マルウェアなんでも雑談掲示板 1076626

BrowserModifier: Win32/SupTab!blnk

1：ゆきぃ :
2016/11/07 (Mon) 19:44:30: Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 19:28:11, on 2016/11/07
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)

Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\UMonit.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\jmesoft\hotkey.exe
C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe
C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\windows\system\Cm106eye.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
D:\インスト\FMEAutomater\FMEAutomator.exe
D:\ニコ生\棒読みちゃん\BouyomiChan.exe
C:\windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\AHS\VOICEROID+\zunko\VOICEROID.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\ゆきぃ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W3HHO4VA\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Windows Live ID サインインヘルパー - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: トレンドマイクロネットワークフィルタプラグイン - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll
O2 - BHO: トレンドマイクロIEプロテクション - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe32.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe
O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe
O4 - HKLM\..\Run: [Lenovo Eye Distance System] C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe 1
O4 - HKLM\..\Run: [Lenovo Dynamic Brightness System] C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe 1
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google アップデートサービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Sentinel LDK License Manager (hasplms) - Unknown owner - C:\windows\system32\hasplms.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Wireless Controller Service - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9970 bytes

ccクリーナーlog
Adobe AIR Adobe Systems Incorporated 2016/08/26 2.6.0.19140
Adobe Flash Player 23 ActiveX Adobe Systems Incorporated 2016/10/27 4.91 MB 23.0.0.205
AmaRecTV Live 2016/01/11
AMV4 Video Codec amaman 2016/01/09 3.73 MB 4.02
AmvVideoCodec 2016/01/11
AndreaMosaic 3.36.0 2016/07/21
Apple Application Support（32 ビット） Apple Inc. 2016/10/28 127 MB 5.1
Apple Application Support（64 ビット） Apple Inc. 2016/10/28 142 MB 5.1
Apple Mobile Device Support Apple Inc. 2016/10/28 27.4 MB 10.0.1.3
Apple Software Update Apple Inc. 2016/03/15 2.69 MB 2.2.0.150
Bonjour Apple Inc. 2016/01/10 2.01 MB 3.1.0.1
BSHSUH05 USB Sound Device 2016/01/09
CCleaner Piriform 2016/11/07 5.23
DAEMON Tools Lite Disc Soft Ltd 2016/07/28 10.4.0.0192
FMEAutomator 3 ぶれぼ 2016/08/09 2.27 MB 3.4.1.0
Genesys USB Mass Storage Device Genesys Logic 2011/10/11 4.0.1.1
GIMP 2.6.11 The GIMP Team 2016/09/17 107 MB 2.6.11
Google Chrome Google Inc. 2011/10/11 54.0.2840.71
Intel(R) Control Center Intel Corporation 1.2.1.1007
Intel(R) Management Engine Components Intel Corporation 7.0.0.1118
Intel(R) Network Connections Drivers Intel 2011/10/12 15.4
Intel(R) Processor Graphics Intel Corporation 8.15.10.2345
iTunes Apple Inc. 2016/11/07 243 MB 12.5.3.17
Lenovo Dynamic Brightness System Lenovo 2011/10/11 4.0.00.22080
Lenovo EE Boot Optimizer Lenovo 2011/10/12 0.0.1.6
Lenovo Eye Distance System Lenovo 2011/10/11 4.0.00.21090
Lenovo OneKey Recovery CyberLink Corp. 2016/04/11 7.0.1230
Lenovo Power2Go CyberLink Corp. 2011/10/11 154 MB 6.0.4827a
Lenovo Tinian Fn PS/2 Keyboard Driver Lenovo 2011/10/11 V1.0.11.0321
LVT Lenovo 2011/10/11 4.1.3.0309
Microsoft .NET Framework 4.6.1 Microsoft Corporation 2016/04/14 38.8 MB 4.6.01055
Microsoft .NET Framework 4.6.1 (日本語) Microsoft Corporation 2016/05/04 2.93 MB 4.6.01055
Microsoft ASP.NET MVC 4 Runtime Microsoft Corporation 2016/01/19 1.59 MB 4.0.40804.0
Microsoft Silverlight Microsoft Corporation 2016/10/12 249 MB 5.1.50901.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2011/10/11 1.69 MB 3.1.0000
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2011/10/11 3.51 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2016/01/23 238 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2016/01/08 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2016/07/08 16.9 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2016/07/08 11.8 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2016/01/23 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2016/01/23 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 Microsoft Corporation 2016/09/15 20.6 MB 14.0.23026.0
Minecraft Mojang 2016/01/10 1.22 MB 1.0.3.0
Niconico Live Encoder niwango, inc. 2016/10/07 2.0.4
NVIDIA 3D Vision コントローラードライバー 369.04 NVIDIA Corporation 2016/10/28 369.04
NVIDIA 3D Vision ドライバー 375.63 NVIDIA Corporation 2016/10/28 375.63
NVIDIA GeForce Experience 3.1.0.52 NVIDIA Corporation 2016/11/05 3.1.0.52
NVIDIA HD オーディオドライバー 1.3.34.17 NVIDIA Corporation 2016/10/28 1.3.34.17
NVIDIA PhysX システムソフトウェア 9.16.0318 NVIDIA Corporation 2016/09/30 9.16.0318
NVIDIA グラフィックスドライバー 375.63 NVIDIA Corporation 2016/10/28 375.63
OneKey Recovery CyberLink Corp. 7.0.1230
Open Broadcaster Software 2016/01/09
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2011/10/11 6.0.1.6230
Skype(TM) 7.29 Skype Technologies S.A. 2016/11/06 163 MB 7.29.102
Steam Valve Corporation 2016/01/23 2.10.91.91
Voiceroid Yuzuki Yukari v1.5.0 2016/06/20 336 MB Voiceroid Yuzuki Yukari v1.5.0
VOICEROID＋東北ずん子 (1.6.0) 株式会社ＡＨＳ 2016/06/17 318 MB 1.6.0
VOICEROID＋東北ずん子 EX 株式会社ＡＨＳ 2016/09/23 330 MB 1.7.3
Vulkan Run Time Libraries 1.0.26.0 LunarG, Inc. 2016/10/28 1.66 MB 1.0.26.0
Windows Live Essentials Microsoft Corporation 2011/10/11 15.4.3508.1109
Windows Live Mesh ActiveX Control for Remote Connections Microsoft Corporation 2011/10/11 5.57 MB 15.4.5722.2
Windows ドライバパッケージ - I-O DATA DEVICE, INC. GV-USB2 (06/28/2010 1.1.0.93) I-O DATA DEVICE, INC. 2016/01/09 06/28/2010 1.1.0.93
WinRAR 5.21 (64-bit) win.rar GmbH 2016/01/09 5.21.0
µTorrent BitTorrent Inc. 2016/09/11 3.4.8.42576
やります！アンコちゃん 2.2.1.5 居酒屋「めがね」 2016/08/15 2.2.1.5
ウイルスバスタークラウドトレンドマイクロ株式会社 2016/01/07 450 MB 10.0
ニコ生デスクトップキャプチャー(XP) SEASON2 Consolas 2016/01/09 380 KB 1.21
リモート接続用の Windows Live Mesh ActiveX コントロール (日本語) Microsoft Corporation 2011/10/11 5.57 MB 15.4.5722.2
レノボドライバとアプリのインストール Lenovo 2011/10/11 5.10.1809
不思議のダンジョン　風来のシレン外伝　女剣士アスカ見参！ for Windows 2016/07/28 1.08.000

です。
よろしくおねがいします。
2：管理人です :
2016/11/07 (Mon) 20:28:42: 今から晩御飯なんですね（管理人）。

少し、お時間ください。
3：管理人です :
2016/11/07 (Mon) 23:25:53: ゆきぃさん

＊＊＊
お説教はしませんが、これこれ→「µTorrent BitTorrent Inc. 2016/09/11 3.4.8.42576」P2Pプログラムですね。これを経由してお宝ファイルをgetしているんだと思いますが、非常に危険で「恐ろしい」結末を迎えるんですね。よってアンインストールしてください。

アンインストールはコントロールパネルからのアンインストールもできますし、CCleanerを利用してアンインストールすることもできます。

µTorrent BitTorrent Inc. 2016/09/11 3.4.8.42576　←まず、これをアンインストールしPCを一旦再起動してください。
4：管理人です :
2016/11/07 (Mon) 23:34:11: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478529251.png 作業はまだまだ続きます。

CCleanerを起動してください。インストール情報に関するlogを採りましたね。同じように別の部分のlogが必要です。

↓

（写真貼付しますから参考にしつつ作業開始してくださいね）

http://ore-sama123.bbs.fc2.com/?act=reply&tid=5471994　これの「管理人です。2016/10/07 (Fri) 12:25:57。*.zaq.ne.jp」の記事を探し出し参考にしながらCCleanerのlogを取り出し、見せてください。

❶Windowsに関するlog
❷インストールされているブラウザ（例えばIEだとかChromeなどの意味です）に関するlog
❸スケジュールされたタスクに関するlog

これをすべて見せてください。
5：ゆきぃ :
2016/11/08 (Tue) 07:03:59: おはようございます。

torrentは消しました。お宝あさりは自重しようとおもいます

ｃｃクリーナーで摘出したlogになります

windows↓

有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run DAEMON Tools Lite Automount Disc Soft Ltd "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
有効 HKCU:Run Sidebar Microsoft Corporation C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
無効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKLM:Run CLMLServer CyberLink "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe"
有効 HKLM:Run Cm106Sound Microsoft Corporation C:\windows\syswow64\RunDll32.exe C:\windows\Syswow64\cm106.dll,CMICtrlWnd
有効 HKLM:Run HotKeysCmds Intel Corporation C:\windows\system32\hkcmd.exe
有効 HKLM:Run IgfxTray Intel Corporation C:\windows\system32\igfxtray.exe
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run jmekey Lenovo C:\windows\jmesoft\hotkey.exe
有効 HKLM:Run jmesoft C:\Windows\jmesoft\ServiceLoader.exe
有効 HKLM:Run Lenovo Dynamic Brightness System Lenovo C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe 1
有効 HKLM:Run Lenovo EE Boot Optimizer Lenovo C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe
有効 HKLM:Run Lenovo Eye Distance System Lenovo C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe 1
有効 HKLM:Run Persistence Intel Corporation C:\windows\system32\igfxpers.exe
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" 1
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run ShadowPlay Microsoft Corporation "C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run UMonit C:\windows\SysWOW64\UMonit.exe
有効 HKLM:Run UpdateP2GoShortCut CyberLink Corp. "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

スケジュールされたタスク↓

有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
有効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
有効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
有効 Task NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
有効 Task NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
有効 Task NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe --logon

になります。

よろしくお願いします
6：管理人です :
2016/11/08 (Tue) 14:11:59: 重要な確認をしますね
❶OSはWindows7のSP１で間違いないですね？
❷外付けHDDは、持ってますか？
❸USBメモリは持ってますか？
❹空のDVD-Rを数枚持ってますか？
❺特に重要ですが「リカバリDVDディスク」を持ってますか？

ーーーーーーーーーーーーーーーーーーーー
重要な事なので「全部」教えてくださいね。

----------------------------------------
B)システム復元ポイントを「自作」します（必須作業）

https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=012495　熟読し復元ポイントを自作してください（必須）
。復元ポイントの名前は「最新復元ポイント１」と名付けしてください。

