悪代官の伏魔殿掲示板

Windows7 PCリペアツールの広告が出ています。

Windows7PCリペアツールの広告が別ウインドウで出て困っています、どうかお力添えください。
ブラウザはSRWare Ironを主に使っておりますがIEもChromeも使っております、以下ログです。

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:05:11, on 2014/01/18
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
D:\App\AutoLogin\AutoLogin.exe
D:\App\ayame141\Ayame.exe
D:\App\CLISM\CLISM.EXE
D:\App\IE8用マウスジェスチャーkazaguru_x64\wow64\Kazawow64.exe
D:\App\Samurize\Client.exe
D:\App\ボリューム調整ソフト Volume2\Volume2.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Input Director\InputDirector.exe
C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
C:\Program Files (x86)\PIXELA\StationTV_X\StationTV_X.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Input Director\InputDirectorClipboardHelper.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\PIXELA\StationTV_X\reservation.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\BUFFALO\PCastTV_HD\PCastHDTray.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
D:\App\動画保存変換ソフト CravingExplorer\CravingExplorer.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\PIXELA\StationTV_X\STVXAnalyzer.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
C:\Program Files (x86)\SRWare Iron\iron.exe
D:\Downloads\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AutoLoginAPI - {39F2FB27-6803-4EF6-92BF-1FE49EE90A57} - D:\App\AutoLogin\AutoLoginAPI.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Logicool SetPoint - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logicool\SetPointP\32-bit\SetPointSmooth.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [EVEREST AutoStart] C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest_start.exe
O4 - HKCU\..\Run: [InputDirector] "C:\Program Files (x86)\Input Director\InputDirector.exe" /hide
O4 - HKCU\..\Run: [StationTV_X] C:\Program Files (x86)\PIXELA\StationTV_X\StationTV_X.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1750872516-3752858131-151613766-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1750872516-3752858131-151613766-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Bookshelfで検索(&L) - res://C:\Program Files (x86)\Microsoft Reference\Microsoft Bookshelf 3.0\bsdef.dll/#1001
O8 - Extra context menu item: IDとパスワードの保存 - D:\App\AutoLogin\SaveForm.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: IDとパスワードの保存 - {329F5C4C-BD7A-4fcc-92A1-2072A32EB564} - D:\App\AutoLogin\AutoLoginAPI.DLL (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.11.0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6B237A93-4566-4AC4-8DF3-93B5965AD54B}: NameServer = 192.168.1.1
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: インテル(R) ラピッド・ストレージ・テクノロジー (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Input Director Vista Service (IDVistaService) - Unknown owner - C:\Program Files (x86)\Input Director\IDVistaService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Input Director Service (InputDirector) - Unknown owner - C:\Program Files (x86)\Input Director\IDWinService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NFC Proxy Service (NFCProxyService) - Sony Corporation - C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: StationTV_X Collaborate Service (STVXCollaborateService) - Unknown owner - C:\Program Files (x86)\PIXELA\StationTV_X\STVXService.exe
O23 - Service: StationTV_X Service (STVXService) - Unknown owner - C:\Program Files (x86)\PIXELA\StationTV_X\STVXService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 11075 bytes
Adobe AIR Adobe Systems Incorporated 2013/12/19 3.9.0.1380
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 2013/12/12 6.00 MB 11.9.900.170
Adobe Flash Player 11 Plugin Adobe Systems Incorporated 2013/12/12 6.00 MB 11.9.900.170
Adobe Reader XI (11.0.06) - Japanese Adobe Systems Incorporated 2014/01/15 147 MB 11.0.06
Adobe Shockwave Player 12.0 Adobe Systems, Inc. 2013/10/19 12.0.4.144
Apple Application Support Apple Inc. 2013/09/22 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2013/09/22 25.0 MB 7.0.0.117
Apple Software Update Apple Inc. 2012/11/26 2.38 MB 2.1.3.127
Bitdefenderコマンドライン版 UiUicy 2012/11/26 718 KB 2.0
Bonjour Apple Inc. 2012/11/26 2.00 MB 3.0.0.10
Brother ドライバー＆ソフトウェア DCP-J525N Brother Industries, Ltd. 2012/11/26 1.0.19.0
BUFFALO PCast MPEG2 Decoder MC BUFFALO INC. 2013/02/15
BUFFALO PCastTV 地デジ Lite BUFFALO INC. 2013/02/15
BUFFALO PCastTVムーブツール for Mobile BUFFALO INC. 2013/02/15
CDBurnerXP CDBurnerXP 2012/11/26 12.2 MB 4.4.2.3442
CloneDVD2 Elaborate Bytes 2012/11/26 2.9.2.8
CoolNovo The Maple Studio 2013/04/28 2.0.7.11
Desktop Menu Launch（64ビット） Darksky 2012/11/26
DVD Creator3 Xilisoft 2012/11/26 3.0.26.0314
EVEREST Ultimate Edition v5.00 Lavalys, Inc. 2012/11/26 5.00
Folder Options X T800 Productions 2012/11/26 1.22 MB 1.2.0.6
GGuide番組表 BUFFALO INC. 2013/02/15 13.5 MB
Google Chrome Google Inc. 2013/07/13 32.0.1700.76
Half-Life(R) 2 Valve 2012/11/26 4.20 GB 1.0.0.0
Host OpenAL (ADI) 2013/01/02
iCloud Apple Inc. 2013/12/18 156 MB 3.1.0.40
ImgBurn LIGHTNING UK! 2013/09/04 2.5.8.0
Input Director v1.3 BETA Imperative Software Pty Ltd 2013/03/22 1.3
Intel(R) Rapid Storage Technology Intel Corporation 2013/08/31 11.7.0.1013
iTunes Apple Inc. 2013/11/06 215 MB 11.1.3.8
Java 7 Update 51 Oracle 2013/10/17 118 MB 7.0.510
Microsoft .NET Framework 4.5.1 Microsoft Corporation 2013/12/13 38.8 MB 4.5.50938
Microsoft .NET Framework 4.5.1 (日本語) Microsoft Corporation 2013/12/13 2.93 MB 4.5.50938
Microsoft Bookshelf Basic Version 3.0 Microsoft Corporation 2012/11/26 229 MB 3.0
Microsoft Office Excel 2007 Microsoft Corporation 2012/11/26 12.0.6612.1000
Microsoft Office File Validation Add-In Microsoft Corporation 2013/03/22 7.95 MB 14.0.5130.5003
Microsoft Security Essentials Microsoft Corporation 2013/11/13 4.4.304.0
Microsoft Silverlight Microsoft Corporation 2013/10/10 199 MB 5.1.20913.0
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/11/26 298 KB 8.0.61001
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2012/11/26 620 KB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2012/11/26 788 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2012/11/26 788 KB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2013/02/15 606 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/02/16 600 KB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/02/27 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/02/27 15.0 MB 10.0.40219
Mozilla Maintenance Service Mozilla 2013/11/20 337 KB 26.0
Mozilla Thunderbird 26.0 (x86 ja) Mozilla 2013/11/20 49.8 MB 26.0
NFC Port Software Sony Corporation 2012/11/26 5.2.3.1
NVIDIA 3D Vision ドライバー 331.65 NVIDIA Corporation 2013/11/13 331.65
NVIDIA Update 1.15.2 NVIDIA Corporation 2013/11/13 1.15.2
NVIDIA グラフィックスドライバー 331.65 NVIDIA Corporation 2013/11/13 331.65
Oracle VM VirtualBox 4.3.6 Oracle Corporation 2014/01/01 147 MB 4.3.6
PC/SC Activator for Type B Sony Corporation 2012/11/26 1.2.1.0
PIXELA Digital MediaServer PIXELA CORPORATION 2013/10/19 10.2 MB 2.25.0000
Pixela Digital TV Board Driver Installer PIXELA Corporation 2013/10/19 003.009.00009
QuickTime Apple Inc. 2013/08/21 74.6 MB 7.74.80.86
SoundMAX Analog Devices 2013/01/02 6.10.2.6585
SRWare Iron バージョン SRWare Iron 31.0.1700.0 SRWare 2013/12/05 120 MB SRWare Iron 31.0.1700.0
StationTV X PIXELA 2013/10/19 1.01.0801.2
StationTV X 取扱説明書 PIXELA 2013/10/19 12.33.03.2
Steam(TM) Valve 2012/11/26 24.5 MB 1.0.0.0
System Requirements Lab for Intel Husdawg, LLC 2013/01/10 1.02 MB 4.5.11.0
The KMPlayer KMP Media co., Ltd 2013/12/28 3.6.0.87
Visual Basic 6.0 SP6 ランタイムライブラリ第4版 NTSOFT 2012/12/24 7.97 MB 1.0.0.4
XTRM Runtime.06 XTRM CORPORATION 2012/11/26
ゼンリン電子地図帳Ｚｉ13 ZENRIN Co., Ltd. 2012/11/26 13.00
リンク先のフォルダを開くの削除 2012/11/26
ロジクール SetPoint 6.61 ロジクール 2013/12/01 39.0 MB 6.61.15
・ClipName(Remove) 2012/11/26
筆まめ Ver.24 販売元：株式会社筆まめ開発元：株式会社モーリン 2013/12/17 763 MB 24.06.1212.0

