悪代官の伏魔殿掲示板
Montera.Toolbarの削除方法について
こんにちは
今回SpybotでスキャンしたところMontera.Toolbar が入っていてそれを削除したいのですが、よろしければ方法を教えていただけませんか?

hijackthis.logは以下の通りです

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:04:01, on 2013/06/26
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16611)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduPlatform.exe
C:\Windows\PLFSetI.exe
C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
C:\Users\OWNER\AppData\Roaming\WebCake\WebCakeDesktop.exe
C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Windows\SysWOW64\WTClient.exe
C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology

\IAStorIcon.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager

\BackupManagerTray.exe
C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSpeed.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar

\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier

\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduIME.exe
C:\Users\OWNER\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-

D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -

C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID サインイン ヘルパー - {9030D464-4C02-

4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files

\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-

4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live

\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-

CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar

\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll
O2 - BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-

A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.21.5\bh

\delta.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-

9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06}

- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-

009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar

\GoogleToolbar_32.dll
O3 - Toolbar: Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3}

- C:\Program Files (x86)\Delta\delta\1.8.21.5\deltaTlbr.dll
O4 - HKLM\..\Run: [NielsenOnline] C:\Program Files

(x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
O4 - HKLM\..\Run: [WTClient] WTClient.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager

\LManager.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R)

Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files

(x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe"

-h -k
O4 - HKLM\..\Run: [PMSpeed] C:\Program Files (x86)\NewSoft\Presto!

PageManager 9.02\PMSpeed.EXE
O4 - HKLM\..\Run: [BrRssUtility] C:\Program Files (x86)\Brother

\RSSUtility\BrRssWatcher.exe /autorun
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files

(x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files

(x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast

\avastUI.exe" /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files

\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files

\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes

\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files

(x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search &

Destroy 2\SDTray.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google

\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar

\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WebCake Desktop] "C:\Users\OWNER\AppData\Roaming

\WebCake\WebCakeDesktop.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files

\Adobe\Calibration\Adobe Gamma Loader.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion

\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} -

C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer

\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-

D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer

\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live

\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-

A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer

\WriterBrowserExtension.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-

AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-

8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263}

- C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common

files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common

files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {2A7EFEAA-8059-4C69-8FE2-4BA999C3B102} (TrickCtrl Class)

- https://ssl2.gcrest.com/trickster/cabs/TrickLauncher.cab
O16 - DPF: {2B658B62-1B6F-4CFF-8A7C-225B7BB15336} (CrochetCtrl

Control) - http://static1.dotbook.jp/plugins/crochet_plug/T-

TimeCrochet.cab#version=1,1,0,3
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -

http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{890B1F9E-B92D-43F0-BEE0-

7F06175695CD}: NameServer = 192.168.2.253,133.5.6.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList =

shudo-u.ac.jp
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList =

shudo-u.ac.jp
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList =

shudo-u.ac.jp
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-

07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -

C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:

\Program Files (x86)\Windows Live\Photo Gallery

\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: c:

\progra~3\browse~1\261339~1.144\{c16c1~1\browse~1.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files

(x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) -

Adobe Systems Incorporated - C:\Program Files (x86)\Common Files

\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service

(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:

\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown

owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files

(x86)\Common Files\Apple\Mobile Device Support

\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files

\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Baidu Japanese IME Service_3.3.2.1

(BaiduJP_IME_Service_3.3.2.1) - Baidu Inc. - C:\Program Files

(x86)\Baidu\IME\3.3.2.1\BaiduJPServ.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:

\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrowserDefendert - Unknown owner - C:\ProgramData

\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-

533ad2fec8e8}\BrowserDefender.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files

(x86)\Browny02\BrYNSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System

Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) -

Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated -

C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO

EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) -

Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files

(x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Google アップデート サービス (gupdate) (gupdate) -

Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google

Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program

Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc)

- Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid

Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:

\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:

\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local

Management Service (LMS) - Intel Corporation - C:\Program Files

(x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) -

Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance

Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:

\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Nielsen Update (NielsenUpdate) - Unknown owner - C:

\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner

- C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:

\Program Files (x86)\NewTech Infosystems\Acer Backup Manager

\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) -

NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech

Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc)

- NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech

Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300

(ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe

(file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) -

Unknown owner - C:\Program Files (x86)\PLANEX ClientManager

\RalinkRegistryWriter.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -

Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) -

Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search &

Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) -

Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search &

Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) -

Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search &

Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies -

C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -

Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) -

Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) -

Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect)

- Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User

Notification Service (UNS) - Intel Corporation - C:\Program Files

(x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer

\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc)

- Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown

owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown

owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601

(WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat

\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) -

Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WebCake Desktop Updater - WebCake LLC - C:\Program

Files (x86)\WebCake\WebCakeDesktop.Updater.exe
O23 - Service: WinTab Service (WinTabService) - Unknown owner - C:

\Windows\System32\Drivers\WTSRV.EXE (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110

(wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe

(file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-

101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows

Media Player\wmpnetwk.exe (file missing)