もしも空のDVD-Rが手元にあるなら、以下を参考にして「修復ディスク」を自作してください（必須）

https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=012000

-----------------------------------------
ここまで作業できたら返信お願いします。手元にDVD-Rが無い場合は、可能ならば近所のケーズデンキのようなショップで購入お願いします（可能ならば国産品を。アジアの怪しい＝聞いたことのないメーカーDVD-Rは買わないで）。
7：管理人です :
2016/11/08 (Tue) 18:56:37: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478598998.png 写真を見てほしいのですが、ゆきぃさんのWindows Defenderの赤丸部分は、なんと書かれてますか？それをPathというのですが、全文正確に教えてください。
8：ゆきぃ :
2016/11/08 (Tue) 21:50:46: こんばんわ

❶OSはWindows7　Home Premium　Servis Pack1です
❷外付けHDDはもってます
❸USBメモリはもってません
❹空のDVD-R　もってないので買ってきます
❺リカバリディスクは初期化するためのものはもってますがつかったことないです。

Windows Defenderの赤丸部分は↓です

c:Users\AppData\Roming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

です。
9：ゆきぃ :
2016/11/08 (Tue) 21:59:40: システムの復元ポイント作成と修復ディスクの作成も完了しました。
10：管理人です :
2016/11/08 (Tue) 22:43:41: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478612621.png 情報ありがとうございます。

リカバリDVDを持っているんですね、それはとても重要なメリットです。良かった。

ええとね「これだけは守りたい」というデータの量は、どの程度あります？バックアップsoftwareを使い外付けHDDにバックアップが必要であれば、その方法も説明しますよ。

---------------------------------------
復元ポイント完成＋修復ディスク完成ですね、では、作業開始します。

実はね、海外のweb siteでは「マイクロソフトWindows Defenderの誤検知ではないか？」という声が挙がってきています。つまり感染では「ない」可能性も出てきているという状況です。

❶Adw cleaner(以下Adwと呼びます）をデスクトップ上にダウンロードへ
https://toolslib.net/downloads/finish/1/

「スキャン」してください
11：管理人です :
2016/11/08 (Tue) 22:45:18: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478612718.png スキャンが完了したら→「ログファイル」をクリック
12：管理人です :
2016/11/08 (Tue) 22:46:37: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478612797.png ログファイルをクリックすると「メモ帳」に記録されたlogが表示されるので、その内容を全文コピペして見せてください。
13：ゆきぃ :
2016/11/09 (Wed) 20:13:04: 誤検知だったらうれしいです・・・

ログファイルはこれになります。

# AdwCleaner v6.030 - ログファイルの作成日 09/11/2016 作成時間 20:12:31
# Malwarebytesによる 19/10/2016 の更新日
# データベース : 2016-11-08.1 [サーバー]
# オペレーティングシステム : Windows 7 Home Premium Service Pack 1 (X64)
# ユーザー名 : ゆきぃ - ゆきぃ-PC
# 実行場所 : C:\Users\ゆきぃ\Desktop\adwcleaner_6.030.exe
# モード：スキャン
# サポート : https://www.malwarebytes.com/support

***** [ サービス ] *****

悪意あるサービスを検出しませんでした。

***** [ フォルダ ] *****

悪意あるフォルダを検出しませんでした。

***** [ ファイル ] *****

悪意あるファイルを検出しませんでした。

***** [ DLL ] *****

悪意あるDLLsファイルを検出しませんでした。

***** [ WMI ] *****

悪意あるキーを検出しませんでした。

***** [ ショートカット ] *****

改ざん済みショートカットを検出しませんでした。

***** [ スケジュール済みタスク ] *****

悪意あるタスクを検出しませんでした。

***** [ レジストリ ] *****

悪意あるレジストリ要素を検索しています ...

***** [ Webブラウザ ] *****

悪意あるFirefoxベースの要素を検出しませんでした。
悪意あるChromiumベースの要素を検出しませんでした。

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2668 バイト] - [07/11/2016 20:04:00]
C:\AdwCleaner\AdwCleaner[S0].txt - [2842 バイト] - [07/11/2016 20:03:41]
C:\AdwCleaner\AdwCleaner[S1].txt - [1788 バイト] - [09/11/2016 20:07:38]
C:\AdwCleaner\AdwCleaner[S2].txt - [1703 バイト] - [09/11/2016 20:12:31]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1780 バイト] ##########
14：管理人です :
2016/11/09 (Wed) 21:29:37: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478694577.png Adwでは無反応ですね（予想した通りです）

❷MBAMでscanします

http://www.bleepingcomputer.com/download/malwarebytes-anti-malware/　←　ダウンロードはここから（写真の赤丸部分をクリックし）。デスクトップ上に一旦保存してください。
15：管理人です :
2016/11/09 (Wed) 21:33:31: MBAMのインストール方法と使い方は以下を参考へ

http://ore-sama123.bbs.fc2.com/?act=reply&tid=5471994　←「管理人です。2016/10/07 (Fri) 12:48:12。*.zaq.ne.jp」この記事を探し出してMBAMで「logを」採り、全文見せてください。この段階では削除はしないでくださいね。
16：ゆきぃ :
2016/11/09 (Wed) 22:31:30: スキャン終了しました

Malwarebytes Anti-Malware
www.malwarebytes.org

スキャン日付: 2016/11/09
スキャン時刻: 22:20
ログファイル: 1.txt
管理者: はい

バージョン: 2.2.1.1043
マルウェアデータベース: v2016.11.09.07
ルートキットデータベース: v2016.10.31.01
ライセンス: 無料版
マルウェア保護機能: 無効
悪質ウェブサイト保護機能: 無効
自己防衛: 無効

OS: Windows 7 Service Pack 1
CPU: x64
ファイルシステム: NTFS
ユーザー: ゆきぃ

スキャン形式: 脅威スキャン
結果: 完了しました
スキャンされたオブジェクト数: 316029
経過時間: 9 分, 6 秒

メモリ: 有効
スタートアップ: 有効
ファイルシステム: 有効
アーカイブ: 有効
ルートキット: 有効
ヒューリスティック: 有効
PUP: 有効
PUM: 有効

プロセス: 0
（なし悪意のある項目を検出）

モジュール: 0
（なし悪意のある項目を検出）

レジストリキー: 0
（なし悪意のある項目を検出）

レジストリ値: 2
Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, 0http://nonestops.biz/wpad.dat?fe01384f48fc08b3dc0452e904e0f70e19740135, , [2b10605ec3d753e3faf53bdee520768a]
Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-3725412681-3687118450-826025000-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, http://nonestops.biz/wpad.dat?fe01384f48fc08b3dc0452e904e0f70e19740135, , [201bab135248de5829ce0a0f3cc9d828]

レジストリデータ: 0
（なし悪意のある項目を検出）

フォルダー: 0
（なし悪意のある項目を検出）

ファイル: 0
（なし悪意のある項目を検出）

物理セクタ: 0
（なし悪意のある項目を検出）

(end)
17：管理人です :
2016/11/09 (Wed) 23:05:45: あらー？

これは興味深いですね。「泣面蜂」さんが感染しているのと、全く同じモノに感染しているよ。

ええとMBAMで検知された、その２つを削除しましょう。removeしてください。削除後PCを再起動してください。
18：ゆきぃ :
2016/11/09 (Wed) 23:09:32: 興味深いのですか？

泣面蜂さんと一緒というと・・・トロイですか？

とりあえず削除して再起動しました
19：管理人です :
2016/11/09 (Wed) 23:11:44: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478700704.png MBAMでの削除が完了したら、次はRogue Killerでscanします（scanだけです、削除してはいけませんからね）

http://ore-sama123.bbs.fc2.com/?act=reply&tid=5500407　←　2016/11/08 (Tue) 21:52:34　*.zaq.ne.jp　←そこから始まる記事を熟読してRogue Killerを使ってlogを取り出し、全部見せてくださいね。沢山検知されますが、心配しないで。
20：ゆきぃ :
2016/11/09 (Wed) 23:50:50: スキャンlogです

RogueKiller V12.8.0.0 (x64) [Nov 7 2016] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : ??? [Administrator]
Started from : C:\Program Files\RogueKiller\RogueKiller64.exe
Mode : Scan -- Date : 11/09/2016 23:29:16 (Duration : 00:18:48)

¤¤¤ Processes : 1 ¤¤¤
[Proc.RunPE] hasplms.exe(1804) -- C:\Windows\System32\hasplms.exe[7] -> Found

¤¤¤ Registry : 4 ¤¤¤
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {62747DE2-174B-4CA9-8B82-49DA4946BCD4} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\NexonJP\NGM\NGM.exe|Name=Nexon Game Manager| [7] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {20105B11-5CD6-4FF0-AABC-919FADA0B570} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\NexonJP\NGM\NGM.exe|Name=Nexon Game Manager| [7] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {62747DE2-174B-4CA9-8B82-49DA4946BCD4} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\ProgramData\NexonJP\NGM\NGM.exe|Name=Nexon Game Manager| [7] -> Found
[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {20105B11-5CD6-4FF0-AABC-919FADA0B570} : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\ProgramData\NexonJP\NGM\NGM.exe|Name=Nexon Game Manager| [7] -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 2 ¤¤¤
[PUP][Folder] C:\ProgramData\FFinder LTD -> Found
[PUP][Folder] C:\ProgramData\FFinder LTD -> Found

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: TS256GSSD370S ATA Device +++++
--- User ---
[MBR] 24c35bb62e020719c305de79e455dcec
[BSP] fe86d61eaf21da8d0c0c8665cfdaf2bb : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 8 | Size: 99 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 780288 | Size: 102479 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 457985024 | Size: 20572 MB
3 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 210657280 | Size: 120765 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: JMicron USB Device +++++
--- User ---
[MBR] 38f68464bba65721e42f9a6f6b1e05ad
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - primary | Offset (sectors): 4096 | Size: 476938 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] ????????????????? )
21：管理人です :
2016/11/10 (Thu) 00:25:27: ❶Rogue KIllerは、X印をクリックして終了させてください（検知されたモノは削除不要です）.MBRへの感染有無を調べましたが、無感染ですね。良かったです。

❷では、ここでまたまた「システム復元ポイント」を自作します。「復元ポイント2」と名付けてください（必須作業です）。

❸逆質問します。ウイルス対策ソフトは「トレンドマイクロのウイルスバスター」ですか？教えてください。勿論有効期限内ですよね？

-----------------------------------------------------
さてと。「隠しフォルダを表示する」設定を行います。

https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=012986

隠しフォルダを表示したら、以下まで進みます

↓
c:Users\AppData\Roming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

これを削除してください。

削除後、PCを再起動します。

PCの状態を教えてください。
22：管理人です :
2016/11/10 (Thu) 01:25:00: c:Users\AppData\Roming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk　←を削除した場合に、PC再起動後にIEがスタートメニューから消えている可能性が極めて高い。そこで、以下を参考にしてスタートメニューにIEのアイコンを設定しておいてください（削除によってIEのアイコンがスタートメニューから消えている場合に）

http://blog-sierrarei.com/blog/2016/11/windows-defender-keikoku/
23：ゆきぃ :
2016/11/10 (Thu) 19:40:13: 復元ポイント２作成完了しました。

