悪代官の伏魔殿掲示板
Reimage等にやられております
PC初心者です。「Reimage」の広告が頻繁に出て困っております。マルウェア対策ソフトは効果がないようです。対策をお願い致します。Windows8.1 Lifebook AH42/Kです。

  • あさくま
  • MAIL
  • 2014/12/05 (Fri) 06:10:55
返信フォームへ 
Re: Reimage等にやられております
(ログ1)
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 5:24:39, on 2014/12/05
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2RPK.EXE
C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNABDSWK.EXE
C:\Program Files\Softex\OmniPass\hook\OpHook32BitProcess.exe
C:\Program Files (x86)\sMedio\AirGet\AirGet.exe
C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe
C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Program Files\NextFTP\NXFTRAY.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files (x86)\Justsystem\ATOK14\IATOKIK2.EXE
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Justsystem\ATOK14\IATOKQB2.EXE
C:\Program Files (x86)\Justsystem\ATOK14\ATOK14MN.EXE
C:\WINDOWS\SysWOW64\DllHost.exe
C:\Program Files\Microsoft Office 15\Root\Office15\ONENOTEM.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\yjop.exe
C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\yphb.exe
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\CJLDAQUQ\HijackThis.exe
C:\Program Files (x86)\Orbitdownloader\orbitnet.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
R3 - URLSearchHook: (no name) - {e44a1809-4d10-4ab8-b343-3326b64c7cdd} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: OmniPassBHO - {7C5AE885-5C98-4A61-8085-3FA169F7233C} - C:\Program Files\Softex\OmniPass\OpBHO32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: entrusted - {e44a1809-4d10-4ab8-b343-3326b64c7cdd} - (no file)
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
O3 - Toolbar: Cubeツールバー(&C) - {0CBC8163-AC34-476a-9E22-4B6D5184E060} - C:\Program Files (x86)\CubeToolBar\ToolBarBand.dll
O3 - Toolbar: (no name) - {e44a1809-4d10-4ab8-b343-3326b64c7cdd} - (no file)
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [CSPTL-CANONMJ] C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJ.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AirGet] "C:\Program Files (x86)\sMedio\AirGet\AirGet.exe" silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [DriveStudio] "C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe" silent
O4 - HKUS\S-1-5-21-3291258898-3594276855-938048873-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [AirGet] "C:\Program Files (x86)\sMedio\AirGet\AirGet.exe" silent (User '?')
O4 - HKUS\S-1-5-21-3291258898-3594276855-938048873-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User '?')
O4 - HKUS\S-1-5-21-3291258898-3594276855-938048873-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [DriveStudio] "C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe" silent (User '?')
O4 - S-1-5-21-3291258898-3594276855-938048873-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: iATOKランチャー for ATOK14.lnk = C:\Program Files (x86)\Justsystem\ATOK14\IATOKIK2.EXE (User '?')
O4 - S-1-5-21-3291258898-3594276855-938048873-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 Startup: OneNote に送る.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (User '?')
O4 - Startup: iATOKランチャー for ATOK14.lnk = C:\Program Files (x86)\Justsystem\ATOK14\IATOKIK2.EXE
O4 - Startup: OneNote に送る.lnk = C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
O4 - Global Startup: ATOK14環境移行支援ツール.LNK = C:\Program Files (x86)\Justsystem\ATOK14\ATOK14PC.EXE
O4 - Global Startup: JSクイックサーチファイル 自動更新.LNK = C:\Program Files (x86)\Justsystem\JSLIB32\JSQSF32.EXE
O4 - Global Startup: JSクイックランチ.LNK = C:\Program Files (x86)\Justsystem\JSLIB32\JSQLNCH.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
O4 - Global Startup: PointGrab ハンドジェスチャーコントロール.lnk = C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O4 - Global Startup: 常駐NextFTP.lnk = C:\Program Files\NextFTP\NXFTRAY.EXE
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Cube : WEB 検索 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/search.html
O8 - Extra context menu item: Cube : リンク文字列を翻訳 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/anchor.html
O8 - Extra context menu item: Cube : 選択範囲を翻訳 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/translation.html
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader6/DMMDownloader.cab
O16 - DPF: {0E15796F-7B3A-4FB3-BF69-7B11D20A4A62} (AzbyClub ユーザー登録用 コントロール) - https://azby.fmworld.net/register/entrance/UserReg.CAB
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: Softex OmniPass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Softex\OmniPass\cachesrvr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CSPTL-CANONMJService - キヤノンマーケティングジャパン株式会社 - C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJService.exe
O23 - Service: CypherGuard cguard Service 32bit Edition - CypherTec Inc. - C:\Program Files (x86)\Common Files\CypherTec\cgrdsrv32.exe
O23 - Service: CypherGuard cguard Service 64bit Edition - CypherTec Inc. - C:\Program Files\Common Files\CypherTec\cgrdsrv64.exe
O23 - Service: CypherGuard Info Service - CypherTec Inc. - C:\Program Files\Common Files\CypherTec\cthwsrv64.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FJAgentSVC - 富士通株式会社 - C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe
O23 - Service: FJAutoSignIn - FUJITSU LIMITED - C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe
O23 - Service: FJQuickPowerOn - FUJITSU LIMITED - C:\Program Files\Fujitsu\QuickPowerOn\QuickPowerOn.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: FUJ02E3Service - FUJITSU LIMITED - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon インクジェットプリンタ/スキャナ/ファクス使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: My Cloud ビデオ サーバー - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\dms_svc.exe
O23 - Service: My Cloud エコ PC Service (MyCloudEcoSvc) - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: Softex OmniPass Service (omniserv) - Softex Inc. - C:\Program Files\Softex\OmniPass\OmniServ.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe
O23 - Service: PFNService - FUJITSU LIMITED - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: PGService - PointGrab LTD - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe
O23 - Service: PG_Service_Launcher - PointGrab LTD - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG_Service_Launcher.exe
O23 - Service: PowerSavingUtilityService - FUJITSU LIMITED - C:\Program Files\Fujitsu\PSUtility\PSUService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: PowerUtility - スケジュール機能 (PUSCSRVC) - FUJITSU LIMITED - C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PCカルテ スケジュール サービス (SKARUTE) - FUJITSU LIMITED - C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service2 - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SSPF HGW Service (SSPFHGWService) - Unknown owner - C:\Program Files (x86)\Fujitsu\MCEcoUty\MCEcoUty.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: UDSS - Unknown owner - C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
  • あさくま
  • MAIL
  • 2014/12/05 (Fri) 06:12:42
返信フォームへ 
Re: Reimage等にやられております
(ログ2)
@niftyでブロードバンド ニフティ株式会社 2012/11/22 1.00.000
AC3Filter 2.5b Alexander Vigovsky 2013/12/31 15.2 MB 2.5b
Adobe Acrobat 5.0 Adobe Systems, Inc. 2014/08/19 5.0
Adobe AIR Adobe Systems Incorporated 2014/08/19 13.0.0.111
Adobe Creative Cloud Adobe Systems Incorporated 2014/08/28 196 MB 2.7.1.418
Adobe Dreamweaver CS6 Adobe Systems Incorporated 2014/08/19 518 MB 12
Adobe Help Manager Adobe Systems Incorporated 2014/08/19 4.0.244
Adobe Illustrator CS6 Adobe Systems Incorporated 2014/08/19 2.77 GB 16.0
Adobe Photoshop CS6 Adobe Systems Incorporated 2014/08/19 2.92 GB 13.0
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/22 203 MB 11.0.09
Adobe Widget Browser Adobe Systems Incorporated. 2014/08/19 2.0 Build 348
ALTools Update ESTsoft Corp. 2014/08/19 v10.4
ALZip 8.61 ESTsoft Corp. 2014/08/19 v8.61
Anytime USB Charge Utility FUJITSU LIMITED 2012/11/22 2.01.00.000
Apple Application Support Apple Inc. 2013/11/28 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2013/11/28 27.3 MB 7.0.0.117
Apple Software Update Apple Inc. 2013/11/28 2.38 MB 2.1.3.127
Battery Utility FUJITSU LIMITED 2013/02/19 4.01.20.000
BEAT!MusicPlayer 2014/08/19
Bing Bar Microsoft Corporation 2014/03/23 724 KB 7.3.132.0
Bonjour Apple Inc. 2013/11/28 2.04 MB 3.0.0.10
BookLive!Reader BookLive 2013/04/27 70.9 MB 2.3.10
Canon Easy-WebPrint EX 2014/08/19
Canon IJ Scan Utility ‪Canon Inc.‬ 2014/08/19
CANON iMAGE GATEWAY 無料会員登録 MG4230 Canon Inc.‎ 2014/08/19
Canon LBP6200 2014/08/19
Canon MG4200 series MP Drivers Canon Inc. 2014/08/19 1.01
Canon MG4200 series On-screen Manual Canon Inc. 2014/08/19 7.5.0
Canon My Image Garden Canon Inc. 2014/08/19 1.0.0
Canon My Image Garden Design Files Canon Inc. 2014/08/19 1.0.0
Canon Quick Menu Canon Inc. 2014/08/19 2.0.0
Canon インクジェットプリンタ/スキャナ/ファクス使用状況調査プログラム Canon Inc. 2014/08/19 4.0.0
Canon マイ プリンタ Canon Inc. 2014/08/19 3.0.0
CCleaner Piriform 2014/12/05 5.00
Cisco EAP-FAST Module Cisco Systems, Inc. 2013/02/19 1.55 MB 2.2.14
Cisco LEAP Module Cisco Systems, Inc. 2013/02/19 644 KB 1.0.19
Cisco PEAP Module Cisco Systems, Inc. 2013/02/19 1.23 MB 1.1.6
CoreAAC 2014/08/19
Corel Digital Studio for FUJITSU Corel Corporation 2014/08/19 634 MB 1.5.23.118
Corel WinDVD Corel Inc. 2013/02/19 211 MB 10.8.0.279
CubePDF 1.0.0RC4 CubeSoft 2013/04/06 27.6 MB
CubePDF 1.0.0RC4 CubeSoft 2013/04/06
Cubeツールバー CubeSoft 2013/04/06 3.20 MB
Cubeツールバー 64-bit Edition CubeSoft 2013/04/06 3.55 MB
DigiBookBrowser Version 1.5.2.68 TriWorks Corp.JAPAN 2012/11/22 8.51 MB 1.5.2.68
Drive Studio設定Utility FUJITSU LIMITED 2013/11/03 126 MB 1.00.0000
DVD Decrypter (Remove Only) 2014/08/19
DVD Flick 1.3.0.7 Dennis Meuwissen 2014/08/26 1.3.0.7
DVD Shrink 3.2 DVD Shrink 2014/08/19
EMOBILE GL06P driver Huawei Technologies Co.,Ltd 2014/08/19 21.001.07.02.168
F-Launcher 2013/09/12 V1.0
F-Launcher FUJITSU LIMITED 2012/11/22 1.61 MB 2.0.0.0
FJ Camera Sonix 2013/02/19 6.0.1209.0_WHQL
Freemake Video Converter バージョン 4.1.3 Ellora Assets Corporation 2014/05/01 78.7 MB 4.1.3
Fujitsu BIOS Driver FUJITSU LIMITED 2012/11/22 1.34 MB 1.1.0.0
Fujitsu MobilityCenter Extension Utility FUJITSU LIMITED 2012/11/22 4.01.00.000
GOM Encoder Gretech Corporation 2014/08/19 1.1.0.60
GOM Player Gretech Corporation 2014/08/19 2.2.56.5183
Google Chrome Google Inc. 2013/04/06 38.0.2125.111
Google Toolbar for Internet Explorer Google Inc. 2014/08/19 7.5.5111.1712
Inspirium辞書検索ライブラリ Fujitsu 2012/11/22 1.16 MB 2.0.8
Intel(R) Management Engine Components Intel Corporation 2013/09/12 8.1.0.1252
Intel(R) Processor Graphics Intel Corporation 2014/08/19 9.17.10.3347
Intel(R) Rapid Storage Technology Intel Corporation 2014/12/05 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/08/19 2.0.0.37149
IObit Uninstaller IObit 2014/01/29 3.0.5.1228
iTunes Apple Inc. 2013/11/28 215 MB 11.1.3.8
Java 7 Update 71 Oracle 2014/11/20 119 MB 7.0.710
JUSTSYSTEMアプリケーションの追加と削除 2014/08/19
Lhaplus 2014/08/19
Malwarebytes Anti-Malware バージョン 2.0.4.1028 Malwarebytes Corporation 2014/12/04 57.3 MB 2.0.4.1028
McAfee Security Scan Plus McAfee, Inc. 2014/08/19 10.2 MB 3.0.318.3
McAfee SiteAdvisor McAfee, Inc. 2014/11/20 3.7.154
Microsoft Office Home and Business 2013 - ja-jp Microsoft Corporation 2014/11/20 15.0.4667.1002
Microsoft OneDrive Microsoft Corporation 2014/08/19 26.7 MB 17.0.4035.0328
Microsoft Silverlight Microsoft Corporation 2014/07/24 249 MB 5.1.30514.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2014/06/10 1.92 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP2 JPN Microsoft Corporation 2012/11/22 4.89 MB 3.5.8080.0
Microsoft SQL Server Compact 3.5 SP2 x64 JPN Microsoft Corporation 2012/11/22 7.08 MB 3.5.8080.0
Microsoft SQL Server Compact 4.0 x64 JPN Microsoft Corporation 2014/11/02 18.9 MB 4.0.8482.1