ken
MAIL
2014/01/18 (Sat) 19:08:27

返信フォームへ

このログからは原因が見えません

こんばんは、たまに出てくる回答者のイルカです。管理人の悪代官さんではありませんがご勘弁を。

ログを確認したのですが、これと言って原因になりそうなものが見えません。
おそらくはIronのアドオンなどに隠れているのかと思います。とりあえず別なツールで見てみることにしましょう。

その他、追加で気が付いたところを。

■ソフトウェアの更新
以下のソフトはバージョンが古いので、特別な理由のない限りアップデートを推奨します。
古いバージョンのソフトにはセキュリティ上の脆弱性があり、ウイルスに狙われる定番となっていますので。
使っていないのであればアンインストールしてもいいでしょう。

・Adobe AIR
・Adobe Flash Player 11 ActiveX
・Adobe Flash Player 11 Plugin
数日前にアップデートされました。最新版に更新しましょう。

■OTLによる解析
OTLと呼ばれる、高機能解析ツールを使って調べます。

1. 以下にある(直リンクです)解析ツール「OTL」(OldTimer Listit)をダウンロードし、デスクトップに置いてくだ

さい。
ウイルス対策ソフトやブラウザから危険判定されるかもしれませんが、誤検知ですので気にしないで進めてください

。
http://oldtimer.geekstogo.com/OTL.exe

2. 実行後、次の設定を変更してください。
・ウィンドウの上の方にある「Scan All Users」にチェックを入れる
・「Scan 64bit Files」があった場合には、それにもチェックを入れる
・「Extra Registry」を「Use SafeList」に設定する
・以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT

3. 左上の「Run Scan」を押してください。数分すると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に出来

ます。

これらのファイルの内容を、分割した上で本文に貼り付けてください。特にOTL.txtは結構長いので、途中で分割し

ないと切れてしまいます。
最大文字数を超えた場合、貼り付けることはできても、投稿すると切れてしまいますので。
途中の「[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]」あたりで分

割してみてください。

イルカ
2014/01/18 (Sat) 20:22:16

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

イルカさん有り難うございます、ご教授のとおり３個のアプリはアップデートしました。
しかしAdobe Flash Player 11 ActiveXだけアップデートサイトがわからず断念してしまいました、お恥ずかしい限りです。
以下ログです。

OTL logfile created on: 2014/01/18 20:56:55 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

8.00 Gb Total Physical Memory | 5.90 Gb Available Physical Memory | 73.80% Memory free
10.00 Gb Paging File | 7.51 Gb Available in Paging File | 75.16% Paging File free
Paging file location(s): d:\pagefile.sys 2048 2048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111.79 Gb Total Space | 75.16 Gb Free Space | 67.24% Space Free | Partition Type: NTFS
Drive D: | 1863.02 Gb Total Space | 1682.32 Gb Free Space | 90.30% Space Free | Partition Type: NTFS