ウイルスバスターでもちろん期限内です。

c:Users\AppData\Roming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnkを消すとのことですが、Quick Launchのフォルダ内にLaunch Internet Explorer Browser.lnkというものがみあたりません。
24：ゆきぃ :
2016/11/10 (Thu) 19:45:31: Internet Explorer ブラウザーの起動のショートカットがあるんですがこれのことですか？
25：管理人です :
2016/11/10 (Thu) 20:16:35: ちょっと待っててネ。今、晩御飯の支度の時間でして、ワンコ達（１歳）にも晩御飯を食べさせないと。
26：管理人です :
2016/11/10 (Thu) 21:53:04: ワンコに晩御飯食べさせました

----------------------------------------
❶さてと

【c:Users\AppData\Roming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnkを消すとのことですが、Quick Launchのフォルダ内にLaunch Internet Explorer Browser.lnkというものがみあたりません。】

↑

OKです、削除しなくてもOKです。windows　updateの誤検知ですね、間違いなく。

＊

トレンドマイクロのウイルス対策ソフトが有効になっているのでWindows Defenderは「無効」設定してください。Windows７におけるWindows Defenderは不要ですから。

https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=011978

❷FRST.exeで最終検査します

ええと「ほむ」さんのスレッドですが

http://ore-sama123.bbs.fc2.com/?act=reply&tid=5501144　←「2016/11/10 (Thu) 21:25:36。*.zaq.ne.jp」でFRST.exeの作業指示を出しています。それと全く同じ作業をして、logを全部見せてください。

64bitバージョンをダウンロードへ。
27：ゆきぃ :
2016/11/10 (Thu) 22:11:12: ウイルス対策ソフトあるとdefenderいらなかったんですね・・・

log１個目

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
Ran by ゆきぃ (administrator) on ゆきぃ-PC (10-11-2016 22:08:01)
Running from C:\Users\ゆきぃ\Downloads
Loaded Profiles: ゆきぃ (Available Profiles: ゆきぃ)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: 日本語 (日本)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Windows\SysWOW64\UMonit.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
() C:\Windows\jmesoft\Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

==================== Registry (All) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [167960 2011-03-30] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\windows\system32\hkcmd.exe [392216 2011-03-30] (Intel Corporation)
HKLM\...\Run: [Persistence] => C:\windows\system32\igfxpers.exe [415768 2011-03-30] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11543656 2010-10-26] (Realtek Semiconductor)
HKLM\...\Run: [UMonit] => C:\windows\SysWOW64\UMonit.exe [28672 2010-12-01] ()
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [114688 2011-10-12] (Lenovo)
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246264 2015-07-17] (Trend Micro Inc.)
HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1258496 2015-07-17] (Trend Micro Inc.)
HKLM\...\Run: [Cm106Sound] => C:\windows\Syswow64\cm106.dll [8757248 2013-12-04] (C-Media Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1854008 2016-10-26] (NVIDIA Corporation)
HKLM-x32\...\Run: [jmekey] => C:\windows\jmesoft\hotkey.exe [118784 2011-03-22] (Lenovo)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-03-16] ()
HKLM-x32\...\Run: [Lenovo Eye Distance System] => C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [265216 2010-09-10] (Lenovo)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] => C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [285696 2010-10-09] (Lenovo)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [30720 2010-11-21] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-21] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [3229696 2016-08-30] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] explorer.exe [2972672 2016-08-29] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKU\S-1-5-19\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3725412681-3687118450-826025000-1001\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
HKU\S-1-5-21-3725412681-3687118450-826025000-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-06-22] (Disc Soft Ltd)
HKU\S-1-5-21-3725412681-3687118450-826025000-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-29] (Piriform Ltd)
HKLM\...\Providers\Internet Print Provider: C:\windows\system32\inetpp.dll [166400 2016-06-26] (Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\windows\system32\win32spl.dll [756736 2016-09-10] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\windows\system32\EhStorShell.dll [2009-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\windows\system32\ntshrui.dll [2012-01-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\windows\SysWOW64\EhStorShell.dll [2009-07-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\windows\SysWOW64\ntshrui.dll [2012-01-04] (Microsoft Corporation)
BootExecute: autocheck autochk *
AlternateShell: cmd.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.11.1
Tcpip\..\Interfaces\{807CD17C-833D-4D36-AF24-2D582FDDD8EB}: [DhcpNameServer] 192.168.11.1
Tcpip\..\Interfaces\{896C2237-1D73-4834-AA53-F5489D49400E}: [DhcpNameServer] 192.168.11.1
ManualProxies:

