悪代官の伏魔殿掲示板
Windowsセキュリティで検出された「Trojan:Win32/Spursint.F!cl」
とあるファイルをDLしたところ、件名にあるとおりのトロイの木馬?が検出されました…
Windowsセキュリティによるフルスキャンの後同アプリケーションによって削除処理をし、その後特に不審な挙動は見られないのですが不安で投稿させていただきました。
今回のウイルスの名前を検索したら4年前の物ですが、似たような名前のウイルスの相談を見つけ(https://detail.chiebukuro.yahoo.co.jp/qa/question_detail/q11161604471)、こちらにたどり着いた次第です。誤検出の可能性もどうやらあるようですが、助言頂けたら幸いです。
各ログは順次下に追加いたします。
  • せーめー
  • 2020/11/22 (Sun) 03:19:54
HJTのログです
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 3:07:40, on 2020/11/22
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceHelper.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12109.10002.53004.0_x64__nzyj5cx40ttqa\VFS\ProgramFilesCommonX86\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Webex\Plugins\ptpluginhost.exe
C:\Users\Public\Downloads\Norton\{NS-22200257-TTW-FSD5220003}\NSDeluxeDownloader.exe
C:\Users\Public\Downloads\Norton\{NS-22200257-TTW-FSD5220003}\Setup.exe
D:\ダウンロード\Hijachthis\HijackThis.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.41\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O3 - Toolbar: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKCU\..\Run: [OneDrive] "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [THPanel] "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
O4 - HKCU\..\Run: [EpicGamesLauncher] "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Norton Download Manager{NS-22200257-TTW-FSD5220003}] C:\Users\Public\Downloads\Norton\{NS-22200257-TTW-FSD5220003}\NSDeluxeDownloader.exe /m
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe -update pepperplugin
O4 - Startup: らくらくアップデートツール.lnk = C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe
O4 - Global Startup: クライアントマネージャV.lnk = C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{5383dae9-c1c9-4a68-849c-87e97a3a2ab8}: NameServer = 192.168.1.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: BWH32S - Buffalo Inc. - C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_7f3881 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: DMMGamePlayerService (dgpservice) - Unknown owner - C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - D:\App\VIP ACCESS\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Productivity Tools Update Service (WebexPluginsService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Plugins\webexservice.exe
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13941 bytes
  • せーめー
  • 2020/11/22 (Sun) 03:21:28
CCのログとVersion.txtです
3D ビューアー Microsoft Corporation 2020/10/01 7.2009.29132.0
7-Zip 19.00 (x64) Igor Pavlov 2019/08/21 4.96 MB 19.00
Adobe Acrobat Reader DC - Japanese Adobe Systems Incorporated 2020/11/04 386 MB 20.013.20064
Adobe Flash Player 32 PPAPI Adobe 2020/11/10 4.06 MB 32.0.0.453
Audacity 2.3.3 Audacity Team 2020/01/08 62.1 MB 2.3.3
Avast Free Antivirus Avast Software 2020/11/22 20.9.2437
Black Desert GameOn 2019/08/21 Black Desert
Blender Blender Foundation 2019/08/21
BSA Browser version 1.12.3 Alexander Ellingsen 2020/06/25 12.0 MB 1.12.3
BUFFALO AirStation倍速設定ツール(アンインストール) 2019/08/21
BUFFALO LAN端子用 無線子機設定ツール BUFFALO INC. 2019/08/21
BUFFALO エアステーション設定ツール BUFFALO INC. 2019/03/08 2.95 MB 2.0.15
BUFFALO クライアントマネージャV をアンインストール Buffalo Inc. 2019/03/08 13.2 MB 1.5.4
BUFFALO パソコン環境表示ツール Buffalo Inc. 2019/03/08 4.19 MB 1.2.1
CCleaner Piriform 2020/11/22 5.74
Cisco Webex Meetings デスクトップアプリ Cisco Webex LLC 2020/04/14 225 MB 40.10.6.11
Cisco Webex Productivity Tools Cisco WebEx LLC 2020/11/04 40.10.0.21
Colon Yamma-ma 2019/11/01 8.83 MB 2.1.0
Common GameOn 2019/08/21 50993744
Craving Explorer Chromium 開発者 2020/10/02 2.3.5
Craving Explorer Version 1.9.28 T-Craft 2020/03/14 38.8 MB 1.9.28.0
CrystalDiskInfo 8.0.0 Crystal Dew World 2019/03/31 10.2 MB 8.0.0
DARK SOULS™ III FromSoftware, Inc. 2020/06/21
Discord Discord Inc. 2020/09/11 58.7 MB 0.0.308
DMMGamePlayer バージョン 2.4.6 DMM.com,Inc. 2019/11/08 316 MB 2.4.6
Dolby Access Dolby Laboratories 2020/10/29 3.6.181.0
Epic Games Launcher Epic Games, Inc. 2019/10/04 95.3 MB 1.1.229.0
EPSON EP-805A Series プリンター アンインストール SEIKO EPSON Corporation 2020/02/07
EPSON Scan Seiko Epson Corporation 2019/08/21
Epson Software Updater Seiko Epson Corporation 2020/02/07 8.73 MB 4.5.1
Fitbit Coach Fitbit 2019/03/07 4.4.133.0
GD Defiler Soul's Services 2019/07/28 2.81 MB 0.2.4.0
Google Chrome Google LLC 2020/11/21 87.0.4280.66
Grim Dawn Crate Entertainment 2019/08/21
Groove ミュージック Microsoft Corporation 2020/10/16 10.20092.10311.0
HEIF 画像拡張機能 Microsoft Corporation 2020/10/01 1.0.32532.0
HGパブリッシングゲーム 起動プログラム NHN Hangame Corp. 2019/03/07 6.66 MB 1.0.0.1
iCloud Outlook Apple Inc. 2020/09/17 3.86 MB 11.3.0.59
Intel(R) Management Engine Components Intel Corporation 2019/03/06 1823.12.0.1137
Intel(R) Rapid Storage Technology Intel Corporation 2019/03/06 16.5.0.1027
iTunes Apple Inc. 2020/11/01 12109.10002.53004.0
Java 8 Update 211 (64-bit) Oracle Corporation 2019/06/09 122 MB 8.0.2110.12
JC-U2812F 2019/08/21
LINE LINE Corporation 2020/10/16 6.3.2.2338
LinkedIn LinkedIn 2019/03/07 2.1.7098.0
MediBang Paint Pro 25.6 (64-bit) Medibang 2020/11/14 138 MB 25.6
Microsoft 365 Apps for enterprise - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft Edge Microsoft Corporation 2020/11/21 87.0.664.41
Microsoft Minesweeper Microsoft Studios 2020/09/29 3.1.9160.0
Microsoft Office Home and Business 2016 - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft OneDrive Microsoft Corporation 2020/10/24 147 MB 20.169.0823.0008
Microsoft Pay Microsoft Corporation 2019/08/21 2.4.18324.0
Microsoft Store Microsoft Corporation 2020/11/15 12011.1001.1.0
Microsoft Store エクスペリエンス ホスト Microsoft Corporation 2020/11/06 12011.1001.1.0
Microsoft Teams Microsoft Corporation 2020/09/18 92.8 MB 1.3.00.13565
Microsoft Update Health Tools Microsoft Corporation 2020/11/21 1.18 MB 2.70.0.0
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2019/04/05 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2019/03/07 48.5 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2019/08/21 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2019/08/21 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2019/08/21 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2019/08/21 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 Microsoft Corporation 2020/11/14 22.0 MB 14.27.29112.0
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 Microsoft Corporation 2019/08/21 20.1 MB 14.13.26020.0
Microsoft XNA Framework Redistributable 4.0 Refresh Microsoft Corporation 2019/05/17 9.45 MB 4.0.30901.0
Microsoft ニュース Microsoft Corporation 2020/09/12 4.53.22541.0
Microsoft 付箋 Microsoft Corporation 2020/08/09 3.7.142.0
Minecraft Launcher Mojang 2019/03/07 1.44 MB 1.0.0.0
Mixed Reality ポータル Microsoft Corporation 2020/09/18 2000.20081.1312.0
MPEG-2 ビデオ拡張機能 Microsoft Corporation 2019/09/27 1.0.22661.0
MuseScore 3 Werner Schweer and Others 2019/07/04 299 MB 3.2.2.7534
NVIDIA Control Panel NVIDIA Corp. 2020/06/23 8.1.958.0
NVIDIA FrameView SDK 1.1.4923.29214634 NVIDIA Corporation 2020/11/10 1.1.4923.29214634
NVIDIA GeForce Experience 3.20.5.70 NVIDIA Corporation 2020/11/10 3.20.5.70
NVIDIA HD オーディオ ドライバー 1.3.38.35 NVIDIA Corporation 2020/11/10 1.3.38.35
NVIDIA PhysX システム ソフトウェア 9.19.0218 NVIDIA Corporation 2019/07/11 9.19.0218
NVIDIA USBC Driver 1.45.831.832 NVIDIA Corporation 2020/11/10 1.45.831.832
NVIDIA グラフィックス ドライバー 457.30 NVIDIA Corporation 2020/11/10 457.30
OBS Studio OBS Project 2020/10/12 26.0.2
OBS-VirtualCam version 2.0.4 OBS 2020/10/12 3.18 MB 2.0.4
OneNote for Windows 10 Microsoft Corporation 2020/11/13 16001.13328.20348.0
People Microsoft Corporation 2020/04/07 10.1909.10841.0
PHANTASY STAR ONLINE 2 SEGA Games Co., Ltd. 2019/03/07 7.19 MB
Phototastic Collage Thumbmunkeys Ltd 2020/11/13 3.23.1.0
Pmangインストールマネージャー GameOn,Pmang 2019/08/21 1.0.1.1
PowerDVD for THIRDWAVE jp.cyberlink.com 2019/03/07 14.1.9606.0
Print 3D Microsoft Corporation 2019/04/25 3.3.791.0
Puppet3R Leo-typeb 2020/10/12 2.53 MB 3.1.3
RadioLine Free Coderium 2020/01/08 1.1.5.1
Realtek Audio Console Realtek Semiconductor Corp 2019/10/26 1.1.137.0
Realtek Ethernet Controller Driver Realtek 2019/03/06 4.57 MB 10.26.328.2018
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2019/03/06 36.6 MB 6.0.1.8491
Stardew Valley ConcernedApe 2019/08/21
Steam Valve Corporation 2019/08/21 2.10.91.91
Tablet Driver V5.02 2020/09/08
Teams Machine-Wide Installer Microsoft Corporation 2020/09/11 93.6 MB 1.3.0.13565
The Elder Scrolls V: Skyrim Special Edition Bethesda Game Studios 2020/06/21
Thunder Master v3.22 Palit Microsystems Ltd. 2019/03/07 17.4 MB 3.22.0.0
TwitCasting Desktop Live 1.1.9 (only current user) moicorp 2020/06/21 221 MB 1.1.9
Undertale tobyfox 2019/08/30
Update for Windows 10 for x64-based Systems (KB4023057) Microsoft Corporation 2019/08/03 1.42 MB 2.61.0.0
Uplay Ubisoft 2020/01/26 38.2
UTAU 歌声合成ツール 飴屋プロジェクト 2020/07/08 4.67 MB 1.0.77
VIP Access Symantec Corporation 2019/04/05 11.6 MB 2.2.4.44
Viridi Zoe Vartanian 2019/08/21
Visual Basic 6.0 Service Pack 6 Runtime Set 2019/08/21
Vortex Black Tree Gaming Ltd. 2020/09/20 312 MB 1.3.8
VP9 ビデオ拡張機能 Microsoft Corporation 2020/09/23 1.0.32521.0
Vカツ / V-Katsu IVR 2020/06/23
Web メディア拡張機能 Microsoft Corporation 2019/08/21 1.0.20875.0
Webp 画像拡張機能 Microsoft Corporation 2020/10/21 1.0.32731.0
Xbox Game Bar Microsoft Corporation 2020/11/06 5.420.10222.0
Xbox Game bar Microsoft Corporation 2020/06/06 1.54.4001.0
Xbox Game Speech Window Microsoft Corporation 2019/03/07 1.21.13002.0
Xbox Identity Provider Microsoft Corporation 2020/08/04 12.67.21001.0
Xbox Live Microsoft Corporation 2019/03/07 1.24.10001.0
Xbox コンソール コンパニオン Microsoft Corporation 2020/10/27 48.70.21001.0
Zoom Zoom Video Communications, Inc. 2020/10/10 9.76 MB 5.3.1 (52879.0927)
だれでもVtuber Falhong-Cha 2020/10/11 1.34 MB 1.0.0
アプリ インストーラー Microsoft Corporation 2020/11/17 1.4.3161.0
アラーム & クロック Microsoft Corporation 2020/10/23 10.2009.5.0
カメラ Microsoft Corporation 2020/11/17 2020.902.20.0
スマホ同期 Microsoft Corporation 2020/11/11 1.20101.99.0
デバイス製造元からの HEVC ビデオ拡張機能 Microsoft Corporation 2020/11/19 1.0.33232.0
ドラゴンネスト 1705 HANGAME 2019/03/09 8.88 GB 1705
バッファロー らくらくアップデートツール Buffalo Inc. 2019/08/21 11.0 MB 1.12
ヒント Microsoft Corporation 2020/11/06 9.12.32951.0
フィードバック Hub Microsoft Corporation 2019/12/14 1.1907.3152.0
フォト Microsoft Corporation 2020/09/23 2020.20090.1002.0
フォト メディア エンジン アドオン Microsoft Corporation 2020/09/17 1.0.0.0
ペイント 3D Microsoft Corporation 2020/10/03 6.2009.30067.0
ペイントツールSAI Ver.1 2019/08/21
ボイス レコーダー Microsoft Corporation 2020/10/23 10.2009.2.0
マップ Microsoft Corporation 2020/11/03 10.2009.2.0
メッセージング Microsoft Corporation 2019/05/25 4.1901.10241.1000
メール/カレンダー Microsoft Corporation 2020/10/03 16005.13228.41011.0
モバイル通信プラン Microsoft Corporation 2020/11/13 5.2011.3081.0
リモート デスクトップ Microsoft Corporation 2020/11/01 10.2.1535.0
切り取り & スケッチ Microsoft Corporation 2020/09/10 10.2008.2277.0
動画ダウンロード無双 V6.4.8.5 APOWERSOFT LIMITED 2019/07/15 190 MB 6.4.8.5
問い合わせ Microsoft Corporation 2020/06/06 10.2004.31291.0
天気 Microsoft Corporation 2020/10/10 4.46.22742.0
日本語 ローカル エクスペリエンス パック Microsoft Corporation 2020/10/16 18362.27.85.0
星座表 Escape Velocity Limited 2019/03/07 3.0.8.0
映画 & テレビ Microsoft Corporation 2020/11/19 10.20092.14511.0
翻訳 Microsoft Corporation 2019/08/01 5.6.0.0
電卓 Microsoft Corporation 2020/10/22 10.2009.4.0
黒い砂漠 PearlAbyss Corp. 2020/04/24 34.0 GB 1.0


Microsoft Windows [Version 10.0.18363.1198]
  • せーめー
  • 2020/11/22 (Sun) 03:23:49
とりあえずChromeの掃除を
こんばんは。
ここの管理人の悪代官です。
まずは説明とログを見せてもらいました。

以前に知恵袋で自分がレスしたスレから来られましたか。

Windowsセキュリティのログも見せてもらいましたが、検出されたのはChromeのキャッシュみたいですね。
ではちょっとChromeの掃除してみますか。

Chromeを起動してアドレスバーに下記をコピペで貼り付けて移動して

chrome://settings/clearBrowserData

その画面で履歴、Cookie、キャッシュ等に全部チェック入れて削除してください。
この時上部の期間は「全期間」選択してから削除を。

削除できたらChromeは終了後にWindowsセキュリティでまたスキャンしてみてください。

スキャン終了したらその結果をレスで教えてもらえますか。

なお、上記はChromeの履歴やキャッシュに含まれたゴミを掃除するだけなので根本的な解決ではありません。

ログを見ると色々確認が必要なところがありますね。

該当のPCはお仕事に使っているPCですか?
職場内に置いたPCでなくても、自宅でテレワーク使用か、直接の業務はせずともテレビ会議等で職場に接続しているかといった使い方なら支障ない範囲で教えてもらえますか。
ネトゲ等が入っているので職場PCではなさそうですが、CiscoやZoomなど業務に使うことが多いアプリ類が複数見えているので、PC本体が個人私用の物であっても用途次第では公用PC並みの慎重な対応が必要になります。

お仕事に使っていない完全な個人私用PCだったとしても問題点が見えているので、それらを確認のうえ適切な対応しないと危険です。

上記の作業後状態と追加説明を見せてもらってから次の対応を案内します
  • 悪代官
  • 2020/11/22 (Sun) 21:20:25
結果と補足説明
一度投稿しましたがミスがあったので再投稿します。
お返事ありがとうございます!
実はchromeのお掃除は既にしてしまったのですが、履歴とDL履歴とcookieとキャッシュのみでしたので、
今度は全てのボックスにチェックを入れて削除したのち、スキャンしたところ何も検出されませんでした、また画像も添付しておきます。
一応補足ですが、実はAvast(無料版)を入れたのは上記のものが検出された後でして…それまではWindowsセキュリティ一本でした。恥ずかしながら慌てて後から色々手を加えたりした次第です…
PCはほぼ個人使用ですが、ZoomとCiscoを入れているのはオンライン授業と内定先企業との顔合わせに使うためです。内定先とは本当に顔合わせと言った程度で、業務内容に関する重要なやりとり等をしたことはないです。
ただ、これから先色々とやり取りは増えていきそうなので、恐縮ですがご指南頂けたらと思います。
  • せーめー
  • 2020/11/22 (Sun) 22:43:32
お仕事就活に悪影響なアプリの整理を
レスが遅くなってすみません。
作業後の追加説明も見せていただきました。

>PCはほぼ個人使用ですが、ZoomとCiscoを入れているのはオンライン授業と内定先企業との顔合わせに使うためです。内定先とは本当に顔合わせと言った程度で、業務内容に関する重要なやりとり等をしたことはないです

なるほど、就活中の学生さんでしたか。
それなら現在はまだそのPCでお仕事しているというわけでもなさそうですが、今後のことを考慮してPC内の脆弱性修正とお掃除しておきますか。

まず最初にお伝えしておきます。
見てのとおり現在相談者さん多数のため、相談受けてから皆さんに順番にレスできるまで、毎回1日かそれ以上かかる可能性もあるので、すみませんがご了承ください。

では以下の説明をよく見てから、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓)
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てきたらそれらは絶対にクリックしないでください。
「GeekUninstaller」(通称:GU)
説明ページ↓
http://www.gigafree.net/system/install/geekuninstaller.html
ダウンロード↓
http://www.geekuninstaller.com/download
「download free」をクリック、保存後、解凍してください。
片付ける時はフォルダごと手動で削除してください。

「CCleaner」(通称:CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
https://www.piriform.com/ccleaner/builds
最新バージョンの「ポータブル版」(Portable)をダウンロード後、解凍して起動してください。
片付けるときはそのフォルダを削除すればいいです。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【Windowsにダメージを与えてしまうおそれもある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、自分が指示した以外の操作はしないように。

準備できたら作業開始です。
なお、このあとの作業で探しても見つからないものはスルーして進めていいですが、指示した対象外の物は絶対にいじらないようによく見て作業してください。

また、作業のうえで削除指示するものもあるはずですが、ご自身で必要として入れたものがあればそれの削除は保留して、次のレスでその旨を教えてください。

最初にWindowsUpdateの確認して、必要な更新があればそれを全部更新してください。
ですがそこで更新ができないようならこの後に説明する作業はせずに更新失敗の旨をレスで教えてください。
WUが正常にできなくすることで、感染の解析処置を阻害してくる危険なマルウェアが激増しているためです。
Windowsの各種更新(WindowsUpdate)は常に最新に適用しておかないと、それだけで危険な感染はすぐにでも起きますよ。

少なくとも下記のアプリは旧バージョンです。
>7-Zip 19.00 (x64) Igor Pavlov 2019/08/21 4.96 MB 19.00

>CCleaner Piriform 2020/11/22 5.74

>CrystalDiskInfo 8.0.0 Crystal Dew World 2019/03/31 10.2 MB 8.0.0

>Java 8 Update 211 (64-bit) Oracle Corporation 2019/06/09 122 MB 8.0.2110.12

各種アプリの更新を怠っただけでも、脆弱性を悪用されて深刻な感染はあっさり起きます。
使うなら最新版に更新してください。使わないアプリならアンインストールが安全です。
他にも旧バージョンないか調べて、あれば同様に更新するか、アンインストールしてください。
特にJavaやAdobeは脆弱性を悪用されて深刻な被害が毎年世界で上位に入るほどなので、必要なければ削除して使う時だけ最新版を入れることも検討してください。

>動画ダウンロード無双 V6.4.8.5 APOWERSOFT LIMITED 2019/07/15 190 MB 6.4.8.5

>Craving Explorer Chromium 開発者 2020/10/02 2.3.5

>Craving Explorer Version 1.9.28 T-Craft 2020/03/14 38.8 MB 1.9.28.0

ダウンロード支援ツールはアンインストールを推奨です。
DLツールは各社のアンチウイルスソフトでサポート外です。
つまり、これらDLツールを使って危険なサイトやファイルにアクセスすると、マルウェアがあってもブロックできずに感染してしまう危険が高くなります。
ただでさえDLツールを使う人が多い動画サイトは現在、その隙を狙う危険な罠リンクや悪質広告の巣窟に成り果てています。
また法的にもシロとは言い切れない部分もあるので。
また、内定企業と連絡とるようなPCに上記のようなアプリは入れておくだけでもよろしくないと思われます。

ここでWindowsの標準機能である「システムの復元」での復元ポイントをひとつ、手動で作成しておいてください。
これはこの後の作業で、間違って対象外のものをいじってしまうとそれだけでWindowsに深刻な不具合を起こすこともあるので、万一の際に復元可能にしておくためです。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point

GUを使って下記をアンインストールしてください。
>Adobe Acrobat Reader DC - Japanese Adobe Systems Incorporated 2020/11/04 386 MB 20.013.20064

これの削除推奨するのは前述のJava同様です。Adobe Readerはpdfアプリではトップクラスのシェアなため、その脆弱性を突かれる攻撃も最多です。
pdfアプリが必要なら、下記を入れておくといいでしょう。
http://www.forest.impress.co.jp/library/software/pdfxchedit/
Adobeの脆弱性影響を受けないpdfアプリでは上記が安全性高まります。

今度はPCをセーフモードで起動してください(やり方↓)
http://www.pc-master.jp/sousa/s-safemode.html
Win8の場合は以下を参考に。
http://freesoft.tvbok.com/win8/tips-and-tools/safemode.html

HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、こちらが指示した以外のものは絶対にチェックを入れないでください。
>O4 - HKCU\..\Run: [Norton Download Manager{NS-22200257-TTW-FSD5220003}] C:\Users\Public\Downloads\Norton\{NS-22200257-TTW-FSD5220003}\NSDeluxeDownloader.exe /m

上記はNortonのエントリですが、以前に使っていたものの残骸と思われます。
近いうちにまたNortonのセキュリティソフト入れる予定あるならfixせず残しておいてもいいですがそうでなければfixで。
必要な項目にチェックが入りましたら、Fix checkedをクリックしてください。
探しても見つからないものはスルーして進めていいです。

ここでPCを通常モードで再起動してから、スタートメニューの「プログラムとファイルの検索」に下記をコピペで貼り付けて

cleanmgr

ディスククリーンアップが起動したらゴミ箱以外の全項目にチェック入れて実行してください。
これを実行すると選択した部分のゴミファイルが掃除されます。

これを実行することで作業時にスキャンで検出される無駄なゴミファイルも減るのでその分かなり時間や解析も楽になるのです。
「ごみ箱」など他の項目にチェックしないのは、間違って正常なファイルを削除しないためと、もし正常なファイルを削除してごみ箱に入れても戻せるようにするための措置です。

続いてCCを起動してください。
起動したら、「ツール」→」「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できるので、ログをデスクトップにでも保存しておいてください。

次に「スケジュールされたタスク」タブと「コンテキストメニュー」、「Windowsサービス」タブのログも同じ要領で保存してください。

続いて今度はCC画面の左側にある「ブラウザプラグイン」の項目から「InternetExplorer」タブ以下の各タブも順番に開いて、そのログもとっておいてください。

CCの各ログをとったらCCは終了してください。

このあとブラウザを起動して、数時間ほどPC状態を様子見したあと、あらたにHJTとCCでのインストール情報ログを取り直してください。

取り直した両ログと、CCの各ログを返信に貼って、状態報告とともにレスください。
それらを見てから続きの作業を指示します。

それからこれも案内。
お仕事や内定企業との連絡に使うPCでネトゲプレイというのも自分の私見では避けたほうがいいです。
ネトゲというのはプレイ通信のために特定のポートを開いたりするものが結構あり、複数入れればそれだけわずかながら穴も増えていきます。
海外鯖の海外ベンダー開発運営ネトゲは日本の法律も及ばない部分が少なくないので、使いやすさやキャラクターグラフィック等にはまって何でも「許可」してしまうと知らないうちにセキュリティソフトが全部素通しかねません。
ネトゲはのめりこまない範囲でご自身の目と手が届くところまでで遊ぶようにしましょう
  • 悪代官
  • 2020/11/23 (Mon) 21:20:49
HJTのログです
ご指摘ありがとうございます!自分のセキュリティ意識の甘さを自覚いたしました…
まさかネトゲプレイにそんな罠があるとは全く知りませんでした!
あまり調子に乗って手を出しまくらないよう注意しようと思います、
そして今は難しいですが、将来お仕事専用PCを用意することも強く決意しました…(°_°)

その後ブラウザを起動し、色々見てまわったりしてましたが、
PCの状態にも特に変わったことはありませんでした。
ログは長いのでレスを分けて貼らせていただきます!

まずはHJTのログです。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 2:16:20, on 2020/11/24
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
D:\ドキュメント\B1脆弱性対策用\HijackThis.exe

F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.41\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O3 - Toolbar: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [THPanel] "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
O4 - HKCU\..\Run: [EpicGamesLauncher] "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: らくらくアップデートツール.lnk = C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe
O4 - Global Startup: クライアントマネージャV.lnk = C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{5383dae9-c1c9-4a68-849c-87e97a3a2ab8}: NameServer = 192.168.1.1
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
O18 - Protocol: cdl - {3DD53D40-7B8B-11D0-B013-00AA0059CE02} - C:\Windows\SysWOW64\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll
O18 - Protocol hijack: file - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol hijack: ftp - {79EAC9E3-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol hijack: http - {79EAC9E2-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol: https - {79EAC9E5-BAF9-11CE-8C82-00AA004BA90B} - C:\Windows\SysWOW64\urlmon.dll
O18 - Protocol hijack: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6}
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
O18 - Protocol: local - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - C:\Windows\SysWOW64\urlmon.dll
O18 - Protocol: mailto - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11D0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll
O18 - Protocol hijack: mk - {79EAC9E6-BAF9-11CE-8C82-00AA004BA90B}
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol hijack: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B}
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol hijack: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E}
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: BWH32S - Buffalo Inc. - C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_2a3f3 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: DMMGamePlayerService (dgpservice) - Unknown owner - C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - D:\App\VIP ACCESS\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Productivity Tools Update Service (WebexPluginsService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Plugins\webexservice.exe
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14369 bytes
  • せーめー
  • 2020/11/24 (Tue) 02:28:35
CCのインストール情報のログです
3D ビューアー Microsoft Corporation 2020/10/01 7.2009.29132.0
7-Zip 20.02 alpha (x64) Igor Pavlov 2020/11/23 5.01 MB 20.02 alpha
Adobe Flash Player 32 PPAPI Adobe 2020/11/10 4.06 MB 32.0.0.453
Audacity 2.3.3 Audacity Team 2020/01/08 62.1 MB 2.3.3
Avast Free Antivirus Avast Software 2020/11/22 20.9.2437
Black Desert GameOn 2019/08/21 Black Desert
Blender Blender Foundation 2019/08/21
BSA Browser version 1.12.3 Alexander Ellingsen 2020/06/25 12.0 MB 1.12.3
BUFFALO AirStation倍速設定ツール(アンインストール) 2019/08/21
BUFFALO LAN端子用 無線子機設定ツール BUFFALO INC. 2019/08/21
BUFFALO エアステーション設定ツール BUFFALO INC. 2019/03/08 2.95 MB 2.0.15
BUFFALO クライアントマネージャV をアンインストール Buffalo Inc. 2019/03/08 13.2 MB 1.5.4
BUFFALO パソコン環境表示ツール Buffalo Inc. 2019/03/08 4.19 MB 1.2.1
CCleaner Piriform 2020/11/22 5.74
Cisco Webex Meetings デスクトップアプリ Cisco Webex LLC 2020/04/14 225 MB 40.10.6.11
Cisco Webex Productivity Tools Cisco WebEx LLC 2020/11/22 40.11.1.1
Colon Yamma-ma 2019/11/01 8.83 MB 2.1.0
Common GameOn 2019/08/21 50993744
DARK SOULS™ III FromSoftware, Inc. 2020/06/21
Discord Discord Inc. 2020/09/11 58.7 MB 0.0.308
DMMGamePlayer バージョン 2.4.6 DMM.com,Inc. 2019/11/08 316 MB 2.4.6
Dolby Access Dolby Laboratories 2020/10/29 3.6.181.0
Epic Games Launcher Epic Games, Inc. 2019/10/04 95.3 MB 1.1.229.0
EPSON EP-805A Series プリンター アンインストール SEIKO EPSON Corporation 2020/02/07
EPSON Scan Seiko Epson Corporation 2019/08/21
Epson Software Updater Seiko Epson Corporation 2020/02/07 8.73 MB 4.5.1
Fitbit Coach Fitbit 2019/03/07 4.4.133.0
GD Defiler Soul's Services 2019/07/28 2.81 MB 0.2.4.0
Google Chrome Google LLC 2020/11/21 87.0.4280.66
Grim Dawn Crate Entertainment 2019/08/21
Groove ミュージック Microsoft Corporation 2020/10/16 10.20092.10311.0
HEIF 画像拡張機能 Microsoft Corporation 2020/10/01 1.0.32532.0
HGパブリッシングゲーム 起動プログラム NHN Hangame Corp. 2019/03/07 6.66 MB 1.0.0.1
iCloud Outlook Apple Inc. 2020/09/17 3.86 MB 11.3.0.59
Intel(R) Management Engine Components Intel Corporation 2019/03/06 1823.12.0.1137
Intel(R) Rapid Storage Technology Intel Corporation 2019/03/06 16.5.0.1027
iTunes Apple Inc. 2020/11/21 12110.26.53016.0
Java 8 Update 271 (64-bit) Oracle Corporation 2020/11/23 125 MB 8.0.2710.9
JC-U2812F 2019/08/21
LINE LINE Corporation 2020/10/16 6.3.2.2338
LinkedIn LinkedIn 2019/03/07 2.1.7098.0
MediBang Paint Pro 25.6 (64-bit) Medibang 2020/11/14 138 MB 25.6
Microsoft 365 Apps for enterprise - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft Edge Microsoft Corporation 2020/11/21 87.0.664.41
Microsoft Minesweeper Microsoft Studios 2020/09/29 3.1.9160.0
Microsoft Office Home and Business 2016 - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft OneDrive Microsoft Corporation 2020/10/24 147 MB 20.169.0823.0008
Microsoft Pay Microsoft Corporation 2019/08/21 2.4.18324.0
Microsoft Store Microsoft Corporation 2020/11/15 12011.1001.1.0
Microsoft Store エクスペリエンス ホスト Microsoft Corporation 2020/11/06 12011.1001.1.0
Microsoft Teams Microsoft Corporation 2020/09/18 92.8 MB 1.3.00.13565
Microsoft Update Health Tools Microsoft Corporation 2020/11/21 1.18 MB 2.70.0.0
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2019/04/05 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2019/03/07 48.5 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2019/08/21 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2019/08/21 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2019/08/21 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2019/08/21 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 Microsoft Corporation 2020/11/14 22.0 MB 14.27.29112.0
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 Microsoft Corporation 2019/08/21 20.1 MB 14.13.26020.0
Microsoft XNA Framework Redistributable 4.0 Refresh Microsoft Corporation 2019/05/17 9.45 MB 4.0.30901.0
Microsoft ニュース Microsoft Corporation 2020/09/12 4.53.22541.0
Microsoft 付箋 Microsoft Corporation 2020/08/09 3.7.142.0
Minecraft Launcher Mojang 2019/03/07 1.44 MB 1.0.0.0
Mixed Reality ポータル Microsoft Corporation 2020/09/18 2000.20081.1312.0
MPEG-2 ビデオ拡張機能 Microsoft Corporation 2019/09/27 1.0.22661.0
MuseScore 3 Werner Schweer and Others 2019/07/04 299 MB 3.2.2.7534
NVIDIA Control Panel NVIDIA Corp. 2020/06/23 8.1.958.0
NVIDIA FrameView SDK 1.1.4923.29214634 NVIDIA Corporation 2020/11/10 1.1.4923.29214634
NVIDIA GeForce Experience 3.20.5.70 NVIDIA Corporation 2020/11/10 3.20.5.70
NVIDIA HD オーディオ ドライバー 1.3.38.35 NVIDIA Corporation 2020/11/10 1.3.38.35
NVIDIA PhysX システム ソフトウェア 9.19.0218 NVIDIA Corporation 2019/07/11 9.19.0218
NVIDIA USBC Driver 1.45.831.832 NVIDIA Corporation 2020/11/10 1.45.831.832
NVIDIA グラフィックス ドライバー 457.30 NVIDIA Corporation 2020/11/10 457.30
OBS Studio OBS Project 2020/10/12 26.0.2
OBS-VirtualCam version 2.0.4 OBS 2020/10/12 3.18 MB 2.0.4
OneNote for Windows 10 Microsoft Corporation 2020/11/13 16001.13328.20348.0
PDF-XChange Editor Tracker Software Products (Canada) Ltd. 2020/11/24 697 MB 8.0.343.0
People Microsoft Corporation 2020/04/07 10.1909.10841.0
PHANTASY STAR ONLINE 2 SEGA Games Co., Ltd. 2019/03/07 7.19 MB
Phototastic Collage Thumbmunkeys Ltd 2020/11/13 3.23.1.0
Pmangインストールマネージャー GameOn,Pmang 2019/08/21 1.0.1.1
PowerDVD for THIRDWAVE jp.cyberlink.com 2019/03/07 14.1.9606.0
Print 3D Microsoft Corporation 2019/04/25 3.3.791.0
Puppet3R Leo-typeb 2020/10/12 2.53 MB 3.1.3
RadioLine Free Coderium 2020/01/08 1.1.5.1
Realtek Audio Console Realtek Semiconductor Corp 2020/11/23 1.14.226.0
Realtek Ethernet Controller Driver Realtek 2019/03/06 4.57 MB 10.26.328.2018
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2019/03/06 36.6 MB 6.0.1.8491
Stardew Valley ConcernedApe 2019/08/21
Steam Valve Corporation 2019/08/21 2.10.91.91
Tablet Driver V5.02 2020/09/08
Teams Machine-Wide Installer Microsoft Corporation 2020/09/11 93.6 MB 1.3.0.13565
The Elder Scrolls V: Skyrim Special Edition Bethesda Game Studios 2020/06/21
Thunder Master v3.22 Palit Microsystems Ltd. 2019/03/07 17.4 MB 3.22.0.0
TwitCasting Desktop Live 1.1.9 (only current user) moicorp 2020/06/21 221 MB 1.1.9
Undertale tobyfox 2019/08/30
Update for Windows 10 for x64-based Systems (KB4023057) Microsoft Corporation 2019/08/03 1.42 MB 2.61.0.0
Uplay Ubisoft 2020/01/26 38.2
UTAU 歌声合成ツール 飴屋プロジェクト 2020/07/08 4.67 MB 1.0.77
VIP Access Symantec Corporation 2019/04/05 11.6 MB 2.2.4.44
Viridi Zoe Vartanian 2019/08/21
Visual Basic 6.0 Service Pack 6 Runtime Set 2019/08/21
Vortex Black Tree Gaming Ltd. 2020/09/20 312 MB 1.3.8
VP9 ビデオ拡張機能 Microsoft Corporation 2020/09/23 1.0.32521.0
Vカツ / V-Katsu IVR 2020/06/23
Web メディア拡張機能 Microsoft Corporation 2019/08/21 1.0.20875.0
Webp 画像拡張機能 Microsoft Corporation 2020/10/21 1.0.32731.0
Xbox Game bar Microsoft Corporation 2020/06/06 1.54.4001.0
Xbox Game Bar Microsoft Corporation 2020/11/21 5.420.11102.0
Xbox Game Speech Window Microsoft Corporation 2019/03/07 1.21.13002.0
Xbox Identity Provider Microsoft Corporation 2020/08/04 12.67.21001.0
Xbox Live Microsoft Corporation 2019/03/07 1.24.10001.0
Xbox コンソール コンパニオン Microsoft Corporation 2020/10/27 48.70.21001.0
Zoom Zoom Video Communications, Inc. 2020/10/10 9.76 MB 5.3.1 (52879.0927)
だれでもVtuber Falhong-Cha 2020/10/11 1.34 MB 1.0.0
アプリ インストーラー Microsoft Corporation 2020/11/17 1.4.3161.0
アラーム & クロック Microsoft Corporation 2020/10/23 10.2009.5.0
カメラ Microsoft Corporation 2020/11/17 2020.902.20.0
スマホ同期 Microsoft Corporation 2020/11/11 1.20101.99.0
デバイス製造元からの HEVC ビデオ拡張機能 Microsoft Corporation 2020/11/19 1.0.33232.0
ドラゴンネスト 1705 HANGAME 2019/03/09 8.88 GB 1705
バッファロー らくらくアップデートツール Buffalo Inc. 2019/08/21 11.0 MB 1.12
ヒント Microsoft Corporation 2020/11/06 9.12.32951.0
フィードバック Hub Microsoft Corporation 2019/12/14 1.1907.3152.0
フォト Microsoft Corporation 2020/09/23 2020.20090.1002.0
フォト メディア エンジン アドオン Microsoft Corporation 2020/09/17 1.0.0.0
ペイント 3D Microsoft Corporation 2020/10/03 6.2009.30067.0
ペイントツールSAI Ver.1 2019/08/21
ボイス レコーダー Microsoft Corporation 2020/10/23 10.2009.2.0
マップ Microsoft Corporation 2020/11/03 10.2009.2.0
メッセージング Microsoft Corporation 2019/05/25 4.1901.10241.1000
メール/カレンダー Microsoft Corporation 2020/10/03 16005.13228.41011.0
モバイル通信プラン Microsoft Corporation 2020/11/13 5.2011.3081.0
リモート デスクトップ Microsoft Corporation 2020/11/01 10.2.1535.0
切り取り & スケッチ Microsoft Corporation 2020/09/10 10.2008.2277.0
問い合わせ Microsoft Corporation 2020/06/06 10.2004.31291.0
天気 Microsoft Corporation 2020/10/10 4.46.22742.0
日本語 ローカル エクスペリエンス パック Microsoft Corporation 2020/10/16 18362.27.85.0
星座表 Escape Velocity Limited 2019/03/07 3.0.8.0
映画 & テレビ Microsoft Corporation 2020/11/19 10.20092.14511.0
翻訳 Microsoft Corporation 2019/08/01 5.6.0.0
電卓 Microsoft Corporation 2020/10/22 10.2009.4.0
黒い砂漠 PearlAbyss Corp. 2020/04/24 34.0 GB 1.0
  • せーめー
  • 2020/11/24 (Tue) 02:29:29
CCのスタートアップ、ブラウザのログです
CCのスタートアップ、「Windows」タブのログです。

