:44 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) -- C:\Program Files (x86)\SCM\MSIService.exe
PRC - [2013/12/09 15:27:02 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/12/09 15:26:24 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013/12/09 15:26:24 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2013/11/21 08:31:44 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/03/08 18:04:02 | 000,181,208 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe
PRC - [2013/03/08 16:18:33 | 000,095,192 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
PRC - [2011/03/09 14:21:54 | 000,107,816 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015/10/05 01:32:01 | 002,964,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\fc3b086418e8d8807cfb6b88ccae1c64\System.IdentityModel.ni.dll
MOD - [2015/10/05 01:31:55 | 001,070,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\3d476a44c20ddf99250f3ade1b0da1da\System.ServiceModel.Web.ni.dll
MOD - [2015/10/05 01:31:42 | 000,786,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\7159bb28e23de8ed898a2acb1dbfef6c\System.ServiceModel.Internals.ni.dll
MOD - [2015/10/05 01:29:00 | 000,118,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\1c09d6db83322a23a1744d75c4836f85\SMDiagnostics.ni.dll
MOD - [2015/09/24 11:34:41 | 001,501,512 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libglesv2.dll
MOD - [2015/09/24 11:34:40 | 000,081,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\libegl.dll
MOD - [2015/09/17 00:46:49 | 012,898,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\09785c0df09bdf24e579cceaa2428fad\System.Windows.Forms.ni.dll
MOD - [2015/09/17 00:46:30 | 001,639,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\7449ed83cff59f33ab4875d4b771fe70\System.Drawing.ni.dll
MOD - [2015/08/29 07:25:04 | 007,785,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43edd630a9f8cd6ac38c527b106ec94f\System.Xml.ni.dll
MOD - [2015/08/29 07:23:59 | 019,567,616 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\662aae610c401a254416904a4861b189\System.ServiceModel.ni.dll
MOD - [2015/08/29 07:22:19 | 002,803,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ab763e7f2c7532e9fe8f587995105156\System.Runtime.Serialization.ni.dll
MOD - [2015/08/29 07:20:15 | 000,968,192 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\814dd462b742d7c16c620e79397b2463\System.Configuration.ni.dll
MOD - [2015/08/07 20:06:30 | 000,011,920 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2015/07/26 19:37:16 | 006,951,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\67bdc09fa286920c1f42f2a98c400f95\System.Core.ni.dll
MOD - [2015/07/26 19:37:11 | 010,030,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\1c5fe4cb68f67046baec4c3a854f722f\System.ni.dll
MOD - [2015/01/20 22:35:44 | 001,044,776 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2014/04/01 17:16:39 | 017,395,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c90ef9a73ea0044641d31b19023aad61\mscorlib.ni.dll
MOD - [2011/03/09 14:21:56 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2011/03/09 14:21:48 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 005,544,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 001,155,216 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2015/07/22 22:52:08 | 001,633,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2015/07/16 05:52:52 | 000,413,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe -- (USER_ESRV_SVC_WILLAMETTE)
SRV:[b]64bit:[/b] - [2015/07/16 05:52:52 | 000,413,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe -- (ESRV_SVC_WILLAMETTE)
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,366,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/07/06 17:27:18 | 000,373,704 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe -- (mfemms)
SRV:[b]64bit:[/b] - [2015/06/29 10:03:32 | 000,254,792 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2015/06/29 10:01:22 | 000,232,656 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2015/06/04 19:45:26 | 000,207,344 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe -- (mccspsvc)
SRV:[b]64bit:[/b] - [2015/05/31 04:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2015/05/13 15:00:50 | 000,754,280 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\mcafee\msc\McAPExe.exe -- (McAPExe)
SRV:[b]64bit:[/b] - [2015/05/12 22:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/05/08 00:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McOobeSv2)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:[b]64bit:[/b] - [2015/05/05 06:26:22 | 000,609,592 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\virusscan\mcods.exe -- (McODS)
SRV:[b]64bit:[/b] - [2015/02/21 08:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/12/03 10:23:27 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/29 12:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/10/29 12:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2014/10/29 11:34:51 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2014/10/29 11:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2014/10/29 11:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2014/10/29 10:48:20 | 000,166,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2014/10/29 10:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:37 | 000,131,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2014/10/29 10:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/10/29 10:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2014/10/29 10:13:24 | 000,374,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:13:02 | 000,260,608 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/10/29 10:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:57:18 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2014/10/29 09:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2014/10/29 09:46:48 | 001,348,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:35:51 | 001,668,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/03/12 14:17:58 | 000,332,528 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe -- (McAWFwk)
SRV:[b]64bit:[/b] - [2013/12/09 15:12:28 | 000,344,576 | ---- | M] (Qualcomm Atheros) [Auto | Running] -- C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe -- (Qualcomm Atheros Killer Service V2)
SRV:[b]64bit:[/b] - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2013/08/27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/08/27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/08/23 12:00:18 | 000,099,632 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV - [2015/10/12 09:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2015/10/12 09:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2015/10/09 08:02:16 | 000,838,224 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/09/25 23:47:08 | 000,178,312 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe -- (iumsvc)
SRV - [2015/08/07 20:06:30 | 001,871,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/08/01 23:21:48 | 002,007,048 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015/07/16 05:45:02 | 000,105,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe -- (SystemUsageReportSvc_WILLAMETTE)
SRV - [2015/07/09 13:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015/05/08 00:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/12/01 16:48:00 | 003,472,368 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2014/10/29 12:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/10/29 10:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 10:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2014/01/07 19:56:44 | 000,279,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014/01/02 14:26:44 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\SCM\MSIService.exe -- (Micro Star SCM)
SRV - [2013/12/09 15:27:02 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/12/09 15:26:24 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/12/09 15:26:24 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2013/12/09 13:49:02 | 000,068,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe -- (BTDevManager)
SRV - [2013/03/08 17:04:02 | 000,247,768 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe -- (CLKMSVC10_38F51D56)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 000,047,976 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:12 | 000,044,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:05 | 000,270,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:05 | 000,114,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,875,928 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,496,888 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,412,440 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeaack.sys -- (mfeaack)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,347,800 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,344,704 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,080,920 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,077,536 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2015/06/04 03:33:50 | 000,021,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\semav6msr64.sys -- (semav6msr64)
DRV:[b]64bit:[/b] - [2015/05/04 18:59:45 | 000,086,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\slzj64.sys -- (slzjs)
DRV:[b]64bit:[/b] - [2015/04/27 08:02:58 | 000,198,448 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:[b]64bit:[/b] - [2015/04/16 15:17:07 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2015/04/08 07:44:52 | 000,101,872 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfedisk.sys -- (mfedisk)
DRV:[b]64bit:[/b] - [2015/03/30 15:28:52 | 000,044,296 | -H-- | M] (LogMeIn Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Hamdrv.sys -- (Hamachi)
DRV:[b]64bit:[/b] - [2015/03/26 12:46:00 | 000,100,720 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:[b]64bit:[/b] - [2015/03/26 12:45:54 | 000,483,240 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:[b]64bit:[/b] - [2015/03/20 10:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/03/18 02:26:06 | 000,467,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2015/03/13 13:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2015/03/09 11:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/03/04 19:25:11 | 000,377,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/12/03 10:24:43 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/12/03 10:24:43 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/10/29 12:59:47 | 000,415,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/10/29 12:59:12 | 000,136,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/10/29 12:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/10/29 12:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/10/29 11:47:48 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2014/10/29 11:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2014/10/29 11:46:09 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2014/10/15 17:32:36 | 000,921,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/10/07 15:54:45 | 000,189,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/10/07 15:44:39 | 000,069,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2014/09/25 12:13:30 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/09/25 12:09:53 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb22.sys -- (xusb22)
DRV:[b]64bit:[/b] - [2014/09/24 15:48:42 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/08/15 23:35:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:33 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV:[b]64bit:[/b] - [2013/12/30 14:06:30 | 000,450,520 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2013/12/30 14:00:26 | 004,220,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/12/27 08:30:20 | 000,038,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/12/27 08:30:20 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013/12/09 15:26:24 | 000,100,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013/12/07 11:32:06 | 000,556,248 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtkBtfilter.sys -- (RtkBtFilter)
DRV:[b]64bit:[/b] - [2013/11/22 12:03:02 | 002,987,224 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlane.sys -- (RTWlanE)
DRV:[b]64bit:[/b] - [2013/11/21 08:31:28 | 000,632,168 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2013/11/08 09:45:34 | 000,080,592 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bwcW8x64.sys -- (BfLwf)
DRV:[b]64bit:[/b] - [2013/10/18 15:12:34 | 000,444,632 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPer.sys -- (RTSPER)
DRV:[b]64bit:[/b] - [2013/08/23 12:00:22 | 000,382,768 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2013/08/23 07:50:08 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 21:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 21:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 17:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/13 08:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/10 09:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/31 03:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/26 04:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/06/18 23:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2013/03/20 15:50:44 | 000,163,536 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e22w8x64.sys -- (Ke2200)
DRV:[b]64bit:[/b] - [2009/11/18 08:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:[b]64bit:[/b] - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{E46E5E13-B69A-4640-BC06-3DA1EE3A74CA}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{FD0909B5-A62A-48F2-833C-E119A83650B3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxGame: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxjMid: C:\ProgramData\NexonJP\NGM\npNxjMid.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangdiagnostic-1: C:\GameOn\Common files\nppmangdiagnostic.dll (gameon)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangsupport-1: C:\GameOn\Common files\nppmangsupport.dll (gameon)
FF - HKLM\Software\MozillaPlugins\sega2: C:\sega\Common files 2\npsegaipcp2.dll (SEGA Corporation)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\konko_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2015/07/17 21:13:45 | 000,000,000 | ---D | M]
  • konko_
  • 2015/10/16 (Fri) 22:16:33
返信フォームへ 
OTLログ2
[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekecocnhcgghjgbihpbgdimpobbkfpe\1.0.0.6_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2013/08/22 22:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [BtServer] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe (Realtek Semiconductor Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Radio Manager] C:\Program Files (x86)\SCM\Radio Manager.exe (MSI)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SCM] C:\Program Files (x86)\SCM\SCM.exe (MSI)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\CyberLink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Sound Blaster Cinema] C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-440866192-958574772-1456191340-1002..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-440866192-958574772-1456191340-1002..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKU\S-1-5-21-440866192-958574772-1456191340-1002..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.)
O4 - HKU\S-1-5-21-440866192-958574772-1456191340-1002..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKU\S-1-5-21-440866192-958574772-1456191340-1002..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: clonewarsadventures.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: freerealms.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: soe.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: sony.com ([]* in 信頼済みサイト)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{073DB94C-00BE-415A-99A2-7DBE04333349}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{75A55AD7-0B4F-4B2E-AB64-5F002D04682D}: DhcpNameServer = 192.168.10.1
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{35876786-956e-11e4-8257-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{35876786-956e-11e4-8257-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\setup.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {78E345F7-E976-3595-9C30-2458D6A8EC32} - .NET Framework
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\Windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.101\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EC43E638-09F0-38CC-A585-72FCCDDF035C} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/10/16 21:29:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\マカフィー
[2015/10/13 21:24:27 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Malwarebytes
[2015/10/13 21:23:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/10/12 05:21:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/10/08 21:25:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu
[2015/10/06 01:48:42 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Geek Uninstaller
[2015/10/06 01:35:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/10/06 01:35:13 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Sun
[2015/10/06 01:35:13 | 000,000,000 | ---D | C] -- C:\Users\konko_000\.oracle_jre_usage
[2015/10/06 01:34:18 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Oracle
[2015/10/06 01:31:46 | 000,097,888 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015/10/05 22:40:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/10/05 22:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/10/05 22:27:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2015/10/04 21:34:28 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Opera Software
[2015/10/04 21:33:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2015/10/01 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\konko_000\Documents\DungeonStriker
[2015/09/30 22:08:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DungeonStriker
[2015/09/30 21:49:56 | 000,000,000 | ---D | C] -- C:\dgs
[2015/09/30 21:48:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dmmgames
[2015/09/24 20:49:14 | 000,000,000 | ---D | C] -- C:\Users\konko_000\Documents\Games for Windows - LIVE Demos
[2015/09/24 20:48:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2015/09/23 18:11:14 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Local\Fallout3
[2015/09/23 18:11:00 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive
[2015/09/23 18:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
[2015/09/22 04:38:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAOC
[2015/09/22 04:38:39 | 000,000,000 | ---D | C] -- C:\WILLOO
[2015/09/22 04:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XAOC
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/10/16 21:28:05 | 000,000,702 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/10/16 21:27:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/10/15 23:06:00 | 000,000,706 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/10/15 21:38:37 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/10/15 21:38:33 | 2508,976,127 | -HS- | M] () -- C:\hiberfil.sys
[2015/10/07 21:26:00 | 000,000,296 | ---- | M] () -- C:\task.vbs
[2015/10/06 02:17:58 | 000,346,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/10/06 01:34:55 | 000,097,888 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015/10/05 22:27:59 | 000,001,625 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/10/04 21:37:25 | 000,001,012 | ---- | M] () -- C:\Windows\tasks\sZdpB6bHP0jLydM.job
[2015/09/30 21:48:37 | 000,000,822 | ---- | M] () -- C:\Users\konko_000\Desktop\DMM ゲームランチャー.lnk
[2015/09/22 04:54:44 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\XAOC.lnk
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/10/07 21:26:00 | 000,000,296 | ---- | C] () -- C:\task.vbs
[2015/10/05 22:27:59 | 000,001,625 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/10/04 21:37:25 | 000,001,012 | ---- | C] () -- C:\Windows\tasks\sZdpB6bHP0jLydM.job
[2015/09/30 21:48:37 | 000,000,822 | ---- | C] () -- C:\Users\konko_000\Desktop\DMM ゲームランチャー.lnk
[2015/09/30 21:48:37 | 000,000,822 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DMM ゲームランチャー.lnk
[2015/09/22 04:54:44 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\XAOC.lnk
[2015/08/27 22:24:27 | 037,819,000 | ---- | C] () -- C:\Windows\SysWow64\nvcompiler.dll
[2015/06/07 14:16:41 | 000,004,096 | ---- | C] () -- C:\Windows\SysWow64\ntwdblib.dll
[2015/04/19 21:20:16 | 000,005,872 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\sZdpB6bHP0jLydM
[2015/03/07 03:50:54 | 000,107,008 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2015/03/07 03:48:54 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2015/02/13 18:45:48 | 000,217,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2015/02/13 18:45:47 | 000,351,232 | ---- | C] () -- C:\Windows\SysWow64\UNLHA32.DLL
[2015/02/10 16:38:55 | 011,783,877 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\8.1.2.zip
[2015/01/10 12:55:17 | 000,106,377 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\icarus-dxdiag.xml
[2015/01/06 14:13:23 | 000,008,570 | ---- | C] () -- C:\Windows\SysWow64\MBCfg32.ini
[2015/01/06 14:13:23 | 000,005,856 | ---- | C] () -- C:\Windows\SysWow64\MBCfgUninstall32.ini
[2015/01/06 14:13:23 | 000,002,835 | ---- | C] () -- C:\Windows\MBCfg_SP_APOIM.ini
[2015/01/06 14:13:23 | 000,002,783 | ---- | C] () -- C:\Windows\MBCfg_APOIM.ini
[2015/01/06 14:13:23 | 000,002,747 | ---- | C] () -- C:\Windows\MBCfg_HP_APOIM.ini
[2015/01/06 14:13:22 | 000,246,272 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2015/01/06 14:13:22 | 000,074,240 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2015/01/06 14:01:46 | 001,517,972 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2015/01/06 13:57:06 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe
[2015/01/06 13:57:06 | 000,048,856 | ---- | C] () -- C:\Windows\runSW.exe
[2014/04/01 17:16:37 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/01/02 14:26:44 | 000,255,392 | ---- | C] () -- C:\Windows\SysWow64\DeviceCount.exe
[2013/12/30 14:01:02 | 000,280,064 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013/12/30 14:00:52 | 000,182,272 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/12/30 14:00:50 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2015/01/06 14:23:27 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/05/08 02:50:50 | 022,292,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/05/08 01:53:12 | 019,734,960 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2014/10/29 10:19:43 | 001,013,760 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014/10/29 09:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014/10/29 10:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2015/10/15 21:34:37 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2015/03/12 21:22:08 | 000,000,000 | -H-D | M] -- C:\dmmgames\config
[2015/09/30 22:08:23 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2015/01/06 13:53:55 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2015/10/06 22:59:08 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2015/04/10 21:34:10 | 000,000,000 | -H-D | M] -- C:\ProgramData\Apple Computer\iTunes\SC Info
[2015/01/06 15:16:18 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\BDNAV
[2015/02/24 18:37:10 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\PRINTER
[2015/02/24 18:37:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\EPSON EP-804A\Language
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2015/01/26 19:15:31 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2013/08/23 07:50:22 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2014/04/01 11:43:09 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2015/04/10 21:34:10 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Apple Computer\iTunes\SC Info
[2015/01/06 15:16:18 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\BDNAV
[2015/02/24 18:37:10 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\PRINTER
[2015/02/24 18:37:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\EPSON EP-804A\Language
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2015/01/26 19:15:31 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2013/08/23 07:50:22 | 000,000,000 | RH-D | M] -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2015/01/08 21:32:34 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData
[2015/03/27 11:35:14 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2015/03/27 11:35:14 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
[2015/04/12 21:53:09 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Media Player\アート キャッシュ
[2015/01/08 21:32:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\PrivacIE
[2015/03/31 16:48:07 | 000,000,000 | RH-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\Burn\Burn
[2015/01/08 21:48:58 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2015/01/08 21:32:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\PrivacIE\Low
[2015/02/11 01:01:53 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\NVIDIA Corporation\Shield Apps\StreamingAssets
[2015/09/23 14:38:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\osu!\Data
[2015/01/08 21:33:09 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2015/01/12 00:32:21 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2015/10/15 21:23:22 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2013/08/23 00:36:32 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2015/01/08 20:09:21 | 000,000,000 | -H-D | M] -- C:\Users\【ユーザー名】\AppData
[2015/07/24 22:34:18 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2015/02/15 21:35:15 | 000,000,000 | -H-D | M] -- C:\Windows\msdownld.tmp
[2015/01/08 20:16:29 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2015/01/08 20:13:15 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/10/16 21:28:05 | 000,000,702 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/10/15 23:06:00 | 000,000,706 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/10/04 21:37:25 | 000,001,012 | ---- | M] () -- C:\Windows\tasks\sZdpB6bHP0jLydM.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MQ01ABD100
Partitions: 4
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 490.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 514850816
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 13.00GB
Starting Offset: 753926144
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 918.00GB
Starting Offset: 14712569856
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2014/10/29 11:42:20 | 000,214,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2014/10/29 11:44:33 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2014/10/29 10:21:02 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:34 | 000,933,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:40 | 000,845,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2014/10/29 10:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:28 | 000,516,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2014/10/29 09:55:10 | 000,367,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:50 | 000,135,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2014/10/29 10:27:24 | 000,131,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:29 | 000,817,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:06 | 000,365,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2014/10/29 10:05:58 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:41 | 000,252,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2014/10/29 10:14:35 | 000,110,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2014/10/29 11:44:23 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2014/10/29 10:59:46 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2014/10/29 10:07:58 | 000,452,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2014/10/29 10:08:58 | 000,397,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2014/10/29 10:01:45 | 000,706,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:44 | 000,071,168 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2014/10/29 09:51:03 | 000,266,752 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/12/06 10:41:58 | 000,391,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:16 | 000,028,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2014/10/29 11:45:24 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2014/10/29 09:54:15 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2014/10/29 11:34:42 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2014/10/29 09:59:21 | 000,542,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:29 | 000,817,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:25 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2014/10/29 12:51:48 | 000,047,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2014/10/29 09:56:06 | 000,146,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:18:49 | 000,329,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2014/10/29 10:04:06 | 000,640,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2014/10/29 09:49:09 | 000,576,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2015/08/01 12:38:35 | 001,265,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2014/10/29 11:12:14 | 000,313,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2014/10/29 10:34:59 | 000,254,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:29 | 000,059,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2015/07/10 01:14:45 | 000,228,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:59:28 | 001,454,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2015/05/31 04:35:47 | 000,911,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2015/05/31 04:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
No service found with a name of SDRSVC
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/03/06 11:47:37 | 001,696,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2014/10/29 10:02:44 | 000,880,640 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:59:24 | 000,670,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2015/06/16 07:41:04 | 000,065,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2015/06/16 06:16:41 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2014/10/29 10:18:13 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2015/08/26 23:46:13 | 003,705,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2014/10/29 10:53:17 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2014/10/29 10:03:56 | 001,547,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:29 | 000,289,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[2007/11/20 23:08:08 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
[2015/09/01 20:30:30 | 019,175,912 | ---- | M] (CAPCOM CO., LTD.) -- C:\__ddo_launcher.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 220 bytes -> C:\Users\konko_000\OneDrive:ms-properties