Computer Name: MONA- | User Name: jackboy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2014/01/18 20:50:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Downloads\OTL.exe
PRC - [2013/12/21 15:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/11/20 15:43:14 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
PRC - [2013/11/19 15:06:53 | 000,390,256 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
PRC - [2013/10/27 09:12:26 | 001,364,256 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/10/23 03:02:32 | 000,414,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/10/03 13:25:50 | 000,025,424 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\STVXService.exe
PRC - [2013/10/03 13:25:46 | 011,369,808 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files (x86)\PIXELA\StationTV_X\StationTV_X.exe
PRC - [2013/10/03 13:23:46 | 000,579,920 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files (x86)\PIXELA\StationTV_X\reservation.exe
PRC - [2013/09/14 03:27:52 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
PRC - [2013/02/10 18:56:56 | 004,710,912 | ---- | M] (Alexandr Irza) -- D:\App\ボリューム調整ソフト Volume2\Volume2.exe
PRC - [2012/11/19 12:15:20 | 000,285,240 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2012/11/19 12:15:20 | 000,014,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2012/10/13 11:02:04 | 000,008,192 | ---- | M] (Static Flower) -- D:\App\IE8用マウスジェスチャーkazaguru_x64\wow64\Kazawow64.exe
PRC - [2012/09/27 20:58:10 | 000,184,320 | ---- | M] () -- C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe
PRC - [2012/09/27 20:57:46 | 000,593,920 | ---- | M] (Imperative Software Pty Ltd) -- C:\Program Files (x86)\Input Director\InputDirector.exe
PRC - [2012/09/27 20:57:30 | 000,131,072 | ---- | M] (Imperative Software Pty Ltd) -- C:\Program Files (x86)\Input Director\InputDirectorClipboardHelper.exe
PRC - [2012/09/27 20:57:16 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Input Director\IDWinService.exe
PRC - [2012/09/13 18:38:36 | 000,474,624 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
PRC - [2012/09/06 00:57:26 | 000,271,808 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
PRC - [2011/12/20 14:39:30 | 000,675,840 | ---- | M] (BUFFALO INC.) -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\PcastHD.exe
PRC - [2010/12/15 14:41:18 | 000,248,176 | ---- | M] (BUFFALO INC.) -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\PCastHDTray.exe
PRC - [2010/07/21 16:06:08 | 000,013,824 | ---- | M] () -- C:\Program Files (x86)\Input Director\IDVistaService.exe
PRC - [2009/12/24 06:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2009/02/05 00:00:00 | 002,350,176 | ---- | M] (Lavalys, Inc.) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
PRC - [2008/11/22 01:08:00 | 000,020,480 | ---- | M] (TOROid) -- D:\App\CLISM\CLISM.EXE
PRC - [2008/08/06 22:12:24 | 000,251,392 | ---- | M] () -- D:\App\ayame141\Ayame.exe
PRC - [2007/04/08 05:02:08 | 002,010,624 | ---- | M] (Samurize.com) -- D:\App\Samurize\Client.exe
PRC - [2003/05/23 15:35:14 | 000,376,832 | ---- | M] () -- D:\App\AutoLogin\AutoLogin.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2013/12/13 10:01:46 | 001,091,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\9dcf4adb73ccc5397321c688a6a532c7\System.ServiceModel.Web.ni.dll
MOD - [2013/12/13 10:01:08 | 002,997,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\5fe10bae336585d4703262f1f2d110ee\System.IdentityModel.ni.dll
MOD - [2013/12/13 10:01:06 | 019,693,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\5bca89765ee92dd6018c3782247dba9b\System.ServiceModel.ni.dll
MOD - [2013/12/13 10:00:57 | 000,030,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\f253ddf8864abf478cba96e57ca2a99d\IAStorDataMgrSvcInterfaces.ni.dll
MOD - [2013/12/13 10:00:56 | 000,026,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\0baf11637d38cc67bcb0d1aff180f282\IAStorCommon.ni.dll
MOD - [2013/12/13 10:00:55 | 000,371,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\244c980ef593860ebf36c885b4c5b621\IAStorUtil.ni.dll
MOD - [2013/12/13 08:34:02 | 002,825,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\66ce786a0b16af8c3f5c480cd6e84376\System.Runtime.Serialization.ni.dll
MOD - [2013/12/13 08:34:01 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\05ca0ca95b6fcc0d710b63b6200cc178\System.Windows.Forms.ni.dll
MOD - [2013/12/13 08:34:01 | 000,806,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\3b483737ce19c597d351cdb1f4eb3da0\System.ServiceModel.Internals.ni.dll
MOD - [2013/12/13 08:34:01 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\5c250132c9d7fb45ec9b331ec2e4ef2e\SMDiagnostics.ni.dll
MOD - [2013/12/13 08:33:56 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\639f444db9491d25b5d158531e1f7d9b\System.Xaml.ni.dll
MOD - [2013/12/13 08:33:52 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll
MOD - [2013/12/13 08:33:52 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\4e69f1e7d86d79012db2d7e0dadc8880\System.Core.ni.dll
MOD - [2013/12/13 08:33:51 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll
MOD - [2013/12/13 08:33:49 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll
MOD - [2013/12/13 08:33:49 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\1f56d5786274992934de0c900431c447\System.Configuration.ni.dll
MOD - [2013/12/13 08:33:45 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll
MOD - [2013/11/19 15:06:53 | 003,206,256 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
MOD - [2013/11/19 15:06:53 | 000,158,832 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\nsldap32v60.dll
MOD - [2013/11/19 15:06:53 | 000,023,152 | ---- | M] () -- C:\Program Files (x86)\Mozilla Thunderbird\nsldappr32v60.dll
MOD - [2013/10/10 12:03:57 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\8f5b881951592b2fd05f710650bf7e04\System.Core.ni.dll
MOD - [2013/10/10 11:09:30 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bcf51dc88597d0835c819a2d5a755b74\PresentationFramework.ni.dll
MOD - [2013/10/10 11:09:22 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll
MOD - [2013/10/10 11:09:17 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\51478a61dbd40488e320a0061e23c4df\PresentationCore.ni.dll
MOD - [2013/10/10 11:09:10 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll
MOD - [2013/10/10 11:09:08 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll
MOD - [2013/10/03 13:25:42 | 000,612,688 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\DTVDecrptor.dll
MOD - [2013/10/03 13:25:40 | 000,161,104 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\CollaborationModule.dll
MOD - [2013/10/03 13:25:40 | 000,027,472 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\DBMaintenance.dll
MOD - [2013/10/03 13:25:36 | 000,112,976 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\AppDB.dll
MOD - [2013/10/03 13:25:36 | 000,021,840 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\AppConfig.dll
MOD - [2013/10/03 13:23:46 | 010,096,464 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\CoreSDK.dll
MOD - [2013/10/03 13:23:46 | 009,489,232 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\PxMoveCore.dll
MOD - [2013/10/03 13:23:46 | 004,929,872 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\PxSDVA.dll
MOD - [2013/10/03 13:23:46 | 001,532,752 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\Pixela.PxDTVSDK.dll
MOD - [2013/10/03 13:23:46 | 000,360,784 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\Pixela.PxDtvEditor.dll
MOD - [2013/10/03 13:23:46 | 000,139,600 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\Pixela.IntervalList.dll
MOD - [2013/10/03 13:23:46 | 000,114,512 | ---- | M] () -- C:\Program Files (x86)\PIXELA\StationTV_X\WLANSetting.dll
MOD - [2013/09/14 01:51:02 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
MOD - [2013/09/14 01:50:36 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
MOD - [2013/09/12 08:35:05 | 001,670,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\f4e49f5f51d2fa5e6190464468dff4d3\Microsoft.VisualBasic.ni.dll
MOD - [2013/08/14 10:57:52 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\03dc83fbe48384390aed7a455e949789\WindowsFormsIntegration.ni.dll
MOD - [2013/08/14 10:56:45 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9a1bc983c28c695729b3e46acdc6933e\System.Management.ni.dll
MOD - [2013/08/14 10:29:48 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\c664f44617c6a89edcc171fa8596c89d\System.ServiceProcess.ni.dll
MOD - [2013/08/14 10:29:16 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/08/14 10:29:05 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\c949e6e8d206e0d33d11ff711eda2745\System.Xml.ni.dll
MOD - [2013/08/14 10:29:02 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/07/11 07:03:01 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a2920ed81e097f8551231a9350697bbd\PresentationFramework.Aero.ni.dll
MOD - [2013/07/11 07:02:31 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\8f4a3d09bd38a742ccfe4a20a126fff5\UIAutomationProvider.ni.dll
MOD - [2013/07/11 07:02:30 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\8c20095bd7d46cdfa7933eb258a07daa\Accessibility.ni.dll
MOD - [2013/07/11 07:02:15 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2012/11/27 17:56:27 | 000,348,160 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_ja_b77a5c561934e089\mscorlib.resources.dll
MOD - [2012/11/27 17:55:56 | 000,016,896 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing.resources\2.0.0.0_ja_b03f5f7f11d50a3a\System.Drawing.resources.dll
MOD - [2012/11/21 06:26:34 | 000,008,704 | ---- | M] () -- C:\Users\jackboy\AppData\Roaming\Thunderbird\Profiles\bcj1yv3b.default\extensions\mintrayr@tn123.ath.cx\lib\tray_x86-msvc.dll
MOD - [2012/05/30 20:06:48 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/05/30 20:06:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/12/07 14:09:32 | 000,173,568 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\DevPlugIn\DevPlugDTH11U2.dll
MOD - [2010/03/16 09:40:48 | 000,113,664 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\PCastHDDB.dll
MOD - [2009/07/14 19:48:52 | 000,262,144 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_ja_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2009/03/05 15:41:24 | 000,079,872 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\PCastHDDBDev.dll
MOD - [2008/12/12 18:09:30 | 000,068,096 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FvdoCh.dll
MOD - [2008/08/06 22:12:24 | 000,251,392 | ---- | M] () -- D:\App\ayame141\Ayame.exe
MOD - [2008/08/06 22:11:56 | 000,048,640 | ---- | M] () -- D:\App\ayame141\External.dll
MOD - [2008/07/02 20:21:56 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FVdoPlyTime.dll
MOD - [2008/06/10 10:17:24 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FVdoRecPast.dll
MOD - [2008/06/09 16:37:52 | 000,049,152 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FVdoWeek.dll
MOD - [2008/06/09 16:25:18 | 000,049,152 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FVdoTime.dll
MOD - [2008/06/09 16:25:10 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\BUFFALO\PCastTV_HD\SubMod\PDigiPly\TreePI\FvdoGenre.dll
MOD - [2003/05/26 17:04:13 | 000,212,992 | ---- | M] () -- D:\App\AutoLogin\AutoLoginAPI.dll
MOD - [2003/05/23 18:26:39 | 000,139,264 | ---- | M] () -- D:\App\AutoLogin\AutoLoginResource.dll
MOD - [2003/05/23 15:35:14 | 000,376,832 | ---- | M] () -- D:\App\AutoLogin\AutoLogin.exe