--
End of file - 15433 bytes

uninstallpgnamelist.txtは以下のとおりです

----- HKLM -----

"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB983571)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB983182)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB982638)"
"DisplayName"="Update for 2007 Microsoft Office System (KB967642)"
"DisplayName"="Microsoft Office Excel 2007 Help 更新プログラム (KB963678)"
"DisplayName"="Microsoft Office Outlook 2007 Help 更新プログラム (KB963677)"
"DisplayName"="Microsoft Office Powerpoint 2007 Help 更新プログラム (KB963669)"
"DisplayName"="Microsoft Office Word 2007 Help 更新プログラム (KB963665)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2836939)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2835393)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2832407)"
"DisplayName"="Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2736428)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2732797)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2698021)"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition "
"DisplayName"="Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition "
"DisplayName"="Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2639327)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600211)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2600217)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2599651)"
"DisplayName"="Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2597120) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition "
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572063)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2544514)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2533523)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 (KB2518870)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2514805)"
"DisplayName"=" Update for Microsoft Office 2007 (KB2508958)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 (KB2478663)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478063)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2468871)"
"DisplayName"="Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2162169)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)"
"DisplayName"="({F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2028562)"
"DisplayName"="(Connection Manager)"
"DisplayName"="(DirectDrawEx)"
"DisplayName"="(Fontcore)"
"DisplayName"="(IE40)"
"DisplayName"="(IE4Data)"
"DisplayName"="(IE5BAKEX)"
"DisplayName"="(IEData)"
"DisplayName"="(InstallShield Uninstall Information)"
"DisplayName"="(MobileOptionPack)"
"DisplayName"="(SchedulingAgent)"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83217021FB})"
"DisplayName"="({494FCC24-695F-4F74-BE13-9327AC7F3A69})"
"DisplayName"="({BB8B979E-E336-47E7-96BC-1031C1B94561})"
"DisplayName"="003SH USB Driver"
"DisplayName"="2007 Office system 互換機能パック"
"DisplayName"="Acer Backup Manager"
"DisplayName"="Acer Crystal Eye webcam Ver:1.1.167.331"
"DisplayName"="Acer ePower Management"
"DisplayName"="Acer eRecovery Management"
"DisplayName"="Acer Registration"
"DisplayName"="Acer ScreenSaver"
"DisplayName"="Acer Updater"
"DisplayName"="Acrobat.com"
"DisplayName"="Adobe AIR"
"DisplayName"="Adobe AIR"
"DisplayName"="Adobe Bridge 1.0"
"DisplayName"="Adobe Common File Installer"
"DisplayName"="Adobe Flash Player 11 ActiveX"
"DisplayName"="Adobe Flash Player 11 Plugin"
"DisplayName"="Adobe Help Center 1.0"
"DisplayName"="Adobe Illustrator CS2"
"DisplayName"="Adobe Illustrator CS2"
"DisplayName"="Adobe Photoshop CS2"
"DisplayName"="Adobe Photoshop CS2"
"DisplayName"="Adobe Reader X (10.1.7) - Japanese"
"DisplayName"="Adobe Stock Photos 1.0"
"DisplayName"="Adobe SVG Viewer 3.0"
"DisplayName"="Apple Application Support"
"DisplayName"="Apple Software Update"
"DisplayName"="avast! Free Antivirus"
"DisplayName"="Babylon toolbar on IE"
"DisplayName"="Backup Manager Basic"
"DisplayName"="Baidu IME 3.3"
"DisplayName"="Brother ドライバー&ソフトウェア DCP-J940N"
"DisplayName"="BrowserDefender"
"DisplayName"="CoreAAC"
"DisplayName"="Craving Explorer Version 1.5.1"
"DisplayName"="CyberLink PowerDVD 9"
"DisplayName"="CyberLink PowerDVD 9"
"DisplayName"="D3DX10"
"DisplayName"="Delta Chrome Toolbar"
"DisplayName"="Delta toolbar "
"DisplayName"="Dendroscope 1.2.1"
"DisplayName"="eSobi v2"
"DisplayName"="eSobi v2"
"DisplayName"="Gian・carlo’S LUCKY HAPPY LIFE"
"DisplayName"="Gian・carlo’S LUCKY HAPPY LIFE"
"DisplayName"="GOM Audio"
"DisplayName"="GOM ENCODER"
"DisplayName"="GOM PICKER"
"DisplayName"="GOM Player"
"DisplayName"="Google Chrome"
"DisplayName"="Google Toolbar for Internet Explorer"
"DisplayName"="Google Toolbar for Internet Explorer"
"DisplayName"="Google Update Helper"
"DisplayName"="Identity Card"
"DisplayName"="Intel(R) Control Center"
"DisplayName"="Intel(R) Graphics Media Accelerator Driver"
"DisplayName"="Intel(R) Management Engine Components"
"DisplayName"="Intel(R) Rapid Storage Technology"
"DisplayName"="Java 7 Update 25"
"DisplayName"="Java Auto Updater"
"DisplayName"="Junk Mail filter update"
"DisplayName"="Launch Manager"
"DisplayName"="Mesh Runtime"
"DisplayName"="Messenger Companion"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office Access MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Excel MUI (Japanese) 2007"
"DisplayName"="Microsoft Office File Validation Add-In"
"DisplayName"="Microsoft Office IME (Japanese) 2007"
"DisplayName"="Microsoft Office Outlook MUI (Japanese) 2007"
"DisplayName"="Microsoft Office PowerPoint MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Professional 2007"
"DisplayName"="Microsoft Office Professional 2007"
"DisplayName"="Microsoft Office Proof (English) 2007"
"DisplayName"="Microsoft Office Proof (Japanese) 2007"
"DisplayName"="Microsoft Office Proofing (Japanese) 2007"
"DisplayName"="Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office Publisher MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Shared MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Word MUI (Japanese) 2007"
"DisplayName"="Microsoft SQL Server 2005 Compact Edition [ENU]"
"DisplayName"="Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053"
"DisplayName"="Microsoft Visual C++ 2005 Redistributable"
"DisplayName"="Microsoft Visual C++ 2005 Redistributable"
"DisplayName"="Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148"
"DisplayName"="Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022"
"DisplayName"="Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17"
"DisplayName"="Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161"
"DisplayName"="MixiDJ Chrome Toolbar"
"DisplayName"="Mozilla Firefox 21.0 (x86 ja)"
"DisplayName"="Mozilla Maintenance Service"
"DisplayName"="MSVCRT"
"DisplayName"="MSVCRT_amd64"
"DisplayName"="NewSoft CD Labeler"
"DisplayName"="Nielsen"
"DisplayName"="NTI Backup Now 5"
"DisplayName"="NTI Backup Now Standard"
"DisplayName"="NTI Media Maker 8"
"DisplayName"="NTI Media Maker 8"
"DisplayName"="Presto! PageManager 9.02"
"DisplayName"="Realtek High Definition Audio Driver"
"DisplayName"="Realtek USB 2.0 Card Reader"
"DisplayName"="RPGツクール2000 ランタイムパッケージ"
"DisplayName"="SHARP Android端末用 メジャーアップデートツール"
"DisplayName"="Skype Toolbars"
"DisplayName"="Skype(TM) 6.0"
"DisplayName"="SoundEngine Free"
"DisplayName"="Spybot - Search & Destroy"
"DisplayName"="T-Time 5.5.8"
"DisplayName"="Welcome Center"
"DisplayName"="Windows 7 Upgrade Advisor"
"DisplayName"="Windows Live Communications Platform"
"DisplayName"="Windows Live Essentials"
"DisplayName"="Windows Live Essentials"
"DisplayName"="Windows Live Installer"
"DisplayName"="Windows Live Mail"
"DisplayName"="Windows Live Mesh"
"DisplayName"="Windows Live Mesh"
"DisplayName"="Windows Live Messenger"
"DisplayName"="Windows Live Messenger"
"DisplayName"="Windows Live Messenger Companion Core"
"DisplayName"="Windows Live Movie Maker"
"DisplayName"="Windows Live Movie Maker"
"DisplayName"="Windows Live Photo Common"
"DisplayName"="Windows Live Photo Common"
"DisplayName"="Windows Live Photo Gallery"
"DisplayName"="Windows Live PIMT Platform"
"DisplayName"="Windows Live SOXE"
"DisplayName"="Windows Live SOXE Definitions"
"DisplayName"="Windows Live Sync"
"DisplayName"="Windows Live UX Platform"
"DisplayName"="Windows Live UX Platform Language Pack"
"DisplayName"="Windows Live Writer"
"DisplayName"="Windows Live Writer"
"DisplayName"="Windows Live Writer"
"DisplayName"="Windows Live Writer Resources"
"DisplayName"="Windows Live フォト ギャラリー"
"DisplayName"="Windows Live メール"
"DisplayName"="コミックシーモア"
"DisplayName"="スタートアップツール"
"DisplayName"="リモート接続用の Windows Live Mesh ActiveX コントロール (日本語)"

----- HKCU -----

"DisplayName"="(Google Chrome)"
"DisplayName"="Update for Word Viewer"
"DisplayName"="Word Viewer Packages"
"DisplayName"="『ラッキードッグ1』 1.10"

--- End of uninstallpgnamelist.txt ---

よろしくお願いします
  • mike
  • 2013/06/26 (Wed) 21:23:38
返信フォームへ 
Re: Montera.Toolbarの削除方法について
こんばんは、こちらで回答しておりますイルカです。管理人の悪代官さんではありませんがご勘弁を。

ログからはMontera.Toolbarがどれなのかの判別はつきませんが、定番の迷惑ツールバー・迷惑ソフトの類が多数いるようです。
順番に処置しましょう。手順を、上から順に行ってください。



■ソフトウェアの更新
以下のソフトはバージョンが古いので、特別な理由のない限りアップデートを推奨します。
古いバージョンのソフトにはセキュリティ上の脆弱性があり、ウイルスに狙われる定番となっていますので。
使っていないのであればアンインストールしてもいいでしょう。
・Skype(TM) 6.0


■不要と思われるソフトウェアのアンインストール
コントロールパネルからで構いません。

・Babylon toolbar on IE
・BrowserDefender
・Delta Chrome Toolbar
・Delta toolbar
アドウェアのようです。アンインストールを推奨します。

・Update for Word Viewer
・Word Viewer Packages
怪しいソフトです。入れた覚えが無ければアンインストールを。



■AdwCleanerでの処置
以下のアドレスから、AdwCleanerをダウンロードして、デスクトップに置いてください。
http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner

まず、起動中のアプリをすべて終了し、必要なデータを保存してください。
次に、先ほどと同様にAdwCleanerを起動し、今度は「Delete」をクリックしてください。
出てきた画面で「はい」を押すと、全てのプロセスが強制終了されたうえで、駆除が実行されます。
再起動を要求する画面が出たら「OK」などで再起動してください。
再起動後、ログが出ますので、その内容を同様に貼り付けてください。



■OTLによる解析(本文)
以下にある(直リンクです)解析ツール「OTL」(OldTimer Listit)をダウンロードし、デスクトップに置いてください。
ウイルス対策ソフトやブラウザから危険判定されるかもしれませんが、誤検知ですので気にしないで進めてください。
http://oldtimer.geekstogo.com/OTL.exe
実行後、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、また「Scan 64bit Files」があった場合には、それにもチェックを入れてください。
次に、「Extra Registry」を「Use SafeList」に設定してください。
その後、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

DRIVES
BASESERVICES
CREATERESTOREPOINT

その後、左上の「Run Scan」を押してください。
数分すると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に出来ます。

これらのファイルの内容を本文に貼り付けてください。結構長いので、分割しないと切れてしまいます。
途中の「
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]」あたりで分割してみてください。
  • イルカ
  • 2013/06/26 (Wed) 22:29:51
返信フォームへ 
Re: Montera.Toolbarの削除方法について
こんばんは
早速の回答ありがとうございます
ソフトウェアの更新とアンインストールは済ませました

AdwCleaner[S1].txtのログは以下のとおりです

# AdwCleaner v2.303 - Logfile created 06/27/2013 at 00:10:35
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : OWNER - OWNER-PC
# Boot Mode : Normal
# Running from : C:\Users\OWNER\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : WebCake Desktop Updater

***** [Files / Folders] *****

Deleted on reboot : C:\ProgramData\BrowserDefender
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins

\babylon.xml
File Deleted : C:\Users\OWNER\AppData\Local\funmoods-speeddial.crx
File Deleted : C:\Users\OWNER\AppData\Local\Google\Chrome\User Data

\Default\Local Storage

\hxxp_fbtemplate.conduitapps.com_0.localstorage
File Deleted : C:\Users\OWNER\AppData\Local\Google\Chrome\User Data

\Default\Local Storage

\hxxp_fbtemplate.conduitapps.com_0.localstorage-journal
File Deleted : C:\Users\OWNER\AppData\Local\Google\Chrome\User Data