有効 HKCU:Run CCleaner Smart Cleaning Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
無効 HKCU:Run CiscoMeetingDaemon Cisco Webex LLC "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
無効 HKCU:Run com.squirrel.Teams.Teams Microsoft Corporation C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
有効 HKCU:Run Discord Discord Inc. C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
有効 HKCU:Run EpicGamesLauncher "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKCU:Run THPanel Palit Microsystems Ltd. "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run RtkAudUService Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe" -background
有効 HKLM:Run SecurityHealth Microsoft Corporation %windir%\system32\SecurityHealthSystray.exe
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run TeamsMachineInstaller Microsoft Corporation %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
有効 HKLM:Run WTClient WTClient.exe
有効 Startup Common クライアントマネージャV.lnk Buffalo Inc. C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
有効 Startup User らくらくアップデートツール.lnk Buffalo Inc. C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe


続いて、CCのスタートアップ、「スケジュールされたタスク」タブのログです。

有効 Task Adobe Acrobat Update Task Adobe Inc. C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
有効 Task Adobe Flash Player PPAPI Notifier Adobe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe -check pepperplugin
有効 Task Adobe Flash Player Updater Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task MicrosoftEdgeUpdateTaskMachineCore Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c
有効 Task MicrosoftEdgeUpdateTaskMachineUA Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /ua /installsource scheduler
有効 Task NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
有効 Task NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
有効 Task NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
有効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
有効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
有効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
有効 Task NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task OneDrive Standalone Update Task v2 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task OneDrive Standalone Update Task-S-1-5-21-68866919-1333413524-3689009959-1001 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task ThunderMaster Palit Microsystems Ltd. C:\Program Files (x86)\Thunder Master\THPanel.exe /A


続いて、CCのスタートアップ、「コンテキストメニュー」タブのログです。

有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 Directory ファイルの所有権
有効 Drive PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 File 00asw AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File PDFXChange Editor Context menu Tracker Software Products (Canada) Ltd. C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll
有効 Folder 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Folder avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll


続いて、CCのスタートアップ、「Windows サービス」タブのログです。

有効 Service Adobe Acrobat Update Service Adobe Inc. "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
無効 Service Adobe Flash Player Update Service Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
無効 Service aswbIDSAgent AVAST Software "C:\Program Files\Avast Software\Avast\aswidsagent.exe"
有効 Service Avast Antivirus AVAST Software "C:\Program Files\Avast Software\Avast\AvastSvc.exe" /runassvc
有効 Service Avast Tools AVAST Software "C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
有効 Service AvastWscReporter AVAST Software "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver
有効 Service BWH32S Buffalo Inc. "C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe"
無効 Service Cisco WebEx Productivity Tools Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Plugins\webexservice.exe"
無効 Service Cisco WebEx Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe"
有効 Service DMMGamePlayerService DMMGAMES LLC "C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe" is auto-started
有効 Service Epson Scanner Service Seiko Epson Corporation C:\Windows\system32\EscSvc64.exe
無効 Service Google Chrome Elevation Service Google LLC "C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe"
有効 Service Google Update サービス (gupdate) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
無効 Service Google Update サービス (gupdatem) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
無効 Service Intel(R) Capability Licensing Service TCP IP Interface Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe"
有効 Service Intel(R) Dynamic Application Loader Host Interface Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
有効 Service Intel(R) Management and Security Application Local Management Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
有効 Service Intel(R) Rapid Storage Technology Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
有効 Service Intel(R) TPM Provisioning Service Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe"
無効 Service nProtect GameGuard Service C:\Windows\system32\GameMon.des -service
有効 Service NVIDIA Display Container LS NVIDIA Corporation C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
無効 Service NVIDIA FrameView SDK service NVIDIA "C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe" -service
有効 Service NVIDIA LocalSystem Container NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
無効 Service OpenSSH Authentication Agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
有効 Service Realtek Audio Universal Service Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe"
無効 Service Steam Client Service Valve Corporation "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
有効 Service VIPAppService Symantec Corporation "D:\App\VIP ACCESS\VIPAppService.exe"
有効 Service WinTab Service UC-Logic Technology Corp. "C:\WINDOWS\System32\Drivers\WTSRV.EXE"


続いて、CCのブラウザプラグイン、IEのログです。

有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.41\BHO\ie_to_edge_bho.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.41\BHO\ie_to_edge_bho_64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
無効 Helper 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
無効 Toolbar 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll


最後に、CCのブラウザプラグイン、Chromeのログです。

有効 App Gmail 8.3 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Gmail 8.2 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.2_0
有効 App Google ドライブ 14.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App Google ドライブ 14.2 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.2_0
有効 App miku music 1.1 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\odfhgnckgjjgbljlfikcbdbdnpapmobo\1.1_0
有効 App Twitter 2020.11.21.45785 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi\2020.11.21.45785_0
有効 App YouTube 4.2.8 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App YouTube 4.2.8 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App とりとうさぎと 2019.9.12.7375 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmdbgomjbmaglkbnelbioemfeomeiih\2019.9.12.7375_0
有効 App ドラゴンネストR 2019.3.11.8194 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kibplilbehdjpkbgpndjpmhoeopmejlg\2019.3.11.8194_0
有効 App 黒い砂漠 2019.3.11.8378 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcpaignfemglimlkcjaedicilidjojcp\2019.3.11.8378_0
有効 Extension Adblock Plus - free ad blocker 3.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\3.10_0
無効 Extension Adobe Acrobat 15.1.2.3 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\15.1.2.3_0
有効 Extension Google オフライン ドキュメント 1.21.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Google オフライン ドキュメント 1.14.0 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.14.0_0
有効 Extension Grammarly for Chrome 14.984.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen\14.984.0_0
有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0
有効 Extension Weblio エクステンション 2.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgnfefoljgaelbckgfbijijhblgophjo\2.5_0
有効 Extension Weblioポップアップ英和辞典 6.0.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oingodpdjohhkelnginmkagmkbplgema\6.0.5_0
有効 Extension スプレッドシート 1.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スプレッドシート 1.2 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スライド 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension スライド 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension ドキュメント 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension ドキュメント 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension 刀剣専覧-刀剣乱舞専用ブラウザ 0.1.8 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphpjhbabehcmdjobbjmbkgbbgipnppo\0.1.8_0
有効 Extension 英辞郎 on the WEB 拡張機能 1.5.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonalfdoahlmjaoloddjenihohbfodme\1.5.2_0
  • せーめー
  • 2020/11/24 (Tue) 02:32:09
CCで各タブの確認です
作業と報告、ご苦労様です。

>その後ブラウザを起動し、色々見てまわったりしてましたが、
>PCの状態にも特に変わったことはありませんでした。

はい、状態は落ち着いているようですね。
現在のログも見せてもらいました。

Javaは更新されましたね。
pdfアプリもAdobeからPDF-XChange Editorに切り替えたようで、使い勝手で難がなければ十分高機能なアプリなのですぐ慣れると思います。

ではまた以下の説明を読んでから次の作業をお願いします。

先の要領でCC起動して「スケジュール」タブの下記を「無効」にしたあと続けて「エントリの削除」してください。

>有効 Task Adobe Acrobat Update Task Adobe Inc. C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

見ての通りアンインストールしたはずのAdobe Readerの残骸です。
削除で掃除できますがもし削除できないときでも無効化できれば以後は動かなくなります。
なおCCでの操作はくれぐれも指示された箇所以外を誤っていじらないよう注意してください。

続いて同タブ内の下記を今度は無効にだけしてください。これらは削除はしないように。
>有効 Task NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log

>有効 Task NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log

>有効 Task NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"

>有効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler

>有効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe

>有効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe

>有効 Task NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe

>有効 Task NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe

>有効 Task NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe

>有効 Task NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe

これも見ておわかりのようにnvidiaのエントリですが、これ自体はマルウェアではありません。
ただ同社のプログラムは数年前から自動起動に食い込んで動く仕様になったため、いろいろと負荷かかったりするので必要でなければ無効化でいくらか軽量化可能です。

次は「Windowsサービス」タブの下記をまた無効と削除です。
>有効 Service Adobe Acrobat Update Service Adobe Inc. "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"

これもアンインストールしたAdobeのエントリですね。

次にブラウザプラグインの「Chrome」タブを開いて、下記をまた削除です。

>無効 Extension Adobe Acrobat 15.1.2.3 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\15.1.2.3_0

そして同タブの下記を確認です。
>有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0

これはご自身で必要として入れましたか?
必要ならそのままでもいいですが、もし知らないうちに入っていたならこれも「無効」「削除」推奨です。
この手のブラウザ拡張は油断するとユーザーが確認もできないうちにインストールされることが珍しくありません。
他の拡張でも入れた覚えのないものがあればこの機会に確認をどうぞ。

CCを閉じたら次は2つのアプリでスキャンです。
使い方は既におわかりでしょうが一応案内します。

次は下記のツールを準備してください。
「AdwCleaner」(通称:AC)
https://downloads.malwarebytes.com/file/adwcleaner
ファイル直リンです。アクセスしてファイルをデスクトップにでも保存しておいてください。
片付けるときは起動後に「設定」画面を開くとその下段にある「アンインストール」ボタンを押せば自動で削除されます。
使い方は下記サイト様に詳しい説明があるのでサンショウウオ↓
http://www.japan-secure.com/entry/adwcleaner.html

Malwarebytes' Anti-Malware(通称・MBAM)
本家サイト
http://www.malwarebytes.org/

ダウンロード
https://www.malwarebytes.org/mwb-download/thankyou/
ファイル直リンです。保存しておいてください。

使い方の説明サイト
http://www.gigafree.net/security/MalwarebytesAnti-MalwareFree.html

準備できたらMBAMをインストールとアップデートまでしておいてください。
ただし、ここではまだスキャンはしないように。

MBAMのアップデートができたらディスククリーンアップを使ってゴミファイルの掃除してください。

次にACを起動してください。
起動したら今度は「今すぐスキャン」するとスキャン開始されます。

しばらく待ってスキャン終了したら結果が出るので、そこで画面左の「ログファイル」を押して、スキャンした日時のログを選択してダブルクリックするとそのログが表示されます。
それをデスクトップ上に保存してから、ACは終了です。
ここでは検出があっても処置はしないでおいてください。

ACスキャンが終わったら次はPCをセーフモードで再起動してしてください。

セーフモードで今度はMBAMの作業です。
MBAM起動してスキャンしてください。
MBAM起動したらメイン画面で中央の「スキャナ」→「高度なスキャナ」→「スキャンの設定」と開いてください。

その画面で対象の全ドライブと、「メモリオブジェクト」「レジストリおよびスタートアップ」「アーカイブ」欄もチェック入れてからスキャン開始です。

なお本来ならここで「ルートキット」欄もチェック入れてスキャンしたほうがより詳細なスキャン可能ですが、現在のMBAMはかなりリソース消費する仕様になってしまい、ルートキットスキャンするとPCスペックによっては丸1日以上かかることもあるので、必要と判断されるまでは使わないほうがいいでしょう。

こちらもスキャン終了したら「レポートを表示」で結果が表示されます。

そこで「エクスポート」選択するとMBAMのスキャンログが保存可能になるので、それをtxtファイルでデスクトップ上に保存したらMBAMは終了です。
MBAMでも検出された場合でも処置はしないように。

このあと両ツールのログをレスに貼って見せてください。

この2ツールは同じベンダーの製品ですが、最近になって過剰反応による誤検出が次々と見つかりだし、一部は国内メーカー製PCの再セットアップファイルまで脅威と検出してしまう事態まで起きたため、スキャンで見つかったものをすぐに隔離削除するのは危険です。
なのでまずはスキャンだけして、検出されたものがあればそれを解析後に対処することになります。
ログを見せてもらってから対処を考えましょう
  • 悪代官
  • 2020/11/24 (Tue) 22:40:48
CCでの操作の疑問、ACとMBAMのスキャン結果
>有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0

こちらはYouTubeを4倍速で見たいな~って思って入れた記憶がございまして、今でもたまに使ってます!

そのほかの拡張も大体目的ありきで入れたのは覚えているのですが、要らないものを削除しようとしても「ブラウザにより保護されているため、変更できません」と出てきてしまい、検索方法が悪いだけかもですが検索してもヒットしなくて削除や無効の操作ができず。。。

>有効 App miku music 1.1 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\odfhgnckgjjgbljlfikcbdbdnpapmobo\1.1_0

特にこれはもう全く使ってないので消したいのですが、上の表示が出てきて消せないので困ってます。
また、Acrobatの残骸も同様で消せなかったのでPC再起動後に消えたことを確認しました…

とりあえず、ACのスキャン結果とMBAMでのスキャン結果を貼らせていただきます。
(スキャン結果についてですが、デスクトップ上に保存と書いてありますが、非常に勝手ながらフォルダにまとめた方が個人的にやりやすかったためドキュメント内にフォルダ作って保存してます。もしまずい操作でしたらご指摘ください。)


ACの結果です

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-11-23.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 11-25-2020
# Duration: 00:00:20
# OS: Windows 10 Home
# Scanned: 31920
# Detected: 1


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

PUP.Optional.Legacy C:\Windows\uninstaller.exe

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########


MBAMの結果です

Malwarebytes
www.malwarebytes.com

-ログの詳細-
スキャン日付: 2020/11/25
スキャン時間: 1:04
ログファイル: c0d0931b-2e6e-11eb-9dfc-000000000000.json

-ソフトウェア情報-
バージョン: 4.2.3.96
コンポーネントバージョン: 1.0.1122
パッケージバージョンをアップデート: 1.0.33350
ライセンス: トライアル版

-システム情報-
OS: Windows 10 (Build 18362.1198)
CPU: x64
ファイルシステム: NTFS
ユーザー: COSMIC_MK-II\\u00e5\u00a7\u0093\u00e5\u0090\u008d

-スキャン結果の概要-
スキャンタイプ: カスタムスキャン
スキャン開始日時: マニュアル
結果: 完了
スキャンされたオブジェクト: 837425
検出された脅威: 0
隔離された脅威: 0
経過時間: 40 分 9 秒

-スキャンオプション-
メモリ: 有効
スタートアップ: 有効
ファイルシステム: 有効
アーカイブ: 有効
ルートキット: 無効
ヒューリスティック: 有効
PUP: 検出
PUM: 検出

-スキャンの詳細-
プロセス: 0
(悪意のあるアイテムは検出されませんでした)

モジュール: 0
(悪意のあるアイテムは検出されませんでした)

レジストリキー: 0
(悪意のあるアイテムは検出されませんでした)

レジストリ値: 0
(悪意のあるアイテムは検出されませんでした)

レジストリデータ: 0
(悪意のあるアイテムは検出されませんでした)

データストリーム: 0
(悪意のあるアイテムは検出されませんでした)

フォルダ: 0
(悪意のあるアイテムは検出されませんでした)

ファイル: 0
(悪意のあるアイテムは検出されませんでした)

物理セクタ: 0
(悪意のあるアイテムは検出されませんでした)

WMI: 0
(悪意のあるアイテムは検出されませんでした)


(end)
  • せーめー
  • 2020/11/25 (Wed) 02:12:09
ブラウザ終了させてから再度CC作業を
>「ブラウザにより保護されているため、変更できません」

>上の表示が出てきて消せないので困ってます

あ、自分が案内忘れてましたね。
CCでブラウザプラグインタブの操作するときは該当のブラウザは事前に終了させた状態で操作しないと操作できないのです。
お手数ですがChromeを終了させた状態で操作してみてください。
仮に削除できなくても無効化だけできれば動かなくなるのでいいです。

自分の説明がまずくて失礼しました。
しまった、こいつはうっかりだぁ!(←それ悪代官じゃないから
  • 悪代官
  • 2020/11/25 (Wed) 07:33:16
Chormeを終了させても同じように表示されます。。。
うっかりはちべーwww
それが、Chromeを終了しても同じ表示が出てダメなんですよね。。。
タスクから終了させても再起動後に即CC開いて消そうとしても全く同じでした…
  • せーめー
  • 2020/11/25 (Wed) 13:11:58
ACで検出のファイルを調べましょう
>Chromeを終了しても同じ表示が出てダメなんですよね

はい、ではChromeの設定から直接処置しましょう。
Chrome起動してアドレスバーに下記をコピペで貼り付けて移動してください。

chrome://extensions/

その画面で件の拡張が表示されたらそこでバーをスライドさせて有効(ブルー)を無効(グレー)にしたあと、不要なら「削除」です。

操作できたらChromeは終了していいです。

さて、MBAMのスキャン結果は特に検出ないのでいいですが、ACで検出された下記がひっかかりますね。

>PUP.Optional.Legacy C:\Windows\uninstaller.exe

該当ファイルをオンラインスキャンにかけてみましょう。
下記サイトにアクセスして

https://www.virustotal.com/gui/

「Choose file」で対象ファイルのパスを指定してからスキャン実行です。

しばらく待つとスキャン結果が表示されるので、その結果ページのURLを返信に貼ってレスで見せてください。
  • 悪代官
  • 2020/11/25 (Wed) 21:46:45
VirusTotalの結果と件の拡張について
スキャンの結果ページです!

https://www.virustotal.com/gui/file/cd1ed521b91dc345349ffe39a21a8b9621a29366a32441f89e54d95ceb0d8f33/detection

あの拡張なのですが、コピペで貼り付けた拡張一覧に表示されてなかったです;
なのでフォルダに飛んで、フォルダをスキャンしてから何も出なかったのでごみ箱に放り投げたのですが、
CCのプラグインタブの所にまだ表示されて残ってまして謎です。(無効/削除操作しようとしても同じ表示でますし…)
もう放置でもいいですかね…?
  • せーめー
  • 2020/11/25 (Wed) 22:17:47
Pmangのファイルでしたか
今夜もレスが遅くなってすみません。さっきまで風呂入ってました(←うちの風呂には由美〇おるはいません

>あの拡張なのですが、コピペで貼り付けた拡張一覧に表示されてなかったです

ではApp miku musicはCC上から無効化だけしておいてください。無効化しておけば動かなくなるので。

さてVTの結果もみせてもらいました。
どうやらPmangゲームダウンローダーのアンインストーラーですね。

>Pmangインストールマネージャー GameOn,Pmang 2019/08/21 1.0.1.1

このアプリはまだ使いますか?
使わないならアンインストールしてからACで再スキャンして、その時点で同エントリがまだ検出されたら隔離すればいいです。
使うなら判断はお任せしますが、Windowsフォルダ直下に構成ファイルを置くようなアプリは注意しておいたほうがいいです。

ところで、Chromeの拡張が設定に表示されないとか操作したくてもできない事例はよくあります。
Chromeのバグというより、拡張が簡単に削除できない仕様になっている可能性も考えられますが、これとは別に悪質巧妙なマルウェアは簡単に発見削除されないような挙動性質も珍しくありません。
削除したくてもできないものが張り付いたままだと気持ち悪いという方もおられるでしょうから、力業での削除を試しますか?

Chromeには「クリーンアップ機能」もあって、この操作を使えばChromeにインストールされた拡張類も初期化されます。
やり方としては下記サイト説明をサンショウウオ↓
https://www.pc-koubou.jp/magazine/38445

なおクリーンアップするならChromeでGoogleアカウントにログインしてからその状態で操作してください。
同期状態でインストールされている拡張だと、ログインしない状態で削除してもあとでログインするとアカウント内の設定に残っているので復活するからです。

他のブラウザでも不審な拡張が入り込んで削除できない場合の対処法を自分のブログに記してますので、よければ今後の参考に見ておいてください。
https://aku-dai-kan.hateblo.jp/entry/57755938

では今度は大詰めの解析しますか。

以下のツールを準備してください。
OTL(OldTimer Listit)
「Download」ボタンからDLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。
ただし、Windows10をお使いの場合は本体ファイルをそのまま削除すればいいです。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

SHOWHIDDEN
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
ACTIVEX
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで1万文字以内に分割して、複数回に分けてレス送信してください。
1万文字を越えた投稿はfc2の文字数制限で途切れてしまうためです。
http://www1.odn.ne.jp/megukuma/count.htm

ログの最後に< End of report >という表示が出るのでそこまで全部貼り付けてください。

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです
  • 悪代官
  • 2020/11/26 (Thu) 20:57:25
OTLログその1
OTL.txtを貼らせていただきます~
こちらこそ毎回作業速度が遅くて申し訳ないです;;

OTL logfile created on: 2020/11/26 22:26:01 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\ドキュメント\B1脆弱性対策用
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.18362.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

15.92 Gb Total Physical Memory | 11.49 Gb Available Physical Memory | 72.15% Memory free
21.92 Gb Paging File | 14.48 Gb Available in Paging File | 66.07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 476.28 Gb Total Space | 209.73 Gb Free Space | 44.03% Space Free | Partition Type: NTFS
Drive D: | 1863.02 Gb Total Space | 1599.56 Gb Free Space | 85.86% Space Free | Partition Type: NTFS