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2013/11/26 18:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2013/10/23 17:14:22 | 000,348,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2013/10/23 17:14:22 | 000,023,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2013/07/10 23:00:21 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/06/14 04:31:10 | 000,357,144 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:[b]64bit:[/b] - [2009/07/14 10:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2009/06/05 17:42:04 | 000,111,616 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\AEADISRV.EXE -- (AEADIFilters)
SRV - [2014/01/18 20:50:02 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/12/21 15:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/11/19 15:07:03 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/10/27 09:12:26 | 001,364,256 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/10/23 03:02:32 | 000,414,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013/10/03 13:25:50 | 000,025,424 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\PIXELA\StationTV_X\STVXService.exe -- (STVXService)
SRV - [2013/10/03 13:25:50 | 000,025,424 | ---- | M] () [On_Demand | Running] -- C:\Program Files (x86)\PIXELA\StationTV_X\STVXService.exe -- (STVXCollaborateService)
SRV - [2013/09/11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/09/06 13:13:16 | 000,098,920 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\PIXELA\StationTV_X\PxDMSService.exe -- (PxDMSService)
SRV - [2012/11/19 12:15:20 | 000,014,904 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012/09/27 20:57:16 | 000,036,864 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Input Director\IDWinService.exe -- (InputDirector)
SRV - [2012/09/13 18:38:36 | 000,474,624 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe -- (NFCProxyService)
SRV - [2012/09/06 00:56:44 | 000,234,776 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/01/06 00:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2010/07/21 16:06:08 | 000,013,824 | ---- | M] () [On_Demand | Running] -- C:\Program Files (x86)\Input Director\IDVistaService.exe -- (IDVistaService)
SRV - [2010/01/25 08:22:56 | 000,245,760 | ---- | M] (Brother Industries, Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2009/12/24 06:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009/06/11 06:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2013/12/18 17:16:44 | 000,140,560 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2013/10/02 11:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/09/27 09:53:06 | 000,134,944 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2013/05/23 15:12:52 | 000,059,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:[b]64bit:[/b] - [2013/05/23 15:12:50 | 000,076,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:[b]64bit:[/b] - [2013/05/23 15:12:48 | 000,077,592 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:[b]64bit:[/b] - [2013/05/23 15:12:48 | 000,013,080 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:[b]64bit:[/b] - [2013/04/17 11:35:12 | 000,522,112 | ---- | M] (Pixela) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pxmbh5x.sys -- (pxmbh5x)
DRV:[b]64bit:[/b] - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/11/27 17:57:35 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012/11/26 10:33:18 | 000,564,824 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:[b]64bit:[/b] - [2012/11/19 12:10:38 | 000,652,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/11/19 12:10:36 | 000,028,216 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/05/18 17:21:34 | 000,275,304 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sonyrcs956f.sys -- (sonyrcs956f)
DRV:[b]64bit:[/b] - [2012/03/29 10:12:26 | 000,042,048 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sonyfelicaportm.sys -- (sonyfelicaportm)
DRV:[b]64bit:[/b] - [2012/03/01 15:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011/06/10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 15:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010/11/26 18:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV:[b]64bit:[/b] - [2010/11/20 22:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010/08/26 05:46:16 | 000,064,232 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sonyrcs956c.sys -- (sonyrcs956c)
DRV:[b]64bit:[/b] - [2010/08/09 14:14:18 | 000,137,216 | ---- | M] (Cobalt Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DTH10_Series.sys -- (DTH10_Series)
DRV:[b]64bit:[/b] - [2010/01/02 02:20:28 | 000,034,472 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:[b]64bit:[/b] - [2009/09/28 09:22:00 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:[b]64bit:[/b] - [2009/07/14 10:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 10:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 10:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/11 05:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/11 05:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/06/05 17:42:04 | 000,475,136 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:[b]64bit:[/b] - [2005/03/29 01:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV - [2011/06/02 11:08:34 | 000,017,864 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys -- (cpudrv64)
DRV - [2009/07/14 10:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/02/05 00:00:00 | 000,024,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 -- (EverestDriver)
DRV - [2004/01/28 04:13:45 | 000,009,728 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV - [2004/01/28 04:13:45 | 000,003,840 | ---- | M] (Elaborate Bytes) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\ElbyDelay.sys -- (ElbyDelay)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=al_hp_hao123_jp
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1QzutDtDtC0B0F0CtAzy0F0D0E0A0C0E0A0BtN0D0Tzu0StAtBzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1407912901
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=al_hp_hao123_jp
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0062E420-4926-D847-4279-11D807A65CBB}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.jp/
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes,DefaultScope = {38ACAD89-5982-4356-ABFF-29FFE2E3F23B}
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes\{0062E420-4926-D847-4279-11D807A65CBB}: "URL" = http://www.google.co.jp/search?hl=ja&q={searchTerms}&lr=lang_ja
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes\{38ACAD89-5982-4356-ABFF-29FFE2E3F23B}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1QzutDtDtC0B0F0CtAzy0F0D0E0A0C0E0A0BtN0D0Tzu0StAtBzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1407912901
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1004\..\SearchScopes,DefaultScope =