< End of report >

ここまでがOLTです。
次のレスからExtrasを貼っていきます。
  • konko_
  • 2015/10/16 (Fri) 22:18:02
返信フォームへ 
OTLログ3
OTL Extras logfile created on: 2015/10/16 21:35:17 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\konko_000\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18036)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.92 Gb Total Physical Memory | 5.83 Gb Available Physical Memory | 73.57% Memory free
15.92 Gb Paging File | 13.21 Gb Available in Paging File | 82.98% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.81 Gb Total Space | 484.37 Gb Free Space | 52.77% Space Free | Partition Type: NTFS

Computer Name: メイン | User Name: 骨々 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\SysWow64\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\SysWow64\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0DF8C9D4-736B-4FF9-8DD3-75FCF32A51E5}" = lport=445 | protocol=6 | dir=in | app=system |
"{0F5D2249-6A37-492B-9C0F-CBA1E33402B3}" = lport=7777 | protocol=6 | dir=in | name=ポート7777 |
"{23A0DDEF-309A-4C89-8A07-F591EC3A4F69}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{26E65FAD-842F-477F-88CA-BD10DDC0C815}" = lport=137 | protocol=17 | dir=in | app=system |
"{2796FF6C-A011-4DE8-8EAB-58C8E16CDEF0}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{32A1BF12-B9F1-4C34-84B2-AC3E090BF6A4}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\tools\launcher.exe |
"{33F86C4C-6E1C-4816-81D1-A53EE41C4D14}" = rport=80 | protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{37DDE960-822E-420E-89F6-B80573CAA511}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{3F9E7C45-05AC-4F8F-B756-19A9F96AE851}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{409AFAB0-D5CB-48C1-ABFF-FA0DF9854D4B}" = rport=80 | protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\tools\launcher.exe |
"{41051A65-AD64-42DE-8812-4F268A34540F}" = rport=137 | protocol=17 | dir=out | app=system |
"{50956846-7692-4D3C-822D-84A2A4EA3092}" = rport=80 | protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.x64.exe |
"{696ADC5B-E103-4381-B344-A62AE8DA2F64}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.x64.exe |
"{70D0FFB2-65AF-4A52-85FD-9125EB45F619}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8509ED52-53B5-4188-8445-AAAF3AC25FCB}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{860A43D6-2217-4DDD-B56F-3380CFBE4478}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{910CFEAA-5F73-4B6E-BC05-037852ECAF76}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe |
"{97DDC587-C5D0-4009-8D32-89392B904B64}" = lport=138 | protocol=17 | dir=in | app=system |
"{97E78377-CF66-41E0-8DDE-175CACF2B64A}" = rport=80 | protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.exe |
"{A33D86C3-F9E6-4151-8835-B805A03ABC69}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AE7D1101-F163-4955-95D6-84AD51A7D5B5}" = lport=139 | protocol=6 | dir=in | app=system |
"{B148E26E-18CC-499E-A10B-671863C9A334}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{B6C1E4B8-24FB-439B-9DFB-7728EB4CB6D8}" = rport=139 | protocol=6 | dir=out | app=system |
"{BB354CC8-A9B6-4690-98B1-83F52FE15859}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.exe |
"{BBACAEDD-4A48-4182-8D3C-47573E60DCB7}" = rport=138 | protocol=17 | dir=out | app=system |
"{E37B091E-D5EF-4D79-BB7A-D1D39BCF3B8A}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{F10E73A3-6DBA-4A16-8589-D984F4BB3C09}" = rport=445 | protocol=6 | dir=out | app=system |
"{F1246F18-5B34-412F-AB08-F37A44BA6B26}" = rport=80 | protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{FC6062AD-BBFA-4887-87C3-0DE31E446696}" = lport=80 | protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\survarium\temp\survarium_launcher.exe |
"{FF596E78-6349-49DA-81B2-26662C525E5E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00AE65A5-5800-4641-B581-9EDD64961134}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxtitle.exe |
"{018EC12A-1E86-4947-B010-C074180B377C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\clicker heroes\clicker heroes.exe |
"{028FE905-C619-415E-AFE6-5EB3DD2AFDEF}" = dir=out | name=onenote |
"{0739E124-5378-4D53-BA2E-C7F5BD037124}" = protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\survarium\game\binaries\x86\survarium.exe |
"{07A9791D-927D-4DEC-8835-4418AA842647}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{082580C7-1927-4EBC-84A7-0C9D2F925848}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0A8A6554-66B6-4851-ABEC-5212E37253CB}" = protocol=6 | dir=in | app=c:\programdata\nexonjp\503\nmservice.exe |
"{0ABD7E8A-97C4-4B75-A550-F2FCFA3281E9}" = protocol=17 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{0B4888E3-FD25-4221-8722-FC849DC8D2EE}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxgame.exe |
"{0B6E246D-204C-49E4-A3B3-1B65142F1E09}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{0BFA7F5A-E991-4680-BCF6-4D4925F13915}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{0C2F4E7F-ED75-4495-AB3D-B8DE29919727}" = dir=out | name=onenote |
"{0C3B6FE2-F6BF-431B-A4E5-8F4D3C8F84BB}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0D1AC41D-269F-4F54-AE4A-C47D9EF8D4DC}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{0EBB43B7-9668-48ED-95B4-FF46E359B63C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\how to survive third person\howtosurvive.exe |
"{0F44F906-3387-4B82-A7E8-8CF1870E58B2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dying light\dyinglightgame.exe |
"{12540CE6-9ED4-475B-A2EA-BA8F423A68EE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\child of light\childoflight.exe |
"{1AAB1CDE-F8F2-4EDA-970E-DE6AB0D56F4F}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{1F79D20B-DB78-40BB-B2D0-8A9FE2F1F147}" = protocol=6 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{1FB91D8B-3659-46CD-9298-A0220A893FCC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe |
"{2013E298-4513-47A9-9C08-2152F7497F67}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\borderlands2.exe |
"{224F247B-7F55-4019-B647-2AC1B9687739}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deathtrap\deathtrap.exe |
"{229B4D51-CE2C-443B-BAEA-DDDAE08B18DC}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxoffline.exe |
"{23072C9F-9C6B-4C86-9267-0AB2BD2621EF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout 3 goty\falloutlauncher.exe |
"{23ECC550-8756-4317-A199-E8B3DDFDDF95}" = dir=out | name=@{microsoft.bingtravel_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{25FB59D4-7A9B-4F5C-AFE5-63627A861DD3}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{27669EAF-6417-4DEC-BC18-488C26873AEF}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{27FA07F9-7C1B-4271-9F0B-30BE4DA47926}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{28AA199D-DEFF-4DBA-8B44-C58F1C5DAC6F}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxupdater.exe |
"{2907EDC3-2AF5-47C9-B821-6607D10E103D}" = dir=in | name=onenote |
"{2992A965-134E-4D3C-BCE6-E43AECE06EB4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\prototype 2\prototype2.exe |
"{2D0BD5DE-8AE3-486B-B14B-9018639D29E0}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2D3C9F45-E058-4120-AADE-A5CA80245682}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{2F727FC2-B52B-4236-90EA-6E28D7992ACA}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\final fantasy xiv - a realm reborn\boot\ffxivlauncher.exe |
"{323B44CD-060B-43C3-8ACC-B3F419AF4F4A}" = dir=out | name=yahoo!天気・災害 |
"{328CC455-CE59-4B91-93A0-E2BEC3A9E817}" = dir=out | name=@{microsoft.bingtravel_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{3482B6F5-616A-4522-AC76-71B9CAAFD793}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\serious sam 3\bin\sam3.exe |
"{3490EDB5-4654-4D49-8332-C07E8FCF1ECF}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\how to survive third person\howtosurvive.exe |
"{35D47B31-C619-4AA6-937B-A4745A187053}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\borderlands2.exe |
"{35ED263C-AE5D-4E57-83B0-E58F2B1C554F}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxoffline.exe |
"{37C6A51F-E930-4848-A6A8-2FD0B821BF56}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{37F4C503-CB1E-4211-A818-79C358AC7727}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.exe |
"{397A28AD-E32D-4008-A722-11BF07912567}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{3BC4D1CA-13A9-449A-BEBA-9CC0FE8E4FEE}" = protocol=6 | dir=in | app=c:\hanpurple\elsword\data\x2.exe |
"{3EB4E926-2158-488A-8C5F-6C37501E2815}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warface\live\nw.exe |
"{3ED1A463-A64C-4F2E-95E7-C811AE7EDCCA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{417F2123-B86C-4831-8F9E-75DC9F48C121}" = dir=out | name=@{microsoft.zunevideo_2.6.376.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4697733E-9BB1-41A4-9C44-2A42ACFA8680}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{4B69ECA1-CF02-403B-ACE3-40805BFA9439}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\child of light\childoflight.exe |
"{4BB5F340-EDE6-4F37-A3C1-53FA9F124F81}" = dir=out | name=skype wifi |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{5978AD02-AB6B-4486-925E-0D8A28B5F59D}" = protocol=17 | dir=in | app=c:\program files (x86)\glyph\glyphclient.exe |
"{598FD5E2-6681-49C7-A198-763E5910C50C}" = protocol=6 | dir=in | app=c:\x-legend\hh\game.bin |
"{59A1F8FE-B361-44C9-8670-02B543BB2DA3}" = dir=in | name=onenote |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{612FC97E-9290-45E2-B1A0-1CF50B73968D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6297F51E-ABDF-47EE-B615-F5FA704E3D77}" = protocol=6 | dir=in | app=c:\program files (x86)\glyph\glyphclient.exe |
"{6344ABA3-A047-449E-9546-282B9D849CBC}" = protocol=6 | dir=in | app=c:\hanpurple\dnest\dragonnest.exe |
"{672726D8-DB6E-4E1B-8DF9-847A3C44A76E}" = dir=out | name=@{microsoft.bingnews_3.0.4.213_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{6C448A0A-8746-44AE-A840-83C7432DA8F8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crypt of the necrodancer\necrodancer.exe |
"{6CABA1CC-2246-4589-B0C7-CD66ADCFD602}" = dir=out | name=@{microsoft.bingfinance_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{6E12301C-E2D7-43FE-9380-45C79C2ECAE9}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6F5403B8-73AA-4F9F-BC84-E276B3225B12}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{70C482D7-DD60-41AA-9490-E632555B31EE}" = dir=out | name=@{microsoft.bingnews_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{71CE2300-8612-42A4-A8AC-183AED0058DB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\child of light\childoflight.exe |
"{7225C7A9-0B4B-4EDF-89ED-FA3F0B5666C9}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{76596A6F-2031-4293-8BF5-D201AAB091BF}" = dir=out | name=@{microsoft.bingsports_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{79EE19E2-6BC1-47A2-A2B9-C14D3FB80D93}" = dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{7A224E97-AE2B-4FF4-8A41-E13B550B4A48}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\deathtrap\deathtrap.exe |
"{7A8C589B-D3D7-43FD-B35A-393FE96BBB39}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{7D4B69C6-5DE8-4EFF-8318-FBE31472BFC7}" = dir=out | name=skype |
"{806B4A46-A699-4AD0-801A-1143C7B3B49C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{81889C7F-7E72-4B2F-868D-DFE81263DAF4}" = protocol=17 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.exe |
"{88093995-34DE-4235-8BDB-D00852CDD73B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crypt of the necrodancer\necrodancer.exe |
"{8845F805-2172-4D3C-845A-3BDED3DF0422}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{8DA11F78-817D-48C0-B5E0-116A41D4F0CA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe |
"{8E260313-0130-410D-A627-2C5008BE2678}" = protocol=17 | dir=in | app=c:\programdata\nexonjp\503\nmservice.exe |
"{91562AA4-C09A-4B96-96B8-B8FFB2B923E9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\timeclickers\timeclickers.exe |
"{91A467B8-2939-40FF-B53B-DB531760A206}" = protocol=17 | dir=out | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.x64.exe |
"{91F68935-69AA-4647-B734-1FF2F09E4739}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\fallout 3 goty\falloutlauncher.exe |
"{93F1EDE8-F2A8-48A9-967C-575FDC4AFC61}" = dir=out | name=@{microsoft.zunemusic_2.6.343.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{951AF815-FA7D-451C-9836-68E50089F48E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dying light\dyinglightgame.exe |
"{99B4E2B9-CE94-4492-8892-477F303F4AE0}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{9B4D8E66-D8D1-4CF6-80AF-D66FC7334B49}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe |
"{9C5BE85A-2A42-48A8-82CA-BB643110FF77}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\survarium\temp\survarium_updater.exe |
"{9CA7F512-3BE9-4197-BAD6-2F2AABEF9C15}" = dir=in | name=skype |
"{9D578D5F-BEA9-409D-BEC7-7450355A3843}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{9D61CDF2-C176-47EF-874F-A256E7D7FD1A}" = dir=in | app=c:\program files (x86)\max driver updater\maxdu.exe |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9EC6610F-2556-430E-A8BA-3C8A1030062F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{9F285C84-A798-41D9-8445-AA2A4592A03C}" = protocol=17 | dir=out | app=c:\program files (x86)\steam\steamapps\common\survarium\temp\survarium_updater.exe |
"{9FD5F6C2-5BDB-4347-80EC-67A1E8F3E0DF}" = protocol=17 | dir=in | app=c:\x-legend\hh\game.bin |
"{A05BFAFE-A819-48F1-8927-1F50E683273D}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\final fantasy xiv - a realm reborn\boot\ffxivlauncher.exe |
"{A14EDC60-76CF-4BF6-B9DB-71DF7F2E8171}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warframe\warframe.x64.exe |
"{A1C422AD-74ED-46F4-80BF-247499E98BCA}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{A7023848-E5A7-459C-A044-4995B5DB4003}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\serious sam 3\bin\sam3.exe |
"{AD6E2F7B-E3AB-478C-8E37-073B66702AA9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\survarium\temp\survarium_updater.exe |
"{AF707E63-3DE0-47F8-9906-2DEAC11B16BC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\warface\live\nw.exe |
"{B0DC7702-DD83-4C64-B8D0-4F2BA7528CE2}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxboot.exe |
"{B233D866-699C-4912-8F12-ADF9383C50E3}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\final fantasy xiv - a realm reborn\boot\ffxivboot.exe |
"{B44ED9C0-4769-4515-BB1A-00A16764B7C6}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{B4BE2E24-68BE-4B9D-AE01-5AC72940D773}" = protocol=17 | dir=in | app=c:\hanpurple\elsword\data\x2.exe |
"{B4FBF626-C671-49DC-A772-AE54D3D3957C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{B5C6DD5B-AFBC-4DCD-8A1B-F4D493849D78}" = dir=out | name=@{microsoft.bingweather_3.0.4.214_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{B67649A5-412B-4752-860A-C72566D16E21}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B68CE306-8C2E-4D57-8629-9A40FA6CFA73}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_steam.exe |
"{B70BCFFC-9BF6-407E-A397-8FE4A31D1F26}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B736A503-577E-4F8A-B220-21FD995DCD26}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\serious sam 3\bin\sam3_unrestricted.exe |
"{B9F3B74A-ABEA-4E81-9A6C-AE9D8260E8CC}" = dir=out | name=windows_ie_ac_001 |
"{BAB1DD2E-F438-4F29-849D-9B9BE96FE69C}" = dir=out | name=@{microsoft.bingfinance_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{BB6AD7BC-2D86-4B10-9C6A-FF359866B962}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxboot.exe |
"{BE80B6E1-95EA-43A4-AFDA-929226230C01}" = dir=out | name=@{microsoft.bingweather_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{C0B8BBA9-46CD-48D9-8D1E-457933901C9D}" = protocol=17 | dir=in | app=c:\hanpurple\dnest\dragonnest.exe |
"{C13424E8-EF28-4B7E-9E90-89C10D6F9F72}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{C5905A85-45FC-424D-94D0-E58C40827A94}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\how to survive third person\detect.exe |
"{CD0B3CBE-B8FC-411A-9063-018CC48B49E7}" = protocol=6 | dir=out | app=c:\program files (x86)\steam\steamapps\common\survarium\temp\survarium_updater.exe |
"{CD147D46-4EBB-4232-B77E-022C9C8A5789}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_steam.exe |
"{CEB6E8C5-6BAF-419D-979F-A948824147BF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\how to survive third person\detect.exe |
"{CFFD9825-9194-4C2A-90C2-B6230F5A3825}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxconfig.exe |
"{D0843486-0C2D-4690-B527-8A05D0D8145C}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxgame.exe |
"{D089DC4B-9FD2-475F-A27C-BAA099C848A7}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{D09BA780-162C-42FD-BFD5-459EC7F97102}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\serious sam 3\bin\sam3_unrestricted.exe |
"{D4D70B7B-BF83-453E-BC75-04AFFA58906F}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxlauncher.exe |
"{D64F35C6-14BC-43B3-8F71-30C30F344828}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D8A27B82-6269-4084-B39A-EF890B8BCE48}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{D9E49C8E-5522-41F0-BE4F-B1B57745B129}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\phantom breaker battle grounds\bin\pbbg_win32.exe |
"{DA888206-691F-4662-A1CF-FBEA81E60CC9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{DAFBAC25-946D-45C3-9684-399F3673B812}" = dir=out | name=yahoo!天気・災害 |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DC4B251B-075F-4FA6-807F-7CFFFD7774C0}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\final fantasy xiv - a realm reborn\boot\ffxivboot.exe |
"{DF947CAA-0607-4EFA-A33D-480221258F99}" = dir=out | name=@{microsoft.bingsports_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{DF99992B-8ACB-4BD1-8A1B-5D7B8B485EB2}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxtitle.exe |
"{E1486497-0EDC-44FA-9877-415A702F04EE}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxlauncher.exe |
"{E27EEC94-A05B-4A2A-B125-1AC9AE584095}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E36E978C-BBF7-4C71-B8EB-0CFF645FD3A3}" = dir=out | name=line |
"{E3A5420D-F371-44EC-B422-3804F7C4DA2A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\phantom breaker battle grounds\bin\pbbg_win32.exe |
"{E43522D8-5EB3-423C-A3E8-187D6C024835}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{E47375C6-C4C8-42F0-B0B8-C69D30B15168}" = protocol=17 | dir=out | app=c:\program files (x86)\steam\steamapps\common\survarium\game\binaries\x86\survarium.exe |
"{E4B9BF79-0081-4C3B-A934-47FF72202BB2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{E8774028-4856-4929-BDA8-088CBCB21171}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{E8DA4E15-5610-4CAB-8FDF-6401E7FBB9CF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\timeclickers\timeclickers.exe |
"{E8F85BE5-AD60-4F35-A394-EDAC9A5F9E90}" = dir=out | name=skype wifi |
"{E9D1942B-3EB2-4512-8E3B-FB1F93020B7E}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EDB583B6-9F6B-4AAD-91B2-FF62D7B59152}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{EF6AFD87-888F-4B85-ABD0-942DFCD2A1D2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\child of light\childoflight.exe |
"{F08C6377-5E15-4640-BD7C-D36AB94100E0}" = protocol=6 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\game\dqxconfig.exe |
"{F51DBF18-138A-4552-A395-65A133DF0601}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F7172A89-C74C-4E3D-8128-F8ECBFF3E497}" = protocol=17 | dir=in | app=c:\program files (x86)\squareenix\dragon quest x\boot\dqxupdater.exe |
"{F7185D8E-5518-4546-A455-45CEF017E995}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\prototype 2\prototype2.exe |
"{F7733F22-A7DB-4927-A0E9-E89EFD4FD800}" = dir=out | name=@{microsoft.zunevideo_2.6.441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F9E01C37-1EFD-45A9-B329-73708E434DCC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe |
"{FD502B43-9ED7-450A-9E86-FA3EAA1EBF0C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\clicker heroes\clicker heroes.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0B421602-CBC4-4375-B816-9D8CD81DC698}" = Qualcomm Atheros Killer E220x Drivers
"{1B2C85A0-2B9E-4291-8B37-468D57503E98}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{27DEA29A-222C-45F8-B70D-0A7B303FC71B}" = Intel(R) Rapid Storage Technology
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4DF9BC73-D405-4C3B-A0EA-1E390A8AFC73}" = Update for Japanese Microsoft IME Standard Dictionary
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6692DCAF-A445-4C6B-AF31-3DD85FC06FBA}" = SCM
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{709A2D23-C25E-47B5-9268-CB6FEE648504}" = iCloud
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89E4163C-BD19-45A9-BCEB-980741786799}_is1" = LoiLo Game Recorder
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{93F2A022-6C37-48B8-B241-FFABD9F60C30}" = iTunes
"{9CD6F9C3-1D1A-4A62-880E-74FE7726CF75}" = Qualcomm Atheros Bandwidth Control Filter Driver
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA コントロール パネル 355.60
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA グラフィックス ドライバー 355.60
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.5.12.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 2.5.12.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX システム ソフトウェア 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.5.12.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.5.12.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.30
"{B5E06417-A4AC-4225-B36E-7E34C91616E7}" = Intel® Trusted Connect Service Client
"{C4123106-B685-48E6-B9BD-E4F911841EB4}" = Apple Mobile Device Support
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D7B824DE-DA32-4772-9E5E-39C5158136A7}" = Apple Application Support(64 ビット)
"{F3F11FF1-4EF7-4012-A0D7-BC89442FCA4F}" = Update for Japanese Microsoft IME Trending Words Dictionary
"{FF3BFE8F-D4B5-428A-9E62-464DCA7EBCFF}" = Qualcomm Atheros Network Manager
"5AADE1068CF70DD983F763B20CF2CAAB72883915" = Windows ドライバ パッケージ - ENE TECHNOLOGY INC. (WUDFRd) HIDClass (02/08/2013 1.1.0.0)
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-X64 11.13.5.3_WHQL
"EPSON EP-804A" = EPSON EP-804A プリンター アンインストール
"Web Amplified" = Web Amplified