Computer Name: COSMIC_MK-II | User Name: 姓名 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2020/11/26 22:22:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\ドキュメント\B1脆弱性対策用\OTL.exe
PRC - [2020/11/22 02:58:09 | 003,096,160 | ---- | M] (AVAST Software) -- C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
PRC - [2020/11/06 23:08:04 | 001,883,424 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2020/10/29 09:56:02 | 003,424,032 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\steam.exe
PRC - [2020/10/24 10:48:28 | 001,938,296 | ---- | M] (Microsoft Corporation) -- C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe
PRC - [2020/10/15 06:03:18 | 000,293,832 | ---- | M] (Google LLC) -- C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
PRC - [2020/10/14 16:47:34 | 000,682,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontdrvhost.exe
PRC - [2020/08/04 13:56:02 | 091,023,672 | ---- | M] (Discord Inc.) -- C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
PRC - [2019/11/19 11:27:58 | 010,559,112 | ---- | M] () -- C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe
PRC - [2018/12/20 13:44:18 | 002,501,984 | ---- | M] (Palit Microsystems Ltd.) -- C:\Program Files (x86)\Thunder Master\THPanel.exe
PRC - [2018/06/06 15:28:20 | 000,625,728 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2018/06/06 15:27:26 | 000,218,176 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2017/08/17 10:04:28 | 000,073,768 | ---- | M] (Symantec Corporation) -- D:\App\VIP ACCESS\VIPAppService.exe
PRC - [2015/07/14 15:14:24 | 000,212,952 | ---- | M] (Buffalo Inc.) -- C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
PRC - [2015/07/06 14:55:42 | 000,139,568 | ---- | M] (Buffalo Inc.) -- C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe
PRC - [2009/10/30 10:19:22 | 000,032,768 | ---- | M] (Tablet Driver) -- C:\Windows\SysWOW64\WTClient.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2020/11/13 11:29:02 | 008,143,672 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_dispatch\discord_dispatch.node
MOD - [2020/11/13 11:29:02 | 001,813,304 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_overlay2\discord_overlay2.node
MOD - [2020/11/13 11:29:02 | 001,305,912 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_modules\discord_modules.node
MOD - [2020/11/13 11:29:02 | 000,539,960 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_media\discord_media.node
MOD - [2020/11/13 11:29:01 | 054,802,744 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_krisp\discord_krisp.node
MOD - [2020/11/13 11:29:01 | 002,429,240 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_cloudsync\discord_cloudsync.node
MOD - [2020/11/13 11:28:39 | 002,808,120 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_game_utils\discord_game_utils.node
MOD - [2020/11/13 11:28:36 | 000,701,776 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_voice\openh264-1.7.0-win32.dll
MOD - [2020/11/13 11:28:35 | 018,916,152 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_voice\discord_voice.node
MOD - [2020/11/13 11:28:34 | 001,777,976 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_utils\discord_utils.node
MOD - [2020/11/13 11:28:34 | 000,460,600 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
MOD - [2020/11/13 11:28:33 | 001,922,872 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
MOD - [2020/11/13 11:28:33 | 001,399,096 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_erlpack\discord_erlpack.node
MOD - [2020/11/13 11:28:33 | 000,142,136 | ---- | M] () -- \\?\C:\Users\姓名\AppData\Roaming\discord\0.0.307\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
MOD - [2020/10/29 09:56:06 | 002,952,480 | ---- | M] () -- C:\Program Files (x86)\Steam\video.dll
MOD - [2020/10/29 09:56:04 | 001,058,592 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2020/10/14 15:25:36 | 000,982,816 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2020/08/04 13:56:02 | 006,676,792 | ---- | M] () -- C:\Users\姓名\AppData\Local\Discord\app-0.0.307\libglesv2.dll
MOD - [2020/08/04 13:56:02 | 001,998,136 | ---- | M] () -- C:\Users\姓名\AppData\Local\Discord\app-0.0.307\ffmpeg.dll
MOD - [2020/08/04 13:56:02 | 000,123,704 | ---- | M] () -- C:\Users\姓名\AppData\Local\Discord\app-0.0.307\libegl.dll
MOD - [2019/10/31 02:33:56 | 005,138,896 | ---- | M] () -- C:\Program Files (x86)\Steam\libavcodec-57.dll
MOD - [2019/10/31 02:33:56 | 000,848,336 | ---- | M] () -- C:\Program Files (x86)\Steam\libavutil-55.dll
MOD - [2019/10/31 02:33:56 | 000,811,984 | ---- | M] () -- C:\Program Files (x86)\Steam\libavformat-57.dll
MOD - [2019/10/31 02:33:56 | 000,784,848 | ---- | M] () -- C:\Program Files (x86)\Steam\libswscale-4.dll
MOD - [2019/10/31 02:33:56 | 000,352,720 | ---- | M] () -- C:\Program Files (x86)\Steam\libavresample-3.dll
MOD - [2019/03/19 13:45:16 | 000,046,656 | ---- | M] () -- C:\Windows\SysWOW64\umpdc.dll
MOD - [2016/09/01 10:02:12 | 004,969,248 | ---- | M] () -- C:\Program Files (x86)\Steam\v8.dll
MOD - [2016/09/01 10:02:06 | 001,563,936 | ---- | M] () -- C:\Program Files (x86)\Steam\icui18n.dll
MOD - [2016/09/01 10:02:06 | 001,195,296 | ---- | M] () -- C:\Program Files (x86)\Steam\icuuc.dll
MOD - [2016/07/05 07:17:58 | 000,266,560 | ---- | M] () -- C:\Program Files (x86)\Steam\openvr_api.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2020/11/22 02:58:09 | 003,096,160 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Avast Software\Avast\aswToolsSvc.exe -- (avast! Tools)
SRV:[b]64bit:[/b] - [2020/11/22 02:58:05 | 000,365,648 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Avast Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2020/11/22 02:58:05 | 000,058,048 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Avast Software\Avast\wsc_proxy.exe -- (AvastWscReporter)
SRV:[b]64bit:[/b] - [2020/11/22 02:58:04 | 008,454,552 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Avast Software\Avast\aswidsagent.exe -- (aswbIDSAgent)
SRV:[b]64bit:[/b] - [2020/11/12 10:59:22 | 000,319,304 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Update Health Tools\uhssvc.exe -- (uhssvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:57 | 000,432,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WalletService.dll -- (WalletService)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:50 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FrameServer.dll -- (FrameServer)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:41 | 000,938,984 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SecurityHealthService.exe -- (SecurityHealthService)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:41 | 000,614,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:39 | 003,806,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:38 | 000,200,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:36 | 000,544,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usosvc.dll -- (UsoSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:35 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\psmsrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:35 | 000,090,624 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\WpnUserService.dll -- (WpnUserService)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:34 | 005,284,328 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\Windows.StateRepository.dll -- (StateRepository)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:34 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WaaSMedicSvc.dll -- (WaaSMedicSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:33 | 001,606,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dosvc.dll -- (DoSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:28 | 003,732,480 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:24 | 003,552,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2020/11/08 02:41:24 | 000,892,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -- (NVDisplay.ContainerLocalSystem)
SRV:[b]64bit:[/b] - [2020/10/19 14:42:08 | 000,287,720 | ---- | M] (NVIDIA) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe -- (FvSvc)
SRV:[b]64bit:[/b] - [2020/10/18 00:01:57 | 000,874,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -- (NvContainerLocalSystem)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:50 | 000,711,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:39 | 000,986,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Spectrum.exe -- (spectrum)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:29 | 001,285,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\usermgr.dll -- (UserManager)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:26 | 000,676,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:24 | 000,554,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:22 | 002,485,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\InstallService.dll -- (InstallService)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:22 | 000,284,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PushToInstall.dll -- (PushToInstall)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:20 | 001,499,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TokenBroker.dll -- (TokenBroker)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:20 | 001,026,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ClipSVC.dll -- (ClipSVC)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:20 | 000,271,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:19 | 000,381,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\CredentialEnrollmentManager.exe -- (CredentialEnrollmentManagerUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:19 | 000,381,656 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\CredentialEnrollmentManager.exe -- (CredentialEnrollmentManagerUserSvc)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 001,077,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BTAGService.dll -- (BTAGService)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,735,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:41 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:39 | 000,858,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:38 | 000,255,488 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wpnservice.dll -- (WpnService)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:35 | 000,648,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cdpsvc.dll -- (CDPSvc)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:35 | 000,521,728 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\cdpusersvc.dll -- (CDPUserSvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:57 | 000,405,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\DispBroker.Desktop.dll -- (DispBrokerDesktopSvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:57 | 000,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:52 | 000,157,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\RMapi.dll -- (RmSvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:48 | 000,867,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:43 | 000,374,784 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:37 | 002,136,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WpcDesktopMonSvc.dll -- (WpcMonSvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:37 | 001,059,328 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:36 | 000,340,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\LanguageOverlayServer.dll -- (LxpSvc)
SRV:[b]64bit:[/b] - [2020/08/06 02:02:28 | 001,138,976 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Windows\SysNative\RtkAudUService64.exe -- (RtkAudioUniversalService)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:38 | 000,467,456 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:38 | 000,352,256 | ---- | M] (Microsoft Corporation) [Auto | Unknown] -- C:\Windows\SysNative\APHostService.dll -- (OneSyncSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:33 | 000,215,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DiagSvc.dll -- (diagsvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:30 | 001,125,376 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\CBDHSvc.dll -- (cbdhsvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:24 | 000,179,200 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:23 | 000,931,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:22 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:21 | 000,651,264 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\DevicesFlowBroker.dll -- (DevicesFlowUserSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:21 | 000,128,512 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\CaptureService.dll -- (CaptureService)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:18 | 001,271,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SEMgrSvc.dll -- (SEMgrSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:18 | 000,361,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:16 | 000,243,200 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:15 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\AarSvc.dll -- (AarSvc)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:14 | 000,922,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.Management.Service.dll -- (WManSvc)
SRV:[b]64bit:[/b] - [2020/06/11 03:10:26 | 002,184,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2020/06/11 03:10:26 | 000,477,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SharedRealitySvc.dll -- (SharedRealitySvc)
SRV:[b]64bit:[/b] - [2020/06/11 03:10:14 | 000,368,640 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\CapabilityAccessManager.dll -- (camsvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:31 | 000,736,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\RDXService.dll -- (RetailDemo)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:29 | 000,139,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\MixedRealityRuntime.dll -- (MixedRealityOpenXRSvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:19 | 001,393,664 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\bcastdvruserservice.dll -- (BcastDVRUserService)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:19 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\ConsentUxClient.dll -- (ConsentUxUserSvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:05 | 001,536,512 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\UserDataService.dll -- (UserDataSvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:28:01 | 000,231,912 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\deviceaccess.dll -- (DeviceAssociationBrokerSvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:27:57 | 001,263,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblGameSave.dll -- (XblGameSave)
SRV:[b]64bit:[/b] - [2020/05/13 16:27:57 | 000,943,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PhoneService.dll -- (PhoneSvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:27:57 | 000,893,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FlightSettings.dll -- (wisvc)
SRV:[b]64bit:[/b] - [2020/05/13 16:27:57 | 000,534,528 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Microsoft.Bluetooth.UserService.dll -- (BluetoothUserService)
SRV:[b]64bit:[/b] - [2020/03/14 11:43:16 | 001,190,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Microsoft.Graphics.Display.DisplayEnhancementService.dll -- (DisplayEnhancementService)
SRV:[b]64bit:[/b] - [2020/03/14 11:43:16 | 000,358,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dusmsvc.dll -- (DusmSvc)
SRV:[b]64bit:[/b] - [2020/03/14 11:43:01 | 002,157,056 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2020/02/13 23:47:12 | 000,157,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dssvc.dll -- (DsSvc)
SRV:[b]64bit:[/b] - [2019/12/12 17:19:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\DevQueryBroker.dll -- (DevQueryBroker)
SRV:[b]64bit:[/b] - [2019/11/13 07:24:19 | 000,061,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hvhostsvc.dll -- (HvHost)
SRV:[b]64bit:[/b] - [2019/10/05 03:49:13 | 000,599,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SmsRouterSvc.dll -- (SmsRouter)
SRV:[b]64bit:[/b] - [2019/10/05 03:48:55 | 000,236,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tetheringservice.dll -- (icssvc)
SRV:[b]64bit:[/b] - [2019/09/12 21:07:13 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2019/09/12 21:06:58 | 001,158,656 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\Unistore.dll -- (UnistoreSvc)
SRV:[b]64bit:[/b] - [2019/09/12 21:06:52 | 000,810,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:[b]64bit:[/b] - [2019/08/21 09:58:38 | 000,957,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ngcsvc.dll -- (NgcSvc)
SRV:[b]64bit:[/b] - [2019/08/21 09:58:37 | 000,096,768 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tzautoupdate.dll -- (tzautoupdate)
SRV:[b]64bit:[/b] - [2019/03/19 21:32:45 | 000,384,512 | ---- | M] () [Disabled | Stopped] -- C:\Windows\SysNative\OpenSSH\ssh-agent.exe -- (ssh-agent)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:56 | 000,089,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvcext.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvmsession)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,302,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:54 | 000,120,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:53 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:50 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TieringEngineService.exe -- (TieringEngineService)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:38 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:35 | 000,033,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:34 | 000,103,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PerceptionSimulation\PerceptionSimulationService.exe -- (perceptionsimulation)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:32 | 001,268,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XboxNetApiSvc.dll -- (XboxNetApiSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:32 | 000,263,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SgrmBroker.exe -- (SgrmBroker)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:32 | 000,116,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\autotimesvc.dll -- (autotimesvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:04 | 001,264,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorDataService.exe -- (SensorDataService)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:47 | 000,079,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:47 | 000,058,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dmwappushsvc.dll -- (dmwappushservice)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:36 | 000,336,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NetSetupSvc.dll -- (NetSetupSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (WpnUserService_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UserDataSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (UnistoreSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (PrintWorkflowUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (PimIndexMaintenanceSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (OneSyncSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (MessagingService_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicesFlowUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DevicePickerUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (DeviceAssociationBrokerSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (ConsentUxUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (CDPUserSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\svchost.exe -- (cbdhsvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (CaptureService_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BluetoothUserService_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (BcastDVRUserService_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,053,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svchost.exe -- (AarSvc_8e66c)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:23 | 000,239,104 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,487,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SensorService.dll -- (SensorService)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,482,816 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:15 | 000,190,464 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:15 | 000,050,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\LicenseManagerSvc.dll -- (LicenseManager)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:15 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lfsvc.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:12 | 000,092,160 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\moshost.dll -- (MapsBroker)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:11 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GraphicsPerfSvc.dll -- (GraphicsPerfSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:11 | 000,061,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Windows.WARP.JITService.dll -- (WarpJITSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:04 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AJRouter.dll -- (AJRouter)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:03 | 000,172,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\embeddedmodesvc.dll -- (embeddedmode)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:01 | 000,172,032 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:55 | 000,740,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WFDSConMgrSvc.dll -- (WFDSConMgrSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:53 | 000,831,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NaturalAuth.dll -- (NaturalAuthentication)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,064,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipxlatcfg.dll -- (IpxlatCfgSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:47 | 001,063,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\XblAuthManager.dll -- (XblAuthManager)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:47 | 000,422,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vac.dll -- (VacSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 001,390,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lpasvc.dll -- (wlpasvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,394,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\MitigationClient.dll -- (TroubleshootingSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,382,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\BthAvctpSvc.dll -- (BthAvctpSvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysNative\MessagingService.dll -- (MessagingService)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,072,704 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\xboxgipsvc.dll -- (XboxGipSvc)
SRV:[b]64bit:[/b] - [2018/05/30 00:42:58 | 000,017,440 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2018/05/15 17:02:22 | 000,714,952 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2018/05/15 17:01:44 | 000,762,056 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2011/12/12 00:00:00 | 000,135,824 | ---- | M] (Seiko Epson Corporation) [Auto | Running] -- C:\Windows\SysNative\escsvc64.exe -- (EpsonScanSvc)
SRV:[b]64bit:[/b] - [2011/09/23 14:31:40 | 000,073,728 | ---- | M] (UC-Logic Technology Corp.) [Auto | Running] -- C:\Windows\SysNative\drivers\WTSrv.exe -- (WinTabService)
SRV - [2020/11/25 00:49:50 | 007,269,976 | ---- | M] (Malwarebytes) [Auto | Running] -- D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMService.exe -- (MBAMService)
SRV - [2020/11/23 17:44:56 | 001,573,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\elevation_service.exe -- (MicrosoftEdgeElevationService)
SRV - [2020/11/17 16:18:27 | 001,453,552 | ---- | M] (Google LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe -- (GoogleChromeElevationService)
SRV - [2020/11/11 04:05:44 | 005,003,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2020/11/11 04:05:24 | 003,552,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2020/11/10 23:07:00 | 000,335,416 | ---- | M] (Adobe) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2020/11/08 02:41:24 | 000,892,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -- (NVDisplay.ContainerLocalSystem)
SRV - [2020/11/07 11:33:28 | 002,467,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\NisSrv.exe -- (WdNisSvc)
SRV - [2020/11/07 11:33:28 | 000,128,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\MsMpEng.exe -- (WinDefend)
SRV - [2020/11/06 23:08:04 | 001,883,424 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2020/10/14 16:47:32 | 001,751,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\InstallService.dll -- (InstallService)
SRV - [2020/10/14 16:47:31 | 001,246,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\TokenBroker.dll -- (TokenBroker)
SRV - [2020/10/14 16:47:31 | 000,705,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\BTAGService.dll -- (BTAGService)
SRV - [2020/09/09 22:46:51 | 000,553,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2020/07/16 23:00:38 | 000,338,944 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Windows.Devices.Picker.dll -- (DevicePickerUserSvc)
SRV - [2020/07/16 23:00:29 | 000,141,312 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\PrintWorkflowService.dll -- (PrintWorkflowUserSvc)
SRV - [2020/07/16 23:00:28 | 000,653,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2020/06/24 08:25:07 | 000,224,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe -- (edgeupdatem)
SRV - [2020/06/24 08:25:07 | 000,224,160 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe -- (edgeupdate)
SRV - [2020/05/21 15:25:40 | 000,146,240 | ---- | M] (Cisco WebEx LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Webex\Plugins\WebExService.exe -- (WebexPluginsService)
SRV - [2020/05/13 16:28:30 | 000,105,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\MixedRealityRuntime.dll -- (MixedRealityOpenXRSvc)
SRV - [2020/05/13 16:28:16 | 000,185,952 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\deviceaccess.dll -- (DeviceAssociationBrokerSvc)
SRV - [2020/05/13 16:28:12 | 000,729,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\FlightSettings.dll -- (wisvc)
SRV - [2019/11/19 11:27:58 | 010,559,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe -- (dgpservice)
SRV - [2019/09/12 21:07:17 | 000,957,952 | ---- | M] (Microsoft Corporation) [On_Demand | Unknown] -- C:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
SRV - [2019/08/21 09:58:50 | 000,072,704 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\tzautoupdate.dll -- (tzautoupdate)
SRV - [2019/03/19 13:45:58 | 000,029,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2019/02/21 23:10:46 | 000,144,440 | ---- | M] (Cisco WebEx LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe -- (WebexService)
SRV - [2018/06/06 15:28:20 | 000,625,728 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2018/06/06 15:27:26 | 000,218,176 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2018/05/01 16:51:00 | 007,789,088 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2017/08/17 10:04:28 | 000,073,768 | ---- | M] (Symantec Corporation) [Auto | Running] -- D:\App\VIP ACCESS\VIPAppService.exe -- (VIPAppService)
SRV - [2015/07/06 14:55:42 | 000,139,568 | ---- | M] (Buffalo Inc.) [Auto | Running] -- C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe -- (BWH32S)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2020/11/26 16:56:34 | 000,138,904 | ---- | M] (Malwarebytes) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebProtection)
DRV:[b]64bit:[/b] - [2020/11/25 19:15:01 | 000,077,496 | ---- | M] (Malwarebytes) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtection)
DRV:[b]64bit:[/b] - [2020/11/25 19:14:59 | 000,197,792 | ---- | M] (Malwarebytes) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\farflt.sys -- (MBAMFarflt)
DRV:[b]64bit:[/b] - [2020/11/25 19:14:57 | 000,220,160 | ---- | M] (Malwarebytes) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\MbamChameleon.sys -- (MBAMChameleon)
DRV:[b]64bit:[/b] - [2020/11/25 01:53:02 | 000,248,968 | ---- | M] (Malwarebytes) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2020/11/25 00:49:51 | 000,153,312 | ---- | M] (Malwarebytes) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mbae64.sys -- (ESProtectionDriver)
DRV:[b]64bit:[/b] - [2020/11/25 00:49:51 | 000,019,912 | ---- | M] (Malwarebytes) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MbamElam.sys -- (MbamElam)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:09 | 000,326,416 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:09 | 000,217,336 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,521,752 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswNetHub.sys -- (aswNetHub)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,469,832 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,247,888 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbidsh.sys -- (aswbidsh)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,176,744 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,109,280 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,097,352 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbuniv.sys -- (aswbuniv)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,084,856 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,042,784 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:08 | 000,016,816 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswElam.sys -- (aswElam)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:05 | 000,206,408 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswArPot.sys -- (aswArPot)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:05 | 000,037,152 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswArDisk.sys -- (aswArDisk)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:04 | 000,851,608 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2020/11/22 02:58:04 | 000,332,368 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswbidsdriver.sys -- (aswbidsdriver)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:50 | 000,097,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PktMon.sys -- (PktMon)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:47 | 000,084,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:41 | 000,291,840 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:40 | 000,400,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:36 | 000,117,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\bindflt.sys -- (bindflt)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:25 | 000,246,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:24 | 000,325,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xboxgip.sys -- (xboxgip)
DRV:[b]64bit:[/b] - [2020/11/11 04:05:24 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xinputhid.sys -- (xinputhid)
DRV:[b]64bit:[/b] - [2020/11/08 02:38:40 | 033,065,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\nvlddmkm.sys -- (nvlddmkm)
DRV:[b]64bit:[/b] - [2020/11/07 11:33:28 | 000,429,288 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wd\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2020/11/07 11:33:28 | 000,071,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wd\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2020/11/07 11:33:28 | 000,048,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\wd\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:25 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\applockerfltr.sys -- (applockerfltr)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:23 | 000,180,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,251,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winnat.sys -- (WinNat)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,174,400 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,141,632 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidspi.sys -- (hidspi)
DRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,059,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storufs.sys -- (storufs)
DRV:[b]64bit:[/b] - [2020/09/15 09:01:34 | 000,709,008 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\nvppc.inf_amd64_61e9a7eac960089c\UcmCxUcsiNvppc.sys -- (UcmCxUcsiNvppc)
DRV:[b]64bit:[/b] - [2020/09/15 09:01:34 | 000,222,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2020/09/09 22:46:33 | 000,555,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:[b]64bit:[/b] - [2020/09/09 22:46:33 | 000,250,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2020/08/13 06:55:52 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afunix.sys -- (afunix)
DRV:[b]64bit:[/b] - [2020/07/16 23:00:14 | 000,656,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2020/06/11 03:10:13 | 000,531,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2020/05/13 16:28:07 | 000,457,216 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\cldflt.sys -- (CldFlt)
DRV:[b]64bit:[/b] - [2020/05/13 16:27:56 | 000,634,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2020/05/13 16:27:56 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2020/04/15 07:14:30 | 000,297,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2020/04/15 07:14:30 | 000,151,352 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\scmbus.sys -- (scmbus)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:23 | 000,032,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:12 | 000,135,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:05 | 001,972,536 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:03 | 000,201,744 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\wcifs.sys -- (wcifs)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:00 | 000,337,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Acx01000.sys -- (Acx01000)
DRV:[b]64bit:[/b] - [2020/03/14 11:43:00 | 000,180,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2020/03/14 11:42:59 | 000,355,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2020/03/14 11:42:59 | 000,036,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthMini.SYS -- (BthMini)
DRV:[b]64bit:[/b] - [2020/03/12 04:26:38 | 000,067,456 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvhci.sys -- (nvvhci)
DRV:[b]64bit:[/b] - [2020/03/04 21:54:38 | 000,050,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NvModuleTracker.sys -- (NvModuleTracker)
DRV:[b]64bit:[/b] - [2019/12/12 17:19:49 | 000,986,936 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refsv1.sys -- (ReFSv1)
DRV:[b]64bit:[/b] - [2019/11/13 07:23:55 | 000,359,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MbbCx.sys -- (MbbCx)
DRV:[b]64bit:[/b] - [2019/10/09 16:53:42 | 000,225,080 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2019/10/05 03:48:56 | 000,931,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:[b]64bit:[/b] - [2019/10/05 03:48:55 | 000,079,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:52 | 000,182,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,108,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys -- (UfxChipidea)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,068,096 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys -- (umbus)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,037,888 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,032,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,030,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys -- (UrsChipidea)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,028,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys -- (UrsSynopsys)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:47 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys -- (genericusbfn)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:46 | 000,231,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthA2dp.sys -- (BthA2dp)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:46 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2019/09/12 21:06:46 | 000,018,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys -- (swenum)
DRV:[b]64bit:[/b] - [2019/08/21 09:58:44 | 000,205,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\winquic.sys -- (WinQuic)
DRV:[b]64bit:[/b] - [2019/08/21 09:58:34 | 000,257,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaudio2.sys -- (usbaudio2)
DRV:[b]64bit:[/b] - [2019/04/17 16:42:48 | 000,069,840 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2019/03/19 21:34:19 | 000,031,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2019/03/19 21:34:17 | 000,076,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpatialGraphFilter.sys -- (SpatialGraphFilter)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:50 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NDKPing.sys -- (NDKPing)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:38 | 000,085,520 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:32 | 000,132,096 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:32 | 000,089,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SgrmAgent.sys -- (SgrmAgent)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:00 | 000,078,848 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2019/03/19 13:45:00 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:36 | 000,187,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:35 | 000,321,040 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:35 | 000,034,320 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:21 | 000,021,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdmCompanionFilter.sys -- (WdmCompanionFilter)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,311,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufx01000.sys -- (Ufx01000)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,186,368 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,170,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,160,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UcmCx.sys -- (UcmCx0101)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsiCx.sys -- (UcmUcsiCx0101)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,093,200 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\storqosflt.sys -- (storqosflt)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,085,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,084,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,075,752 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,074,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\urscx01000.sys -- (UrsCx01000)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,040,760 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\cnghwassist.sys -- (cnghwassist)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\portcfg.sys -- (portcfg)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:18 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:16 | 000,092,672 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wcnfs.sys -- (wcnfs)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:16 | 000,058,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:16 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:16 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshwnclx.sys -- (HwNClx0101)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:01 | 000,070,456 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bam.sys -- (bam)
DRV:[b]64bit:[/b] - [2019/03/19 13:44:00 | 000,100,152 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,244,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Ucx01000.sys -- (Ucx01000)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,136,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,065,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,059,392 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\filecrypt.sys -- (FileCrypt)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,054,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ipt.sys -- (IPT)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Udecx.sys -- (UdeCx)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,041,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ramdisk.sys -- (Ramdisk)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:47 | 000,053,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mmcss.sys -- (MMCSS)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,056,632 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iorate.sys -- (iorate)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:45 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,083,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,058,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,032,568 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\hvcrash.sys -- (hvcrash)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,025,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:44 | 000,018,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgid.sys -- (vmgid)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,181,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,103,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
  • せーめー
  • 2020/11/26 (Thu) 22:53:11
OTLログその2
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,097,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,054,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,053,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\buttonconverter.sys -- (buttonconverter)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,042,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,041,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UcmUcsiAcpiClient.sys -- (UcmUcsiAcpiClient)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,032,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,022,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:43 | 000,017,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 001,866,768 | ---- | M] (Chelsio Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cht4vx64.sys -- (cht4vbd)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 001,150,480 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,885,048 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAVC.sys -- (iaStorAVC)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,566,800 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ibbus.sys -- (ibbus)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,535,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbhost.sys -- (mausbhost)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,158,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvdimm.sys -- (nvdimm)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,153,616 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndfltr.sys -- (ndfltr)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,127,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pmem.sys -- (pmem)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,079,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,077,832 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winverbs.sys -- (WinVerbs)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,062,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mausbip.sys -- (mausbip)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,042,808 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bttflt.sys -- (bttflt)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhf.sys -- (vhf)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,037,928 | ---- | M] (Mellanox) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winmad.sys -- (WinMad)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:41 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:40 | 000,319,528 | ---- | M] (Chelsio Communications) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:40 | 000,305,672 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 001,135,632 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,259,600 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,220,176 | ---- | M] (Microsemi Corportation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\SmartSAMD.sys -- (SmartSAMD)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,148,520 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\ItSas35i.sys -- (ItSas35i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,128,528 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,124,448 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,107,528 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,094,736 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\megasas35i.sys -- (megasas35i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,083,464 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,082,960 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,075,280 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\MegaSas2i.sys -- (megasas2i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,068,624 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas3i.sys -- (percsas3i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,064,528 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,064,016 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,058,896 | ---- | M] (Avago Technologies) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\percsas2i.sys -- (percsas2i)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,031,240 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,027,176 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AcpiDev.sys -- (AcpiDev)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:39 | 000,016,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\volume.sys -- (volume)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 003,419,176 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 000,534,032 | ---- | M] (QLogic Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 000,113,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rhproxy.sys -- (rhproxy)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 000,033,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SDFRd.sys -- (SDFRd)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:38 | 000,017,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pnpmem.sys -- (PNPMEM)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:37 | 000,114,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:37 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 008,206,848 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlanu.sys -- (RtlWlanu)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,180,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_CNL.sys -- (iaLPSS2i_I2C_CNL)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,177,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_GLK.sys -- (iaLPSS2i_I2C_GLK)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,175,104 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C_BXT_P.sys -- (iaLPSS2i_I2C_BXT_P)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,171,520 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,112,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_CNL.sys -- (iaLPSS2i_GPIO2_CNL)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,096,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_GLK.sys -- (iaLPSS2i_GPIO2_GLK)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,093,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2_BXT_P.sys -- (iaLPSS2i_GPIO2_BXT_P)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,091,136 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iai2c.sys -- (iai2c)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,079,360 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,064,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CAD.sys -- (CAD)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,036,352 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iagpio.sys -- (iagpio)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelpmax.sys -- (intelpmax)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:34 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:33 | 000,131,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthHfEnum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:33 | 000,064,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Microsoft.Bluetooth.AvrcpTransport.sys -- (Microsoft_Bluetooth_AvrcpTransport)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:33 | 000,037,888 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdi2c.sys -- (amdi2c)
DRV:[b]64bit:[/b] - [2019/03/19 13:43:33 | 000,018,432 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdgpio2.sys -- (amdgpio2)
DRV:[b]64bit:[/b] - [2018/12/07 11:36:50 | 000,036,600 | ---- | M] (Riverbed Technology, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (npf)
DRV:[b]64bit:[/b] - [2018/06/06 15:26:06 | 000,228,992 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverW8x64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2018/05/30 00:42:56 | 000,967,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorAC.sys -- (iaStorAC)
DRV:[b]64bit:[/b] - [2018/05/10 14:05:04 | 000,035,560 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppleLowerFilter.sys -- (AppleLowerFilter)
DRV:[b]64bit:[/b] - [2018/05/10 14:05:04 | 000,020,640 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AppleKmdfFilter.sys -- (AppleKmdfFilter)
DRV:[b]64bit:[/b] - [2018/04/30 03:51:34 | 001,024,384 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt640x64.sys -- (rt640x64)
DRV:[b]64bit:[/b] - [2017/11/28 15:56:30 | 000,032,352 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:[b]64bit:[/b] - [2015/03/12 17:22:16 | 000,018,944 | ---- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bufeap64.sys -- (Bufeap)
DRV:[b]64bit:[/b] - [2009/06/18 11:42:36 | 000,022,696 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCTblHid.sys -- (UCTblHid)
DRV:[b]64bit:[/b] - [2009/06/18 11:42:18 | 000,027,304 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TClass2k.sys -- (TClass2k)
DRV:[b]64bit:[/b] - [2009/06/18 11:42:00 | 000,017,064 | ---- | M] (PenTablet Driver) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PTSimHid.sys -- (PTSimHid)
DRV:[b]64bit:[/b] - [2009/06/18 11:41:48 | 000,027,304 | ---- | M] (PenTablet Driver) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\PTSimBus.sys -- (PTSimBus)
DRV - [2020/11/08 02:38:40 | 033,065,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\nvlddmkm.sys -- (nvlddmkm)
DRV - [2020/10/16 00:06:55 | 002,719,256 | ---- | M] (Wellbia.com Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\xhunter1.sys -- (xhunter1)
DRV - [2020/09/15 09:01:34 | 000,709,008 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\nvppc.inf_amd64_61e9a7eac960089c\UcmCxUcsiNvppc.sys -- (UcmCxUcsiNvppc)
DRV - [2020/08/13 06:55:56 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\afunix.sys -- (afunix)
DRV - [2019/09/12 21:06:47 | 000,108,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys -- (UfxChipidea)
DRV - [2019/09/12 21:06:47 | 000,068,096 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys -- (BasicDisplay)
DRV - [2019/09/12 21:06:47 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys -- (umbus)
DRV - [2019/09/12 21:06:47 | 000,037,888 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys -- (BasicRender)
DRV - [2019/09/12 21:06:47 | 000,032,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys -- (UEFI)
DRV - [2019/09/12 21:06:47 | 000,030,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys -- (UrsChipidea)
DRV - [2019/09/12 21:06:47 | 000,028,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys -- (UrsSynopsys)
DRV - [2019/09/12 21:06:47 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys -- (genericusbfn)
DRV - [2019/09/12 21:06:46 | 000,040,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys -- (CompositeBus)
DRV - [2019/09/12 21:06:46 | 000,018,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys -- (swenum)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {8AEC98A3-7F7F-420A-8623-51436AA00D28}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{8AEC98A3-7F7F-420A-8623-51436AA00D28}: "URL" = http://www.bing.com/search?q={searchTerms}&from=PRNAM1&src=IE11TR&pc=NMTE
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {8AEC98A3-7F7F-420A-8623-51436AA00D28}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{8AEC98A3-7F7F-420A-8623-51436AA00D28}: "URL" = http://www.bing.com/search?q={searchTerms}&from=PRNAM1&src=IE11TR&pc=NMTE


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm

IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://oem17win10.msn.com/?pc=NMTE
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 0E D9 30 AF 80 E2 D4 01 [binary data]
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 0F 00 00 00 E7 4F 59 30 6F 69 66 6D ED 0F 47 2C 99 CF D5 02 00 00 00 0E 00 00 00 55 32 70 52 39 2F 33 6C 66 6C 4D 25 33 64 [binary data]
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\..\SearchScopes,DefaultScope = {8AEC98A3-7F7F-420A-8623-51436AA00D28}
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.271.2: C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.271.2: C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@webex.com/npatgpc: C:\Program Files (x86)\Webex\npatgpc.dll (Cisco WebEx LLC)
FF - HKCU\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)
FF - HKCU\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)
FF - HKCU\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf: C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll (Tracker Software Products (Canada) Ltd.)



[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\3.10_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmdbgomjbmaglkbnelbioemfeomeiih\2020.11.24.42192_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphpjhbabehcmdjobbjmbkgbbgipnppo\0.1.8_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi\2020.11.21.45785_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen\14.984.0_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kibplilbehdjpkbgpndjpmhoeopmejlg\2019.3.11.8194_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcpaignfemglimlkcjaedicilidjojcp\2019.3.11.8378_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oingodpdjohhkelnginmkagmkbplgema\6.0.5_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonalfdoahlmjaoloddjenihohbfodme\1.5.2_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgnfefoljgaelbckgfbijijhblgophjo\2.5_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0\

O1 HOSTS File: ([2018/04/12 08:36:39 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (IEToEdge BHO) - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\BHO\ie_to_edge_bho_64.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IEToEdge BHO) - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\BHO\ie_to_edge_bho.dll (Microsoft Corporation)
O2 - BHO: (生産性向上ツール) - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll (Cisco WebEx LLC)
O3 - HKLM\..\Toolbar: (生産性向上ツール) - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll (Cisco WebEx LLC)
O4:[b]64bit:[/b] - HKLM..\Run: [AvastUI.exe] C:\Program Files\Avast Software\Avast\AvLaunch.exe (AVAST Software)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtkAudUService] C:\WINDOWS\SysNative\RtkAudUService64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SecurityHealth] C:\Windows\SysNative\SecurityHealthSystray.exe (Microsoft Corporation)
O4 - HKLM..\Run: [TeamsMachineInstaller] C:\Program Files (x86)\Teams Installer\Teams.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WTClient] C:\WINDOWS\SysWow64\WTClient.exe (Tablet Driver)
O4 - HKU\S-1-5-19..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [CCleaner Smart Cleaning] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [CiscoMeetingDaemon] C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe (Cisco Webex LLC)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [com.squirrel.Teams.Teams] C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [Discord] C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe (Discord Inc.)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [EpicGamesLauncher] "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent File not found
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [OneDrive] C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001..\Run: [THPanel] C:\Program Files (x86)\Thunder Master\THPanel.exe (Palit Microsystems Ltd.)
O4 - Startup: C:\Users\姓名\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\らくらくアップデートツール.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableFullTrustStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUwpStartupTasks = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportFullTrustStartupTasks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SupportUwpStartupTasks = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\..Trusted Domains: sharepoint.com ([johoce-files] https in Trusted sites)
O15 - HKU\S-1-5-21-68866919-1333413524-3689009959-1001\..Trusted Domains: sharepoint.com ([johoce-myfiles] https in Trusted sites)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5383dae9-c1c9-4a68-849c-87e97a3a2ab8}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6410efae-6c7f-424f-9b72-733297347a03}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{be08e1f7-311a-4b5e-a4b3-08a4698ccab5}: DhcpNameServer = 172.16.0.1 172.16.0.2
O18:[b]64bit:[/b] - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysNative\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O18 - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