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/11/22 4.84 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2012/11/22 1.24 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/02/19 7.32 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2012/11/22 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/04 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/02/19 4.53 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/19 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/11/22 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/04 1.29 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2014/10/17 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2014/10/17 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2014/08/28 17.3 MB 11.0.61030.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2014/10/17 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2014/10/17 10.0.50903
My Cloud エコ FUJITSU LIMITED 2013/11/03 3.02 MB 1.0.3.0
My Cloud エコ Utility FUJITSU LIMITED 2013/11/03 152 MB 1.0.3.0
My Cloud データ連携Utility 富士通株式会社 2013/11/03 15.9 MB 1.00.02.011
My Cloud ビデオ サーバー DigiOn 2013/11/03 9.41 MB 2.1.4.0
My Cloud モバイルアクセス設定Utility FUJITSU LIMITED 2013/11/03 134 MB 2.03.0005
NetworkPlayer サーバー DigiOn 2012/11/22 4.51
NextFTP 2014/08/19
Officeprint 1.0.0 プリントパック 2014/10/16 24.8 MB
OmniPass Softex Inc. 2013/04/02 42.9 MB 8.00.15(x64)
OmniPass Softex Inc. 2013/04/02 8.00.15(x64)
Orbit Downloader www.orbitdownloader.com 2014/05/01
Paint Shop Pro 7 Anniversary Edition Jasc Software Inc 2013/04/05 279 MB 7.0.4.0000
PCカルテ FUJITSU LIMITED 2012/11/22 5.31 MB 1.1.0.1
Peakshift setting FUJITSU LIMITED 2013/02/19 2.01.00.000
PG Splitter PointGrabSplitter 2013/02/19 6.51 MB 01.01.0025
PhotoWizard Microsoft 2012/11/22 338 MB 1.3.0
Picasa 3 Google, Inc. 2014/08/19 3.9
Plugfree NETWORK 富士通株式会社 2014/08/19 7.0.0.1
PointGrab Hand Gesture Control PointGrab 2013/02/19 93.3 MB 03.01.01.11717
Pointing Device Utility FUJITSU LIMITED 2012/11/22 1.75 MB 2.0.0.0
Power Saving Utility FUJITSU LIMITED 2012/11/22 33.01.01.000
PowerUtility - スケジュール機能 FUJITSU LIMITED 2012/11/22 22.0 MB 4.15.1.0
Ralink Bluetooth Stack64 Ralink Corporation 2013/02/19 72.2 MB 9.0.717.0
Ralink RT2860 Wireless LAN Card Ralink 2013/04/02 1.2.0.41
Realtek Ethernet Controller Driver Realtek 2012/11/22 8.3.730.2012
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2014/08/19 6.0.1.6714
Realtek USB Card Reader Realtek Semiconductor Corp. 2012/11/22 6.2.9200.30146
Rip!AudiCO FREE Ver 4.03 2014/08/19
Roxio Creator LJ Roxio 2014/08/19 123 MB 12.2.37.7
Sense YOU Technology 設定 FUJITSU LIMITED 2014/08/19 3.0.0.1
Shared C Run-time for x64 McAfee 2013/04/02 2.78 MB 10.0.0
Sony Ericsson Update Engine Sony Ericsson Communications AB 2014/08/19 2.13.6.201305161305
Sony Media Library Earth 8.0.00 Sony Corporation 2013/10/06 46.3 MB 8.0.00.10191
Sony PC Companion 2.10.165 Sony 2013/06/25 19.3 MB 2.10.165
SoundEngine Free Coderium 2013/04/06 5.0.2.2
Surfing Protection IObit 2014/01/29 11.3 MB 1.0
Synaptics Pointing Device Driver Synaptics Incorporated 2014/08/19 46.4 MB 16.2.10.12
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/08/27 4.53 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/08/21 40.3 MB 16.0.668.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/08/21 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/08/27 17.0 KB 16.0.1016.1
Windows Live Essentials Microsoft Corporation 2014/06/10 16.4.3528.0331
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02B1) System (06/09/2012 1.23) FUJITSU LIMITED 2014/08/19 06/09/2012 1.23
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02E3) System (06/22/2012 1.30.0.0) FUJITSU LIMITED 2014/08/19 06/22/2012 1.30.0.0
Wireless Radio Switch Driver FUJITSU LIMITED 2012/11/22 1.34 MB 1.0.0.0
Wondershare データリカバリー(Build 4.6.1.3) Wondershare Software Co.,Ltd. 2014/09/04 57.9 MB 4.6.1.3
x-アプリ 5.0.01 Sony Corporation 2013/10/06 88.2 MB 9.0.01
Yahoo! JAPANアプリ ショートカット Yahoo! JAPAN. 2014/08/19 1.0.0
Yahoo!ツールバー Yahoo! JAPAN. 2014/08/19 2.58 MB 7.3.0.20
アップデートナビ FUJITSU LIMITED 2014/10/17 2.03 MB 1.3.0021
エレコムらくちんプリント 2014/08/19
カメラセンサー機能ON/OFFツール FUJITSU LIMITED 2014/08/19 1.01
キヤノンお知らせメッセンジャー キヤノンマーケティングジャパン株式会社 2013/04/20 8.12 MB 2.0.2.0
サポートツール 「パソコンの情報」と「トラブル解決ナビの起動」 FUJITSU LIMITED 2012/11/22 1.97 MB 1.0.0.0
スクリーンセーバー for FUJITSU PC FUJITSU LIMITED 2012/11/22 324 KB 2.6.0.1
ソフトウェアディスク検索 FUJITSU LIMITED 2012/11/22 1.86 MB 2.0.0.0
チケットメーカー FUJITSU LIMITED 2012/11/22 833 KB 3.1.0.0
バックアップナビ FUJITSU LIMITED 2012/11/22 23.7 MB 2.0.0.2
パソコン乗換ガイド 株式会社富士通ソフトウェアテクノロジーズ 2012/11/22 15.2 MB 1.0.1.1
ブンコビューア SHARP 2013/05/20 15.5 MB 6.0.4
マカフィー セキュリティセンター McAfee, Inc. 2014/10/24 12.8.992
ラジ録2 2.2.1 マグノリア 2013/08/13
ラベル屋さん9 A-one Co.,Ltd. 2014/08/19 9.0.600
ラベル屋さんHOME 2014/08/19
ワンタッチボタン設定 FUJITSU LIMITED 2012/11/22 3.20 MB 8.5.1.0
富士通PC 辞書セット(広辞苑第六版+リーダーズ英和辞典+新和英中辞典+現代用語の基礎知識+学研パーソナル統合辞典) 富士通株式会社 2012/11/22 513 KB 2.0.0
富士通アドバイザー FUJITSU LIMITED 2012/11/22 21.6 MB 4.1.0.0
富士通拡張機能ユーティリティ FUJITSU LIMITED 2012/11/22 2.89 MB 3.5.1.0
書き込み機能拡張ユーティリティ FUJITSU LIMITED 2012/11/22 2.0.0.0
楽しもう!Office ライフ Microsoft Corporation 2012/11/22 636 KB 1.0.0
筆ぐるめ 20 富士ソフト株式会社 2012/11/22 717 MB 20.00.0003
筆王ZERO SOURCENEXT 2013/06/21 14.0.0
節電ナビ FUJITSU LIMITED 2012/11/22 2.23 MB 2.0.0.0
紀伊國屋書店 Kinoppy for Windows 紀伊國屋書店 2014/11/02 50.6 MB 1.5.3
自動サインイン設定 FUJITSU LIMITED 2012/11/22 390 KB 1.0.1.0
読んde!!ココ 2014/08/19
電子辞書 FUJITSU LIMITED 2012/11/22 21.4 MB 5.0.0.0
電源ボタン設定 FUJITSU LIMITED 2013/02/19 443 KB 2.0.1.0
@メニュー 2013/09/12 V7.0
@メニュー FUJITSU LIMITED 2012/11/22 3.08 MB 7.0.0.0
  • あさくま
  • MAIL
  • 2014/12/05 (Fri) 06:14:21
返信フォームへ 
確認事項がございます
こんにちは、IVNOと申します。
色々と起動しているため重いのは分かるのですが、まずは確認事項がございます。
Adobe CC、CS6、NextFTP等から推測して、Web関連の作成を行われていると推測されますが、
こちらは金員を得る目的、つまりお仕事で行われているのでしょうか。
お仕事で行われている場合、個人で行われているのか企業として行われているのかもお知らせください。
  • IVNO
  • MAIL
  • 2014/12/05 (Fri) 13:52:44
返信フォームへ 
Re: Reimage等にやられております
IVNO様