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3725412681-3687118450-826025000-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LEND&bmod=LEND
HKU\S-1-5-21-3725412681-3687118450-826025000-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3725412681-3687118450-826025000-1001 -> DefaultScope {7C0BF61A-2753-47A5-BFC7-7E010C335519} URL = hxxp://www.google.co.jp/search?hl=ja&q={searchTerms}&lr=lang_ja
SearchScopes: HKU\S-1-5-21-3725412681-3687118450-826025000-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3725412681-3687118450-826025000-1001 -> {7C0BF61A-2753-47A5-BFC7-7E010C335519} URL = hxxp://www.google.co.jp/search?hl=ja&q={searchTerms}&lr=lang_ja
BHO: トレンドマイクロセキュリティツールバーヘルパー -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22] (Microsoft Corp.)
BHO: トレンドマイクロネットワークフィルタプラグイン -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg.dll [2015-07-17] (Trend Micro Inc.)
BHO: トレンドマイクロIEプロテクション -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe64.dll [2016-06-15] (Trend Micro Inc.)
BHO-x32: トレンドマイクロセキュリティツールバーヘルパー -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
BHO-x32: Windows Live ID サインインヘルパー -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22] (Microsoft Corp.)
BHO-x32: トレンドマイクロネットワークフィルタプラグイン -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll [2015-07-17] (Trend Micro Inc.)
BHO-x32: トレンドマイクロIEプロテクション -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe32.dll [2016-06-15] (Trend Micro Inc.)
Toolbar: HKLM - Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
Toolbar: HKLM-x32 - Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe64.dll [2016-06-15] (Trend Micro Inc.)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\TmBpIe32.dll [2016-06-15] (Trend Micro Inc.)
Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg.dll [2015-07-17] (Trend Micro Inc.)
Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.8.1222\2.0.1084\TmopIEPlg32.dll [2015-07-17] (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll [2015-12-21] (Trend Micro Inc.)
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll [2015-07-17] (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll [2015-07-17] (Trend Micro Inc.)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\firefoxextension
FF Extension: (Trend Micro BEP Firefox Extension) - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\firefoxextension [2016-10-21]
FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.1.1089\9.1.1089\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: (Trend Micro Toolbar) - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2016-03-15]
FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension
FF Extension: (Trend Micro Osprey Firefox Extension) - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension [2016-10-21]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nexon.co.jp/NxGame -> C:\ProgramData\NexonJP\NGM\npNxGameJP.dll [2016-08-26] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-26] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-26] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3725412681-3687118450-826025000-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default [2016-11-10]
CHR Extension: (uBlock Origin) - C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-11-09]
CHR Extension: (Tampermonkey) - C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-09-16]
CHR Extension: (Chrome ウェブストア決済) - C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Marc Ecko) - C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk [2016-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 hasplms; C:\windows\system32\hasplms.exe [4665168 2015-09-24] (SafeNet Inc.)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-03-16] () [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [458296 2016-10-26] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [458296 2016-10-26] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-26] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-10-26] (NVIDIA Corporation)
R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1137664 2015-07-17] (Trend Micro Inc.)
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [75136 2016-01-23] ()
R2 PnkBstrB; C:\windows\SysWOW64\PnkBstrB.exe [189248 2016-01-23] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-07-28] (Disc Soft Ltd)
R3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-07-28] (Disc Soft Ltd)
S3 ebdrv; C:\windows\system32\drivers\evbda.sys [3286016 2009-06-11] (Broadcom Corporation)
R3 GeneStor; C:\windows\System32\DRIVERS\GeneStor.sys [57856 2010-12-17] (GenesysLogic)
R3 GVUSB2.X64; C:\windows\System32\DRIVERS\GVUSB2.X64.SYS [565248 2010-07-05] ()
R2 hardlock; C:\windows\system32\drivers\hardlock.sys [350552 2015-09-24] (SafeNet Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-10-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [47672 2016-10-26] (NVIDIA Corporation)
R2 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12464 2016-08-09] (Macrovision Europe Ltd) [File not signed]
R1 tmactmon; C:\windows\System32\DRIVERS\tmactmon.sys [133424 2015-11-23] (Trend Micro Inc.)
R0 tmcomm; C:\windows\System32\DRIVERS\tmcomm.sys [324912 2015-11-23] (Trend Micro Inc.)
R3 tmeevw; C:\windows\System32\DRIVERS\tmeevw.sys [116576 2015-06-08] (Trend Micro Inc.)
R1 tmevtmgr; C:\windows\System32\DRIVERS\tmevtmgr.sys [99632 2015-11-23] (Trend Micro Inc.)
R1 tmumh; C:\windows\System32\DRIVERS\TMUMH.sys [91536 2015-06-29] (Trend Micro Inc.)
R2 tmusa; C:\windows\System32\DRIVERS\tmusa.sys [124752 2015-12-10] (Trend Micro Inc.)
S3 USBMULCD; C:\windows\System32\drivers\CM10664.sys [2746368 2013-12-04] (C-Media Electronics Inc)
S3 VCSVADHWSer; C:\windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex) [File not signed]
R0 WinI2C-DDC; C:\windows\System32\drivers\DDCDrv.sys [20832 2008-04-08] (Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWOW64\drivers\DDCDrv.sys [15712 2010-03-23] (Nicomsoft Ltd.)
S3 xhunter1; \??\C:\windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-10 22:08 - 2016-11-10 22:08 - 00022253 _____ C:\Users\ゆきぃ\Downloads\FRST.txt
2016-11-10 22:07 - 2016-11-10 22:08 - 00000000 ____D C:\FRST
2016-11-10 22:07 - 2016-11-10 22:07 - 02410496 _____ (Farbar) C:\Users\ゆきぃ\Downloads\FRST64.exe
2016-11-10 20:01 - 2016-11-10 20:01 - 00000000 ____D C:\Users\ゆきぃ\AppData\LocalLow\Adobe
2016-11-10 20:00 - 2016-11-10 20:15 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-10 20:00 - 2016-11-10 20:15 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-09 23:29 - 2016-11-09 23:29 - 00028272 _____ C:\windows\system32\Drivers\TrueSight.sys
2016-11-09 23:26 - 2016-11-09 23:48 - 00000000 ____D C:\ProgramData\RogueKiller
2016-11-09 23:26 - 2016-11-09 23:48 - 00000000 ____D C:\Program Files\RogueKiller
2016-11-09 23:26 - 2016-11-09 23:26 - 00000858 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2016-11-09 23:26 - 2016-11-09 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-11-09 23:20 - 2016-11-09 23:23 - 34114800 _____ (Adlice Software ) C:\Users\ゆきぃ\Downloads\setup.exe
2016-11-09 22:50 - 2016-11-09 22:51 - 08972944 _____ (Sandboxie Holdings, LLC) C:\Users\ゆきぃ\Downloads\SandboxieInstall.exe
2016-11-09 22:30 - 2016-11-09 22:30 - 00001533 _____ C:\Users\ゆきぃ\Documents\1.txt
2016-11-09 22:17 - 2016-11-09 23:07 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-09 22:16 - 2016-11-09 22:16 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-09 22:16 - 2016-11-09 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-09 22:16 - 2016-11-09 22:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-11-09 22:16 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-11-09 22:16 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-11-09 22:16 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-11-09 22:03 - 2016-11-09 22:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-09 22:02 - 2016-11-09 22:02 - 22851472 _____ (Malwarebytes ) C:\Users\ゆきぃ\Downloads\mbam-setup-bc.1878-2.2.1.1043.exe
2016-11-09 21:58 - 2016-11-09 21:58 - 00209207 _____ C:\Users\ゆきぃ\Downloads\[kat.cr]ms.microsoft.office.2016.pro.plus.rtm.16.0.4266.1003.retail.37.languages.iso.32.64.bit.appzdam.torrent
2016-11-09 21:32 - 2016-11-09 21:32 - 00000000 ____D C:\ProgramData\FFinder LTD
2016-11-09 21:15 - 2016-11-09 21:15 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\OpenOffice
2016-11-09 21:13 - 2016-11-09 21:13 - 00001000 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2016-11-09 21:13 - 2016-11-09 21:13 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-09 21:13 - 2016-11-09 21:13 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-11-09 21:10 - 2016-11-09 21:10 - 134230495 _____ C:\Users\ゆきぃ\Downloads\Apache_OpenOffice_4.1.3_Win_x86_install_ja.exe
2016-11-09 20:21 - 2016-11-09 20:21 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-09 20:21 - 2016-10-26 05:00 - 00134712 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe
2016-11-09 20:21 - 2016-09-10 03:25 - 00269600 _____ C:\windows\SysWOW64\vulkan-1.dll
2016-11-09 20:21 - 2016-09-10 03:25 - 00261920 _____ C:\windows\system32\vulkan-1.dll
2016-11-09 20:21 - 2016-09-10 03:25 - 00110880 _____ C:\windows\SysWOW64\vulkaninfo.exe
2016-11-09 20:21 - 2016-09-10 03:24 - 00125216 _____ C:\windows\system32\vulkaninfo.exe
2016-11-09 20:19 - 2016-10-26 06:39 - 40123840 _____ C:\windows\system32\nvcompiler.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 35224632 _____ C:\windows\SysWOW64\nvcompiler.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 34701760 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 28138552 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 17348752 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 14033976 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2016-11-09 20:19 - 2016-10-26 06:39 - 10912232 _____ (NVIDIA Corporation) C:\windows\system32\nvptxJitCompiler.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 10773504 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 10324400 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 09113296 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 08913512 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvptxJitCompiler.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 08716056 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 03628992 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 03193912 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 01953336 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6437570.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 01586744 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6437570.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 01037248 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00974272 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00945208 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00897080 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00683640 _____ (NVIDIA Corporation) C:\windows\system32\nvfatbinaryLoader.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00572888 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00521096 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00439864 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00436088 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00407064 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00388544 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00170688 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00153368 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00148200 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll
2016-11-09 20:19 - 2016-10-26 06:39 - 00131536 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll
2016-11-09 20:11 - 2016-11-03 00:36 - 00382696 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-11-09 20:11 - 2016-11-03 00:32 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-11-09 20:11 - 2016-11-03 00:32 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-11-09 20:11 - 2016-11-03 00:32 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-11-09 20:11 - 2016-11-03 00:32 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-11-09 20:11 - 2016-11-03 00:22 - 00308456 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2016-11-09 20:11 - 2016-11-03 00:16 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2016-11-09 20:11 - 2016-11-03 00:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2016-11-09 20:11 - 2016-11-03 00:16 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2016-11-09 20:11 - 2016-11-02 23:53 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2016-11-09 20:11 - 2016-10-28 12:59 - 00394440 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-11-09 20:11 - 2016-10-28 12:14 - 00346320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2016-11-09 20:11 - 2016-10-28 04:13 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-11-09 20:11 - 2016-10-28 04:13 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-11-09 20:11 - 2016-10-28 03:55 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-11-09 20:11 - 2016-10-28 03:54 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-11-09 20:11 - 2016-10-28 03:54 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-11-09 20:11 - 2016-10-28 03:53 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-11-09 20:11 - 2016-10-28 03:53 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-11-09 20:11 - 2016-10-28 03:51 - 02896384 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-11-09 20:11 - 2016-10-28 03:44 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-11-09 20:11 - 2016-10-28 03:43 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-11-09 20:11 - 2016-10-28 03:38 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-11-09 20:11 - 2016-10-28 03:37 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-11-09 20:11 - 2016-10-28 03:37 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-11-09 20:11 - 2016-10-28 03:37 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-11-09 20:11 - 2016-10-28 03:37 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-11-09 20:11 - 2016-10-28 03:28 - 25763328 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-11-09 20:11 - 2016-10-28 03:28 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-11-09 20:11 - 2016-10-28 03:24 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-11-09 20:11 - 2016-10-28 03:19 - 06047744 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-11-09 20:11 - 2016-10-28 03:15 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-11-09 20:11 - 2016-10-28 03:13 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-11-09 20:11 - 2016-10-28 03:09 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-11-09 20:11 - 2016-10-28 03:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-11-09 20:11 - 2016-10-28 03:05 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-11-09 20:11 - 2016-10-28 03:02 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-11-09 20:11 - 2016-10-28 02:49 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-11-09 20:11 - 2016-10-28 02:46 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-11-09 20:11 - 2016-10-28 02:46 - 00725504 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-11-09 20:11 - 2016-10-28 02:44 - 02131456 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-11-09 20:11 - 2016-10-28 02:44 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-11-09 20:11 - 2016-10-28 02:17 - 15257088 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-11-09 20:11 - 