不快な広告に困っています。
どうやっても広告を削除できないので、安全な状態になっているか、ログの確認をお願いいたします。

以下ログです。


----- HKLM -----

"DisplayName"="Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition"
"DisplayName"="Security Update for Windows Media Encoder (KB979332)"
"DisplayName"="MSXML 4.0 SP2 (KB973688)"
"DisplayName"="Update for 2007 Microsoft Office System (KB967642)"
"DisplayName"="Update for Microsoft .NET Framework 3.5 SP1 (KB963707)"
"DisplayName"="Microsoft Office Excel 2007 Help 更新プログラム (KB963678)"
"DisplayName"="Microsoft Office Outlook 2007 Help 更新プログラム (KB963677)"
"DisplayName"="Microsoft Office Word 2007 Help 更新プログラム (KB963665)"
"DisplayName"="({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB960043)"
"DisplayName"="Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)"
"DisplayName"="MSXML 4.0 SP2 (KB954430)"
"DisplayName"="Security Update for Windows Media Encoder (KB954156)"
"DisplayName"="Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)"
"DisplayName"="Security Update for CAPICOM (KB931906)"
"DisplayName"="Security Update for CAPICOM (KB931906)"
"DisplayName"="({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB350003)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2861188)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2858302)"
"DisplayName"="Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)"
"DisplayName"="Update for Microsoft .NET Framework 3.5 SP1 (KB2836940)"
"DisplayName"="Update for Microsoft .NET Framework 4 Extended (KB2836939)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2836939)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)"
"DisplayName"="Security Update for Microsoft Office Outlook 2007 (KB2825999) 32-Bit Edition "
"DisplayName"="Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825641) 32-Bit Edition"
"DisplayName"="Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)"
"DisplayName"="Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office Word 2007 (KB2767773) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Word 2010 (KB2760769) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2760758) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Excel 2010 (KB2760597) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2760588) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office Excel 2007 (KB2760583) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Extended (KB2742595)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Extended (KB2736428)"
"DisplayName"="Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2732797)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2698021)"
"DisplayName"="({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2695869)"
"DisplayName"="Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2010 (KB2687423) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2010 (KB2687413) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2010 (KB2687276) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2682543)"
"DisplayName"="Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Extended (KB2656351)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2639327)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2639327)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2604121)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)"
"DisplayName"="Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2600211)"
"DisplayName"="Update for Microsoft .NET Framework 4 Extended (KB2600217)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2600217)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600211)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2599651)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2599651)"
"DisplayName"="Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2597120) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2596963) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition "
"DisplayName"="Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition "
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2589370) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2572063)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2572063)"
"DisplayName"="Update for Microsoft Office 2010 (KB2566458)"
"DisplayName"="Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2553157) 32-Bit Edition"
"DisplayName"="Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition"
"DisplayName"="Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition"
"DisplayName"="Update for Microsoft Office 2010 (KB2553065)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2544514)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2544514)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2533523)"
"DisplayName"="Update for Microsoft .NET Framework 4 Extended (KB2533523)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 (KB2518870)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2514805)"
"DisplayName"=" Update for Microsoft Office 2007 (KB2508958)"
"DisplayName"="Update for Microsoft Office 2010 (KB2494150)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Extended (KB2487367)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - 日本語 (KB2478663)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478063)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2478063)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2473228)"
"DisplayName"="Update for Microsoft .NET Framework 4 Client Profile (KB2468871)"
"DisplayName"="Update for Microsoft .NET Framework 4 Extended (KB2468871)"
"DisplayName"="Security Update for Windows Media Encoder (KB2447961)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708v2)"
"DisplayName"="Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)"
"DisplayName"="({CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2416472)"
"DisplayName"="({0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2162169)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2162169)"
"DisplayName"="({3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2160841)"
"DisplayName"="(AddressBook)"
"DisplayName"="(Connection Manager)"
"DisplayName"="(DirectDrawEx)"
"DisplayName"="(DXM_Runtime)"
"DisplayName"="(Fontcore)"
"DisplayName"="(IE40)"
"DisplayName"="(IE4Data)"
"DisplayName"="(IE5BAKEX)"
"DisplayName"="(IEData)"
"DisplayName"="(InstallShield Uninstall Information)"
"DisplayName"="(InstallShield_{0FCEA110-096D-418E-800A-05115F2F07B7})"
"DisplayName"="(MobileOptionPack)"
"DisplayName"="(MPlayer2)"
"DisplayName"="(MsJavaVM)"
"DisplayName"="(SchedulingAgent)"
"DisplayName"="(WIC)"
"DisplayName"="({1C725459-5053-42A5-B22A-F3E91484DF65})"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83216015FB})"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83216016FB})"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83216017FB})"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83216019FB})"
"DisplayName"="({26A24AE4-039D-4CA4-87B4-2F83216029FB})"
"DisplayName"="({283BDB6B-DA47-436B-BD6E-29CF78E5EB9C})"
"DisplayName"="({371F77C2-C603-4AF1-8A47-BC0276109462})"
"DisplayName"="({4D86E295-E761-4E30-9A9D-90650B3EDBA9})"
"DisplayName"="({A49F249F-0C91-497F-86DF-B2585E8E76B7})"
"DisplayName"="({BB8AE808-F003-4C7F-B56B-8C80EEAFFE23})"
"DisplayName"="({FABE5067-36E5-4209-9484-F6CE43CCE851})"
"DisplayName"="(PCドキュメントナビゲータ)"
"DisplayName"="(マビノギ)"
"DisplayName"="@niftyでブロードバンド"
"DisplayName"="Adobe Flash Player 11 ActiveX"
"DisplayName"="Adobe Reader X (10.1.8) - Japanese"
"DisplayName"="ATLAS 翻訳パーソナル 2008 LE"
"DisplayName"="au Music Port"
"DisplayName"="au Music Port"
"DisplayName"="AuthenTec Fingerprint Software"
"DisplayName"="AVS Update Manager 1.0"
"DisplayName"="AVS Video Converter 8"
"DisplayName"="AVS4YOU Software Navigator 1.4"
"DisplayName"="AzbyClubガジェットプログラム"
"DisplayName"="Bing Bar"
"DisplayName"="CDDRV_Installer"
"DisplayName"="CDView"
"DisplayName"="Citrix Presentation Server Web クライアント"
"DisplayName"="Complitly"
"DisplayName"="DELETER COMICWORKS 2.0体験版"
"DisplayName"="Efficient WMA MP3 Converter version 0.99.9.3"
"DisplayName"="FM かんたんバックアップ"
"DisplayName"="FMVサポートナビ"
"DisplayName"="FMVスクリーンセーバー"
"DisplayName"="FMVスクリーンセーバー"
"DisplayName"="FMVランチャー"
"DisplayName"="FMVランチャー"
"DisplayName"="Fujitsu Display Manager"
"DisplayName"="Fujitsu Display Manager"
"DisplayName"="GAMEPACK2008F"
"DisplayName"="Google Chrome"
"DisplayName"="Google Toolbar for Internet Explorer"
"DisplayName"="Google Toolbar for Internet Explorer"
"DisplayName"="Google Update Helper"
"DisplayName"="HiJackThis"
"DisplayName"="IndicatorUtility"
"DisplayName"="IndicatorUtility"
"DisplayName"="Inst5671"
"DisplayName"="Intel(R) Graphics Media Accelerator Driver"
"DisplayName"="its-moNavi PC"
"DisplayName"="Java Auto Updater"
"DisplayName"="Java(TM) 6 Update 15"
"DisplayName"="Java(TM) 6 Update 24"
"DisplayName"="Java(TM) 6 Update 29"
"DisplayName"="Java(TM) 6 Update 6"
"DisplayName"="KhalInstallWrapper"
"DisplayName"="KRISTAL Audio Engine"
"DisplayName"="Lhaplus"
"DisplayName"="Microsoft .NET Framework 3.5 Language Pack SP1 - jpn"
"DisplayName"="Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語"
"DisplayName"="Microsoft .NET Framework 3.5 SP1"
"DisplayName"="Microsoft .NET Framework 3.5 SP1"
"DisplayName"="Microsoft .NET Framework 4 Client Profile"
"DisplayName"="Microsoft .NET Framework 4 Client Profile"
"DisplayName"="Microsoft .NET Framework 4 Client Profile JPN Language Pack"
"DisplayName"="Microsoft .NET Framework 4 Client Profile Language Pack - 日本語"
"DisplayName"="Microsoft .NET Framework 4 Extended"
"DisplayName"="Microsoft .NET Framework 4 Extended"
"DisplayName"="Microsoft Forefront Client Security マルウェア対策サービス"
"DisplayName"="Microsoft Forefront Client Security 状態評価サービス"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office 2010 Service Pack 1 (SP1)"
"DisplayName"="Microsoft Office Excel MUI (Japanese) 2007"
"DisplayName"="Microsoft Office File Validation Add-In"
"DisplayName"="Microsoft Office IME (Japanese) 2007"
"DisplayName"="Microsoft Office IME (Japanese) 2010"
"DisplayName"="Microsoft Office IME 2010"
"DisplayName"="Microsoft Office IME 2010 (Japanese)"
"DisplayName"="Microsoft Office IMESS (Japanese) 2010"
"DisplayName"="Microsoft Office Outlook MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Personal 2007"
"DisplayName"="Microsoft Office Personal 2007"
"DisplayName"="Microsoft Office PowerPoint 2010"
"DisplayName"="Microsoft Office PowerPoint MUI (Japanese) 2010"
"DisplayName"="Microsoft Office Proof (English) 2007"
"DisplayName"="Microsoft Office Proof (English) 2010"
"DisplayName"="Microsoft Office Proof (Japanese) 2007"
"DisplayName"="Microsoft Office Proof (Japanese) 2010"
"DisplayName"="Microsoft Office Proofing (Japanese) 2007"
"DisplayName"="Microsoft Office Proofing (Japanese) 2010"
"DisplayName"="Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)"
"DisplayName"="Microsoft Office Shared MUI (Japanese) 2007"
"DisplayName"="Microsoft Office Shared MUI (Japanese) 2010"
"DisplayName"="Microsoft Office Word MUI (Japanese) 2007"
"DisplayName"="Microsoft Office ナビ 2007"
"DisplayName"="Microsoft Office ナビ 2007"
"DisplayName"="Microsoft PowerPoint 2010"
"DisplayName"="Microsoft PowerPoint Viewer"
"DisplayName"="Microsoft Silverlight"
"DisplayName"="Microsoft Visual C++ 2005 Redistributable"
"DisplayName"="muveeNow 2.2"
"DisplayName"="Native Instruments - Audio Kontrol 1 Driver"
"DisplayName"="NetworkPlayer"
"DisplayName"="NetworkPlayer サーバー"
"DisplayName"="O2Micro Flash Memory Card Windows Driver"
"DisplayName"="O2Micro Flash Memory Card Windows Driver"
"DisplayName"="OmniPass 6.00.27"
"DisplayName"="PCastTV for 地デジ"
"DisplayName"="PC乗換ガイド"
"DisplayName"="PC乗換ガイド"
"DisplayName"="PhotoNow!"
"DisplayName"="PowerUtility - スケジュール機能"
"DisplayName"="PowerUtility - スケジュール機能"
"DisplayName"="PowerUtility - リモート管理機能"
"DisplayName"="PowerUtility - リモート管理機能"
"DisplayName"="RadioLine Free"
"DisplayName"="Realtek High Definition Audio Driver"
"DisplayName"="RED STONE"
"DisplayName"="RED STONE"
"DisplayName"="Roxio Central Audio"
"DisplayName"="Roxio Central Copy"
"DisplayName"="Roxio Central Core"
"DisplayName"="Roxio Central Data"
"DisplayName"="Roxio Central Tools"
"DisplayName"="Roxio Creator LJ"
"DisplayName"="Roxio Creator LJ"
"DisplayName"="SetPoint"
"DisplayName"="SkyPDF Driver"
"DisplayName"="SkyPDF Pro for TKC 2.5"
"DisplayName"="Skype Click to Call"
"DisplayName"="Skype(TM) 6.5"
"DisplayName"="SoftwareUpdater"
"DisplayName"="SonicStage for LISMO 3.1.01 Upgrade Program"
"DisplayName"="Synaptics Pointing Device Driver"
"DisplayName"="TKCCustom"
"DisplayName"="Visual Basic 6.0 SP6 ランタイムライブラリ 第4版"
"DisplayName"="Windows Media エンコーダ 9 シリーズ"
"DisplayName"="Windows Media エンコーダ 9 シリーズ"
"DisplayName"="WinDVD for FUJITSU"
"DisplayName"="WinDVD for FUJITSU"
"DisplayName"="Yahoo!ツールバー"
"DisplayName"=""
"DisplayName"=""
"DisplayName"="@FTP"
"DisplayName"="@FTP"
"DisplayName"="@フォトレタッチ"
"DisplayName"="@フォトレタッチ"
"DisplayName"="@メール"
"DisplayName"="@メニュー"
"DisplayName"="@映像館"
"DisplayName"="@映像館"
"DisplayName"="FMV画面で見るマニュアル"
"DisplayName"="うれしレシピ"
"DisplayName"="お手入れナビ"
"DisplayName"="お手入れナビ"
"DisplayName"="てきぱき家計簿マム6"
"DisplayName"="ゆったり設定2"
"DisplayName"="ゆったり設定2"
"DisplayName"="らくらくズーム"
"DisplayName"="らくらくズーム"
"DisplayName"="らくらく無線スタートEX"
"DisplayName"="アップデートナビ"
"DisplayName"="ニコ生デスクトップキャプチャー(XP) SEASON2"
"DisplayName"="パソコン準備ばっちりガイド"
"DisplayName"="パソコン準備ばっちりガイド"
"DisplayName"="ホームページNinja9"
"DisplayName"="マイフォト"
"DisplayName"="メールソフト切り替えツール"
"DisplayName"="ワンタッチボタン設定"
"DisplayName"="ワンタッチボタン設定"
"DisplayName"="画面で見るマニュアルアップデートパック"
"DisplayName"="広辞苑+現代用語+学研パーソナルのアンインストール"
"DisplayName"="乗換案内 旅費精算"
"DisplayName"="電子辞書"
"DisplayName"="電子辞書"
"DisplayName"="富士通デバイス再検出ツール"
"DisplayName"="富士通デバイス再検出ツール"
"DisplayName"="富士通モビリティセンター拡張"
"DisplayName"="富士通モビリティセンター拡張"
"DisplayName"="富士通拡張機能ユーティリティ"
"DisplayName"="富士通拡張機能ユーティリティ"
"DisplayName"="富士通起動ユーティリティ"
"DisplayName"="富士通起動ユーティリティ"
"DisplayName"="壁紙かんたん模様替え"
"DisplayName"="壁紙かんたん模様替え"