[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logicool\SetPointP\LogiSmoothFirefoxExt [2013/12/01 17:38:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013/11/19 15:06:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2012/11/26 11:51:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jackboy\AppData\Roaming\mozilla\Extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://www.google.co.jp/search?hl=ja&q={searchTerms}&lr=lang_ja
CHR - default_search_provider: suggest_url = ,
CHR - homepage: https://www.google.co.jp/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Disabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
CHR - plugin: Chrome IE Tab (Enabled) = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd\5.3.6.1_0\plugin/blackfishietab.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U17 (Disabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: NVIDIA 3D Vision (Disabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Disabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: iTunes Application Detector (Disabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Disabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - Extension: Text URL Linker = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegfbpchoheaflicfmggkmlmcccpjpgd\1.3.0_0\
CHR - Extension: ChromeAccess = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeoigbhkilbllfomkmmilbfochhlgdmh\1.6_0\
CHR - Extension: AutoPatchWork = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeolcjbaammbkgaiagooljfdepnjmkfd\1.9.9_0\
CHR - Extension: Google \u30C9\u30E9\u30A4\u30D6 = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Sexy Undo Close Tab = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcennaiejdjpomgmmohhpgnjlmpcjmbg\7.3.1_0\
CHR - Extension: YouTube = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: SmoothScroll = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cccpiddacjljmfbbgeimpelpndgpoknn\1.3.0_0\
CHR - Extension: Google \u691C\u7D22 = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Last Tab Standing = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlopnnfglheodcopccdllffcijjeenkj\2.2.8_0\
CHR - Extension: Autocomplete = on = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecpgkdflcnofdbbkiggklcfmgbnbabhh\1.0_0\
CHR - Extension: Pasty = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdjihnnclpjhfdbbinmgoiehhoehhlgf\1.4_0\
CHR - Extension: LastPass = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\3.0.22_0\
CHR - Extension: IE Tab = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd\6.1.7.1_0\
CHR - Extension: Tabs to the front! = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjaooagfdhdhmbfchnkhggjmacjlacla\0.2.4_0\
CHR - Extension: Drag and Go = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaikcnhlohebodlpkmjepipngegjbfpg\1.9.0.3_0\
CHR - Extension: 2chRevival = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jincbkepokdimkkecpcmjjfhjepllkdj\2.2.3_0\
CHR - Extension: Gestures for Google Chrome\u2122 = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkfjicglakibpenojifdiepckckakgk\1.13.4_0\
CHR - Extension: Chromium Wheel Smooth Scroller = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb\1.3.6_0\
CHR - Extension: Nullpo 2ch Reader = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcgoghfmejmpkmamnddbclbdlcelapae\1.43_0\
CHR - Extension: Ti\u00EBsto = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh\2_0\
CHR - Extension: TabsPlus = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikomkkhhpfoeamojhhgpfkpkdlfhfii\8.8.5_0\
CHR - Extension: Google \u30A6\u30A9\u30EC\u30C3\u30C8 = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Context Menu Search = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocpcmghnefmdhljkoiapafejjohldoga\2.91_0\
CHR - Extension: Stylist = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pabfempgigicdjjlccdgnbmeggkbjdhd\2.1.0_0\
CHR - Extension: One Window = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\papnlnnbddhckngcblfljaelgceffobn\3.0.0_0\
CHR - Extension: Gmail = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: Tab Nullpo+ = C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkolifcipfnlmkonikcnilfhgdbbhhko\1.0_0\

O1 HOSTS File: ([2009/06/11 06:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerBHO Class) - {0AE87E97-08ED-4D43-ADA3-ADD3166FC4D2} - C:\Program Files\T800 Productions\Folder Options X\FolderOptions.dll (T800 Productions)
O2:[b]64bit:[/b] - BHO: (Logicool SetPoint) - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logicool\SetPointP\SetPointSmooth.dll (Logicool, Inc.)
O2 - BHO: (AutoLoginAPI) - {39F2FB27-6803-4EF6-92BF-1FE49EE90A57} - D:\App\AutoLogin\AutoLoginAPI.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Logicool SetPoint) - {E11DB59D-5008-42ff-9069-535843BC0BE1} - C:\Program Files\Logicool\SetPointP\32-bit\SetPointSmooth.dll (Logicool, Inc.)
O3 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\Toolbar\WebBrowser: (no name) - {0CBC8163-AC34-476A-9E22-4B6D5184E060} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [AutoLogin] D:\App\AutoLogin\AutoLogin.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [Ayame] D:\App\ayame141\Ayame.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [CLISM] D:\App\CLISM\CLISM.EXE (TOROid)
O4:[b]64bit:[/b] - HKLM..\Run: [EvtMgr6] C:\Program Files\Logicool\SetPointP\SetPoint.exe (Logicool, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MseNotify] D:\App\MseNotify\MseNotify.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [Samurize] D:\App\Samurize\Client.exe (Samurize.com)
O4:[b]64bit:[/b] - HKLM..\Run: [SoundMAX] C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Volume2] D:\App\ボリューム調整ソフト Volume2\Volume2.exe (Alexandr Irza)
O4:[b]64bit:[/b] - HKLM..\Run: [かざぐるマウス] D:\App\IE8用マウスジェスチャーkazaguru_x64\Kazaguru.exe (Static Flower)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
O4 - HKU\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001..\Run: [EVEREST AutoStart] C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest_start.exe ()
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001..\Run: [InputDirector] C:\Program Files (x86)\Input Director\InputDirector.exe (Imperative Software Pty Ltd)
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001..\Run: [StationTV_X] C:\Program Files (x86)\PIXELA\StationTV_X\StationTV_X.exe (PIXELA CORPORATION)
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1004..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1750872516-3752858131-151613766-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 3
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAVolume = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAVolume = 0
O7 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAVolume = 0
O8:[b]64bit:[/b] - Extra context menu item: Bookshelfで検索(&L) - C:\Program Files (x86)\Microsoft Reference\Microsoft Bookshelf 3.0\bsdef.dll (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: IDとパスワードの保存 - D:\App\AutoLogin\SaveForm.htm ()
O8 - Extra context menu item: Bookshelfで検索(&L) - C:\Program Files (x86)\Microsoft Reference\Microsoft Bookshelf 3.0\bsdef.dll (Microsoft Corporation)
O8 - Extra context menu item: IDとパスワードの保存 - D:\App\AutoLogin\SaveForm.htm ()
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..Trusted Domains: /// ([]msbsj in Local intranet)
O16 - DPF: {15B782AF-55D8-11D1-B477-006097098764} http://download.macromedia.com/pub/shockwave/cabs/authorware/awswaxf.cab (Macromedia Authorware Web Player Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.5.11.0.cab (SysInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B237A93-4566-4AC4-8DF3-93B5965AD54B}: NameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-itss - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\vnd.ms.radio - No CLSID value found
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\Windows\SysWOW64\msdxm.ocx (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

ken
MAIL
2014/01/18 (Sat) 21:32:52

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

OTL.Txtの残りのログを投稿しようとしたのですが「メッセージに禁止ワードが含まれているため投稿できません」と出て投稿できませんでした、なのでExtras.Txtの方を貼り付けますのでよろしくお願いします。

OTL Extras logfile created on: 2014/01/18 20:56:56 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

8.00 Gb Total Physical Memory | 5.90 Gb Available Physical Memory | 73.80% Memory free
10.00 Gb Paging File | 7.51 Gb Available in Paging File | 75.16% Paging File free
Paging file location(s): d:\pagefile.sys 2048 2048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111.79 Gb Total Space | 75.16 Gb Free Space | 67.24% Space Free | Partition Type: NTFS
Drive D: | 1863.02 Gb Total Space | 1682.32 Gb Free Space | 90.30% Space Free | Partition Type: NTFS