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01E87699-A49D-413A-B75B-7C434FEF979C}" = Update for Japanese Microsoft IME Standard Extended Dictionary
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0FD31405-5E6C-43E7-9178-0E2D9445D38B}_is1" = 《Crystal Crest》 バージョン 1.0
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15015752-9990-4516-A2B1-93823281FB8E}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}" = Minecraft
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"{26A24AE4-039D-4CA4-87B4-2F83218060F0}" = Java 8 Update 60
"{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}" = FINAL FANTASY XIV - A Realm Reborn
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{300DCC8E-BE61-4FB5-B9D8-FDA19E3AAA38}" = ドラゴンクエストX オンライン
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{33F7A957-A66D-45A1-BADF-6576083B14E2}" = RPGツクール2000 ランタイムパッケージ
"{3EE9923D-3045-46AB-9CAA-E375993AEB4A}" = Intel(R) Driver Update Utility 2.2
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go 7
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}" = Realtek Card Reader
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}" = Microsoft Games for Windows Marketplace
"{6A0549A9-1B96-498C-ACBC-3943001FEB19}" = Skype(TM) 7.8
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6DB9EB27-FD5A-47A1-BE8B-78CA11975BA5}" = DungeonStriker
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{7DC0E3AE-AE97-44DF-928D-4CC6F8FD61B1}" = XAOC
"{81baf929-7406-459f-bc43-20de62901b05}" = osu!
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8515A2F4-5571-4F52-8085-814E30716C48}" = FMEAutomator 3
"{8801CA65-921A-4CCC-9D63-879D1D0BAA97}" = Sound Blaster Cinema
"{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink Medi@Show 6
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D8C60-A5EF-4123-B2B9-172095903AB}" = REALTEK Bluetooth Driver
"{9DAABC60-A5EF-41FF-B2B9-17329590CD5}" = REALTEK Wireless LAN Driver
"{9FB24678-AF65-4B2D-B5B0-88BAFDBC68F0}" = Dragon's Dogma Online
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = globalupdate Helper
"{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}" = Apple Application Support(32 ビット)
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer 5.5
"{B991A1BC-DE0F-41B3-9037-B2F948F706EC}" = Intel(R) Update Manager
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint 2.5
"{ca4bc3a8-b99c-4416-90d8-351a8ceab458}" = Intel Driver Update Utility
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1" = LoiLoScope 2
"{D7D86A63-3D7A-4E54-A05B-2C1D93325F3D}" = LORD of VERMILION ARENA
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD 10
"{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5
"{E3D1594B-8077-42C9-8541-B8438F52F283}" = Niconico Live Encoder
"{E3F7F270-4ADD-3DA6-8B35-A924C134D49F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}" = Qualcomm Atheros Performance Suite
"{E75B82FD-B6FD-4653-8685-F3A97BDFEA6E}" = Update for Japanese Microsoft IME Standard Dictionary
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F166676E-ACD2-43A4-88E2-8EC5E1568266}" = ニコ生デスクトップキャプチャー(XP) SEASON2
"{F18968F4-7246-4482-B375-C15064371302}" = Visual Basic 6.0 ランタイム SP6 for TTSneo
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.38 beta
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"CLOSERS" = CLOSERS
"DMMGamesLauncher" = DMM ゲームランチャー
"DMMGamesPlugin" = DMMGamesPlugin
"Glyph" = Glyph
"Google Chrome" = Google Chrome
"http://pso2.jp/appid/release_is1" = PHANTASY STAR ONLINE 2
"InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}" = CyberLink Media Suite 10
"InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = CyberLink PowerProducer 5.5
"InstallShield_{D7D86A63-3D7A-4E54-A05B-2C1D93325F3D}" = LORD of VERMILION ARENA
"League of Legends 3.0.1" = League of Legends
"Mp3tag" = Mp3tag v2.70
"MSC" = マカフィー インターネットセキュリティ
"NCLauncher_NCJapan" = NCLauncher (NCSOFT)
"Neffy" = Neffy 1,2,5,0
"Origin" = Origin
"Pmang" = Pmangインストールマネージャー
"Pmang_BlackDesert_live" = Black Desert
"Pmang_common" = Common
"Pmang_kritika" = KRITIKA
"PopupProduct" = Export Numerical Value
"RPGVXAce_RTP_is1" = RPGツクールVX Ace RTP
"RPGツクールVX RTP_is1" = RPGツクールVX RTP
"SEGA Common 2" = SEGA Common 2
"Steam" = Steam
"Steam App 105600" = Terraria
"Steam App 115320" = PROTOTYPE 2
"Steam App 22370" = Fallout 3 - Game of the Year Edition
"Steam App 239140" = Dying Light
"Steam App 247080" = Crypt of the NecroDancer
"Steam App 256290" = Child of Light
"Steam App 310510" = Deathtrap
"Steam App 360150" = How To Survive Third Person
"Steam App 363970" = Clicker Heroes
"Steam App 41070" = Serious Sam 3: BFE
"Steam App 49520" = Borderlands 2
"Steam App 550" = Left 4 Dead 2
"Steam App 620" = Portal 2
"Unity" = Unity
"Uplay" = Uplay
"やりますアンコちゃん" = やります!アンコちゃん

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Minecraft 1.8 Packages" = Minecraft 1.8 Packages
"UnityWebPlayer" = Unity Web Player

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2015/08/07 15:53:44 | Computer Name = メイン | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 14766

Error - 2015/08/08 7:10:20 | Computer Name = メイン | Source = Application Hang | ID = 1002
Description = プログラム LiveComm.exe バージョン 17.5.9600.20911 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクション
センター コントロール パネルで、問題の履歴をクリックしてください。 プロセス ID: d50 開始時刻: 01d0d1ca18abbdd6 終了時刻: 4294967295

アプリケーション
パス: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

レポート
ID: 0c9f279b-3dbe-11e5-82b9-448a5bec3578 障害が発生しているパッケージのフル ネーム: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

障害が発生しているパッケージに関連するアプリケーション
ID: ppleae38af2e007f4358a809ac99a64a67c1

Error - 2015/08/08 8:30:13 | Computer Name = メイン | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: MAPLESTORY.EXE、バージョン: 3.342.1.0、タイム スタンプ: 0x55b84543
障害が発生しているモジュール名:
MAPLESTORY.EXE、バージョン: 3.342.1.0、タイム スタンプ: 0x55b84543 例外コード: 0xc0000005 障害オフセット: 0x0000a5dc
障害が発生しているプロセス
ID: 0xb44 障害が発生しているアプリケーションの開始時刻: 0x01d0d1cceece7427 障害が発生しているアプリケーション パス: C:\Program
Files (x86)\MapleStory\MAPLESTORY.EXE 障害が発生しているモジュール パス: C:\Program Files (x86)\MapleStory\MAPLESTORY.EXE
レポート
ID: 3720ab5d-3dc9-11e5-82b9-448a5bec3578 障害が発生しているパッケージの完全な名前: 障害が発生しているパッケージに関連するアプリケーション
ID:

Error - 2015/08/08 12:55:35 | Computer Name = メイン | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2015/08/08 12:55:35 | Computer Name = メイン | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 14687

Error - 2015/08/08 12:55:35 | Computer Name = メイン | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 14687

Error - 2015/08/11 9:30:51 | Computer Name = メイン | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 2015/08/11 10:35:44 | Computer Name = メイン | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: Tap Dungeon.exe、バージョン: 1.0.0.0、タイム スタンプ: 0x559fd901
障害が発生しているモジュール名:
XSplitGameSource.dll、バージョン: 1.1.0.21、タイム スタンプ: 0x4f3d545e 例外コード: 0xc0000005 障害オフセット:
0x0000daf9 障害が発生しているプロセス ID: 0x1bf0 障害が発生しているアプリケーションの開始時刻: 0x01d0d442d0be994c 障害が発生しているアプリケーション
パス: C:\Users\KONKO_~1\AppData\Local\Temp\IXP000.TMP\Tap Dungeon.exe 障害が発生しているモジュール
パス: C:\Program Files (x86)\niwango\nicoliveenc\XSplitGameSource.dll レポート ID: 3eda42fb-4036-11e5-82b9-448a5bec3578
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2015/08/13 11:09:37 | Computer Name = メイン | Source = Application Hang | ID = 1002
Description = プログラム LiveComm.exe バージョン 17.5.9600.20911 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクション
センター コントロール パネルで、問題の履歴をクリックしてください。 プロセス ID: 1708 開始時刻: 01d0d5d956176589 終了時刻: 4294967295

アプリケーション
パス: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

レポート
ID: 4b3b6aa8-41cd-11e5-82b9-448a5bec3578 障害が発生しているパッケージのフル ネーム: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

障害が発生しているパッケージに関連するアプリケーション
ID: ppleae38af2e007f4358a809ac99a64a67c1

Error - 2015/08/13 11:12:01 | Computer Name = メイン | Source = Application Hang | ID = 1002
Description = プログラム ava.exe バージョン 1.2.1.3 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクション
センター コントロール パネルで、問題の履歴をクリックしてください。 プロセス ID: 518 開始時刻: 01d0d5da2d21c44a 終了時刻: 36 アプリケーション
パス: C:\GameOn\Alliance of Valiant Arms\Binaries\ava.exe レポート ID: 85a82f3f-41cd-11e5-82b9-448a5bec3578

障害が発生しているパッケージのフル
ネーム: 障害が発生しているパッケージに関連するアプリケーション ID:

[ ESRV_SVC_WILLAMETTE Events ]
Error - 2015/10/13 8:27:30 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/13 8:27:30 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