----- HKCU -----

"DisplayName"="(Game Organizer)"

--- End of uninstallpgnamelist.txt ---
  • 太陽
  • 2013/09/24 (Tue) 01:38:32
Re: 不快な広告に困っています。
こんばんは、こちらで回答しておりますイルカです。管理人の悪代官さんではありませんがご勘弁を。

ログを見ると、おそらくComplitlyが原因と思いますが、他のログも確認したいと思います。



■ソフトウェアの更新
以下のソフトはバージョンが古いので、特別な理由のない限りアップデートを推奨します。
古いバージョンのソフトにはセキュリティ上の脆弱性があり、ウイルスに狙われる定番となっていますので。
使っていないのであればアンインストールしてもいいでしょう。

・Java(TM) 6 Update 29
古すぎて自動更新できないと思いますので、これをアンインストール後、公式サイトから最新版をダウンロードし、インストールしてください。
途中でMcAfee Security Scan Plusとか余計なものを入れないように。

・Skype(TM) 6.5
最新版に更新しましょう。



■不要と思われるソフトウェアのアンインストール
コントロールパネルからで構いません。無ければ無視で。

・Complitly
・SoftwareUpdater
アドウェアのようです。アンインストールを推奨します。

・Java(TM) 6 Update 15
・Java(TM) 6 Update 24
・Java(TM) 6 Update 6
重複ですので不要です。



■AdwCleanerによる解析
以下のアドレスから、AdwCleanerをダウンロードして、デスクトップに置いてください。
http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner

ファイルを起動後、左下の「Scan」を押してください。
解析完了後、「Report」を押すとログが開くので、その内容を本文に貼り付けてください。

終了時に警告が出ますが、気にせずOKで閉じてください。


■HijackThisでの情報取得
以下のURLにある使い方を参考に、HijackThisのログを取って載せてください。
http://milksizegene.blog.fc2.com/blog-entry-40.html
  • イルカ
  • 2013/09/24 (Tue) 19:10:54
Re: 不快な広告に困っています。
イルカさんお返事ありがとうございました!

以下をアインストールしました。
・Complitly
・SoftwareUpdater
・Java(TM) 6 Update 15
・Java(TM) 6 Update 24
・Java(TM) 6 Update 6

以下のプログラムを更新しました。
・Java(TM) 6 Update 29
・Skype(TM) 6.5


広告はでなくなりました!ありがとうございました!!

AdwCleanerをダウンロードしようとしたところ、AdwCleaner.exeはダウンロードしたユーザーの人数が少ないため、コンピューターに問題を起こす可能性があります。とでてきて、ダウンロードができませんでした。


その後のログです。


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:36:35, on 2013/09/24
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16506)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fingerprint Sensor\ATSwpNav.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Fujitsu\DustSolution\HokoriApp.exe
C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe
C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe
C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe
C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHndHkb.exe
C:\Program Files\Fujitsu\chitose\updatenv.exe
C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCHOOK.exe
C:\fjuty\wallbtn\FMVLauncher.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SetPoint\SetPoint.exe
C:\Program Files\TKC\Shared Files\HCW95.EXE
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
c:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
D:\sae\HijackThis.exe

R3 - URLSearchHook: (no name) - {2ACECADE-0BC7-4C6F-95CF-A221CC161B52} - (no file)
R3 - URLSearchHook: (no name) - {16CC3586-3547-4025-9E2F-F04C365D8B90} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.2.241.0\BingExt.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\ypho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.2.241.0\BingExt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATSwpNav] "C:\Program Files\Fingerprint Sensor\ATSwpNav" -run
O4 - HKLM\..\Run: [TvOutSwitch] c:\Program Files\Fujitsu\DispSwitch\DispSwitchLauncher.exe
O4 - HKLM\..\Run: [FJDust] c:\Program Files\Fujitsu\DustSolution\HokoriApp.exe
O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [LoadPUSCDaemon] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe
O4 - HKLM\..\Run: [PUSCKAPLEXE] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead DVD MovieWriter 5 for FUJITSU\Ulead Movie Wizard 4\uvPL.exe
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files\Corel\Corel MyPhoto\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [Microsoft Forefront Client Security Antimalware Service] "C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [FJUPDNV_Chitose] C:\Program Files\Fujitsu\chitose\updatenv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe"
O4 - HKCU\..\Run: [FMVランチャー] C:\fjuty\wallbtn\FMVLauncher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: SetPoint.lnk = C:\Program Files\SetPoint\SetPoint.exe
O4 - Global Startup: TKCウィルス対策パターンファイル更新タイマー.lnk = C:\Program Files\TKC\VSCANTKC\FSTMR.exe
O4 - Global Startup: 画面ハードコピー.lnk = C:\Program Files\TKC\Shared Files\HCW95.EXE
O4 - Global Startup: TKC環境設定プログラム.lnk = C:\Program Files\TKC\Shared Files\TkcReg.exe
O8 - Extra context menu item: JWord でサイト検索 - res://C:\Program Files\JWord\Plugin2\jwdsrch.dll/300
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo!ツールバーに追加 - res://C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll/script_search.htm
O8 - Extra context menu item: Yahoo!検索で検索 - res://C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll/script_yahoo.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\ssv.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0172828C-CB7D-4C10-AF96-0ED9B52DCFDC} (GameOnG2GCtrl Class) - http://update.g2gcdn.com/g2g/g2gdownloader/GameOnG2G.cab
O16 - DPF: {1DC420F0-D89A-40D0-B5CC-92B9AD19A1AC} (HGPluginJP28 Class) - http://down.hangame.co.jp/jp/dist/hgstart/HGPluginJP28.cab
O16 - DPF: {5082D9B5-5538-4C50-BDB1-C5F44BFB98CC} (HgRunPub Class) - http://down.hangame.co.jp/jp/installer/HgRunPub.cab
O16 - DPF: {9BEEA7FF-FF76-403C-B124-86D9835435F0} (GameChu Login Control) - https://file.gameon.jp/dl/download/sessionctrl.cab
O16 - DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} (NeffyLauncherCtl Class) - http://dist.cdnetworks.co.jp/cdndist/neffy/NeffyLauncher.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F8160836-0C11-4CA4-AD87-944542C7BCBD} (PubPlugin Class) - http://down.hangame.co.jp/jp/purple/launcher/PubPlugin.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: BUFFALO Digital TV Tuner (USB) Device Control (BufFsUSBSvc) - BUFFALO INC. - C:\Windows\system32\BufFsUSBSvc.exe
O23 - Service: CLHNService3 - Unknown owner - C:\Program Files\Fujitsu\NetworkPlayer\Kernel\DMP\CLHNService.exe
O23 - Service: FjDstService - FUJITSU LIMITED - c:\Program Files\Fujitsu\DustSolution\FJDService.exe
O23 - Service: Google アップデート サービス (gupdate1cacda6708dfd65) (gupdate1cacda6708dfd65) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: O2Flash Memory Service (O2Flash) - O2Micro International - c:\Windows\system32\o2flash.exe
O23 - Service: Softex OmniPass Service (omniserv) - Softex Inc. - C:\Program Files\Softex\OmniPass\OmniServ.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: PowerUtility - スケジュール機能 (PUSCSRVC) - FUJITSU LIMITED - C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe
O23 - Service: PowerUtility Remote Power Management Service (putlrsrv) - FUJITSU LIMITED - C:\PROGRA~1\Fujitsu\POWERU~1\remote\PUTLRSRV.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (file missing)
O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVECapSvc.exe
O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVESched.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe

--
End of file - 13119 bytes

よろしくお願いします。
  • 太陽
  • 2013/09/24 (Tue) 22:39:51
警告は無視してください
Adwcleanerのバージョンが上がったばかりなので、警告が出てしまっているようですね。
Adwcleaner自体は正規のソフトウェアですので、警告は無視して、手順を進めてください。

HijackThisのログを見ますと、TKCのウイルス対策ソフトと、Microsoftのセキュリティソフトが共存しているように見えますが、これはトラブルの元です。
どちらか一方に絞りましょう。
  • イルカ
  • 2013/09/24 (Tue) 23:42:34
Re: 不快な広告に困っています。
早い対応ありがとうございます。

Adwcleanerのログを貼ります。

# AdwCleaner v3.005 - Report created 25/09/2013 at 00:59:51
# Updated 22/09/2013 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : sae - MATSUZAWA-PC
# Running from : C:\Users\sae\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Found : C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml
File Found : C:\Users\matsuzawa\AppData\Local\Temp\Uninstall.exe
File Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Found : C:\Windows\system32\conduitEngine.tmp
File Found : C:\Windows\System32\Tasks\Dealply
Folder Found : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Found : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Folder Found : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif
Folder Found : C:\Users\misato\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Folder Found : C:\Users\misato\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif
Folder Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Found C:\Program Files\Conduit
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\kayoko\AppData\LocalLow\BabylonToolbar
Folder Found C:\Users\kayoko\AppData\LocalLow\Conduit
Folder Found C:\Users\kayoko\AppData\LocalLow\ConduitEngine
Folder Found C:\Users\kayoko\AppData\LocalLow\facemoods.com
Folder Found C:\Users\kayoko\AppData\LocalLow\PriceGong
Folder Found C:\Users\misato\AppData\Local\Conduit
Folder Found C:\Users\misato\AppData\LocalLow\BabylonToolbar
Folder Found C:\Users\misato\AppData\LocalLow\Conduit
Folder Found C:\Users\misato\AppData\LocalLow\ConduitEngine
Folder Found C:\Users\misato\AppData\LocalLow\facemoods.com
Folder Found C:\Users\sae\AppData\Local\EoRezo
Folder Found C:\Users\sae\AppData\LocalLow\BabylonToolbar
Folder Found C:\Users\sae\AppData\LocalLow\baidu
Folder Found C:\Users\sae\AppData\LocalLow\Conduit
Folder Found C:\Users\sae\AppData\LocalLow\facemoods.com
Folder Found C:\Users\sae\AppData\Roaming\Babylon
Folder Found C:\Users\sae\AppData\Roaming\baidu
Folder Found C:\Users\sae\AppData\Roaming\OpenCandy
Folder Found C:\Users\tm\AppData\Local\Babylon
Folder Found C:\Users\tm\AppData\Local\Conduit
Folder Found C:\Users\tm\AppData\Local\cre
Folder Found C:\Users\tm\AppData\Local\Temp\BabylonToolbar
Folder Found C:\Users\tm\AppData\LocalLow\baidu
Folder Found C:\Users\tm\AppData\LocalLow\facemoods.com
Folder Found C:\Users\tm\AppData\Roaming\Babylon