Computer Name: MONA- | User Name: jackboy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1750872516-3752858131-151613766-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromiumHTM] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"UacDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B4BED7E-99BE-4473-A52E-ABE827032711}" = lport=137 | protocol=17 | dir=in | app=system |
"{213718AF-D16E-487F-AD6D-C775DDEE9B56}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3348B364-6839-4E4E-991D-F964706B08BB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4592B318-91E5-4A06-B334-0B5F4DDB434E}" = rport=445 | protocol=6 | dir=out | app=system |
"{8DA35B2B-E1DE-46B5-B6C1-BFB104F28FC8}" = lport=139 | protocol=6 | dir=in | app=system |
"{943C98A8-BE8B-4B09-9288-AA8D835F09C4}" = rport=139 | protocol=6 | dir=out | app=system |
"{ACCE7CFD-25DF-4753-B82D-EE0D92780C74}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B928DBAC-D5C0-4C9D-97F4-14BFBFDF9266}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{BBFC2707-A251-4BA4-BE69-5A482CDDF512}" = rport=138 | protocol=17 | dir=out | app=system |
"{D29479D6-A4DB-4C03-84E2-08E30577B8D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DB47C51C-6BB0-41FF-BA27-B053DCCA8FF4}" = rport=137 | protocol=17 | dir=out | app=system |
"{FABA7BFA-3AFD-488A-A6ED-270B94859FBD}" = lport=445 | protocol=6 | dir=in | app=system |
"{FCCE7094-868F-4CCE-808F-DFF5AC9B592B}" = lport=138 | protocol=17 | dir=in | app=system |
"{FFCF3246-38BB-4D1A-8B82-DB8F82FD5B2E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11DDF890-E2F1-43D7-81C1-876B6F0A8F24}" = protocol=58 | dir=in | app=system |
"{14838AF5-19D0-4657-93EB-98F065C63264}" = protocol=17 | dir=out | app=c:\program files (x86)\input director\inputdirectorsessionhelper.exe |
"{18D27039-8AB6-49BF-81EF-DEE060F2B325}" = protocol=6 | dir=in | app=c:\program files (x86)\input director\inputdirectorsessionhelper.exe |
"{206FE851-868C-4E38-9B37-959A39D8C5C5}" = protocol=17 | dir=in | app=c:\program files (x86)\input director\inputdirector.exe |
"{20FA4044-4ED2-41C3-8042-77AA23033453}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{2BB5D865-A795-49B2-95C0-E10805344BC3}" = protocol=6 | dir=out | app=c:\program files (x86)\input director\inputdirectorclipboardhelper.exe |
"{30DCF579-0730-4686-AEC5-63ACA1D16640}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{3118C982-ECD4-4286-86B2-767D1EB412D7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{5A03FD93-1C0A-4412-9BE5-73DB3D0360C4}" = protocol=17 | dir=in | app=c:\program files (x86)\input director\inputdirectorsessionhelper.exe |
"{5BAF54AF-476C-45DF-92BB-5F7A8B7CA275}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{5D0D98B5-4190-40A9-A247-E1B79B3F4D41}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{61A144DE-D4AB-48F9-BBB2-4D5D9362B755}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{7BDCE585-00E4-43F2-BE19-2CF74AAEA479}" = protocol=6 | dir=out | app=c:\program files (x86)\input director\inputdirector.exe |
"{7DEC7C8E-1297-483C-AA06-166ECA49BBED}" = protocol=6 | dir=out | app=c:\program files (x86)\input director\inputdirectorsessionhelper.exe |
"{8302066D-F161-49EE-A1FC-275946FF84BA}" = protocol=6 | dir=in | app=c:\program files (x86)\input director\inputdirector.exe |
"{88447921-8091-415B-B031-6A6ED24C729F}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A4098E92-AAF3-4D41-8749-70518565ECAF}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{B2EF8206-2695-4933-87D1-8031D4B90C70}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BCAF1433-5362-499B-8EAA-6BDC0C60B1BC}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C5B99726-AE27-4625-AA5A-52BBDE9523B0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{C7D34D75-9CDC-4937-B0E2-59F9EAE6750E}" = protocol=6 | dir=in | app=c:\program files (x86)\input director\inputdirectorclipboardhelper.exe |
"{D96A49CB-5815-4648-BD65-6CD9D9249504}" = protocol=17 | dir=out | app=c:\program files (x86)\input director\inputdirector.exe |
"TCP Query User{4A59019F-D5F7-4FA5-8A9D-C0CE5BCF3528}D:\app\share10_ex2\share.exe" = protocol=6 | dir=in | app=d:\app\share10_ex2\share.exe |
"TCP Query User{6B33D475-E00B-4FC6-A801-9A30DDA76BBE}C:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe |
"TCP Query User{87C5BF6F-891D-4D39-9A25-598F60797403}C:\program files (x86)\the kmplayer\kmplayer.exe" = protocol=6 | dir=in | app=c:\program files (x86)\the kmplayer\kmplayer.exe |
"TCP Query User{F472D3E5-0D93-4F1F-821B-0073A85F2CEB}C:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe |
"UDP Query User{2F90385D-0685-43DA-8767-EFDA42513C63}C:\program files (x86)\the kmplayer\kmplayer.exe" = protocol=17 | dir=in | app=c:\program files (x86)\the kmplayer\kmplayer.exe |
"UDP Query User{5FDE7331-649A-48B9-B1B2-7302EBAB30E2}D:\app\share10_ex2\share.exe" = protocol=17 | dir=in | app=d:\app\share10_ex2\share.exe |
"UDP Query User{9BCFD1D7-DE08-4881-8FD1-6E57A1F2CB7D}C:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe |
"UDP Query User{F6B4D8CE-51CB-48A9-9625-F4FD07FC504E}C:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\valve\steam\steamapps\user\half-life 2\hl2.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1AAF6669-31B2-3840-9346-F0F653840FD1}" = Microsoft .NET Framework 4.5.1 (JPN)
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{81E20D41-C277-4526-934D-F2380AF91B78}" = iCloud
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0028-0411-1000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0411-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Japanese) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1041" = Microsoft .NET Framework 4.5.1 (日本語)
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision ドライバー 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA コントロールパネル 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA グラフィックスドライバー 331.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.15.2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}" = iTunes
"{DC65DFD8-E175-4A85-948A-42965853B2E8}" = Oracle VM VirtualBox 4.3.6
"{E102B843-786A-4F58-AF75-6504570E207B}" = Microsoft Security Client
"・ClipName" = ・ClipName(Remove)
"Desktop Menu Launch_is1" = Desktop Menu Launch（64ビット）
"Folder Options X_is1" = Folder Options X
"LinkDir" = リンク先のフォルダを開くの削除
"Microsoft Security Client" = Microsoft Security Essentials
"sp6" = ロジクール SetPoint 6.61