\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\OWNER\AppData\Local\Google\Chrome\User Data

\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-

journal
File Deleted : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox

\Profiles\gryd7ndo.default-1363874988536\searchplugins\delta.xml
File Deleted : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox

\Profiles\gryd7ndo.default-1363874988536\searchplugins\mixidj.xml
File Deleted : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox

\Profiles\s6sbxh36.default\searchplugins\Babylon.xml
File Deleted : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox

\Profiles\s6sbxh36.default\searchplugins\delta.xml
File Deleted : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox

\Profiles\s6sbxh36.default\searchplugins\mixidj.xml
File Deleted : C:\Windows\Tasks\DSite.job
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions

\ffxtlbr@babylon.com
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\OWNER\AppData\Local\Conduit
Folder Deleted : C:\Users\OWNER\AppData\Local\Google\Chrome\User

Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Folder Deleted : C:\Users\OWNER\AppData\Local\OpenCandy
Folder Deleted : C:\Users\OWNER\AppData\Local\PackageAware
Folder Deleted : C:\Users\OWNER\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\OWNER\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\OWNER\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\OWNER\AppData\LocalLow\Veoh_Web_Player
Folder Deleted : C:\Users\OWNER\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\OWNER\AppData\Roaming\Babylon
Folder Deleted : C:\Users\OWNER\AppData\Roaming\CRMixiDJTB
Folder Deleted : C:\Users\OWNER\AppData\Roaming\DSite
Folder Deleted : C:\Users\OWNER\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext

\Settings\{4D6A9BBF-402C-4301-B1EF-28D04F71D761}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext

\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext

\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\f488dcbc3dea45
Key Deleted : HKCU\Software\Microsoft\Internet Explorer

\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer

\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer

\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-

6EF2BBE6E706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-

F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-

0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-

02891F1D8D3C}
Key Deleted : HKLM\Software\Classes\Installer\Features

\FA26994B9BACED4478924A63F944ABD0
Key Deleted : HKLM\Software\Classes\Installer\Products

\FA26994B9BACED4478924A63F944ABD0
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\ConduitInstaller_veoh_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\ConduitInstaller_veoh_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\FunmoodsLatest_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\FunmoodsLatest_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing

\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-

F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\f488dcbc3dea45
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions

\boipimhfjpakfgckhbljjengakjhkcbp
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer

\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer

\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows

\CurrentVersion\Uninstall\{B49962AF-CAB9-44DE-8729-A4369F44BA0D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-

AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-

AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-

B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-

914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-

96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-

B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-

B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-

9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-

B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-

A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-

88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-

A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-

AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-

B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions

\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions

\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer

\Main - Default_Search_URL] = hxxp://isearch.glarysoft.com/?

src=iesearch --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl -

(Par defaut)] = hxxp://isearch.glarysoft.com/?q=%s&src=iesearch -->

Empty data

-\\ Mozilla Firefox v21.0 (ja)

File : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox\Profiles

\gryd7ndo.default-1363874988536\prefs.js

C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox\Profiles

\gryd7ndo.default-1363874988536\user.js ... Deleted !

[OK] File is clean.

File : C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox\Profiles

\s6sbxh36.default\prefs.js

C:\Users\OWNER\AppData\Roaming\Mozilla\Firefox\Profiles

\s6sbxh36.default\user.js ... Deleted !

Deleted : user_pref("extensions.delta.admin", false);
Deleted : user_pref("extensions.delta.aflt", "babsst");
Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-

8F2E-0EDE6CF018F3}");
Deleted : user_pref("extensions.delta.autoRvrt", "false");
Deleted : user_pref("extensions.delta.dfltLng", "ja");
Deleted : user_pref("extensions.delta.excTlbr", false);
Deleted : user_pref("extensions.delta.ffxUnstlRst", true);
Deleted : user_pref("extensions.delta.id",

"d2f58164000000000000f07bcb502ba5");
Deleted : user_pref("extensions.delta.instlDay", "15881");
Deleted : user_pref("extensions.delta.instlRef", "sst");
Deleted : user_pref("extensions.delta.newTab", false);
Deleted : user_pref("extensions.delta.prdct", "delta");
Deleted : user_pref("extensions.delta.prtnrId", "delta");
Deleted : user_pref("extensions.delta.rvrt", "false");
Deleted : user_pref("extensions.delta.smplGrp", "none");
Deleted : user_pref("extensions.delta.tlbrId", "base");
Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");
Deleted : user_pref("extensions.delta.vrsn", "1.8.21.5");
Deleted : user_pref("extensions.delta.vrsnTs", "1.8.21.52:06:18");
Deleted : user_pref("extensions.delta.vrsni", "1.8.21.5");
Deleted : user_pref("extensions.delta_i.babExt", "");
Deleted : user_pref("extensions.delta_i.babTrack",

"affID=119357&tt=250613_gr1&tsp=4924");
Deleted : user_pref("extensions.delta_i.srcExt", "ss");
Deleted : user_pref("extensions.mixidj.tlbrId", "mdelta");

-\\ Google Chrome v27.0.1453.116

File : C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default

\Preferences

[OK] File is clean.

File : C:\Users\maki.OWNER-PC\AppData\Local\Google\Chrome\User Data

\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [10394 octets] - [27/06/2013 00:10:35]

########## EOF - C:\AdwCleaner[S1].txt - [10455 octets] ##########

OTL.txtのログ途中までです

OTL logfile created on: 2013/06/27 0:29:01 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\OWNER\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.74 Gb Total Physical Memory | 0.40 Gb Available Physical Memory | 22.95% Memory free
3.48 Gb Paging File | 1.55 Gb Available in Paging File | 44.58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.64 Gb Total Space | 378.52 Gb Free Space | 83.81% Space Free | Partition Type: NTFS