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\BabylonToolbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\DataMngr_Toolbar
Key Found : HKCU\Software\Delta
Key Found : HKCU\Software\EazelBar
Key Found : HKCU\Software\facemoods.com
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{16CC3586-3547-4025-9E2F-F04C365D8B90}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EazelBar
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EBD839AE-B08C-4FB7-859B-F54AF16C159F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKCU\Software\ParetoLogic
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\Tuto4PC
Key Found : HKCU\Software\Tutorials
Key Found : HKCU\Software\TutoTag
Key Found : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKLM\SOFTWARE\96dddfb46aec43
Key Found : HKLM\SOFTWARE\96dddfb46aec43
Key Found : HKLM\Software\Babylon
Key Found : HKLM\Software\BabylonToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DDE2C74F-58CC-4D71-8CE1-09DEBB8CFB78}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Found : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr
Key Found : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Found : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\Toolbar.BandObject
Key Found : HKLM\SOFTWARE\Classes\Toolbar.BandObject.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
Key Found : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject
Key Found : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\Delta
Key Found : HKLM\Software\EazelBar
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Found : HKLM\Software\ParetoLogic
Key Found : HKLM\Software\SoftwareUpdater
Key Found : HKLM\Software\Tarma Installer
Key Found : HKLM\Software\Tuto_4PC
Key Found : HKLM\Software\Tutorials
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{16CC3586-3547-4025-9E2F-F04C365D8B90}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{EBD839AE-B08C-4FB7-859B-F54AF16C159F}]

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16506


-\\ Google Chrome v29.0.1547.76

[ File : C:\Users\matsuzawa\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\misato\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : homepage
Found : urls_to_restore_on_startup

[ File : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : homepage
Found : urls_to_restore_on_startup
Found : homepage
Found : urls_to_restore_on_startup
Found : icon_url
Found : search_url
Found : keyword
Found : homepage
Found : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [11839 octets] - [25/09/2013 00:55:00]
AdwCleaner[R1].txt - [11914 octets] - [25/09/2013 00:57:41]
AdwCleaner[R2].txt - [11975 octets] - [25/09/2013 00:59:26]
AdwCleaner[R3].txt - [12633 octets] - [25/09/2013 00:59:51]

########## EOF - C:\AdwCleaner\AdwCleaner[R3].txt - [12694 octets] ##########


以下hijackThisのTKCウイルス対策ソフトをアインストールしたログです。

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:07:15, on 2013/09/25
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16506)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE
C:\Program Files\Fingerprint Sensor\ATSwpNav.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Fujitsu\DustSolution\HokoriApp.exe
C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe
C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe
C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe
C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe
C:\Program Files\Fujitsu\chitose\updatenv.exe
C:\fjuty\wallbtn\FMVLauncher.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\SetPoint\SetPoint.exe
c:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_8_800_175_ActiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\sae\Temporary Internet Files\Content.IE5\DO3OK5EK\HijackThis.exe

R3 - URLSearchHook: (no name) - {2ACECADE-0BC7-4C6F-95CF-A221CC161B52} - (no file)
R3 - URLSearchHook: (no name) - {16CC3586-3547-4025-9E2F-F04C365D8B90} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.2.241.0\BingExt.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\ypho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files\Microsoft\BingBar\7.2.241.0\BingExt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATSwpNav] "C:\Program Files\Fingerprint Sensor\ATSwpNav" -run
O4 - HKLM\..\Run: [TvOutSwitch] c:\Program Files\Fujitsu\DispSwitch\DispSwitchLauncher.exe
O4 - HKLM\..\Run: [FJDust] c:\Program Files\Fujitsu\DustSolution\HokoriApp.exe
O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [LoadPUSCDaemon] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe
O4 - HKLM\..\Run: [PUSCKAPLEXE] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead DVD MovieWriter 5 for FUJITSU\Ulead Movie Wizard 4\uvPL.exe
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files\Corel\Corel MyPhoto\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [IME14 JPN Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /JPN /Log
O4 - HKLM\..\Run: [Microsoft Forefront Client Security Antimalware Service] "C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [FJUPDNV_Chitose] C:\Program Files\Fujitsu\chitose\updatenv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe"
O4 - HKCU\..\Run: [FMVランチャー] C:\fjuty\wallbtn\FMVLauncher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Global Startup: SetPoint.lnk = C:\Program Files\SetPoint\SetPoint.exe
O4 - Global Startup: TKCウィルス対策パターンファイル更新タイマー.lnk = C:\Program Files\TKC\VSCANTKC\FSTMR.exe
O4 - Global Startup: 画面ハードコピー.lnk = C:\Program Files\TKC\Shared Files\HCW95.EXE
O4 - Global Startup: TKC環境設定プログラム.lnk = C:\Program Files\TKC\Shared Files\TkcReg.exe
O8 - Extra context menu item: JWord でサイト検索 - res://C:\Program Files\JWord\Plugin2\jwdsrch.dll/300
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo!ツールバーに追加 - res://C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll/script_search.htm
O8 - Extra context menu item: Yahoo!検索で検索 - res://C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll/script_yahoo.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\ssv.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0172828C-CB7D-4C10-AF96-0ED9B52DCFDC} (GameOnG2GCtrl Class) - http://update.g2gcdn.com/g2g/g2gdownloader/GameOnG2G.cab
O16 - DPF: {1DC420F0-D89A-40D0-B5CC-92B9AD19A1AC} (HGPluginJP28 Class) - http://down.hangame.co.jp/jp/dist/hgstart/HGPluginJP28.cab
O16 - DPF: {5082D9B5-5538-4C50-BDB1-C5F44BFB98CC} (HgRunPub Class) - http://down.hangame.co.jp/jp/installer/HgRunPub.cab
O16 - DPF: {9BEEA7FF-FF76-403C-B124-86D9835435F0} (GameChu Login Control) - https://file.gameon.jp/dl/download/sessionctrl.cab
O16 - DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} (NeffyLauncherCtl Class) - http://dist.cdnetworks.co.jp/cdndist/neffy/NeffyLauncher.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F8160836-0C11-4CA4-AD87-944542C7BCBD} (PubPlugin Class) - http://down.hangame.co.jp/jp/purple/launcher/PubPlugin.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Program Files\Fingerprint Sensor\AtService.exe
O23 - Service: BUFFALO Digital TV Tuner (USB) Device Control (BufFsUSBSvc) - BUFFALO INC. - C:\Windows\system32\BufFsUSBSvc.exe
O23 - Service: CLHNService3 - Unknown owner - C:\Program Files\Fujitsu\NetworkPlayer\Kernel\DMP\CLHNService.exe
O23 - Service: FjDstService - FUJITSU LIMITED - c:\Program Files\Fujitsu\DustSolution\FJDService.exe
O23 - Service: Google アップデート サービス (gupdate1cacda6708dfd65) (gupdate1cacda6708dfd65) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: O2Flash Memory Service (O2Flash) - O2Micro International - c:\Windows\system32\o2flash.exe
O23 - Service: Softex OmniPass Service (omniserv) - Softex Inc. - C:\Program Files\Softex\OmniPass\OmniServ.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: PowerUtility - スケジュール機能 (PUSCSRVC) - FUJITSU LIMITED - C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe
O23 - Service: PowerUtility Remote Power Management Service (putlrsrv) - FUJITSU LIMITED - C:\PROGRA~1\Fujitsu\POWERU~1\remote\PUTLRSRV.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: PCカルテ スケジュール サービス (SKARUTE) - FUJITSU LIMITED - C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe (file missing)
O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVECapSvc.exe
O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVESched.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe

--
End of file - 12608 bytes

よろしくお願いします。
  • 太陽
  • 2013/09/25 (Wed) 01:07:52
Adwcleanerで駆除します
Adwcleanerのログを見ると、随分と入っていたのが分かります。駆除しましょう。
うまくいけば、これで広告は消えるはずです。


■AdwCleanerでの処置
まず、起動中のアプリをすべて終了し、必要なデータを保存してください。
次に、先ほどと同様にAdwCleanerを起動し、まず「Scan」、次は「Clean」をクリックしてください。
出てきた画面で「はい」を押すと、全てのプロセスが強制終了されたうえで、駆除が実行されます。
再起動を要求する画面が出たら「OK」などで再起動してください。
再起動後、ログが出ますので、その内容を同様に貼り付けてください。

  • イルカ
  • 2013/09/25 (Wed) 18:48:13
Re: AdwCleanerでの処置をしました!
以下処置後のログです。

# AdwCleaner v3.005 - Report created 25/09/2013 at 20:53:43
# Updated 22/09/2013 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : sae - MATSUZAWA-PC
# Running from : C:\Users\sae\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\kayoko\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\kayoko\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\kayoko\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\kayoko\AppData\LocalLow\facemoods.com
Folder Deleted : C:\Users\kayoko\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\sae\AppData\Local\EoRezo
Folder Deleted : C:\Users\sae\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\sae\AppData\LocalLow\baidu
Folder Deleted : C:\Users\sae\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\sae\AppData\LocalLow\facemoods.com
Folder Deleted : C:\Users\sae\AppData\Roaming\Babylon
Folder Deleted : C:\Users\sae\AppData\Roaming\baidu
Folder Deleted : C:\Users\sae\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\tm\AppData\Local\Babylon
Folder Deleted : C:\Users\tm\AppData\Local\Conduit
Folder Deleted : C:\Users\tm\AppData\Local\cre
Folder Deleted : C:\Users\tm\AppData\Local\Temp\BabylonToolbar
Folder Deleted : C:\Users\tm\AppData\LocalLow\baidu
Folder Deleted : C:\Users\tm\AppData\LocalLow\facemoods.com
Folder Deleted : C:\Users\tm\AppData\Roaming\Babylon
Folder Deleted : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Deleted : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Deleted : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk
Folder Deleted : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Folder Deleted : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Folder Deleted : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif
Folder Deleted : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Deleted : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
Folder Deleted : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
[!] Folder Deleted : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
[!] Folder Deleted : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
File Deleted : C:\END
File Deleted : C:\Windows\system32\conduitEngine.tmp
File Deleted : C:\Users\matsuzawa\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\fcmdSrch.xml
File Deleted : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Deleted : C:\Windows\System32\Tasks\Dealply

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{EBD839AE-B08C-4FB7-859B-F54AF16C159F}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pmcmflmkceipgecmhoddphflfndnfbbe
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BC27FFF-9971-457A-9219-063BEE2F4BAF}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4BC27FFF-9971-457A-9219-063BEE2F4BAF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr
Key Deleted : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.BandObject.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.ToolbarHelperObject.1
Key Deleted : HKLM\SOFTWARE\96dddfb46aec43
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7E8A36EA-2501-4ED3-A3C8-CFA9143FB169}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DDE2C74F-58CC-4D71-8CE1-09DEBB8CFB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6857AC4A-95B4-4E2C-B2D2-8A235FCCEF4A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EBD839AE-B08C-4FB7-859B-F54AF16C159F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{16CC3586-3547-4025-9E2F-F04C365D8B90}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{16CC3586-3547-4025-9E2F-F04C365D8B90}]
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
[#] Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\Delta
Key Deleted : HKCU\Software\EazelBar
Key Deleted : HKCU\Software\facemoods.com
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Tuto4PC
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKCU\Software\TutoTag
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Delta
Key Deleted : HKLM\Software\EazelBar
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\SoftwareUpdater
Key Deleted : HKLM\Software\Tarma Installer
Key Deleted : HKLM\Software\Tuto_4PC
Key Deleted : HKLM\Software\Tutorials
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EazelBar

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16506


-\\ Google Chrome v29.0.1547.76

[ File : C:\Users\matsuzawa\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\kayoko\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

[ File : C:\Users\tm\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup
Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [11839 octets] - [25/09/2013 00:55:00]
AdwCleaner[R1].txt - [11914 octets] - [25/09/2013 00:57:41]
AdwCleaner[R2].txt - [11975 octets] - [25/09/2013 00:59:26]
AdwCleaner[R3].txt - [12775 octets] - [25/09/2013 00:59:51]
AdwCleaner[R4].txt - [11472 octets] - [25/09/2013 20:53:07]
AdwCleaner[S0].txt - [11460 octets] - [25/09/2013 20:53:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [11521 octets] ##########
  • 太陽
  • 2013/09/25 (Wed) 21:02:52
Re: 不快な広告に困っています。
まだ広告が出るようです…。
  • 太陽
  • 2013/09/25 (Wed) 22:07:09
別なツールで確認を
Adwcleanerで非対応の、他の迷惑ソフトが残っているようですね。
別なツールで詳しく調べてみます。