Error - 2015/10/15 8:20:48 | Computer Name = メイン | Source = ESRV_SVC_WILLAMETTE | ID = 2
Description =

[ System Events ]
Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =

Error - 2015/10/13 11:18:06 | Computer Name = メイン | Source = DCOM | ID = 10005
Description =


< End of report >

以上がOTLでの作業で出たログです。
  • konko_
  • 2015/10/16 (Fri) 22:21:30
返信フォームへ 
OTLで駆除を
メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commands等はOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:OTL
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: clonewarsadventures.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: freerealms.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: soe.com ([]* in 信頼済みサイト)
O33 - MountPoints2\{35876786-956e-11e4-8257-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\setup.exe"
[2015/10/13 21:24:27 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Malwarebytes
[2015/10/13 21:23:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/10/12 05:21:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/10/08 21:25:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu
[2015/10/04 21:37:25 | 000,001,012 | ---- | M] () -- C:\Windows\tasks\sZdpB6bHP0jLydM.job
[2015/04/19 21:20:16 | 000,005,872 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\sZdpB6bHP0jLydM
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{5978AD02-AB6B-4486-925E-0D8A28B5F59D}"=-
"{6297F51E-ABDF-47EE-B615-F5FA704E3D77}"=-
"{9D61CDF2-C176-47EF-874F-A256E7D7FD1A}"=-
:Files
c:\program files (x86)\glyph
c:\program files (x86)\max driver updater
:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行う前後いずれかに処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/16 (Fri) 23:36:51
返信フォームへ 
OTLログ
OTLの処置が完了しました。
現状報告ですが、広告が表示されることはなくなっておりましたが、スキャンを掛けるとウイルスが発見されたりしていたのですが、今回の作業でそれもなくなったようで。

ここからログを貼ります。
:OTL
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
IE - HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: clonewarsadventures.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: freerealms.com ([]* in 信頼済みサイト)
O15 - HKU\S-1-5-21-440866192-958574772-1456191340-1002\..Trusted Domains: soe.com ([]* in 信頼済みサイト)
O33 - MountPoints2\{35876786-956e-11e4-8257-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\setup.exe"
[2015/10/13 21:24:27 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Malwarebytes
[2015/10/13 21:23:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/10/12 05:21:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/10/08 21:25:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Baidu
[2015/10/04 21:37:25 | 000,001,012 | ---- | M] () -- C:\Windows\tasks\sZdpB6bHP0jLydM.job
[2015/04/19 21:20:16 | 000,005,872 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\sZdpB6bHP0jLydM
:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{5978AD02-AB6B-4486-925E-0D8A28B5F59D}"=-
"{6297F51E-ABDF-47EE-B615-F5FA704E3D77}"=-
"{9D61CDF2-C176-47EF-874F-A256E7D7FD1A}"=-
:Files
c:\program files (x86)\glyph
c:\program files (x86)\max driver updater
:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
  • konko_
  • 2015/10/17 (Sat) 10:59:28
返信フォームへ 
それは私がご案内したログです
そちらは私がご案内した処置案内の内容です。
処置ログをお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/17 (Sat) 22:29:52
返信フォームへ 
みるテキストファイルを間違えてました
こっちがログですね。申し訳ないです。

OTL logfile created on: 2015/10/17 10:32:35 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\konko_000\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18036)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

7.92 Gb Total Physical Memory | 5.83 Gb Available Physical Memory | 73.55% Memory free
15.92 Gb Paging File | 13.78 Gb Available in Paging File | 86.53% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.81 Gb Total Space | 475.94 Gb Free Space | 51.86% Space Free | Partition Type: NTFS

Computer Name: メイン | User Name: 骨々 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/10/16 21:32:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\konko_000\Downloads\OTL.exe
PRC - [2015/10/12 09:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2015/10/12 09:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2015/10/09 09:53:06 | 000,811,848 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015/08/07 20:06:30 | 002,634,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/08/07 20:06:30 | 001,871,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015/04/26 14:02:14 | 000,043,816 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2015/04/26 14:01:50 | 000,043,816 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
PRC - [2015/03/20 18:12:26 | 000,060,712 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
PRC - [2014/01/02 14:26:44 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) -- C:\Program Files (x86)\SCM\MSIService.exe
PRC - [2013/12/09 15:27:02 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/12/09 15:26:24 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013/12/09 15:26:24 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2013/11/21 08:31:44 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/03/08 18:04:02 | 000,181,208 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe
PRC - [2013/03/08 16:18:33 | 000,095,192 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
PRC - [2011/03/09 14:21:54 | 000,107,816 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015/10/09 09:53:02 | 001,532,744 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\libglesv2.dll
MOD - [2015/10/09 09:53:00 | 000,081,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\libegl.dll
MOD - [2015/10/05 01:32:01 | 002,964,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\fc3b086418e8d8807cfb6b88ccae1c64\System.IdentityModel.ni.dll
MOD - [2015/10/05 01:31:55 | 001,070,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\3d476a44c20ddf99250f3ade1b0da1da\System.ServiceModel.Web.ni.dll
MOD - [2015/10/05 01:31:42 | 000,786,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\7159bb28e23de8ed898a2acb1dbfef6c\System.ServiceModel.Internals.ni.dll
MOD - [2015/10/05 01:29:00 | 000,118,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\1c09d6db83322a23a1744d75c4836f85\SMDiagnostics.ni.dll
MOD - [2015/09/17 00:46:49 | 012,898,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\09785c0df09bdf24e579cceaa2428fad\System.Windows.Forms.ni.dll
MOD - [2015/09/17 00:46:30 | 001,639,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\7449ed83cff59f33ab4875d4b771fe70\System.Drawing.ni.dll
MOD - [2015/08/29 07:25:04 | 007,785,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43edd630a9f8cd6ac38c527b106ec94f\System.Xml.ni.dll
MOD - [2015/08/29 07:24:58 | 001,874,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\6281ab590224520bad7c4f5b3ef37575\System.Xaml.ni.dll
MOD - [2015/08/29 07:23:59 | 019,567,616 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\662aae610c401a254416904a4861b189\System.ServiceModel.ni.dll
MOD - [2015/08/29 07:22:19 | 002,803,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ab763e7f2c7532e9fe8f587995105156\System.Runtime.Serialization.ni.dll
MOD - [2015/08/29 07:20:15 | 000,968,192 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\814dd462b742d7c16c620e79397b2463\System.Configuration.ni.dll
MOD - [2015/08/07 20:06:30 | 000,011,920 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2015/07/26 19:37:16 | 006,951,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\67bdc09fa286920c1f42f2a98c400f95\System.Core.ni.dll
MOD - [2015/07/26 19:37:11 | 010,030,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\1c5fe4cb68f67046baec4c3a854f722f\System.ni.dll
MOD - [2015/01/20 22:35:44 | 001,044,776 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2014/04/01 17:16:39 | 017,395,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c90ef9a73ea0044641d31b19023aad61\mscorlib.ni.dll
MOD - [2011/03/09 14:21:56 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2011/03/09 14:21:48 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 005,544,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 001,155,216 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2015/07/22 22:52:08 | 001,633,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2015/07/16 05:52:52 | 000,413,848 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe -- (USER_ESRV_SVC_WILLAMETTE)
SRV:[b]64bit:[/b] - [2015/07/16 05:52:52 | 000,413,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe -- (ESRV_SVC_WILLAMETTE)
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,366,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/07/06 17:27:18 | 000,373,704 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe -- (mfemms)
SRV:[b]64bit:[/b] - [2015/06/29 10:03:32 | 000,254,792 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2015/06/29 10:01:22 | 000,232,656 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2015/06/04 19:45:26 | 000,207,344 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe -- (mccspsvc)
SRV:[b]64bit:[/b] - [2015/05/31 04:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2015/05/13 15:00:50 | 000,754,280 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\mcafee\msc\McAPExe.exe -- (McAPExe)
SRV:[b]64bit:[/b] - [2015/05/12 22:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2015/05/08 00:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McOobeSv2)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:[b]64bit:[/b] - [2015/05/06 22:58:02 | 000,340,744 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:[b]64bit:[/b] - [2015/05/05 06:26:22 | 000,609,592 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\mcafee\virusscan\mcods.exe -- (McODS)
SRV:[b]64bit:[/b] - [2015/02/21 08:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/12/03 10:23:27 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/29 12:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/10/29 12:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2014/10/29 11:34:51 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2014/10/29 11:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2014/10/29 11:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
SRV:[b]64bit:[/b] - [2014/10/29 10:48:20 | 000,166,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2014/10/29 10:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:37 | 000,131,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2014/10/29 10:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/10/29 10:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2014/10/29 10:13:24 | 000,374,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:13:02 | 000,260,608 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/10/29 10:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:57:18 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2014/10/29 09:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2014/10/29 09:46:48 | 001,348,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:35:51 | 001,668,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/03/12 14:17:58 | 000,332,528 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- c:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe -- (McAWFwk)
SRV:[b]64bit:[/b] - [2013/12/09 15:12:28 | 000,344,576 | ---- | M] (Qualcomm Atheros) [Auto | Running] -- C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe -- (Qualcomm Atheros Killer Service V2)
SRV:[b]64bit:[/b] - [2013/11/21 08:31:44 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2013/08/27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/08/27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013/08/23 12:00:18 | 000,099,632 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV - [2015/10/12 09:28:44 | 001,433,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2015/10/12 09:28:42 | 001,773,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2015/10/09 08:02:16 | 000,838,224 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/09/25 23:47:08 | 000,178,312 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe -- (iumsvc)
SRV - [2015/08/07 20:06:30 | 001,871,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/08/01 23:21:48 | 002,007,048 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2015/07/16 05:45:02 | 000,105,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe -- (SystemUsageReportSvc_WILLAMETTE)
SRV - [2015/07/09 13:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015/05/08 00:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/12/01 16:48:00 | 003,472,368 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2014/10/29 12:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/10/29 10:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 10:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2014/01/07 19:56:44 | 000,279,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014/01/02 14:26:44 | 000,160,768 | ---- | M] (Micro-Star International Co., Ltd.) [Auto | Running] -- C:\Program Files (x86)\SCM\MSIService.exe -- (Micro Star SCM)
SRV - [2013/12/09 15:27:02 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/12/09 15:26:24 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/12/09 15:26:24 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2013/12/09 13:49:02 | 000,068,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe -- (BTDevManager)
SRV - [2013/03/08 17:04:02 | 000,247,768 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe -- (CLKMSVC10_38F51D56)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 000,047,976 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2015/08/07 20:06:30 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:12 | 000,044,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:05 | 000,270,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2015/07/07 18:40:05 | 000,114,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,875,928 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,496,888 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,412,440 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeaack.sys -- (mfeaack)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,347,800 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,344,704 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,080,920 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2015/07/02 15:33:00 | 000,077,536 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2015/06/04 03:33:50 | 000,021,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\semav6msr64.sys -- (semav6msr64)
DRV:[b]64bit:[/b] - [2015/05/04 18:59:45 | 000,086,448 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\slzj64.sys -- (slzjs)
DRV:[b]64bit:[/b] - [2015/04/27 08:02:58 | 000,198,448 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:[b]64bit:[/b] - [2015/04/16 15:17:07 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2015/04/08 07:44:52 | 000,101,872 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfedisk.sys -- (mfedisk)
DRV:[b]64bit:[/b] - [2015/03/30 15:28:52 | 000,044,296 | -H-- | M] (LogMeIn Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Hamdrv.sys -- (Hamachi)
DRV:[b]64bit:[/b] - [2015/03/26 12:46:00 | 000,100,720 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:[b]64bit:[/b] - [2015/03/26 12:45:54 | 000,483,240 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:[b]64bit:[/b] - [2015/03/20 10:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2015/03/18 02:26:06 | 000,467,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2015/03/13 13:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2015/03/09 11:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2015/03/04 19:25:11 | 000,377,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/12/03 10:24:43 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/12/03 10:24:43 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/10/29 12:59:47 | 000,415,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/10/29 12:59:12 | 000,136,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/10/29 12:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/10/29 12:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/10/29 11:47:48 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2014/10/29 11:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2014/10/29 11:46:09 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2014/10/29 11:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2014/10/15 17:32:36 | 000,921,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/10/07 15:54:45 | 000,189,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/10/07 15:44:39 | 000,069,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2014/09/25 12:13:30 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/09/25 12:09:53 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb22.sys -- (xusb22)
DRV:[b]64bit:[/b] - [2014/09/24 15:48:42 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/08/15 23:35:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:33 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2014/04/01 17:16:31 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013/12/30 14:06:30 | 000,450,520 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2013/12/30 14:00:26 | 004,220,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/12/27 08:30:20 | 000,038,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/12/27 08:30:20 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013/12/09 15:26:24 | 000,100,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013/12/07 11:32:06 | 000,556,248 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtkBtfilter.sys -- (RtkBtFilter)
DRV:[b]64bit:[/b] - [2013/11/22 12:03:02 | 002,987,224 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlane.sys -- (RTWlanE)
DRV:[b]64bit:[/b] - [2013/11/21 08:31:28 | 000,632,168 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2013/11/08 09:45:34 | 000,080,592 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bwcW8x64.sys -- (BfLwf)
DRV:[b]64bit:[/b] - [2013/10/18 15:12:34 | 000,444,632 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPer.sys -- (RTSPER)
DRV:[b]64bit:[/b] - [2013/08/23 12:00:22 | 000,382,768 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2013/08/23 07:50:08 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 21:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 21:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 17:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/13 08:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/10 09:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/31 03:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/26 04:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/06/18 23:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2013/03/20 15:50:44 | 000,163,536 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e22w8x64.sys -- (Ke2200)
DRV:[b]64bit:[/b] - [2009/11/18 08:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:[b]64bit:[/b] - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{E46E5E13-B69A-4640-BC06-3DA1EE3A74CA}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{FD0909B5-A62A-48F2-833C-E119A83650B3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASBJS

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxGame: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxjMid: C:\ProgramData\NexonJP\NGM\npNxjMid.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangdiagnostic-1: C:\GameOn\Common files\nppmangdiagnostic.dll (gameon)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangsupport-1: C:\GameOn\Common files\nppmangsupport.dll (gameon)
FF - HKLM\Software\MozillaPlugins\sega2: C:\sega\Common files 2\npsegaipcp2.dll (SEGA Corporation)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\konko_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2015/07/17 21:13:45 | 000,000,000 | ---D | M]
  • konko_
  • 2015/10/17 (Sat) 23:29:40
返信フォームへ 
その2
[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekecocnhcgghjgbihpbgdimpobbkfpe\1.0.0.6_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
CHR - Extension: No name found = C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2015/10/17 10:16:10 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:[b]64bit:[/b] - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [BtServer] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe (Realtek Semiconductor Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Radio Manager] C:\Program Files (x86)\SCM\Radio Manager.exe (MSI)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SCM] C:\Program Files (x86)\SCM\SCM.exe (MSI)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\CyberLink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Sound Blaster Cinema] C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [UpdatePPShortCut] C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: sony.com ([]* in 信頼済みサイト)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{073DB94C-00BE-415A-99A2-7DBE04333349}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{75A55AD7-0B4F-4B2E-AB64-5F002D04682D}: DhcpNameServer = 192.168.10.1
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {78E345F7-E976-3595-9C30-2458D6A8EC32} - .NET Framework
ActiveX:[b]64bit:[/b] {7D715857-A67C-4C2F-A929-038448584D63} - C:\Windows\System32\ie4uinit.exe -DisableSSL3
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {EC43E638-09F0-38CC-A585-72FCCDDF035C} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/10/17 10:24:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\マカフィー
[2015/10/17 10:16:07 | 000,000,000 | ---D | C] -- C:\_OTL
[2015/10/06 01:48:42 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Geek Uninstaller
[2015/10/06 01:35:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/10/06 01:35:13 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Sun
[2015/10/06 01:35:13 | 000,000,000 | ---D | C] -- C:\Users\konko_000\.oracle_jre_usage
[2015/10/06 01:34:18 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Oracle
[2015/10/06 01:31:46 | 000,097,888 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015/10/05 22:40:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/10/05 22:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/10/05 22:27:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2015/10/04 21:34:28 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Roaming\Opera Software
[2015/10/04 21:33:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2015/10/01 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\konko_000\Documents\DungeonStriker
[2015/09/30 22:08:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DungeonStriker
[2015/09/30 21:49:56 | 000,000,000 | ---D | C] -- C:\dgs
[2015/09/30 21:48:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dmmgames
[2015/09/24 20:49:14 | 000,000,000 | ---D | C] -- C:\Users\konko_000\Documents\Games for Windows - LIVE Demos
[2015/09/24 20:48:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2015/09/23 18:11:14 | 000,000,000 | ---D | C] -- C:\Users\konko_000\AppData\Local\Fallout3
[2015/09/23 18:11:00 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive
[2015/09/23 18:11:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
[2015/09/22 04:38:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAOC
[2015/09/22 04:38:39 | 000,000,000 | ---D | C] -- C:\WILLOO
[2015/09/22 04:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\XAOC