ActiveX:[b]64bit:[/b] {052860C8-3E53-3D0B-9332-48A8B4971352} - .NET Framework
ActiveX:[b]64bit:[/b] {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:[b]64bit:[/b] {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - /UserInstall
ActiveX:[b]64bit:[/b] {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:[b]64bit:[/b] {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:[b]64bit:[/b] {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:[b]64bit:[/b] {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:[b]64bit:[/b] {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:[b]64bit:[/b] {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:[b]64bit:[/b] {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:[b]64bit:[/b] {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:[b]64bit:[/b] {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4340} - U
ActiveX:[b]64bit:[/b] {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:[b]64bit:[/b] {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:[b]64bit:[/b] {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
ActiveX:[b]64bit:[/b] {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:[b]64bit:[/b] {9459C573-B17A-45AE-9F64-1857B5D58CEE} - "C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge
ActiveX:[b]64bit:[/b] {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:[b]64bit:[/b] {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:[b]64bit:[/b] {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:[b]64bit:[/b] {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:[b]64bit:[/b] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {23A20C3C-2ADD-4A80-AFB4-C146F8847D79} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8E0A742C-D031-348A-954F-AFE3CB92EFB7} - .NET Framework
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2020/11/26 16:56:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2020/11/25 19:15:01 | 000,077,496 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2020/11/25 19:14:59 | 000,197,792 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2020/11/25 19:14:58 | 000,138,904 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2020/11/25 19:14:57 | 000,220,160 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamChameleon.sys
[2020/11/25 00:58:40 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2020/11/25 00:50:13 | 000,000,000 | ---D | C] -- C:\Users\姓名\AppData\Local\mbam
[2020/11/25 00:49:57 | 000,248,968 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamswissarmy.sys
[2020/11/25 00:49:54 | 000,153,312 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2020/11/25 00:49:54 | 000,019,912 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamElam.sys
[2020/11/25 00:49:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2020/11/24 00:18:41 | 000,000,000 | ---D | C] -- C:\Users\姓名\AppData\Roaming\Tracker Software
[2020/11/24 00:18:32 | 002,155,776 | ---- | C] (Tracker Software Products (Canada) Ltd.) -- C:\WINDOWS\SysNative\pxcpmL.dll
[2020/11/24 00:18:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software
[2020/11/24 00:18:29 | 000,000,000 | ---D | C] -- C:\ProgramData\FileOpen
[2020/11/24 00:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Tracker Software
[2020/11/24 00:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Tracker Software
[2020/11/24 00:14:16 | 000,000,000 | ---D | C] -- C:\Users\姓名\AppData\Roaming\Geek Uninstaller
[2020/11/24 00:00:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2020/11/23 23:59:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Oracle
[2020/11/23 23:37:18 | 000,274,720 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTHDASIO64.dll
[2020/11/23 23:37:18 | 000,229,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysWow64\RTHDASIO.dll
[2020/11/23 23:37:15 | 001,145,464 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtCOM64.dll
[2020/11/23 23:37:15 | 000,854,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64U.dll
[2020/11/23 23:37:15 | 000,468,776 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2020/11/23 01:53:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft Antimalware
[2020/11/22 03:06:20 | 000,000,000 | ---D | C] -- C:\Users\姓名\AppData\Roaming\Avast Software
[2020/11/22 02:58:11 | 000,339,552 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\aswBoot.exe
[2020/11/22 02:58:10 | 000,851,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSnx.sys
[2020/11/22 02:58:10 | 000,521,752 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswNetHub.sys
[2020/11/22 02:58:10 | 000,469,832 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSP.sys
[2020/11/22 02:58:10 | 000,332,368 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbidsdriver.sys
[2020/11/22 02:58:10 | 000,326,416 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys
[2020/11/22 02:58:10 | 000,247,888 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbidsh.sys
[2020/11/22 02:58:10 | 000,217,336 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswStm.sys
[2020/11/22 02:58:10 | 000,206,408 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswArPot.sys
[2020/11/22 02:58:10 | 000,176,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswMonFlt.sys
[2020/11/22 02:58:10 | 000,109,280 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRdr2.sys
[2020/11/22 02:58:10 | 000,097,352 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbuniv.sys
[2020/11/22 02:58:10 | 000,084,856 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys
[2020/11/22 02:58:10 | 000,042,784 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswKbd.sys
[2020/11/22 02:58:10 | 000,037,152 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswArDisk.sys
[2020/11/22 02:58:10 | 000,016,816 | ---- | C] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswElam.sys
[2020/11/22 02:58:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Avast Software
[2020/11/22 02:52:57 | 000,000,000 | ---D | C] -- C:\Program Files\Avast Software
[2020/11/22 02:52:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Avast Software
[2020/11/22 02:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2020/11/22 02:20:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2020/11/22 02:00:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2020/11/22 02:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2020/11/22 01:58:24 | 000,000,000 | ---D | C] -- D:\ドキュメント\B1脆弱性対策用
[2020/11/14 15:59:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medibang
[2020/11/11 04:05:57 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msra.exe
[2020/11/11 04:05:57 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WalletService.dll
[2020/11/11 04:05:57 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\raserver.exe
[2020/11/11 04:05:57 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\raserver.exe
[2020/11/11 04:05:56 | 004,547,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DHolographicDisplay.dll
[2020/11/11 04:05:56 | 003,525,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2020/11/11 04:05:56 | 002,315,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2020/11/11 04:05:56 | 001,419,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2020/11/11 04:05:56 | 001,272,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2020/11/11 04:05:56 | 001,108,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2020/11/11 04:05:56 | 001,098,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2020/11/11 04:05:56 | 001,012,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2020/11/11 04:05:56 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\HoloShellRuntime.dll
[2020/11/11 04:05:55 | 025,445,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Hydrogen.dll
[2020/11/11 04:05:55 | 001,615,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramCompositor.dll
[2020/11/11 04:05:54 | 019,812,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramWorld.dll
[2020/11/11 04:05:54 | 004,129,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2020/11/11 04:05:54 | 002,495,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2020/11/11 04:05:54 | 002,230,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2020/11/11 04:05:54 | 001,842,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2020/11/11 04:05:54 | 001,491,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2020/11/11 04:05:54 | 001,151,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2020/11/11 04:05:54 | 000,892,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HolographicExtensions.dll
[2020/11/11 04:05:54 | 000,516,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2020/11/11 04:05:54 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HoloShellRuntime.dll
[2020/11/11 04:05:51 | 007,008,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2020/11/11 04:05:51 | 005,906,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2020/11/11 04:05:51 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Mirage.Internal.dll
[2020/11/11 04:05:51 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2020/11/11 04:05:51 | 000,407,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AcLayers.dll
[2020/11/11 04:05:51 | 000,345,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2020/11/11 04:05:51 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IndexedDbLegacy.dll
[2020/11/11 04:05:51 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2020/11/11 04:05:51 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbnetlib.dll
[2020/11/11 04:05:51 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll
[2020/11/11 04:05:51 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AcXtrnal.dll
[2020/11/11 04:05:51 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iemigplugin.dll
[2020/11/11 04:05:51 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2020/11/11 04:05:51 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msimsg.dll
[2020/11/11 04:05:50 | 008,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2020/11/11 04:05:50 | 002,948,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2020/11/11 04:05:50 | 001,996,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2020/11/11 04:05:50 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll
[2020/11/11 04:05:50 | 000,430,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2020/11/11 04:05:50 | 000,406,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2020/11/11 04:05:50 | 000,366,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll
[2020/11/11 04:05:50 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll
[2020/11/11 04:05:50 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AcLayers.dll
[2020/11/11 04:05:50 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DWWIN.EXE
[2020/11/11 04:05:50 | 000,172,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PktMon.exe
[2020/11/11 04:05:50 | 000,099,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FsIso.exe
[2020/11/11 04:05:50 | 000,097,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\PktMon.sys
[2020/11/11 04:05:50 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fdSSDP.dll
[2020/11/11 04:05:50 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2020/11/11 04:05:50 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll
[2020/11/11 04:05:50 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll
[2020/11/11 04:05:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AcXtrnal.dll
[2020/11/11 04:05:50 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msfeedssync.exe
[2020/11/11 04:05:49 | 004,855,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2020/11/11 04:05:49 | 004,608,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2020/11/11 04:05:49 | 000,705,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2020/11/11 04:05:49 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2020/11/11 04:05:49 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll
[2020/11/11 04:05:49 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbnetlib.dll
[2020/11/11 04:05:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iemigplugin.dll
[2020/11/11 04:05:49 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimsg.dll
[2020/11/11 04:05:48 | 007,761,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2020/11/11 04:05:48 | 001,285,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2020/11/11 04:05:48 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2020/11/11 04:05:48 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IndexedDbLegacy.dll
[2020/11/11 04:05:48 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWWIN.EXE
[2020/11/11 04:05:48 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeedssync.exe
[2020/11/11 04:05:47 | 003,694,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2020/11/11 04:05:47 | 002,737,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2020/11/11 04:05:47 | 001,397,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2020/11/11 04:05:47 | 001,077,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2020/11/11 04:05:47 | 000,784,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcblaunch.exe
[2020/11/11 04:05:47 | 000,775,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\securekernel.exe
[2020/11/11 04:05:47 | 000,300,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\skci.dll
[2020/11/11 04:05:47 | 000,211,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcbloader.dll
[2020/11/11 04:05:47 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vertdll.dll
[2020/11/11 04:05:47 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdSSDP.dll
[2020/11/11 04:05:47 | 000,093,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.dll
[2020/11/11 04:05:47 | 000,084,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hvservice.sys
[2020/11/11 04:05:47 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll
[2020/11/11 04:05:47 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll
[2020/11/11 04:05:47 | 000,021,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdhvcom.dll
[2020/11/11 04:05:46 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mprddm.dll
[2020/11/11 04:05:46 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtrmgr.dll
[2020/11/11 04:05:46 | 000,499,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.FileExplorer.dll
[2020/11/11 04:05:46 | 000,496,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdlg.dll
[2020/11/11 04:05:46 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasgcw.dll
[2020/11/11 04:05:46 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgeIso.dll
[2020/11/11 04:05:46 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msIso.dll
[2020/11/11 04:05:46 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasplap.dll
[2020/11/11 04:05:46 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtm.dll
[2020/11/11 04:05:46 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtprio.dll
[2020/11/11 04:05:45 | 006,527,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2020/11/11 04:05:45 | 002,799,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2020/11/11 04:05:45 | 002,585,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2020/11/11 04:05:45 | 001,991,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2020/11/11 04:05:45 | 001,565,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpserverbase.dll
[2020/11/11 04:05:45 | 001,459,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2020/11/11 04:05:45 | 001,022,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll
[2020/11/11 04:05:45 | 000,899,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2020/11/11 04:05:45 | 000,894,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2020/11/11 04:05:45 | 000,877,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe
[2020/11/11 04:05:45 | 000,694,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2020/11/11 04:05:45 | 000,538,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2020/11/11 04:05:45 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2020/11/11 04:05:45 | 000,473,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2020/11/11 04:05:45 | 000,456,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppResolver.dll
[2020/11/11 04:05:45 | 000,453,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2020/11/11 04:05:45 | 000,405,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2020/11/11 04:05:45 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2020/11/11 04:05:45 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2020/11/11 04:05:45 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2020/11/11 04:05:45 | 000,199,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2020/11/11 04:05:45 | 000,193,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2020/11/11 04:05:45 | 000,188,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ifsutil.dll
[2020/11/11 04:05:45 | 000,149,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ulib.dll
[2020/11/11 04:05:45 | 000,089,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2020/11/11 04:05:45 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usoapi.dll
[2020/11/11 04:05:45 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werdiagcontroller.dll
[2020/11/11 04:05:44 | 006,071,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2020/11/11 04:05:44 | 005,003,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2020/11/11 04:05:44 | 003,741,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneCoreUAPCommonProxyStub.dll
[2020/11/11 04:05:44 | 002,564,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2020/11/11 04:05:44 | 002,306,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2020/11/11 04:05:44 | 001,957,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2020/11/11 04:05:44 | 001,673,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2020/11/11 04:05:44 | 001,369,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2020/11/11 04:05:44 | 000,851,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostCommon.dll
[2020/11/11 04:05:44 | 000,833,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2020/11/11 04:05:44 | 000,696,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsreg.dll
[2020/11/11 04:05:44 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2020/11/11 04:05:44 | 000,675,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2020/11/11 04:05:44 | 000,572,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryPS.dll
[2020/11/11 04:05:44 | 000,564,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StateRepository.Core.dll
[2020/11/11 04:05:44 | 000,531,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2020/11/11 04:05:44 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2020/11/11 04:05:44 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Search.ProtocolHandler.MAPI2.dll
[2020/11/11 04:05:44 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.Ngc.dll
[2020/11/11 04:05:44 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2020/11/11 04:05:44 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll
[2020/11/11 04:05:44 | 000,170,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryUpgrade.dll
[2020/11/11 04:05:44 | 000,165,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2020/11/11 04:05:44 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.dll
[2020/11/11 04:05:44 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2020/11/11 04:05:44 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwbase.dll
[2020/11/11 04:05:44 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssitlb.dll
[2020/11/11 04:05:44 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManagerApi.dll
[2020/11/11 04:05:44 | 000,090,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryBroker.dll
[2020/11/11 04:05:44 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2020/11/11 04:05:44 | 000,051,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kernel.appcore.dll
[2020/11/11 04:05:44 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msscntrs.dll
[2020/11/11 04:05:44 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2020/11/11 04:05:44 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryCore.dll
[2020/11/11 04:05:44 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll
[2020/11/11 04:05:44 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsregtask.dll
[2020/11/11 04:05:43 | 001,048,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2020/11/11 04:05:43 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncobjapi.dll
[2020/11/11 04:05:42 | 005,112,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2020/11/11 04:05:42 | 004,032,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2020/11/11 04:05:42 | 001,307,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContentDeliveryManager.Utilities.dll
[2020/11/11 04:05:42 | 000,956,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2020/11/11 04:05:42 | 000,911,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mprddm.dll
[2020/11/11 04:05:42 | 000,863,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2020/11/11 04:05:42 | 000,680,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vpnike.dll
[2020/11/11 04:05:42 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdlg.dll
[2020/11/11 04:05:42 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtrmgr.dll
[2020/11/11 04:05:42 | 000,512,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2020/11/11 04:05:42 | 000,439,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2020/11/11 04:05:42 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedynos.dll
[2020/11/11 04:05:42 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasplap.dll
[2020/11/11 04:05:42 | 000,179,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtm.dll
[2020/11/11 04:05:42 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\diskpart.exe
[2020/11/11 04:05:42 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2020/11/11 04:05:42 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msobjs.dll
[2020/11/11 04:05:42 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\amsi.dll
[2020/11/11 04:05:42 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mcicda.dll
[2020/11/11 04:05:42 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2020/11/11 04:05:42 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mciwave.dll
[2020/11/11 04:05:42 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mciseq.dll
[2020/11/11 04:05:42 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localui.dll
[2020/11/11 04:05:42 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtprio.dll
[2020/11/11 04:05:41 | 003,761,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2020/11/11 04:05:41 | 002,147,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2020/11/11 04:05:41 | 001,835,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2020/11/11 04:05:41 | 001,698,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
  • せーめー
  • 2020/11/26 (Thu) 22:57:14
OTLログその3
[2020/11/11 04:05:41 | 001,101,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2020/11/11 04:05:41 | 000,938,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthService.exe
[2020/11/11 04:05:41 | 000,889,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2020/11/11 04:05:41 | 000,862,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usbmon.dll
[2020/11/11 04:05:41 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2020/11/11 04:05:41 | 000,614,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netprofmsvc.dll
[2020/11/11 04:05:41 | 000,551,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2020/11/11 04:05:41 | 000,535,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasgcw.dll
[2020/11/11 04:05:41 | 000,498,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DDDS.dll
[2020/11/11 04:05:41 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgeIso.dll
[2020/11/11 04:05:41 | 000,423,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SDDS.dll
[2020/11/11 04:05:41 | 000,364,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthAgent.dll
[2020/11/11 04:05:41 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msIso.dll
[2020/11/11 04:05:41 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2020/11/11 04:05:41 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2020/11/11 04:05:41 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceSoftwareInstallationClient.dll
[2020/11/11 04:05:41 | 000,108,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthProxyStub.dll
[2020/11/11 04:05:41 | 000,094,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthHost.exe
[2020/11/11 04:05:41 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\npmproxy.dll
[2020/11/11 04:05:41 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmproxy.dll
[2020/11/11 04:05:41 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmsprep.dll
[2020/11/11 04:05:40 | 007,604,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2020/11/11 04:05:40 | 001,170,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2020/11/11 04:05:40 | 000,477,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2020/11/11 04:05:40 | 000,400,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2020/11/11 04:05:40 | 000,024,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nsi.dll
[2020/11/11 04:05:39 | 009,925,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2020/11/11 04:05:39 | 003,806,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2020/11/11 04:05:39 | 001,998,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2020/11/11 04:05:39 | 001,669,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2020/11/11 04:05:39 | 001,393,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2020/11/11 04:05:39 | 000,891,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2020/11/11 04:05:39 | 000,863,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2020/11/11 04:05:39 | 000,680,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2020/11/11 04:05:39 | 000,618,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2020/11/11 04:05:39 | 000,586,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys
[2020/11/11 04:05:39 | 000,518,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2020/11/11 04:05:39 | 000,467,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2020/11/11 04:05:39 | 000,435,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2020/11/11 04:05:39 | 000,247,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2020/11/11 04:05:39 | 000,222,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2020/11/11 04:05:39 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msaudite.dll
[2020/11/11 04:05:39 | 000,132,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2020/11/11 04:05:39 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dab.dll
[2020/11/11 04:05:39 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msobjs.dll
[2020/11/11 04:05:39 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2020/11/11 04:05:38 | 006,438,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2020/11/11 04:05:38 | 003,371,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2020/11/11 04:05:38 | 001,824,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreShell.dll
[2020/11/11 04:05:38 | 001,743,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2020/11/11 04:05:38 | 001,259,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2020/11/11 04:05:38 | 000,893,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2020/11/11 04:05:38 | 000,821,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2020/11/11 04:05:38 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2020/11/11 04:05:38 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2020/11/11 04:05:38 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSCard.dll
[2020/11/11 04:05:38 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ScDeviceEnum.dll
[2020/11/11 04:05:38 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SCardDlg.dll
[2020/11/11 04:05:38 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll
[2020/11/11 04:05:38 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SCardBi.dll
[2020/11/11 04:05:38 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2020/11/11 04:05:37 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe
[2020/11/11 04:05:37 | 000,398,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHost.dll
[2020/11/11 04:05:37 | 000,323,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostBroker.dll
[2020/11/11 04:05:36 | 006,196,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2020/11/11 04:05:36 | 003,387,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2020/11/11 04:05:36 | 001,488,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocoreworker.exe
[2020/11/11 04:05:36 | 001,285,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll
[2020/11/11 04:05:36 | 001,096,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2020/11/11 04:05:36 | 000,684,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2020/11/11 04:05:36 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2020/11/11 04:05:36 | 000,598,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppResolver.dll
[2020/11/11 04:05:36 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2020/11/11 04:05:36 | 000,544,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usosvc.dll
[2020/11/11 04:05:36 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RasMediaManager.dll
[2020/11/11 04:05:36 | 000,214,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ifsutil.dll
[2020/11/11 04:05:36 | 000,180,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ulib.dll
[2020/11/11 04:05:36 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudDomainJoinAUG.dll
[2020/11/11 04:05:36 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usoapi.dll
[2020/11/11 04:05:36 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DuCsps.dll
[2020/11/11 04:05:36 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Taskbar.dll
[2020/11/11 04:05:36 | 000,117,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bindflt.sys
[2020/11/11 04:05:36 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bindflt.dll
[2020/11/11 04:05:35 | 003,728,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2020/11/11 04:05:35 | 001,834,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpserverbase.dll
[2020/11/11 04:05:35 | 001,656,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2020/11/11 04:05:35 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2020/11/11 04:05:35 | 000,733,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.immersiveshell.serviceprovider.dll
[2020/11/11 04:05:35 | 000,716,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StateRepository.Core.dll
[2020/11/11 04:05:35 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll
[2020/11/11 04:05:35 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2020/11/11 04:05:35 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll
[2020/11/11 04:05:35 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryUpgrade.dll
[2020/11/11 04:05:35 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwbase.dll
[2020/11/11 04:05:35 | 000,127,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32u.dll
[2020/11/11 04:05:35 | 000,105,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icfupgd.dll
[2020/11/11 04:05:35 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpnUserService.dll
[2020/11/11 04:05:35 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll
[2020/11/11 04:05:34 | 007,913,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2020/11/11 04:05:34 | 005,284,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepository.dll
[2020/11/11 04:05:34 | 002,261,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2020/11/11 04:05:34 | 002,073,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ISM.dll
[2020/11/11 04:05:34 | 001,282,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsf3gip.dll
[2020/11/11 04:05:34 | 001,274,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryPS.dll
[2020/11/11 04:05:34 | 001,083,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2020/11/11 04:05:34 | 000,916,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2020/11/11 04:05:34 | 000,916,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2020/11/11 04:05:34 | 000,642,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2020/11/11 04:05:34 | 000,363,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2020/11/11 04:05:34 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicSvc.dll
[2020/11/11 04:05:34 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2020/11/11 04:05:34 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicCapsule.dll
[2020/11/11 04:05:34 | 000,209,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryClient.dll
[2020/11/11 04:05:34 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2020/11/11 04:05:34 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerApi.dll
[2020/11/11 04:05:34 | 000,104,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryBroker.dll
[2020/11/11 04:05:34 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicAgent.exe
[2020/11/11 04:05:34 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2020/11/11 04:05:34 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel.appcore.dll
[2020/11/11 04:05:34 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryCore.dll
[2020/11/11 04:05:34 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2020/11/11 04:05:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicPS.dll
[2020/11/11 04:05:33 | 004,471,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2020/11/11 04:05:33 | 004,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EdgeContent.dll
[2020/11/11 04:05:33 | 003,265,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2020/11/11 04:05:33 | 002,870,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2020/11/11 04:05:33 | 002,466,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2020/11/11 04:05:33 | 001,606,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2020/11/11 04:05:33 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll
[2020/11/11 04:05:33 | 000,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2020/11/11 04:05:33 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Search.ProtocolHandler.MAPI2.dll
[2020/11/11 04:05:33 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2020/11/11 04:05:33 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2020/11/11 04:05:33 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2020/11/11 04:05:33 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2020/11/11 04:05:33 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssitlb.dll
[2020/11/11 04:05:33 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msscntrs.dll
[2020/11/11 04:05:29 | 002,712,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2020/11/11 04:05:29 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UpdateDeploymentProvider.dll
[2020/11/11 04:05:29 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhosdeployment.dll
[2020/11/11 04:05:29 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2020/11/11 04:05:29 | 000,047,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2020/11/11 04:05:28 | 007,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneCoreUAPCommonProxyStub.dll
[2020/11/11 04:05:28 | 003,732,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2020/11/11 04:05:28 | 002,505,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2020/11/11 04:05:28 | 002,296,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2020/11/11 04:05:28 | 001,784,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2020/11/11 04:05:28 | 001,751,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2020/11/11 04:05:28 | 001,150,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ApplyTrustOffline.exe
[2020/11/11 04:05:28 | 001,017,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostCommon.dll
[2020/11/11 04:05:28 | 000,874,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2020/11/11 04:05:28 | 000,441,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2020/11/11 04:05:28 | 000,265,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2020/11/11 04:05:28 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll
[2020/11/11 04:05:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CustomInstallExec.exe
[2020/11/11 04:05:27 | 017,790,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2020/11/11 04:05:27 | 006,233,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StartTileData.dll
[2020/11/11 04:05:27 | 001,385,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2020/11/11 04:05:27 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2020/11/11 04:05:27 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diskpart.exe
[2020/11/11 04:05:25 | 004,685,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2020/11/11 04:05:25 | 002,985,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FluencyDS.dll
[2020/11/11 04:05:25 | 001,746,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2020/11/11 04:05:25 | 001,183,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2020/11/11 04:05:25 | 001,127,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcRefreshTask.dll
[2020/11/11 04:05:25 | 001,075,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskbarcpl.dll
[2020/11/11 04:05:25 | 000,863,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2020/11/11 04:05:25 | 000,825,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsreg.dll
[2020/11/11 04:05:25 | 000,532,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxAPDS.dll
[2020/11/11 04:05:25 | 000,506,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxHAPDS.dll
[2020/11/11 04:05:25 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2020/11/11 04:05:25 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtCangjieDS.dll
[2020/11/11 04:05:25 | 000,455,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtBopomofoDS.dll
[2020/11/11 04:05:25 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtHkStrokeDS.dll
[2020/11/11 04:05:25 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChsStrokeDS.dll
[2020/11/11 04:05:25 | 000,450,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtQuickDS.dll
[2020/11/11 04:05:25 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2020/11/11 04:05:25 | 000,425,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2020/11/11 04:05:25 | 000,374,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpndecoder.dll
[2020/11/11 04:05:25 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxDecoder.dll
[2020/11/11 04:05:25 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chxinputrouter.dll
[2020/11/11 04:05:25 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedynos.dll
[2020/11/11 04:05:25 | 000,315,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MtfDecoder.dll
[2020/11/11 04:05:25 | 000,302,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcTok.exe
[2020/11/11 04:05:25 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.Ngc.dll
[2020/11/11 04:05:25 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpnranker.dll
[2020/11/11 04:05:25 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiCloudStore.dll
[2020/11/11 04:05:25 | 000,246,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netvsc.sys
[2020/11/11 04:05:25 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.dll
[2020/11/11 04:05:25 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\trie.dll
[2020/11/11 04:05:25 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.System.UserProfile.dll
[2020/11/11 04:05:25 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFFuzzyDS.dll
[2020/11/11 04:05:25 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AdvancedEmojiDS.dll
[2020/11/11 04:05:25 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VocabRoamingHandler.dll
[2020/11/11 04:05:25 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chxranker.dll
[2020/11/11 04:05:25 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2020/11/11 04:05:25 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFSpellcheckDS.dll
[2020/11/11 04:05:25 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HashtagDS.dll
[2020/11/11 04:05:25 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtAdvancedDS.dll
[2020/11/11 04:05:25 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFAppServiceDS.dll
[2020/11/11 04:05:25 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RuleBasedDS.dll
[2020/11/11 04:05:25 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpninputrouter.dll
[2020/11/11 04:05:25 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\amsi.dll
[2020/11/11 04:05:25 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncobjapi.dll
[2020/11/11 04:05:25 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TransliterationRanker.dll
[2020/11/11 04:05:25 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmojiDS.dll
[2020/11/11 04:05:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mcicda.dll
[2020/11/11 04:05:25 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll
[2020/11/11 04:05:25 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll
[2020/11/11 04:05:25 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll
[2020/11/11 04:05:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FaxPrinterInstaller.dll
[2020/11/11 04:05:25 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mciwave.dll
[2020/11/11 04:05:25 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\KNetPwrDepBroker.sys
[2020/11/11 04:05:25 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mciseq.dll
[2020/11/11 04:05:25 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsregtask.dll
[2020/11/11 04:05:25 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2020/11/11 04:05:25 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\amsiproxy.dll
[2020/11/11 04:05:24 | 001,816,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2020/11/11 04:05:24 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2020/11/11 04:05:24 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysFxUI.dll
[2020/11/11 04:05:24 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2020/11/11 04:05:24 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\drmk.sys
[2020/11/11 04:05:24 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2020/11/11 04:05:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\devauthe.sys
[2020/11/11 04:05:24 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsilog.dll
[2020/11/11 04:01:32 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe
[2020/11/11 04:01:32 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe
[2020/11/10 23:09:45 | 007,707,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2020/11/10 23:09:45 | 006,858,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2020/11/10 23:09:45 | 002,509,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2020/11/10 23:09:45 | 002,096,880 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2020/11/10 23:09:45 | 001,585,560 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2020/11/10 23:09:45 | 001,506,032 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2020/11/10 23:09:45 | 001,159,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2020/11/10 23:09:45 | 001,027,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvml.dll
[2020/11/10 23:09:45 | 000,816,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmcumd.dll
[2020/11/10 23:09:45 | 000,813,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2020/11/10 23:09:45 | 000,670,616 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll
[2020/11/10 23:09:45 | 000,590,576 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvidia-smi.exe
[2020/11/10 23:09:45 | 000,556,440 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll
[2020/11/10 23:09:45 | 000,455,408 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.dll
[2020/11/10 23:09:45 | 000,445,848 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdebugdump.exe
[2020/11/10 23:09:45 | 000,349,936 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
[2020/11/10 23:09:44 | 000,849,648 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\MCU.exe
[5 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]
[2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2020/11/26 17:02:29 | 001,453,622 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2020/11/26 17:02:29 | 000,702,610 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2020/11/26 17:02:29 | 000,481,740 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2020/11/26 17:02:29 | 000,133,852 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2020/11/26 17:02:29 | 000,132,876 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2020/11/26 16:58:27 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2020/11/26 16:56:34 | 000,138,904 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2020/11/26 16:56:25 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2020/11/26 16:56:24 | 2542,145,535 | -HS- | M] () -- C:\hiberfil.sys
[2020/11/25 23:03:14 | 000,007,616 | ---- | M] () -- C:\Users\姓名\AppData\Local\Resmon.ResmonCfg
[2020/11/25 19:15:01 | 000,077,496 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2020/11/25 19:14:59 | 000,197,792 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2020/11/25 19:14:57 | 000,220,160 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamChameleon.sys
[2020/11/25 15:48:10 | 000,001,032 | ---- | M] () -- C:\Users\姓名\AppData\Local\recently-used.xbel
[2020/11/25 01:53:02 | 000,248,968 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbamswissarmy.sys
[2020/11/25 01:03:17 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2020/11/25 00:50:10 | 000,001,139 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2020/11/25 00:49:51 | 000,153,312 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbae64.sys
[2020/11/25 00:49:51 | 000,019,912 | ---- | M] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MbamElam.sys
[2020/11/24 00:18:30 | 000,001,131 | ---- | M] () -- C:\Users\Public\Desktop\PDF-XChange Editor.lnk
[2020/11/23 23:59:03 | 000,192,168 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysNative\WindowsAccessBridge-64.dll
[2020/11/22 03:06:19 | 000,002,164 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2020/11/22 02:58:09 | 000,326,416 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswVmm.sys
[2020/11/22 02:58:09 | 000,217,336 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswStm.sys
[2020/11/22 02:58:08 | 000,521,752 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswNetHub.sys
[2020/11/22 02:58:08 | 000,469,832 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSP.sys
[2020/11/22 02:58:08 | 000,247,888 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbidsh.sys
[2020/11/22 02:58:08 | 000,176,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswMonFlt.sys
[2020/11/22 02:58:08 | 000,109,280 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRdr2.sys
[2020/11/22 02:58:08 | 000,097,352 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbuniv.sys
[2020/11/22 02:58:08 | 000,084,856 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys
[2020/11/22 02:58:08 | 000,042,784 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswKbd.sys
[2020/11/22 02:58:08 | 000,016,816 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswElam.sys
[2020/11/22 02:58:07 | 000,339,552 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\aswBoot.exe
[2020/11/22 02:58:05 | 000,206,408 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswArPot.sys
[2020/11/22 02:58:05 | 000,037,152 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswArDisk.sys
[2020/11/22 02:58:04 | 000,851,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswSnx.sys
[2020/11/22 02:58:04 | 000,332,368 | ---- | M] (AVAST Software) -- C:\WINDOWS\SysNative\drivers\aswbidsdriver.sys
[2020/11/22 02:00:02 | 000,000,879 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2020/11/21 23:54:20 | 000,002,262 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2020/11/18 15:03:32 | 002,155,776 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\WINDOWS\SysNative\pxcpmL.dll
[2020/11/16 21:16:07 | 000,001,340 | ---- | M] () -- C:\Users\姓名\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk
[2020/11/14 15:59:13 | 000,001,189 | ---- | M] () -- C:\Users\Public\Desktop\MediBang Paint Pro.lnk
[2020/11/13 11:27:56 | 000,002,380 | ---- | M] () -- C:\Users\姓名\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk
[2020/11/13 11:27:56 | 000,002,358 | ---- | M] () -- C:\Users\姓名\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2020/11/13 02:26:17 | 001,087,760 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2020/11/12 11:00:04 | 000,907,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sedplugins.dll
[2020/11/12 10:59:22 | 000,436,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QualityUpdateAssistant.dll
[2020/11/11 04:05:57 | 000,588,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msra.exe
[2020/11/11 04:05:57 | 000,432,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WalletService.dll
[2020/11/11 04:05:57 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\raserver.exe
[2020/11/11 04:05:57 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\raserver.exe
[2020/11/11 04:05:56 | 004,547,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DHolographicDisplay.dll
[2020/11/11 04:05:56 | 003,525,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2020/11/11 04:05:56 | 002,315,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2020/11/11 04:05:56 | 001,615,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramCompositor.dll
[2020/11/11 04:05:56 | 001,419,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll
[2020/11/11 04:05:56 | 001,272,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2020/11/11 04:05:56 | 001,108,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2020/11/11 04:05:56 | 001,098,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DolbyDecMFT.dll
[2020/11/11 04:05:56 | 001,012,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2020/11/11 04:05:56 | 000,174,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\HoloShellRuntime.dll
[2020/11/11 04:05:55 | 025,445,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Hydrogen.dll
[2020/11/11 04:05:55 | 019,812,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HologramWorld.dll
[2020/11/11 04:05:54 | 004,129,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2020/11/11 04:05:54 | 002,495,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2020/11/11 04:05:54 | 002,230,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2020/11/11 04:05:54 | 001,842,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll
[2020/11/11 04:05:54 | 001,491,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2020/11/11 04:05:54 | 001,151,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2020/11/11 04:05:54 | 000,892,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HolographicExtensions.dll
[2020/11/11 04:05:54 | 000,516,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2020/11/11 04:05:54 | 000,233,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HoloShellRuntime.dll
[2020/11/11 04:05:51 | 007,008,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2020/11/11 04:05:51 | 005,906,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakra.dll
[2020/11/11 04:05:51 | 000,701,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Mirage.Internal.dll
[2020/11/11 04:05:51 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2020/11/11 04:05:51 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AcLayers.dll
[2020/11/11 04:05:51 | 000,345,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2020/11/11 04:05:51 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IndexedDbLegacy.dll
[2020/11/11 04:05:51 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakradiag.dll
[2020/11/11 04:05:51 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbnetlib.dll
[2020/11/11 04:05:51 | 000,105,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Chakrathunk.dll
[2020/11/11 04:05:51 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AcXtrnal.dll
[2020/11/11 04:05:51 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iemigplugin.dll
[2020/11/11 04:05:51 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2020/11/11 04:05:51 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msimsg.dll
[2020/11/11 04:05:50 | 008,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2020/11/11 04:05:50 | 002,948,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2020/11/11 04:05:50 | 001,996,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2020/11/11 04:05:50 | 000,743,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FrameServer.dll