■OTLによる解析
OTLと呼ばれる、高機能解析ツールを使って調べます。

1. 以下にある(直リンクです)解析ツール「OTL」(OldTimer Listit)をダウンロードし、デスクトップに置いてください。
ウイルス対策ソフトやブラウザから危険判定されるかもしれませんが、誤検知ですので気にしないで進めてください。
http://oldtimer.geekstogo.com/OTL.exe

2. 実行後、次の設定を変更してください。
・ウィンドウの上の方にある「Scan All Users」にチェックを入れる
・「Scan 64bit Files」があった場合には、それにもチェックを入れる
・「Extra Registry」を「Use SafeList」に設定する
・「Standard Registry」を「Use SafeList」に設定する
・以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT

3. 左上の「Run Scan」を押してください。数分すると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に出来ます。


これらのファイルの内容を、分割した上で本文に貼り付けてください。特にOTL.txtは結構長いので、途中で分割しないと切れてしまいます。
最大文字数を超えた場合、貼り付けることはできても、投稿すると切れてしまいますので。
途中の「[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]」あたりで分割してみてください。
  • イルカ
  • 2013/09/25 (Wed) 23:48:37
Re: OTL.txt2/1 を貼ります!
OTL logfile created on: 2013/09/26 0:46:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\sae\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.95 Gb Total Physical Memory | 0.85 Gb Available Physical Memory | 43.40% Memory free
4.14 Gb Paging File | 2.70 Gb Available in Paging File | 65.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 26.13 Gb Free Space | 26.13% Space Free | Partition Type: NTFS
Drive D: | 119.88 Gb Total Space | 110.29 Gb Free Space | 92.00% Space Free | Partition Type: NTFS
Drive G: | 14.92 Gb Total Space | 10.93 Gb Free Space | 73.23% Space Free | Partition Type: FAT32
Drive H: | 3.73 Gb Total Space | 0.46 Gb Free Space | 12.39% Space Free | Partition Type: FAT32

Computer Name: MATSUZAWA-PC | User Name: sae | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2013/09/26 00:44:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\sae\Desktop\OTL.exe
PRC - [2013/09/21 05:00:57 | 000,815,496 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_11_8_800_175_ActiveX.exe
PRC - [2013/05/10 16:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/01/07 13:09:10 | 000,037,384 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
PRC - [2012/08/27 07:45:48 | 000,147,456 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\chitose\updatenv.exe
PRC - [2012/04/04 10:27:27 | 000,012,800 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\chitose\updnvsrv.exe
PRC - [2011/02/02 11:23:08 | 001,033,600 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe
PRC - [2011/01/08 17:06:56 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MsMpEng.exe
PRC - [2010/11/18 09:02:26 | 000,062,816 | ---- | M] (TKC Corporation) -- C:\Program Files\TKC\Shared Files\HCW95.EXE
PRC - [2010/10/27 16:40:36 | 000,087,336 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer\Kernel\DMP\CLHNService.exe
PRC - [2009/04/11 15:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/20 09:54:28 | 000,073,728 | ---- | M] () -- C:\Program Files\Softex\OmniPass\opvapp.exe
PRC - [2008/09/10 12:01:46 | 000,353,632 | ---- | M] () -- C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVECapSvc.exe
PRC - [2008/09/10 12:01:46 | 000,132,448 | ---- | M] () -- C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVESched.exe
PRC - [2008/09/01 10:00:02 | 000,154,160 | ---- | M] (BUFFALO INC.) -- C:\Windows\System32\BufFsUSBSvc.exe
PRC - [2008/07/23 19:41:36 | 000,447,760 | ---- | M] (DigiOn, Inc.) -- C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
PRC - [2008/07/17 00:06:30 | 000,091,408 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
PRC - [2008/07/07 09:55:22 | 000,114,688 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\DustSolution\HokoriApp.exe
PRC - [2008/05/14 18:58:08 | 001,172,728 | ---- | M] (AuthenTec, Inc.) -- C:\Program Files\Fingerprint Sensor\AtService.exe
PRC - [2008/02/05 15:17:24 | 000,047,656 | ---- | M] (.) -- C:\Program Files\Fujitsu\BtnHnd\BtnHndHkb.exe
PRC - [2008/02/05 13:46:36 | 000,256,552 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe
PRC - [2008/01/31 17:37:40 | 000,088,616 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
PRC - [2008/01/29 18:34:30 | 000,145,960 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe
PRC - [2008/01/09 13:22:56 | 000,789,008 | ---- | M] (Logicool, Inc.) -- C:\Program Files\SetPoint\SetPoint.exe
PRC - [2008/01/09 13:19:44 | 000,055,824 | ---- | M] (Logicool, Inc.) -- c:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2008/01/07 13:17:12 | 000,158,248 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe
PRC - [2007/11/27 14:41:42 | 000,092,712 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCHOOK.exe
PRC - [2007/11/21 16:33:28 | 000,062,760 | R--- | M] (FUJITSU LIMITED) -- c:\Program Files\Fujitsu\DustSolution\FJDService.exe
PRC - [2007/09/26 09:40:54 | 000,096,808 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe
PRC - [2007/07/27 11:33:26 | 000,141,864 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe
PRC - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () -- C:\Windows\System32\PSIService.exe
PRC - [2007/04/06 04:12:48 | 000,073,120 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Forefront\Client Security\Client\SSA\FcsSas.exe
PRC - [2007/02/06 10:00:12 | 000,068,400 | ---- | M] (FUJITSU LIMITED) -- C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
PRC - [2007/01/04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) -- c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
PRC - [2006/11/13 10:01:34 | 000,188,416 | ---- | M] (FUJITSU LIMITED) -- C:\fjuty\wallbtn\FMVLauncher.exe
PRC - [2005/09/13 14:30:00 | 000,057,344 | ---- | M] (O2Micro International) -- C:\Windows\System32\o2flash.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2011/09/12 11:29:26 | 000,082,944 | ---- | M] () -- C:\Program Files\Consolas\NDC(XP)\DesktopCaptureXP.ax
MOD - [2008/07/17 00:06:30 | 000,143,360 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_upnp.dll
MOD - [2008/07/17 00:06:30 | 000,139,264 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_av.dll
MOD - [2008/07/17 00:06:30 | 000,110,592 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_msd.dll
MOD - [2008/07/17 00:06:30 | 000,065,536 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_crawler_fs.dll
MOD - [2008/07/17 00:06:30 | 000,049,152 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_crawler.dll
MOD - [2008/07/17 00:06:28 | 000,126,976 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_util.dll
MOD - [2008/07/17 00:06:28 | 000,045,056 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_media.dll
MOD - [2008/07/17 00:06:28 | 000,036,864 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_access_control.dll
MOD - [2008/07/17 00:06:28 | 000,028,672 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_metadata.dll
MOD - [2008/07/17 00:06:28 | 000,028,672 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\dixim_device_manager.dll
MOD - [2008/05/16 16:57:40 | 000,441,705 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\sqlite3.dll
MOD - [2008/04/15 23:39:46 | 000,061,440 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\scew.dll
MOD - [2007/09/20 16:30:54 | 000,151,552 | ---- | M] () -- C:\Program Files\Fujitsu\NetworkPlayer Server\libexpat.dll
MOD - [2007/07/12 14:55:39 | 000,029,976 | ---- | M] () -- C:\Program Files\TKC\Shared Files\PRM95.DLL
MOD - [2007/07/11 17:16:41 | 000,029,976 | ---- | M] () -- C:\Program Files\TKC\Shared Files\HCW95DLL.DLL


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2013/09/21 05:00:58 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/07/25 09:40:44 | 000,162,672 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/10 16:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/01/07 13:09:10 | 000,037,384 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe -- (SKARUTE)
SRV - [2012/04/04 10:27:27 | 000,012,800 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\chitose\updnvsrv.exe -- (UpdateNaviInstallService)
SRV - [2011/01/08 17:06:56 | 000,016,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MsMpEng.exe -- (FCSAM)
SRV - [2010/10/27 16:40:36 | 000,087,336 | ---- | M] () [Auto | Running] -- C:\Program Files\Fujitsu\NetworkPlayer\Kernel\DMP\CLHNService.exe -- (CLHNService3)
SRV - [2010/02/27 00:17:38 | 003,370,652 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2010/02/21 08:05:18 | 000,373,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2009/04/11 15:28:17 | 000,052,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2008/10/20 10:03:32 | 000,040,960 | ---- | M] (Softex Inc.) [On_Demand | Stopped] -- C:\Program Files\Softex\OmniPass\OmniServ.exe -- (omniserv)
SRV - [2008/09/10 12:01:46 | 000,353,632 | ---- | M] () [Auto | Running] -- C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVECapSvc.exe -- (TVECapSvc)
SRV - [2008/09/10 12:01:46 | 000,132,448 | ---- | M] () [Auto | Running] -- C:\Program Files\BUFFALO\PCastTVFullSeg\Kernel\TV\TVESched.exe -- (TVESched)
SRV - [2008/09/01 10:00:02 | 000,154,160 | ---- | M] (BUFFALO INC.) [Auto | Running] -- C:\Windows\System32\BufFsUSBSvc.exe -- (BufFsUSBSvc)
SRV - [2008/07/17 00:06:30 | 000,091,408 | ---- | M] () [Auto | Running] -- C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe -- (NetworkPlayer Server)
SRV - [2008/05/14 18:58:08 | 001,172,728 | ---- | M] (AuthenTec, Inc.) [Auto | Running] -- C:\Program Files\Fingerprint Sensor\AtService.exe -- (ATService)
SRV - [2008/02/05 15:20:30 | 000,084,520 | ---- | M] (FUJITSU LIMITED) [On_Demand | Stopped] -- C:\Program Files\Fujitsu\PowerUtility\remote\PUTLRSRV.exe -- (putlrsrv)
SRV - [2008/01/29 18:34:30 | 000,145,960 | ---- | M] (FUJITSU LIMITED) [Auto | Running] -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe -- (PUSCSRVC)
SRV - [2008/01/21 11:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/11/21 16:33:28 | 000,062,760 | R--- | M] (FUJITSU LIMITED) [Auto | Running] -- c:\Program Files\Fujitsu\DustSolution\FJDService.exe -- (FjDstService)
SRV - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PSIService.exe -- (ProtexisLicensing)
SRV - [2007/04/06 04:12:48 | 000,073,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Forefront\Client Security\Client\SSA\FcsSas.exe -- (FcsSas)
SRV - [2007/01/04 19:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2005/09/13 14:30:00 | 000,057,344 | ---- | M] (O2Micro International) [Auto | Running] -- C:\Windows\System32\o2flash.exe -- (O2Flash)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\usbaapl.sys -- (USBAAPL)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\SynasUSB.sys -- (SynasUSB)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleNT.sys -- (EagleNT)
DRV - [2010/12/27 20:22:24 | 000,016,768 | ---- | M] (Yamaha Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netduetto.sys -- (duetto_simple)
DRV - [2008/12/05 02:25:38 | 000,112,640 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2008/10/17 17:50:00 | 000,131,072 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Mkd2kfNT.sys -- (Mkd2kfNt)
DRV - [2008/10/17 17:50:00 | 000,079,104 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV - [2008/09/01 10:00:00 | 001,478,704 | ---- | M] (BUFFALO INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BufFsUSB.sys -- (BufFsUSB)
DRV - [2008/05/19 19:42:56 | 000,912,384 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/05/14 19:18:02 | 000,475,520 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2008/03/12 15:16:00 | 000,041,560 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\o2sd.sys -- (O2SDRDR)
DRV - [2008/02/05 08:23:00 | 000,047,448 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\o2media.sys -- (O2MDRDR)
DRV - [2007/11/29 03:09:56 | 000,028,560 | ---- | M] (Logicool, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV - [2007/11/29 03:09:40 | 000,036,496 | ---- | M] (Logicool, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2007/11/29 03:09:32 | 000,035,216 | ---- | M] (Logicool, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2007/10/25 13:07:44 | 000,025,600 | ---- | M] (Native Instruments GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ak1avs.sys -- (ak1avs)
DRV - [2007/10/25 13:07:30 | 000,186,368 | ---- | M] (Native Instruments GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ak1usb.sys -- (ak1usb)
DRV - [2007/04/17 20:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\regi.sys -- (regi)
DRV - [2006/11/01 19:59:24 | 000,005,632 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\fuj02e3.sys -- (FUJ02E3)
DRV - [2006/11/01 19:20:28 | 000,005,888 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\fuj02b1.sys -- (FUJ02B1)
DRV - [2006/08/28 17:56:41 | 000,008,960 | ---- | M] (FUJITSU LIMITED) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\FBIOSDRV.SYS -- (FBIOSDRV)
DRV - [1999/11/18 17:20:00 | 000,003,872 | ---- | M] (FUJITSU LIMITED.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ADVNTDRV.SYS -- (ADVNTDRV)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=smt_hp_hao123_jp
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{ACCDEA9C-E237-409A-9155-FEDC1D09627B}: "URL" = http://azby.search.nifty.com/cgi-bin/search.cgi?select=1064&htmltype=2&cflg=%e6%a4%9c%e7%b4%a2&Text={searchTerms}
IE - HKLM\..\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}: "URL" = http://www.bigseekpro.com/search/toolbar/hao123/{D61EE2A0-4E97-5F9F-6DCF-729C34C77F8A}?q={searchTerms}