金員を得るために行っているものではありません。個人でHPや告知用のチラシを制作しております。
このようなご回答でよろしいでしょうか。
  • あさくま
  • MAIL
  • 2014/12/05 (Fri) 21:53:48
返信フォームへ 
作業を行いましょう
個人利用PCとのことですので、ご案内は可能となります。
マルウェアを内包しているとして有名なFreemakeシリーズや、
公式アップデートでウイルス感染が発生するリスクを伴うGOM Playerはこの機会に削除しておきましょう。
それでは作業準備を行いましょう。

まずはじめに連絡事項がございます。
相談いただいてから回答できるまでに、毎回1日かそれ以上かかる可能性もございます。
ご不便をおかけいたしますが、ご理解とご協力を賜りますよう、お願い申し上げます。
また、回答者側から「解決」と通達があるまで、駆除作業は続いております。
そのため、途中でPCの状況が良くなったかのように感じたからと言って、解決のご案内を待たずして作業を中断なされると、
高確率で再発しているのが現状で、再発時にこちらにお戻りになられる方が続出しております。
回答者から「解決」と「自衛策」の案内があるまでは、作業を続けるようにしてください。

それでは以下の説明を熟読し、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓)
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てくる可能性がありますが、
それらは絶対にクリックしないでください。
「ATF-Cleaner」(通称:ATF)
説明↓
http://freesoft.tvbok.com/freesoft/pc_system/atf-cleaner.html
ダウンロード↓
http://www.atribune.org/index.php?option=com_content&task=view&id=25&Itemid=1
中央の赤い文字がダウンロードリンクです。
片付けるときはファイルを直接削除してください。
説明ページではWindowsXpと2000対応と書かれてますが、Win7やVistaにも対応です。

Iobit Uninstaller(通称:IU)
公式ページ↓
http://jp.iobit.com/free/iou.html
解説↓
http://milksizegene.blog.fc2.com/blog-entry-282.html
片付けのときはIUを起動中にIUを選択して削除するのですが、ポータブル版をお使いの場合はフォルダごと削除してください。
また、Revo Uninstallerなどの別の削除支援ソフトをお使いの場合は、そちらを利用して削除してください。

「CCleaner」(通称:CC)
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードするようにしましょう。
なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
削除の際はIUなどでアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【操作次第ではWindowsが動作しなくなる可能性もある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、こちらが指示した以外の操作はしないようにしてください。

「AdwCleaner」(通称:AC)
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。

準備できたら作業を開始しましょう。

まずは、Javaをご利用の方は以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新版の確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml

Javaの処置が完了した方、Javaを導入されていない方は以下から作業をお願いいたします。

以降の駆除作業でトラブルが発生しても直ちに復旧できるよう、システムの復元ポイントを手動で作成しましょう。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point
しかし、システムの復元はPCにかなりのダメージを与えますので、できれば使わないほうが望ましいです。
システムの復元が必要のない、慎重な作業を心がけましょう。

PCをセーフモードで起動してください(やり方↓)
http://www.pc-master.jp/sousa/s-safemode.html
HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files (x86)\Orbitdownloader\GrabPro.dll
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/202
O20 - AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、IU起動させ、以下を削除してください。

Freemake Video Converter バージョン 4.1.3 Ellora Assets Corporation 2014/05/01 78.7 MB 4.1.3
GOM Encoder Gretech Corporation 2014/08/19 1.1.0.60
GOM Player Gretech Corporation 2014/08/19 2.2.56.5183
McAfee Security Scan Plus McAfee, Inc. 2014/08/19 10.2 MB 3.0.318.3
Orbit Downloader www.orbitdownloader.com 2014/05/01

削除ボタンを押し、削除が完了したら、パワフルスキャンを行い、検出されたごみすべてにチェックを入れ、削除してください。
IUでのアンインストールが完了しましたら、IUを終了させ、ATFで掃除を行ってください。
Select Allにチェックを入れ、Empty Selectedをクリックします。
ATFでの掃除が完了しましたら、ACを使用してマルウェアの掃除を行いましょう。
ACを起動させ、Scanをクリックします。
スキャンが終了しましたら、Cleanをクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動が完了すると、ACのログが表示されますので、そちらを一度PC内の分かりやすい場所に保存してください。

その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。
  • IVNO
  • MAIL
  • 2014/12/06 (Sat) 16:03:33
返信フォームへ 
Re: Reimage等にやられております
ご指示有り難うございます。
ログの貼り付けをいたします。