Computer Name: OWNER-PC | User Name: OWNER | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - File not found --
PRC - [2013/06/27 00:25:48 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\OWNER\Desktop\OTL.exe
PRC - [2013/06/22 16:03:33 | 000,308,816 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2013/05/16 10:59:00 | 003,830,224 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2013/05/16 10:56:34 | 001,033,688 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2013/05/16 10:56:30 | 001,817,560 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2013/05/15 13:21:32 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
PRC - [2013/05/10 16:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/05/09 17:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/05/09 17:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/04/19 16:35:36 | 002,833,120 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
PRC - [2013/04/16 12:40:34 | 000,865,456 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\ServAgent.exe
PRC - [2013/04/16 12:39:58 | 000,937,648 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduPlatform.exe
PRC - [2013/04/16 12:39:46 | 000,233,136 | ---- | M] (Baidu Inc.) -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduJPServ.exe
PRC - [2013/04/16 12:39:40 | 000,837,296 | ---- | M] (Baidu) -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduIME.exe
PRC - [2012/08/28 12:00:32 | 001,327,104 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
PRC - [2012/08/28 11:55:16 | 000,393,216 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
PRC - [2012/08/01 15:06:48 | 000,120,192 | ---- | M] (NewSoft Technology Corporation) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSpeed.exe
PRC - [2012/06/06 15:31:56 | 003,076,096 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
PRC - [2012/06/05 15:56:28 | 000,266,240 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Browny02\BrYNSvc.exe
PRC - [2010/12/06 19:29:08 | 000,206,208 | ---- | M] () -- C:\Windows\PLFSetI.exe
PRC - [2010/11/17 11:38:00 | 000,047,424 | ---- | M] (The Nielsen Company) -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe
PRC - [2010/04/08 13:18:39 | 000,298,064 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe
PRC - [2010/04/08 13:18:38 | 000,908,368 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2010/04/08 13:18:38 | 000,312,400 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2010/03/18 13:57:02 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010/03/18 13:56:56 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010/03/08 16:58:24 | 000,250,368 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
PRC - [2010/03/08 16:56:38 | 000,260,608 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
PRC - [2010/01/28 16:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/01/08 22:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
PRC - [2009/12/23 17:39:04 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009/12/23 17:39:02 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009/11/20 14:14:52 | 000,712,704 | R--- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Brother\RssUtility\BrRssWatcher.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2013/06/22 16:29:32 | 011,914,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\ce6b7579fbb77330560e9122d1cf6526\System.Web.ni.dll
MOD - [2013/06/22 16:29:21 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b6eb138c3c9be780acb767c1bef572c1\System.Runtime.Remoting.ni.dll
MOD - [2013/05/16 11:10:51 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
MOD - [2013/05/16 11:10:28 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
MOD - [2013/05/16 11:10:18 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
MOD - [2013/05/16 10:55:28 | 000,161,112 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
MOD - [2013/05/16 10:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2013/05/16 10:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
MOD - [2013/04/19 16:33:50 | 000,502,784 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\nsmmc.dll
MOD - [2013/04/16 12:40:42 | 000,843,952 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\SNSToolBar.dll
MOD - [2013/04/16 12:40:38 | 001,344,688 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\AAUI.dll
MOD - [2013/04/16 12:40:34 | 000,865,456 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\ServAgent.exe
MOD - [2013/04/16 12:40:18 | 000,988,336 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\ImeSkin.dll
MOD - [2013/04/16 12:40:12 | 000,173,744 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\cmph.dll
MOD - [2013/04/16 12:39:58 | 000,937,648 | ---- | M] () -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduPlatform.exe
MOD - [2013/03/20 16:55:22 | 000,753,664 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\npfirefoxprocessor.dll
MOD - [2013/03/20 16:54:10 | 000,224,768 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\npwmi.dll
MOD - [2013/03/20 16:53:56 | 000,228,864 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\npsurvey.dll
MOD - [2013/03/20 16:53:48 | 000,150,528 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\npsp1.dll
MOD - [2013/03/20 16:53:38 | 000,503,808 | ---- | M] () -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\communication.dll
MOD - [2013/01/28 13:08:56 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2013/01/28 13:08:28 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013/01/11 04:09:19 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/11 04:08:58 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/11 04:08:53 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/11 04:08:48 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2012/08/21 15:39:22 | 000,262,144 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMScnSet.dll
MOD - [2012/08/20 15:39:06 | 004,603,904 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMView.dll
MOD - [2012/08/20 11:45:12 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMCommon.dll
MOD - [2012/08/01 14:51:30 | 000,315,459 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSave.dll
MOD - [2012/08/01 14:51:14 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PerformOcr.dll
MOD - [2012/08/01 14:50:46 | 000,643,072 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMDB_N.dll
MOD - [2012/07/24 10:13:32 | 000,364,544 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMTree.dll
MOD - [2012/07/24 10:13:16 | 000,335,872 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMAppBar.dll
MOD - [2012/05/28 10:47:10 | 000,434,176 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMPageVW.dll
MOD - [2012/05/28 10:43:40 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMISM.dll
MOD - [2012/05/28 10:43:24 | 000,184,320 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMImgVW.dll
MOD - [2012/05/28 10:43:06 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMDocVW.dll
MOD - [2012/05/10 14:47:48 | 000,106,496 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMProp.dll
MOD - [2011/12/20 11:43:56 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMPDFView.dll
MOD - [2011/07/20 09:47:42 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMOffice.dll
MOD - [2011/06/23 15:16:50 | 000,151,040 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\ScanModule.dll
MOD - [2011/02/24 14:25:06 | 000,323,584 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMAnoSet.dll
MOD - [2010/12/06 19:29:08 | 000,206,208 | ---- | M] () -- C:\Windows\PLFSetI.exe
MOD - [2010/11/26 10:45:10 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMImageSplitter.dll
MOD - [2010/11/13 09:00:19 | 000,348,160 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_ja_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010/10/22 10:01:46 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSet.dll
MOD - [2010/09/09 18:00:40 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMINSO.dll
MOD - [2010/09/08 17:10:10 | 000,073,728 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\OutlookVBA.dll
MOD - [2010/08/03 10:51:10 | 001,036,288 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\SlideBarDLL.dll
MOD - [2010/04/27 15:20:18 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMStatus.dll
MOD - [2010/03/08 17:18:10 | 000,465,576 | ---- | M] () -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
MOD - [2009/11/26 17:49:38 | 000,081,920 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\NetFun2K.dll
MOD - [2009/09/09 14:44:26 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMANO.dll
MOD - [2009/08/06 10:22:18 | 000,421,888 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\FT.dll
MOD - [2009/07/14 19:48:38 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_ja_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2009/06/26 09:03:42 | 000,086,016 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMApSet.dll
MOD - [2009/05/20 15:02:02 | 000,072,200 | ---- | M] () -- C:\Program Files (x86)\Launch Manager\CdDirIo.dll
MOD - [2009/02/27 16:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
MOD - [2008/11/17 14:56:24 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\nsSign.dll
MOD - [2008/08/25 17:19:34 | 000,069,632 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PHooKDlg.dll
MOD - [2008/08/25 16:16:44 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMIEVW.dll
MOD - [2007/08/31 17:51:04 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMVoice.dll
MOD - [2007/03/30 10:24:12 | 000,104,528 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\Qem.dll
MOD - [2007/03/30 10:01:28 | 000,038,992 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\NsOEMKey.dll
MOD - [2007/03/30 09:57:04 | 000,034,896 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\Import.dll
MOD - [2007/03/30 09:49:38 | 000,104,528 | ---- | M] () -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\ComClass.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2013/05/09 17:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2013/01/27 11:34:32 | 000,379,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2013/01/27 11:34:32 | 000,022,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:[b]64bit:[/b] - [2010/03/17 10:56:12 | 000,866,336 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV:[b]64bit:[/b] - [2010/01/28 16:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Updater Service)
SRV:[b]64bit:[/b] - [2009/10/30 18:43:30 | 000,073,728 | ---- | M] (Tablet Driver) [Auto | Running] -- C:\Windows\SysNative\drivers\WTSrv.exe -- (WinTabService)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/06/13 01:52:54 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/12 07:26:17 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/05/10 16:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/19 16:35:36 | 002,833,120 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe -- (NielsenUpdate)
SRV - [2013/04/16 12:39:46 | 000,233,136 | ---- | M] (Baidu Inc.) [Auto | Running] -- C:\Program Files (x86)\Baidu\IME\3.3.2.1\BaiduJPServ.exe -- (BaiduJP_IME_Service_3.3.2.1)
SRV - [2012/06/05 15:56:28 | 000,266,240 | ---- | M] (Brother Industries, Ltd.) [On_Demand | Running] -- C:\Program Files (x86)\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2010/04/08 13:18:38 | 000,312,400 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010/03/18 13:57:02 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/03/18 13:56:56 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/08 16:58:24 | 000,250,368 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2010/01/08 22:21:22 | 000,023,584 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2009/12/23 17:39:04 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2009/11/13 06:29:00 | 003,731,100 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2009/06/11 06:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/01/11 04:02:00 | 000,126,464 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE -- (EPSON_PM_RPCV4_01)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 001,025,808 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 000,378,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 000,189,936 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:07 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:06 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2013/05/09 17:59:06 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:[b]64bit:[/b] - [2013/03/07 08:33:20 | 000,022,600 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:[b]64bit:[/b] - [2013/01/20 15:59:04 | 000,130,008 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2012/08/23 23:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/08/23 23:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/03/01 15:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/20 22:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/10/07 18:39:14 | 000,154,184 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\shv0bus.sys -- (shv0bus)
DRV:[b]64bit:[/b] - [2010/10/07 18:39:14 | 000,152,136 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\shv0obex.sys -- (shv0obex)
DRV:[b]64bit:[/b] - [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:[b]64bit:[/b] - [2010/04/01 17:18:30 | 003,060,800 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2010/03/21 02:59:08 | 000,321,064 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2010/03/01 16:20:56 | 000,239,136 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2010/02/20 09:24:34 | 010,300,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010/02/10 16:01:58 | 000,158,720 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010/02/03 06:38:30 | 000,271,872 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2009/12/17 10:42:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2009/12/10 20:25:10 | 000,301,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2009/12/02 16:01:24 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:[b]64bit:[/b] - [2009/09/17 14:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009/07/14 10:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 10:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 10:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/14 09:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2009/06/18 20:42:36 | 000,022,696 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UCTblHid.sys -- (UCTblHid)
DRV:[b]64bit:[/b] - [2009/06/18 20:42:18 | 000,027,304 | ---- | M] (Tablet Driver) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TClass2k.sys -- (TClass2k)
DRV:[b]64bit:[/b] - [2009/06/18 20:42:00 | 000,017,064 | ---- | M] (PenTablet Driver) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PTSimHid.sys -- (PTSimHid)
DRV:[b]64bit:[/b] - [2009/06/18 20:41:48 | 000,027,304 | ---- | M] (PenTablet Driver) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PTSimBus.sys -- (PTSimBus)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/11 05:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/05/05 16:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:[b]64bit:[/b] - [2009/05/05 16:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV - [2013/03/20 16:55:36 | 000,026,592 | ---- | M] (The Nielsen Company) [Kernel | System | Running] -- C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\nnfwdk64.sys -- (nnfwdk)
DRV - [2009/07/14 10:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2005/01/05 03:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope =
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://home.microsoft.com/search/lobby/search.asp
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{4C5AC434-313A-BD49-5FB2-4A282AEAB88B}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1Qzu0FtDyB0B0C0ByDtDtB0B0AyDzztCyCyEtN0D0Tzu0StByCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=1166469638


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.s.kochi-u.ac.jp:8000

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxy.s.kochi-u.ac.jp:8000

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?hl=ja
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes,Backup.Old.DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes\{3D561EE7-A178-4DF9-9A42-0DF878DC1EAC}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes\{4C5AC434-313A-BD49-5FB2-4A282AEAB88B}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.bing.com/search?FORM=UP74DF&PC=UP74&dt=052713&q={searchTerms}&src=IE-SearchBox
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW_jaJP409
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local
IE - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = localhost:21320