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = D:\sae
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.jp/
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\URLSearchHook: {2ACECADE-0BC7-4C6F-95CF-A221CC161B52} - No CLSID value found
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes,DefaultScope = {4F410FCE-9871-42c4-9E4D-7D3F62941AF7}
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{4F410FCE-9871-42c4-9E4D-7D3F62941AF7}: "URL" = http://search.yahoo.co.jp/search?&p={searchTerms}&fr=tbtopie&ei=UTF-8
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{55A8FEC0-AA3F-40ae-838A-EC3D49BCBDB3}: "URL" = http://search.yahoo.co.jp/search?&p={searchTerms}&fr=tbtopie&ei=utf-8
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADFA_jaJP357
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{92209D9C-79C7-452D-A9DA-326DFD091D0B}: "URL" = http://search.jword.jp/cns.dll?type=sb&fm=95&agent=&bypass=2&partner=AP&lang=utf8&name={searchTerms}
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{ACCDEA9C-E237-409A-9155-FEDC1D09627B}: "URL" = http://azby.search.nifty.com/cgi-bin/search.cgi?select=1064&htmltype=2&cflg=%e6%a4%9c%e7%b4%a2&Text={searchTerms}
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{B60881A5-6DF1-4f33-86AA-8586903DC3C1}: "URL" = http://search.yahoo.co.jp/search?&p={searchTerms}&fr=tbtopie&ei=utf-8
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}: "URL" = http://www.bigseekpro.com/search/toolbar/hao123/{D61EE2A0-4E97-5F9F-6DCF-729C34C77F8A}?q={searchTerms}
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\pmang.jp/pmangsupport-1: D:\sae\GameOn\Common files\nppmangsupport.dll File not found


[2013/09/01 17:03:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com
CHR - Extension: No name found = C:\Users\sae\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.9.0.12585_0\

O1 HOSTS File: ([2011/11/11 21:00:16 | 000,002,195 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 10.10.0.142 frstreg.profit.tkcnf.or.jp
O1 - Hosts: 10.10.0.144 kfs21.tkcnf.or.jp
O1 - Hosts: 10.10.0.145 total.profit.tkc.co.jp
O1 - Hosts: 10.10.0.146 knowhow.profit.tkcnf.or.jp
O1 - Hosts: 10.10.0.152 verchk.profit.tkc.co.jp
O1 - Hosts: 10.10.0.156 virusinfo.profit.tkc.co.jp
O1 - Hosts: 10.10.1.13 dl.profit.tkc.co.jp www.dl.tkc.co.jp
O1 - Hosts: 10.10.128.73 datastorage.profit.tkc.co.jp
O1 - Hosts: 10.10.128.81 seminar.profit.tkcnf.or.jp
O1 - Hosts: 10.10.193.76 profitmail.profit.tkcnf.or.jp
O1 - Hosts: 10.10.0.150 kessan.profit.tkcnf.or.jp etax-proposal.profit.tkcnf.or.jp
O1 - Hosts: 10.10.1.207 orderentry.profit.tkc.co.jp
O1 - Hosts: 10.10.1.206 zeikendb.profit.tkc.co.jp proposal.profit.tkc.co.jp tenpusyomendb.profit.tkc.co.jp sysqa.profit.tkc.co.jp new.profit.tkcnf.or.jp cert.profit.tkcnf.or.jp
O1 - Hosts: 10.10.192.12 hostsystem.profit.tkc.co.jp
O1 - Hosts: 10.2.4.100 w3.tkcnet.ne.jp www.fx2.ne.jp
O1 - Hosts: 10.2.4.1 www2.fx2.ne.jp mail.fx2.ne.jp
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\Toolbar\WebBrowser: (no name) - {2095FB03-93B3-4613-82EC-6BFCD77C043B} - No CLSID value found.
O3 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\Toolbar\WebBrowser: (no name) - {3DB1C21B-A7E0-4C3F-B39E-E00DD8792D90} - No CLSID value found.
O3 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files\Yahoo!J\Toolbar\7_3_0_15\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O4 - HKLM..\Run: [ATSwpNav] C:\Program Files\Fingerprint Sensor\ATSwpNav.exe (AuthenTec, Inc.)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel MyPhoto\Corel Photo Downloader.exe (Corel, Inc.)
O4 - HKLM..\Run: [FJDust] c:\Program Files\Fujitsu\DustSolution\HokoriApp.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [FJUPDNV_Chitose] C:\Program Files\Fujitsu\chitose\updatenv.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\IndicatorUtility\IndicatorUty.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logicool, Inc.)
O4 - HKLM..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Fujitsu Quick Touch\QuickTouch.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [LoadPUSCDaemon] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCDaemon.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [Microsoft Forefront Client Security Antimalware Service] C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NetworkPlayerServerHelper] C:\Program Files\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe (DigiOn, Inc.)
O4 - HKLM..\Run: [PUSCKAPLEXE] C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCKAPLEXE.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre7\bin\jusched.exe" File not found
O4 - HKLM..\Run: [tuto4pc_jp_16] File not found
O4 - HKLM..\Run: [TvOutSwitch] c:\Program Files\Fujitsu\DispSwitch\DispSwitchLauncher.exe (FUJITSU LIMITED)
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead DVD MovieWriter 5 for FUJITSU\Ulead Movie Wizard 4\uvPL.exe File not found
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-900862452-47108020-4045191762-1003..\Run: [FMVランチャー] C:\fjuty\wallbtn\FMVLauncher.exe (FUJITSU LIMITED)
O7 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: JWord でサイト検索 - res://C:\Program Files\JWord\Plugin2\jwdsrch.dll/300 File not found
O8 - Extra context menu item: Yahoo!ツールバーに追加 - C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O8 - Extra context menu item: Yahoo!検索で検索 - C:\Program Files\Yahoo!J\Toolbar\7_0_0_9\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O9 - Extra 'Tools' menuitem : Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..Trusted Domains: toshin.com ([pos] https in 信頼済みサイト)
O16 - DPF: {0172828C-CB7D-4C10-AF96-0ED9B52DCFDC} http://update.g2gcdn.com/g2g/g2gdownloader/GameOnG2G.cab (GameOnG2GCtrl Class)
O16 - DPF: {1DC420F0-D89A-40D0-B5CC-92B9AD19A1AC} http://down.hangame.co.jp/jp/dist/hgstart/HGPluginJP28.cab (HGPluginJP28 Class)
O16 - DPF: {5082D9B5-5538-4C50-BDB1-C5F44BFB98CC} http://down.hangame.co.jp/jp/installer/HgRunPub.cab (HgRunPub Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab (Java Plug-in 10.40.2)
O16 - DPF: {9BEEA7FF-FF76-403C-B124-86D9835435F0} https://file.gameon.jp/dl/download/sessionctrl.cab (GameChu Login Control)
O16 - DPF: {AA07EBD2-EBDD-4BD6-9F8F-114BD513492C} http://dist.cdnetworks.co.jp/cdndist/neffy/NeffyLauncher.cab (NeffyLauncherCtl Class)
O16 - DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab (Java Plug-in 1.7.0_40)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab (Java Plug-in 10.40.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Value error.)
O16 - DPF: {F8160836-0C11-4CA4-AD87-944542C7BCBD} http://down.hangame.co.jp/jp/purple/launcher/PubPlugin.cab (PubPlugin Class)
O16 - DPF: Microsoft XML Parser for Java file:///C:/Windows/Java/classes/xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4084F61F-9DBB-4BB0-A3D9-EC6D6B047130}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\sae\Pictures\amarec20120331-170954.jpg
O24 - Desktop BackupWallPaper: C:\Users\sae\Pictures\amarec20120331-170954.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/07/03 21:16:00 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{6f774232-b228-11de-bc63-001742f6e953}\Shell - "" = AutoRun
O33 - MountPoints2\{6f774232-b228-11de-bc63-001742f6e953}\Shell\AutoRun\command - "" = G:\RATII\RATIICert.exe
O33 - MountPoints2\{a87e88c4-c377-11dd-b4a4-001742f6e953}\Shell - "" = AutoRun
O33 - MountPoints2\{a87e88c4-c377-11dd-b4a4-001742f6e953}\Shell\AutoRun\command - "" = F:\keysafe.exe
O33 - MountPoints2\{d723d56e-fe86-11de-97b1-001742f6e953}\Shell\AutoRun\command - "" = F:\Install\SetupLauncher.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\keysafe.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  • 太陽
  • 2013/09/26 (Thu) 01:02:25
Re: OTL.txt2/2 を貼ります!

[2013/09/26 00:44:02 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\sae\Desktop\OTL.exe
[2013/09/25 15:00:26 | 000,000,000 | ---D | C] -- C:\Users\sae\Desktop\hakutaku
[2013/09/25 14:59:23 | 000,000,000 | ---D | C] -- C:\Users\sae\Documents\KRISTAL Media Files
[2013/09/25 00:54:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/09/25 00:47:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCカルテ
[2013/09/24 22:00:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/09/24 22:00:07 | 000,868,264 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013/09/24 22:00:07 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/09/24 21:59:57 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/09/24 21:59:57 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/09/24 21:59:57 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/09/24 21:59:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/09/24 01:26:53 | 000,000,000 | ---D | C] -- C:\Users\sae\AppData\Roaming\IObit
[2013/09/13 01:50:13 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/09/13 01:50:12 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/09/13 01:50:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/09/13 01:50:11 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/09/13 01:50:11 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013/09/13 01:50:10 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/09/13 01:50:09 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013/09/13 01:50:07 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013/09/12 22:45:44 | 002,049,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/09/01 17:15:10 | 000,000,000 | ---D | C] -- C:\Users\sae\AppData\Local\avgchrome
[2013/09/01 17:04:36 | 000,000,000 | ---D | C] -- C:\Windows\System32\Extensions
[2013/09/01 17:04:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2013/09/01 17:01:16 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2013/08/30 22:40:05 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/09/26 00:53:00 | 000,000,400 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{866947E1-2CBA-4455-870C-4F33C4A34EAD}.job
[2013/09/26 00:44:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\sae\Desktop\OTL.exe
[2013/09/26 00:42:24 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/09/26 00:42:22 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/26 00:42:21 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/26 00:42:21 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/26 00:42:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/25 21:47:36 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/09/25 00:57:07 | 001,042,066 | ---- | M] () -- C:\Users\sae\Desktop\adwcleaner.exe
[2013/09/25 00:47:46 | 000,643,792 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/09/25 00:47:46 | 000,412,070 | ---- | M] () -- C:\Windows\System32\perfh011.dat
[2013/09/25 00:47:46 | 000,122,858 | ---- | M] () -- C:\Windows\System32\perfc011.dat
[2013/09/25 00:47:45 | 000,122,758 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/09/24 21:59:37 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013/09/24 21:59:31 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013/09/24 21:59:30 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013/09/24 21:59:30 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013/09/24 21:59:29 | 000,868,264 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll
[2013/09/24 21:59:28 | 000,790,440 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll
[2013/09/23 05:01:00 | 000,000,378 | ---- | M] () -- C:\Windows\tasks\PCDGEpgCheck.job
[2013/09/21 05:00:58 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/09/21 05:00:58 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/09/13 11:49:42 | 000,350,096 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/09/25 00:56:56 | 001,042,066 | ---- | C] () -- C:\Users\sae\Desktop\adwcleaner.exe
[2013/08/06 00:01:37 | 000,002,892 | ---- | C] () -- C:\Windows\System32\audcon.sys
[2013/08/05 22:29:31 | 000,000,045 | ---- | C] () -- C:\Windows\System32\SYNSOPOS.exe.cfg
[2013/02/06 22:32:27 | 000,172,032 | ---- | C] () -- C:\Windows\lame_enc.dll
[2012/10/25 23:30:37 | 000,001,028 | ---- | C] () -- C:\Windows\cnsinfo.dat
[2011/11/11 20:58:10 | 000,000,028 | ---- | C] () -- C:\Windows\System32\lbj.ini
[2011/11/11 20:58:03 | 000,015,192 | ---- | C] () -- C:\Windows\System32\skypdfmonpro.dll
[2011/11/11 20:58:03 | 000,013,144 | ---- | C] () -- C:\Windows\System32\skypdfmonuipro.dll
[2010/12/08 17:46:44 | 000,000,552 | ---- | C] () -- C:\Users\sae\AppData\Local\d3d8caps.dat
[2009/07/21 16:58:20 | 000,001,196 | RHS- | C] () -- C:\Users\sae\ntuser.pol
[2009/01/23 20:39:17 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/12/02 20:20:11 | 000,020,480 | ---- | C] () -- C:\Users\sae\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/12/02 18:28:45 | 000,001,356 | ---- | C] () -- C:\Users\sae\AppData\Local\d3d9caps.dat
[1999/07/07 09:00:00 | 000,000,006 | RHS- | C] () -- C:\ProgramData\621F6B33-77BE-42ac-AE01-63846861CD25