2016-10-28 02:16 - 02920448 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-11-09 20:11 - 2016-10-28 02:03 - 01543680 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-11-09 20:11 - 2016-10-28 01:54 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-11-09 20:11 - 2016-10-28 00:05 - 20304896 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-11-09 20:11 - 2016-10-26 00:02 - 03219456 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-11-09 20:11 - 2016-10-23 02:54 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2016-11-09 20:11 - 2016-10-23 02:36 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2016-11-09 20:11 - 2016-10-23 02:36 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2016-11-09 20:11 - 2016-10-23 02:35 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-11-09 20:11 - 2016-10-23 02:35 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2016-11-09 20:11 - 2016-10-23 02:34 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2016-11-09 20:11 - 2016-10-23 02:27 - 02287616 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-11-09 20:11 - 2016-10-23 02:27 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2016-11-09 20:11 - 2016-10-23 02:26 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2016-11-09 20:11 - 2016-10-23 02:22 - 00476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2016-11-09 20:11 - 2016-10-23 02:21 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-11-09 20:11 - 2016-10-23 02:21 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2016-11-09 20:11 - 2016-10-23 02:20 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2016-11-09 20:11 - 2016-10-23 02:09 - 00416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2016-11-09 20:11 - 2016-10-23 02:04 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-09 20:11 - 2016-10-23 02:03 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2016-11-09 20:11 - 2016-10-23 01:59 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2016-11-09 20:11 - 2016-10-23 01:58 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2016-11-09 20:11 - 2016-10-23 01:56 - 00279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2016-11-09 20:11 - 2016-10-23 01:54 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2016-11-09 20:11 - 2016-10-23 01:46 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2016-11-09 20:11 - 2016-10-23 01:45 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-11-09 20:11 - 2016-10-23 01:44 - 04608000 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-11-09 20:11 - 2016-10-23 01:43 - 02055680 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2016-11-09 20:11 - 2016-10-23 01:43 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2016-11-09 20:11 - 2016-10-23 01:30 - 13654016 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-11-09 20:11 - 2016-10-23 01:12 - 02444800 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-11-09 20:11 - 2016-10-23 01:09 - 01312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-11-09 20:11 - 2016-10-23 01:09 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-11-09 20:11 - 2016-10-16 00:31 - 00976896 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-11-09 20:11 - 2016-10-16 00:31 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2016-11-09 20:11 - 2016-10-16 00:13 - 00741888 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-11-09 20:11 - 2016-10-16 00:13 - 00084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\INETRES.dll
2016-11-09 20:11 - 2016-10-12 00:37 - 00370920 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2016-11-09 20:11 - 2016-10-12 00:31 - 01148416 _____ (Microsoft Corporation) C:\windows\system32\IMJP10.IME
2016-11-09 20:11 - 2016-10-12 00:31 - 01068544 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2016-11-09 20:11 - 2016-10-12 00:31 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL
2016-11-09 20:11 - 2016-10-12 00:31 - 00457216 _____ (Microsoft Corporation) C:\windows\system32\imkr80.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00246784 _____ (Microsoft Corporation) C:\windows\system32\input.dll
2016-11-09 20:11 - 2016-10-12 00:31 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\tintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\quick.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\qintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\phon.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\cintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00175104 _____ (Microsoft Corporation) C:\windows\system32\chajei.ime
2016-11-09 20:11 - 2016-10-12 00:31 - 00132608 _____ (Microsoft Corporation) C:\windows\system32\pintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 01027584 _____ (Microsoft Corporation) C:\windows\SysWOW64\IMJP10.IME
2016-11-09 20:11 - 2016-10-12 00:18 - 00829952 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2016-11-09 20:11 - 2016-10-12 00:18 - 00701440 _____ (Microsoft Corporation) C:\windows\SysWOW64\IMJP10K.DLL
2016-11-09 20:11 - 2016-10-12 00:18 - 00430080 _____ (Microsoft Corporation) C:\windows\SysWOW64\imkr80.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00202240 _____ (Microsoft Corporation) C:\windows\SysWOW64\input.dll
2016-11-09 20:11 - 2016-10-12 00:18 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\tintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\quick.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\qintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\phon.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\cintlgnt.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00125952 _____ (Microsoft Corporation) C:\windows\SysWOW64\chajei.ime
2016-11-09 20:11 - 2016-10-12 00:18 - 00090112 _____ (Microsoft Corporation) C:\windows\SysWOW64\pintlgnt.ime
2016-11-09 20:11 - 2016-10-11 22:33 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2016-11-09 20:11 - 2016-10-11 22:06 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2016-11-09 20:11 - 2016-10-11 00:38 - 00154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-11-09 20:11 - 2016-10-11 00:38 - 00095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-11-09 20:11 - 2016-10-11 00:34 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2016-11-09 20:11 - 2016-10-11 00:34 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-11-09 20:11 - 2016-10-11 00:34 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2016-11-09 20:11 - 2016-10-11 00:34 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 01462272 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 01212928 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00730624 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2016-11-09 20:11 - 2016-10-11 00:33 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2016-11-09 20:11 - 2016-10-11 00:16 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2016-11-09 20:11 - 2016-10-11 00:02 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2016-11-09 20:11 - 2016-10-10 23:56 - 00159744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-11-09 20:11 - 2016-10-10 23:55 - 00291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-11-09 20:11 - 2016-10-10 23:55 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-11-09 20:11 - 2016-10-10 23:55 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2016-11-09 20:11 - 2016-10-10 23:54 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2016-11-09 20:11 - 2016-10-10 23:50 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2016-11-09 20:11 - 2016-10-08 00:40 - 00631176 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-11-09 20:11 - 2016-10-08 00:37 - 05547752 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-11-09 20:11 - 2016-10-08 00:37 - 00706792 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-11-09 20:11 - 2016-10-08 00:35 - 01732864 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 03649536 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00877056 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:32 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:18 - 04000488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2016-11-09 20:11 - 2016-10-08 00:18 - 03944680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2016-11-09 20:11 - 2016-10-08 00:15 - 01314112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 02291712 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVidCtl.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00581632 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00275456 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:12 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-09 20:11 - 2016-10-08 00:04 - 00148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2016-11-09 20:11 - 2016-10-08 00:04 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-11-09 20:11 - 2016-10-08 00:04 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2016-11-09 20:11 - 2016-10-08 00:01 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2016-11-09 20:11 - 2016-10-08 00:00 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2016-11-09 20:11 - 2016-10-07 23:56 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2016-11-09 20:11 - 2016-10-07 23:50 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2016-11-09 20:11 - 2016-10-07 23:50 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2016-11-09 20:11 - 2016-10-07 23:50 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2016-11-09 20:11 - 2016-10-07 23:50 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2016-11-09 20:11 - 2016-10-07 23:49 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-09 20:11 - 2016-10-07 23:49 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 20:11 - 2016-10-07 23:49 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 20:11 - 2016-10-07 23:49 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-09 20:11 - 2016-10-05 23:54 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2016-11-09 20:11 - 2016-09-15 23:56 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2016-11-09 20:11 - 2016-09-14 00:37 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-11-09 20:11 - 2016-09-14 00:11 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2016-11-09 20:11 - 2016-09-10 03:20 - 00756736 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-11-09 20:11 - 2016-09-10 03:00 - 00497152 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2016-11-09 20:11 - 2016-08-23 01:19 - 01386496 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2016-11-09 20:06 - 2016-11-09 20:06 - 03910208 _____ C:\Users\ゆきぃ\Desktop\adwcleaner_6.030.exe
2016-11-08 06:54 - 2016-11-08 07:00 - 00004254 _____ C:\Users\ゆきぃ\Documents\startup.txt
2016-11-08 06:54 - 2016-11-08 07:00 - 00002726 _____ C:\Users\ゆきぃ\Documents\startup1.txt
2016-11-07 20:01 - 2016-11-09 20:26 - 00000000 ____D C:\AdwCleaner
2016-11-07 19:45 - 2016-11-07 19:45 - 00010057 _____ C:\Users\ゆきぃ\Documents\a.txt
2016-11-07 19:40 - 2016-11-07 19:40 - 00009806 _____ C:\Users\ゆきぃ\Documents\install.txt
2016-11-07 19:37 - 2016-11-07 19:37 - 00192756 _____ C:\Users\ゆきぃ\Documents\cc_20161107_193739.reg
2016-11-07 19:31 - 2016-11-07 19:31 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-07 19:31 - 2016-11-07 19:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-07 19:31 - 2016-11-07 19:31 - 00000000 ____D C:\Program Files\iTunes
2016-11-07 19:31 - 2016-11-07 19:31 - 00000000 ____D C:\Program Files\iPod
2016-11-07 19:28 - 2016-11-07 19:28 - 00002782 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2016-11-07 19:28 - 2016-11-07 19:28 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-07 19:28 - 2016-11-07 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-07 19:28 - 2016-11-07 19:28 - 00000000 ____D C:\Program Files\CCleaner
2016-11-05 19:08 - 2016-10-26 05:21 - 00106040 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll
2016-11-05 19:08 - 2016-10-26 05:21 - 00095800 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll
2016-11-05 19:08 - 2016-10-26 05:21 - 00047672 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys
2016-10-28 16:32 - 2016-10-22 16:20 - 01953336 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6437563.dll
2016-10-28 16:32 - 2016-10-22 16:20 - 01585088 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6437563.dll
2016-10-22 20:59 - 2016-10-26 06:39 - 00492744 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll
2016-10-22 20:59 - 2016-10-20 07:48 - 00212936 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda64v.sys
2016-10-22 20:59 - 2016-10-20 07:48 - 00046024 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll
2016-10-22 20:59 - 2016-10-19 06:23 - 01951680 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6437557.dll
2016-10-22 20:59 - 2016-10-19 06:23 - 01586744 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6437557.dll
2016-10-22 20:59 - 2016-10-19 06:23 - 00000669 _____ C:\windows\SysWOW64\nv-vk32.json
2016-10-22 20:59 - 2016-10-19 06:23 - 00000669 _____ C:\windows\system32\nv-vk64.json
2016-10-21 01:59 - 2016-10-21 02:01 - 00007111 _____ C:\Users\ゆきぃ\Documents\starburn.txt
2016-10-19 22:46 - 2016-10-19 22:46 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\CyberLink
2016-10-19 22:46 - 2016-10-19 22:46 - 00000000 ____D C:\Users\Public\CyberLink
2016-10-19 21:07 - 2016-10-19 21:07 - 00048645 _____ C:\Users\ゆきぃ\.recently-used.xbel
2016-10-16 16:51 - 2016-10-19 22:26 - 00124762 _____ C:\Users\ゆきぃ\Documents\1024.aup
2016-10-14 11:22 - 2016-10-02 06:15 - 01935808 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6437306.dll
2016-10-14 11:22 - 2016-10-02 06:15 - 01585088 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6437306.dll
2016-10-14 08:23 - 2016-11-05 19:08 - 00003824 _____ C:\windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00003824 _____ C:\windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00003774 _____ C:\windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00003762 _____ C:\windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00003586 _____ C:\windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00003526 _____ C:\windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-14 08:23 - 2016-11-05 19:08 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-10-14 08:23 - 2016-10-26 05:21 - 01854008 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 01756728 _____ (NVIDIA Corporation) C:\windows\system32\nvspbridge64.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 01454136 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 01318968 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspbridge.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 00121912 _____ C:\windows\system32\NvRtmpStreamer64.dll
2016-10-14 08:23 - 2016-10-26 05:13 - 00001951 _____ C:\windows\NvContainerRecovery.bat
2016-10-12 05:05 - 2016-10-12 05:05 - 00000000 ____D C:\Users\ゆきぃ\Documents\My Data Files
2016-10-12 05:05 - 2016-10-12 05:05 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\Wondershare
2016-10-12 05:04 - 2016-10-12 05:25 - 00000000 ____D C:\ProgramData\Wondershare
2016-10-12 05:03 - 2016-09-13 06:08 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2016-10-12 05:03 - 2016-09-13 05:49 - 00076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\adsmsext.dll
2016-10-12 05:03 - 2016-09-13 04:08 - 01251328 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2016-10-12 05:03 - 2016-09-13 03:43 - 01648128 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-10-12 05:03 - 2016-09-13 03:43 - 01180160 _____ (M
28：管理人です :
2016/11/11 (Fri) 00:07:10: ゆきぃさん。