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - prefs.js..browser.startup.homepage:
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nielsen/FirefoxTracker: C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\FirefoxAddOns\npfirefoxtracker.dll (Nielsen)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/06/07 23:43:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/06/07 23:43:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/05/31 21:52:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\netsight@nielsen.com: C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter3\FirefoxAddOns\netsight@nielsen.xpi [2013/06/27 00:17:44 | 000,008,924 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/06/06 13:11:01 | 000,000,000 | ---D | M]

[2011/11/01 17:29:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\Extensions
[2010/12/09 12:38:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2013/06/26 22:50:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\Firefox\Profiles\gryd7ndo.default-1363874988536\extensions
[2013/06/26 22:50:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\Firefox\Profiles\s6sbxh36.default\extensions
[2013/03/22 10:07:06 | 000,000,000 | ---D | M] (Memory Fox) -- C:\Users\OWNER\AppData\Roaming\mozilla\Firefox\Profiles\s6sbxh36.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B}
[2013/03/22 10:03:54 | 000,009,596 | ---- | M] () (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\firefox\profiles\s6sbxh36.default\extensions\bartablite@philikon.de.xpi
[2013/03/22 10:21:50 | 000,006,162 | ---- | M] () (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\firefox\profiles\s6sbxh36.default\extensions\places-maintenance@bonardo.net.xpi
[2013/03/22 09:39:09 | 000,025,907 | ---- | M] () (No name found) -- C:\Users\OWNER\AppData\Roaming\mozilla\firefox\profiles\s6sbxh36.default\extensions\restartbutton@strk.jp.xpi
[2013/06/27 00:10:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/06/26 22:43:30 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/06/26 22:42:32 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/06/26 22:43:28 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/06/13 00:38:22 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/08/30 16:58:06 | 000,864,256 | ---- | M] ( Voyager Japan,Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npCrochetPLUG.dll

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.delta-search.com/?babsrc=HP_ss&mntrId=D2F5F07BCB502BA5&affID=119357&tt=250613_gr1&tsp=4924
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aclmceilickagfkaddbiedcnccdkfafa\1.7.4_0\
CHR - Extension: YouTube = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google \u691C\u7D22 = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Nielsen = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgceplfonlgodadnpognljgdjlcnpjnh\1.7.6_0\
CHR - Extension: No name found = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldidobiipljjgfaglokcehmiljadanle\2.0.1_0\
CHR - Extension: No name found = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pillplnpmfjckedkedpaoembffbpklnf\2_0\
CHR - Extension: Gmail = C:\Users\OWNER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009/06/11 06:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:[b]64bit:[/b] - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe File not found
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe File not found
O4:[b]64bit:[/b] - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe (NewSoft Technology Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (NewTech Infosystems, Inc.)
O4 - HKLM..\Run: [BrRssUtility] C:\Program Files (x86)\Brother\RSSUtility\BrRssWatcher.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [NielsenOnline] C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenOnline.exe (The Nielsen Company)
O4 - HKLM..\Run: [PMSpeed] C:\Program Files (x86)\NewSoft\Presto! PageManager 9.02\PMSpeed.exe (NewSoft Technology Corporation)
O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKLM..\Run: [WTClient] C:\Windows\SysWow64\WTClient.exe (Tablet Driver)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\OWNER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Recovery present
O7 - HKU\S-1-5-21-2345774179-889975466-4263935198-1000\Software\Policies\Microsoft\Internet Explorer\Recovery present
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {2A7EFEAA-8059-4C69-8FE2-4BA999C3B102} https://ssl2.gcrest.com/trickster/cabs/TrickLauncher.cab (TrickCtrl Class)
O16 - DPF: {2B658B62-1B6F-4CFF-8A7C-225B7BB15336} http://static1.dotbook.jp/plugins/crochet_plug/T-TimeCrochet.cab#version=1,1,0,3 (CrochetCtrl Control)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{890B1F9E-B92D-43F0-BEE0-7F06175695CD}: NameServer = 192.168.2.253,133.5.6.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F8084B12-4E73-42BB-B904-5E28E5592F33}: DhcpNameServer = 192.168.10.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

分割します
  • mike
  • 2013/06/27 (Thu) 00:59:31
返信フォームへ 
Re: Montera.Toolbarの削除方法について
OTL.txt続きです

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2013/06/27 00:25:40 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\OWNER\Desktop\OTL.exe
[2013/06/26 22:41:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/06/26 22:41:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/06/26 21:05:04 | 000,193,536 | ---- | C] (SATOYASU) -- C:\Users\OWNER\Desktop\checkuninstalllist.exe
[2013/06/26 21:03:25 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\OWNER\Desktop\HijackThis.exe
[2013/06/26 02:17:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2013/06/26 02:15:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
[2013/06/26 02:15:35 | 000,017,272 | ---- | C] (Safer Networking Limited) -- C:\Windows\SysNative\sdnclean64.exe
[2013/06/26 02:14:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2013/06/26 02:09:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AbiWord Word Processor
[2013/06/26 02:04:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AbiWord
[2013/06/26 01:38:27 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2013/06/22 16:37:36 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/06/22 16:37:26 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/06/22 16:37:26 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/06/22 16:37:26 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/06/22 16:36:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/06/16 03:03:29 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/06/16 03:03:27 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/06/14 00:55:14 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/06/14 00:55:13 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/06/14 00:55:05 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2013/06/14 00:55:04 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2013/06/14 00:54:06 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/06/14 00:53:59 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/06/14 00:53:58 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/06/13 18:51:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/06/13 18:51:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/06/13 18:51:40 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/06/13 18:51:40 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/06/13 18:51:39 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/06/13 18:51:39 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/06/13 18:51:39 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/06/13 18:51:38 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/06/13 18:51:38 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/06/13 18:51:32 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/06/13 18:51:30 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/06/13 18:51:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/06/13 18:51:28 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/06/12 22:20:53 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2013/06/12 22:20:52 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2013/06/12 22:20:49 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/06/12 22:20:46 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2013/06/12 22:20:42 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2013/06/12 22:20:40 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2013/06/10 02:14:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/06/10 02:12:39 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/06/10 02:12:23 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/06/10 02:12:23 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/06/05 15:45:48 | 000,000,000 | ---D | C] -- C:\Users\OWNER\Documents\os_pv
[2 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/06/27 00:26:13 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/27 00:26:13 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/27 00:25:48 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\OWNER\Desktop\OTL.exe
[2013/06/27 00:14:49 | 000,000,686 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/27 00:13:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/06/27 00:13:57 | 1401,978,880 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/27 00:00:02 | 000,000,690 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/26 23:48:08 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/06/26 23:31:44 | 001,220,272 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/06/26 23:31:44 | 000,616,242 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/06/26 23:31:44 | 000,391,258 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2013/06/26 23:31:44 | 000,106,756 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2013/06/26 23:31:44 | 000,106,622 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/06/26 23:26:09 | 000,648,201 | ---- | M] () -- C:\Users\OWNER\Desktop\adwcleaner.exe
[2013/06/26 21:05:07 | 000,193,536 | ---- | M] (SATOYASU) -- C:\Users\OWNER\Desktop\checkuninstalllist.exe
[2013/06/26 21:03:29 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\OWNER\Desktop\HijackThis.exe
[2013/06/26 10:03:18 | 000,000,005 | ---- | M] () -- C:\Users\OWNER\AppData\Roaming\WBPU-TTL.DAT
[2013/06/26 02:15:52 | 000,001,343 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2013/06/26 01:38:21 | 316,984,645 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/06/22 16:37:12 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/06/22 16:37:06 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/06/22 16:37:06 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/06/22 16:37:05 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/06/22 16:37:03 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2013/06/22 16:37:03 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013/06/13 01:52:52 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/06/13 01:52:51 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/06/13 01:51:49 | 009,089,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013/06/10 02:14:22 | 000,001,747 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/08 23:06:58 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/06/08 20:40:02 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/06/07 16:05:16 | 001,880,177 | ---- | M] () -- C:\Users\OWNER\Desktop\zemi使用.pdf
[2013/06/03 01:56:53 | 004,586,396 | ---- | M] () -- C:\Users\OWNER\Desktop\2010811303.pdf
[2013/06/02 22:24:39 | 000,001,983 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2013/05/31 21:52:54 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/06/26 23:25:53 | 000,648,201 | ---- | C] () -- C:\Users\OWNER\Desktop\adwcleaner.exe
[2013/06/26 10:03:18 | 000,000,005 | ---- | C] () -- C:\Users\OWNER\AppData\Roaming\WBPU-TTL.DAT
[2013/06/26 02:15:52 | 000,001,355 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
[2013/06/26 02:15:52 | 000,001,343 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
[2013/06/26 01:38:21 | 316,984,645 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/06/10 02:14:22 | 000,001,747 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/07 16:08:30 | 001,880,177 | ---- | C] () -- C:\Users\OWNER\Desktop\zemi使用.pdf
[2013/06/03 01:56:18 | 004,586,396 | ---- | C] () -- C:\Users\OWNER\Desktop\2010811303.pdf
[2013/06/02 22:24:39 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2013/06/02 22:24:39 | 000,001,983 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2013/02/17 15:10:30 | 000,006,615 | ---- | C] () -- C:\Windows\BRPARAM.INI
[2013/01/08 13:37:49 | 000,016,384 | ---- | C] () -- C:\Windows\SysWow64\FileOps.exe
[2012/11/20 23:47:28 | 000,003,532 | ---- | C] () -- C:\Windows\Tablet10000x6250M.ini
[2012/10/07 03:17:25 | 000,000,168 | ---- | C] () -- C:\ProgramData\-fqDFaqwi8fwIyir
[2012/10/07 03:17:25 | 000,000,160 | ---- | C] () -- C:\ProgramData\-fqDFaqwi8fwIyi
[2012/10/07 03:17:14 | 000,000,496 | ---- | C] () -- C:\ProgramData\fqDFaqwi8fwIyi
[2012/06/16 08:47:19 | 000,023,686 | ---- | C] () -- C:\Users\OWNER\.recently-used.xbel
[2012/02/01 15:18:33 | 000,001,901 | ---- | C] () -- C:\Windows\panose.bin
[2011/11/18 19:44:35 | 000,123,216 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat
[2011/11/18 19:44:35 | 000,063,296 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat
[2011/11/18 19:44:35 | 000,055,809 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat
[2011/11/18 19:44:35 | 000,038,886 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat
[2011/11/18 19:44:35 | 000,034,754 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_JP.dat
[2011/11/18 19:44:35 | 000,029,463 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat
[2011/11/18 19:44:35 | 000,026,873 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat
[2011/11/18 19:44:35 | 000,021,819 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat
[2011/11/18 19:44:35 | 000,017,411 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat
[2011/11/18 19:44:35 | 000,008,880 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat
[2011/11/18 19:44:35 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini
[2011/08/31 02:01:18 | 001,241,286 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/04/14 17:56:24 | 000,000,056 | ---- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/12/20 15:47:20 | 000,002,803 | ---- | C] () -- C:\Users\OWNER\AppData\Roaming\preferences.lyricsmaster
[2010/12/18 02:11:06 | 000,000,990 | -HS- | C] () -- C:\Users\OWNER\AppData\Roaming\systemfl.$dk
[2010/12/09 14:18:26 | 000,003,240 | ---- | C] () -- C:\Users\OWNER\.Dendroscope.def
[2010/04/19 23:19:40 | 000,131,472 | ---- | C] () -- C:\ProgramData\FullRemove.exe