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2006/11/02 21:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 02:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 15:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 15:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2013/09/26 00:42:22 | 000,000,626 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/09/25 21:47:36 | 000,000,674 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/09/26 00:42:24 | 000,000,678 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/09/23 05:01:00 | 000,000,378 | ---- | M] () -- C:\Windows\tasks\PCDGEpgCheck.job
[2013/09/26 00:53:00 | 000,000,400 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{866947E1-2CBA-4455-870C-4F33C4A34EAD}.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Hitachi HTS543225L9A300
Partitions: 4
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 - Removable Media
Interface type: USB
Media Type: Removable Media
Model: BUFFALO USB Flash Disk USB Device
Partitions: 1
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE2 - Removable Media
Interface type: USB
Media Type: Removable Media
Model: General USB Flash Disk USB Device
Partitions: 1
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 1,024.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00GB
Starting Offset: 1074790400
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 120.00GB
Starting Offset: 108448972800
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 12.00GB
Starting Offset: 237172162560
Hidden sectors: 0


DeviceID: Disk #1, Partition #0
PartitionType: Unknown
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 15.00GB
Starting Offset: 20480
Hidden sectors: 0


DeviceID: Disk #2, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 4.00GB
Starting Offset: 16384
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV - [2006/11/02 18:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2008/01/21 11:24:17 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2008/01/21 11:24:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009/04/11 15:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009/04/11 15:28:18 | 000,334,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011/11/16 23:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/04/11 15:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2008/01/21 11:24:36 | 000,081,920 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2013/07/08 13:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009/04/11 15:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009/04/11 15:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2011/03/03 00:44:27 | 000,086,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2008/01/21 11:25:01 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/04/11 15:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2008/01/21 11:24:09 | 000,288,256 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009/04/11 15:28:20 | 000,364,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009/04/11 15:28:24 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2008/01/21 11:24:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2008/01/21 11:24:11 | 000,274,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2008/01/21 11:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2008/01/21 11:23:44 | 000,168,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2008/01/21 11:24:47 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009/04/11 15:28:25 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010/08/17 23:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011/11/16 23:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2009/04/11 15:28:19 | 000,564,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2008/01/21 11:24:19 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009/04/11 15:28:24 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009/04/11 15:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2008/01/21 11:24:35 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011/11/16 23:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/04/11 15:28:26 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/09/07 01:20:29 | 000,125,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009/07/10 20:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2009/04/11 15:27:49 | 003,408,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2010/11/05 03:55:12 | 000,601,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009/04/11 15:28:24 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/10 20:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2009/04/11 15:28:23 | 000,153,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009/04/11 15:28:10 | 001,055,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2009/04/11 15:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2009/04/11 15:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2008/01/21 11:23:27 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2008/01/21 11:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/04/11 15:28:25 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2009/04/11 15:28:20 | 000,407,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009/04/11 15:28:25 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2009/04/11 15:27:45 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/04/11 15:28:25 | 000,162,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/03 07:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009/04/11 15:28:18 | 000,175,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/12 04:01:42 | 000,513,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009/06/10 20:42:23 | 000,160,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >
  • 太陽
  • 2013/09/26 (Thu) 01:03:27
Re: Extras.txt を貼ります!
OTL Extras logfile created on: 2013/09/26 0:46:12 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\sae\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.95 Gb Total Physical Memory | 0.85 Gb Available Physical Memory | 43.40% Memory free
4.14 Gb Paging File | 2.70 Gb Available in Paging File | 65.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 26.13 Gb Free Space | 26.13% Space Free | Partition Type: NTFS
Drive D: | 119.88 Gb Total Space | 110.29 Gb Free Space | 92.00% Space Free | Partition Type: NTFS
Drive G: | 14.92 Gb Total Space | 10.93 Gb Free Space | 73.23% Space Free | Partition Type: FAT32
Drive H: | 3.73 Gb Total Space | 0.46 Gb Free Space | 12.39% Space Free | Partition Type: FAT32