FRST.exeのlogありがとうです
ええとねIEの調子が狂っている理由がlogに書かれています。

IEは初期化しますね（部分的修復するより初期化した方が良いので）。

そこでIEの「お気に入り」をバックアップしUSBメモリに保存しておいてください（お気に入りが消えてもOKなら、この作業は不要です）

https://121ware.com/qasearch/1007/app/servlet/relatedqa?QID=015873

IEお気に入りのバックアップできたら、お知らせください。
29：管理人です :
2016/11/11 (Fri) 00:14:40: ゆきぃさん

FRST.exeの「Addtition.txt」のlogも、見せてください。

意味、分かる？
30：ゆきぃ :
2016/11/11 (Fri) 20:11:40: 途中までしかかきこめてなかったみたいですね；；すみません

2016-10-12 05:03 - 2016-09-09 05:34 - 00263680 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2016-10-12 05:03 - 2016-09-09 05:34 - 00208896 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2016-10-12 05:03 - 2016-09-09 05:34 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2016-10-12 05:03 - 2016-09-09 05:34 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2016-10-12 05:03 - 2016-09-08 23:55 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-10-12 05:03 - 2016-09-08 23:55 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-10-12 05:03 - 2016-08-13 02:02 - 14632960 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-10-12 05:03 - 2016-08-13 02:02 - 12574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2016-10-12 05:03 - 2016-08-13 02:02 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2016-10-12 05:03 - 2016-08-13 02:02 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2016-10-12 05:03 - 2016-08-13 02:02 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2016-10-12 05:03 - 2016-08-13 01:47 - 12574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2016-10-12 05:03 - 2016-08-13 01:47 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2016-10-12 05:03 - 2016-08-13 01:31 - 00008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2016-10-12 05:03 - 2016-08-13 01:31 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2016-10-12 05:03 - 2016-08-13 01:31 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2016-10-12 05:03 - 2016-08-13 01:26 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 02023424 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 00347136 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 00310784 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 00054272 _____ (Microsoft Corporation) C:\windows\system32\WsmRes.dll
2016-10-12 05:03 - 2016-08-07 00:31 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\wsmplpxy.dll
2016-10-12 05:03 - 2016-08-07 00:15 - 01178112 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmSvc.dll
2016-10-12 05:03 - 2016-08-07 00:15 - 00249344 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 05:03 - 2016-08-07 00:15 - 00214016 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmWmiPl.dll
2016-10-12 05:03 - 2016-08-07 00:15 - 00146944 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmAuto.dll
2016-10-12 05:03 - 2016-08-07 00:15 - 00054272 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmRes.dll
2016-10-12 05:03 - 2016-08-07 00:01 - 00266752 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2016-10-12 05:03 - 2016-08-07 00:01 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\wsmprovhost.exe
2016-10-12 05:03 - 2016-08-06 23:53 - 00199168 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 05:03 - 2016-08-06 23:53 - 00012288 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsmprovhost.exe
2016-10-12 05:03 - 2016-08-06 23:53 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsmplpxy.dll
2016-10-12 05:03 - 2016-06-15 02:21 - 00094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-10-12 05:03 - 2016-06-15 02:16 - 04121600 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 01573888 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 01483264 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 01202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 01068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00680448 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00440320 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2016-10-12 05:03 - 2016-06-15 02:16 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2016-10-12 05:03 - 2016-06-15 02:11 - 00663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2016-10-12 05:03 - 2016-06-15 00:21 - 03209216 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 01329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 01176064 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 01005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00374784 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00179200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2016-10-12 05:03 - 2016-06-15 00:21 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2016-10-12 05:03 - 2016-06-15 00:15 - 00125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2016-10-12 05:03 - 2016-06-15 00:15 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2016-10-12 05:03 - 2016-06-15 00:15 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2016-10-12 05:03 - 2016-06-15 00:05 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2016-10-12 05:03 - 2016-06-15 00:05 - 00023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2016-10-12 05:03 - 2016-06-15 00:00 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2016-10-12 05:03 - 2016-06-15 00:00 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2016-10-12 05:02 - 2016-09-13 06:17 - 00077032 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-10-12 05:02 - 2016-09-13 06:08 - 01226752 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 01629184 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00586752 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00575488 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00314368 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00273408 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00224256 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-10-12 05:02 - 2016-09-10 00:54 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-10-12 05:02 - 2016-08-30 00:31 - 14183424 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-10-12 05:02 - 2016-08-30 00:31 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-10-12 05:02 - 2016-08-30 00:31 - 01867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-10-12 05:02 - 2016-08-30 00:12 - 12880384 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2016-10-12 05:02 - 2016-08-30 00:12 - 01806848 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-10-12 05:02 - 2016-08-30 00:12 - 01499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2016-10-12 05:02 - 2016-08-30 00:04 - 03229696 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-10-12 05:02 - 2016-08-29 23:55 - 02972672 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2016-10-12 05:02 - 2016-08-17 05:40 - 00343552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00056320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00025600 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2016-10-12 05:02 - 2016-08-17 05:40 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2016-10-12 05:02 - 2016-07-22 23:58 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2016-10-12 05:02 - 2016-07-22 23:51 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-10 22:06 - 2016-01-09 14:52 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\Skype
2016-11-10 22:03 - 2016-01-08 16:51 - 00000010 _____ C:\Users\ゆきぃ\AppData\Local\sponge.last.runtime.cache
2016-11-10 21:56 - 2011-10-12 15:50 - 00000690 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-10 21:53 - 2016-01-10 01:37 - 00000626 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-11-10 20:10 - 2009-07-14 13:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-10 20:10 - 2009-07-14 13:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-10 20:03 - 2011-10-12 15:51 - 00204425 _____ C:\windows\system32\fastboot.set
2016-11-10 20:03 - 2009-07-14 12:20 - 00000000 ____D C:\windows\inf
2016-11-10 20:02 - 2016-01-17 23:33 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-10 20:02 - 2011-10-12 15:50 - 00000686 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-10 20:02 - 2009-07-14 14:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-11-10 20:01 - 2016-08-26 22:30 - 00000000 ____D C:\ProgramData\Adobe
2016-11-10 20:01 - 2016-01-10 01:37 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\Adobe
2016-11-10 20:01 - 2016-01-07 21:35 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\Adobe
2016-11-10 20:00 - 2016-08-26 22:30 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-11-10 19:55 - 2011-10-12 16:07 - 00410836 _____ C:\windows\system32\perfh011.dat
2016-11-10 19:55 - 2011-10-12 16:07 - 00121882 _____ C:\windows\system32\perfc011.dat
2016-11-10 19:55 - 2009-07-14 14:13 - 01311826 _____ C:\windows\system32\PerfStringBackup.INI
2016-11-09 22:15 - 2016-07-21 22:22 - 00000000 ____D C:\Program Files (x86)\インストール
2016-11-09 22:10 - 2009-07-14 13:45 - 00302408 _____ C:\windows\system32\FNTCACHE.DAT
2016-11-09 21:32 - 2016-05-31 20:15 - 00068784 _____ C:\Users\ゆきぃ\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-09 20:22 - 2016-09-30 05:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-09 20:22 - 2016-01-17 23:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-09 20:15 - 2016-01-08 17:51 - 00000000 ____D C:\windows\system32\MRT
2016-11-09 20:13 - 2016-01-08 17:51 - 141011376 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-11-08 21:53 - 2016-01-10 01:37 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-11-08 21:53 - 2016-01-10 01:37 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-08 21:53 - 2016-01-10 01:37 - 00003564 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-11-08 21:53 - 2016-01-10 01:37 - 00000000 ____D C:\windows\system32\Macromed
2016-11-08 21:53 - 2011-10-12 15:50 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-11-08 06:50 - 2016-01-07 21:37 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\Google
2016-11-07 20:08 - 2016-01-09 15:37 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\OBS
2016-11-07 19:39 - 2016-07-28 05:11 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\DAEMON Tools Lite
2016-11-07 19:39 - 2016-01-23 08:49 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-07 19:39 - 2011-02-13 04:33 - 00000000 ____D C:\windows\Panther
2016-11-07 19:31 - 2016-01-10 12:36 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-06 03:30 - 2016-01-14 21:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-06 03:30 - 2016-01-09 14:51 - 00000000 ____D C:\ProgramData\Skype
2016-11-05 19:08 - 2016-09-30 05:08 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-05 19:08 - 2016-09-30 05:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-26 17:29 - 2010-11-21 12:27 - 00485032 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2016-10-26 06:39 - 2016-09-30 05:08 - 19925152 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll
2016-10-26 06:39 - 2016-09-30 05:08 - 17429080 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll
2016-10-26 06:39 - 2016-09-30 05:08 - 14397272 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll
2016-10-26 06:39 - 2016-09-30 05:08 - 03933968 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll
2016-10-26 06:39 - 2016-09-30 05:08 - 03473368 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll
2016-10-26 06:39 - 2016-09-30 05:08 - 00041344 _____ C:\windows\system32\nvinfo.pb
2016-10-26 05:17 - 2016-09-30 17:49 - 00548408 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll
2016-10-26 05:17 - 2016-09-30 17:49 - 00081856 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll
2016-10-26 05:17 - 2016-09-30 05:08 - 06386232 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll
2016-10-26 05:17 - 2016-09-30 05:08 - 02475968 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll
2016-10-26 05:17 - 2016-09-30 05:08 - 01764408 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll
2016-10-26 05:17 - 2016-09-30 05:08 - 00392128 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll
2016-10-26 05:17 - 2016-09-30 05:08 - 00069568 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll
2016-10-25 09:02 - 2011-10-12 15:50 - 00002181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 08:19 - 2016-09-30 17:45 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\NVIDIA Corporation
2016-10-24 15:31 - 2016-09-30 05:08 - 07507695 _____ C:\windows\system32\nvcoproc.bin
2016-10-22 10:33 - 2016-09-17 06:33 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\gtk-2.0
2016-10-22 10:33 - 2016-01-09 15:48 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\Co34571
2016-10-22 10:33 - 2016-01-07 22:45 - 00000000 ____D C:\ProgramData\Trend Micro
2016-10-22 10:33 - 2016-01-07 21:32 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\Lenovo
2016-10-22 10:33 - 2009-07-14 12:20 - 00000000 ____D C:\windows\registration
2016-10-21 17:39 - 2016-01-07 21:31 - 00000000 ____D C:\Users\ゆきぃ
2016-10-21 01:06 - 2016-09-24 19:57 - 00123671 _____ C:\Users\ゆきぃ\Documents\1024x768_90100-3003fps_44100Hz.aup
2016-10-20 07:48 - 2016-09-30 05:08 - 01595456 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll
2016-10-19 21:07 - 2016-09-17 05:01 - 00000000 ____D C:\Users\ゆきぃ\.gimp-2.6
2016-10-17 00:42 - 2016-01-10 12:39 - 00000000 ____D C:\Users\ゆきぃ\AppData\Roaming\Apple Computer
2016-10-15 20:02 - 2009-07-14 12:20 - 00000000 ____D C:\windows\rescache
2016-10-14 11:20 - 2016-09-30 05:10 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\NVIDIA
2016-10-14 08:18 - 2016-06-01 18:33 - 00000000 ____D C:\Users\ゆきぃ\AppData\Local\Windows Live
2016-10-12 05:23 - 2016-01-08 21:21 - 00000000 ___SD C:\windows\system32\CompatTel
2016-10-12 05:23 - 2016-01-08 21:21 - 00000000 ____D C:\windows\system32\appraiser
2016-10-12 05:23 - 2016-01-08 15:03 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-12 05:23 - 2016-01-08 15:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-10-12 05:23 - 2009-07-14 12:20 - 00000000 ____D C:\windows\SysWOW64\Dism
2016-10-12 05:23 - 2009-07-14 12:20 - 00000000 ____D C:\windows\system32\Dism
2016-10-12 05:17 - 2016-01-08 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Files in the root of some directories =======

2016-01-08 16:51 - 2016-11-10 22:03 - 0000010 _____ () C:\Users\ゆきぃ\AppData\Local\sponge.last.runtime.cache
2011-10-12 15:50 - 2011-10-12 15:50 - 1914000 _____ (Adobe Systems Incorporated) C:\ProgramData\flashax10.exe

Files to move or delete:
====================
C:\ProgramData\flashax10.exe

Some files in TEMP:
====================
C:\Users\ゆきぃ\AppData\Local\Temp\3962709.exe
C:\Users\ゆきぃ\AppData\Local\Temp\dllnt_dump.dll
C:\Users\ゆきぃ\AppData\Local\Temp\libeay32.dll
C:\Users\ゆきぃ\AppData\Local\Temp\msvcr120.dll
C:\Users\ゆきぃ\AppData\Local\Temp\nvStInst.exe
C:\Users\ゆきぃ\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-10-27 07:22

==================== End of FRST.txt ============================
31：ゆきぃ :
2016/11/11 (Fri) 20:12:30: 「Addtition.txt」のlogです

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2016
Ran by ゆきぃ (10-11-2016 22:08:26)
Running from C:\Users\ゆきぃ\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2016-01-07 12:31:01)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3725412681-3687118450-826025000-500 - Administrator - Disabled)
Guest (S-1-5-21-3725412681-3687118450-826025000-501 - Limited - Disabled)
ゆきぃ (S-1-5-21-3725412681-3687118450-826025000-1001 - Administrator - Enabled) => C:\Users\ゆきぃ