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{0763BB05-4116-4DF4-843C-D7B1A1CF279D}" = StationTV X 取扱説明書
"{1FCD587F-ACBF-41BF-8CFF-4FDC99330037}" = NFC Port Software
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 51
"{3813B1A7-782C-4954-BCD2-2D2705DA3101}" = 筆まめ Ver.24
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{402ED4A1-8F5B-387A-8688-997ABF58B8F2}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{4031BC88-3A04-D57A-8547-8B9A3273C32C}" = PIXELA Digital MediaServer
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56834CF8-40DB-4522-922D-7C8BD49AD54C}" = Pixela Digital TV Board Driver Installer
"{59FEFE3F-8119-457C-A4EE-CF24202DD9D2}" = Visual Basic 6.0 SP6 ランタイムライブラリ第4版
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6370C211-AAC3-4823-AA33-0294A9C8EE1E}" = PC/SC Activator for Type B
"{63B7AC7E-0178-4F4F-A79B-08D97ADD02D7}" = System Requirements Lab for Intel
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{8C683762-07D3-4174-B200-8F56980F33F8}" = ゼンリン電子地図帳Ｚｉ13
"{8F03A0C5-7FFC-4C7E-A792-1750AE191A91}" = StationTV X
"{90120000-0016-0000-0000-0000000FF1CE}" = Microsoft Office Excel 2007
"{90120000-0016-0000-0000-0000000FF1CE}_EXCEL_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2007
"{90120000-0016-0411-0000-0000000FF1CE}_EXCEL_{209FA1DF-E70E-436A-BB71-9ECB81FC3776}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_EXCEL_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2007
"{90120000-001F-0411-0000-0000000FF1CE}_EXCEL_{8B0BBAAA-BB10-41E1-B27E-24CF08CBB253}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2007
"{90120000-0028-0411-0000-0000000FF1CE}_EXCEL_{277B1BCF-97A7-40F2-87A5-3CACB0E9714B}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0028-0411-1000-0000000FF1CE}_EXCEL_{8A3FCBEB-9029-40E2-8799-2299CBBEF4D8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0000-1000-0000000FF1CE}_EXCEL_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0411-1000-0000000FF1CE}_EXCEL_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2007
"{90120000-006E-0411-0000-0000000FF1CE}_EXCEL_{84C84010-F698-443E-84B4-A82DD01A17FE}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A1B36B88-AF90-43A3-8906-6DBEE89B4FBD}" = Brother ドライバー＆ソフトウェア DCP-J525N
"{A415B2E1-34FB-41F8-BCE6-6F085E2B3531}" = Microsoft Bookshelf Basic Version 3.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1041-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Japanese
"{B67BAFBA-4C9F-48FA-9496-933E3B255044}" = QuickTime
"{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR
"{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1" = SRWare Iron バージョン SRWare Iron 31.0.1700.0
"{D1CF58C9-F818-4FD1-BB71-148679377532}" = Zi13
"{D45EC259-4A19-4656-B588-C2C360DD18EA}" = Half-Life(R) 2
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"BUFFALO PCastTVムーブツール for Mobile_is1" = BUFFALO PCastTVムーブツール for Mobile
"CloneDVD2" = CloneDVD2
"DVD Creator3" = DVD Creator3
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.00
"EXCEL" = Microsoft Office Excel 2007
"GGuideEPG_is1" = GGuide番組表
"Google Chrome" = Google Chrome
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"ImgBurn" = ImgBurn
"Input Director" = Input Director v1.3 BETA
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Thunderbird 26.0 (x86 ja)" = Mozilla Thunderbird 26.0 (x86 ja)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PCastMPEG2DECMC_is1" = BUFFALO PCast MPEG2 Decoder MC
"PCastTVHD_is1" = BUFFALO PCastTV 地デジ Lite
"The KMPlayer" = The KMPlayer
"UiUicyBitDefCmd2_is1" = Bitdefenderコマンドライン版
"XTRM CORPORATION/XTRM Runtime_is1" = XTRM Runtime.06

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1750872516-3752858131-151613766-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"ChromePlus" = CoolNovo

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2014/01/05 8:06:47 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: handle_resolve_request bad interfaceIndex 24

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: mDNSPlatformReadTCP - recv: 10053

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = 556: ERROR: read_msg errno 0 (この操作を正しく終了しました。)

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: mDNSPlatformReadTCP - recv: 10053

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = 556: ERROR: read_msg errno 0 (この操作を正しく終了しました。)

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: mDNSPlatformReadTCP - recv: 10053

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = 556: ERROR: read_msg errno 0 (この操作を正しく終了しました。)

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: mDNSPlatformReadTCP - recv: 10053

Error - 2014/01/05 8:06:59 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = 556: ERROR: read_msg errno 0 (この操作を正しく終了しました。)

Error - 2014/01/05 22:20:45 | Computer Name = Mona- | Source = Bonjour Service | ID = 100
Description = ERROR: handle_resolve_request bad interfaceIndex 1

[ System Events ]
Error - 2014/01/15 3:04:49 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/15 6:33:34 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/15 6:35:35 | Computer Name = Mona- | Source = EventLog | ID = 6008
Description = 以前のシステムシャットダウン ( ?2014/?01/?15 19:33:32) は予期されていませんでした。

Error - 2014/01/15 6:35:36 | Computer Name = Mona- | Source = BugCheck | ID = 1001
Description =

Error - 2014/01/15 6:35:36 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/15 6:38:21 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/15 19:08:08 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/16 8:27:47 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/16 17:36:18 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

Error - 2014/01/17 4:10:54 | Computer Name = Mona- | Source = Service Control Manager | ID = 7000
Description = LiveUpdate サービスを、次のエラーが原因で開始できませんでした: %%2

< End of report >

ken
MAIL
2014/01/18 (Sat) 21:37:25

返信フォームへ

アップローダーを使います

これまでのログでは、問題になるエントリはあれど、広告ウィンドウにつながるような明確な原因が出ていませんね。
ものすごい数のアドオンがあるので、どれかが原因である可能性もありますが…。

広告が出るのは特定のブラウザだけですか？それとも、どのブラウザを使っていても(使っていなくても)出てきますか？

残りの下半分も見ておきたいので、どこかのアップローダーなどにデータをアップロードしてください。

アップロードされる場合、アップロート先はお好きなところで構いませんが、特にこだわりがなければ
http://www1.axfc.net/uploader/post.pl
あたりが比較的安定していていいかと思います。

アップロード後、ダウンロードリンクをこちらに貼り付けてください。
ダウンロード用パスワード(DLキーワード)を設定できますので、設定しておくとプライバシー上少しだけましになります。

イルカ
2014/01/18 (Sat) 21:55:19

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

http://www1.axfc.net/u/3148170　キーワードは１０２２です、よろしくお願いします。

ken
MAIL
2014/01/18 (Sat) 22:20:33

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

ごめんなさい質問に答えるのを忘れました、ブラウザはほとんどSRWare Ironを使っています、IEとChromeはほとんど使って無いので他のブラウザでは確認が出来てません。頻繁に出るわけじゃなく今日はSRWare Ironを1日使って午前中は出なかったのですが午後になって今現在で5回ほどでウィンドウが出ました。SRWare Ironのアドオンは確認したのですが見覚えの無いアドオンはありませんでした、以上よろしくお願いします。SRWare Ironをデフォルトのブラウザにしております。

ken
MAIL
2014/01/18 (Sat) 22:32:51

返信フォームへ

AdwcleanerとMalwarebytesで

ログを見ましたが、症状を見ても、これだという原因は見えないですね。
これは少々厄介かもしれません。

Adwcleanerをダウンロードされているようですが、既に実行しましたか？
もし実行していないのであれば、以下の手順で実行し、ログを載せてください。

また、原因究明のため別なツールも投入します。

■Fixスクリプトによる処置
OTLを起動後、以下のスクリプトを「Custom Scan/Fixes」に貼り付け、「Run Fix」を押してください。
最初の「:OTL」を抜かさないように。