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 13:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 14:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 13:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 10:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 21:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 10:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST9500325AS
Partitions: 3
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 14.00GB
Starting Offset: 32256
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 102.00MB
Starting Offset: 15035811840
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 452.00GB
Starting Offset: 15142740480
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2009/07/14 10:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2013/02/27 14:47:10 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2009/07/14 10:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:23 | 000,849,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:45 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2011/11/17 15:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 10:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2012/07/05 07:13:27 | 000,136,704 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2013/05/13 14:51:01 | 000,184,320 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2013/05/13 13:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:04 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/20 21:18:30 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2011/03/03 15:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 10:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:39 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
SRV:[b]64bit:[/b] - [2013/01/27 11:34:32 | 000,022,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2013/01/27 11:34:32 | 000,379,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 10:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2012/10/04 02:44:21 | 000,303,104 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2011/05/24 20:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2012/02/11 15:36:02 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:[b]64bit:[/b] - [2011/11/17 15:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2009/07/14 10:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:24 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2011/11/17 15:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:26 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/20 21:21:19 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:26 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/20 21:21:28 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2012/05/01 14:40:20 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:27 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:[b]64bit:[/b] - [2010/11/20 22:25:42 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:25 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:59 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:24:58 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/20 21:17:22 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2012/06/03 07:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2010/11/20 22:26:07 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2009/07/14 10:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:[b]64bit:[/b] - [2010/11/20 22:27:28 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2011/02/25 12:47:51 | 000,000,040 | ---- | M] ()(C:\Windows\SysNative\?I) -- C:\Windows\SysNative\췀Í
[2011/02/25 12:47:51 | 000,000,040 | ---- | C] ()(C:\Windows\SysNative\?I) -- C:\Windows\SysNative\췀Í

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:AB689DEA
@Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:5D7E5A8F
@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:93DE1838
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:93EB7685
@Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:0B9176C0
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:E36F5B57
@Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:E1F04E8D
@Alternate Data Stream - 130 bytes -> C:\ProgramData\Temp:798A3728

< End of report >

Extras.Txtのログです

OTL Extras logfile created on: 2013/06/27 0:29:01 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\OWNER\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.74 Gb Total Physical Memory | 0.40 Gb Available Physical Memory | 22.95% Memory free
3.48 Gb Paging File | 1.55 Gb Available in Paging File | 44.58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.64 Gb Total Space | 378.52 Gb Free Space | 83.81% Space Free | Partition Type: NTFS

Computer Name: OWNER-PC | User Name: OWNER | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2345774179-889975466-4263935198-1000\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [GomAudio.Add] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe /add "%1" (Gretech Corporation)
Directory [GomAudio.AddCur] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe /addcur "%1" (Gretech Corporation)
Directory [GomAudio.Play] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe "%1" (Gretech Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [GomAudio.Add] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe /add "%1" (Gretech Corporation)
Directory [GomAudio.AddCur] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe /addcur "%1" (Gretech Corporation)
Directory [GomAudio.Play] -- C:\Program Files (x86)\GRETECH\GomAudio\GOMA.exe "%1" (Gretech Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater -- (Safer-Networking Ltd.)
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" = C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service -- (Safer-Networking Ltd.)