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ウイルスバスタークラウド (Enabled - Up to date) {8242D66F-41BD-4049-C2E6-E578E73B62A0}
AS: ウイルスバスタークラウド (Enabled - Up to date) {3923378B-6787-4FC7-F856-DE0A9CBC281D}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Japanese (HKLM-x32\...\{AC76BA86-7AD7-1041-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19140 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.207 - Adobe Systems Incorporated)
AmaRecTV Live (HKLM-x32\...\AmaRecTV Live) (Version: - )
AMV4 Video Codec (HKLM\...\{657FFEDF-A596-491F-985C-7F2090B8FEBB}) (Version: 4.02 - amaman)
AmvVideoCodec (HKLM-x32\...\AmvVideoCodec) (Version: - )
AndreaMosaic 3.36.0 (HKLM-x32\...\AndreaMosaic) (Version: - )
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
Apple Application Support（32 ビット） (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support（64 ビット） (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BSHSUH05 USB Sound Device (HKLM\...\C-Media CM106 Like Sound Driver) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0192 - Disc Soft Ltd)
FMEAutomator 3 (HKLM-x32\...\{8515A2F4-5571-4F52-8085-814E30716C48}) (Version: 3.4.1.0 - ぶれぼ)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.0.1.1 - Genesys Logic)
GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.2.183.39 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2345 - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo Dynamic Brightness System (HKLM-x32\...\{D9ED6D06-6002-495E-A7BC-46E6AE386996}) (Version: 4.0.00.22080 - Lenovo)
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.6 - Lenovo)
Lenovo Eye Distance System (HKLM-x32\...\{5183D7AB-D09B-411F-A74E-BBAEA61C6505}) (Version: 4.0.00.21090 - Lenovo)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1230 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.1230 - CyberLink Corp.) Hidden
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.4827a - CyberLink Corp.)
Lenovo Power2Go (x32 Version: 6.0.4827a - CyberLink Corp.) Hidden
Lenovo Tinian Fn PS/2 Keyboard Driver (HKLM-x32\...\{B266E062-D6C5-485B-B426-51B152B041A6}) (Version: V1.0.11.0321 - Lenovo)
LVT (HKLM-x32\...\{D3063097-EC84-4D21-84A4-9D852E974355}) (Version: 4.1.3.0309 - Lenovo)
Malwarebytes Anti-Malware バージョン 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (日本語) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Niconico Live Encoder (HKLM-x32\...\{E3D1594B-8077-42C9-8541-B8438F52F283}) (Version: 2.0.4 - niwango, inc.)
NVIDIA 3D Vision コントローラードライバー 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision ドライバー 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.70 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA HD オーディオドライバー 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX システムソフトウェア 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA グラフィックスドライバー 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenOffice 4.1.3 (HKLM-x32\...\{9BC9E293-16FA-46D6-80AE-B963EA1522A5}) (Version: 4.13.9783 - Apache Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6230 - Realtek Semiconductor Corp.)
RogueKiller version 12.8.0.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.8.0.0 - Adlice Software)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype(TM) 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Trend Micro Titanium (Version: 10.0 - Trend Micro Inc.) Hidden
Voiceroid Yuzuki Yukari v1.5.0 (HKLM-x32\...\Voiceroid Yuzuki Yukari v1.5.0_is1) (Version: Voiceroid Yuzuki Yukari v1.5.0 - )
VOICEROID＋東北ずん子 (1.6.0) (HKLM-x32\...\{569098B7-26AC-4D59-823E-E8270566296A}) (Version: 1.6.0 - 株式会社ＡＨＳ)
VOICEROID＋東北ずん子 EX (HKLM-x32\...\{EA91D3E7-683B-4DDC-9242-D4F928628239}) (Version: 1.7.3 - 株式会社ＡＨＳ)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows ドライバパッケージ - I-O DATA DEVICE, INC. GV-USB2 (06/28/2010 1.1.0.93) (HKLM\...\B7A55616156C0785AF22DD6C01B2D883C06D9DDF) (Version: 06/28/2010 1.1.0.93 - I-O DATA DEVICE, INC.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ウイルスバスタークラウド (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 10.0 - トレンドマイクロ株式会社)
ニコ生デスクトップキャプチャー(XP) SEASON2 (HKLM-x32\...\{28800F31-F296-44CF-BB77-8AD1D05D7445}) (Version: 1.21 - Consolas)
やります！アンコちゃん 2.2.1.5 (HKLM-x32\...\やります！アンコちゃん) (Version: 2.2.1.5 - 居酒屋「めがね」)
リモート接続用の Windows Live Mesh ActiveX コントロール (日本語) (HKLM-x32\...\{BAF0CA91-4642-46C8-9BCD-C93B61508701}) (Version: 15.4.5722.2 - Microsoft Corporation)
レノボドライバとアプリのインストール (HKLM-x32\...\{45970CD1-D599-47D4-938F-3E9800D54ED1}) (Version: 5.10.1809 - Lenovo)
不思議のダンジョン　風来のシレン外伝　女剣士アスカ見参！ for Windows (HKLM-x32\...\{CCBE2427-25FF-4EFA-8153-FED5681D82C1}) (Version: 1.08.000 - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {38563D12-45D5-45F5-A95F-06485AB35418} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07] (Google Inc.)
Task: {3FF0CC22-444D-4000-B780-1296BFBC14E8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-26] (NVIDIA Corporation)
Task: {4A98116F-BC7C-45E1-9C1B-5524A621FCF2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-26] (NVIDIA Corporation)
Task: {51A8E0AA-F89A-4412-97AC-339BD215C9D0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-29] (Piriform Ltd)
Task: {76DE15DF-E651-4BFF-8731-744FFFCB8689} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {832197B2-1ADB-48D2-BFCC-6E8A604BC80A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-07] (Google Inc.)
Task: {8E9FEBBB-3956-441C-AF7E-F7020E0DD8EC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-26] (NVIDIA Corporation)
Task: {B4417DEA-4BF7-4FFF-B29A-561B2C86BD91} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-26] (NVIDIA Corporation)
Task: {B53BA8FE-371F-474B-A74E-90382B4E086C} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated)
Task: {BC31DBAD-CE96-44A5-884E-3B9DF9D9B7BD} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-26] (NVIDIA Corporation)
Task: {BE836B89-5401-46CC-96B4-BDEB26A3F282} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {CDAB38D6-2FAB-436B-B80F-9AE9C8298CDA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-26] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\ゆきぃ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FMEAutomator 3\作者の Web サイト.lnk -> hxxp://www.pantherweb.net/

==================== Loaded Modules (Whitelisted) ==============

2016-01-07 22:46 - 2015-03-31 20:08 - 00026408 _____ () C:\Program Files\Trend Micro\AMSP\boost_system-vc110-mt-1_57.dll
2016-01-07 22:46 - 2015-03-31 20:08 - 00058320 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc110-mt-1_57.dll
2016-01-07 22:46 - 2015-03-31 20:09 - 00686608 _____ () C:\Program Files\Trend Micro\AMSP\sqlite3.dll
2016-01-07 22:46 - 2015-03-31 20:08 - 00110320 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc110-mt-1_57.dll
2016-01-07 22:46 - 2015-03-31 20:08 - 00036160 _____ () C:\Program Files\Trend Micro\AMSP\boost_chrono-vc110-mt-1_57.dll
2016-01-07 22:46 - 2015-03-31 20:09 - 01314920 _____ () C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
2016-01-07 22:45 - 2015-07-17 03:31 - 00168544 _____ () C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
2016-01-07 22:45 - 2015-07-17 03:31 - 00026408 _____ () C:\Program Files\Trend Micro\Titanium\plugin\boost_system-vc110-mt-1_57.dll
2016-01-07 22:45 - 2015-07-17 03:31 - 00065520 _____ () C:\Program Files\Trend Micro\Titanium\plugin\fcMsgDispatcher.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-10-12 15:32 - 2010-12-01 15:48 - 00028672 _____ () C:\Windows\SysWOW64\UMonit.exe
2016-01-07 22:46 - 2015-07-17 03:31 - 00018944 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_system-vc110-mt-1_52.dll
2016-01-07 22:46 - 2015-07-17 03:31 - 00049664 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_date_time-vc110-mt-1_52.dll
2011-10-12 15:32 - 2011-03-16 12:47 - 00032768 _____ () C:\Windows\jmesoft\Service.exe
2016-10-14 08:23 - 2016-10-26 05:21 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 00420408 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-01-07 22:46 - 2015-07-17 03:31 - 00089088 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_thread-vc110-mt-1_52.dll
2016-01-07 22:46 - 2015-07-17 03:31 - 00761856 _____ () C:\Program Files\Trend Micro\Titanium\plugin\Pt\boost_regex-vc110-mt-1_52.dll
2016-09-29 01:26 - 2016-09-29 01:26 - 00032768 _____ () C:\Program Files\CCleaner\lang\lang-1041.dll
2016-01-23 09:22 - 2016-01-23 09:22 - 00189248 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2016-09-30 05:08 - 2016-10-26 05:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-10-12 15:32 - 2011-03-22 06:12 - 00020480 _____ () C:\Windows\jmesoft\JME_LOAD.exe
2016-01-23 09:22 - 2016-01-23 09:22 - 00075136 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2011-10-12 15:32 - 2008-01-01 02:27 - 00007168 _____ () C:\Windows\jmesoft\VistaVolume.dll
2011-10-12 15:49 - 2010-09-10 03:19 - 00210432 _____ () C:\Program Files\Lenovo\Lenovo Eye Distance System\KeyStoneAdapter.dll
2015-06-24 21:05 - 2010-07-05 13:47 - 00063488 _____ () C:\windows\system32\GVUSB2.X86.AX
2015-06-24 21:05 - 2010-07-05 13:47 - 00170783 _____ () C:\windows\system32\GVUSB2.C86.AX
2015-10-19 14:29 - 2015-10-19 14:29 - 00084992 ____R () D:\インスト\NDC(XP)\DesktopCaptureXP.ax
2011-10-12 15:49 - 2010-09-10 03:18 - 00211456 _____ () C:\Program Files\Lenovo\Lenovo Eye Distance System\VideoPlayer.dll
2011-10-12 15:49 - 2010-09-21 02:08 - 00210432 _____ () C:\Program Files\Lenovo\Lenovo Brightness System\KeyStoneAdapter.dll
2011-10-12 15:49 - 2010-09-21 10:55 - 00182272 _____ () C:\Program Files\Lenovo\Lenovo Brightness System\DDCHelperWraper.dll
2009-12-05 08:59 - 2009-12-05 08:59 - 00619816 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2009-12-05 09:04 - 2009-12-05 09:04 - 00013096 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2016-09-30 05:09 - 2016-10-26 05:21 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2011-10-12 15:32 - 2009-07-17 01:20 - 00032768 _____ () C:\Windows\jmesoft\Keyhook.dll
2016-10-14 08:23 - 2016-10-26 04:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-14 08:23 - 2016-10-26 04:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-14 08:23 - 2016-10-26 04:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-14 08:23 - 2016-10-26 05:21 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-14 08:23 - 2016-10-26 05:21 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-14 08:23 - 2016-10-26 04:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-14 08:23 - 2016-10-26 04:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-14 08:23 - 2016-10-26 04:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-14 08:23 - 2016-10-26 04:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-10-05 18:18 - 2016-10-05 18:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-01 18:13 - 2016-09-01 18:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-25 09:02 - 2016-10-20 17:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-25 09:01 - 2016-10-20 17:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 11:34 - 2009-06-11 06:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3725412681-3687118450-826025000-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ゆきぃ\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.11.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5339028D-6A4A-4711-B454-A6F75C3101CF}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C87CBAC5-B080-43CF-A0DB-B75CC1EEBD2F}] => (Allow) LPort=2869
FirewallRules: [{AF076BE7-F2F8-4897-BEA2-B49F311EA1E3}] => (Allow) LPort=1900
FirewallRules: [{10CBE171-5FFD-49E8-BD82-275CC934E07F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{B3D34A65-288D-42D5-920C-E27701249A99}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{A4C3E9D5-216E-4E7B-BE01-C3B9D421D5C8}D:\ニコ生\棒読みちゃん\bouyomichan.exe] => (Allow) D:\ニコ生\棒読みちゃん\bouyomichan.exe
FirewallRules: [UDP Query User{4BF2504C-8DB0-4C73-B7A2-55CE6E8B1FBA}D:\ニコ生\棒読みちゃん\bouyomichan.exe] => (Allow) D:\ニコ生\棒読みちゃん\bouyomichan.exe
FirewallRules: [{275563B9-57C6-4F79-BEF2-E740A0C2FEC1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6BC454A0-E481-4465-9FA0-3651FCC7815F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A061E5F6-3959-42F2-A0EC-573B1FEFA537}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B70C633D-3F02-4445-9B85-E6ED450FC46E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C4228712-97FC-4A45-B731-F4D962005C6E}] => (Allow) LPort=25565
FirewallRules: [TCP Query User{888B5994-28C3-4DD3-9E1F-50655E8F0C8F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{DD4199D8-10C8-4249-A15A-3543FE784E97}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{E33A158D-0722-4BC9-9436-AA81DA099F10}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CE33E7F8-0F46-44D4-A83C-C605F66889A8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{665E113E-4EE0-4B43-8DB9-60AF265DBC3A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{31323CE7-5BE8-4E35-9792-31862E3B6E3E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F2DC6445-48F5-4D21-97A8-EED38FF3A099}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DE299C16-97F5-4BBD-8C4A-E2623A7180FC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5FE54BEF-269A-4A9A-BDC9-3583939115C9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FCDC20C1-64DB-43BB-8105-2C64220ABFDC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D662E825-BD19-4921-B1EF-B5C63B27B129}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{AC2AA4F8-3896-46B4-9AE4-260C94D6F7E9}D:\stepmania 5\program\stepmania-sse2.exe] => (Allow) D:\stepmania 5\program\stepmania-sse2.exe
FirewallRules: [UDP Query User{5F3004D8-A88C-4533-9B1E-2532348B88B0}D:\stepmania 5\program\stepmania-sse2.exe] => (Allow) D:\stepmania 5\program\stepmania-sse2.exe
FirewallRules: [TCP Query User{F143C7E8-9F09-463A-AA2F-235BF0DB4665}D:\stepmania 5\program\stepmania.exe] => (Allow) D:\stepmania 5\program\stepmania.exe
FirewallRules: [UDP Query User{9FD07130-CA88-4DF1-8BBE-7F6037B4B959}D:\stepmania 5\program\stepmania.exe] => (Allow) D:\stepmania 5\program\stepmania.exe
FirewallRules: [{62747DE2-174B-4CA9-8B82-49DA4946BCD4}] => (Allow) C:\ProgramData\NexonJP\NGM\NGM.exe
FirewallRules: [{20105B11-5CD6-4FF0-AABC-919FADA0B570}] => (Allow) C:\ProgramData\NexonJP\NGM\NGM.exe
FirewallRules: [{D6A8C64C-C5D3-4BEA-876E-1F6FB9107EB8}] => (Allow) C:\windows\system32\hasplms.exe
FirewallRules: [{1A3697F7-F737-4B25-9DED-25BD1065BBFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{3D09ECDC-EE15-4250-9CE3-709B71918465}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{26E1C4E9-5265-490A-8F24-341F70BFD165}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6376B029-83AE-4585-B2DD-9F8C209A0845}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{52F31BD0-E6E7-4DF3-AEBA-743E436CFDF5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{29C80125-26AE-40B4-AA00-ED3A225C7004}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FEBD70BC-9C9A-492E-95D5-4EE7AB5A620B}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Restore Points =========================