[2020/11/11 04:05:50 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2020/11/11 04:05:50 | 000,406,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2020/11/11 04:05:50 | 000,366,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsensorgroup.dll
[2020/11/11 04:05:50 | 000,324,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FSClient.dll
[2020/11/11 04:05:50 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AcLayers.dll
[2020/11/11 04:05:50 | 000,186,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DWWIN.EXE
[2020/11/11 04:05:50 | 000,172,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PktMon.exe
[2020/11/11 04:05:50 | 000,099,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FsIso.exe
[2020/11/11 04:05:50 | 000,097,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\PktMon.sys
[2020/11/11 04:05:50 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fdSSDP.dll
[2020/11/11 04:05:50 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2020/11/11 04:05:50 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\delegatorprovider.dll
[2020/11/11 04:05:50 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi_passthru.dll
[2020/11/11 04:05:50 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AcXtrnal.dll
[2020/11/11 04:05:50 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msfeedssync.exe
[2020/11/11 04:05:49 | 004,855,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2020/11/11 04:05:49 | 004,608,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2020/11/11 04:05:49 | 000,705,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2020/11/11 04:05:49 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakradiag.dll
[2020/11/11 04:05:49 | 000,139,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakrathunk.dll
[2020/11/11 04:05:49 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbnetlib.dll
[2020/11/11 04:05:49 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iemigplugin.dll
[2020/11/11 04:05:49 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msimsg.dll
[2020/11/11 04:05:48 | 007,761,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Chakra.dll
[2020/11/11 04:05:48 | 001,285,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2020/11/11 04:05:48 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2020/11/11 04:05:48 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IndexedDbLegacy.dll
[2020/11/11 04:05:48 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWWIN.EXE
[2020/11/11 04:05:48 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeedssync.exe
[2020/11/11 04:05:47 | 003,694,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2020/11/11 04:05:47 | 002,737,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2020/11/11 04:05:47 | 001,397,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvix64.exe
[2020/11/11 04:05:47 | 001,077,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvax64.exe
[2020/11/11 04:05:47 | 000,784,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcblaunch.exe
[2020/11/11 04:05:47 | 000,775,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\securekernel.exe
[2020/11/11 04:05:47 | 000,300,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\skci.dll
[2020/11/11 04:05:47 | 000,211,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tcbloader.dll
[2020/11/11 04:05:47 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vertdll.dll
[2020/11/11 04:05:47 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdSSDP.dll
[2020/11/11 04:05:47 | 000,093,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hvloader.dll
[2020/11/11 04:05:47 | 000,084,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hvservice.sys
[2020/11/11 04:05:47 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\delegatorprovider.dll
[2020/11/11 04:05:47 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi_passthru.dll
[2020/11/11 04:05:47 | 000,021,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kdhvcom.dll
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth9.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth8.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth7.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth6.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth5.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth4.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth3.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth2.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth12.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth11.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth10.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | M] () -- C:\WINDOWS\SysNative\DrtmAuth1.bin
[2020/11/11 04:05:46 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mprddm.dll
[2020/11/11 04:05:46 | 000,516,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtrmgr.dll
[2020/11/11 04:05:46 | 000,499,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.FileExplorer.dll
[2020/11/11 04:05:46 | 000,496,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdlg.dll
[2020/11/11 04:05:46 | 000,431,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasgcw.dll
[2020/11/11 04:05:46 | 000,328,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\edgeIso.dll
[2020/11/11 04:05:46 | 000,251,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msIso.dll
[2020/11/11 04:05:46 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasplap.dll
[2020/11/11 04:05:46 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rtm.dll
[2020/11/11 04:05:46 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iprtprio.dll
[2020/11/11 04:05:45 | 006,527,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Protection.PlayReady.dll
[2020/11/11 04:05:45 | 003,741,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OneCoreUAPCommonProxyStub.dll
[2020/11/11 04:05:45 | 002,799,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32kfull.sys
[2020/11/11 04:05:45 | 002,585,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2020/11/11 04:05:45 | 001,991,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2020/11/11 04:05:45 | 001,565,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpserverbase.dll
[2020/11/11 04:05:45 | 001,459,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2020/11/11 04:05:45 | 001,022,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll
[2020/11/11 04:05:45 | 000,899,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2020/11/11 04:05:45 | 000,894,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2020/11/11 04:05:45 | 000,877,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe
[2020/11/11 04:05:45 | 000,694,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2020/11/11 04:05:45 | 000,538,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2020/11/11 04:05:45 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2020/11/11 04:05:45 | 000,473,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\policymanager.dll
[2020/11/11 04:05:45 | 000,456,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppResolver.dll
[2020/11/11 04:05:45 | 000,453,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2020/11/11 04:05:45 | 000,405,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2020/11/11 04:05:45 | 000,324,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32k.sys
[2020/11/11 04:05:45 | 000,307,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2020/11/11 04:05:45 | 000,256,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2020/11/11 04:05:45 | 000,199,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2020/11/11 04:05:45 | 000,193,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\weretw.dll
[2020/11/11 04:05:45 | 000,188,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ifsutil.dll
[2020/11/11 04:05:45 | 000,149,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ulib.dll
[2020/11/11 04:05:45 | 000,089,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\win32u.dll
[2020/11/11 04:05:45 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usoapi.dll
[2020/11/11 04:05:45 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werdiagcontroller.dll
[2020/11/11 04:05:44 | 006,071,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\windows.storage.dll
[2020/11/11 04:05:44 | 005,003,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepository.dll
[2020/11/11 04:05:44 | 002,564,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2020/11/11 04:05:44 | 002,306,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2020/11/11 04:05:44 | 001,957,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2020/11/11 04:05:44 | 001,673,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2020/11/11 04:05:44 | 001,369,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2020/11/11 04:05:44 | 001,101,312 | ---- | M] () -- C:\WINDOWS\SysWow64\TextInputMethodFormatter.dll
[2020/11/11 04:05:44 | 001,048,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2020/11/11 04:05:44 | 000,851,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudExperienceHostCommon.dll
[2020/11/11 04:05:44 | 000,833,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManager.dll
[2020/11/11 04:05:44 | 000,696,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsreg.dll
[2020/11/11 04:05:44 | 000,678,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Core.TextInput.dll
[2020/11/11 04:05:44 | 000,675,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2020/11/11 04:05:44 | 000,572,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryPS.dll
[2020/11/11 04:05:44 | 000,564,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StateRepository.Core.dll
[2020/11/11 04:05:44 | 000,531,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TextInputFramework.dll
[2020/11/11 04:05:44 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2020/11/11 04:05:44 | 000,283,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Search.ProtocolHandler.MAPI2.dll
[2020/11/11 04:05:44 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.Ngc.dll
[2020/11/11 04:05:44 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2020/11/11 04:05:44 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwpolicyiomgr.dll
[2020/11/11 04:05:44 | 000,170,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryUpgrade.dll
[2020/11/11 04:05:44 | 000,165,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryClient.dll
[2020/11/11 04:05:44 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserDeviceRegistration.dll
[2020/11/11 04:05:44 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2020/11/11 04:05:44 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fwbase.dll
[2020/11/11 04:05:44 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssitlb.dll
[2020/11/11 04:05:44 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LicenseManagerApi.dll
[2020/11/11 04:05:44 | 000,090,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryBroker.dll
[2020/11/11 04:05:44 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EditBufferTestHook.dll
[2020/11/11 04:05:44 | 000,051,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kernel.appcore.dll
[2020/11/11 04:05:44 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msscntrs.dll
[2020/11/11 04:05:44 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WordBreakers.dll
[2020/11/11 04:05:44 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.StateRepositoryCore.dll
[2020/11/11 04:05:44 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll
[2020/11/11 04:05:44 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dsregtask.dll
[2020/11/11 04:05:43 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncobjapi.dll
[2020/11/11 04:05:42 | 005,112,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2020/11/11 04:05:42 | 004,032,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2020/11/11 04:05:42 | 001,307,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ContentDeliveryManager.Utilities.dll
[2020/11/11 04:05:42 | 000,956,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2020/11/11 04:05:42 | 000,911,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mprddm.dll
[2020/11/11 04:05:42 | 000,863,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2020/11/11 04:05:42 | 000,862,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usbmon.dll
[2020/11/11 04:05:42 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vpnike.dll
[2020/11/11 04:05:42 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdlg.dll
[2020/11/11 04:05:42 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtrmgr.dll
[2020/11/11 04:05:42 | 000,512,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2020/11/11 04:05:42 | 000,439,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2020/11/11 04:05:42 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedynos.dll
[2020/11/11 04:05:42 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasplap.dll
[2020/11/11 04:05:42 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rtm.dll
[2020/11/11 04:05:42 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\diskpart.exe
[2020/11/11 04:05:42 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2020/11/11 04:05:42 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msobjs.dll
[2020/11/11 04:05:42 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\amsi.dll
[2020/11/11 04:05:42 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mcicda.dll
[2020/11/11 04:05:42 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LaunchWinApp.exe
[2020/11/11 04:05:42 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mciwave.dll
[2020/11/11 04:05:42 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mciseq.dll
[2020/11/11 04:05:42 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localui.dll
[2020/11/11 04:05:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iprtprio.dll
[2020/11/11 04:05:41 | 007,604,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Protection.PlayReady.dll
[2020/11/11 04:05:41 | 003,761,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers_nt.dll
[2020/11/11 04:05:41 | 002,147,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2020/11/11 04:05:41 | 001,835,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\enterprisecsps.dll
[2020/11/11 04:05:41 | 001,698,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2020/11/11 04:05:41 | 001,101,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2020/11/11 04:05:41 | 000,938,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthService.exe
[2020/11/11 04:05:41 | 000,889,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Shell.Broker.dll
[2020/11/11 04:05:41 | 000,634,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2020/11/11 04:05:41 | 000,614,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netprofmsvc.dll
[2020/11/11 04:05:41 | 000,551,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\policymanager.dll
[2020/11/11 04:05:41 | 000,535,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasgcw.dll
[2020/11/11 04:05:41 | 000,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DDDS.dll
[2020/11/11 04:05:41 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\edgeIso.dll
[2020/11/11 04:05:41 | 000,423,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SDDS.dll
[2020/11/11 04:05:41 | 000,364,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthAgent.dll
[2020/11/11 04:05:41 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msIso.dll
[2020/11/11 04:05:41 | 000,307,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shutdownux.dll
[2020/11/11 04:05:41 | 000,291,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2020/11/11 04:05:41 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceSoftwareInstallationClient.dll
[2020/11/11 04:05:41 | 000,108,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthProxyStub.dll
[2020/11/11 04:05:41 | 000,094,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SecurityHealthHost.exe
[2020/11/11 04:05:41 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\npmproxy.dll
[2020/11/11 04:05:41 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmproxy.dll
[2020/11/11 04:05:41 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nlmsprep.dll
[2020/11/11 04:05:40 | 001,170,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2020/11/11 04:05:40 | 000,477,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2020/11/11 04:05:40 | 000,400,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2020/11/11 04:05:40 | 000,024,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nsi.dll
[2020/11/11 04:05:39 | 009,925,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2020/11/11 04:05:39 | 003,806,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diagtrack.dll
[2020/11/11 04:05:39 | 003,371,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2020/11/11 04:05:39 | 001,998,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2020/11/11 04:05:39 | 001,669,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2020/11/11 04:05:39 | 001,393,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2020/11/11 04:05:39 | 000,891,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2020/11/11 04:05:39 | 000,863,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2020/11/11 04:05:39 | 000,680,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2020/11/11 04:05:39 | 000,618,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2020/11/11 04:05:39 | 000,586,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys
[2020/11/11 04:05:39 | 000,518,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2020/11/11 04:05:39 | 000,467,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2020/11/11 04:05:39 | 000,435,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2020/11/11 04:05:39 | 000,247,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\weretw.dll
[2020/11/11 04:05:39 | 000,222,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2020/11/11 04:05:39 | 000,155,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msaudite.dll
[2020/11/11 04:05:39 | 000,132,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offlinelsa.dll
[2020/11/11 04:05:39 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dab.dll
[2020/11/11 04:05:39 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msobjs.dll
[2020/11/11 04:05:39 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2020/11/11 04:05:38 | 006,438,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2020/11/11 04:05:38 | 001,824,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CoreShell.dll
[2020/11/11 04:05:38 | 001,743,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2020/11/11 04:05:38 | 001,259,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2020/11/11 04:05:38 | 000,893,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2020/11/11 04:05:38 | 000,821,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2020/11/11 04:05:38 | 000,638,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2020/11/11 04:05:38 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2020/11/11 04:05:38 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSCard.dll
[2020/11/11 04:05:38 | 000,200,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ScDeviceEnum.dll
[2020/11/11 04:05:38 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SCardDlg.dll
[2020/11/11 04:05:38 | 000,068,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll
[2020/11/11 04:05:38 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SCardBi.dll
[2020/11/11 04:05:38 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LaunchWinApp.exe
[2020/11/11 04:05:37 | 000,961,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe
[2020/11/11 04:05:37 | 000,398,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHost.dll
[2020/11/11 04:05:37 | 000,323,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostBroker.dll
[2020/11/11 04:05:36 | 006,196,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.pcshell.dll
[2020/11/11 04:05:36 | 003,728,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kfull.sys
[2020/11/11 04:05:36 | 003,387,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\NetworkMobileSettings.dll
[2020/11/11 04:05:36 | 001,488,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usocoreworker.exe
[2020/11/11 04:05:36 | 001,285,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll
[2020/11/11 04:05:36 | 001,096,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusUpdateHandlers.dll
[2020/11/11 04:05:36 | 000,684,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2020/11/11 04:05:36 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MusNotification.exe
[2020/11/11 04:05:36 | 000,598,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppResolver.dll
[2020/11/11 04:05:36 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2020/11/11 04:05:36 | 000,544,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usosvc.dll
[2020/11/11 04:05:36 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RasMediaManager.dll
[2020/11/11 04:05:36 | 000,214,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ifsutil.dll
[2020/11/11 04:05:36 | 000,180,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ulib.dll
[2020/11/11 04:05:36 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudDomainJoinAUG.dll
[2020/11/11 04:05:36 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usoapi.dll
[2020/11/11 04:05:36 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DuCsps.dll
[2020/11/11 04:05:36 | 000,119,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.Taskbar.dll
[2020/11/11 04:05:36 | 000,117,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bindflt.sys
[2020/11/11 04:05:36 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bindflt.dll
[2020/11/11 04:05:35 | 001,834,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpserverbase.dll
[2020/11/11 04:05:35 | 001,656,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2020/11/11 04:05:35 | 001,632,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2020/11/11 04:05:35 | 000,733,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.immersiveshell.serviceprovider.dll
[2020/11/11 04:05:35 | 000,716,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StateRepository.Core.dll
[2020/11/11 04:05:35 | 000,594,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll
[2020/11/11 04:05:35 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2020/11/11 04:05:35 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwpolicyiomgr.dll
  • せーめー
  • 2020/11/26 (Thu) 22:59:32
OTLログその4
[2020/11/11 04:05:35 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryUpgrade.dll
[2020/11/11 04:05:35 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fwbase.dll
[2020/11/11 04:05:35 | 000,127,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32u.dll
[2020/11/11 04:05:35 | 000,105,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icfupgd.dll
[2020/11/11 04:05:35 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpnUserService.dll
[2020/11/11 04:05:35 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll
[2020/11/11 04:05:34 | 007,913,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\windows.storage.dll
[2020/11/11 04:05:34 | 005,284,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepository.dll
[2020/11/11 04:05:34 | 002,261,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2020/11/11 04:05:34 | 002,073,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ISM.dll
[2020/11/11 04:05:34 | 001,841,152 | ---- | M] () -- C:\WINDOWS\SysNative\TextInputMethodFormatter.dll
[2020/11/11 04:05:34 | 001,282,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsf3gip.dll
[2020/11/11 04:05:34 | 001,274,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryPS.dll
[2020/11/11 04:05:34 | 001,083,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManager.dll
[2020/11/11 04:05:34 | 000,916,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2020/11/11 04:05:34 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Core.TextInput.dll
[2020/11/11 04:05:34 | 000,642,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TextInputFramework.dll
[2020/11/11 04:05:34 | 000,363,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2020/11/11 04:05:34 | 000,357,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicSvc.dll
[2020/11/11 04:05:34 | 000,312,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2020/11/11 04:05:34 | 000,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicCapsule.dll
[2020/11/11 04:05:34 | 000,209,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryClient.dll
[2020/11/11 04:05:34 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputLocaleManager.dll
[2020/11/11 04:05:34 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LicenseManagerApi.dll
[2020/11/11 04:05:34 | 000,104,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryBroker.dll
[2020/11/11 04:05:34 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicAgent.exe
[2020/11/11 04:05:34 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EditBufferTestHook.dll
[2020/11/11 04:05:34 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel.appcore.dll
[2020/11/11 04:05:34 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.StateRepositoryCore.dll
[2020/11/11 04:05:34 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WordBreakers.dll
[2020/11/11 04:05:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WaaSMedicPS.dll
[2020/11/11 04:05:33 | 004,471,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputService.dll
[2020/11/11 04:05:33 | 004,005,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EdgeContent.dll
[2020/11/11 04:05:33 | 003,265,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2020/11/11 04:05:33 | 002,870,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2020/11/11 04:05:33 | 002,466,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2020/11/11 04:05:33 | 001,606,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dosvc.dll
[2020/11/11 04:05:33 | 000,408,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\domgmt.dll
[2020/11/11 04:05:33 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2020/11/11 04:05:33 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Search.ProtocolHandler.MAPI2.dll
[2020/11/11 04:05:33 | 000,368,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2020/11/11 04:05:33 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2020/11/11 04:05:33 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2020/11/11 04:05:33 | 000,147,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2020/11/11 04:05:33 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssitlb.dll
[2020/11/11 04:05:33 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msscntrs.dll
[2020/11/11 04:05:29 | 002,712,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32kbase.sys
[2020/11/11 04:05:29 | 000,874,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms2.sys
[2020/11/11 04:05:29 | 000,256,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UpdateDeploymentProvider.dll
[2020/11/11 04:05:29 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuuhosdeployment.dll
[2020/11/11 04:05:29 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2020/11/11 04:05:29 | 000,047,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2020/11/11 04:05:28 | 017,790,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2020/11/11 04:05:28 | 007,846,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OneCoreUAPCommonProxyStub.dll
[2020/11/11 04:05:28 | 003,732,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2020/11/11 04:05:28 | 002,505,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2020/11/11 04:05:28 | 002,296,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.onecore.dll
[2020/11/11 04:05:28 | 001,784,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2020/11/11 04:05:28 | 001,751,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.desktop.dll
[2020/11/11 04:05:28 | 001,150,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ApplyTrustOffline.exe
[2020/11/11 04:05:28 | 001,017,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudExperienceHostCommon.dll
[2020/11/11 04:05:28 | 000,441,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2020/11/11 04:05:28 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2020/11/11 04:05:28 | 000,201,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXApplicabilityBlob.dll
[2020/11/11 04:05:28 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CustomInstallExec.exe
[2020/11/11 04:05:27 | 006,233,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StartTileData.dll
[2020/11/11 04:05:27 | 001,385,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2020/11/11 04:05:27 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2020/11/11 04:05:27 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diskpart.exe
[2020/11/11 04:05:27 | 000,164,864 | ---- | M] () -- C:\WINDOWS\SysNative\DataStoreCacheDumpTool.exe
[2020/11/11 04:05:25 | 004,685,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2020/11/11 04:05:25 | 002,985,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FluencyDS.dll
[2020/11/11 04:05:25 | 002,876,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintConfig.dll
[2020/11/11 04:05:25 | 001,746,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ContentDeliveryManager.Utilities.dll
[2020/11/11 04:05:25 | 001,183,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2020/11/11 04:05:25 | 001,127,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcRefreshTask.dll
[2020/11/11 04:05:25 | 001,075,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskbarcpl.dll
[2020/11/11 04:05:25 | 000,863,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2020/11/11 04:05:25 | 000,825,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsreg.dll
[2020/11/11 04:05:25 | 000,532,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxAPDS.dll
[2020/11/11 04:05:25 | 000,506,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxHAPDS.dll
[2020/11/11 04:05:25 | 000,472,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2020/11/11 04:05:25 | 000,460,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtCangjieDS.dll
[2020/11/11 04:05:25 | 000,455,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtBopomofoDS.dll
[2020/11/11 04:05:25 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtHkStrokeDS.dll
[2020/11/11 04:05:25 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChsStrokeDS.dll
[2020/11/11 04:05:25 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtQuickDS.dll
[2020/11/11 04:05:25 | 000,427,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2020/11/11 04:05:25 | 000,425,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2020/11/11 04:05:25 | 000,374,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpndecoder.dll
[2020/11/11 04:05:25 | 000,373,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChxDecoder.dll
[2020/11/11 04:05:25 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chxinputrouter.dll
[2020/11/11 04:05:25 | 000,344,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedynos.dll
[2020/11/11 04:05:25 | 000,315,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MtfDecoder.dll
[2020/11/11 04:05:25 | 000,302,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcTok.exe
[2020/11/11 04:05:25 | 000,293,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.Ngc.dll
[2020/11/11 04:05:25 | 000,289,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpnranker.dll
[2020/11/11 04:05:25 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiCloudStore.dll
[2020/11/11 04:05:25 | 000,246,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netvsc.sys
[2020/11/11 04:05:25 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserDeviceRegistration.dll
[2020/11/11 04:05:25 | 000,200,704 | ---- | M] () -- C:\WINDOWS\SysNative\IHDS.dll
[2020/11/11 04:05:25 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\trie.dll
[2020/11/11 04:05:25 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Internal.System.UserProfile.dll
[2020/11/11 04:05:25 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFFuzzyDS.dll
[2020/11/11 04:05:25 | 000,146,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AdvancedEmojiDS.dll
[2020/11/11 04:05:25 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VocabRoamingHandler.dll
[2020/11/11 04:05:25 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\chxranker.dll
[2020/11/11 04:05:25 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll
[2020/11/11 04:05:25 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFSpellcheckDS.dll
[2020/11/11 04:05:25 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\HashtagDS.dll
[2020/11/11 04:05:25 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ChtAdvancedDS.dll
[2020/11/11 04:05:25 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MTFAppServiceDS.dll
[2020/11/11 04:05:25 | 000,094,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RuleBasedDS.dll
[2020/11/11 04:05:25 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jpninputrouter.dll
[2020/11/11 04:05:25 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\amsi.dll
[2020/11/11 04:05:25 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncobjapi.dll
[2020/11/11 04:05:25 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TransliterationRanker.dll
[2020/11/11 04:05:25 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EmojiDS.dll
[2020/11/11 04:05:25 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mcicda.dll
[2020/11/11 04:05:25 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll
[2020/11/11 04:05:25 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiConfigSP.dll
[2020/11/11 04:05:25 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansvcpal.dll
[2020/11/11 04:05:25 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FaxPrinterInstaller.dll
[2020/11/11 04:05:25 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mciwave.dll
[2020/11/11 04:05:25 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\KNetPwrDepBroker.sys
[2020/11/11 04:05:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mciseq.dll
[2020/11/11 04:05:25 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dsregtask.dll
[2020/11/11 04:05:25 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2020/11/11 04:05:25 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\amsiproxy.dll
[2020/11/11 04:05:24 | 001,816,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2020/11/11 04:05:24 | 000,390,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2020/11/11 04:05:24 | 000,372,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysFxUI.dll
[2020/11/11 04:05:24 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xboxgip.sys
[2020/11/11 04:05:24 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\drmk.sys
[2020/11/11 04:05:24 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\xinputhid.sys
[2020/11/11 04:05:24 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\devauthe.sys
[2020/11/11 04:05:24 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsilog.dll
[2020/11/10 23:07:00 | 000,842,296 | ---- | M] (Adobe) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2020/11/10 23:07:00 | 000,175,160 | ---- | M] (Adobe) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2020/11/10 23:06:28 | 000,001,459 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2020/11/08 02:41:22 | 001,370,328 | ---- | M] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-999-0-0-0.exe
[2020/11/08 02:41:22 | 001,370,328 | ---- | M] () -- C:\WINDOWS\SysWow64\vulkaninfo.exe
[2020/11/08 02:41:20 | 001,769,688 | ---- | M] () -- C:\WINDOWS\SysNative\vulkaninfo-1-999-0-0-0.exe
[2020/11/08 02:41:20 | 001,769,688 | ---- | M] () -- C:\WINDOWS\SysNative\vulkaninfo.exe
[2020/11/08 02:41:18 | 001,054,944 | ---- | M] () -- C:\WINDOWS\SysNative\vulkan-1-999-0-0-0.dll
[2020/11/08 02:41:18 | 001,054,944 | ---- | M] () -- C:\WINDOWS\SysNative\vulkan-1.dll
[2020/11/08 02:41:18 | 000,917,728 | ---- | M] () -- C:\WINDOWS\SysWow64\vulkan-1-999-0-0-0.dll
[2020/11/08 02:41:18 | 000,917,728 | ---- | M] () -- C:\WINDOWS\SysWow64\vulkan-1.dll
[2020/11/08 02:41:14 | 000,455,408 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.dll
[2020/11/08 02:41:14 | 000,349,936 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
[2020/11/08 02:38:56 | 000,674,712 | ---- | M] () -- C:\WINDOWS\SysNative\nvofapi64.dll
[2020/11/08 02:38:56 | 000,543,128 | ---- | M] () -- C:\WINDOWS\SysWow64\nvofapi.dll
[2020/11/08 02:38:52 | 001,027,992 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvml.dll
[2020/11/08 02:38:50 | 000,816,368 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmcumd.dll
[2020/11/08 02:38:38 | 000,670,616 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFROpenGL.dll
[2020/11/08 02:38:36 | 001,506,032 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvIFR64.dll
[2020/11/08 02:38:36 | 000,556,440 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFROpenGL.dll
[2020/11/08 02:38:34 | 001,159,920 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvIFR.dll
[2020/11/08 02:38:24 | 000,590,576 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvidia-smi.exe
[2020/11/08 02:38:16 | 002,096,880 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\NvFBC64.dll
[2020/11/08 02:38:14 | 001,585,560 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\NvFBC.dll
[2020/11/08 02:38:12 | 000,813,464 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvEncodeAPI64.dll
[2020/11/08 02:38:12 | 000,656,112 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvEncodeAPI.dll
[2020/11/08 02:37:50 | 000,445,848 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdebugdump.exe
[2020/11/08 02:37:48 | 007,707,544 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll
[2020/11/08 02:37:44 | 006,858,992 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll
[2020/11/08 02:37:44 | 002,509,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll
[2020/11/08 02:37:40 | 004,175,256 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll
[2020/11/08 02:37:02 | 000,849,648 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\MCU.exe
[2020/11/08 02:36:26 | 007,005,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll
[2020/11/08 02:36:24 | 005,976,296 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll
[2020/11/07 13:01:25 | 000,080,930 | ---- | M] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2020/11/07 11:33:28 | 000,429,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdFilter.sys
[2020/11/07 11:33:28 | 000,071,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdNisDrv.sys
[2020/11/07 11:33:28 | 000,048,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wd\WdBoot.sys
[2020/11/06 10:43:32 | 000,778,552 | ---- | M] () -- C:\WINDOWS\SysNative\MdpThumb64.dll
[5 C:\WINDOWS\SysNative\drivers\*.tmp files -> C:\WINDOWS\SysNative\drivers\*.tmp -> ]
[2 C:\WINDOWS\SysWow64\*.tmp files -> C:\WINDOWS\SysWow64\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2020/11/25 15:48:10 | 000,001,032 | ---- | C] () -- C:\Users\姓名\AppData\Local\recently-used.xbel
[2020/11/25 00:50:10 | 000,001,139 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes.lnk
[2020/11/25 00:50:10 | 000,001,139 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
[2020/11/24 00:27:46 | 000,000,214 | ---- | C] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2020/11/24 00:18:30 | 000,001,131 | ---- | C] () -- C:\Users\Public\Desktop\PDF-XChange Editor.lnk
[2020/11/23 23:37:19 | 041,600,598 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2020/11/22 03:06:19 | 000,002,176 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
[2020/11/22 03:06:19 | 000,002,164 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2020/11/22 02:00:02 | 000,000,879 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2020/11/14 15:59:13 | 000,001,189 | ---- | C] () -- C:\Users\Public\Desktop\MediBang Paint Pro.lnk
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth9.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth8.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth7.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth6.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth5.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth4.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth3.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth2.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth12.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth11.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth10.bin
[2020/11/11 04:05:47 | 000,000,315 | ---- | C] () -- C:\WINDOWS\SysNative\DrtmAuth1.bin
[2020/11/11 04:05:44 | 001,101,312 | ---- | C] () -- C:\WINDOWS\SysWow64\TextInputMethodFormatter.dll
[2020/11/11 04:05:34 | 001,841,152 | ---- | C] () -- C:\WINDOWS\SysNative\TextInputMethodFormatter.dll
[2020/11/11 04:05:27 | 000,164,864 | ---- | C] () -- C:\WINDOWS\SysNative\DataStoreCacheDumpTool.exe
[2020/11/11 04:05:25 | 000,200,704 | ---- | C] () -- C:\WINDOWS\SysNative\IHDS.dll
[2020/11/10 23:09:45 | 001,769,688 | ---- | C] () -- C:\WINDOWS\SysNative\vulkaninfo-1-999-0-0-0.exe
[2020/11/10 23:09:45 | 001,769,688 | ---- | C] () -- C:\WINDOWS\SysNative\vulkaninfo.exe
[2020/11/10 23:09:45 | 001,370,328 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo-1-999-0-0-0.exe
[2020/11/10 23:09:45 | 001,370,328 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkaninfo.exe
[2020/11/10 23:09:45 | 001,054,944 | ---- | C] () -- C:\WINDOWS\SysNative\vulkan-1-999-0-0-0.dll
[2020/11/10 23:09:45 | 001,054,944 | ---- | C] () -- C:\WINDOWS\SysNative\vulkan-1.dll
[2020/11/10 23:09:45 | 000,917,728 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1-999-0-0-0.dll
[2020/11/10 23:09:45 | 000,917,728 | ---- | C] () -- C:\WINDOWS\SysWow64\vulkan-1.dll
[2020/11/10 23:09:45 | 000,674,712 | ---- | C] () -- C:\WINDOWS\SysNative\nvofapi64.dll
[2020/11/10 23:09:45 | 000,543,128 | ---- | C] () -- C:\WINDOWS\SysWow64\nvofapi.dll
[2020/11/10 23:09:45 | 000,080,930 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2020/11/10 23:06:28 | 000,069,608 | ---- | C] () -- C:\WINDOWS\SysNative\FvSDK_x64.dll
[2020/11/10 23:06:28 | 000,058,344 | ---- | C] () -- C:\WINDOWS\SysWow64\FvSDK_x86.dll
[2020/11/04 15:44:38 | 000,000,980 | ---- | C] () -- C:\Users\姓名\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\卒業論文.lnk
[2020/09/08 10:41:29 | 000,341,352 | ---- | C] () -- C:\WINDOWS\SetupX32.EXE
[2019/09/06 08:36:54 | 000,000,039 | ---- | C] () -- C:\Users\姓名\AppData\Local\kritadisplayrc
[2019/09/06 08:20:28 | 000,013,859 | ---- | C] () -- C:\Users\姓名\AppData\Local\kritarc
[2019/08/21 10:01:12 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2019/07/15 05:39:34 | 000,053,299 | ---- | C] () -- C:\WINDOWS\SysWow64\pthreadVC.dll
[2019/05/15 22:05:21 | 000,012,642 | ---- | C] () -- C:\ProgramData\hjlxafcc.gkb
[2019/05/15 22:05:21 | 000,000,000 | ---- | C] () -- C:\ProgramData\2123034141
[2019/04/17 19:55:04 | 000,012,596 | ---- | C] () -- C:\ProgramData\qoingxil.ghd
[2019/04/17 19:55:04 | 000,000,000 | ---- | C] () -- C:\ProgramData\956728074
[2019/04/06 21:15:34 | 000,012,643 | ---- | C] () -- C:\ProgramData\tzxixhsn.rxf
[2019/04/06 21:15:34 | 000,000,000 | ---- | C] () -- C:\ProgramData\2590367129
[2019/03/27 15:00:51 | 000,012,643 | ---- | C] () -- C:\ProgramData\pzufaxxm.cmi
[2019/03/27 15:00:51 | 000,000,000 | ---- | C] () -- C:\ProgramData\2114019453
[2019/03/24 15:25:17 | 000,012,317 | ---- | C] () -- C:\ProgramData\ehqhjyqr.rgt
[2019/03/24 15:25:17 | 000,000,000 | ---- | C] () -- C:\ProgramData\2836249993
[2019/03/21 00:51:10 | 000,001,939 | ---- | C] () -- C:\WINDOWS\Tablet8000x5340..ini
[2019/03/21 00:49:37 | 000,036,864 | ---- | C] () -- C:\WINDOWS\SysWow64\lhtool.exe
[2019/03/19 23:09:32 | 000,012,673 | ---- | C] () -- C:\ProgramData\kzavkdlg.txx
[2019/03/19 23:09:32 | 000,000,000 | ---- | C] () -- C:\ProgramData\1718209112
[2019/03/19 13:49:45 | 000,003,103 | ---- | C] () -- C:\WINDOWS\SysWow64\mmc.exe.config
[2019/03/19 13:49:45 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2019/03/19 13:49:44 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2019/03/19 13:46:09 | 000,019,485 | ---- | C] () -- C:\WINDOWS\SysWow64\srms-apr.dat
[2019/03/19 13:46:04 | 000,518,144 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2019/03/19 13:45:59 | 000,053,248 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2019/03/19 13:45:19 | 000,002,404 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2019/03/19 13:45:16 | 000,167,640 | ---- | C] () -- C:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2019/03/19 13:45:16 | 000,046,656 | ---- | C] () -- C:\WINDOWS\SysWow64\umpdc.dll
[2019/03/19 13:45:13 | 003,577,856 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.Analysis.dll
[2019/03/19 13:45:13 | 000,208,384 | ---- | C] () -- C:\WINDOWS\SysWow64\HeatCore.dll
[2019/03/19 13:45:13 | 000,107,008 | ---- | C] () -- C:\WINDOWS\SysWow64\WindowsDefaultHeatProcessor.dll
[2019/03/19 13:45:13 | 000,064,000 | ---- | C] () -- C:\WINDOWS\SysWow64\xboxgipsynthetic.dll
[2019/03/19 13:45:13 | 000,054,784 | ---- | C] () -- C:\WINDOWS\SysWow64\Windows.WARP.JITService.exe
[2019/03/19 13:45:07 | 000,330,752 | ---- | C] () -- C:\WINDOWS\SysWow64\ssdm.dll
[2019/03/19 13:44:58 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2019/03/19 13:44:30 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2019/03/09 00:41:33 | 000,012,606 | ---- | C] () -- C:\ProgramData\teeeusns.nkr
[2019/03/09 00:41:33 | 000,000,016 | ---- | C] () -- C:\ProgramData\mntemp
[2019/03/09 00:41:33 | 000,000,000 | ---- | C] () -- C:\ProgramData\1608505398
[2019/03/08 18:01:27 | 000,007,616 | ---- | C] () -- C:\Users\姓名\AppData\Local\Resmon.ResmonCfg
[2019/03/07 13:55:37 | 000,000,876 | ---- | C] () -- C:\WINDOWS\Ascd_ProcessLog.ini
[2019/03/07 13:55:33 | 000,017,757 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2019/03/07 13:55:30 | 000,015,232 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\AsIO.sys
[2019/03/07 11:04:38 | 000,000,993 | ---- | C] () -- C:\WINDOWS\UN900119.INI
[2018/12/20 13:00:00 | 000,003,748 | ---- | C] () -- C:\WINDOWS\cadx2.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2020/04/30 07:49:17 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\windows.storage.dll -- [2020/11/11 04:05:34 | 007,913,776 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\windows.storage.dll -- [2020/11/11 04:05:44 | 006,071,392 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2019/03/19 13:43:54 | 001,031,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2019/03/19 13:45:12 | 000,810,496 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2019/03/19 13:44:00 | 000,532,992 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]
[2020/05/07 21:35:01 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp
[2020/11/25 00:49:52 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2020/11/22 02:58:10 | 000,000,000 | -H-D | M] -- C:\Recovery
[2020/10/16 00:06:47 | 000,000,000 | -H-D | M] -- C:\GameOn\BlackDesert_live\patch_temp
[2020/11/26 16:57:00 | 000,000,000 | -H-D | M] -- C:\OneDriveTemp\S-1-5-21-68866919-1333413524-3689009959-1001
[2020/05/09 03:01:32 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2019/03/06 13:33:57 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Temp
[2020/09/13 14:21:33 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\EYEDENTITY GAMES\DragonNest\TempRes
[2020/11/24 20:26:23 | 000,000,000 | -H-D | M] -- C:\Program Files\WindowsApps
[2019/03/16 16:52:52 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink
[2020/11/26 22:24:00 | 000,000,000 | -H-D | M] -- C:\ProgramData\Apple Computer\iTunes\SC Info
[2020/08/05 23:37:06 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\GDPRDlg
[2019/03/07 13:20:26 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\PowerDVD\14.1
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\EvoParser\PowerDVD\14.1\Boomerang
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\ProgramData\CyberLink\GDPRDlg\Shared
[2019/07/01 02:53:09 | 000,000,000 | -H-D | M] -- C:\ProgramData\EPSON\PRINTER
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Settings
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\RetailDemo
[2019/08/21 10:15:50 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\DMProfiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\ProgramData\Microsoft\WwanSvc\Profiles
[2019/08/21 10:12:32 | 000,000,000 | RH-D | M] -- C:\Users\Default
[2019/08/21 10:08:02 | 000,000,000 | -H-D | M] -- C:\Users\Administrator\AppData
[2019/08/21 10:09:51 | 000,000,000 | -H-D | M] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2019/03/16 16:52:52 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink
[2020/11/26 22:24:00 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Apple Computer\iTunes\SC Info
[2020/08/05 23:37:06 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\GDPRDlg
[2019/03/07 13:20:26 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\PowerDVD\14.1
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\EvoParser\PowerDVD\14.1\Boomerang
[2019/03/07 13:20:19 | 000,000,000 | -H-D | M] -- C:\Users\All Users\CyberLink\GDPRDlg\Shared
[2019/07/01 02:53:09 | 000,000,000 | -H-D | M] -- C:\Users\All Users\EPSON\PRINTER
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Settings
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\RetailDemo
[2019/08/21 10:15:50 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\Windows\DeviceMetadataCache\dmrccache\downloads
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\DMProfiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\All Users\Microsoft\WwanSvc\Profiles
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Users\Default\AppData
[2020/11/13 11:27:55 | 000,000,000 | RH-D | M] -- C:\Users\Public\AccountPictures
[2020/11/25 00:50:10 | 000,000,000 | RH-D | M] -- C:\Users\Public\Desktop
[2019/08/21 10:09:55 | 000,000,000 | RH-D | M] -- C:\Users\Public\Libraries
[2019/03/16 16:52:49 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg
[2019/03/16 16:52:49 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\Shared
[2019/03/16 16:52:50 | 000,000,000 | -H-D | M] -- C:\Users\Public\CyberLink\OLReg\HKEY_CLASS_ROOT\CLSID\{6F7425F3-EB34-46b0-9B63-430203611455}\Version\14.0
[2019/11/08 17:52:37 | 000,000,000 | -H-D | M] -- C:\Users\姓名\.DMMGAMEPLAYERSDK
[2020/11/13 11:27:55 | 000,000,000 | RH-D | M] -- C:\Users\姓名\3D Objects
[2019/08/21 10:07:49 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData
[2019/03/07 11:08:44 | 000,000,000 | -H-D | M] -- C:\Users\姓名\MicrosoftEdgeBackups
[2019/05/03 19:51:26 | 001,074,784 | -H-- | M] (LINE Corporation) -- C:\Users\姓名\AppData\Local\LINE\bin\LineUpdater.exe
[2020/03/19 15:23:39 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Media Player\アート キャッシュ
[2020/09/14 09:05:39 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Outlook\16
[2019/08/21 10:13:48 | 000,000,000 | RH-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\Burn\Burn
[2020/11/25 16:05:05 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCache\Content.MSO
[2020/11/26 22:25:14 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCache\Content.Word
[2020/04/16 05:21:17 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCache\Virtualized
[2019/03/07 10:40:41 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE
[2019/03/07 10:40:41 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCookies\DNTException\Low
[2019/03/07 10:40:41 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Microsoft\Windows\INetCookies\PrivacIE\Low
[2019/03/21 23:21:46 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\NVIDIA Corporation\Shield Apps\StreamingAssets
[2019/03/16 16:52:52 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Packages\jp.cyberlink.com.PowerDVDforTHIRDWAVE_v2hyd9ty70n7m\LocalCache\Local\CyberLink\MediaCache
[2019/03/07 13:20:20 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Packages\jp.cyberlink.com.PowerDVDforTHIRDWAVE_v2hyd9ty70n7m\LocalCache\Local\CyberLink\CAE\be577f68
[2019/08/05 01:44:02 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\TempState\Content.MSO
[2020/03/19 16:39:21 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Local\Temp\VideoPadSoundCache
[2019/08/21 10:09:43 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2020/09/19 23:55:59 | 000,000,000 | -H-D | M] -- C:\Users\姓名\AppData\Roaming\Vortex\skyrimse\masterlist\.git
[2020/11/25 00:49:55 | 000,000,000 | -H-D | M] -- C:\Windows\ELAMBKUP
[2019/03/19 13:52:44 | 000,000,000 | -H-D | M] -- C:\Windows\LanguageOverlayCache
[2019/08/21 10:01:27 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\LocalService\AppData
[2019/08/21 10:01:27 | 000,000,000 | -H-D | M] -- C:\Windows\ServiceProfiles\NetworkService\AppData