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/10/17 10:20:35 | 000,000,702 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/10/17 10:20:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/10/17 10:18:12 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/10/17 10:18:05 | 2508,976,127 | -HS- | M] () -- C:\hiberfil.sys
[2015/10/17 10:16:10 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2015/10/17 10:06:00 | 000,000,706 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/10/07 21:26:00 | 000,000,296 | ---- | M] () -- C:\task.vbs
[2015/10/06 02:17:58 | 000,346,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015/10/06 01:34:55 | 000,097,888 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015/10/05 22:27:59 | 000,001,625 | ---- | M] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/09/30 21:48:37 | 000,000,822 | ---- | M] () -- C:\Users\konko_000\Desktop\DMM ゲームランチャー.lnk
[2015/09/22 04:54:44 | 000,000,824 | ---- | M] () -- C:\Users\Public\Desktop\XAOC.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/10/07 21:26:00 | 000,000,296 | ---- | C] () -- C:\task.vbs
[2015/10/05 22:27:59 | 000,001,625 | ---- | C] () -- C:\Users\Public\Desktop\League of Legends.lnk
[2015/09/30 21:48:37 | 000,000,822 | ---- | C] () -- C:\Users\konko_000\Desktop\DMM ゲームランチャー.lnk
[2015/09/30 21:48:37 | 000,000,822 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DMM ゲームランチャー.lnk
[2015/09/22 04:54:44 | 000,000,824 | ---- | C] () -- C:\Users\Public\Desktop\XAOC.lnk
[2015/08/27 22:24:27 | 037,819,000 | ---- | C] () -- C:\Windows\SysWow64\nvcompiler.dll
[2015/06/07 14:16:41 | 000,004,096 | ---- | C] () -- C:\Windows\SysWow64\ntwdblib.dll
[2015/03/07 03:50:54 | 000,107,008 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2015/03/07 03:48:54 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2015/02/13 18:45:48 | 000,217,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2015/02/13 18:45:47 | 000,351,232 | ---- | C] () -- C:\Windows\SysWow64\UNLHA32.DLL
[2015/02/10 16:38:55 | 011,783,877 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\8.1.2.zip
[2015/01/10 12:55:17 | 000,106,377 | ---- | C] () -- C:\Users\konko_000\AppData\Roaming\icarus-dxdiag.xml
[2015/01/06 14:13:23 | 000,008,570 | ---- | C] () -- C:\Windows\SysWow64\MBCfg32.ini
[2015/01/06 14:13:23 | 000,005,856 | ---- | C] () -- C:\Windows\SysWow64\MBCfgUninstall32.ini
[2015/01/06 14:13:23 | 000,002,835 | ---- | C] () -- C:\Windows\MBCfg_SP_APOIM.ini
[2015/01/06 14:13:23 | 000,002,783 | ---- | C] () -- C:\Windows\MBCfg_APOIM.ini
[2015/01/06 14:13:23 | 000,002,747 | ---- | C] () -- C:\Windows\MBCfg_HP_APOIM.ini
[2015/01/06 14:13:22 | 000,246,272 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2015/01/06 14:13:22 | 000,074,240 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2015/01/06 14:01:46 | 001,517,972 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2015/01/06 13:57:06 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe
[2015/01/06 13:57:06 | 000,048,856 | ---- | C] () -- C:\Windows\runSW.exe
[2014/04/01 17:16:37 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014/01/02 14:26:44 | 000,255,392 | ---- | C] () -- C:\Windows\SysWow64\DeviceCount.exe
[2013/12/30 14:01:02 | 000,280,064 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013/12/30 14:00:52 | 000,182,272 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/12/30 14:00:50 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2015/01/06 14:23:27 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/05/08 02:50:50 | 022,292,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/05/08 01:53:12 | 019,734,960 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2014/10/29 10:19:43 | 001,013,760 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014/10/29 09:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014/10/29 10:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2015/10/15 21:34:37 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2015/03/12 21:22:08 | 000,000,000 | -H-D | M] -- C:\dmmgames\config
[2015/09/30 22:08:23 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2015/01/06 13:53:55 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2015/10/06 22:59:08 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2015/04/10 21:34:10 | 000,000,000 | -H-D | M] -- C:\ProgramData\Apple Computer\iTunes\SC Info
[2015/01/06 15:16:18 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\BDNAV
[2015/02/24 18:37:10 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\PRINTER
[2015/02/24 18:37:13 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\EPSON EP-804A\Language
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2015/01/26 19:15:31 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2013/08/23 07:50:22 | 000,000,000 | RH-D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2014/04/01 11:43:09 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2015/04/10 21:34:10 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Apple Computer\iTunes\SC Info
[2015/01/06 15:16:18 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\BDNAV
[2015/02/24 18:37:10 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\PRINTER
[2015/02/24 18:37:13 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\EPSON EP-804A\Language
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2015/01/26 19:15:31 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2013/08/23 07:50:22 | 000,000,000 | RH-D | M] -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Tablet PC
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2013/08/23 00:36:30 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2015/01/08 21:32:34 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData
[2015/03/27 11:35:14 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~
[2015/03/27 11:35:14 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Feeds\{5588ACFD-6436-411B-A5CE-666AE6A92D3D}~\WebSlices~
[2015/04/12 21:53:09 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Media Player\アート キャッシュ
[2015/01/08 21:32:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\PrivacIE
[2015/03/31 16:48:07 | 000,000,000 | RH-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\Burn\Burn
[2015/01/08 21:32:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\Microsoft\Windows\PrivacIE\Low
[2015/02/11 01:01:53 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\NVIDIA Corporation\Shield Apps\StreamingAssets
[2015/09/23 14:38:37 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Local\osu!\Data
[2015/01/08 21:33:09 | 000,000,000 | -H-D | M] -- C:\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2015/01/12 00:32:21 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2015/10/15 21:23:22 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2013/08/23 00:36:32 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2015/01/08 20:09:21 | 000,000,000 | -H-D | M] -- C:\Users\拓己\AppData
[2015/07/24 22:34:18 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2015/01/08 20:16:29 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2015/01/08 20:13:15 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/10/17 10:20:35 | 000,000,702 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/10/17 10:06:00 | 000,000,706 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MQ01ABD100
Partitions: 4
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 490.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 514850816
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 13.00GB
Starting Offset: 753926144
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 918.00GB
Starting Offset: 14712569856
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2014/10/29 11:42:20 | 000,214,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2014/10/29 11:44:33 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2014/10/29 10:21:02 | 000,096,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2014/10/29 10:43:34 | 000,933,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:40 | 000,845,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2014/10/29 10:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2014/10/29 10:12:28 | 000,516,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2014/10/29 09:55:10 | 000,367,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:50 | 000,135,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2014/10/29 10:27:24 | 000,131,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:29 | 000,817,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:06 | 000,365,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2014/10/29 10:05:58 | 000,292,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:41 | 000,252,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2014/10/29 10:14:35 | 000,110,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2014/10/29 11:44:23 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2014/10/29 10:59:46 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2014/10/29 10:07:58 | 000,452,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2014/10/29 10:08:58 | 000,397,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2014/10/29 10:01:45 | 000,706,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2014/10/29 10:22:44 | 000,071,168 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2014/10/29 09:51:03 | 000,266,752 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/12/06 10:41:58 | 000,391,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:29:16 | 000,028,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2014/10/29 11:45:24 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2014/10/29 09:54:15 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2014/10/29 11:34:42 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2014/10/29 09:59:21 | 000,542,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2014/10/29 10:19:29 | 000,817,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2014/10/29 11:42:25 | 000,031,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2014/10/29 12:51:48 | 000,047,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2014/10/29 09:56:06 | 000,146,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:18:49 | 000,329,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2014/10/29 10:04:06 | 000,640,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2014/10/29 09:49:09 | 000,576,512 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2015/08/01 12:38:35 | 001,265,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2014/10/29 11:12:14 | 000,313,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2014/10/29 10:34:59 | 000,254,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2014/10/29 10:26:29 | 000,059,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2015/07/10 01:14:45 | 000,228,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2014/10/29 09:59:28 | 001,454,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2015/05/31 04:35:47 | 000,911,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2015/05/31 04:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
No service found with a name of SDRSVC
SRV:[b]64bit:[/b] - [2015/07/07 18:39:32 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2015/03/06 11:47:37 | 001,696,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2014/10/29 10:02:44 | 000,880,640 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:59:24 | 000,670,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2015/06/16 07:41:04 | 000,065,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2015/06/16 06:16:41 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2014/10/29 10:18:13 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2015/08/26 23:46:13 | 003,705,344 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2014/10/29 10:53:17 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2014/10/29 10:03:56 | 001,547,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2014/10/29 10:24:29 | 000,289,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
[2007/11/20 23:08:08 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
[2015/09/01 20:30:30 | 019,175,912 | ---- | M] (CAPCOM CO., LTD.) -- C:\__ddo_launcher.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 220 bytes -> C:\Users\konko_000\OneDrive:ms-properties

< End of report >
  • konko_
  • 2015/10/17 (Sat) 23:30:30
返信フォームへ 
それはスキャンです
押すボタンが間違っています。
前回の案内をしっかり確認し、駆除を行ってください。
  • IVNO
  • MAIL
  • 2015/10/18 (Sun) 08:18:09
返信フォームへ 
度々申し訳ないです「
これ…ですかね?
再起動時にログが出た覚えがなく、何処にファイルがあるか分かりませんでした…

All processes killed
========== OTL ==========
Service Mkd3kfNt stopped successfully!
Service Mkd3kfNt deleted successfully!
C:\Windows\SysNative\drivers\mkd3kfnt.sys moved successfully.
Service Mkd2Bthf stopped successfully!
Service Mkd2Bthf deleted successfully!
C:\Windows\SysNative\drivers\Mkd2BthF.sys moved successfully.
Service Mkd2Nadr stopped successfully!
Service Mkd2Nadr deleted successfully!
C:\Windows\SysNative\drivers\Mkd2Nadr.sys moved successfully.
HKU\S-1-5-21-440866192-958574772-1456191340-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\clonewarsadventures.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\freerealms.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-440866192-958574772-1456191340-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\soe.com\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35876786-956e-11e4-8257-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{35876786-956e-11e4-8257-806e6f6e6963}\ not found.
File "D:\setup.exe" not found.
C:\Users\konko_000\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\konko_000\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\konko_000\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\konko_000\AppData\Roaming\Malwarebytes folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows\SysNative\drivers folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows\SysNative folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows\AppPatch\Custom\Custom64 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows\AppPatch\Custom folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows\AppPatch folder moved successfully.
C:\AdwCleaner\Quarantine\C\Windows folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\KONKO_~1\AppData\Local\Temp\wizz folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\KONKO_~1\AppData\Local\Temp folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\KONKO_~1\AppData\Local folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\KONKO_~1\AppData folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\KONKO_~1 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WinZipper\icons folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WinZipper folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WeatherTool\picture\rain_7EC4187254C59C5CDF46B84BFC9BB61E folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WeatherTool\picture\clear_E8E6D5EBCB235F2F694637FB0E34307D folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WeatherTool\picture folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WeatherTool\dump folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\WeatherTool folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\mystartsearch folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft\Internet Explorer folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming\Microsoft folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Roaming folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\SearchProtect\UI\rep folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\SearchProtect\UI folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\SearchProtect\SearchProtect\rep folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\SearchProtect\SearchProtect folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\SearchProtect folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\Google\Chrome\User Data folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\Google\Chrome folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\Google folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010109\gmsd_jp_005010109\1.20 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010109\gmsd_jp_005010109 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010109 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010107\gmsd_jp_005010107\1.20 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010107\gmsd_jp_005010107 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010107\Download folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\gmsd_jp_005010107 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\bvxvexvbg folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local\03000200-1444623553-0500-0006-000700080009 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData\Local folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000\AppData folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users\konko_000 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Users folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\XWdsManProX folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\Microsoft folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\JWdsManProJ folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\iWdsManProi folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\FWdsManProF folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\cWdsManProc folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData\6WdsManPro6 folder moved successfully.
C:\AdwCleaner\Quarantine\C\ProgramData folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\uninstaller folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\style folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\layout\default folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\layout folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\language\tr_tr folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\language\pt_br folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\language\es_es folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\language\en_us folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\language folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\image\default folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper\image folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZipper folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\TH folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\JP folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\EN folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\CN folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\BR folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP\AR folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\XP folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\TH folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\picture\uninstall folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\picture folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\JP folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\EN folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\CN folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\BR folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res\AR folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750\res folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool\2.0.0.10750 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\WeatherTool folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SFK folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\uninstall folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\settings folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\protectionDS folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\protection folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\libs folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\Images folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs\Consent folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\dialogs folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI\bin folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\UI folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect\bin folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\SearchProtect folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\rep folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main\bin folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect\Main folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\SearchProtect folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RockeetDDeaaL folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PhraseProfessor_1.10.0.24\Update folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PhraseProfessor_1.10.0.24\Service folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PhraseProfessor_1.10.0.24\3rd Party Licenses folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\PhraseProfessor_1.10.0.24 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\ORBTR folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_jp_005010109 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\gmsd_jp_005010107 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update\1.3.25.0 folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate\Update folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\globalUpdate folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse\Application folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse\Crossbrowse folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Crossbrowse folder moved successfully.
C:\AdwCleaner\Quarantine\C\Program Files (x86) folder moved successfully.
C:\AdwCleaner\Quarantine\C folder moved successfully.
C:\AdwCleaner\Quarantine folder moved successfully.
C:\AdwCleaner folder moved successfully.
C:\Program Files (x86)\Baidu\update folder moved successfully.
C:\Program Files (x86)\Baidu folder moved successfully.
C:\Windows\Tasks\sZdpB6bHP0jLydM.job moved successfully.
C:\Users\konko_000\AppData\Roaming\sZdpB6bHP0jLydM moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5978AD02-AB6B-4486-925E-0D8A28B5F59D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5978AD02-AB6B-4486-925E-0D8A28B5F59D}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6297F51E-ABDF-47EE-B615-F5FA704E3D77} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6297F51E-ABDF-47EE-B615-F5FA704E3D77}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9D61CDF2-C176-47EF-874F-A256E7D7FD1A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9D61CDF2-C176-47EF-874F-A256E7D7FD1A}\ not found.
========== FILES ==========
c:\program files (x86)\Glyph\platforms folder moved successfully.
c:\program files (x86)\Glyph\Library folder moved successfully.
c:\program files (x86)\Glyph\imageformats folder moved successfully.
c:\program files (x86)\Glyph\Games folder moved successfully.
c:\program files (x86)\Glyph folder moved successfully.
File\Folder c:\program files (x86)\max driver updater not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: konko_000
->Flash cache emptied: 1309 bytes

User: Public

User: 骨々

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: konko_000
->Java cache emptied: 677295 bytes

User: Public

User: 骨々

Total Java Files Cleaned = 1.00 mb


[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: konko_000
->Temp folder emptied: 300849577 bytes
->Temporary Internet Files folder emptied: 42841198 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 386143329 bytes
->Flash cache emptied: 0 bytes

User: Public

User: 骨々

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 152510021 bytes
RecycleBin emptied: 274456 bytes

Total Files Cleaned = 842.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 10172015_101607

Files\Folders moved on Reboot...
C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • konko_
  • 2015/10/18 (Sun) 14:34:27
返信フォームへ 
HPでスキャンを
OTLの結果は良好です。
では続けてHPでスキャンを行いましょう。

以下のソフトウェアをご用意ください。

HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでGeekを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、誤検出率8割以上を誇る諸刃の剣ですので、駆除はOTLを用います。

準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
出力されたログを貼り付けてご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/18 (Sun) 17:41:19
返信フォームへ 
HPスキャン結果
HPのスキャン結果です。

Saved date: 2015/10/19 23:06:34
Files detected: 93
Files scanned: 10,536
Processes scanned: 96
Modules scanned: 891
ASEPs scanned: 527
Downloads scanned: 3
Deep analysis: 32/21
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\windows\updreg.exe
Publisher: Creative Technology Ltd.
MD5: c419df63e0121d72411285780c2fc6cc
SHA-1: 1b9682064bc79c310c7b253d0cef2f4fa440a80d
Created: 2015/01/06 14:13:26
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.CreativeTechnology.G

---------------------------------------------------------------------------------