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A6AE154-714C-4B16-BFE4-7B5EDD9A525E}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{0C678038-0F1A-4B90-AE7C-1D7CD643437F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{0E7ECF24-E427-4F5E-BC18-34C5EAE4278C}" = lport=137 | protocol=17 | dir=in | app=system |
"{1DED42F9-87B6-4720-AC7F-E9B4DD4F4DFE}" = lport=138 | protocol=17 | dir=in | app=system |
"{1EE72064-8F77-447A-AEA1-98CD05EE059D}" = lport=54925 | protocol=17 | dir=in | name=brothernetwork scanner |
"{263F1A78-C772-4B3E-8BD5-D387E93EB495}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2762C782-05BA-4652-B81F-DD11FA06F6ED}" = rport=445 | protocol=6 | dir=out | app=system |
"{3D9A5E49-BE7C-4D2E-A61A-CDA3A4DDDEAF}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{3FCF71A6-976B-4234-BD16-0B0632EA04D7}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{41FF9209-669C-439C-800D-30D80AD39119}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{42E0BBB5-A93A-4F31-AC82-DE072FFEC8B8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4F6AB1AC-EAFB-4711-9145-B4FC23E1F25B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{576B8116-B366-4888-90CC-C1C81E88368B}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5EE33DEC-17CF-4025-88B9-5D2AD41A65FE}" = lport=445 | protocol=6 | dir=in | app=system |
"{6113F729-882D-4CA6-9F49-4547E9BE16BE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{619A3E67-BC4E-487A-817D-03E6EFD8F480}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{639E5140-37D9-455F-898B-52154AD4F381}" = lport=2869 | protocol=6 | dir=in | app=system |
"{64EC22EF-DB75-4FA6-96D2-BC859AEEA7C9}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{74DCC960-A7F8-43BE-8B84-95262349960D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{74EA7427-18CB-42FB-BD16-07EA7C458FAD}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7D7E8C35-A3D2-494A-A2DF-226039BD6324}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{804EC8B7-DE59-4A82-B21E-89C3EA474804}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8CFFF3D4-974D-42C0-BC3F-FF54212AA7F9}" = lport=139 | protocol=6 | dir=in | app=system |
"{99046601-CC71-4F86-8E57-EC3A9044930C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B518E7CB-2408-4B74-80C7-6061A6B37807}" = rport=137 | protocol=17 | dir=out | app=system |
"{B6301CFD-CA3D-43D8-9A44-F47BEFBA434E}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BEBD37A6-EEF4-4C8D-A4B8-B0E5B482892D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C134C880-98B7-4C59-8732-5870733030B6}" = rport=139 | protocol=6 | dir=out | app=system |
"{C3ACB0AE-C053-4CDD-B84C-A433EE7AA5DD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C88175D5-F93B-4D1F-A7D7-EA02D8FCC0F0}" = rport=138 | protocol=17 | dir=out | app=system |
"{D04CFE5F-AF11-4611-B897-E8DA4F659558}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{D3E5C856-BADF-4C19-BDC0-77A3667689B6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D8C63879-6108-4E15-ABFE-DA99951658A1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E14B0007-7723-4182-BE75-CF69FE55B529}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E5C3EFD0-BDCC-4DEA-9C89-469D92D7FA2E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F1950061-CD26-4E73-90CD-1CE750B611E2}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{F1DD0FA4-1772-4168-A4BB-191CA543273B}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{064009E9-0969-497B-9F4B-D734E928E718}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0724B169-FB78-4679-9595-75A52DBDE2C9}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd9\powerdvd9.exe |
"{09173BDD-1F4D-415A-BA42-EA45E9A1DC1F}" = protocol=6 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{0BFE99AE-B156-44A1-AFCE-512225DD3AEA}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{0E4EA16B-331B-465B-A2B6-7D26CD6087F4}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1278B57E-627B-4731-AEF8-432DBFCD1765}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{15E84FF1-0BA4-4ADC-8461-85833AB64274}" = protocol=6 | dir=in | app=c:\program files (x86)\gretech\gomplayer\gom.exe |
"{31D832EB-2A51-4A64-B100-30097BE359B4}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{32C7BF33-2934-4222-B28B-51443271B39E}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{3A6CCFF2-67B7-4898-8211-DB80BFA384D3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{42B97048-BFAC-4C3D-A5C8-3F34A693AB97}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{43836404-7A12-426C-A58B-65B3EED1478D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{460F72FA-9166-4E2A-8D47-BF6B3BE26937}" = protocol=6 | dir=out | app=system |
"{46A7AE26-9CC3-488D-B974-2C7CB1A6F333}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{477FA8B1-0B52-4E76-B4CF-7EB7BAA3A55E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4DD61A84-5FAA-4F94-8759-D2A01ACEF3B6}" = protocol=6 | dir=in | app=c:\program files (x86)\giraffic\veoh_girafficwatchdog.exe |
"{59B1EFC8-54B6-4DE6-9307-AE540267A8B3}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5A710023-E16C-4EA8-9023-65245D63FC5D}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5F1D3FF0-CFD3-4213-8ABA-62740833CBAE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{62277B62-1B1F-43D5-AE6E-5B11FE6719B8}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{680073DB-64ED-4750-9CE9-1EAC29FC8FE1}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{68A499DA-FCB7-483E-A698-3E0E0D09B4A7}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6A220225-922A-4916-A8F3-A0376DF03350}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{6AF641B5-3C60-4DE5-B347-0F54FC4E5932}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{6EAF0522-40DC-4D53-B4CE-A886C94EFEF5}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe |
"{715B73BE-1237-496E-9455-067CFCBBA0F0}" = protocol=6 | dir=in | app=c:\program files (x86)\giraffic\veoh_giraffic.exe |
"{72FA3D0C-E5BB-4E80-92D0-AD7032DE6F62}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{88197862-A91B-437C-9A3F-F53E25D4E0D7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8B178C6F-762A-463D-9FF4-CEA5E75AA66F}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{8C335D81-34FD-4BFB-9CDC-8C9AE3043B2B}" = protocol=17 | dir=in | app=c:\program files (x86)\brother\rssutility\brrsswatcher.exe |
"{936DFDCF-4107-41D2-820F-D5C95783D002}" = protocol=17 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{93B5A10F-4EA8-4E03-8C17-D35326EC4E5F}" = protocol=6 | dir=in | app=c:\program files (x86)\brother\rssutility\brrsswatcher.exe |
"{9429375A-8D2B-488F-9D56-942020379EB5}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe |
"{9537F91D-737C-4E06-BDBE-7C7EF6B59968}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{97ECB92F-E9B8-41B4-9C9E-468C080C0745}" = protocol=6 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{9C94FC62-FAD4-4E5F-B2AB-EAE33B99EADC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9E6856E2-DF09-4C6B-9825-689DCCC47700}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{ADE13EB5-CD8B-450F-8E46-5B7A314194A1}" = protocol=17 | dir=in | app=c:\program files (x86)\楽天ツールバー\troubleshooter.exe |
"{AF6FD3CF-42AE-4628-A359-3255C444A3E6}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B3EA0B80-2BDB-4DE8-9146-1E664BD26735}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe |
"{B6950D46-F7E0-4381-B9D3-223092352E26}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BA1CA998-A515-4B30-BB73-12FBC997EA2F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BD12D6A9-4D52-4A5C-9F93-45B1B546C842}" = protocol=6 | dir=in | app=c:\program files (x86)\楽天ツールバー\troubleshooter.exe |
"{C192CA45-AFE3-4FE1-B19B-E7ADE339D525}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C1F45592-6F69-4B46-B0D5-DB696AC87B7D}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{CD29945C-C32C-4611-98A7-1CB1830DAB69}" = protocol=17 | dir=in | app=c:\program files (x86)\giraffic\veoh_girafficwatchdog.exe |
"{DA7B2267-8A82-4391-BD8E-6D0482A06028}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E133DE67-2DD5-4929-98CC-1CBA3FA9D78C}" = protocol=17 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe |
"{E5E77C13-801A-429C-85A2-70A8AE39278F}" = protocol=17 | dir=in | app=c:\program files (x86)\giraffic\veoh_giraffic.exe |
"{E93E94A3-8879-4BBC-A0AC-490D764A910B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{EA1C2F9B-44F6-4A1A-89AD-AF14B85183BD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{EAD7ADCF-EAC9-4D1E-B107-0449868D3B65}" = protocol=17 | dir=in | app=c:\program files (x86)\gretech\gomplayer\gom.exe |
"TCP Query User{23A4F654-5151-46ED-BF39-39D81A05C66C}C:\program files (x86)\gretech\gomplayer\gom.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gretech\gomplayer\gom.exe |
"TCP Query User{34459E44-AF88-46D2-85A4-2D156AC388E5}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{3BDA1025-BD12-469B-81DC-136689740093}C:\program files (x86)\brother\rssutility\brrsswatcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\brother\rssutility\brrsswatcher.exe |
"TCP Query User{6E76DA75-0C96-46E7-AC95-15F7C8F5A8CC}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{A4DA445B-ABA4-49BC-B200-4A8B75BEC3D2}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"TCP Query User{E0D14EE6-89DC-4A97-9515-8C8EC71F16BD}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"UDP Query User{4D892E40-F83D-44B2-91A4-A6601076DAE7}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{71B1CEB0-75F3-4668-9DAE-5F67ABBB2433}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"UDP Query User{757696E9-14C2-4780-87E0-DE5F0A199017}C:\program files (x86)\brother\rssutility\brrsswatcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\brother\rssutility\brrsswatcher.exe |
"UDP Query User{7A816922-82F3-4221-9B6E-B2D0D84D980A}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\symantec\norton online backup\nobuclient.exe |
"UDP Query User{9F92E19C-8E89-431C-8073-18E8D40995AD}C:\program files (x86)\gretech\gomplayer\gom.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gretech\gomplayer\gom.exe |
"UDP Query User{DB63AF59-1BC8-40D4-8B85-E53012757119}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{26A24AE4-039D-4CA4-87B4-2F86417021FF}" = Java 7 Update 21 (64-bit)
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{3B1E1F4C-031D-410F-A93A-1220236608C8}" = Microsoft Antimalware Service JA-JP Language Pack
"{3BF2C0A8-2C44-4A36-AA96-3BD6FB7BB01F}" = Windows Live Remote Client Resources
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{494FCC24-695F-4F74-BE13-9327AC7F3A69}" = 003SH USB Driver
"{54C5B89F-0A8C-4C07-A51D-7380974DA459}" = Windows Live Remote Service Resources
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{748C6213-E824-45E1-9FD2-82884263935C}" = Windows Live Family Safety
"{76FF0F03-B707-4332-B5D1-A56C8303514E}" = iTunes
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0028-0411-1000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0411-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Japanese) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9F1F4E90-5808-3CA8-8FF6-A5B0E60AF268}" = Microsoft .NET Framework 4 Client Profile JPN Language Pack
"{A84DB02B-9C2B-4272-9D2D-A80E00A56513}" = Broadcom Gigabit NetLink Controller
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{D954C6C2-544B-4091-A47F-11E77162883E}" = Microsoft Security Client
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client JA-JP Language Pack
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"EPSON Printer and Utilities" = EPSONプリンタドライバ・ユーティリティ
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile JPN Language Pack" = Microsoft .NET Framework 4 Client Profile Language Pack - 日本語
"Microsoft Security Client" = Microsoft Security Essentials
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0E0CA282-7F32-4B0D-B427-78B9A3CBC42F}" = Messenger Companion
"{10AB1F40-BDEC-4A8D-B427-30F9429378B0}" = Windows Live Movie Maker
"{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard
"{15D95497-8F76-41E5-8894-EDDB59E39BD9}" = Windows Live メール
"{15D967B5-A4BE-42AE-9E84-64CD062B25AA}" = eSobi v2
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{236BB7C4-4419-42FD-0411-1E257A25E34D}" = Adobe Photoshop CS2
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33F7A957-A66D-45A1-BADF-6576083B14E2}" = RPGツクール2000 ランタイムパッケージ
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40407B1D-2975-4A33-84CC-322FE8FA8F2B}" = T-Time 5.5.8
"{413CD685-0135-4917-8D4C-C02A906CF83E}" = SHARP Android端末用 メジャーアップデートツール
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A1A47C3-641C-4523-B86B-1A23E8B7D2E3}" = Windows 7 Upgrade Advisor
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype(TM) 6.5
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{675D8E1E-2388-4718-902C-E5FC4888AC0E}" = Windows Live Essentials
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6C3F8916-D6A5-4A31-9DA8-80C973CE437F}" = Windows Live Writer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7134EF35-DA07-41F8-A71F-66709E194BB5}" = Windows Live Mesh
"{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{786C5747-0C40-4930-9AFE-113BCE553101}" = Adobe Stock Photos 1.0
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{867355C7-8844-45B6-BF61-B2B31D481766}" = コミックシーモア
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{88A686A9-D687-4295-B633-50D8A4B88371}" = Windows Live Writer Resources
"{894194F9-B4B9-4F1C-AFB5-5A5998DAFA3C}" = Presto! PageManager 9.02
"{8A66A2C8-0032-4949-8D99-C293A3EACF79}" = Windows Live Photo Common
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D59BE38-3A4F-4525-AD0D-8980E9E31EFA}" = Windows Live フォト ギャラリー
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EDBA74D-0686-4C99-BFDD-F894678E5101}" = Adobe Common File Installer
"{8F178A65-9254-45B8-A7A7-3A89F1BB2B45}" = Windows Live UX Platform Language Pack
"{90120000-0015-0411-0000-0000000FF1CE}" = Microsoft Office Access MUI (Japanese) 2007
"{90120000-0015-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2007
"{90120000-0016-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0411-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2007
"{90120000-0018-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0411-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Japanese) 2007
"{90120000-0019-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2007
"{90120000-001A-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2007
"{90120000-001B-0411-0000-0000000FF1CE}_PROR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2007
"{90120000-001F-0411-0000-0000000FF1CE}_PROR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0411-0000-0000000FF1CE}" = 2007 Office system 互換機能パック
"{90120000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-0028-0411-0000-0000000FF1CE}_PROR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-1000-0000000FF1CE}_PROR_{8A3FCBEB-9029-40E2-8799-2299CBBEF4D8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_PROR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0411-1000-0000000FF1CE}_PROR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}_PROR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92D09A72-ADB5-4803-9066-0E6098E60950}" = スタートアップツール
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AD64023-4000-424C-9858-BD7CDB1D1B34}" = Brother ドライバー&ソフトウェア DCP-J940N
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0087DDE-69D0-11E2-AD57-43CA6188709B}" = Adobe AIR
"{A049ECD8-1417-048A-2B33-838ADF928191}" = Gian・carlo’S LUCKY HAPPY LIFE
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-1041-7B44-AA1000000001}" = Adobe Reader X (10.1.7) - Japanese
"{AEDA8B17-9571-4839-9240-F93E41198E19}" = Windows Live Sync
"{B05B64BA-D9C8-47B9-A2CB-A1F8E796C843}" = Windows Live Messenger
"{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
"{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B74D4E10-6884-0000-0000-000000000101}" = Adobe Bridge 1.0
"{BAF0CA91-4642-46C8-9BCD-C93B61508701}" = リモート接続用の Windows Live Mesh ActiveX コントロール (日本語)
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}" = Acer Crystal Eye webcam Ver:1.1.167.331
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E9787678-551D-4478-9682-DBB587257110}" = Adobe Help Center 1.0
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8418921-5B66-4732-9CA4-B7112CA241F1}" = NewSoft CD Labeler
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Illustrator CS2" = Adobe Illustrator CS2
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0411-1E257A25E34D}" = Adobe Photoshop CS2
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"avast" = avast! Free Antivirus
"Baidu IME" = Baidu IME 3.3
"CoreAAC" = CoreAAC
"CravingExplorer_is1" = Craving Explorer Version 1.5.1
"Dendroscope 1.2.1" = Dendroscope 1.2.1
"GOM ENCODER" = GOM ENCODER
"GOM PICKER" = GOM PICKER
"GOM Player" = GOM Player
"Go
  • mike
  • 2013/06/27 (Thu) 01:03:03
返信フォームへ 
残骸の処分です
大半はadwcleanerが処置してくれたので、OTLではいくつかの残骸だけ処分です。
また、Chromeの設定は手動で治します。