ACのログ
# AdwCleaner v4.104 - レポート作成日 06/12/2014 時間 23:49:21
# 更新日 05/12/2014 更新元 Xplode
# Database : 2014-12-01.1 [Local]
# オペレーティングシステム : Windows 8.1 (64 bits)
# ユーザー名 : PC-User - PCUSER
# プログラムの実行場所 : C:\Users\PC-User\Desktop\AdwCleaner.exe
# オプション : 除去

***** [ サービス ] *****


***** [ ファイル / フォルダ ] *****

フォルダ 除去 : C:\ProgramData\Conduit
フォルダ 除去 : C:\ProgramData\SalesMagnet
フォルダ 除去 : C:\ProgramData\a03d82d6850f331a
フォルダ 除去 : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
フォルダ 除去 : C:\Program Files (x86)\AnyProtectEx
フォルダ 除去 : C:\Program Files (x86)\Conduit
フォルダ 除去 : C:\WINDOWS\SysWOW64\SearchProtect
フォルダ 除去 : C:\Users\PC-User\AppData\Local\Conduit
フォルダ 除去 : C:\Users\PC-User\AppData\LocalLow\Conduit
フォルダ 除去 : C:\Users\PC-User\AppData\Roaming\AnyProtectEx
フォルダ 除去 : C:\Users\PC-User\AppData\Roaming\GrabPro
フォルダ 除去 : C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
フォルダ 除去 : C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\faiamjnocibcemglloiaeeahehliofdj
ファイル 除去 : C:\END
ファイル 除去 : C:\WINDOWS\Reimage.ini
ファイル 除去 : C:\Users\PC-User\Desktop\Continue Live Installation.lnk

***** [ タスク ] *****

タスク 除去 : BackgroundContainer Startup Task

***** [ ショートカット ] *****


***** [ レジストリ ] *****

キー 除去 : HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
キー 除去 : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL
キー 除去 : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
キー 除去 : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
キー 除去 : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e44a1809-4d10-4ab8-b343-3326b64c7cdd}
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
キー 除去 : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
キー 除去 : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
キー 除去 : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
キー 除去 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
値 除去 : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
値 除去 : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
値 除去 : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
値 除去 : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
キー 除去 : HKCU\Software\AnyProtect
キー 除去 : HKCU\Software\Conduit
キー 除去 : HKCU\Software\Optimizer Pro
キー 除去 : HKCU\Software\Orbit
キー 除去 : HKCU\Software\Tutorials
キー 除去 : HKCU\Software\Reimage
キー 除去 : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー 除去 : HKCU\Software\AppDataLow\Toolbar
キー 除去 : HKCU\Software\AppDataLow\Software\BackgroundContainer
キー 除去 : HKCU\Software\AppDataLow\Software\Conduit
キー 除去 : HKCU\Software\AppDataLow\Software\SmartBar
キー 除去 : HKCU\Software\AppDataLow\Software\SpeeditUp
キー 除去 : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
キー 除去 : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
キー 除去 : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
キー 除去 : HKLM\SOFTWARE\Conduit
キー 除去 : HKLM\SOFTWARE\Orbit
キー 除去 : HKLM\SOFTWARE\Tutorials
キー 除去 : HKLM\SOFTWARE\ORBTR
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3119AFD3-545C-0955-573A-494F62E61990}
キー 除去 : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B10BC31B-DBC6-56FE-DD3D-DD4E49A3E6CE}
キー 除去 : [x64] HKLM\SOFTWARE\Reimage
データ 除去 : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
キー 除去 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
キー 除去 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
キー 除去 : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
キー 除去 : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ask.com
キー 除去 : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.jp

***** [ Webブラウザ ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v38.0.2125.111

[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3281675&CUI=UN25893246313467079&UM=2
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3281675&CUI=UN25893246313467079&UM=2
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3319709&octid=EB_ORIGINAL_CTID&ISID=M42D3D817-7E19-475A-B82A-F8449A734D84&SearchSource=58&CUI=&UM=6&UP=SP5D62D175-E4FD-4BF2-B0A7-12E252CA8657&q={searchTerms}&SSPV=
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3319709&octid=EB_ORIGINAL_CTID&ISID=M42D3D817-7E19-475A-B82A-F8449A734D84&SearchSource=58&CUI=&UM=6&UP=SP5D62D175-E4FD-4BF2-B0A7-12E252CA8657&q={searchTerms}&SSPV=
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : jbolfgndggfhhpbnkgnpjkfhinclbigj
[C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : faiamjnocibcemglloiaeeahehliofdj

*************************

AdwCleaner[R0].txt - [7344 octets] - [06/12/2014 23:40:14]
AdwCleaner[R1].txt - [7404 octets] - [06/12/2014 23:43:19]
AdwCleaner[R2].txt - [7464 octets] - [06/12/2014 23:46:20]
AdwCleaner[S0].txt - [7024 octets] - [06/12/2014 23:49:21]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7084 octets] ##########

CCのログ1ーwindows

有効 HKCU:Run AirGet sMedio Inc "C:\Program Files (x86)\sMedio\AirGet\AirGet.exe" silent
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run DriveStudio FUJITSU LIMITED "C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe" silent
無効 HKCU:Run msnmsgr Microsoft Corporation "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
有効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run Adobe Creative Cloud Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
有効 HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
有効 HKLM:Run AdobeCS6ServiceManager Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run BtTray IVT Corporation "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
有効 HKLM:Run CanonQuickMenu CANON INC. C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
有効 HKLM:Run CNAP2 Launcher CANON INC. C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE
無効 HKLM:Run CSPTL-CANONMJ キヤノンマーケティングジャパン株式会社 C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJ.exe
有効 HKLM:Run FJUPDNV_Chitose FUJITSU LIMITED C:\Program Files\Fujitsu\chitose\updatenv.exe
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run mcpltui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
有効 HKLM:Run mcui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
有効 HKLM:Run NetworkPlayerServerHelper DigiOn, Inc. "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
有効 HKLM:Run OmniPass Softex Inc. C:\Program Files\Softex\OmniPass\scureapp.exe
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run RtHDVBg_DTS Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P
有効 HKLM:Run RTHDVCPL Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run SwitchBoard Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
有効 Startup Common ATOK14環境移行支援ツール.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\ATOK14\ATOK14PC.EXE
有効 Startup Common JSクイックサーチファイル 自動更新.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\JSLIB32\JSQSF32.EXE
有効 Startup Common JSクイックランチ.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\JSLIB32\JSQLNCH.EXE
有効 Startup Common PointGrab ハンドジェスチャーコントロール.lnk PointGrab LTD C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
無効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup Common 常駐NextFTP.lnk C:\Program Files\NextFTP\NXFTRAY.EXE