File path: c:\program files (x86)\loilo\loiloscope 2\loiloscopelauncher.exe
Publisher:
MD5: e8ce3701a65a694fa18e9a1ed107ae00
SHA-1: 0cd9d681943ad8c6c337df3f8faf5a5c8a102c1b
Created: 2015/04/12 23:35:15
Detections: 2
Determination: Inconclusive
- Avira AntiVirus as TR/Dropper.Gen (Undefined)
- Sophos as Virus 'Mal/Slenfbot-G' (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\cyberlink\powerdvd10\pdvdlaunchpolicy.exe
Publisher: CyberLink Corp.
Signer: CyberLink Corp.
MD5: a6f41bf69b7648d3a545f08cb187378a
SHA-1: b2b07a455fdd1da15076540b8d07b215d4f858f0
Created: 2015/01/06 14:20:58
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\downloads\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2015/10/16 21:32:26
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\downloads\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/10/05 22:32:13
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\downloads\ncv_0144\plugin.dll
Publisher:
MD5: dafe6b7a5debab65fef6fdbfc10ad3a7
SHA-1: 450d80c4a1e1cb3a66b7fe8d45a3f0d846b2b82c
Created: 2015/02/20 5:28:54
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as Backdoor/MSIL.daa (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\yukkurimoviemaker_v3.4.8.1\aviutl\aviutl.exe
Publisher:
MD5: de77065ce0fde0f0f8231cfe47a49c66
SHA-1: b83bd94f594a5b2ac585aba86931a8083415f36e
Created: 2015/03/30 15:34:17
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Virus.Win32.Part.a (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\darktears\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2014/03/02 18:23:06
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\darktears\wfexit.dll
Publisher:
MD5: bb0d332a65b2a3eefb6a8734ee37a699
SHA-1: 98fff9d24e4db5da63bb33d490eb4908292895cc
Created: 2012/01/14 21:04:52
Detections: 1
Determination: Ignore detections (false positive)
- Trend Micro House Call as TROJ_GEN.F4AHZIR (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\inflationquest2_ver1.0.8\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2013/12/23 17:30:12
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\kaosufever1.11\東方混沌鉄-easy-ver1.11\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2015/04/05 17:21:35
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\kaosufever1.11\東方混沌鉄-hard-ver1.11\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2015/04/05 17:21:57
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\kirisame1.08\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2012/06/22 21:45:22
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\kumagokko2.1.02\rgss202j.dll
Publisher:
MD5: eec9a4df66d87877ccc31912d38278a2
SHA-1: b305438fbe64d4cc79f8032b040229a32192d3d0
Created: 2008/02/22 0:00:00
Detections: 1
Determination: Ignore detections (false positive)
- CMC Antivirus as Trojan.Win32.Monder.2!O (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\rpgvx_rtp202\setup.exe
Publisher: Enterbrain
MD5: ec8a0da1bcd6b7c462f9e4a83b7778fc
SHA-1: a31bc8230b9097c143aa9042d6a47b9a68efae2f
Created: 2015/03/24 16:57:30
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan[:HEUR]/Win32.Unknown (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\rxh\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2014/03/26 14:16:52
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\skt\スクッテー\game.exe
Publisher:
MD5: b1996a7e4f8c2fc8a57fe0ee35fe46bd
SHA-1: f2b6142d3e6c8ead61e984fc75acbbd74fbb5e8e
Created: 2015/03/18 14:47:50
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Malware.XPACK/RDM!5.1

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\skt\スクッテー\スクッテーおまけ\game.exe
Publisher:
MD5: b1996a7e4f8c2fc8a57fe0ee35fe46bd
SHA-1: f2b6142d3e6c8ead61e984fc75acbbd74fbb5e8e
Created: 2015/03/18 14:47:50
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Malware.XPACK/RDM!5.1

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\クリリス\kuriris.exe
Publisher:
MD5: 2c7f14fa8627c5f90cf6e422dfdc088a
SHA-1: c5df106910fe4dd775c92badcc2d1bc74d6df425
Created: 2015/04/18 14:36:16
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Malware.Obscu.Gen.009 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\desktop\フリーゲーム\ゲツヨウビ\game.exe
Publisher:
MD5: bd9ebb7d09f9111a9f0a0ba2238eaf80
SHA-1: 28c753124d845f61373be87d392ab839914ebdc5
Created: 2015/08/23 16:19:42
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.KillAV.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\ext-ms-win-cluster-clusapi-l1-1-1.dll
Publisher: Microsoft Corporation
MD5: 6f5557e3f97cb2a957da5dcdaf1e22c1
SHA-1: c2a27e776fbfc3666642425dcc5f2b34bb41cb10
Created: 2013/08/22 13:14:14
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Backdoor/Bifrose.fxu (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\kbdcherp.dll
Publisher: Microsoft Corporation
MD5: f992fe1d923f59f806442449f3ea557b
SHA-1: d216f5bc5d466c1c9d94aa57a28c5226b214bdbc
Created: 2013/08/22 13:15:06
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Kryptik.ahcy (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\project1.exe
Publisher:
MD5: e6a9d2dc046066fb0f044f1a50482a93
SHA-1: d0275f90ccbe276433087ebfc2df4a188d7281d9
Created: 2003/01/20 5:09:16
Detections: 1
Determination: Ignore detections (false positive)
- McAfee Web Gateway as Heuristic.BehavesLike.Win32.Suspicious-BAY.K

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\sfx32gui.dat
Publisher: heropa@dream.com
MD5: fbb68217acf049d29138415badb744a8
SHA-1: 7672651f93feecb30a639acca4f5aa9508134593
Created: 2015/02/13 18:45:48
Detections: 2
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)
- Zillya! Antivirus as Trojan.Obfuscated.Win32.69460 (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\nvidia corporation\geforce experience\update\gfexperience.nvstreamsrv\amd64\server\nvinject.dll
Publisher: NVIDIA Corporation
Signer: NVIDIA Corporation PE Sign v2014
MD5: 8af72680093bf0d9bff5331f6f0c1de2
SHA-1: c069dd017b93a7b5087ac1df3e3948d712a5ae43
Created: 2015/10/17 10:24:06
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Kuluoz!6.1EFA (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\nvidia corporation\geforce experience\update\gfexperience.nvstreamsrv\x86\server\nvinject.dll
Publisher: NVIDIA Corporation
Signer: NVIDIA Corporation PE Sign v2014
MD5: a810cda37542326021fa6c5b40bb8148
SHA-1: 4b3b96d7d3dc699ed902d893f1a2db1f68c9a0a1
Created: 2015/10/17 10:24:06
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Kuluoz!6.1EFA (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\oracle\java\javapath\javaws.exe
Publisher: Oracle Corporation
MD5: 7080b965215703ea1340c3c4903c7d73
SHA-1: f0d6773f819cbf62960580d68cb900ca29950c0f
Created: 2015/01/18 23:44:53
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Worm.Chir-2442 (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\nvidia corporation\geforce experience\update\gfexperience.nvstreamsrv\amd64\server\nvinject.dll
Publisher: NVIDIA Corporation
Signer: NVIDIA Corporation PE Sign v2014
MD5: 8af72680093bf0d9bff5331f6f0c1de2
SHA-1: c069dd017b93a7b5087ac1df3e3948d712a5ae43
Created: 2015/10/17 10:24:06
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Kuluoz!6.1EFA (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\nvidia corporation\geforce experience\update\gfexperience.nvstreamsrv\x86\server\nvinject.dll
Publisher: NVIDIA Corporation
Signer: NVIDIA Corporation PE Sign v2014
MD5: a810cda37542326021fa6c5b40bb8148
SHA-1: 4b3b96d7d3dc699ed902d893f1a2db1f68c9a0a1
Created: 2015/10/17 10:24:06
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Trojan.Kuluoz!6.1EFA (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\oracle\java\javapath\javaws.exe
Publisher: Oracle Corporation
MD5: 7080b965215703ea1340c3c4903c7d73
SHA-1: f0d6773f819cbf62960580d68cb900ca29950c0f
Created: 2015/01/18 23:44:53
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as Win.Worm.Chir-2442 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\appdata\local\apps\2.0\1e2hb6qk.gay\wmwrlk29.pd1\setu...app_4f7aae45cc6777cf_0000.0002_b3a6560955c70781\setup.exe
Publisher: Microsoft
Signer: App Secure LLC
MD5: 2e566f9f46e9a060acfc34d514d059c9
SHA-1: 15738fb157bc2a8d15d3c17d7db016cf06ecda99
Created: 2015/06/17 20:48:20
Detections: 12
Determination: Adware
- Reason Heuristics as PUP.Softpulse.Bundler (Adware)
- Bkav FE as W32.HfsAdware (Adware)
- McAfee as Artemis!6532D743F912 (Undefined)
- Dr.Web as Trojan.Domaiq.196 (Adware)
- McAfee Web Gateway as Artemis (Undefined)
- Baidu Antivirus as PUA.Win32.SoftPulse (Adware)
- AVG as Generic (Undefined)
- Panda Antivirus as PUP/Multitoolbar (Adware)
- VIPRE Antivirus as Threat.4150696 (Undefined)
- avast! as Win32:SoftPulse-GF [PUP] (Adware)
- Qihoo 360 Security as HEUR/QVM03.0.Malware.Gen (Undefined)
- F-Secure as Riskware.Gen:Variant.Application.Zusy (Adware)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\appdata\local\apps\2.0\1e2hb6qk.gay\wmwrlk29.pd1\setup.exe_4f7aae45cc6777cf_0000.0002_none_e843601516737635\setupwizard.exe
Publisher:
MD5: d41d8cd98f00b204e9800998ecf8427e
SHA-1: da39a3ee5e6b4b0d3255bfef95601890afd80709
Created: 2015/06/17 20:48:20
Detections: 3
Determination: Ignore detections (false positive)
- Microsoft Security Essentials as Virus:Win32/Jeefo.A (Undefined)
- F-Prot as W32/Thecid.B@mm (Undefined)
- Avira AntiVirus as TR/Trash.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\konko_000\appdata\local\osu!\bass.dll
Publisher: Un4seen Developments
MD5: d7f05d3fa5e745e02e1de41821ccccaf
SHA-1: 47369fbc53895520591a04090cbeb46013eb04e2
Created: 2015/08/01 23:20:44
Detections: 3
Determination: Ignore detections (false positive)
- Bkav FE as HW32.CDB (Undefined)
- Comodo Security as Heur.Packed.Unknown
- Antiy Labs AVL as Worm/Win32.NetSky.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\ccleaner\lang\lang-1059.dll
Publisher:
MD5: 72eeebe4ee126c315c06d5a4a98b4757
SHA-1: a34b7840e566e66fe773bcdc0071006660b526cf
Created: 2015/09/17 4:34:08
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Trojan/PSW.Kates.bw (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\difx\d29fe547208fe130\dpinst.exe
Publisher: Microsoft Corporation
MD5: 4192a5b905374e423ec1e545599aa86e
SHA-1: 908c09de28bb3cc09601da5d4e1f44becc9df18f
Created: 2015/01/06 14:05:45
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Riskware.Nandrobox (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\intel(r) rapid storage technology\pt-br\iastorutil.resources.dll
Publisher: Intel Corporation
MD5: 1ed68426e97936969c465ecedf309e52
SHA-1: abbf946b1cca89d4bf3ae4e7025c5be72c3baf20
Created: 2013/11/21 8:31:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Heur.Conjar (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\intel(r) rapid storage technology\pt-pt\iastorviewmodel.resources.dll
Publisher: Intel Corporation
MD5: 0f9e9b0519d96aa13043b84da5efb48b
SHA-1: e8fabdf4c63b03dc24af3c8d204eb62480e9e373
Created: 2013/11/21 8:31:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as MemScan:Trojan.Dropper.Agent.UZQ (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\intel(r) rapid storage technology\tr-tr\iastordatamgr.resources.dll
Publisher: Intel Corporation
MD5: ae6a5a00a801e08db3647ca17940db04
SHA-1: 2a61790a395f52a4084e2bbcd0f28cdb227c4ed6
Created: 2013/11/21 8:31:48
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Adware.Wapsx (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\mcafee\msc\compatibilitytester.exe
Publisher: McAfee, Inc.
Signer: McAfee, Inc.
MD5: f3ed4740058c6eaa215c925491820b5c
SHA-1: 34062adff2c997044d1288486292e03887faa21f
Created: 2011/09/17 18:26:44
Detections: 1
Determination: Ignore detections (false positive)
- Comodo Security as Heur.Suspicious