実行するとプロセスがすべて強制終了されますので、アプリはできるだけ終了しておいてください。
また、ごみ箱が空になりますので、必要なファイルがある場合は先に救出してください。
なお、OTLがフリーズしてしまって先に進まない場合は、セーフモードでコンピュータを起動したうえで実行してください。

セーフモードへの入り方：
http://web.archive.org/web/20110215072552/http://www.higaitaisaku.com/safemode.html

完了後、再起動を要求されますので、「OK」で再起動してください。再起動後、ログが出ますので、そちらを載せてください。なお、今回のログに関しては、そのまま貼り付けで構いません。
なお、ログを閉じてしまった場合は、C:\_OTL\MovedFiles フォルダ内にログ(日付と時刻からなる数字ファイル名のファイル)がありますので、そちらの内容をお知らせください。

---ここから

:OTL
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=al_hp_hao123_jp
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1QzutDtDtC0B0F0CtAzy0F0D0E0A0C0E0A0BtN0D0Tzu0StAtBzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1407912901
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://jp.hao123.com/?tn=al_hp_hao123_jp
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes,DefaultScope = {38ACAD89-5982-4356-ABFF-29FFE2E3F23B}
IE - HKU\S-1-5-21-1750872516-3752858131-151613766-1001\..\SearchScopes\{38ACAD89-5982-4356-ABFF-29FFE2E3F23B}: "URL" = http://searchfunmoods.com/results.php?f=4&q={searchTerms}&a=orgnl&chnl=&cd=2XzuyEtN2Y1L1QzutDtDtC0B0F0CtAzy0F0D0E0A0C0E0A0BtN0D0Tzu0StAtBzytN1L2XzutBtFtBtFtDtFtAyEyE&cr=1407912901

:Commands
[purity]
[emptytemp]
[reboot]

---ここまで

■AdwCleanerでの処置
以下のアドレスから、AdwCleanerをダウンロードして、デスクトップに置いてください。
http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner

ファイルを起動後、まず「Scan」、次は「Clean」をクリックしてください。
出てきた画面で「はい」を押すと、全てのプロセスが強制終了されたうえで、駆除が実行されます。
再起動を要求する画面が出たら「OK」などで再起動してください。
再起動後、ログが出ますので、その内容を同様に貼り付けてください。

■Malwarebytes Anti-Malwareによる検査
以下のURLから、Malwarebytes Anti-Malwareをダウンロードしてください。
ページを開けて数秒で、ダウンロードが始まるはずです。迷惑ソフトへリンクしていますので、「ダウンロード」と

かのボタンは押さないでください。
http://download.cnet.com/Malwarebytes-Anti-Malware/3001-8022_4-10804572.html?

spi=bf35d12b0e6385b003099cb173de4a7d&part=dl-10804572

インストール・使い方に関しては、こちらを参考にしてください。
http://fine.tok2.com/home/heto2/0700SecurityApp/Malwarebytes/0001.htm

インストール時に表示をよく見ると、「Pro版を使用する」というチェックがあります。これを外しておけば、無料版としてインストールされます。

定義ファイルをアップデートしたら、「Perform full scan」でフルスキャンを実行してください。
その後、表示される結果をこちらにコピー＆ペーストで貼り付けてください。

イルカ
2014/01/18 (Sat) 23:35:13

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

イルカ様夜遅くまで有り難うございます。
AdwCleanerは何回か使用しています、今回使用したログが下記です、その下がOTLのログです。
Malwarebytesのログは終わったらまた投稿します。

# AdwCleaner v3.017 - Report created 18/01/2014 at 23:56:28
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : jackboy - MONA-
# Running from : D:\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\jackboy\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R5].txt - [874 octets] - [18/01/2014 18:38:58]
AdwCleaner[R6].txt - [933 octets] - [18/01/2014 23:55:43]
AdwCleaner[S0].txt - [857 octets] - [18/01/2014 23:56:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [916 octets] ##########

All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-21-1750872516-3752858131-151613766-1001\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1750872516-3752858131-151613766-1001\Software\Microsoft\Internet Explorer\SearchScopes\{38ACAD89-5982-4356-ABFF-29FFE2E3F23B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{38ACAD89-5982-4356-ABFF-29FFE2E3F23B}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Flash cache emptied: 57472 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: jackboy
->Java cache emptied: 262941 bytes
->Google Chrome cache emptied: 446567630 bytes
->Apple Safari cache emptied: 16905216 bytes
->Flash cache emptied: 17619546 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Flash cache emptied: 57616 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6608015 bytes
Session Manager Temp folder emptied: 9094 bytes
Session Manager Tmp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33298 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 77228 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 466.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 01192014_001711

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

ken
MAIL
2014/01/19 (Sun) 00:29:56

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

MalwarebytesをPerform full scanで結果のログの様なものが出なかったのですが、何か操作を間違ったのでしょうか。
終わった時のウィンドウをキャプチャーしましたのでアップしてみます。

ken
MAIL
2014/01/19 (Sun) 01:05:59

返信フォームへ

Malwarebytesについて

出ないこともあるようですね。
「Show Results」のボタンを押すと一覧が出るかと思います。ログがあかなければ、そこからテキストに出力するボタンがあるはずですので、そちらを押してください。

イルカ
2014/01/19 (Sun) 01:30:29

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

おはようございます、Malwarebytesのログが出力できましたので貼り付けます。

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.18.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
jackboy :: MONA- [administrator]

2014/01/19 9:37:00
MBAM-log-2014-01-19 (10-10-03).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 424215
Time elapsed: 31 minute(s), 34 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
D:\App\極窓\CnsMin.dll (Adware.CnsMin) -> No action taken.
D:\DL_App\[アプリ] WinRAR 4.00 Final 日本語化 (2011.03.09).rar (Trojan.Agent.CK) -> No action taken.
D:\RecoveryDisk\SetupImgBurn_2.5.8.0.exe (PUP.Optional.OpenCandy) -> No action taken.

(end)

ken
MAIL
2014/01/19 (Sun) 10:12:57

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

Malwarebytes Anti-MalwareではCnsMinとOpenCandyが出ていますね。
どちらも広告ウィンドウを出すタイプのものですので、使用しているソフトにこれらが含まれていて、使用中に発動しているものと思われます。

とりあえずMalwarebytesで見つかった3点を駆除した上で、様子を見てください。

イルカ
2014/01/19 (Sun) 19:23:57

返信フォームへ

Re: Windows7 PCリペアツールの広告が出ています。

イルカ様有り難うございます、該当ファイルを削除して様子を見てみます。

ken
MAIL
2014/01/19 (Sun) 20:17:16

返信フォームへ

返信フォーム

Template by マシマロック

名前件名 URL メールアドレス画像	メッセージプレビュー（投稿前に内容を確認）
	パスワード