Computer Name: MATSUZAWA-PC | User Name: sae | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1B5EE6B3-5C0B-42F8-AF4C-8F11FF41BF2D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{B44A34B1-C2EE-4C6A-92EA-699B7F85B88B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05FE1BAB-496E-44BE-B971-A5EDECBBE4FC}" = protocol=6 | dir=in | app=c:\program files\fujitsu\nrs\wizardjskyweb.exe |
"{09151E8E-0E52-45AD-8A77-3DCAFACF6759}" = protocol=6 | dir=in | app=c:\program files\fujitsu\nrs\wizardezweb.exe |
"{0EAB80EE-FB1B-46D9-AAB6-1F2D134EBD6F}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{1472EC71-16A0-4E19-8ABB-953841FAB16C}" = protocol=6 | dir=in | app=c:\program files\fujitsu\networkplayer server\fmvsttool.exe |
"{2DE56417-F49D-4935-8B0F-425B52CAA0A2}" = protocol=6 | dir=in | app=c:\users\sae\desktop\3gpconvertersetup.exe |
"{3573890D-4CFC-4B86-8F04-58CCBBB15F67}" = protocol=6 | dir=in | app=c:\program files\fujitsu\nrs\wizardhtml.exe |
"{391EE03D-B875-4CD4-802B-E13BE9375C99}" = protocol=17 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerservertool.exe |
"{3C86FF3A-8A2E-4FDE-A940-9D3C41292696}" = protocol=17 | dir=in | app=c:\program files\fujitsu\nrs\wizardhtml.exe |
"{3CA6785F-C0F7-484A-B0C8-465F40FC3DF3}" = dir=in | app=c:\program files\fujitsu\networkplayer\networkplayer.exe |
"{53F8BDA8-D45F-479C-99CF-1E324C497201}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{64E5924A-9F01-4A6A-B621-A159A894086E}" = protocol=6 | dir=in | app=c:\program files\fujitsu\nrs\wizardchtml.exe |
"{70B572D1-3FF8-4C5D-9FAA-D5FE2FBD5DCC}" = protocol=17 | dir=in | app=c:\program files\fujitsu\nrs\wizardchtml.exe |
"{7A912245-03CF-4CA5-9B09-3BE618C1B996}" = protocol=6 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerservertool.exe |
"{89F57C96-1FC6-4196-94ED-006E201A8D27}" = protocol=17 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerserver.exe |
"{8FDD7B19-DD0E-4BAE-AD8D-0CD8C6133973}" = protocol=6 | dir=in | app=c:\program files\fujitsu\powerutility\remote\putlradm.exe |
"{AFD316D9-5D76-400C-97B3-6EDC62DB4E42}" = protocol=6 | dir=in | app=c:\users\sae\desktop\videotomp3setup.exe |
"{B52A07B0-55E0-49EE-8C9F-F417E085E5B3}" = protocol=6 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerserver.exe |
"{B574D32F-4733-4BC9-83D7-1CF1300352D4}" = dir=in | app=c:\program files\buffalo\pcasttvfullseg\tvenhance.exe |
"{BB2C0B56-AD2E-4994-BCA5-259E09E113FA}" = protocol=17 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerserverhelper.exe |
"{BF872FEA-7E3F-4A83-BEE6-D7F6B0DD5715}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{C5FA39DA-591B-40FD-BD51-6BB81BB3F7F5}" = protocol=17 | dir=in | app=c:\program files\fujitsu\nrs\wizardjskyweb.exe |
"{CD425EB4-4A40-450D-A801-D103A1903C53}" = protocol=17 | dir=in | app=c:\program files\fujitsu\nrs\wizardezweb.exe |
"{CD9CA437-B6F2-40E8-A663-6DD3C5651836}" = protocol=17 | dir=in | app=c:\program files\fujitsu\powerutility\remote\putlradm.exe |
"{D1B404BC-ED4D-4CF8-922B-64A7112707BC}" = protocol=17 | dir=in | app=c:\program files\fujitsu\networkplayer server\fmvsttool.exe |
"{DF3A359B-EF57-433B-A0FC-19E568FF7231}" = protocol=6 | dir=in | app=c:\program files\fujitsu\networkplayer server\networkplayerserverhelper.exe |
"{DFA3127E-06DE-4C6C-B720-9A408FD359AE}" = protocol=17 | dir=in | app=c:\users\sae\desktop\videotomp3setup.exe |
"{EC3F0352-B596-4C7D-8DA1-8A2C64BE729B}" = protocol=17 | dir=in | app=c:\users\sae\desktop\3gpconvertersetup.exe |
"{F8B0B28A-DCD7-47E6-9840-CA416D1B582D}" = dir=in | app=c:\program files\buffalo\pcasttvfullseg\tveservice.exe |
"{FED8BF01-257B-4C52-866B-F0C5FB55D69D}" = dir=in | app=c:\program files\nec\atermwrex\wrstexv.exe |
"TCP Query User{0313393E-3C86-41FF-A6AF-80BE6B024028}C:\users\misato\desktop\bouyomichan.exe" = protocol=6 | dir=in | app=c:\users\misato\desktop\bouyomichan.exe |
"TCP Query User{4D10518B-4747-4092-9842-492672F1A1DE}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{6B0FE703-EA68-4B44-A638-B237CAE7C5E8}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"TCP Query User{77239DC1-128D-40F1-B52D-F6E31D36ADD0}C:\program files\serversman\desktop\serversman.exe" = protocol=6 | dir=in | app=c:\program files\serversman\desktop\serversman.exe |
"TCP Query User{840EA4D9-1003-4CDB-B311-44C7B44E8F78}C:\users\misato\desktop\bouyomichan\bouyomichan.exe" = protocol=6 | dir=in | app=c:\users\misato\desktop\bouyomichan\bouyomichan.exe |
"TCP Query User{A9E55670-C5D4-449A-8B9C-A47C817F8618}D:\sae\netduetto.exe" = protocol=6 | dir=in | app=d:\sae\netduetto.exe |
"TCP Query User{BE7248DD-90B9-4949-A494-D9A9F5A1D216}F:\ratiiclient.exe" = protocol=6 | dir=in | app=f:\ratiiclient.exe |
"TCP Query User{E1539233-DD4D-46C8-BA63-DEC680A9C5FE}C:\windows\downloaded program files\plauncher.exe" = protocol=6 | dir=in | app=c:\windows\downloaded program files\plauncher.exe |
"UDP Query User{139BA260-B200-4BD1-B9F3-4A39314D392F}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{4178A390-B6BE-44AF-84CF-6A83D352F288}F:\ratiiclient.exe" = protocol=17 | dir=in | app=f:\ratiiclient.exe |
"UDP Query User{935E70E4-366A-482A-B02B-1E63CA727F99}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{942903E1-2C4B-419F-A115-86889A77DFFC}C:\users\misato\desktop\bouyomichan\bouyomichan.exe" = protocol=17 | dir=in | app=c:\users\misato\desktop\bouyomichan\bouyomichan.exe |
"UDP Query User{9B055347-E133-46A9-98C4-58F20D7F55FA}C:\users\misato\desktop\bouyomichan.exe" = protocol=17 | dir=in | app=c:\users\misato\desktop\bouyomichan.exe |
"UDP Query User{A3E302EB-1253-49CB-A629-9CF6E876EF8C}C:\windows\downloaded program files\plauncher.exe" = protocol=17 | dir=in | app=c:\windows\downloaded program files\plauncher.exe |
"UDP Query User{B9AD03D2-ECD0-4D59-9781-17471FF86184}C:\program files\serversman\desktop\serversman.exe" = protocol=17 | dir=in | app=c:\program files\serversman\desktop\serversman.exe |
"UDP Query User{CD4D6D9F-12AC-4686-80D6-FA61F9DEF2B5}D:\sae\netduetto.exe" = protocol=17 | dir=in | app=d:\sae\netduetto.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{042170EE-0B69-405D-BA6E-72FE7D19620B}" = PCカルテ
"{04887466-E7B8-407A-BFAF-6ACBB49B9E6A}" = SonicStage for LISMO 3.1.01 Upgrade Program
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{14B79826-8E53-30C2-8D88-28B8726C90FF}" = Microsoft .NET Framework 4 Client Profile JPN Language Pack
"{177B8728-AEB3-4B9D-B249-63BBD42DDD97}" = AuthenTec Fingerprint Software
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1928F447-569E-4238-8E37-A4156A4F838C}" = らくらくズーム
"{1A20AFF1-8171-49B0-A2F9-3205939DA176}" = @フォトレタッチ
"{1D21451D-9C36-42A1-BD21-4A68410C9F2C}" = 壁紙かんたん模様替え
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for FUJITSU
"{21645C75-EF94-11D3-B252-005004D4873D}" = FM かんたんバックアップ
"{224F03EA-8DA5-4413-9B80-FD3B7EABAF9B}" = 富士通モビリティセンター拡張
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{23E8D2D6-F7C8-4A35-816C-6C914EE0A601}" = Citrix Presentation Server Web クライアント
"{2497E963-ABE8-486C-9D7D-188BA291429B}" = 
"{26876AA9-86C6-4E6B-99E6-0FE449DF1971}" = メールソフト切り替えツール
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{283BDB6B-DA47-436B-BD6E-29CF78E5EB9C}" =
"{29276E3F-15EF-49FC-9793-B07811C8059D}" = PC乗換ガイド
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{378C547F-7AE3-467D-9E11-C888B026F62D}" = NetworkPlayer サーバー
"{38BAEB51-2562-4CA7-8E34-F6B8719C7A85}" = DELETER COMICWORKS 2.0体験版
"{3A801B30-F3FD-42C2-B460-4A4117B572EE}" = au Music Port
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C569633-C8DE-46E2-BB8F-F65198681C2F}" = マイフォト
"{42BE068E-70B1-4AC7-BDFB-205410183140}" = 
"{43650609-8059-492F-A3CF-7185410B45E5}" = FMV画面で見るマニュアル
"{44193AE6-D871-473C-8D1F-D55FBCB45552}" = Inst5671
"{47BC37A3-35C8-484A-8CBD-851914EB095E}" = アップデートナビ
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D4FC0FF-F197-401F-842E-E118F1D2647E}" = Microsoft Forefront Client Security マルウェア対策サービス
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype(TM) 6.7
"{4EC9E702-4FCF-4C63-B840-42C8A559C9C4}" = ゆったり設定2
"{53C75F20-15FB-4BF5-B244-806F36C5CA21}" = au Music Port
"{59FEFE3F-8119-457C-A4EE-CF24202DD9D2}" = Visual Basic 6.0 SP6 ランタイムライブラリ 第4版
"{60DAE067-F470-4FFC-9FEC-F67914FE2AEC}" = @映像館
"{6226477E-444F-4DFE-BA19-9F4F7D4565BC}" = ワンタッチボタン設定
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{723D1614-0571-4628-BC3E-B8AD9318143C}" = @FTP
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{77E46779-1EF3-4ED9-8D55-5BE365AF13CE}" = パソコン準備ばっちりガイド
"{7BA0ECC1-2636-4169-9BF0-F49A1F7AAD87}" = 富士通起動ユーティリティ
"{7F41D91F-F0A9-3DD8-91DF-FC86E00F5DC2}" = Microsoft .NET Framework 4 Extended JPN Language Pack
"{8002D9C5-A7C1-4943-8A2B-DE8F0DE6C9EF}" = ホームページNinja9
"{83F00304-550B-4652-A12C-E301CB8B1EE4}" = FMVスクリーンセーバー
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EEF83D0-4B0C-420F-BE83-4E278E4FF693}" = 画面で見るマニュアルアップデートパック
"{90120000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2007
"{90120000-0016-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2007
"{90120000-001A-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2007
"{90120000-001B-0411-0000-0000000FF1CE}_PERSONALR_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PERSONALR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2007
"{90120000-001F-0411-0000-0000000FF1CE}_PERSONALR_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-0028-0411-0000-0000000FF1CE}_PERSONALR_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}_PERSONALR_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-0018-0411-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2010
"{90140000-0018-0411-0000-0000000FF1CE}_Office14.POWERPOINTR_{7F3577FB-B07A-47AB-A6E1-26D14D21C6BA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.POWERPOINTR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2010
"{90140000-001F-0411-0000-0000000FF1CE}_Office14.POWERPOINTR_{9FB78D03-3A34-4A57-B65D-0D7F32C1B603}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-0028-0411-0000-0000000FF1CE}_Office14.POWERPOINTR_{5E056779-9F4B-4593-86D3-28E5548A8B64}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2010
"{90140000-002C-0411-0000-0000000FF1CE}_Office14.POWERPOINTR_{5FCA98B1-D6ED-43DC-B146-2C8DF169C353}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2010
"{90140000-006E-0411-0000-0000000FF1CE}_Office14.POWERPOINTR_{9DBC2773-7F63-45EE-AA4D-4677BA8B18B2}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0121-0411-0000-0000000FF1CE}" = Microsoft Office IMESS (Japanese) 2010
"{90140000-0122-0000-0000-0000000FF1CE}" = Microsoft Office IME 2010
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-0033-0000-0000-0000000FF1CE}" = Microsoft Office Personal 2007
"{91120000-0033-0000-0000-0000000FF1CE}_PERSONALR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{91140000-0018-0000-0000-0000000FF1CE}" = Microsoft Office PowerPoint 2010
"{91140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINTR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{932245FB-2F3B-3E2E-B8AB-BDE96E434F21}" = Microsoft .NET Framework 3.5 Language Pack SP1 - jpn
"{95140000-00AF-0411-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{A33E457B-5369-481F-8B53-71108AE2EB5B}" = Roxio Creator LJ
"{A8FF2B88-C235-4326-A6C0-C297E549D8D8}" = お手入れナビ
"{A991D480-1349-4FDD-983C-19241910A9E1}" = Microsoft Office ナビ 2007
"{AA4BF92B-2AAF-11DA-9D78-000129760D75}" = NetworkPlayer
"{AC76BA86-7AD7-1041-7B44-AA1000000001}" = Adobe Reader X (10.1.8) - Japanese
"{B351DC34-2758-492A-ADEE-66C17A61860E}" = PowerUtility - スケジュール機能
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BA0CC975-682B-4678-A35C-05E607F36387}" = IndicatorUtility
"{C24447C3-CACD-4ce3-BA95-1BE092E0C4F8}" = AzbyClubガジェットプログラム
"{C99E6F22-FD0E-4D6E-925A-268AD1C050D6}" = its-moNavi PC
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D0038B10-4B2C-49D3-9C66-8B0A1518F1B9}" = muveeNow 2.2
"{D18E639E-0B65-4FC1-9065-78926EE90958}" = PowerUtility - リモート管理機能
"{D1A1B85E-328C-47C0-80EB-3AF2C567114E}" = 電子辞書
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"{D75D64D3-2CD2-46EA-BA1B-0566F0C72453}" = SkyPDF Driver
"{DA79D125-6A5B-4499-87F9-977956768318}" = GAMEPACK2008F
"{DDB64FC6-9298-4F6E-B8B4-896D71754741}" = Fujitsu Display Manager
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media エンコーダ 9 シリーズ
"{E40CCCFF-E52F-49FC-8215-88B9F4D40227}" = ATLAS 翻訳パーソナル 2008 LE
"{E440FCB2-6CA6-46A4-BA67-CEF6C009165F}" = @メール
"{E4C891D6-6844-41B8-86E8-633CACCC644F}" = PCastTV for 地デジ
"{E868C148-D80D-4EB7-A3CD-42CF98A1AC89}" = 富士通デバイス再検出ツール
"{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}" = 富士通拡張機能ユーティリティ
"{E8B56B38-A826-11DB-8C83-0011430C73A4}" = Microsoft Forefront Client Security 状態評価サービス
"{E902DA50-B519-4820-81C2-694226E23B2E}" = @niftyでブロードバンド
"{EA934267-3D11-4591-88EA-374CC6618A9E}" = FMVランチャー
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"{F0DAED41-FE6C-11D4-8786-00A0C96797B8}" = CDView
"{f12b5e87-32c4-4452-b7db-2d5728a54503}.sdb" = TKCCustom
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = SetPoint
"{F34C74C3-077A-4A56-B4C0-71C4DB6D4933}" = O2Micro Flash Memory Card Windows Driver
"{F41DAAD0-58A1-4A9D-B0E8-304D3748D555}" = うれしレシピ
"{F4E57F49-84B4-4CF2-B0A1-8CA1752BDF7E}" = OmniPass 6.00.27
"{F96D9B35-8713-49CC-910A-9742D7EB5F8E}" = FMVサポートナビ
"{FE51662F-D8F6-43B5-99D9-D4894AF00F83}" = Roxio Creator LJ
"{FEACEB70-34FE-491F-85DA-028D1C1707BF}" = ニコ生デスクトップキャプチャー(XP) SEASON2
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 8
"Efficient WMA MP3 Converter_is1" = Efficient WMA MP3 Converter version 0.99.9.3
"Google Chrome" = Google Chrome
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"IME14SS.1041" = Microsoft Office IME 2010 (Japanese)
"InstallShield_{1928F447-569E-4238-8E37-A4156A4F838C}" = らくらくズーム
"InstallShield_{1A20AFF1-8171-49B0-A2F9-3205939DA176}" = @フォトレタッチ
"InstallShield_{1C725459-5053-42A5-B22A-F3E91484DF65}" = @メニュー
"InstallShield_{1D21451D-9C36-42A1-BD21-4A68410C9F2C}" = 壁紙かんたん模様替え
"InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = WinDVD for FUJITSU
"InstallShield_{224F03EA-8DA5-4413-9B80-FD3B7EABAF9B}" = 富士通モビリティセンター拡張
"InstallShield_{29276E3F-15EF-49FC-9793-B07811C8059D}" = PC乗換ガイド
"InstallShield_{4EC9E702-4FCF-4C63-B840-42C8A559C9C4}" = ゆったり設定2
"InstallShield_{60DAE067-F470-4FFC-9FEC-F67914FE2AEC}" = @映像館
"InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}" = ワンタッチボタン設定
"InstallShield_{723D1614-0571-4628-BC3E-B8AD9318143C}" = @FTP
"InstallShield_{77E46779-1EF3-4ED9-8D55-5BE365AF13CE}" = パソコン準備ばっちりガイド
"InstallShield_{7BA0ECC1-2636-4169-9BF0-F49A1F7AAD87}" = 富士通起動ユーティリティ
"InstallShield_{83F00304-550B-4652-A12C-E301CB8B1EE4}" = FMVスクリーンセーバー
"InstallShield_{A8FF2B88-C235-4326-A6C0-C297E549D8D8}" = お手入れナビ
"InstallShield_{B351DC34-2758-492A-ADEE-66C17A61860E}" = PowerUtility - スケジュール機能
"InstallShield_{BA0CC975-682B-4678-A35C-05E607F36387}" = IndicatorUtility
"InstallShield_{D18E639E-0B65-4FC1-9065-78926EE90958}" = PowerUtility - リモート管理機能
"InstallShield_{D1A1B85E-328C-47C0-80EB-3AF2C567114E}" = 電子辞書
"InstallShield_{DDB64FC6-9298-4F6E-B8B4-896D71754741}" = Fujitsu Display Manager
"InstallShield_{E868C148-D80D-4EB7-A3CD-42CF98A1AC89}" = 富士通デバイス再検出ツール
"InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}" = 富士通拡張機能ユーティリティ
"InstallShield_{EA934267-3D11-4591-88EA-374CC6618A9E}" = FMVランチャー
"InstallShield_{F34C74C3-077A-4A56-B4C0-71C4DB6D4933}" = O2Micro Flash Memory Card Windows Driver
"KRISTAL Audio Engine" = KRISTAL Audio Engine
"Lhaplus" = Lhaplus
"Microsoft .NET Framework 3.5 Language Pack SP1 - jpn" = Microsoft .NET Framework 3.5 Language Pack SP1 - 日本語
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile JPN Language Pack" = Microsoft .NET Framework 4 Client Profile Language Pack - 日本語
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended JPN Language Pack" = Microsoft .NET Framework 4 Extended Language Pack - 日本語
"Microsoft Office Navi 2007 12.0.2213.0" = Microsoft Office ナビ 2007
"Native Instruments - Audio Kontrol 1 Driver" = Native Instruments - Audio Kontrol 1 Driver
"Office14.POWERPOINTR" = Microsoft PowerPoint 2010
"PCドキュメントナビゲータ" =
"PERSONALR" = Microsoft Office Personal 2007
"RadioLine Free" = RadioLine Free
"Red Stone" = RED STONE
"Red Stone for japan hangame" = RED STONE
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Windows Media Encoder 9" = Windows Media エンコーダ 9 シリーズ
"Yahoo!Jツールバー" = Yahoo!ツールバー
"てきぱき家計簿マム6" = てきぱき家計簿マム6
"らくらく無線スタートEX" = らくらく無線スタートEX
"広辞苑+現代用語+学研パーソナル" = 広辞苑+現代用語+学研パーソナルのアンインストール
"乗換案内 旅費精算_is1" = 乗換案内 旅費精算