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2020/11/25 01:03:17 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD20EZAZ-00GGJB0
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: SATA SSD
Partitions: 3
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 -
Interface type: USB
Media Type:
Model: Generic- Multiple Reader USB Device
Partitions: 0
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1,863.00GB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #1, Partition #1
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 476.00GB
Starting Offset: 122683392
Hidden sectors: 0


DeviceID: Disk #1, Partition #2
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 554.00MB
Starting Offset: 511528927232
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
No service found with a name of AeLookupSvc
SRV:[b]64bit:[/b] - [2020/11/11 04:05:28 | 000,162,304 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:16 | 000,094,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:28 | 001,588,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:23 | 000,878,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:22 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2020/07/16 23:00:28 | 000,066,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:25 | 000,401,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2020/10/14 16:47:33 | 000,336,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
No service found with a name of Browser
SRV:[b]64bit:[/b] - [2019/03/19 13:44:35 | 000,096,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:39 | 001,260,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:38 | 000,388,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2020/11/11 04:05:45 | 000,321,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:38 | 000,350,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2019/03/19 13:43:49 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:50 | 000,034,816 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2019/03/19 13:45:24 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2020/04/15 07:14:44 | 000,629,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:47 | 000,447,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2020/06/11 03:10:15 | 000,457,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
No service found with a name of MMCSS
SRV:[b]64bit:[/b] - [2020/10/14 16:47:19 | 000,265,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:41 | 000,614,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2020/07/16 23:00:24 | 000,382,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2019/11/13 07:24:07 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:21 | 000,126,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2020/06/11 03:10:13 | 000,765,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2019/03/19 13:45:02 | 000,104,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:42 | 000,951,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:39 | 001,260,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:00 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2020/09/09 22:46:41 | 000,057,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2019/11/13 07:23:56 | 000,322,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:36 | 000,280,064 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:38 | 000,252,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2019/03/19 13:45:59 | 000,197,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2020/11/11 04:05:38 | 000,859,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2020/08/13 06:56:01 | 000,309,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2020/08/13 06:56:05 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2019/03/19 13:44:33 | 000,067,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:39 | 000,492,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2020/06/11 03:10:15 | 001,447,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 001,942,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:18 | 000,735,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:35 | 000,148,992 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV - [2020/11/07 11:33:28 | 000,128,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2010.7-0\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2020/10/14 16:47:24 | 001,918,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:35 | 001,062,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (mpssvc)
SRV:[b]64bit:[/b] - [2020/08/13 06:55:57 | 000,671,744 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2019/03/19 13:45:45 | 000,067,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2019/03/19 13:46:04 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:27 | 000,233,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:29 | 003,136,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2020/04/15 07:14:31 | 000,268,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:25 | 002,656,768 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2020/11/11 04:05:40 | 000,295,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

< End of report >
  • せーめー
  • 2020/11/26 (Thu) 23:00:58
Extras.Txtです
OTL Extras logfile created on: 2020/11/26 22:26:01 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\ドキュメント\B1脆弱性対策用
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.18362.0)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

15.92 Gb Total Physical Memory | 11.49 Gb Available Physical Memory | 72.15% Memory free
21.92 Gb Paging File | 14.48 Gb Available in Paging File | 66.07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 476.28 Gb Total Space | 209.73 Gb Free Space | 44.03% Space Free | Partition Type: NTFS
Drive D: | 1863.02 Gb Total Space | 1599.56 Gb Free Space | 85.86% Space Free | Partition Type: NTFS

Computer Name: COSMIC_MK-II | User Name: 姓名 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Powershell] -- powershell.exe -noexit -command Set-Location -literalPath '%V' (Microsoft Corporation)
Directory [UpdateEncryptionSettings] -- Reg Error: Key error.
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Feature]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av]
"DataMigrated" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av\{23007AD3-69FE-687C-2629-D584AFFAF72B}]
"GUID" = {23007AD3-69FE-687C-2629-D584AFFAF72B}
"DISPLAYNAME" = Malwarebytes
"STATE" = 397312
"PRODUCTEXE" = D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMWsc.exe -- (Malwarebytes)
"REPORTINGEXE" = D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMWsc.exe -- (Malwarebytes)

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av\{D68DDC3A-831F-4fae-9E44-DA132C1ACF46}]
"GUID" = {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
"DISPLAYNAME" = Windows Defender
"STATE" = 393472
"PRODUCTEXE" = windowsdefender://
"REPORTINGEXE" = %ProgramFiles%\Windows Defender\MsMpeng.exe -- (Microsoft Corporation)

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av\{EB19B86E-3998-C706-90EF-92B41EB091AF}]
"GUID" = {EB19B86E-3998-C706-90EF-92B41EB091AF}
"DISPLAYNAME" = Avast Antivirus
"STATE" = 266240
"PRODUCTEXE" = C:\Program Files\Avast Software\Avast\wsc_proxy.exe -- (AVAST Software)
"REPORTINGEXE" = C:\Program Files\Avast Software\Avast\wsc_proxy.exe -- (AVAST Software)

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP\318db3d5-98c3-41d2-89cd-2da8a3824bf1]
"GUID" = 318db3d5-98c3-41d2-89cd-2da8a3824bf1
"CALLINGBINARY" = C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe -- (Microsoft Corporation)
"NAMESPACE" = C:\Users\姓名\OneDrive -- [2020/11/26 16:57:00 | 000,000,000 | R--D | M]
"DISPLAYNAME" = OneDrive
"EXEPATH" = C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe -- (Microsoft Corporation)
"ACCOUNTNAME" = ak.1201.it.yukkuri@hotmail.co.jp
"USERSID" = S-1-5-21-68866919-1333413524-3689009959-1001
"TYPE" = 0
"SIGNED" = 1
"FLAGS" = 0
"STATE" = 0
"RESTOREURL" = https://onedrive.live.com?v=restore&suggestedRestoreDate=2020-11-26T07:57:00Z

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Fw]
"DataMigrated" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp\WebProtection]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 8A 92 6D 81 BD 57 D5 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Feature]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Av]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\CBP]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\DPA]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\Fw]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Provider\SecurityApp\WebProtection]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0277CD55-A409-41F0-911F-B00BFEDD2DA7}" = rport=138 | protocol=17 | dir=out | app=system |
"{1C588F4F-A98E-4404-A663-FCDA4F253F1D}" = lport=48010 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{24FB63EC-7F9B-4AAA-AFEA-638BDADB0859}" = lport=139 | protocol=6 | dir=in | app=system |
"{29F6A131-AEF5-4813-AB06-F11E14CAA713}" = lport=445 | protocol=6 | dir=in | app=system |
"{2C7FEB8B-5FE3-4CBD-B63E-692BC1FC8C94}" = rport=137 | protocol=17 | dir=out | app=system |
"{2E91A1B8-683A-4DA4-99AE-0FE8A6264894}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft\edge\application\msedge.exe |
"{3DFB4C90-64DC-4199-B4B4-2B4854AEE83F}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{40555DAF-1081-4128-A68A-E2AFE000F25B}" = lport=5353 | protocol=17 | dir=in | app=c:\users\姓名\appdata\roaming\zoom\bin\airhost.exe |
"{55F427E7-6248-429D-A6DB-AA128F6566EE}" = rport=139 | protocol=6 | dir=out | app=system |
"{7A967F97-B736-42D0-9CFA-338E32EBD1CA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{828BCBCF-58E1-4084-AF0F-13E85651E860}" = rport=445 | protocol=6 | dir=out | app=system |
"{98562B6E-9011-4BA7-821B-38ECD70E9C9F}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A416B884-F26A-40CE-9DE5-CDB7938B6462}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\outlook.exe |
"{A597F1BA-5DE4-486E-8261-05B333EFAAA3}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{A7E4D832-82D9-4762-831B-262A179A161B}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{B7161D03-BC3C-47D2-B59E-2CDEFB764673}" = lport=137 | protocol=17 | dir=in | app=system |
"{BF1934FD-A2B0-4447-9A59-9CD7F482B143}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{D1292C27-CAC8-4BD7-A307-C1A44F0CEC58}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DB32DE6B-190C-4143-AF33-ED498E0AD911}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
"{E29DE97F-CDEB-4B59-B501-91DC7F93ADB5}" = lport=138 | protocol=17 | dir=in | app=system |
"{E540E359-3832-44C9-BB70-0C41E5356FB3}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F1E9D21C-A642-43F1-9395-7F0A81869B82}" = lport=5000 | protocol=6 | dir=in | app=c:\users\姓名\appdata\roaming\zoom\bin\airhost.exe |
"{F832851F-EB12-43A2-8596-037128823449}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02DC6EA2-7349-4F03-83A6-7BD579FE9402}" = dir=out | name=dolby access |
"{039AF16E-313E-45A5-8804-B5E27EFEEE08}" = dir=in | name=onenote for windows 10 |
"{055079AB-65D4-459C-9FDB-22DEC3D01CD5}" = dir=out | name=@{microsoft.mixedreality.portal_2000.20081.1312.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mixedreality.portal/resources/pkgdisplayname} |
"{0682388B-EA98-47C9-8863-21746C2BA987}" = dir=in | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.1171_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{074EA833-8461-4A65-9205-3FD1187FC39E}" = protocol=17 | dir=in | app=d:\3dゲーム避難所\steamlibrary\steamapps\common\v_katsu\vkatsu.exe |
"{085E8F6A-F161-43F1-86B8-5573D662FC1F}" = protocol=17 | dir=in | app=c:\program files\buffalo\rakupdate\rakupdate.exe |
"{093BCC61-E3C0-4CE6-BF5C-C9A3E1FE10DE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dark souls iii\game\darksoulsiii.exe |
"{0AD795E1-CBDA-4E7D-9401-C1E77CDE696E}" = dir=in | name=@{microsoft.windows.shellexperiencehost_10.0.18362.1171_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{0F328DF5-E244-49A8-B6DD-5ADC7A5F241A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\x64\grim dawn.exe |
"{16D58C19-1553-451B-B3B8-96DF17CE602E}" = protocol=17 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\itunes.exe |
"{189FA723-2545-413E-B7AD-25C53E4E62D7}" = dir=out | name=@{microsoft.remotedesktop_10.2.1535.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.remotedesktop/resources/appname} |
"{19864EEA-8376-405E-B911-EBA9E1EA686B}" = dir=out | name=@{microsoft.windowscamera_2020.902.20.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscamera/lenssdk/resources/appstorename} |
"{19A97D10-7A70-420C-BF96-831866B97D14}" = dir=out | name=xbox game bar plugin |
"{1A9CBF4A-167C-4F95-81C6-C22C05F31535}" = dir=out | name=@{microsoft.windowsmaps_10.2009.2.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{2178BB8F-C8C7-492C-A91D-5FE15A2E016C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blender\blender.exe |
"{246A93E2-0328-4518-BB83-2107763C3F6F}" = dir=out | name=@{microsoft.xboxapp_48.70.21001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{2692AFC6-79E6-47FE-BBE7-E0310922E0DE}" = protocol=1 | dir=out | app=system |
"{2C762791-9A86-419D-8B97-0EFBB8CA120E}" = dir=out | name=phototastic collage |
"{2D6E35AD-297E-4A02-940B-00B6276B20A3}" = dir=out | name=@{microsoft.accountscontrol_10.0.18362.449_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{2E16E727-E0E6-4449-BD63-D0917DCD9A81}" = dir=out | name=@{microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{319D2061-9AC4-4DB6-9FFC-636C5491D8D6}" = dir=in | name=@{microsoft.microsoftstickynotes_3.7.142.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftstickynotes/resources/stickynotesstoreappname} |
"{34A33958-AD75-410F-BDFC-3CB773AE1798}" = protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\ucmapi.exe |
"{34DE1B84-2EB3-4509-9FFA-806017F55615}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{353CCEE0-FC81-435B-9617-4CB85F325BB0}" = protocol=6 | dir=in | app=c:\program files\microsoft office\root\office16\ucmapi.exe |
"{38155D18-2D4A-45F5-82FE-6C80254CE76E}" = protocol=6 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\amds64\applemobiledeviceprocess.exe |
"{3E48702A-23FF-4554-A563-DA8A06E3A3AF}" = protocol=17 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\amds64\applemobiledeviceprocess.exe |
"{3F6FB37C-17A6-4082-9786-F40B9CF0CCC8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\blender\blender.exe |
"{44D00345-1B09-461C-B274-C45F77416C60}" = dir=out | name=@{microsoft.xboxidentityprovider_12.67.21001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxidentityprovider/resources/displayname} |
"{465BE9DE-216F-41AA-95A8-EBE77FA9A965}" = dir=in | name=@{microsoft.remotedesktop_10.2.1535.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.remotedesktop/resources/appname} |
"{4B68F0BE-D026-46AC-8418-0768E9AFE838}" = dir=out | name=@{microsoft.mspaint_6.2009.30067.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.mspaint/resources/appname} |
"{4B7824B5-8535-4BD8-9114-EF50E3D1B6FF}" = dir=in | name=microsoft minesweeper |
"{4E3D510D-0F13-4DF8-BBF2-070A086672C5}" = dir=out | name=@{microsoft.microsoftstickynotes_3.7.142.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftstickynotes/resources/stickynotesstoreappname} |
"{502869D5-9E04-40BD-80A0-655A3D78CB31}" = protocol=6 | dir=in | app=c:\hanpurple\dnest\dragonnest.exe |
"{50AC1C2E-C546-4D4B-BE4D-DA73842B52D3}" = dir=in | name=xbox game bar |
"{50C2DC88-9BB3-4494-9010-7DA7F5AB5A0A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stardew valley\stardew valley.exe |
"{53F93285-6EF3-4117-AF18-D48FF6BCB8EB}" = dir=out | name=@{microsoft.windows.sechealthui_10.0.18362.449_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.sechealthui/resources/packagedisplayname} |
"{5DDABFB3-F35F-43F5-AC2C-FA5282EF22BE}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{5E5D5E9C-0AED-4674-BA1B-2AB0E73497E3}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim special edition\skyrimselauncher.exe |
"{600EC1C2-151F-4E6E-935B-B5E13A635968}" = dir=out | name=@{microsoft.windows.oobenetworkcaptiveportal_10.0.18362.449_neutral__cw5n1h2txyewy?ms-resource://microsoft.windows.oobenetworkcaptiveportal/resources/appdisplayname} |
"{6231DF80-F38D-4BD9-9945-48069A07930C}" = dir=in | name=@{microsoft.microsoftedge_44.18362.449.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{6311379A-38B4-4902-8FEE-EDADB0AF1BC1}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\x64\grim dawn.exe |
"{635A3A19-1148-4CFC-8DEF-C44A4B14A2D7}" = dir=in | name=dolby access |
"{65295DBE-893A-414B-A930-556F28DEA734}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{670B1103-2B09-47BA-9B64-F7F181F9F2A6}" = dir=in | name=@{microsoft.oneconnect_5.2011.3081.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnectstrings/oneconnect/appstorename} |
"{682FC6AA-F27D-4703-A857-289370A162F6}" = protocol=6 | dir=in | app=c:\program files (x86)\eyedentity games\dragonnest\dragonnest.exe |
"{69646DFC-8026-4BD0-B316-EC7B833AFA57}" = dir=in | name=@{microsoft.ppiprojection_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{6B3BAE70-A111-4491-8511-3EBB5EEB438C}" = protocol=1 | dir=in | app=system |
"{6BD148A8-1DE5-46EB-93A6-FE34A84E71DF}" = dir=out | name=@{microsoft.windowscalculator_10.2009.4.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscalculator/resources/appstorename} |
"{6C800D7F-93F9-45C8-B539-DF9E29DA35D5}" = dir=out | name=onenote for windows 10 |
"{6D127D56-4F1D-4314-955C-A3DC93A74CA5}" = dir=in | name=@{microsoft.bingtranslator_5.6.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtranslator/resources/appname} |
"{6D21F2B4-880C-4EA1-B7CF-56A277AFA053}" = dir=out | name=@{microsoft.windows.shellexperiencehost_10.0.18362.1171_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.shellexperiencehost/resources/pkgdisplayname} |
"{71251824-A1D5-4217-B5DC-D73533CCD076}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\skyrim special edition\skyrimselauncher.exe |
"{71ADC487-0016-42BA-9DA6-76435D9C995C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\killingfloor2\binaries\win64\kfgame.exe |
"{72B0F9CA-903D-4728-A0E1-9E27E7DF18AD}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dark souls iii\game\darksoulsiii.exe |
"{72FBAA03-CA31-4835-B5F7-EA744D1CFDE7}" = protocol=58 | dir=in | app=system |
"{74C7F11E-9BD2-4FDA-A637-8F9980AB8E09}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{7680CA88-D50A-48B8-A3C8-21C778983DE5}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{77CAA4F1-4284-4904-9C87-F0803B8734AE}" = dir=out | name=@{microsoft.zunevideo_10.20092.14511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{7916AAC4-FBD7-4697-8B0D-920BA8C232FD}" = dir=out | name=@{microsoft.windows.narratorquickstart_10.0.18362.449_neutral_neutral_8wekyb3d8bbwe?ms-resource://microsoft.windows.narratorquickstart/resources/appdisplayname} |
"{7C829738-5469-4575-BC15-A4C8910CE629}" = dir=out | name=microsoft minesweeper |
"{7FEC33EE-C796-43F6-AEF2-3E28C5C0CA12}" = dir=in | name=@{microsoft.xboxapp_48.70.21001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxapp/xboxapp.resource/resources/app_title} |
"{8179714F-40A6-480B-8D34-22118B1FA653}" = protocol=6 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\amds64\applemobiledeviceprocess.exe |
"{81FA3FFE-E950-4D1D-9081-D341070F9C6C}" = dir=out | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{83F1120B-C134-4169-A0E5-D49043529C3E}" = dir=out | name=@{microsoft.windows.startmenuexperiencehost_10.0.18362.1171_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.startmenuexperiencehost/startmenuexperiencehost/pkgdisplayname} |
"{85DAD3B4-9277-43F5-AA45-FCABF6AF2E4E}" = dir=out | name=@{microsoft.people_10.1909.10841.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{85DBD084-F2E0-4F2F-8085-1E3EDEE838AC}" = dir=in | name=@{microsoft.desktopappinstaller_1.4.3161.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{85EF29EC-3937-47C8-9735-ABB351735171}" = dir=out | name=@{microsoft.zunemusic_10.20092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{874784F5-D335-43B3-B6E4-7907F602F051}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\killingfloor2\binaries\win64\kfgame.exe |
"{894A0F66-246A-49CC-BC63-F278998CC967}" = dir=out | name=print 3d |
"{8A828FD3-17FD-415D-8382-3C697F9359C9}" = dir=out | name=@{microsoft.windowsfeedbackhub_1.1907.3152.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsfeedbackhub/resources/appstorename} |
"{8C86ED10-829A-42EC-8499-E848F34F2F2E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\cef\cef.win7x64\steamwebhelper.exe |
"{8F72A222-067D-4E39-9C50-DA26DC9EC4A3}" = dir=out | name=shell input application |
"{900D6B04-74CE-4EA6-8269-60E15E6308D9}" = protocol=58 | dir=out | app=system |
"{9383B806-FE60-4DB5-A9F9-039F87AA4928}" = protocol=6 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\itunes.exe |
"{95B419BC-E49D-414F-8F9B-646DD7CB45E0}" = dir=out | name=nvidia control panel |
"{9743B322-C13C-464D-ADC5-B2E6AF994472}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{99ACC9BF-1B73-4674-8CBE-61937C56A619}" = dir=out | name=@{microsoft.ppiprojection_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.ppiprojection/resources/productname} |
"{9F41D840-94A5-44DF-920C-CDF9ACA0E119}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\grim dawn.exe |
"{A1462A68-6FDF-4538-85BC-32407BEED0FE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\x64\grim dawn.exe |
"{AC413D87-4196-44F6-A3B2-B8726345E232}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\cef\cef.win7x64\steamwebhelper.exe |
"{AC602B30-3BC0-454D-A60C-84231107C644}" = protocol=6 | dir=in | app=c:\program files\buffalo\rakupdate\rakupdate.exe |
"{ACD05FE0-6564-4BEB-8676-BEB7C2EE5B84}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{ACE44A55-AE7E-48E8-B4EA-DB96F5D98155}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\x64\grim dawn.exe |
"{AFFE560F-424C-4B4C-A329-540D701FF79A}" = protocol=17 | dir=in | app=c:\users\姓名\appdata\roaming\zoom\bin\zoom.exe |
"{B2956950-5A76-4041-BB13-98A9659466D6}" = dir=in | name=@{microsoft.zunevideo_10.20092.14511.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{B92777BE-A239-4038-9750-05B1E20428F0}" = dir=in | name=@{microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{BA768C78-60C9-4318-9F1C-144311F5F402}" = dir=out | name=@{microsoft.bingtranslator_5.6.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtranslator/resources/appname} |
"{BC07F3C2-18EF-4BB5-9DA8-BD4A2AD4BFDB}" = protocol=17 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\itunes.exe |
"{BCAB1D48-7D9C-46DD-BA0A-801A13FF863F}" = dir=out | name=@{microsoft.getstarted_9.12.32951.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{C0921601-9320-43AD-A2A1-4DDD25A855A3}" = dir=out | name=@{microsoft.windows.peopleexperiencehost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.peopleexperiencehost/resources/pkgdisplayname} |
"{C0A010C4-7EFE-424B-87EF-0E866A44A67A}" = dir=out | name=@{microsoft.gethelp_10.2004.31291.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.gethelp/resources/appdisplayname} |
"{C41FE5A1-D650-4FAE-B79D-8280D8728F52}" = protocol=17 | dir=in | app=c:\hanpurple\dnest\dragonnest.exe |
"{C484D201-5BE9-48A7-B793-EB08C4F0BD4D}" = dir=out | name=@{microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{C68935FB-A327-4FBE-9F01-22391E407902}" = dir=in | name=@{microsoft.windows.cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/packagedisplayname} |
"{C7BDE679-0413-408C-9B1C-8060F2FF4137}" = dir=out | name=@{microsoft.oneconnect_5.2011.3081.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.oneconnect/oneconnectstrings/oneconnect/appstorename} |
"{C95BC276-7B1B-4135-BE68-3C2E7FB47B5F}" = dir=out | name=@{microsoft.storepurchaseapp_12011.1001.1.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.storepurchaseapp/resources/displaytitle} |
"{CA7A46BB-DC56-457B-8FAA-A4C575097DA5}" = protocol=6 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\itunes.exe |
"{CB6F57BD-2438-4847-8375-9C9C811FFE1B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\root\office16\lync.exe |
"{CD5C382E-812F-4EDA-AED2-4290994F89F7}" = dir=out | name=@{microsoft.microsoftedge_44.18362.449.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{CEC502C1-E6B7-4283-B5F5-58060CDEA2B2}" = dir=in | name=print 3d |
"{D1B28234-C999-4934-98C1-7BED087357DF}" = protocol=17 | dir=in | app=c:\program files\windowsapps\appleinc.itunes_12110.26.53016.0_x64__nzyj5cx40ttqa\amds64\applemobiledeviceprocess.exe |
"{D23607C4-55F8-4FD3-8F0B-A98E455BCFDD}" = dir=in | name=@{microsoft.windows.photos_2020.20090.1002.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{DA4FD042-5891-43AA-970E-EB8CCC408011}" = dir=out | name=@{microsoft.bingnews_4.53.22541.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithtagline} |
"{DE484FD0-3CBB-412E-A096-BA67F6D5C8BB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{DF9CA535-A7BD-43F0-BF38-1697B2AAEF96}" = dir=out | name=@{microsoft.windows.photos_2020.20090.1002.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{E2384A83-25E3-4B43-9623-2B69F666E971}" = dir=out | name=@{microsoft.yourphone_1.20104.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.yourphone/resources/appname} |
"{E2C19B83-22A4-4AC1-94EC-62099096C66E}" = protocol=17 | dir=in | app=c:\program files (x86)\eyedentity games\dragonnest\dragonnest.exe |
"{E2F1400B-5149-441C-B3C8-5828AE26AF72}" = dir=out | name=@{microsoft.bingweather_4.46.22742.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{E61D38F6-878F-4502-B99D-5C2902A952DB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\stardew valley\stardew valley.exe |
"{ECD7AC92-B17D-4150-BFAC-1645C7FE48C8}" = dir=in | name=@{microsoft.win32webviewhost_10.0.18362.997_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{EDD5960C-6296-4FD5-A666-C1C3BF15853A}" = dir=out | name=@{microsoft.lockapp_10.0.18362.449_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{F0208F33-FCC4-4632-83FC-15A02559D1E6}" = dir=in | name=@{microsoft.zunemusic_10.20092.10311.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{F0530317-9D1D-42A6-A10D-D382D95C5F99}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{F3FAA55D-4F81-4BAF-9352-3E9B2129FB62}" = protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\lync.exe |
"{F4E16210-E147-4E93-BA58-A9A11E3938CA}" = dir=out | name=xbox game bar |
"{F5D1D6D7-1F7C-4053-AF59-492FE82B508C}" = protocol=6 | dir=in | app=d:\3dゲーム避難所\steamlibrary\steamapps\common\v_katsu\vkatsu.exe |
"{F83299A8-988E-464B-815B-ED912A476ED7}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\grim dawn\grim dawn.exe |
"{FA6DF7C9-7ECD-421F-80F2-C9048794AFF3}" = dir=in | name=@{microsoft.yourphone_1.20104.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.yourphone/resources/appname} |
"{FA9006CA-7A31-4B53-8107-BFCBEFC44134}" = dir=out | name=@{microsoft.win32webviewhost_10.0.18362.997_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.win32webviewhost/resources/displayname} |
"{FB0D4BEF-459F-4072-A82C-8EF49A9913CC}" = dir=out | name=@{microsoft.windows.apprep.chxapp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.apprep.chxapp/resources/displayname} |
"{FCBCFC37-D6CB-4F19-BBA6-F0FB08A5DA86}" = dir=in | name=@{microsoft.windowscommunicationsapps_16005.13228.41011.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxoutlookintl/appmanifest_outlookdesktop_displayname} |
"{FD7159D6-564E-46E7-8AAC-B36B34D7B005}" = dir=out | name=@{microsoft.desktopappinstaller_1.4.3161.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.desktopappinstaller/resources/appdisplayname} |
"{FEAABC08-31A8-4C10-8F5F-45EF5F179388}" = dir=out | name=@{microsoft.microsoft3dviewer_7.2009.29132.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoft3dviewer/common.view.uwp/resources/storeappname} |
"TCP Query User{18946532-850B-4A81-8257-581E49FB5061}C:\program files\buffalo\rakupdate\rakupdate.exe" = protocol=6 | dir=in | app=c:\program files\buffalo\rakupdate\rakupdate.exe |
"UDP Query User{9F53E12C-B4A7-4B02-9095-1109321CF343}C:\program files\buffalo\rakupdate\rakupdate.exe" = protocol=17 | dir=in | app=c:\program files\buffalo\rakupdate\rakupdate.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}" = Microsoft Update Health Tools
"{1B4EDD59-90CE-4BDE-8520-630981088165}" = Microsoft Visual C++ 2019 X64 Additional Runtime - 14.27.29112
"{1CEAC85D-2590-4760-800F-8DE5E91F3700}" = Intel(R) Management Engine Components
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F64180271F0}" = Java 8 Update 271 (64-bit)
"{29487948-D54A-4EE4-800D-E205919659C8}" = PDF-XChange Editor
"{2F6639A4-A208-4711-81FE-752DACA9484E}" = MuseScore 3
"{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1" = Malwarebytes version 4.2.3.96
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{37BB1766-C587-49AE-B2DB-618FBDEAB88C}" = Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.27.29112
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{49F223FE-D3BD-4FB9-96BF-41361123804A}" = Intel(R) Rapid Storage Technology
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{631C57C3-B765-4327-822A-057C34D691CC}" = Intel(R) Chipset Device Software
"{66C00D72-5E34-495E-A4A1-1A31D7BE2FA7}" = Microsoft VC++ redistributables repacked.
"{66C5838F-B854-4A55-89E6-A6138747A4DF}" = Epic Games Launcher Prerequisites (x64)
"{6B578393-88EF-4F43-975E-800FACF1AD0E}" = だれでもVtuber
"{90160000-007E-0000-1000-0000000FF1CE}" = Office 16 Click-to-Run Licensing Component
"{90160000-008C-0000-1000-0000000FF1CE}" = Office 16 Click-to-Run Extensibility Component
"{90160000-008C-0411-1000-0000000FF1CE}" = Office 16 Click-to-Run Localization Component
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA グラフィックス ドライバー 457.30
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 3.20.5.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 38.0.5.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX システム ソフトウェア 9.19.0218
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 38.0.5.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk" = NVIDIA FrameView SDK 1.1.4923.29214634
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = NVIDIA SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD オーディオ ドライバー 1.3.38.35
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvAbHub" = NVIDIA ABHub
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvBackend" = NVIDIA Backend
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer" = NVIDIA Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.ContainerTelemetryApiHelper" = NVIDIA TelemetryApi helper for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.LocalSystem" = NVIDIA LocalSystem Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.MessageBus" = NVIDIA Message Bus for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor" = NVAPI Monitor plugin for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.ServiceUser" = NVIDIA NetworkService Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.Session" = NVIDIA Session Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.User" = NVIDIA User Container
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver" = NvModuleTracker
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs" = NVIDIA NodeJS
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvPlugin.Watchdog" = NVIDIA Watchdog Plugin for NvContainer
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry" = NVIDIA Telemetry Client
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvVHCI" = NVIDIA Virtual Host Controller
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_OSC" = Nvidia Share
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 3.20.5.70
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = NVIDIA SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC" = NVIDIA USBC Driver 1.45.831.832
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 4.13.0.0
"{B39E9D6B-906D-47C0-8FA1-833987DA6F63}" = Intel(R) Management Engine Components
"{B87F5B14-C118-472C-93C9-05F35D0361DB}" = iCloud Outlook
"{BEB5BAB5-60E3-46D3-BC68-748807F35B8E}" = Intel(R) Management Engine Driver
"{C9552825-7BF2-4344-BA91-D3CD46F4C442}" = Intel(R) Trusted Connect Service Client x64
"{CE08DF9B-FD93-4667-8D88-55A216DC6669}" = Intel(R) Management Engine Components
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"57979c68-f490-55b8-8fed-8b017a5af2fe" = Vortex
"7-Zip" = 7-Zip 20.02 alpha (x64)
"CCleaner" = CCleaner
"CiscoWebexMeetingsPlugins" = Cisco Webex Productivity Tools
"EPSON EP-805A Series" = EPSON EP-805A Series プリンター アンインストール
"HomeBusinessRetail - ja-jp" = Microsoft Office Home and Business 2016 - ja-jp
"MediBang Paint Pro_is1" = MediBang Paint Pro 25.6 (64-bit)
"O365ProPlusRetail - ja-jp" = Microsoft 365 Apps for enterprise - ja-jp
"Steam App 219990" = Grim Dawn
"Steam App 365670" = Blender
"Steam App 374320" = DARK SOULS™ III
"Steam App 375950" = Viridi
"Steam App 391540" = Undertale
"Steam App 413150" = Stardew Valley
"Steam App 489830" = The Elder Scrolls V: Skyrim Special Edition
"Steam App 856620" = Vカツ / V-Katsu
"バッファロー らくらくアップデートツール" = バッファロー らくらくアップデートツール