CCのログ2ーInternet Explorer

無効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
無効 Helper Adobe PDF Reader Link Helper Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
無効 Helper Bing Bar Helper Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
無効 Helper Bing Bar Helper Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll
有効 Helper Canon Easy-WebPrint EX BHO CANON INC. C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
無効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre7\bin\ssv.dll
無効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
無効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
無効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
無効 Helper OmniPass Helper Softex Inc. C:\Program Files\Softex\OmniPass\OpBHO32.dll
無効 Helper OmniPass Helper Softex Inc. C:\Program Files\Softex\OmniPass\OpBHO64.dll
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
有効 Helper Yahoo!ツールバーフィッシング警告 Yahoo Japan Corporation. C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll
有効 Helper Yahoo!ツールバーヘルパー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
無効 Toolbar Bing Bar Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
無効 Toolbar Bing Bar Microsoft Corporation. "C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll"
有効 Toolbar Canon Easy-WebPrint EX CANON INC. C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
無効 Toolbar Cubeツールバー(C) CubeSoft C:\Program Files (x86)\CubeToolBar\ToolBarBand.dll
無効 Toolbar Cubeツールバー(C) CubeSoft C:\Program Files\CubeToolBar\ToolBarBand.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
有効 Toolbar Yahoo!ツールバー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll

CCのログ3 Google Crome

(導入していますが空白)

CCのログ4 スケジュールされたタスク

有効 Task AdobeAAMUpdater-1.0-MicrosoftAccount-jmickey@ozzio.jp Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Microsoft Office 15 Sync Maintenance for PCUSER-PC-User PCUser Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Optimize Start Menu Cache Files-S-1-5-21-3291258898-3594276855-938048873-1002
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task Synaptics TouchPad Enhancements Synaptics Incorporated \Program Files\Synaptics\SynTP\SynTPEnh.exe
有効 Task Task_ShellExecuteAs Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task Uninstaller_SkipUac_PC-User IObit "C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer
有効 Task {382BCD9C-2C95-47FD-AA8F-6E5AE4B29913} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HY21K894\iview425j.exe" -d C:\Users\PC-User\Desktop
有効 Task {5AF2E88D-91B8-417E-A91D-71758F2ABBCE} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TA3AIC9J\pfset125.exe" -d C:\Users\PC-User\Desktop
有効 Task {CE89D875-E7E9-468D-BA93-A9AB496474C7} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\14M4GW4N\ElRakupr.exe" -d C:\Users\PC-User\Desktop
有効 Task {F09C2F07-B98D-401E-9A7C-338C2FB345BB} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" -c scenario=install baseurl="C:\Program Files\Microsoft Office 15" platform=x86 version=15.0.4631.1002 culture=ja-jp productstoremove=HomeBusinessRetail_ja-jp_x-none


以上
  • あさくま
  • 2014/12/07 (Sun) 00:22:28
返信フォームへ 
Re: Reimage等にやられております
現状では、IEのほうの「isearch.brother.com」とCromeの「Reimage Repair」の常駐状態が続いております。
  • あさくま
  • 2014/12/07 (Sun) 00:29:30
返信フォームへ 
ACは削除しMBAMで処置を
ACの結果は良好です。
ACは不要ですので、導入時の指示に従って削除なされてください。
それでは以下のソフトウェアをご用意ください。

Malwarebytes Anti-Malware(通称:MBAM)
旧バージョンダウンロード↓(ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます)
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
片付け時はセーフモードからIUを利用してアンインストールしてください。

ここで使うのはFree(無償版)です。

準備が完了しましたら作業を開始いたします。
PCをセーフモードで起動してください。

MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分~1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
最後にログが出ますので、ログを分かりやすい場所に保存してください。
ログ保存が完了したら、MBAMを終了させます。

MBAMでの作業が完了しましたら、PCを通常モードで再起動してください。

取得されたログを貼り付け、ご報告をお願いいたします。
  • IVNO
  • MAIL
  • 2014/12/07 (Sun) 11:22:35
返信フォームへ 
Re: Reimage等にやられております
宜しくお願い致します。

MBAMログ

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

定義バージョン: v2014.12.07.04

Windows 8 x64 NTFS (セーフモード)
Internet Explorer 11.0.9600.17416
PC-User :: PCUSER [管理者]

2014/12/07 15:09:23
mbam-log-2014-12-07 (15-09-23).txt

スキャンタイプ: フルスキャン (C:\|D:\|)
有効なスキャン領域: メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン  | ヒューリスティック/Shuriken エンジンを使用してスキャン  | 不審なプログラム (PUP) | 不審な変更 (PUM)
無効なスキャン領域: ピア・ツー・ピアプログラム(P2P)
スキャンしたアイテム数: 792681
経過時間: 2 時間, 13 分, 28 秒

メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)

メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリキーの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリ値の検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)

フォルダの検出: 0
(悪意のあるアイテムは検出されていません。)

ファイルの検出: 9
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\6GMBUR3Q\OrbiterInstaller[1].exe (PUP.Optional.Conduit) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\6GMBUR3Q\sp-downloader[1].exe (PUP.Optional.Conduit.A) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\6GMBUR3Q\SPSetup[1].exe (PUP.Optional.ClientConnect) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\6GMBUR3Q\updatejv[1].exe (Trojan.Dropper.SFXAI) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\7WNAFR1P\spstub[1].exe (PUP.Optional.Conduit.A) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\LocalLow\entrusted\hk64tbent0.dll (PUP.Optional.Conduit) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\LocalLow\entrusted\hktbent0.dll (PUP.Optional.Conduit) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\LocalLow\entrusted\ldrtbent0.dll (PUP.Optional.Conduit) -> 正常に隔離され削除されました。
C:\Users\PC-User\AppData\LocalLow\entrusted\tbent0.dll (PUP.Optional.Conduit) -> 正常に隔離され削除されました。

(終)
  • あさくま
  • MAIL
  • 2014/12/07 (Sun) 19:38:14
返信フォームへ 
一時的に処置を中断しMcAfeeでフルスキャンを
ログを拝見させていただきました。
トロイの木馬型ウイルスのドロッパと呼ばれるものが検出されています。
このドロッパと言う種類のものは、イメージ的に言えばすぐに孵化するウイルスの卵です。
PC内部に入り込むと、複数のウイルスをPC内部に勝手にばら撒きます。
よって、ドロッパが見つかったと言うことはほかにも感染していると言うことになります。
今すぐMcAfeeのウイルス定義ファイルを最新版に更新し、フルスキャンを行ってください。
フルスキャンが完了しましたら、その結果とともにお知らせください。
フルスキャン完了後に改めて処置のご案内をいたします。
  • IVNO
  • MAIL
  • 2014/12/07 (Sun) 23:58:10
返信フォームへ 
Re: Reimage等にやられております
フルスキャン完了致しました。添付画像のような画面になっております。
  • あさくま
  • MAIL
  • 2014/12/08 (Mon) 21:12:10
返信フォームへ 
やはり出てきましたね
画像を確認させていただきましたが、案の定引っかかりましたね。
隔離されたり削除されたりと処置そのものはできていますので、こちらはこれで良いでしょう。
では以降は目視による手作業に切り替えましょう。
MBAMは不要ですので、導入時の指示に従って削除なされてください。