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\booc.exe
Publisher:
MD5: f88665501de3891af9e0d85f08554db1
SHA-1: 7d83a487e44725bed151c1a774295f554cb9afa0
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Ignore detections (false positive)
- F-Secure as Gen:Variant.Kazy.401288 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\mono.cairo.dll
Publisher:
MD5: 79f043a49aae0b567d3999e0ae3510e2
SHA-1: 3a0e99a768c6fa144b275669baadaa9a2f95e73a
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as TR/Patched.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\mono.cecil.dll
Publisher:
MD5: 257697fe947ccbb594ce15b030637ebf
SHA-1: 2e4564aa393d8d79a766501cacb844025e6708e6
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as TR/Patched.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\mono.data.sqliteclient.dll
Publisher:
MD5: 32625e7ef74852a90899ccd2e977dfd7
SHA-1: ab9080b2dc122eaacb759fcaf2c104679e6abb06
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Symmi.24148 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\mono.data.tdsclient.dll
Publisher:
MD5: 7b49bd17bba2811bbe195ef173442dd5
SHA-1: db7e2ddeebb84480c5c2c1357270bbcdff3c5ae2
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Strictor (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\mscorlib.dll
Publisher: MONO development team
MD5: 46f26aadcc3bb8fc97063f6f22c4c82c
SHA-1: 03db9d8bf745a225146c56d746c8e497de963eac
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Ramnit.C (Malware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\sgen.exe
Publisher:
MD5: 6e6813f029397f58407470f55ef93c47
SHA-1: 3d95f5c26bd407ccb3db1c252854e8ed37ccdb3c
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as TR/Dropper.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\system.web.dynamicdata.dll
Publisher: MONO development team
MD5: 223c0be4b7758f66afa37795f8555f0a
SHA-1: 191f2f0e3ff85e0efd7279a50b1ae6e33bfcf574
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\system.xml.linq.dll
Publisher: MONO development team
MD5: 469718b93e5e82ac096aef33c4ab0c77
SHA-1: 0adb006b2496191119679b1e54ae9eb7907f1dfe
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\2.0\unityscript.dll
Publisher:
MD5: bcb77af1668a83a1d57cfce4b33b42d4
SHA-1: 3b629c7118532abb8aedbeb425132b4e2beacaa3
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\unity\booc.exe
Publisher:
MD5: f88665501de3891af9e0d85f08554db1
SHA-1: 7d83a487e44725bed151c1a774295f554cb9afa0
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Ignore detections (false positive)
- F-Secure as Gen:Variant.Kazy.401288 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\unity\unityscript.dll
Publisher:
MD5: bcb77af1668a83a1d57cfce4b33b42d4
SHA-1: 3b629c7118532abb8aedbeb425132b4e2beacaa3
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\unity_web\booc.exe
Publisher:
MD5: f88665501de3891af9e0d85f08554db1
SHA-1: 7d83a487e44725bed151c1a774295f554cb9afa0
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Ignore detections (false positive)
- F-Secure as Gen:Variant.Kazy.401288 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\mono\lib\mono\unity_web\unityscript.dll
Publisher:
MD5: bcb77af1668a83a1d57cfce4b33b42d4
SHA-1: 3b629c7118532abb8aedbeb425132b4e2beacaa3
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\culevel.exe
Publisher:
MD5: 20a66499eabc542a0123d51cbf1fb77f
SHA-1: 9418d128b90d062c5d69d746479bc3899c10990f
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\microsoft.build.tasks.dll
Publisher: Mono development team
MD5: 86eed379242647d97277bb629a5eb018
SHA-1: 6dd4e8d413ec4ed93b5ae6834f64df5d05f20856
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\mono.compilerservices.symbolwriter.dll
Publisher:
MD5: c5ff5b06a0dcab3cbae30675ed56a12a
SHA-1: 5e296c4d2f55db9f44eabc83d305cd638399429e
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\mono.security.dll
Publisher: MONO development team
MD5: 870f7680532d28621861dd007eccc578
SHA-1: a38c7df55270ef01d3732aeca0dc6151cd591c54
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as PCK/Themida (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\mono.simd.dll
Publisher: MONO development team
MD5: 951cfc04aff58d57a72d54aeba5d7ab5
SHA-1: 06342d45eac2e4295d96ff6798c2863d276c341d
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\2.0\system.serviceprocess.dll
Publisher: Mono development team
MD5: 2f68be8f6155e13db822a61c48d9aaa4
SHA-1: c83017065c1b1157f983c862ce073a3f04d4bfba
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Adware:W32/DomaIQ (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\4.0\peapi.dll
Publisher:
MD5: 57f939dcad946bdc65fd1ed20861a86a
SHA-1: d1361e9570df5f6e96b7a2c4c77bc8f090a88558
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Mikey (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\4.0\system.web.applicationservices.dll
Publisher: Mono development team
MD5: 0f4e865ba2bdc36647ddd1ec83de6298
SHA-1: 767370bdbaefa15db0c1d233e0aebb4f5f65d346
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Adware.BrowseFox.BP (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\4.5\mono.parallel.dll
Publisher:
MD5: 2cc20fe3d0403bd33df0cd5e7aeee79f
SHA-1: 148bc7fd016bf034d24864cdbe9b3b02a50cdbbe
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as ADWARE/Adware.Gen7 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\4.5\pdb2mdb.exe
Publisher:
MD5: b62ef3a5fae8a2a5aa38a9c6caac6845
SHA-1: 080a3a6a078176d6d376e320eee76598a546ee3a
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as APPL/BoontyGames (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\4.5\system.web.applicationservices.dll
Publisher: Mono development team
MD5: 1e183afca9b652c337dd4080b21e1c88
SHA-1: d17a1f04387d82c614895f9f6d1502977f77481d
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\microsoft.build.tasks\2.0.0.0__b03f5f7f11d50a3a\microsoft.build.tasks.dll
Publisher: Mono development team
MD5: 86eed379242647d97277bb629a5eb018
SHA-1: 6dd4e8d413ec4ed93b5ae6834f64df5d05f20856
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\mono.compilerservices.symbolwriter\2.0.0.0__0738eb9f132ed756\mono.compilerservices.symbolwriter.dll
Publisher:
MD5: c5ff5b06a0dcab3cbae30675ed56a12a
SHA-1: 5e296c4d2f55db9f44eabc83d305cd638399429e
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\mono.parallel\4.0.0.0__0738eb9f132ed756\mono.parallel.dll
Publisher:
MD5: 2cc20fe3d0403bd33df0cd5e7aeee79f
SHA-1: 148bc7fd016bf034d24864cdbe9b3b02a50cdbbe
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as ADWARE/Adware.Gen7 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\mono.security\2.0.0.0__0738eb9f132ed756\mono.security.dll
Publisher: MONO development team
MD5: 870f7680532d28621861dd007eccc578
SHA-1: a38c7df55270ef01d3732aeca0dc6151cd591c54
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as PCK/Themida (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\mono.simd\2.0.0.0__0738eb9f132ed756\mono.simd.dll
Publisher: MONO development team
MD5: 951cfc04aff58d57a72d54aeba5d7ab5
SHA-1: 06342d45eac2e4295d96ff6798c2863d276c341d
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Sality.AG (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\system.serviceprocess\2.0.0.0__b03f5f7f11d50a3a\system.serviceprocess.dll
Publisher: Mono development team
MD5: 2f68be8f6155e13db822a61c48d9aaa4
SHA-1: c83017065c1b1157f983c862ce073a3f04d4bfba
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Adware:W32/DomaIQ (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\monobleedingedge\lib\mono\gac\system.web.applicationservices\4.0.0.0__31bf3856ad364e35\system.web.applicationservices.dll
Publisher: Mono development team
MD5: 1e183afca9b652c337dd4080b21e1c88
SHA-1: d17a1f04387d82c614895f9f6d1502977f77481d
Created: 2015/02/25 1:32:06
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\metrosupport\players\windows80\x86\release\unityengineproxy.dll
Publisher:
MD5: ac0f2568f0b03f2d372d9d8ee0f73752
SHA-1: af15c2ee34f34cd43b6685ebddd09f234245d63d
Created: 2015/02/25 2:17:08
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\metrosupport\players\windows81\arm\master\unityplayer.dll
Publisher: Unity Technologies ApS
MD5: c7b04d37ca2093c67c93e1700b70df1a
SHA-1: 0dc1c205641b9fe7c47925e8c685bc9b8ed6d999
Created: 2015/02/25 2:01:34
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Ramnit.C (Malware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\metrosupport\players\windows81\arm\release\bridgeinterface.dll
Publisher:
MD5: 6d04d16520a5e0d5668fa2c897905268
SHA-1: 991ab092050aebafd17025c98deb7d41195de8f1
Created: 2015/02/25 1:51:14
Detections: 1
Determination: Inconclusive
- F-Secure as Win32.Sality.3 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\metrosupport\players\windows81\x86\debug\bridgeinterface.dll
Publisher:
MD5: 275d80ed658feb80d4e83a0fe5823d4f
SHA-1: 64f4ae481b069f9c2e361ffac44069bdd63dd0e9
Created: 2015/02/25 1:35:04
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.GameVance (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\metrosupport\players\windowsphone81\arm\master\unityplayer.dll
Publisher: Unity Technologies ApS
MD5: 2f07c0d0942dd82cbf59dc138e5e42e5
SHA-1: 049717dda272525ffe0dc10e26b7500f76b9a203
Created: 2015/02/25 3:03:08
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as W32/Ramnit.C (Malware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\webglsupport\buildtools\emscripten_win\python\2.7.5.3_64bit\pythoncomloader27.dll
Publisher:
MD5: 135504a2183a689a5ca8d8a0206c6ce4
SHA-1: a1089f4b7bd15c8dcebd52ed9bccf83576e6a5dc
Created: 2015/02/05 1:02:14
Detections: 1
Determination: Inconclusive
- Emsisoft Anti-Malware as Win32.Almanahe (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\windowsstandalonesupport\variations\glesemulator\gles2\libgles_cm.dll
Publisher:
MD5: ed3d4ea15270774cb4d5f44e424bf61b
SHA-1: 596567766a75bf67a5dff364ec36b06c5efe156c
Created: 2015/02/12 7:33:22
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\playbackengines\wp8support\tools\serializationweaver\unity.ceciltools.dll
Publisher: Microsoft
MD5: d6db821233c8f4866f33b4d1db769086
SHA-1: 2d5f21e3b5899a07c044ccfdbd5296298cd1eed9
Created: 2015/02/25 1:46:36
Detections: 1
Determination: Inconclusive
- F-Secure as Riskware.Application.Bundler.Firseria (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\tools\mono.cecil.dll
Publisher:
MD5: 257697fe947ccbb594ce15b030637ebf
SHA-1: 2e4564aa393d8d79a766501cacb844025e6708e6
Created: 2015/02/25 1:32:00
Detections: 1
Determination: Inconclusive
- Avira AntiVirus as TR/Patched.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\tools\fsbtool\libogg.dll
Publisher:
MD5: de3aa9e2318457fb5870aaf2ed7568ca
SHA-1: 7e71d21b3e275b54e3985e174984a3b95507f1cd
Created: 2015/02/25 1:31:38
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Linkury (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\tools\scriptupdater\assemblyupdater.exe
Publisher:
MD5: 748cfdcd08071f2e41982ab846f8f98f
SHA-1: 44a9463dc7bdd31ad80b3c8b947f500ba67cc9e0
Created: 2015/02/25 1:42:52
Detections: 1
Determination: Ignore detections (false positive)
- Qihoo 360 Security as HEUR/QVM03.0.Malware.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\editor\data\tools\scriptupdater\mono.cecil.dll
Publisher:
MD5: 1ebdf6846cbad9afad644848bb541f8a
SHA-1: a3457cdc9f8922d1c777c58629eb28118d9c0e73
Created: 2015/02/04 2:53:06
Detections: 1
Determination: Inconclusive
- F-Secure as Gen:Variant.Adware.Mikey (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\gspawn-win32-helper-console.exe
Publisher:
MD5: c496f6915824d265d0cda566f74c6836
SHA-1: 270dee1d5101ab147ab180861ba7acb09ae0c9fb
Created: 2012/11/27 20:56:30
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.TsCabk (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\gspawn-win32-helper.exe
Publisher:
MD5: 9731ea30dc49b5421f0061ec261e4a31
SHA-1: 84a2fa67aad57a40a113a88cab508d86e3cf2b50
Created: 2012/11/27 20:56:30
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\gtk-query-immodules-2.0.exe
Publisher:
MD5: a252e8df29e65045bf352b6ee561d1e5
SHA-1: b5a59f4affd28fd356e087adb7e731f8da40c705
Created: 2012/12/04 19:10:42
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\icsharpcode.sharpziplib.dll
Publisher:
MD5: ddc54e3434ed29725c8aadc5a273a4db
SHA-1: 3322d46722cf8f7c0f8a3f0ab8b0f704abc05e9f
Created: 2011/08/05 23:09:28
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Undefined

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\icuio48.dll
Publisher:
MD5: 38404a48044ede7761e7138eaeff6aa8
SHA-1: 4df2c23a341adca56f98462d7a82767a0061342c
Created: 2012/11/27 15:27:54
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoA (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\libgsf-1-114.dll
Publisher:
MD5: cfbccc45d656c7d6d10992932b462be6
SHA-1: f10115fd8f264201a28f5b41c4edc141ff037e3e
Created: 2012/11/27 23:37:46
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Undefined

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\librsvg-2-2.dll
Publisher:
MD5: 1ae04c176a1fc1cecb4a0b616859a2d6
SHA-1: 595529700d41c8841659d2f0d2eaad5dd0a4c415
Created: 2013/01/14 18:39:04
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\bin\pango-querymodules.exe
Publisher:
MD5: 158fc2afcdb89e8beb4d16c71b4acc01
SHA-1: 1106d7d02a409623f766e4e66e26d4789e92434f
Created: 2013/01/28 14:27:12
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.TsCabk (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\unity\monodevelop\lib\gtk-2.0\2.10.0\engines\libpixmap.dll
Publisher:
MD5: c1f17b8aa6a628fc2d5e0a21068120cf
SHA-1: 8253890737856c837ef6b708eac4d0acbc7408e8
Created: 2012/12/04 19:10:42
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

  • konko_
  • 2015/10/19 (Mon) 23:11:48
返信フォームへ 
HPとOTLで処置を
ログを確認いたしました。
本来ならOTLのみで処置をするところなのですが、
ファイル名が長過ぎて中略されているためにOTLで処置できません。
HPから処置を行うことにしましょう。

HPを起動させ、Scanを行ってください。
結果が表示されましたら、Adwareの項目にある以下の項目に対して処置を行ってください。

setup.exe

以下の場所に保存されているファイルとなります。
c:\users\konko_000\appdata\local\apps\2.0\1e2hb6qk.gay\wmwrlk29.pd1\setu...app_4f7aae45cc6777cf_0000.0002_b3a6560955c70781\setup.exe
ActionをクリックしてRemoveを押してください。
削除が開始されますので、完了するまでお待ちください。
削除が完了しましたら、HPを終了させてください。
HPは不要ですので、導入時の指示に従って削除なされてください。

メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commands等はOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:Files
c:\users\konko_000\appdata\local\apps\2.0\1e2hb6qk.gay\wmwrlk29.pd1\setup.exe_4f7aae45cc6777cf_0000.0002_none_e843601516737635\setupwizard.exe
:Commands
[purity]
[resethosts]
[emptyflash]
[emptyjava]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行う前後いずれかに処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
  • IVNO
  • MAIL
  • 2015/10/20 (Tue) 03:36:54
返信フォームへ 
OTLログ
作業を完了したのでログを貼ります。

All processes killed
========== FILES ==========
c:\users\konko_000\appdata\local\apps\2.0\1e2hb6qk.gay\wmwrlk29.pd1\setup.exe_4f7aae45cc6777cf_0000.0002_none_e843601516737635\SetupWizard.exe moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: konko_000
->Flash cache emptied: 826 bytes

User: Public

User: 骨々

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: konko_000
->Java cache emptied: 0 bytes

User: Public

User: 骨々

Total Java Files Cleaned = 0.00 mb


[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: konko_000
->Temp folder emptied: 12691720 bytes
->Temporary Internet Files folder emptied: 537169 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 130751688 bytes
->Flash cache emptied: 0 bytes

User: Public

User:骨々

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 137.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 10202015_220803

Files\Folders moved on Reboot...
C:\Users\konko_000\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • konko_
  • 2015/10/20 (Tue) 22:13:03
返信フォームへ 
状況報告をお願いいたします
処置は正常に完了した模様です。
では見直しを行う前に、PCの問題点等の確認をしたいと思います。
現状でどのような点が問題となっているでしょうか。
  • IVNO
  • MAIL
  • 2015/10/21 (Wed) 15:39:38
返信フォームへ 
現状報告
最初のOTLの駆除作業後はトロイの木馬が検出されたり、広告が表示されたり等はなく、動画等の閲覧やsteamのゲームをする際にも何か問題が発生することもなく快適に過ごせています。
  • konko_
  • 2015/10/21 (Wed) 19:47:30
返信フォームへ 
様子見後に見直しを行いましょう
現段階では異常がないとのことですので、このまま1週間程度の様子見をお願いいたします。
様子見期間中はできる限り1日1回はお手持ちのすべてのブラウザで動作確認をお願いいたします。
様子見期間が終了するか、あるいは異常が確認できた場合いずれにおいても、
HJTのログ、CCのインストール情報ログ、同じくCCのスタートアップの各ログを取得し、
それらすべてを貼り付けてご連絡をお願いいたします。
なお、様子見終了後に再度処置を行う可能性がありますので、
悪代官の伏魔殿にて導入を指示されたソフトウェアは現状維持でお願いいたします。
ただし、削除をご案内しているものについてはこの限りではありません。
提出し終わったログファイルにつきましては削除なされて結構です。
  • IVNO
  • MAIL
  • 2015/10/22 (Thu) 02:54:08
返信フォームへ 
様子見の報告
7日以上様子見をしたところ、裏で何かが起動していることもなく、広告も表示されることは無いです。
また、懲りることなく新しく3つのゲームをインストールしたりしていますが、今のところは問題ないです。
  • konko_
  • 2015/10/30 (Fri) 00:16:40
返信フォームへ 
ログファイルがありません
様子見の結果は良好であったと言うことですね。
しかしご案内しているログファイルがありません。
ログファイルのご提示をお願いいたします。
  • IVNO
  • MAIL
  • 2015/10/30 (Fri) 16:23:33
返信フォームへ 
ログの提示
度々見落としがあり、申し訳ありません。
各ログです。

7-Zip 9.38 beta 2015/10/04
Apple Application Support(32 ビット) Apple Inc. 2015/04/10 94.2 MB 3.1.3
Apple Application Support(64 ビット) Apple Inc. 2015/04/10 107 MB 3.1.3
Apple Mobile Device Support Apple Inc. 2015/03/18 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2015/01/22 2.38 MB 2.1.3.127
Bandisoft MPEG-1 Decoder 2015/09/30
Black Desert GameOn 2015/07/18 22
Bonjour Apple Inc. 2015/01/22 2.00 MB 3.0.0.10
Borderlands 2 Gearbox Software 2015/09/27
CCleaner Piriform 2015/10/05 5.10
Child of Light Ubisoft Montréal 2015/06/13
Clicker Heroes 2015/08/02
CLOSERS SEGA Games 2015/08/22 1.0.0.0
Common GameOn 2015/02/11 12045000
Crusaders of the Lost Idols Codename Entertainment Inc. 2015/10/24
Crypt of the NecroDancer Brace Yourself Games 2015/02/02
CyberLink Media Suite 10 CyberLink Corp. 2015/01/06 1.05 GB 10.0
CyberLink PowerProducer 5.5 CyberLink Corp. 2015/01/06 168 MB 5.5.3.4118
Deathtrap NeocoreGames 2015/08/15
DMM ゲームランチャー 2015/09/30
DMMGamesPlugin 2015/09/30
Dragon's Dogma Online CAPCOM CO., LTD. 2015/08/08 71.4 MB 1.00.0000
DungeonStriker EYEDENTITY GAMES 2015/09/30 2.00.0000
Dying Light Techland 2015/05/25
EPSON EP-804A プリンター アンインストール SEIKO EPSON Corporation 2015/02/24
ETDWare PS/2-X64 11.13.5.3_WHQL ELAN Microelectronic Corp. 2015/01/06 11.13.5.3
Export Numerical Value Export Numerical Value 2015/10/12 1.0.0.0
Fallout 3 - Game of the Year Edition Bethesda Game Studios 2015/09/23
FINAL FANTASY XIV - A Realm Reborn SQUARE ENIX CO., LTD. 2015/01/08 1.0.0000
FMEAutomator 3 ぶれぼ 2015/02/03 2.27 MB 3.3.1.0
Glyph Trion Worlds, Inc. 2015/07/21 77.7 MB
Google Chrome Google Inc. 2015/07/16 46.0.2490.80
Grim Dawn Crate Entertainment 2015/10/17
Hand Of Fate Defiant Development 2015/10/25
Hangame 2015/10/21
How To Survive Third Person Eko Software 2015/09/06
iCloud Apple Inc. 2015/05/28 91.6 MB 4.1.1.53
Intel Driver Update Utility Intel 2015/08/27 19.6 MB 2.2.0.2
Intel(R) Management Engine Components Intel Corporation 2015/01/06 9.5.23.1766
Intel(R) Processor Graphics Intel Corporation 2015/01/06 10.18.10.3383
Intel(R) Rapid Storage Technology Intel Corporation 2015/01/06 12.9.0.1001
Intel(R) Update Manager Intel Corporation 2015/10/09 22.4 MB 3.1.1228
iTunes Apple Inc. 2015/04/10 233 MB 12.1.2.27
Java 8 Update 60 Oracle Corporation 2015/10/06 20.6 MB 8.0.600.27
KRITIKA GameOn 2015/02/10 43960480
League of Legends Riot Games 2015/10/05 3.0.1
Left 4 Dead 2 Valve 2015/08/21
LoiLo Game Recorder LoiLo inc. 2015/04/12 7.40 MB 1.1.0.1
LoiLoScope 2 LoiLo inc 2015/04/12 166 MB 2.5.4.2
LORD of VERMILION ARENA SQUARE ENIX CO., LTD. 2015/06/07 6.02 MB 1.0.0.0
Machina of the Planet Tree -Planet Ruler- Denneko Yuugi 2015/10/24
Magicka Arrowhead Game Studios 2015/10/17
Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 2015/09/24 31.3 MB 3.5.92.0
Microsoft Games for Windows Marketplace Microsoft Corporation 2015/09/24 6.03 MB 3.5.67.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2015/09/27 4.47 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2015/04/23 6.88 MB 8.0.59192
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2015/03/07 12.4 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2015/01/06 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2015/01/11 11.5 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2015/09/27 1.41 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2015/01/06 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2015/01/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2015/01/11 8.78 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/01/08 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2015/05/25 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2015/05/25 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2015/07/25 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2015/07/25 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 Microsoft Corporation 2015/10/22 24.2 MB 14.0.23026.0
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 Microsoft Corporation 2015/10/25 20.5 MB 14.0.23026.0
Microsoft XNA Framework Redistributable 3.1 Microsoft Corporation 2015/10/17 8.56 MB 3.1.10527.0
Microsoft XNA Framework Redistributable 4.0 Microsoft Corporation 2015/05/06 9.44 MB 4.0.20823.0
Middle-earth: Shadow of Mordor Monolith Productions, Inc. 2015/10/27
Minecraft Mojang 2015/06/23 1.22 MB 1.0.3.0
Minecraft 1.8 Packages 2015/04/07
Mp3tag v2.70 Florian Heidenreich 2015/06/28 v2.70
NCLauncher (NCSOFT) NCSOFT 2015/03/01
Neffy 1,2,5,0 CDNetworks 2015/01/08 1,2,5,0
Niconico Live Encoder niwango, inc. 2015/01/21 2.0.4
NVIDIA GeForce Experience 2.5.12.11 NVIDIA Corporation 2015/08/27 2.5.12.11
NVIDIA PhysX システム ソフトウェア 9.15.0428 NVIDIA Corporation 2015/08/27 9.15.0428
NVIDIA グラフィックス ドライバー 355.60 NVIDIA Corporation 2015/08/27 355.60
Origin Electronic Arts, Inc. 2015/01/11 9.5.3.636
osu! ppy Pty Ltd 2015/08/01 123 MB latest
PHANTASY STAR ONLINE 2 SEGA 2015/01/14 7.24 MB
Pmangインストールマネージャー GameOn,Pmang 2015/01/08 1.0.1.1
Portal 2 Valve 2015/08/23
PROTOTYPE 2 Radical Entertainment 2015/01/08
Qualcomm Atheros Performance Suite Qualcomm Atheros 2015/01/06 1.1.38.1037
REALTEK Bluetooth Driver 2015/01/06 3.800.800.121313
Realtek Card Reader Realtek Semiconductor Corp. 2015/01/06 6.2.9600.21243
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2015/01/06 6.0.1.7161
REALTEK Wireless LAN Driver 2015/01/06 1.00.0234
RPGツクール2000 ランタイムパッケージ 2015/02/13
RPGツクールVX Ace RTP Enterbrain 2015/08/23 194 MB 1.00
RPGツクールVX RTP Enterbrain 2015/08/13 42.1 MB 1.02
SCM Application 2015/01/06 4.07 MB 13.014.01026
SEGA Common 2 SEGA Games 2015/08/22 2.0.0.0
Serious Sam 3: BFE Croteam 2015/08/14
Skype Click to Call Microsoft Corporation 2015/10/15 12.9 MB 7.5.0.9082
Skype(TM) 7.12 Skype Technologies S.A. 2015/10/21 75.2 MB 7.12.101
Sound Blaster Cinema Creative Technology Limited 2015/01/06 1.00.05
Steam 2015/01/06
Steam Valve Corporation 2015/01/08 2.10.91.91
Terraria Re-Logic 2015/05/12
Unity Unity Technologies ApS 2015/03/25 5.0.0f4
Unity Web Player Unity Technologies ApS 2015/01/12 12.0 MB 4.6.1f1
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2015/01/11 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2015/09/09 41.7 MB 16.0.1404.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2015/09/09 11.6 MB 15.0.2013
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2015/05/28 9.00 KB 16.0.1515.1
Uplay Ubisoft 2015/06/13 4.3
Visual Basic 6.0 ランタイム SP6 for TTSneo ゆうと 2015/01/18 2.73 MB 1.0.0.0
Web Amplified Web Amplified 2015/10/07 732 KB 2015.10.07.111724
Windows ドライバ パッケージ - ENE TECHNOLOGY INC. (WUDFRd) HIDClass (02/08/2013 1.1.0.0) ENE TECHNOLOGY INC. 2015/01/06 02/08/2013 1.1.0.0
XAOC Winking 2015/09/22 12.8 GB 1.0.0.0
《Crystal Crest》 バージョン 1.0 GRETECH JAPAN Corp 2015/04/04 3.96 GB 1.0
やります!アンコちゃん co278640 2015/02/20
ドラゴンクエストX オンライン SQUARE ENIX CO., LTD. 2015/07/13 1.0.1.0
ニコ生デスクトップキャプチャー(XP) SEASON2 Consolas 2015/01/09 376 KB 1.16
マカフィー インターネットセキュリティ McAfee, Inc. 2015/07/11 14.0.1076
妖々剣戟夢想DL あんかけスパ 2015/10/18 765 MB