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{054f90d5-0d78-49aa-b6ff-6a490814dc35}" = PDF-XChange Editor
"{082BEB59-2E23-479B-82DB-487D1148F810}_is1" = DMMGamePlayer バージョン 2.4.6
"{0f770e99-3916-4b0c-8f9b-83822826bcbf}" = Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{3A99EA20-5728-49D4-A05C-C870571AE6AF}_is1" = BSA Browser version 1.12.3
"{49753D89-93D7-44BB-A1D1-EDDF9AC0E62D}_is1" = GD Defiler
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{58594A65-ACD7-41A2-B6ED-2597777F2850}" = VIP Access
"{5c045b7f-e561-4794-91f8-c6cda0893107}" = Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{632D85A6-B94C-440E-B565-26F73CF778D3}" = Microsoft VC++ redistributables repacked.
"{71855EB5-AF5B-447B-8BD5-B649383BBCD8}_is1" = HGパブリッシングゲーム 起動プログラム
"{731F6BAA-A986-45A4-8936-7C3AAAAA760B}" = Teams Machine-Wide Installer
"{7B7182E6-D22D-4E5A-BCA2-EC985A4BD588}_is1" = OBS-VirtualCam version 2.0.4
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{895D5198-C5DB-375E-86AB-133F4DAA9FE2}" = Microsoft Visual C++ 2017 x86 Additional Runtime - 14.13.26020
"{8F271F6C-6E7B-3D0A-951B-6E7B694D78BD}" = Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.13.26020
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AA4A0E6B-A861-4B97-9D94-F6F9F9C98834}" = UTAU 歌声合成ツール
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C19D3BAF-8031-4164-B4BA-B90051504800}" = Puppet3R
"{c6c5a357-c7ca-4a5f-9789-3bb1af579253}" = Launcher Prerequisites (x64)
"{c700a043-5a4c-4d61-aa88-6c4191f25b64}" = Intel(R) Trusted Connect Services Client
"{C9552825-7BF2-4344-BA91-D3CD46F4C441}" = Intel(R) Trusted Connect Service Client x86
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{E154B2C8-2F3E-4763-B3D5-E7D34AE39C6B}" = Minecraft Launcher
"{E8BBDE72-34A3-4B42-9F19-757AA2209332}" = Epic Games Launcher
"{eb0d4a41-3065-42b0-a868-c60d42d3ea98}" = インテル® チップセット デバイス ソフトウェア
"{EC881C70-F7F2-49CB-A696-0178C1AD0C70}" = Cisco Webex Meetings デスクトップアプリ
"{ED5B757E-EC1C-40BF-9C76-70C06B6305C7}_is1" = ドラゴンネスト 1705
"{EE04522C-0814-4B63-AE57-0B63E5A355BB}_is1" = Thunder Master v3.22
"{EF857C5A-8D48-4812-8EF6-62BDEA06E7FF}" = Colon
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FD036A57-F81D-4865-AAF0-811558EA76AE}" = Epson Software Updater
"Adobe Flash Player PPAPI" = Adobe Flash Player 32 PPAPI
"Audacity_is1" = Audacity 2.3.3
"Avast Antivirus" = Avast Free Antivirus
"BlackDesert_JP_is1" = 黒い砂漠
"BUFFALO_AirSet2_is1" = BUFFALO エアステーション設定ツール
"BUFFALO_BPCEnv_is1" = BUFFALO パソコン環境表示ツール
"EPSON Scanner" = EPSON Scan
"Google Chrome" = Google Chrome
"http://pso2.jp/appid/release_is1" = PHANTASY STAR ONLINE 2
"JC-U2812F" = JC-U2812F
"Microsoft Edge" = Microsoft Edge
"Microsoft Edge Update" = Microsoft Edge Update
"OBS Studio" = OBS Studio
"PaintToolSAI" = ペイントツールSAI Ver.1
"Pmang" = Pmangインストールマネージャー
"Pmang_BlackDesert_live" = Black Desert
"Pmang_common" = Common
"RadioLine Free" = RadioLine Free
"ST6UNST #1" = Visual Basic 6.0 Service Pack 6 Runtime Set
"Steam" = Steam
"TabletDriver" = Tablet Driver V5.02
"UN900119" = BUFFALO クライアントマネージャV
"UN900119_is1" = BUFFALO クライアントマネージャV をアンインストール
"UN900120" = BUFFALO AirStation倍速設定ツール(アンインストール)
"UN900121" = BUFFALO LAN端子用 無線子機設定ツール
"Uplay" = Uplay

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-68866919-1333413524-3689009959-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"24628d1f-061f-5855-a628-b892705aba86" = TwitCasting Desktop Live 1.1.9 (only current user)
"Discord" = Discord
"LINE" = LINE
"OneDriveSetup.exe" = Microsoft OneDrive
"Teams" = Microsoft Teams
"ZoomUMX" = Zoom

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2020/11/26 4:48:48 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (5784,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 5:06:38 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (2596,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 5:46:27 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (5104,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 5:52:02 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (5012,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 6:46:48 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (644,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 6:52:02 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (7448,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 7:47:08 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (4188,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 8:46:27 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (16848,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

Error - 2020/11/26 9:28:02 | Computer Name = CosmiC_MK-II | Source = VSS | ID = 8193
Description =

Error - 2020/11/26 9:29:05 | Computer Name = CosmiC_MK-II | Source = ESENT | ID = 455
Description = svchost (1148,R,98) TILEREPOSITORYS-1-5-18: ログ ファイル C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log
を開いているときに、エラー -1023 (0xfffffc01) が発生しました。

[ Parameters Events ]
OTL encountered an error while reading this event log. It may be corrupt.
[ State Events ]
OTL encountered an error while reading this event log. It may be corrupt.
Error - 2020/11/25 6:14:10 | Computer Name = CosmiC_MK-II | Source = DCOM | ID = 10010
Description =

Error - 2020/11/25 6:14:10 | Computer Name = CosmiC_MK-II | Source = DCOM | ID = 10010
Description =

Error - 2020/11/25 6:14:53 | Computer Name = CosmiC_MK-II | Source = Service Control Manager | ID = 7000
Description = PTSimBus サービスを、次のエラーが原因で開始できませんでした: %%123

Error - 2020/11/25 6:14:55 | Computer Name = CosmiC_MK-II | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = WLAN 拡張性モジュールを開始できませんでした。 モジュール パス: C:\WINDOWS\system32\Rtlihvs.dll
エラー
コード: 126

Error - 2020/11/26 1:37:48 | Computer Name = CosmiC_MK-II | Source = EventLog | ID = 6008
Description = 以前のシステム シャットダウン ( ?2020/?11/?26 6:56:51) は予期されていませんでした。

Error - 2020/11/26 1:37:49 | Computer Name = CosmiC_MK-II | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = WLAN 拡張性モジュールを開始できませんでした。 モジュール パス: C:\WINDOWS\system32\Rtlihvs.dll
エラー
コード: 126

Error - 2020/11/26 1:37:50 | Computer Name = CosmiC_MK-II | Source = Service Control Manager | ID = 7000
Description = PTSimBus サービスを、次のエラーが原因で開始できませんでした: %%123

Error - 2020/11/26 3:56:27 | Computer Name = CosmiC_MK-II | Source = EventLog | ID = 6008
Description = 以前のシステム シャットダウン ( ?2020/?11/?26 16:26:48) は予期されていませんでした。

Error - 2020/11/26 3:56:30 | Computer Name = CosmiC_MK-II | Source = Service Control Manager | ID = 7000
Description = PTSimBus サービスを、次のエラーが原因で開始できませんでした: %%123

Error - 2020/11/26 3:56:31 | Computer Name = CosmiC_MK-II | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = WLAN 拡張性モジュールを開始できませんでした。 モジュール パス: C:\WINDOWS\system32\Rtlihvs.dll
エラー
コード: 126


< End of report >
  • せーめー
  • 2020/11/26 (Thu) 23:03:16
あの拡張について(しつこいですが…)
ごみ箱に投げ入れてから削除してもまだCCのプラグイン欄から消えませんし無効化もできないので、
諸々終わった後に悪代官さまのブログを参考に削除してみようかなあと思います(気力があったら…)。
拡張の削除について事細かにご教授いただきありがとうございます、
もし今後怪しいものが入ってしまった時にまた参考にさせて頂きます!
  • せーめー
  • 2020/11/26 (Thu) 23:53:12
OTLでゴミ掃除を
作業と報告、ご苦労様です。
OTLスキャンログも見せてもらいました。

Nortonの残骸が見えてますが、今後はNortonは使わない予定なら掃除をお勧めします。
セキュリティソフトは削除後も残骸が残ることが多いのですが、残骸が残ったまま他社のセキュリティソフトを使うと不具合につながったりもするのでできるだけ残骸掃除するのが安全です。
最近はNortonに限らずセキュリティベンダーはサポートツールとして自社製品のクリーンアップツールを配布しているのでSymantecのサイトからそれをDLして実行するのが無難です。
https://support.norton.com/sp/ja/jp/home/current/solutions/v60392881

それでは今度はOTLで見つかったゴミ等をOTLで掃除です。
Chromeの拡張も可能なら掃除してみましょう。

このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらまたOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」(赤字のボタン)を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
------------------------------------------
:OTL
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\
CHR - Extension: No name found = C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0\
[2020/11/22 02:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2020/11/22 02:20:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton

:Files
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb
C:\ProgramData\NortonInstaller
C:\ProgramData\Norton

:reg

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------------------------------------------
  • 悪代官
  • 2020/11/27 (Fri) 21:03:28
経過とOTLログ
Nortonの残骸残ってたんですね、HJTで作業した時に一覧に無かったたのでてっきり除去済みかと思ってました…
折角貼っていただいたURLからツールをDLできなかったので手動でぶち消しました…
(アカウント作ればどうにかなるかと思ってHP行って作っても何も変わらないどころか、
一度作ったら消せない仕様であることを知り…この会社の製品もう二度と使いたくないです;;;)
また、相変わらずCCのプラグイン欄にはアレが残ってて流石にもう笑えて来ました

それはそうと、その後特に変な様子は今のところ見られません!
OTLのログを貼らせていただきます!
またまた作業報告遅くて申し訳ないです、、、

All processes killed
========== OTL ==========
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_metadata folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\zh_TW folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\zh_CN folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\vi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\uk folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\tr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\th folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\sv folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\sr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\sl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\sk folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\ru folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\ro folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\pt_PT folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\pt_BR folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\pl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\nl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\nb folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\lv folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\lt folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\ko folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\ja folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\it folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\id folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\hu folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\hr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\hi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\fr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\fil folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\fi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\et folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\es_419 folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\es folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\en_GB folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\en folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\el folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\de folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\da folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\cs folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\ca folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales\bg folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\_locales folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\images folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\html folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0\css folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.5_0 folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_metadata folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\zh_TW folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\zh folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\vi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\uk folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\tr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\th folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\te folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ta folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\sw folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\sv folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\sr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\sl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\sk folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ru folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ro folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\pt folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\pl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\nl folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\nb folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ms folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\mr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ml folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\lv folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\lt folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ko folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\kn folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ja folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\iw folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\it folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\id folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\hu folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\hr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\hi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\gu folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\fr folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\fil folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\fi folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\fa folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\et folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\es folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\en folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\el folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\de folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\da folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\cs folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ca folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\bn folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\bg folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\ar folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales\am folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0\_locales folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8720.1005.0.2_0 folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0\_metadata folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0\images folder moved successfully.
Folder move failed. C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0 scheduled to be moved on reboot.
C:\ProgramData\NortonInstaller\Logs\2020-11-22-03h28m03s folder moved successfully.
C:\ProgramData\NortonInstaller\Logs\2020-11-22-02h49m41s folder moved successfully.
C:\ProgramData\NortonInstaller\Logs folder moved successfully.
C:\ProgramData\NortonInstaller folder moved successfully.
C:\ProgramData\Norton\{B7B64E4E-97E8-48AA-AF62-F11B5FF9819D}\957538F2883CB7E79AC067EEB8E07353 folder moved successfully.
C:\ProgramData\Norton\{B7B64E4E-97E8-48AA-AF62-F11B5FF9819D} folder moved successfully.
C:\ProgramData\Norton\{350C635D-E6F4-486C-A631-A85A2B9A6B50}\{0C55C096-0F1D-4F28-AAA2-85EF591126E7} folder moved successfully.
C:\ProgramData\Norton\{350C635D-E6F4-486C-A631-A85A2B9A6B50} folder moved successfully.
C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NGC_22.20.2.57\BASH folder moved successfully.
C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NGC_22.20.2.57 folder moved successfully.
C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7} folder moved successfully.
C:\ProgramData\Norton\{086A63F0-6B13-4F29-9695-134E7A01E963} folder moved successfully.
C:\ProgramData\Norton\_lck folder moved successfully.
C:\ProgramData\Norton folder moved successfully.
========== FILES ==========
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm folder moved successfully.
Folder move failed. C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0 scheduled to be moved on reboot.
Folder move failed. C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb scheduled to be moved on reboot.
File\Folder C:\ProgramData\NortonInstaller not found.
File\Folder C:\ProgramData\Norton not found.
========== REGISTRY ==========
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: GLCache

User: Public

User: 姓名
->Temp folder emptied: 618077993 bytes
->Temporary Internet Files folder emptied: 2833136 bytes
->Java cache emptied: 1097 bytes
->Google Chrome cache emptied: 368646022 bytes
->Flash cache emptied: 3240 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 495616 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 22093168 bytes
RecycleBin emptied: 3708047015 bytes

Total Files Cleaned = 4,502.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 11272020_223830

Files\Folders moved on Reboot...
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb\1.6_0 folder moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppcocpoeoiajndepaaimnnglicichmbb folder moved successfully.
File\Folder C:\Users\姓名\AppData\Local\Temp\0061de90-7d08-43d0-b0db-0df523e1d499.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\02793e4b-d7d5-4918-8a87-1441a800b503.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\102e3b7f-f93a-4a91-a8ad-dcae6ea702b1.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\13eed501-ef5d-4742-80d1-f5b73773d914.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\26d914cc-0aab-424e-8486-acee8abd9075.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\28252f44-c97a-4f0e-8d13-99dec9ec0015.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\2c8b0a8a-64ad-4ac7-939f-fe48e0207503.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\3ac9c7a6-0f7a-4004-9e56-d59a68b95aa3.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\4e9041b7-1d26-40b6-9157-7dfcab9708d8.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\55bfa6c7-7ca8-41dc-a6a8-96f68a9bd074.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\748a8425-1748-432f-9eab-e2636791bfd8.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\79fec704-1255-4fe4-8e0d-77e0c193f375.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\7bd6bcdd-fbfc-4315-a052-67b05743bb3e.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\7fce2bb4-af4c-44b9-a9b2-f65d4ddcbf5d.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\84839586-e0c8-46e6-91ab-7e62452a7299.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\86698913-a6eb-4c2b-a397-93775bfc84c0.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\8841aee6-1729-4c13-9213-2b29192c3951.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\8c94ba8b-253b-452f-9280-e8ccb29bfa3d.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\95392991-d99e-483a-872c-0fa03eac252f.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\a037142c-a98e-4f75-8fe0-7b6652ebd057.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\ab512994-d2db-4461-8b2e-4908d1f30ba1.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\baca3617-bf21-47c5-81d5-cd030e3b7988.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\bd0ade2b-47c0-4140-8515-7e026f64af47.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\e9efe82c-1432-49c1-8022-2c39a0e9e226.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\efdadb9c-01aa-409e-99c7-f4f5d0713330.tmp not found!
File\Folder C:\Users\姓名\AppData\Local\Temp\ff9e7b8e-abdf-40f1-9a0b-e7e4b232939e.tmp not found!
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 moved successfully.
C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Cache\index moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvLock.txt scheduled to be moved on reboot.
File\Folder C:\WINDOWS\temp\_avast_\nsfsp0000AB38.tmp not found!
C:\WINDOWS\temp\COSMIC_MK-II-20201126-2317.log moved successfully.
File\Folder C:\WINDOWS\temp\officeclicktorun.exe_streamserver(20201126231709111C).log not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • せーめー
  • 2020/11/28 (Sat) 00:09:00
ここで全体の再確認を
作業と報告、ご苦労様です。

処置後のログを見ると対象エントリは
>moved successfully

となっているのでそれぞれ処置できたようですね。

ではOTLは準備時の説明に沿って片づけていいです。

>相変わらずCCのプラグイン欄にはアレが残ってて

ここはまあChromeをクリーンアップすれば初期状態に掃除できるのでそのうち気が向いたら検討ください。

>その後特に変な様子は今のところ見られません

状態は安定しているならそこはいいですね。

ここで現在の状態をログで再確認しましょう。
お手数ですがまたHJTとインストール情報、それとCC各タブのログを取り直して、それらをまた見せてください。
作業での見落としや別の新たな問題が発生していないか全体を洗いなおします
  • 悪代官
  • 2020/11/28 (Sat) 21:28:47
HJTログ
HJTのログです

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:36:26, on 2020/11/28
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.18362.0001)


Boot mode: Normal

Running processes:
C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\Webex\Plugins\ptpluginhost.exe
D:\ドキュメント\B1脆弱性対策用\HijackThis.exe

F2 - REG:system.ini: UserInit=
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O3 - Toolbar: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [TeamsMachineInstaller] %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [THPanel] "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
O4 - HKCU\..\Run: [EpicGamesLauncher] "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [Discord] C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Startup: らくらくアップデートツール.lnk = C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe
O4 - Global Startup: クライアントマネージャV.lnk = C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{5383dae9-c1c9-4a68-849c-87e97a3a2ab8}: NameServer = 192.168.1.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: BWH32S - Buffalo Inc. - C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_97115 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: DMMGamePlayerService (dgpservice) - Unknown owner - C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Unknown owner - D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMService.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - D:\App\VIP ACCESS\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Productivity Tools Update Service (WebexPluginsService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Plugins\webexservice.exe
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13215 bytes
  • せーめー
  • 2020/11/28 (Sat) 22:41:17
CC、インストール情報
3D ビューアー Microsoft Corporation 2020/10/01 7.2009.29132.0
7-Zip 20.02 alpha (x64) Igor Pavlov 2020/11/23 5.01 MB 20.02 alpha
Adobe Flash Player 32 PPAPI Adobe 2020/11/28 4.06 MB 32.0.0.453
Audacity 2.4.2 Audacity Team 2020/11/27 62.4 MB 2.4.2
Avast Free Antivirus Avast Software 2020/11/28 20.9.2437
Blender Blender Foundation 2019/08/21
BSA Browser version 1.12.3 Alexander Ellingsen 2020/06/25 12.0 MB 1.12.3
BUFFALO AirStation倍速設定ツール(アンインストール) 2020/11/28
BUFFALO LAN端子用 無線子機設定ツール BUFFALO INC. 2020/11/28
BUFFALO エアステーション設定ツール BUFFALO INC. 2019/03/08 2.95 MB 2.0.15
BUFFALO クライアントマネージャV をアンインストール Buffalo Inc. 2019/03/08 13.2 MB 1.5.4
BUFFALO パソコン環境表示ツール Buffalo Inc. 2019/03/08 4.19 MB 1.2.1
CCleaner Piriform 2020/11/22 5.74
Cisco Webex Meetings デスクトップアプリ Cisco Webex LLC 2020/04/14 225 MB 40.10.6.11
Cisco Webex Productivity Tools Cisco WebEx LLC 2020/11/22 40.11.1.1
Colon Yamma-ma 2019/11/01 8.83 MB 2.1.0
DARK SOULS™ III FromSoftware, Inc. 2020/06/21
Discord Discord Inc. 2020/09/11 58.7 MB 0.0.308
DMMGamePlayer バージョン 2.4.6 DMM.com,Inc. 2019/11/08 316 MB 2.4.6
Dolby Access Dolby Laboratories 2020/10/29 3.6.181.0
Epic Games Launcher Epic Games, Inc. 2019/10/04 95.3 MB 1.1.229.0
EPSON EP-805A Series プリンター アンインストール SEIKO EPSON Corporation 2020/02/07
EPSON Scan Seiko Epson Corporation 2020/11/28
Epson Software Updater Seiko Epson Corporation 2020/02/07 8.73 MB 4.5.1
Fitbit Coach Fitbit 2019/03/07 4.4.133.0
GD Defiler Soul's Services 2019/07/28 2.81 MB 0.2.4.0
Google Chrome Google LLC 2020/11/21 87.0.4280.66
Grim Dawn Crate Entertainment 2019/08/21
Groove ミュージック Microsoft Corporation 2020/10/16 10.20092.10311.0
HEIF 画像拡張機能 Microsoft Corporation 2020/10/01 1.0.32532.0
HGパブリッシングゲーム 起動プログラム NHN Hangame Corp. 2019/03/07 6.66 MB 1.0.0.1
iCloud Outlook Apple Inc. 2020/09/17 3.86 MB 11.3.0.59
Intel(R) Management Engine Components Intel Corporation 2019/03/06 1823.12.0.1137
Intel(R) Rapid Storage Technology Intel Corporation 2019/03/06 16.5.0.1027
iTunes Apple Inc. 2020/11/21 12110.26.53016.0
Java 8 Update 271 (64-bit) Oracle Corporation 2020/11/23 125 MB 8.0.2710.9
JC-U2812F 2020/11/28
LINE LINE Corporation 2020/10/16 6.3.2.2338
LinkedIn LinkedIn 2019/03/07 2.1.7098.0
Malwarebytes version 4.2.3.96 Malwarebytes 2020/11/25 4.2.3.96
MediBang Paint Pro 25.6 (64-bit) Medibang 2020/11/14 138 MB 25.6
Microsoft 365 Apps for enterprise - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft Edge Microsoft Corporation 2020/11/25 87.0.664.47
Microsoft Minesweeper Microsoft Studios 2020/09/29 3.1.9160.0
Microsoft Office Home and Business 2016 - ja-jp Microsoft Corporation 2020/11/15 16.0.13328.20356
Microsoft OneDrive Microsoft Corporation 2020/10/24 147 MB 20.169.0823.0008
Microsoft Pay Microsoft Corporation 2019/08/21 2.4.18324.0
Microsoft Store Microsoft Corporation 2020/11/15 12011.1001.1.0
Microsoft Store エクスペリエンス ホスト Microsoft Corporation 2020/11/06 12011.1001.1.0
Microsoft Teams Microsoft Corporation 2020/09/18 92.8 MB 1.3.00.13565
Microsoft Update Health Tools Microsoft Corporation 2020/11/21 1.18 MB 2.70.0.0
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2019/04/05 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2019/03/07 48.5 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2020/11/28 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2020/11/28 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2020/11/28 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2020/11/28 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 Microsoft Corporation 2020/11/28 22.0 MB 14.27.29112.0
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 Microsoft Corporation 2020/11/28 20.1 MB 14.13.26020.0
Microsoft XNA Framework Redistributable 4.0 Refresh Microsoft Corporation 2019/05/17 9.45 MB 4.0.30901.0
Microsoft ニュース Microsoft Corporation 2020/09/12 4.53.22541.0
Microsoft 付箋 Microsoft Corporation 2020/08/09 3.7.142.0
Minecraft Launcher Mojang 2019/03/07 1.44 MB 1.0.0.0
Mixed Reality ポータル Microsoft Corporation 2020/09/18 2000.20081.1312.0
MPEG-2 ビデオ拡張機能 Microsoft Corporation 2019/09/27 1.0.22661.0
MuseScore 3 Werner Schweer and Others 2019/07/04 299 MB 3.2.2.7534
NVIDIA Control Panel NVIDIA Corp. 2020/06/23 8.1.958.0
NVIDIA FrameView SDK 1.1.4923.29214634 NVIDIA Corporation 2020/11/10 1.1.4923.29214634
NVIDIA GeForce Experience 3.20.5.70 NVIDIA Corporation 2020/11/10 3.20.5.70
NVIDIA HD オーディオ ドライバー 1.3.38.35 NVIDIA Corporation 2020/11/10 1.3.38.35
NVIDIA PhysX システム ソフトウェア 9.19.0218 NVIDIA Corporation 2019/07/11 9.19.0218
NVIDIA USBC Driver 1.45.831.832 NVIDIA Corporation 2020/11/10 1.45.831.832
NVIDIA グラフィックス ドライバー 457.30 NVIDIA Corporation 2020/11/10 457.30
OBS Studio OBS Project 2020/11/28 26.0.2
OBS-VirtualCam version 2.0.4 OBS 2020/10/12 3.18 MB 2.0.4
OneNote for Windows 10 Microsoft Corporation 2020/11/13 16001.13328.20348.0
PDF-XChange Editor Tracker Software Products (Canada) Ltd. 2020/11/28 697 MB 8.0.343.0
People Microsoft Corporation 2020/04/07 10.1909.10841.0
PHANTASY STAR ONLINE 2 SEGA Games Co., Ltd. 2019/03/07 7.19 MB
Phototastic Collage Thumbmunkeys Ltd 2020/11/13 3.23.1.0
PowerDVD for THIRDWAVE jp.cyberlink.com 2019/03/07 14.1.9606.0
Print 3D Microsoft Corporation 2019/04/25 3.3.791.0
Puppet3R Leo-typeb 2020/10/12 2.53 MB 3.1.3
RadioLine Free Coderium 2020/01/08 1.1.5.1
Realtek Audio Console Realtek Semiconductor Corp 2020/11/23 1.14.226.0
Realtek Ethernet Controller Driver Realtek 2019/03/06 4.57 MB 10.26.328.2018
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2019/03/06 36.6 MB 6.0.1.8491
Stardew Valley ConcernedApe 2019/08/21
Steam Valve Corporation 2020/11/28 2.10.91.91
Tablet Driver V5.02 2020/11/28
Teams Machine-Wide Installer Microsoft Corporation 2020/09/11 93.6 MB 1.3.0.13565
The Elder Scrolls V: Skyrim Special Edition Bethesda Game Studios 2020/06/21
Thunder Master v3.22 Palit Microsystems Ltd. 2019/03/07 17.4 MB 3.22.0.0
TwitCasting Desktop Live 1.1.9 (only current user) moicorp 2020/06/21 221 MB 1.1.9
Undertale tobyfox 2019/08/30
Update for Windows 10 for x64-based Systems (KB4023057) Microsoft Corporation 2019/08/03 1.42 MB 2.61.0.0
Uplay Ubisoft 2020/11/28 38.2
UTAU 歌声合成ツール 飴屋プロジェクト 2020/07/08 4.67 MB 1.0.77
VIP Access Symantec Corporation 2019/04/05 11.6 MB 2.2.4.44
Viridi Zoe Vartanian 2019/08/21
Visual Basic 6.0 Service Pack 6 Runtime Set 2020/11/28
Vortex Black Tree Gaming Ltd. 2020/09/20 312 MB 1.3.8
VP9 ビデオ拡張機能 Microsoft Corporation 2020/09/23 1.0.32521.0
Vカツ / V-Katsu IVR 2020/06/23
Web メディア拡張機能 Microsoft Corporation 2019/08/21 1.0.20875.0
Webp 画像拡張機能 Microsoft Corporation 2020/10/21 1.0.32731.0
Xbox Game Bar Microsoft Corporation 2020/11/21 5.420.11102.0
Xbox Game bar Microsoft Corporation 2020/06/06 1.54.4001.0
Xbox Game Speech Window Microsoft Corporation 2019/03/07 1.21.13002.0
Xbox Identity Provider Microsoft Corporation 2020/08/04 12.67.21001.0
Xbox Live Microsoft Corporation 2019/03/07 1.24.10001.0
Xbox コンソール コンパニオン Microsoft Corporation 2020/10/27 48.70.21001.0
Zoom Zoom Video Communications, Inc. 2020/10/10 9.76 MB 5.3.1 (52879.0927)
だれでもVtuber Falhong-Cha 2020/10/11 1.34 MB 1.0.0
アプリ インストーラー Microsoft Corporation 2020/11/17 1.4.3161.0
アラーム & クロック Microsoft Corporation 2020/10/23 10.2009.5.0
カメラ Microsoft Corporation 2020/11/17 2020.902.20.0
スマホ同期 Microsoft Corporation 2020/11/24 1.20104.23.0
デバイス製造元からの HEVC ビデオ拡張機能 Microsoft Corporation 2020/11/19 1.0.33232.0
ドラゴンネスト 1705 HANGAME 2019/03/09 8.88 GB 1705
バッファロー らくらくアップデートツール Buffalo Inc. 2019/08/21 11.0 MB 1.12
ヒント Microsoft Corporation 2020/11/06 9.12.32951.0
フィードバック Hub Microsoft Corporation 2019/12/14 1.1907.3152.0
フォト Microsoft Corporation 2020/09/23 2020.20090.1002.0
フォト メディア エンジン アドオン Microsoft Corporation 2020/09/17 1.0.0.0
ペイント 3D Microsoft Corporation 2020/10/03 6.2009.30067.0
ペイントツールSAI Ver.1 2020/11/28
ボイス レコーダー Microsoft Corporation 2020/10/23 10.2009.2.0
マップ Microsoft Corporation 2020/11/03 10.2009.2.0
メッセージング Microsoft Corporation 2019/05/25 4.1901.10241.1000
メール/カレンダー Microsoft Corporation 2020/10/03 16005.13228.41011.0
モバイル通信プラン Microsoft Corporation 2020/11/13 5.2011.3081.0
リモート デスクトップ Microsoft Corporation 2020/11/01 10.2.1535.0
切り取り & スケッチ Microsoft Corporation 2020/09/10 10.2008.2277.0
問い合わせ Microsoft Corporation 2020/06/06 10.2004.31291.0
天気 Microsoft Corporation 2020/10/10 4.46.22742.0
日本語 ローカル エクスペリエンス パック Microsoft Corporation 2020/10/16 18362.27.85.0
星座表 Escape Velocity Limited 2019/03/07 3.0.8.0
映画 & テレビ Microsoft Corporation 2020/11/19 10.20092.14511.0
翻訳 Microsoft Corporation 2019/08/01 5.6.0.0
電卓 Microsoft Corporation 2020/10/22 10.2009.4.0
黒い砂漠 PearlAbyss Corp. 2020/11/26 34.0 GB 1.0
  • せーめー
  • 2020/11/28 (Sat) 22:42:07
CC、スタートアップとブラウザプラグイン
Windowsです

有効 HKCU:Run CCleaner Smart Cleaning Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
無効 HKCU:Run CiscoMeetingDaemon Cisco Webex LLC "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
無効 HKCU:Run com.squirrel.Teams.Teams Microsoft Corporation C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
有効 HKCU:Run Discord Discord Inc. C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
無効 HKCU:Run EpicGamesLauncher "D:\ぷろぐらむふぁいるず\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKCU:Run THPanel Palit Microsystems Ltd. "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run RtkAudUService Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe" -background
有効 HKLM:Run SecurityHealth Microsoft Corporation %windir%\system32\SecurityHealthSystray.exe
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
無効 HKLM:Run TeamsMachineInstaller Microsoft Corporation %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS
有効 HKLM:Run WTClient WTClient.exe
有効 Startup Common クライアントマネージャV.lnk Buffalo Inc. C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
有効 Startup User らくらくアップデートツール.lnk Buffalo Inc. C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe


スケジュールタスクです

有効 Task Adobe Flash Player PPAPI Notifier Adobe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe -check pepperplugin
有効 Task Adobe Flash Player Updater Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task MicrosoftEdgeUpdateTaskMachineCore Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c
有効 Task MicrosoftEdgeUpdateTaskMachineUA Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /ua /installsource scheduler
無効 Task NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
無効 Task NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
無効 Task NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
無効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
無効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task OneDrive Standalone Update Task v2 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task OneDrive Standalone Update Task-S-1-5-21-68866919-1333413524-3689009959-1001 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task ThunderMaster Palit Microsystems Ltd. C:\Program Files (x86)\Thunder Master\THPanel.exe /A


コンテキストメニューです

有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 Directory ファイルの所有権
有効 Drive PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 File 00asw AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File MBAMShlExt Malwarebytes D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\mbshlext.dll
有効 File PDFXChange Editor Context menu Tracker Software Products (Canada) Ltd. C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll
有効 Folder 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Folder avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 Folder MBAMShlExt Malwarebytes D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\mbshlext.dll