■Chromeのホームページ設定の修正
ChromeのホームページにDeltaが残っているので、削除してください。
アドレスバーに「chrome:newtab」といれるとホームページ設定が出ますので、そこにあるDelta-searchを削除してください。



■Fixスクリプトによる処置
OTLを起動後、以下のスクリプトを「Custom Scan/Fixes」に貼り付け、「Run Fix」を押してください。
最初の「:OTL」を抜かさないように。

実行するとプロセスがすべて強制終了されますので、アプリはできるだけ終了しておいてください。
また、ごみ箱が空になりますので、必要なファイルがある場合は先に救出してください。
なお、OTLがフリーズしてしまって先に進まない場合は、セーフモードでコンピュータを起動したうえで実行してください。

セーフモードへの入り方:
http://www.higaitaisaku.com/safemode.html

完了後、再起動を要求されますので、「OK」で再起動してください。再起動後、ログが出ますので、そちらを載せてください。なお、今回のログに関しては、そのまま貼り付けで構いません。
なお、ログを閉じてしまった場合は、C:\_OTL\MovedFiles フォルダ内にログ(日付と時刻からなる数字ファイル名のファイル)がありますので、そちらの内容をお知らせください。

---ここから

:OTL
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1Qzu0FtDyB0B0C0ByDtDtB0B0AyDzztCyCyEtN0D0Tzu0StByCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=1166469638
CHR - homepage: http://www.delta-search.com/?babsrc=HP_ss&mntrId=D2F5F07BCB502BA5&affID=119357&tt=250613_gr1&tsp=4924
[2 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

:Commands
[purity]
[emptytemp]
[createrestorepoint]
[reboot]

---ここまで
  • イルカ
  • 2013/06/27 (Thu) 20:40:00
返信フォームへ 
Re: Montera.Toolbarの削除方法について
こんばんは

まずChromeのホームページ設定の修正ですが
chrome:newtabといれても画面は変わりませんでした
何が原因なのでしょうか

OTLのログです

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Use Chrome's Settings page to change the HomePage.
C:\Windows\SysNative\drivers\ST~910C.tmp deleted successfully.
C:\Windows\SysNative\drivers\ST~ED0E.tmp deleted successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
File rity] not found.
File ptytemp] not found.
File eaterestorepoint] not found.
File boot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 06292013_000041

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • mike
  • 2013/06/29 (Sat) 00:15:08
返信フォームへ 
Chromeについて
>chrome:newtabといれても画面は変わりませんでした
では、こちらの方法を試してください。


■Chromeの確認
1. Chromeの設定画面を開き、「起動時」の「ページを設定」をクリック
2. Deltaがあれば、クリックして右側の×を押して消す
3. OKで閉じる
4. アドレスバーに以下のように入力し、Deltaに該当するものを削除
chrome://newtab/


OTLの方はおおむね問題ないかと思います。現在の症状はどうなりましたか?
  • イルカ
  • 2013/06/29 (Sat) 11:09:44
返信フォームへ 
Re: Chromeについて
ページ設定でDeltaはありませんでしたので、もう大丈夫だと思います。

一応再度Spybotでスキャンしたところ大丈夫そうでした

本当にありがとうございました
  • mike
  • 2013/06/29 (Sat) 18:35:30
返信フォームへ 
後片付けをしましょう
大丈夫そうですね。後片付けの案内に移りたいと思います。


■後片付け
使ったツールを削除します。

・HijackThis
コントロールパネルから、アンインストールしてください。
ポータブル版をダウンロードされた場合などはコントロールパネルに出てきませんが、その場合は実行ファイルをそのまま削除可能です。

・アンインストール情報ツール
ファイル・フォルダごと削除してください。

・OTL
OTLを起動後、上側にある「Clean Up」ボタンを押してください。
OTL自身も自動的に削除されます。

・AdwCleaner
起動後、画面右下にある「Uninstall」を押してください。
本当に削除するかと聞かれるので、「はい」を押すとウィンドウが閉じ、ログなどの関連ファイルがまとめて削除されます。


■転ばぬ先の杖
以下のリンク先の記載内容も、参考にされるとよいかと思います。
http://www.higaitaisaku.com/korobanu.html


以上です。作業お疲れ様でした。今後はお気をつけて。
何かあればまた返信をください。
  • イルカ
  • 2013/06/29 (Sat) 21:43:33
返信フォームへ 

返信フォーム
プレビュー (投稿前に内容を確認)
  
Template by  マシマロック