以下のソフトウェアをご用意ください。

HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでIUを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。

OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。

準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。

以下をメモ帳にコピペしてください。

------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------

コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html
  • IVNO
  • MAIL
  • 2014/12/08 (Mon) 23:37:44
返信フォームへ 
Re: Reimage等にやられております
HPログ(42,000字)
Saved date: 2014/12/09 8:27:21
Files detected: 65
Files scanned: 11,029
Processes scanned: 150
Modules scanned: 1,343
ASEPs scanned: 531
Downloads scanned: 1
Deep analysis: 130/67
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\program files (x86)\moneydown\coupies.dll
Publisher:
MD5: 5cfa67518d02c1e940aca0c37527765e
SHA-1: 40fdacd574411e634ed5e4a9ec3c5d998b567bc0
Created: 2014/11/22 17:11:06
Detections: 11
Determination: Adware
- Emsisoft Anti-Malware as Gen:Variant.Graftor.164575 (Undefined)
- ESET NOD32 as Win32/SProtector.K potentially unwanted application (Adware)
- Lavasoft Ad-Aware as Gen:Variant.Graftor.164575 (Undefined)
- Bkav FE as HW32.Packed (Undefined)
- MicroWorld eScan as Gen:Variant.Graftor.164575 (Undefined)
- Bitdefender as Gen:Variant.Graftor.164575 (Undefined)
- F-Secure as Gen:Variant.Graftor.164575 (Undefined)
- Avira AntiVirus as TR/Crypt.ZPACK.Gen2
- G Data as Gen:Variant.Graftor.164575 (Undefined)
- Vba32 AntiVirus as SScope.Adware.MultiPlug (Adware)
- Baidu Antivirus as PUA.Win32.SProtector (Adware)

---------------------------------------------------------------------------------

File path: c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_d08a11e2442dc25d\msvcr80.dll
Publisher: Microsoft Corporation
MD5: a58e3c42883f36d743f9be9b21bfc990
SHA-1: 5a3fb51c414bde296273e41198ecb1a2aa9e3b03
Created: 2013/08/22 8:53:00
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\iobit uninstaller\uninstallmonitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 67d6a69de7da7ba5181e768b1307dcae
SHA-1: 5ac55e93e9398327e1a1cd6526d0c28b26bddad8
Created: 2014/12/06 20:50:13
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.IObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\liveupdate\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: fe6029cec1f7f6096ff1faa20a0ea611
SHA-1: 5612f607ee29037a672716a82a529f0799bf8715
Created: 2014/01/04 14:21:01
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.IObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\fujitsu\networkplayer server\dixim_metadata_jpeg_populator.dll
Publisher:
MD5: 7cc117de430c308f0db13aec43c220ba
SHA-1: 48e8ff88175a8964a3f08f1614c70da6e28127cc
Created: 2012/11/22 18:44:47
Detections: 1
Determination: Ignore detections (false positive)
- AegisLab AV Signature as Troj.GameThief.W32.OnLineGames (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\justsystem\atok14\atok14mn.exe
Publisher: 株式会社ジャストシステム
MD5: 6da24eb22df7ac11ba94b8cc26cb7bff
SHA-1: a1b35312734386f44c266ddc4801538d3c554595
Created: 2001/01/18 12:00:00
Detections: 1
Determination: Ignore detections (false positive)
- Quick Heal as (Suspicious) - DNAScan

---------------------------------------------------------------------------------