09-11-2016 21:12:47 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
09-11-2016 21:13:23 OpenOffice 4.1.3 をインストールしました
10-11-2016 19:36:44 復元ポイント２
10-11-2016 20:07:38 Windows Defender Checkpoint

==================== Faulty Device Manager Devices =============

Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (標準 USB ホストコントローラー)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/10/2016 08:07:38 PM) (Source: VSS) (EventID: 8194) (User: )
Description: ボリュームシャドウコピーサービスエラー: IVssWriterCallback インターフェイスを照会中に予期しないエラーが発生しました。hr = 0x80070005, アクセスが拒否されました。
。
このエラーは通常、ライターまたはリクエスタープロセスのセキュリティの設定が正しくない場合に発生します。

操作:
ライターデータを収集しています

コンテキスト:
ライタークラス ID: {e8132975-6f93-4464-a53e-1050253ae220}
ライター名: System Writer
ライターインスタンス ID: {8a6591de-8281-4dfa-9057-b245f4a113ae}

Error: (11/10/2016 08:04:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: クエリ "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" のイベントフィルターを名前空間 "//./root/CIMV2" 内で再度使用できませんでした。原因はエラー 0x80041003 です。問題が解決されなければ、このフィルターではイベント表示できません。

Error: (11/10/2016 08:02:45 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: "C:\Program Files (x86)\Lenovo\Boot Optimizer\MFC80U.DLL" のアクティブ化コンテキストの生成に失敗しました。
従属アセンブリ Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" が見つかりませんでした。
詳細な診断を行うには sxstrace.exe を実行してください。

Error: (11/10/2016 07:54:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: クエリ "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" のイベントフィルターを名前空間 "//./root/CIMV2" 内で再度使用できませんでした。原因はエラー 0x80041003 です。問題が解決されなければ、このフィルターではイベント表示できません。

Error: (11/10/2016 07:52:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: "C:\Program Files (x86)\Lenovo\Boot Optimizer\MFC80U.DLL" のアクティブ化コンテキストの生成に失敗しました。
従属アセンブリ Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" が見つかりませんでした。
詳細な診断を行うには sxstrace.exe を実行してください。

Error: (11/10/2016 07:34:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: クエリ "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" のイベントフィルターを名前空間 "//./root/CIMV2" 内で再度使用できませんでした。原因はエラー 0x80041003 です。問題が解決されなければ、このフィルターではイベント表示できません。

Error: (11/10/2016 07:32:17 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: "C:\Program Files (x86)\Lenovo\Boot Optimizer\MFC80U.DLL" のアクティブ化コンテキストの生成に失敗しました。
従属アセンブリ Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" が見つかりませんでした。
詳細な診断を行うには sxstrace.exe を実行してください。

Error: (11/09/2016 11:18:53 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: "C:\Program Files (x86)\Lenovo\Boot Optimizer\MFC80U.DLL" のアクティブ化コンテキストの生成に失敗しました。
従属アセンブリ Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" が見つかりませんでした。
詳細な診断を行うには sxstrace.exe を実行してください。

Error: (11/09/2016 11:18:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: クエリ "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" のイベントフィルターを名前空間 "//./root/CIMV2" 内で再度使用できませんでした。原因はエラー 0x80041003 です。問題が解決されなければ、このフィルターではイベント表示できません。

Error: (11/09/2016 10:14:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: プログラム mbam-setup-bc.1878-2.2.1.1043.tmp バージョン 51.52.0.0 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、アクションセンターコントロールパネルで、問題の履歴をクリックしてください。

プロセス ID: 1788

開始時刻: 01d23a8aefd1ebfc

終了時刻: 2

アプリケーションパス: C:\Users\ゆきぃ\AppData\Local\Temp\is-FF7CA.tmp\mbam-setup-bc.1878-2.2.1.1043.tmp

レポート ID:

System errors:
=============
Error: (11/10/2016 08:02:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {F9717507-6651-4EDB-BFF7-AE615179BCCF} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/10/2016 07:51:45 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {F9717507-6651-4EDB-BFF7-AE615179BCCF} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/10/2016 12:11:26 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {F9717507-6651-4EDB-BFF7-AE615179BCCF} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/09/2016 11:18:33 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/09/2016 11:15:48 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {F9717507-6651-4EDB-BFF7-AE615179BCCF} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/09/2016 10:10:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Search サービスは予期せぬ原因により終了しました。このサービスの終了は 1 回目です。次の修正操作が 30000 ミリ秒以内に実行されます: サービスの再開。

Error: (11/09/2016 10:10:32 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Windows Search サービスは、サービス固有エラー %%-1073473535 で終了しました。

Error: (11/09/2016 10:09:43 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: サーバー {F9717507-6651-4EDB-BFF7-AE615179BCCF} は、必要なタイムアウト期間内に DCOM に登録しませんでした。

Error: (11/09/2016 08:26:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Windows Live ID Sign-in Assistant サービスを、次のエラーが原因で開始できませんでした:
パイプは終了しました。

Error: (11/09/2016 08:26:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: NVIDIA Display Container LS サービスは予期せぬ原因により終了しました。このサービスの終了は 1 回目です。次の修正操作が 1000 ミリ秒以内に実行されます: サービスの再開。

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz
Percentage of memory in use: 27%
Total physical RAM: 8174.45 MB
Available physical RAM: 5935.58 MB
Total Virtual: 16347.08 MB
Available Virtual: 13617.15 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100.08 GB) (Free:27.02 GB) NTFS
Drive d: () (Fixed) (Total:117.94 GB) (Free:89.61 GB) NTFS
Drive f: () (Fixed) (Total:465.76 GB) (Free:178.64 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 56A1747C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.1 GB) - (Type=12)
Partition 4: (Not Active) - (Size=117.9 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================
32：管理人です :
2016/11/11 (Fri) 23:01:46: ゆきぃさんへ

↓

IEお気に入りのバックアップ完了しましたか？
33：ゆきぃ :
2016/11/11 (Fri) 23:45:35: 完了しました
34：管理人です :
2016/11/12 (Sat) 01:30:09: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478881809.png IEを修復しますね。

FRST.exeは「X印」クリックして終了させてください。

❷Zoek.exeをダウンロードします
http://download.bleepingcomputer.com/smeenk/

「exe」形式のヤツをデスクトップ上に一旦保存してください（写真を参考）
35：管理人です :
2016/11/12 (Sat) 01:33:13: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478881993.png ブラウザは全部閉じること（Zoek.exeはブラウザなどが起動していると虚弱体質toolのため上手に作業ができなくなるため）

Zoek.exeは「管理者権限」で起動させてください

トレンドマイクロのウイルスバスタークラウドがZoek.exeをウイルス判定（それは誤検知）する場合は、ウイルスバスタークラウドを一旦「停止（無効）」にしてください。

起動に成功したら写真の赤丸部分参考にして(More Options)クリックへ
36：管理人です :
2016/11/12 (Sat) 01:38:08: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478882288.png 写真を参考にして

☑Empty Temp
☑IE Defaults

この２つに「✔」を入れること
37：管理人です :
2016/11/12 (Sat) 01:40:03: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478882403.png 写真参考に

「Run Script」をクリックする。

↓

一旦Zoek.exeは消えるが、すぐに画面が復活し修復作業を開始する。その時、じっと我慢し一切余計な作業はしないこと。
38：管理人です :
2016/11/12 (Sat) 01:42:14: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478882534.png 修復作業が始まる。じっと我慢
39：管理人です :
2016/11/12 (Sat) 01:43:01: 作業が完了すると「PCを再起動したい」という意味のメッセが表示されるからPCを再起動させること
40：管理人です :
2016/11/12 (Sat) 01:47:53: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478882873.png PC再起動しPCが安定したらIEを起動してほしい（ChromeじゃなくてIEを起動すること）。

すると「不明なプログラムがホームページをhttp,,,,,,,,,,,」と警告してくるので「変更」をクリックしてください。するとIEのホームページは「MSN」にセッティングされます。

（写真参考）

❷検索エンジンはBingに初期化されているので、それが嫌ならGoogle検索エンジンをインストールするなど、ゆきぃさんのお好み設定にしておいてください
41：管理人です :
2016/11/12 (Sat) 01:51:33: https://bbs5.fc2.com//bbs/img/_850600/850591/full/850591_1478883093.png IE初期化作業が完了したら、Zoek.exeのlogを見せてください。

↓

Zoek.exeを管理者権限で起動し、Zoek.exe画面の一番下を見ると

「C:\Zoek-results.log」がありますね？それをクリックすればメモ帳のlogが開きますから、全文コピペし、見せてください。
42：ゆきぃ :
2016/11/14 (Mon) 00:15:55: zoekのlogです

Zoek.exe v5.0.0.1 Updated 19-September-2016
Tool run by ゆきぃ on 2016/11/14 at 0:11:27.63.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\ゆきぃ\Downloads\zoek.exe [Scan all users] [Checkboxes used]

==== System Restore Info ======================

2016/11/14 0:12:06 Zoek.exe System Restore Point Created Successfully.

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.google.com/ig/redirectdomain?brand=LEND&bmod=LEND"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{7C0BF61A-2753-47A5-BFC7-7E010C335519}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{7C0BF61A-2753-47A5-BFC7-7E010C335519} - http://www.google.co.jp/search?hl=ja&q={searchTerms}&lr=lang_ja

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ゆきぃ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ゆきぃ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\ゆきぃ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\ゆきぃ\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\ゆきぃ\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\ゆきぃ\AppData\Local\Temp will be emptied at reboot
C:\Users\ゆきぃ\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\ゆきぃ\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on 2016/11/14 at 0:13:29.82 ======================
43：管理人です :
2016/11/14 (Mon) 00:28:10: ゆきぃさん

IEは、デフォルト設定に戻ってますね？（logの上では成功しています）

現状のIEの状態を教えてください。おかしな現象は、消えたと思うんですが、どうですか？

--------------------------------------------------

IEですが検索エンジンはBingになっているはずなのでGoogle検索エンジンにでも切り替えておいてください。

❷http://www.japan-secure.com/entry/blog-entry-387.html　熟読しAdblock Plus for Internet Explorerを組み込んでおいてください。