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
有効 HKCU:Run iCloudDrive Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
有効 HKCU:Run iCloudServices Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
有効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKLM:Run AirServer64 C:\Program Files\App Dynamic\AirServer\AirServer.exe
有効 HKLM:Run BDRegion cyberlink C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
有効 HKLM:Run BtServer Realtek Semiconductor Corporation "C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe"
有効 HKLM:Run CLMLServer CyberLink "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
有効 HKLM:Run ETDCtrl ELAN Microelectronics Corp. %ProgramFiles%\Elantech\ETDCtrl.exe
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\Windows\system32\hkcmd.exe"
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run IgfxTray Intel Corporation "C:\Windows\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run NvBackend NVIDIA Corporation "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\Windows\system32\igfxpers.exe"
有効 HKLM:Run Radio Manager MSI C:\Program Files (x86)\SCM\Radio Manager.exe
有効 HKLM:Run RemoteControl10 CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
有効 HKLM:Run RTHDVCPL Realtek Semiconductor "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
有効 HKLM:Run SCM MSI C:\Program Files (x86)\SCM\SCM.exe
有効 HKLM:Run Sound Blaster Cinema Creative Technology Ltd "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run UpdatePPShortCut CyberLink Corp. "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
有効 HKLM:Run UpdReg Creative Technology Ltd. C:\Windows\UpdReg.EXE
有効 Startup Common Killer Network Manager.lnk Flexera Software LLC C:\Windows\Installer\{FF3BFE8F-D4B5-428A-9E62-464DCA7EBCFF}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe

有効 App Gmail 8.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
有効 App Google Search 0.0.0.60 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0
有効 App Google ドライブ 14.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 Extension Adblock Plus 1.9.3 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0
無効 Extension dmm_trigger 1.0.0.6 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aekecocnhcgghjgbihpbgdimpobbkfpe\1.0.0.6_0
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension Google ドキュメント オフライン 0.5 ユーザー 1 C:\Users\konko_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0

有効 Task Apple Diagnostics Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task McAfee Remediation (Prepare) McAfee, Inc. C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
無効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1001
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-500
有効 Task WpsUpdateTask_Administrator C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task WpsUpdateTask_konko_000 C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
有効 Task {3DAB7F62-8633-4337-B9E6-10557E37CEB6} Google Inc. "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.10.80.101/ja/go/help.faq.installer?LastError=1601
有効 Task {E6124CCB-D7B6-436B-AAB1-EC961D094A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\amarecco310c\amarecco310c\AmaRecCo.exe -d C:\amarecco310c\amarecco310c
  • konko_
  • 2015/10/31 (Sat) 01:19:12
返信フォームへ 
3つログが足りませんが進めましょう
HJTのログとIEタブ、コンテキストメニューのタブのログが足りませんが、
これらは今回の更新の後で再取得と言う形にしましょう。

以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新バージョンの確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml
条項に同意しますのボタンを押して数十秒程度お待ちいただくとJavaが起動します。
Javaが旧バージョンである場合はそのまま最新バージョンのダウンロードページに移動します。
Javaが最新バージョンの場合は旧バージョンの削除画面が出現しますので、指示に従って旧バージョンを削除してください。

私の記憶が確かならば、Skypeは最新バージョンの7.13が出ていたはずです。
Skypeをご利用なら最新バージョンに更新を、ご利用にならないなら削除を行ってください。

HJTのログ、CCのインストール情報ログ、CCのスタートアップのInternetExplorerタブ、
同じくスタートアップのコンテキストメニューのログを取得し、
それらを貼り付けてご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/11/01 (Sun) 04:27:46
返信フォームへ 
大変遅くなり、申し訳ありません
ログが不足していたということで、それらを大変遅くなりましたが提出いたします。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:26:19, on 2015/11/05
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\konko_000\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\konko_000\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Sound Blaster Cinema] "C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" update "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [iCloudDrive] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_008E478AA2CC5F6E508FCBD23BF5022F] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [BingSvc] C:\Users\konko_000\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - Global Startup: Killer Network Manager.lnk = ?
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.sony.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {1DC420F0-D89A-40D0-B5CC-92B9AD19A1AC} (HGPluginJP28 Class) - http://down.hangame.co.jp/jp/dist/hgstart/HGPluginJP28.cab
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: CyberLink Product - 2015/01/06 14:21:17 (CLKMSVC10_38F51D56) - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Energy Server Service WILLAMETTE (ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Activation Service (McAWFwk) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
O23 - Service: McAfee CSP Service (mccspsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\CSP\1.5.495.0\McCSPServiceHost.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Micro Star SCM - Micro-Star International Co., Ltd. - C:\Program Files (x86)\SCM\MSIService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: Survarium-Steam Update Service - Unknown owner - C:\Program Files (x86)\Steam\steamapps\common\Survarium\game\binaries\x86\survarium_service.exe (file missing)
O23 - Service: Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE (SystemUsageReportSvc_WILLAMETTE) - Unknown owner - C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: User Energy Server Service WILLAMETTE (USER_ESRV_SVC_WILLAMETTE) - Unknown owner - C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12923 bytes

IE
無効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
無効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
無効 Helper Skype Click to Call for Internet Explorer Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
無効 Helper Skype Click to Call for Internet Explorer Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll

コンテキストメニュー
有効 Directory 7-Zip Igor Pavlov C:\Program Files (x86)\7-Zip\7-zip.dll
有効 File 7-Zip Igor Pavlov C:\Program Files (x86)\7-Zip\7-zip.dll
有効 File BtSendToMenuEx Realtek Semiconductor Corporation C:\Program Files (x86)\REALTEK\Realtek Bluetooth\DevMenuExt.dll
有効 File McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll
有効 File PhotoStreamsExt Apple Inc. C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll
有効 Folder 7-Zip Igor Pavlov C:\Program Files (x86)\7-Zip\7-zip.dll
有効 Folder McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll

以上です。
  • konko_
  • 2015/11/05 (Thu) 22:29:10
返信フォームへ 
King系の残骸掃除です
こんばんは。
見るからに怪しいIDの悪代官です。
でも日本語はもっと怪しいので安心してください(←国に帰れ

IVNOさんが都合でお休み中なので、代わりに自分がレスしますね。

続きのログも見せてもらいました。

では以下の手順で少し作業をお願いします。

CCの「スケジュール」タブを開いて、下記を右クリックから「無効」「エントリの削除」してください。
>有効 Task WpsUpdateTask_Administrator C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
>有効 Task WpsUpdateTask_konko_000 C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task

既にアンインストールしたはずのKing Officeの残骸ですが、「有効」ということはまだ生きて動いている状態です。
King系は削除してもこうやって残ってしかも動き続けるので厄介なのです。
ここで息の根を止めましょう(←この辺が悪代官

これができたら一度PC再起動後、しばらくPC状態を様子見のあとにCドライブを目視で開いて、下記のフォルダを探して、見つかれば手動で削除してください。
>C:\Program Files (x86)\Kingsoft\Kingsoft Office

探しても見つからなければスルーでいいですが、見つかったのに削除できないときはそのことを次回レスで教えてください。
また、ここでCCのスケジュールタブのログも取り直して、それも再度見せてください
  • 悪代官
  • 2015/11/06 (Fri) 21:51:29
返信フォームへ 
CCログ
CCのログはスケジュールされたタスクのみで大丈夫でしょうか?

有効 Task Apple Diagnostics Apple Inc. C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe" --automatic
有効 Task McAfee Remediation (Prepare) McAfee, Inc. C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe /prepare
有効 Task McAfeeLogon McAfee, Inc. C:\PROGRA~1\COMMON~1\McAfee\Platform\McUICnt.exe /platui
無効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1001
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-440866192-958574772-1456191340-500
有効 Task {3DAB7F62-8633-4337-B9E6-10557E37CEB6} Google Inc. "c:\program files (x86)\google\chrome\application\chrome.exe" http://ui.skype.com/ui/0/7.10.80.101/ja/go/help.faq.installer?LastError=1601
有効 Task {E6124CCB-D7B6-436B-AAB1-EC961D094A1A} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\amarecco310c\amarecco310c\AmaRecCo.exe -d C:\amarecco310c\amarecco310c
  • konko_
  • 2015/11/07 (Sat) 00:49:05
返信フォームへ 
対象のフォルダも消えましたか?
作業と報告、ご苦労様です。

>CCのログはスケジュールされたタスクのみで大丈夫でしょうか?

はい、今回はそのログだけでいいです。

先に指示した作業で、下記のエントリも消えてますね。
>有効 Task WpsUpdateTask_Administrator C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task
>有効 Task WpsUpdateTask_konko_000 C:\Program Files (x86)\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe -from=task

では目視で確認してもらった下記フォルダも消えてましたか?
>C:\Program Files (x86)\Kingsoft\Kingsoft Office

この確認結果も教えてください。
それと現在まだ異常が残っているかどうかも教えてください
  • 悪代官
  • 2015/11/07 (Sat) 21:10:31
返信フォームへ 
対象のフォルダ
対象のフォルダは確認した時にはなかったので大丈夫かと思います。

現状は特に異常は発生しておらず、快適です。
  • konko_
  • 2015/11/08 (Sun) 17:27:51
返信フォームへ 
後は自衛に注意です
レスが遅くなってすみません。
さっきまで風呂入ってました(うちの風呂には由美○おるはいません

>対象のフォルダは確認した時にはなかったので大丈夫かと思います。

>現状は特に異常は発生しておらず、快適です。

はい、それならいいですね。
では異常も消えているなら本題の処置については終了でいいでしょうが、以後の再被害を防ぐための自衛はここからが始まりということをお忘れなく。
ブラウザの設定を少し固めるだけでも、セキュリティ上の効果を高めることが可能です。
「インターネットオプション」→「プライバシー」→「詳細設定」と開いて、「自動cookie処理」と「サードパーティのcookieをブロック」にチェックして「適用」して「OK」。
これをやっておくと、多くの危険サイトからの保護にかなり有効です。
が、これもすべての危険サイトに有効でもないし、本物の危険サイトではこの程度ではまったく太刀打ちできないので、過信はしないこと。
また、「すべてのcookieをブロックする」設定にすると、プロバイダのメールボックスなどログイン必要なページに入れなくなる弊害も出るので、これは状況を考えて使い分けるといいでしょう。
安全なサイトでもcookieブロックだと閲覧や投稿ができなくなるところもあるのでこれも注意。

次に、アンチウイルスやファイアウォール等のセキュリティソフトの使い方も注意してください。
セキュリティソフトはただ入れてさえいればそれだけでフル機能を発揮するものではありません。
設定と機能をできるだけ把握して、正しく使うことが重要です。
間違った使い方すると、本来ならブロックできた感染でもあっさりスルーします。

また、いくら高性能なセキュリティソフトがあっても、ユーザーが自分から危険なサイトやファイルにアクセスしてたらまったく保護もできません。
セキュリティソフトは使い方次第でその性能を、倍にも半にも無にも変動させます。

そして百聞は一見にしかず。
現在この掲示板で継続中や解決済みの他スレもできるだけ見ておくことをおすすめします。
同様、類似、別種含めて参考になる部分は多いでしょう。

おさらいですが、悪意のプログラムは常にユーザーの誤解や隙につけ込む形での侵入や感染を狙います。
今回見つけて処置した曲者プログラム群も勝手に入ってきたのではなく、konkoさんが怪しいサイトでよくわからないまま「はい」「ok」をクリックしてしまったことでインストールされたことが主因とみられます。

ネット上にはこうやって押し売り同然のあこぎな手口が氾濫しています。
悪意のプログラムは一度PC内にインストールされると簡単にはアンインストールできないのは今回の作業でお分かりになったでしょう。
簡単に削除できてはあちらとしては商売になりませんから。
悪意のアプリを削除するには特定の手順を踏んで正しい形で削除する必要があるのです。
いわば迷路かパズルみたいに正しい経路や組み合わせを踏まないと完成しないのと同じでしょうか。
その正しい削除手順も毎回変わるのが常です。
同じ名前のアプリでも各事例ごとに違う手順でしか対処できないことも多く、ひとつの手順が共通して通用することのほうが稀なのです。

数年前に自分が首突っ込んだ↓の事例がありました。
http://detail.chiebukuro.yahoo.co.jp/qa/question_detail/q1181533751
その続きのスレ
http://detail.chiebukuro.yahoo.co.jp/qa/question_detail/q1081601475

大まかに書くと、Mirarというアプリの削除相談で、スパイウェア対策ソフトのSpybotを使えば削除できるとの触れ込みのレスを鵜呑みにして頭からSpybotを使ったため、中途半端に残ってそこから先の処置もできなくなった問題です。
正しい手順を無視して頭からいきなりセキュリティソフトで削除すればいいというのは通用しないことが顕著に現れた問題です。
結局この時の相談者さんはそれ以上の手間かけることを望まず、リカバリで対処されたようでした。

各種ツールで全自動での対処を万能と過信しないでください。
もとより悪意のマルウェアは大手各社のセキュリティソフトでの検出処置を無効回避することを最優先に考えて作成されているので、全自動での処置が通用しなくて当然です。

セキュリティの上で覚えておくべきことは多いですが、最初から全部頭に詰め込む必要はないのでひとつずつでも消化しながらPC環境とセキュリティ意識を再構築していってください。

慣れない作業を長期間頑張ってくれてお疲れ様でした。
以後は安全で快適なPCライフを
  • 悪代官
  • 2015/11/08 (Sun) 21:54:33
返信フォームへ 

返信フォーム※初心者、通りすがり等、重複しやすい名前の利用はご遠慮ください。
プレビュー (投稿前に内容を確認)
  
Template by  マシマロック