Windowsサービスです

無効 Service Adobe Flash Player Update Service Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
無効 Service aswbIDSAgent AVAST Software "C:\Program Files\Avast Software\Avast\aswidsagent.exe"
有効 Service Avast Antivirus AVAST Software "C:\Program Files\Avast Software\Avast\AvastSvc.exe" /runassvc
有効 Service Avast Tools AVAST Software "C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
有効 Service AvastWscReporter AVAST Software "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver
有効 Service BWH32S Buffalo Inc. "C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe"
無効 Service Cisco WebEx Productivity Tools Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Plugins\webexservice.exe"
無効 Service Cisco WebEx Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe"
有効 Service DMMGamePlayerService DMMGAMES LLC "C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe" is auto-started
有効 Service Epson Scanner Service Seiko Epson Corporation C:\Windows\system32\EscSvc64.exe
無効 Service Google Chrome Elevation Service Google LLC "C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.66\elevation_service.exe"
有効 Service Google Update サービス (gupdate) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
無効 Service Google Update サービス (gupdatem) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
無効 Service Intel(R) Capability Licensing Service TCP IP Interface Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe"
有効 Service Intel(R) Dynamic Application Loader Host Interface Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
有効 Service Intel(R) Management and Security Application Local Management Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
有効 Service Intel(R) Rapid Storage Technology Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
有効 Service Intel(R) TPM Provisioning Service Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe"
有効 Service Malwarebytes Service Malwarebytes "D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMService.exe"
無効 Service nProtect GameGuard Service C:\Windows\system32\GameMon.des -service
有効 Service NVIDIA Display Container LS NVIDIA Corporation C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
無効 Service NVIDIA FrameView SDK service NVIDIA "C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe" -service
有効 Service NVIDIA LocalSystem Container NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
無効 Service OpenSSH Authentication Agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
有効 Service Realtek Audio Universal Service Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe"
無効 Service Steam Client Service Valve Corporation "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
有効 Service VIPAppService Symantec Corporation "D:\App\VIP ACCESS\VIPAppService.exe"
有効 Service WinTab Service UC-Logic Technology Corp. "C:\WINDOWS\System32\Drivers\WTSRV.EXE"


ブラウザプラグイン、IEです

有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\BHO\ie_to_edge_bho.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.47\BHO\ie_to_edge_bho_64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
無効 Helper 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
無効 Toolbar 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll


Chromeです

有効 App Gmail 8.3 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Gmail 8.3 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Google ドライブ 14.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App Google ドライブ 14.5 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App miku music 1.1 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\odfhgnckgjjgbljlfikcbdbdnpapmobo\1.1_0
有効 App Twitter 2020.11.21.45785 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi\2020.11.21.45785_0
有効 App YouTube 4.2.8 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App YouTube 4.2.8 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App とりとうさぎと 2020.11.24.42192 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmdbgomjbmaglkbnelbioemfeomeiih\2020.11.24.42192_0
有効 App ドラゴンネストR 2019.3.11.8194 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kibplilbehdjpkbgpndjpmhoeopmejlg\2019.3.11.8194_0
有効 App 黒い砂漠 2019.3.11.8378 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcpaignfemglimlkcjaedicilidjojcp\2019.3.11.8378_0
有効 Extension Adblock Plus - free ad blocker 3.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\3.10_0
有効 Extension Google オフライン ドキュメント 1.21.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Google オフライン ドキュメント 1.21.0 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Grammarly for Chrome 14.984.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen\14.984.0_0
有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0
有効 Extension Weblio エクステンション 2.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgnfefoljgaelbckgfbijijhblgophjo\2.5_0
有効 Extension Weblioポップアップ英和辞典 6.0.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oingodpdjohhkelnginmkagmkbplgema\6.0.5_0
有効 Extension スプレッドシート 1.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スプレッドシート 1.2 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スライド 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension スライド 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension ドキュメント 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension ドキュメント 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension 刀剣専覧-刀剣乱舞専用ブラウザ 0.1.8 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphpjhbabehcmdjobbjmbkgbbgipnppo\0.1.8_0
有効 Extension 英辞郎 on the WEB 拡張機能 1.5.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonalfdoahlmjaoloddjenihohbfodme\1.5.2_0

  • せーめー
  • 2020/11/28 (Sat) 22:46:28
洗い直しに来ました
作業と報告、ご苦労様です。
状態の洗い直しに来た「あらいぐま悪代官」です(←悪代官なら悪事から足を洗え

現在の各ログを見せてもらいました。
おおむね不審な痕跡はなさそうですね。

CCの常駐機能が有効になっているので無効化して動作を軽くしましょうか。

CC起動して「ツール」→「スマートクリーニング」を開いて、「ごみファイルが発生したら通知」と「スマートクリーニングを有効化」にチェック入っていたら外して無効化してください。
この時CCから警告画面が出るかと思いますがかまわず「はい」で無効化していいです。

続いてCCの「Windows」タブで下記を無効化。

>有効 HKCU:Run CCleaner Smart Cleaning Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

「スケジュール」タブで下記も無効化です。
>有効 Task CCleanerSkipUAC Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)

CCはこの常駐機能が実装されてからやたら負荷かけるようになってしまってPC動作が重くなることもあるので、必要なければ無効化を推奨です。

状態では現在以上は出ていませんか?
何か見えていれば教えてください。

特に異常なければこのまま1週間ほど様子見して、そのあとまた今回と同じにHJTとCCの各ログを取り直して、それらを様子見中の報告とともにレスください。

この時点でログと状態に不審な点なければヤマも解決にできそうですが、何か異常あるようなら1週間待たなくていいのでそこで取り直したログと報告ください。
何事もなく様子見経過終わることを祈ります
  • あらいぐま悪代官
  • 2020/11/29 (Sun) 21:02:20
ありがとうございます!
CC常駐無効化しました!やり方がよくわからなかったので助かりました~
今のところ特に異常はありません、強いて言うならタスクバーがバグってましたがアプデしたら直りました!
何事もありませんように!また1週間後にお会いしましょう!!
  • せーめー
  • 2020/11/29 (Sun) 21:58:43
ご無沙汰しております
その後、特に異常は見られませんでした!
各ログを貼らせていただきます!

HJT

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 19:26:59, on 2020/12/06
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.0001)


Boot mode: Normal

Running processes:
C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files (x86)\Webex\Plugins\ptpluginhost.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\Steam\steam.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe
C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS32\AppleMobileDeviceHelper.exe
C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\VFS\ProgramFilesCommonX86\Apple\Apple Application Support\distnoted.exe
D:\ドキュメント\B1脆弱性対策用\HijackThis.exe

F2 - REG:system.ini: UserInit=
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.55\BHO\ie_to_edge_bho.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O3 - Toolbar: 生産性向上ツール - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [THPanel] "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
O4 - HKCU\..\Run: [Discord] C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
O4 - HKCU\..\Run: [com.squirrel.Teams.Teams] C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Startup: らくらくアップデートツール.lnk = C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe
O4 - Global Startup: クライアントマネージャV.lnk = C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{5383dae9-c1c9-4a68-849c-87e97a3a2ab8}: NameServer = 192.168.1.1
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\Avast Software\Avast\wsc_proxy.exe
O23 - Service: BWH32S - Buffalo Inc. - C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_248aa - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: DMMGamePlayerService (dgpservice) - Unknown owner - C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Unknown owner - C:\Windows\system32\EscSvc64.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Unknown owner - D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMService.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VIPAppService - Symantec Corporation - D:\App\VIP ACCESS\VIPAppService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: Cisco WebEx Productivity Tools Update Service (WebexPluginsService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Plugins\webexservice.exe
O23 - Service: Cisco WebEx Update Service (WebexService) - Cisco WebEx LLC - C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:\WINDOWS\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13146 bytes


CCインストール情報

Microsoft Edge Microsoft Corporation 2020/12/05 87.0.664.55
スマホ同期 Microsoft Corporation 2020/12/04 1.20111.116.0
Google Chrome Google LLC 2020/12/03 87.0.4280.88
フォト Microsoft Corporation 2020/12/02 2020.20110.11001.0
天気 Microsoft Corporation 2020/12/02 4.46.23151.0
デバイス製造元からの HEVC ビデオ拡張機能 Microsoft Corporation 2020/12/02 1.0.33242.0
マップ Microsoft Corporation 2020/11/30 10.2011.4.0
日本語 ローカル エクスペリエンス パック Microsoft Corporation 2020/11/29 19041.12.28.0
Cortana Microsoft Corporation 2020/11/29 2.2011.11613.0
PrintDialog 2020/11/29
ペイントツールSAI Ver.1 2020/11/29
バッファロー らくらくアップデートツール Buffalo Inc. 2020/11/29 11.0 MB 1.12
Zoom Zoom Video Communications, Inc. 2020/11/29 9.76 MB 5.3.1 (52879.0927)
Vカツ / V-Katsu IVR 2020/11/29
Vortex Black Tree Gaming Ltd. 2020/11/29 312 MB 1.3.8
Visual Basic 6.0 Service Pack 6 Runtime Set 2020/11/29
Viridi Zoe Vartanian 2020/11/29
Uplay Ubisoft 2020/11/29 38.2
Undertale tobyfox 2020/11/29
TwitCasting Desktop Live 1.1.9 (only current user) moicorp 2020/11/29 221 MB 1.1.9
The Elder Scrolls V: Skyrim Special Edition Bethesda Game Studios 2020/11/29
Tablet Driver V5.02 2020/11/29
Steam Valve Corporation 2020/11/29 2.10.91.91
Stardew Valley ConcernedApe 2020/11/29
PDF-XChange Editor Tracker Software Products (Canada) Ltd. 2020/11/29 697 MB 8.0.343.0
OBS Studio OBS Project 2020/11/29 26.0.2
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 Microsoft Corporation 2020/11/29 20.1 MB 14.13.26020.0
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 Microsoft Corporation 2020/11/29 22.0 MB 14.27.29112.0
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 Microsoft Corporation 2020/11/29 17.1 MB 12.0.30501.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 Microsoft Corporation 2020/11/29 20.5 MB 12.0.30501.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2020/11/29 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2020/11/29 20.5 MB 11.0.61030.0
Microsoft OneDrive Microsoft Corporation 2020/11/29 147 MB 20.169.0823.0008
Microsoft Office Home and Business 2016 - ja-jp Microsoft Corporation 2020/11/29 16.0.13328.20356
Microsoft 365 Apps for enterprise - ja-jp Microsoft Corporation 2020/11/29 16.0.13328.20356
LINE LINE Corporation 2020/11/29 6.3.2.2338
JC-U2812F 2020/11/29
Grim Dawn Crate Entertainment 2020/11/29
EPSON Scan Seiko Epson Corporation 2020/11/29
EPSON EP-805A Series プリンター アンインストール SEIKO EPSON Corporation 2020/11/29
Discord Discord Inc. 2020/11/29 58.7 MB 0.0.308
DARK SOULS™ III FromSoftware, Inc. 2020/11/29
Cisco Webex Productivity Tools Cisco WebEx LLC 2020/11/29 40.11.1.1
CCleaner Piriform 2020/11/29 5.74
BUFFALO LAN端子用 無線子機設定ツール BUFFALO INC. 2020/11/29
BUFFALO AirStation倍速設定ツール(アンインストール) 2020/11/29
Blender Blender Foundation 2020/11/29
Avast Free Antivirus Avast Software 2020/11/29 20.9.2437
Adobe Flash Player 32 PPAPI Adobe 2020/11/29 4.06 MB 32.0.0.453
7-Zip 20.02 alpha (x64) Igor Pavlov 2020/11/29 5.01 MB 20.02 alpha
NVIDIA Control Panel NVIDIA Corp. 2020/11/28 8.1.959.0
Audacity 2.4.2 Audacity Team 2020/11/27 62.4 MB 2.4.2
黒い砂漠 PearlAbyss Corp. 2020/11/26 34.0 GB 1.0
Malwarebytes version 4.2.3.96 Malwarebytes 2020/11/25 4.2.3.96
Realtek Audio Console Realtek Semiconductor Corp 2020/11/23 1.14.226.0
Java 8 Update 271 (64-bit) Oracle Corporation 2020/11/23 125 MB 8.0.2710.9
Xbox Game Bar Microsoft Corporation 2020/11/21 5.420.11102.0
iTunes Apple Inc. 2020/11/21 12110.26.53016.0
Microsoft Update Health Tools Microsoft Corporation 2020/11/21 1.18 MB 2.70.0.0
映画 & テレビ Microsoft Corporation 2020/11/19 10.20092.14511.0
カメラ Microsoft Corporation 2020/11/17 2020.902.20.0
アプリ インストーラー Microsoft Corporation 2020/11/17 1.4.3161.0
Microsoft Store Microsoft Corporation 2020/11/15 12011.1001.1.0
MediBang Paint Pro 25.6 (64-bit) Medibang 2020/11/14 138 MB 25.6
OneNote for Windows 10 Microsoft Corporation 2020/11/13 16001.13328.20348.0
Phototastic Collage Thumbmunkeys Ltd 2020/11/13 3.23.1.0
NVIDIA グラフィックス ドライバー 457.30 NVIDIA Corporation 2020/11/10 457.30
NVIDIA HD オーディオ ドライバー 1.3.38.35 NVIDIA Corporation 2020/11/10 1.3.38.35
NVIDIA GeForce Experience 3.20.5.70 NVIDIA Corporation 2020/11/10 3.20.5.70
NVIDIA FrameView SDK 1.1.4923.29214634 NVIDIA Corporation 2020/11/10 1.1.4923.29214634
ヒント Microsoft Corporation 2020/11/06 9.12.32951.0
Microsoft Store エクスペリエンス ホスト Microsoft Corporation 2020/11/06 12011.1001.1.0
リモート デスクトップ Microsoft Corporation 2020/11/01 10.2.1535.0
Dolby Access Dolby Laboratories 2020/10/29 3.6.181.0
Xbox コンソール コンパニオン Microsoft Corporation 2020/10/27 48.70.21001.0
アラーム & クロック Microsoft Corporation 2020/10/23 10.2009.5.0
ボイス レコーダー Microsoft Corporation 2020/10/23 10.2009.2.0
電卓 Microsoft Corporation 2020/10/22 10.2009.4.0
Webp 画像拡張機能 Microsoft Corporation 2020/10/21 1.0.32731.0
Groove ミュージック Microsoft Corporation 2020/10/16 10.20092.10311.0
Puppet3R Leo-typeb 2020/10/12 2.53 MB 3.1.3
OBS-VirtualCam version 2.0.4 OBS 2020/10/12 3.18 MB 2.0.4
だれでもVtuber Falhong-Cha 2020/10/11 1.34 MB 1.0.0
メール/カレンダー Microsoft Corporation 2020/10/03 16005.13228.41011.0
ペイント 3D Microsoft Corporation 2020/10/03 6.2009.30067.0
HEIF 画像拡張機能 Microsoft Corporation 2020/10/01 1.0.32532.0
3D ビューアー Microsoft Corporation 2020/10/01 7.2009.29132.0
Microsoft Minesweeper Microsoft Studios 2020/09/29 3.1.9160.0
VP9 ビデオ拡張機能 Microsoft Corporation 2020/09/23 1.0.32521.0
Mixed Reality ポータル Microsoft Corporation 2020/09/18 2000.20081.1312.0
Microsoft Teams Microsoft Corporation 2020/09/18 92.8 MB 1.3.00.13565
フォト メディア エンジン アドオン Microsoft Corporation 2020/09/17 1.0.0.0
iCloud Outlook Apple Inc. 2020/09/17 3.86 MB 11.3.0.59
Microsoft ニュース Microsoft Corporation 2020/09/12 4.53.22541.0
Teams Machine-Wide Installer Microsoft Corporation 2020/09/11 93.6 MB 1.3.0.13565
切り取り & スケッチ Microsoft Corporation 2020/09/10 10.2008.2277.0
Microsoft 付箋 Microsoft Corporation 2020/08/09 3.7.142.0
Xbox Identity Provider Microsoft Corporation 2020/08/04 12.67.21001.0
UTAU 歌声合成ツール 飴屋プロジェクト 2020/07/08 4.67 MB 1.0.77
BSA Browser version 1.12.3 Alexander Ellingsen 2020/06/25 12.0 MB 1.12.3
問い合わせ Microsoft Corporation 2020/06/06 10.2004.31291.0
Xbox Game bar Microsoft Corporation 2020/06/06 1.54.4001.0
Cisco Webex Meetings デスクトップアプリ Cisco Webex LLC 2020/04/14 225 MB 40.10.6.11
People Microsoft Corporation 2020/04/07 10.1909.10841.0
Epson Software Updater Seiko Epson Corporation 2020/02/07 8.73 MB 4.5.1
RadioLine Free Coderium 2020/01/08 1.1.5.1
フィードバック Hub Microsoft Corporation 2019/12/14 1.1907.3152.0
DMMGamePlayer バージョン 2.4.6 DMM.com,Inc. 2019/11/08 316 MB 2.4.6
Colon Yamma-ma 2019/11/01 8.83 MB 2.1.0
Epic Games Launcher Epic Games, Inc. 2019/10/04 95.3 MB 1.1.229.0
MPEG-2 ビデオ拡張機能 Microsoft Corporation 2019/09/27 1.0.22661.0
Web メディア拡張機能 Microsoft Corporation 2019/08/21 1.0.20875.0
Microsoft Pay Microsoft Corporation 2019/08/21 2.4.18324.0
Update for Windows 10 for x64-based Systems (KB4023057) Microsoft Corporation 2019/08/03 1.42 MB 2.61.0.0
翻訳 Microsoft Corporation 2019/08/01 5.6.0.0
GD Defiler Soul's Services 2019/07/28 2.81 MB 0.2.4.0
NVIDIA PhysX システム ソフトウェア 9.19.0218 NVIDIA Corporation 2019/07/11 9.19.0218
MuseScore 3 Werner Schweer and Others 2019/07/04 299 MB 3.2.2.7534
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 11.1 MB 10.0.40219
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2019/05/20 13.8 MB 10.0.40219
Microsoft XNA Framework Redistributable 4.0 Refresh Microsoft Corporation 2019/05/17 9.45 MB 4.0.30901.0
Print 3D Microsoft Corporation 2019/04/25 3.3.791.0
VIP Access Symantec Corporation 2019/04/05 11.6 MB 2.2.4.44
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2019/04/05 13.2 MB 9.0.30729.6161
ドラゴンネスト 1705 HANGAME 2019/03/09 8.88 GB 1705
BUFFALO パソコン環境表示ツール Buffalo Inc. 2019/03/08 4.19 MB 1.2.1
BUFFALO クライアントマネージャV をアンインストール Buffalo Inc. 2019/03/08 13.2 MB 1.5.4
BUFFALO エアステーション設定ツール BUFFALO INC. 2019/03/08 2.95 MB 2.0.15
星座表 Escape Velocity Limited 2019/03/07 3.0.8.0
Fitbit Coach Fitbit 2019/03/07 4.4.133.0
LinkedIn LinkedIn 2019/03/07 2.1.7098.0
Xbox Live Microsoft Corporation 2019/03/07 1.24.10001.0
Xbox Game Speech Window Microsoft Corporation 2019/03/07 1.21.13002.0
PowerDVD for THIRDWAVE jp.cyberlink.com 2019/03/07 14.1.9606.0
Thunder Master v3.22 Palit Microsystems Ltd. 2019/03/07 17.4 MB 3.22.0.0
PHANTASY STAR ONLINE 2 SEGA Games Co., Ltd. 2019/03/07 7.19 MB
Minecraft Launcher Mojang 2019/03/07 1.44 MB 1.0.0.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2019/03/07 48.5 MB 9.0.30729.6161
HGパブリッシングゲーム 起動プログラム NHN Hangame Corp. 2019/03/07 6.66 MB 1.0.0.1
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2019/03/06 36.6 MB 6.0.1.8491
Realtek Ethernet Controller Driver Realtek 2019/03/06 4.57 MB 10.26.328.2018
Intel(R) Rapid Storage Technology Intel Corporation 2019/03/06 16.5.0.1027
Intel(R) Management Engine Components Intel Corporation 2019/03/06 1823.12.0.1137


CCスタートアップ Windows
無効 HKCU:Run CiscoMeetingDaemon Cisco Webex LLC "C:\Users\姓名\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
無効 HKCU:Run com.squirrel.Teams.Teams Microsoft Corporation C:\Users\姓名\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
有効 HKCU:Run Discord Discord Inc. C:\Users\姓名\AppData\Local\Discord\app-0.0.307\Discord.exe --start-minimized
有効 HKCU:Run OneDrive Microsoft Corporation "C:\Users\姓名\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
有効 HKCU:Run Steam Valve Corporation "C:\Program Files (x86)\Steam\steam.exe" -silent
有効 HKCU:Run THPanel Palit Microsystems Ltd. "C:\Program Files (x86)\Thunder Master\THPanel.exe" /A
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui
有効 HKLM:Run IAStorIcon Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run RtkAudUService Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe" -background
有効 HKLM:Run SecurityHealth Microsoft Corporation %windir%\system32\SecurityHealthSystray.exe
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run WTClient WTClient.exe
有効 Startup Common クライアントマネージャV.lnk Buffalo Inc. C:\Program Files (x86)\BUFFALO\clientmgrv\bin\cmvMain.exe
有効 Startup User らくらくアップデートツール.lnk Buffalo Inc. C:\Program Files\BUFFALO\RakUpdate\RakUpdate.exe


CCスタートアップ スケジュールタスク

有効 Task Adobe Flash Player PPAPI Notifier Adobe C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_453_pepper.exe -check pepperplugin
有効 Task Adobe Flash Player Updater Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
無効 Task CCleanerSkipUAC Piriform Software Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task MicrosoftEdgeUpdateTaskMachineCore Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c
有効 Task MicrosoftEdgeUpdateTaskMachineCore1d6c623a9310199 Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /c
有効 Task MicrosoftEdgeUpdateTaskMachineUA Microsoft Corporation C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe /ua /installsource scheduler
無効 Task NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
無効 Task NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
無効 Task NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
無効 Task NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
無効 Task NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
無効 Task NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
無効 Task NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} NVIDIA Corporation C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe
有効 Task OneDrive Standalone Update Task v2 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task OneDrive Standalone Update Task-S-1-5-21-68866919-1333413524-3689009959-1001 Microsoft Corporation %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
有効 Task ThunderMaster Palit Microsystems Ltd. C:\Program Files (x86)\Thunder Master\THPanel.exe /A


CCスタートアップ コンテキストメニュー

有効 Directory 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Directory PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 Directory ファイルの所有権
有効 Drive PowerShell ウィンドウをここで開く(S) powershell.exe -noexit -command Set-Location -literalPath '%V'
有効 File 00asw AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 File avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 File MBAMShlExt Malwarebytes D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\mbshlext.dll
有効 File PDFXChange Editor Context menu Tracker Software Products (Canada) Ltd. C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll
有効 Folder 7-Zip Igor Pavlov C:\Program Files\7-Zip\7-zip.dll
有効 Folder avast AVAST Software C:\Program Files\Avast Software\Avast\ashShell.dll
有効 Folder MBAMShlExt Malwarebytes D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\mbshlext.dll


CCスタートアップ Windowsサービス

無効 Service Adobe Flash Player Update Service Adobe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
無効 Service aswbIDSAgent AVAST Software "C:\Program Files\Avast Software\Avast\aswidsagent.exe"
有効 Service Avast Antivirus AVAST Software "C:\Program Files\Avast Software\Avast\AvastSvc.exe" /runassvc
有効 Service Avast Tools AVAST Software "C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
有効 Service AvastWscReporter AVAST Software "C:\Program Files\Avast Software\Avast\wsc_proxy.exe" /runassvc /rpcserver
有効 Service BWH32S Buffalo Inc. "C:\Program Files (x86)\BUFFALO\clientmgrv\bin\BWH32S.exe"
無効 Service Cisco WebEx Productivity Tools Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Plugins\webexservice.exe"
無効 Service Cisco WebEx Update Service Cisco WebEx LLC "C:\Program Files (x86)\Webex\Webex\Applications\WebExService.exe"
有効 Service DMMGamePlayerService DMMGAMES LLC "C:\Program Files (x86)\DMMGamePlayer\dgpservice.exe" is auto-started
有効 Service Epson Scanner Service Seiko Epson Corporation C:\Windows\system32\EscSvc64.exe
無効 Service Google Chrome Elevation Service Google LLC "C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\elevation_service.exe"
有効 Service Google Update サービス (gupdate) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
無効 Service Google Update サービス (gupdatem) Google Inc. "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
無効 Service Intel(R) Capability Licensing Service TCP IP Interface Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe"
有効 Service Intel(R) Dynamic Application Loader Host Interface Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
有効 Service Intel(R) Management and Security Application Local Management Service Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
有効 Service Intel(R) Rapid Storage Technology Intel Corporation "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
有効 Service Intel(R) TPM Provisioning Service Intel(R) Corporation "C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe"
無効 Service Malwarebytes Service Malwarebytes "D:\ドキュメント\B1脆弱性対策用\Malwarebytes\Anti-Malware\MBAMService.exe"
無効 Service nProtect GameGuard Service C:\Windows\system32\GameMon.des -service
有効 Service NVIDIA Display Container LS NVIDIA Corporation C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5dcb5bbf5c3edcf2\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
無効 Service NVIDIA FrameView SDK service NVIDIA "C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe" -service
有効 Service NVIDIA LocalSystem Container NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
無効 Service OpenSSH Authentication Agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
有効 Service Realtek Audio Universal Service Realtek Semiconductor "C:\WINDOWS\System32\RtkAudUService64.exe"
無効 Service Steam Client Service Valve Corporation "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
有効 Service VIPAppService Symantec Corporation "D:\App\VIP ACCESS\VIPAppService.exe"
有効 Service WinTab Service UC-Logic Technology Corp. "C:\WINDOWS\System32\Drivers\WTSRV.EXE"


CCブラウザプラグイン IE

有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.55\BHO\ie_to_edge_bho.dll
有効 Helper IEToEdge BHO Microsoft Corporation C:\Program Files (x86)\Microsoft\Edge\Application\87.0.664.55\BHO\ie_to_edge_bho_64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
有効 Helper Skype for Business Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
無効 Helper 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll
無効 Toolbar 生産性向上ツール Cisco WebEx LLC C:\Program Files (x86)\Webex\Plugins\ptonecli.dll


CCブラウザプラグイン Chrome

有効 App Gmail 8.3 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Gmail 8.3 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Google ドライブ 14.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App Google ドライブ 14.5 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App miku music 1.1 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\odfhgnckgjjgbljlfikcbdbdnpapmobo\1.1_0
有効 App Twitter 2020.12.5.27247 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi\2020.12.5.27247_0
有効 App YouTube 4.2.8 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App YouTube 4.2.8 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App とりとうさぎと 2020.11.24.42192 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmdbgomjbmaglkbnelbioemfeomeiih\2020.11.24.42192_0
有効 App ドラゴンネストR 2019.3.11.8194 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kibplilbehdjpkbgpndjpmhoeopmejlg\2019.3.11.8194_0
有効 App 黒い砂漠 2019.3.11.8378 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcpaignfemglimlkcjaedicilidjojcp\2019.3.11.8378_0
有効 Extension Adblock Plus - free ad blocker 3.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\3.10_0
有効 Extension Google オフライン ドキュメント 1.21.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Google オフライン ドキュメント 1.21.0 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Grammarly for Chrome 14.984.0 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen\14.984.0_0
有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0
有効 Extension Weblio エクステンション 2.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgnfefoljgaelbckgfbijijhblgophjo\2.5_0
有効 Extension Weblioポップアップ英和辞典 6.0.5 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oingodpdjohhkelnginmkagmkbplgema\6.0.5_0
有効 Extension スプレッドシート 1.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スプレッドシート 1.2 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スライド 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension スライド 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension ドキュメント 0.10 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension ドキュメント 0.10 aaa C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension 刀剣専覧-刀剣乱舞専用ブラウザ 0.1.9 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphpjhbabehcmdjobbjmbkgbbgipnppo\0.1.9_0
有効 Extension 英辞郎 on the WEB 拡張機能 1.5.2 デフォルトのプロフィール C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonalfdoahlmjaoloddjenihohbfodme\1.5.2_0


  • せーめー
  • 2020/12/06 (Sun) 19:42:20
SmaSurfだけ再度処置を
こんばんは。
様子見後の報告とログも見せてもらいました。

>その後、特に異常は見られませんでした

状態は安定しているようですね。
ログでも怪しいところは見えないので、ヤマも越えたとみていいでしょう。

では作業に使った各ツールは準備時の説明に沿って片づけていいです。

ところで無効化削除できないChrome拡張のSmaSurfですが、自分の環境で検証したところ普通に無効化も削除もできました。
Chromeをまるごとクリーンアップすれば他の拡張ともども消えるはずですが、再度確認をお願いします。

Chromeでログインしてその状態で下記画面を開いて

chrome://extensions/

その状態でSmaSurfを無効削除できるか試してください。

このあとChromeを終了後再度起動して確認後、結果を返信で教えてください


  • 悪代官
  • 2020/12/06 (Sun) 21:57:13
以前ご紹介いただいた方法で消せました!
https://aku-dai-kan.hateblo.jp/entry/57755938
こちらで紹介されている方法試しました!
SmaSurfちゃんはよいのですが、App miku music が無事消えました!!!
CCのログ貼っておきます!ありがとうございます!!!

有効 App Gmail 8.3 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.3_0
有効 App Google ドライブ 14.5 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.5_0
有効 App Twitter 2020.12.6.39748 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgeocpdicgmkeemopbanhokmhcgcflmi\2020.12.6.39748_0
有効 App YouTube 4.2.8 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0
有効 App とりとうさぎと 2020.12.6.39753 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjmdbgomjbmaglkbnelbioemfeomeiih\2020.12.6.39753_0
有効 App ドラゴンネストR 2020.12.6.39754 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kibplilbehdjpkbgpndjpmhoeopmejlg\2020.12.6.39754_0
有効 App 黒い砂漠 2020.12.6.39750 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcpaignfemglimlkcjaedicilidjojcp\2020.12.6.39750_0
有効 Extension Adblock Plus - free ad blocker 3.10 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\3.10_0
有効 Extension Google オフライン ドキュメント 1.21.0 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.21.0_0
有効 Extension Grammarly for Chrome 14.984.0 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen\14.984.0_0
有効 Extension SmaSurf for Webブラウザ拡張機能 3.4.6 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbilhcaegfmcpmlnpcogdgfchpodhcih\3.4.6_0
有効 Extension Weblio エクステンション 2.5 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgnfefoljgaelbckgfbijijhblgophjo\2.5_0
有効 Extension Weblioポップアップ英和辞典 6.0.5 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oingodpdjohhkelnginmkagmkbplgema\6.0.5_0
有効 Extension スプレッドシート 1.2 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0
有効 Extension スライド 0.10 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0
有効 Extension ドキュメント 0.10 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0
有効 Extension 刀剣専覧-刀剣乱舞専用ブラウザ 0.1.9 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphpjhbabehcmdjobbjmbkgbbgipnppo\0.1.9_0
有効 Extension 英辞郎 on the WEB 拡張機能 1.5.2 ユーザー 1 C:\Users\姓名\AppData\Local\Google\Chrome\User Data\Default\Extensions\oonalfdoahlmjaoloddjenihohbfodme\1.5.2_0
  • せーめー
  • 2020/12/06 (Sun) 23:43:10
力業が効きましたか
こんばんは。
作業と報告、ご苦労様です。

>SmaSurfちゃんはよいのですが、App miku music が無事消えました!!!

はい、力業での掃除が効いたようですね。それならなによりです。

行儀悪いブラウザ拡張は少なくありませんが対処は各事例に応じて違う対応や手順が求められることが多く、Chromeの場合はなおさら手間かかることもあります。
マルウェアレベルの悪質拡張でもMBAMやACでスキャンして見つかったものを隔離削除すれば片付くという楽な流れは期待できないので、ある程度は手動目視での作業を頭に入れておきましょう。

現在他に異常もなくなっていればヤマも越えたとみて「解決」にしますか。
作業に使った各ツールは準備時の説明に沿って片づけていいです。

ブラウザの設定を少し固めるだけでも、セキュリティ上の効果を高めることが可能です。
「インターネットオプション」→「プライバシー」→「詳細設定」と開いて、「自動cookie処理」と「サードパーティのcookieをブロック」にチェックして「適用」して「OK」。
これをやっておくと、多くの危険サイトからの保護にかなり有効です。
が、これもすべての危険サイトに有効でもないし、本物の危険サイトではこの程度ではまったく太刀打ちできないので、過信はしないこと。
また、「すべてのcookieをブロックする」設定にすると、プロバイダのメールボックスなどログイン必要なページに入れなくなる弊害も出るので、これは状況を考えて使い分けるといいでしょう。
安全なサイトでもcookieブロックだと閲覧や投稿ができなくなるところもあるのでこれも注意。

次に、アンチウイルスやファイアウォール等のセキュリティソフトの使い方も注意してください。
セキュリティソフトはただ入れてさえいればそれだけでフル機能を発揮するものではありません。
設定と機能をできるだけ把握して、正しく使うことが重要です。
間違った使い方すると、本来ならブロックできた感染でもあっさりスルーします。

また、いくら高性能なセキュリティソフトがあっても、ユーザーが自分から危険なサイトやファイルにアクセスしてたらまったく保護もできません。
セキュリティソフトは使い方次第でその性能を、倍にも半にも無にも変動させます。

そして百聞は一見にしかず。
この掲示板で継続中や解決済みの他スレもできるだけ見ておくことをおすすめします。
同様、類似、別種含めて参考になる部分は多いでしょう。

ブラウザ拡張によるトラブルは年々増えており、当掲示板だけでも5年、3年前とは各段の開きが見えていて、悪意の者側の狙いがうかがえます。
便利さと安全を秤にかけての判断は常にお忘れなく。

慣れない作業を頑張ってくれてお疲れさまでした。
以後は安全で快適なPCライフを
  • 悪代官
  • 2020/12/07 (Mon) 22:18:15

返信フォーム






プレビュー (投稿前に内容を確認)