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"DealPly" = DealPly

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"DealPly" = DealPly

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-900862452-47108020-4045191762-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2013/09/24 8:48:22 | Computer Name = matsuzawa-PC | Source = Application Hang | ID = 1002
Description = プログラム iexplore.exe バージョン 9.0.8112.16506 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、[問題のレポートと解決策]
コントロール パネルで、エラーの履歴をクリックしてください。 プロセス ID: b14 開始時刻: 01ceb92416de6b96 終了時刻: 16

Error - 2013/09/24 8:57:01 | Computer Name = matsuzawa-PC | Source = Application Hang | ID = 1002
Description = プログラム iexplore.exe バージョン 9.0.8112.16506 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、[問題のレポートと解決策]
コントロール パネルで、エラーの履歴をクリックしてください。 プロセス ID: 14bc 開始時刻: 01ceb924ebb9f786 終了時刻: 0

Error - 2013/09/24 10:24:38 | Computer Name = matsuzawa-PC | Source = WinMgmt | ID = 10
Description =

Error - 2013/09/24 10:34:27 | Computer Name = matsuzawa-PC | Source = WinMgmt | ID = 10
Description =

Error - 2013/09/24 11:52:03 | Computer Name = matsuzawa-PC | Source = VSS | ID = 8194
Description =

Error - 2013/09/24 19:52:54 | Computer Name = matsuzawa-PC | Source = WinMgmt | ID = 10
Description =

Error - 2013/09/25 7:59:09 | Computer Name = matsuzawa-PC | Source = WinMgmt | ID = 10
Description =

Error - 2013/09/25 8:01:21 | Computer Name = matsuzawa-PC | Source = Application Hang | ID = 1002
Description = プログラム iexplore.exe バージョン 9.0.8112.16506 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、[問題のレポートと解決策]
コントロール パネルで、エラーの履歴をクリックしてください。 プロセス ID: 1640 開始時刻: 01ceb9e6ae4ec7ea 終了時刻: 6

Error - 2013/09/25 8:48:48 | Computer Name = matsuzawa-PC | Source = WinMgmt | ID = 10
Description =

Error - 2013/09/25 11:43:02 | Computer Name = matsuzawa-PC | Source = Application Hang | ID = 1002
Description = プログラム iexplore.exe バージョン 9.0.8112.16506 は Windows との対話を停止し、終了しました。問題に関する詳細な情報があるかどうかを確認するには、[問題のレポートと解決策]
コントロール パネルで、エラーの履歴をクリックしてください。 プロセス ID: 1f7c 開始時刻: 01ceba05d6e1ad00 終了時刻: 13

[ System Events ]
Error - 2013/09/24 8:47:49 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7009
Description =

Error - 2013/09/24 10:24:39 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 2013/09/24 10:34:27 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 2013/09/24 19:52:58 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 2013/09/24 19:57:35 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7022
Description =

Error - 2013/09/24 19:58:24 | Computer Name = matsuzawa-PC | Source = DCOM | ID = 10010
Description =

Error - 2013/09/24 19:58:24 | Computer Name = matsuzawa-PC | Source = FcsSas | ID = 141085
Description = Microsoft Update のオプトインが完了しましたが、エラーが発生しました。 Forefront Client Security
状態評価サービス (FcsSas) が Microsoft Update を使ったコンピュータの登録に失敗しました。 エラー コード: 0x80080005 可能な操作の一例:

- Windows Update Agent サービス (wuauserv) が有効であることを確認します。 - Windows Update を使用して
Microsoft Update に手動でオプトインします

Error - 2013/09/25 7:59:10 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 2013/09/25 8:48:51 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 2013/09/25 8:51:58 | Computer Name = matsuzawa-PC | Source = Service Control Manager | ID = 7022
Description =


< End of report >
  • 太陽
  • 2013/09/26 (Thu) 01:05:12
駆除します
OTLで、いくつか設定の残骸と、取り残しの迷惑ソフトが見つかりました。駆除しましょう。
処理後、広告が消えたかどうか確認してください。


■不要と思われるソフトウェアのアンインストール
コントロールパネルからで構いません。無ければ無視で。

・DealPly
アドウェアのようです。アンインストールを推奨します。


■Fixスクリプトによる処置
OTLを起動後、以下のスクリプトを「Custom Scan/Fixes」に貼り付け、「Run Fix」を押してください。
最初の「:OTL」を抜かさないように。

実行するとプロセスがすべて強制終了されますので、アプリはできるだけ終了しておいてください。
また、ごみ箱が空になりますので、必要なファイルがある場合は先に救出してください。
なお、OTLがフリーズしてしまって先に進まない場合は、セーフモードでコンピュータを起動したうえで実行してください。

セーフモードへの入り方:
http://www.higaitaisaku.com/safemode.html

完了後、再起動を要求されますので、「OK」で再起動してください。再起動後、ログが出ますので、そちらを載せてください。なお、今回のログに関しては、そのまま貼り付けで構いません。
なお、ログを閉じてしまった場合は、C:\_OTL\MovedFiles フォルダ内にログ(日付と時刻からなる数字ファイル名のファイル)がありますので、そちらの内容をお知らせください。

---ここから

:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=smt_hp_hao123_jp
IE - HKLM\..\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}: "URL" = http://www.bigseekpro.com/search/toolbar/hao123/{D61EE2A0-4E97-5F9F-6DCF-729C34C77F8A}?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://search.jword.jp/jwd_sb_srchcust.htm?ielang={SUB_RFC1766}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.jword.jp/jwd_sb_srchasst.htm?ielang={SUB_RFC1766}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{92209D9C-79C7-452D-A9DA-326DFD091D0B}: "URL" = http://search.jword.jp/cns.dll?type=sb&fm=95&agent=&bypass=2&partner=AP&lang=utf8&name={searchTerms}
IE - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}: "URL" = http://www.bigseekpro.com/search/toolbar/hao123/{D61EE2A0-4E97-5F9F-6DCF-729C34C77F8A}?q={searchTerms}
O3 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\Toolbar\WebBrowser: (no name) - {2095FB03-93B3-4613-82EC-6BFCD77C043B} - No CLSID value found.
O3 - HKU\S-1-5-21-900862452-47108020-4045191762-1003\..\Toolbar\WebBrowser: (no name) - {3DB1C21B-A7E0-4C3F-B39E-E00DD8792D90} - No CLSID value found.
O4 - HKLM..\Run: [tuto4pc_jp_16] File not found
[2013/09/01 17:04:36 | 000,000,000 | ---D | C] -- C:\Windows\System32\Extensions
[2013/09/01 17:04:35 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2013/09/01 17:01:16 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2013/09/01 17:15:10 | 000,000,000 | ---D | C] -- C:\Users\sae\AppData\Local\avgchrome
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:373E1720

:Commands
[purity]
[emptytemp]
[reboot]

---ここまで
  • イルカ
  • 2013/09/26 (Thu) 23:18:32
Re: OTLで駆除しました。
再起動後のログです。

All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\CustomizeSearch| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-900862452-47108020-4045191762-1003\Software\Microsoft\Internet Explorer\SearchScopes\{92209D9C-79C7-452D-A9DA-326DFD091D0B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{92209D9C-79C7-452D-A9DA-326DFD091D0B}\ not found.
Registry key HKEY_USERS\S-1-5-21-900862452-47108020-4045191762-1003\Software\Microsoft\Internet Explorer\SearchScopes\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E627DC4B-8C04-4234-A2D4-1D634EE01C41}\ not found.
Registry value HKEY_USERS\S-1-5-21-900862452-47108020-4045191762-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2095FB03-93B3-4613-82EC-6BFCD77C043B} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2095FB03-93B3-4613-82EC-6BFCD77C043B}\ not found.
Registry value HKEY_USERS\S-1-5-21-900862452-47108020-4045191762-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3DB1C21B-A7E0-4C3F-B39E-E00DD8792D90} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3DB1C21B-A7E0-4C3F-B39E-E00DD8792D90}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\tuto4pc_jp_16 deleted successfully.
C:\Windows\System32\Extensions folder moved successfully.
C:\Windows\System32\searchplugins folder moved successfully.
C:\ProgramData\TEMP folder moved successfully.
C:\Users\sae\AppData\Local\avgchrome folder moved successfully.
Unable to delete ADS C:\ProgramData\TEMP:373E1720 .
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes

User: Guest

User: kayoko
->Temp folder emptied: 221629372 bytes
->Java cache emptied: 27757985 bytes
->Google Chrome cache emptied: 5853971 bytes
->Flash cache emptied: 598845 bytes

User: matsuzawa
->Temp folder emptied: 120818536 bytes
->Java cache emptied: 62047814 bytes
->Apple Safari cache emptied: 1792000 bytes
->Flash cache emptied: 79086 bytes

User: misato

User: Public

User: sae
->Temp folder emptied: 62526104 bytes
->Java cache emptied: 541859 bytes
->Google Chrome cache emptied: 22142418 bytes
->Flash cache emptied: 2856982 bytes

User: tm
->Temp folder emptied: 263910785 bytes
->Java cache emptied: 130986 bytes
->Google Chrome cache emptied: 9221021 bytes
->Flash cache emptied: 6662 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2589481431 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 3,234.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 09272013_003759

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • 太陽
  • 2013/09/27 (Fri) 00:48:16
状況に変化はありましたか?
今度は、広告は消えたでしょうか?
  • イルカ
  • 2013/09/27 (Fri) 01:09:26
Re: 不快な広告に困っています。
広告の数は減ったんですが、あと一つMicrosoft CERTIFIED Partnerの広告が消えてくれません…。
  • 太陽
  • 2013/09/27 (Fri) 02:20:04
Re: 不快な広告に困っています。
広告が出ているのはどのサイトでしょうか?それとも全てのサイトで出てきますか?

また、以下の方法で、広告は出てきますか?
スタートメニュー → 全てのプログラム → アクセサリ → システムツール → Internet Explorer (アドオンなし)
  • イルカ
  • 2013/09/27 (Fri) 23:44:22
Re: 不快な広告に困っています。
出てこなくなりました!!!
本当にお世話になりました!
イルカさん、ありがとうございました!!!
  • 太陽
  • 2013/09/29 (Sun) 21:08:23
後片付けです
とりあえず直ったようですね。
他の問題がなければ、以下の後片付けに移ってください。


■後片付け
使ったツールを削除します。

・HijackThis
コントロールパネルから、アンインストールしてください。
ポータブル版をダウンロードされた場合などはコントロールパネルに出てきませんが、その場合は実行ファイルをそのまま削除可能です。

・アンインストール情報ツール
ファイル・フォルダごと削除してください。

・OTL
OTLを起動後、上側にある「Clean Up」ボタンを押してください。
OTL自身も自動的に削除されます。

・AdwCleaner
起動後、画面右下にある「Uninstall」を押してください。
本当に削除するかと聞かれるので、「はい」を押すとウィンドウが閉じ、ログなどの関連ファイルがまとめて削除されます。


■転ばぬ先の杖
以下のリンク先の記載内容も、参考にされるとよいかと思います。
http://www.higaitaisaku.com/korobanu.html


以上です。作業お疲れ様でした。今後はお気をつけて。
何かあればまた返信をください。
  • イルカ
  • 2013/09/30 (Mon) 00:41:59
ありがとうございました!
イルカさん、本当にありがとうございました!!
  • 太陽
  • 2013/09/30 (Mon) 21:08:42

返信フォーム※初心者、通りすがり等、重複しやすい名前の利用はご遠慮ください。






プレビュー (投稿前に内容を確認)