File path: c:\program files (x86)\digion\dixim vdms for fujitsu\sqlite3.dll
Publisher:
MD5: 47a89aaed60e9f7daa7206e6d09fe8ce
SHA-1: 9c19a3f83c368d87decb4622ab8f92a6a4149948
Created: 2013/09/10 15:00:44
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.HfsAutoB (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\intcdaud.sys
Publisher: Intel(R) Corporation
MD5: f5495b38bfb9149925f54f65ab40efbf
SHA-1: 3fbef8ee216245a0b26e3fb24f6345605a0b440b
Created: 2012/10/26 12:00:35
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.SMSHoax.95 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files\mcafee.com\agent\mcagent.exe
Publisher: McAfee, Inc.
Signer: McAfee, Inc.
MD5: 04679e0dc30077ec1164be82f2a2adc9
SHA-1: b2663ac43504ffb1ae3fcac6c6d59a795898bb76
Created: 2014/08/27 20:21:49
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Trojan/Win32.SGeneric (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\iobit uninstaller\iobituninstaler.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 705c0e251d48bc5d6af174f165141ba4
SHA-1: f07af60a699988e7285ddb95d2d28877f72c802a
Created: 2014/01/29 10:10:54
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.IObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\google\chrome\user data\default\extensions\infiigcphjnhnkjagipboadmcdefhhld\229\manifest.json
Publisher:
MD5: a312653e99c9070a2d2f8975dbcb8c4f
SHA-1: 5e9be44fc596b8875ee9b80060f0ffa2fa441777
Created: 2014/12/06 14:17:59
Detections: 1
Determination: Adware
- Reason Heuristics as PUP.Chrome.Extension.M (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\24kr74ku\reimagepackage1801x64[1].exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 9fe0e27ee94c064b3e99a7ed0336105f
SHA-1: c4180e92cbea3a25b6d367dfd9668ae0f8435ca9
Created: 2014/11/20 7:39:26
Detections: 4
Determination: Adware
- Reason Heuristics as PUP.Optional.ReimageLimited.O (Adware)
- Trend Micro House Call as Suspicious_GEN.F47V0729 (Undefined)
- Dr.Web as Adware.Plugin.171 (Adware)
- Qihoo 360 Security as Malware.QVM10.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\24kr74ku\setup_mbot_jp[1].exe
Publisher:
Signer: Tuto4PC.com
MD5: 9a0c471dccb1ec41fe66228c6fcf2f97
SHA-1: d96d0f287f4391d5065f0c00eae4d3b46e68dad7
Created: 2014/11/21 0:35:42
Detections: 29
Determination: Adware
- Reason Heuristics as PUP.Installer.Tuto4PC.N (Adware)
- avast! as Adware-ASG [PUP] (Adware)
- Lavasoft Ad-Aware as Adware.Eorezo.BZ (Adware)
- Dr.Web as Adware.Downware.9051 (Adware)
- Emsisoft Anti-Malware as Adware.Eorezo.BZ (Adware)
- ESET NOD32 as multiple threats (Undefined)
- VIPRE Antivirus as Threat.4895339 (Undefined)
- Kaspersky as not-a-virus:AdWare.Win32.Eorezo (Adware)
- Norman as Adware.Eorezo.BZ (Adware)
- Sophos as PUA 'Eorezo' (of type Adware) (Adware)
- MicroWorld eScan as Adware.Eorezo.BZ (Adware)
- nProtect as Adware.Eorezo.BZ (Adware)
- Quick Heal as AdWare.EoRezo.r8 (Not a Virus) (Adware)
- ALYac as Adware.Eorezo.BZ (Adware)
- Zillya! Antivirus as Adware.Eorezo.Win32.905 (Adware)
- K7 Gateway Antivirus as Trojan (Undefined)
- K7 AntiVirus as Trojan (Undefined)
- NANO AntiVirus as Riskware.Win32.Eorezo.divfel (Adware)
- F-Prot as W32/S-bd7621bc (Undefined)
- Trend Micro House Call as TROJ_GEN.R00GH07KC14 (Undefined)
- Bitdefender as Adware.Eorezo.BZ (Adware)
- Agnitum Outpost as PUA.EoRezo (Adware)
- Comodo Security as ApplicUnwnt (Undefined)
- F-Secure as Adware.Eorezo.BZ (Adware)
- Avira AntiVirus as ADWARE/EoRezo.Gen4 (Adware)
- Antiy Labs AVL as GrayWare[AdWare:not-a-virus]/Win32.Eorezo (Adware)
- G Data as Adware.Eorezo.BZ (Adware)
- Vba32 AntiVirus as AdWare.Eorezo (Adware)
- AVG as Generic (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\4i51l91w\backups\backup-20141206-230829-967.dll
Publisher: Orbitdownloader.com
Signer: KORAM GAMES LIMITED
MD5: 0120182408d7e9db0c4cb02ccdd63c8e
SHA-1: 7962d4d29b00efbfee797811bc8c1632b94adfe7
Created: 2014/05/01 22:58:40
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.BHO.KORAMGAMESLIMITED.I (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\6gmbur3q\anyprotect[1].exe
Publisher:
MD5: ad470534b0b88ac9c3bf03deb0aa5503
SHA-1: 6434241f198f89296eac012ea5da61a77e64664b
Created: 2014/11/21 0:50:43
Detections: 3
Determination: Adware
- Reason Heuristics as PUP.CMIAnyProtect.K (Adware)
- AVG as Adware Generic_r.WV (Adware)
- K7 Gateway Antivirus as Unwanted-File (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\6gmbur3q\setup[1].exe
Publisher: CMI Limited
Signer: Any Send Pro (ClickMeIn Ltd)
MD5: e1464041c50a7d6a3cc725a8bc3fa2b6
SHA-1: ee79a0994daaa2925c953bed5b6ec08055b25bd8
Created: 2014/11/21 0:48:50
Detections: 7
Determination: Adware
- Reason Heuristics as PUP.Installer.AnySendProClickMeIn.K (Adware)
- Dr.Web as Adware.ClickMeIn.17 (Adware)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- G Data as NSIS.Application.AnyProtect (Undefined)
- AhnLab V3 Security as PUP/Win32.AnyProtect (Adware)
- AVG as Generic (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p\dl[1].htm
Publisher:
MD5: af23d70c28f95b79d790ec9c96936b9d
SHA-1: 54ba7ced8c5f150beb27dfe0f9306c9515646538
Created: 2014/11/20 9:00:01
Detections: 5
Determination: Adware
- avast! as Win32:Malware-gen (Undefined)
- NANO AntiVirus as Riskware.Win32.ClickMeIn.djkwhd (Adware)
- Baidu Antivirus as PUA.Win32.VOPackage (Adware)
- ESET NOD32 as Win32/VOPackage.AV (variant) (Undefined)
- Reason Heuristics as Threat.Win.Reputation.IMP (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p\protectorpackage2005x64[1].exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 1ec97dabdbf159478b2cf8863dff2f87
SHA-1: afed0715ea599ab00cf41b6e595a850cc186f9aa
Created: 2014/11/20 7:41:06
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.ReimageLimited.X (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p\setup[1].exe
Publisher:
MD5: f1641ff5a600c22b57d8db6831a528c5
SHA-1: 64e32bea79fb7a0e75cfaae902b5183e31833ae2
Created: 2014/11/21 0:46:31
Detections: 8
Determination: Adware
- ESET NOD32 as Win32/InstallCore.PK potentially unwanted application (Adware)
- F-Prot as W32/A-e3871acb (Undefined)
- Baidu Antivirus as Adware.Win32.InstallCore (Adware)
- avast! as Dropper-gen [Drp] (Undefined)
- Avira AntiVirus as Adware/InstallCore.587709 (Adware)
- Qihoo 360 Security as HEUR/QVM06.1.Malware.Gen (Undefined)
- Dr.Web as Trojan.MulDrop5.10078 (Undefined)
- VIPRE Antivirus as Threat.4150696 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p\vopackage[1].exe
Publisher:
MD5: de578f0fe0474dd2cd6b0396f869556b
SHA-1: 696e52383511834e6110da0e26a74aee1d53c4c5
Created: 2014/11/20 8:58:46
Detections: 9
Determination: Adware
- Trend Micro House Call as Suspicious_GEN.F47V1119 (Undefined)
- avast! as Win32:Dropper-gen [Drp] (Undefined)
- Rising Antivirus as NS:PUF.SilenceInstaller!1.9DDF (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- McAfee Web Gateway as BehavesLike.Win32.Downloader.dc (Undefined)
- McAfee as Artemis!DE578F0FE047 (Undefined)
- Baidu Antivirus as PUA.Win32.VOPackage (Adware)
- ESET NOD32 as Win32/VOPackage.AT (Undefined)
- Reason Heuristics as Adware.CMI.J (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\czfhyu2a\setup[1].exe
Publisher:
MD5: 186f3da37a5e208509ac6203ffea5b90
SHA-1: 5eb6a85954c3636d8bd5d4b78dcd436b26a11e40
Created: 2014/11/21 0:59:10
Detections: 8
Determination: Adware
- ESET NOD32 as Win32/InstallCore.PK potentially unwanted application (Adware)
- F-Prot as W32/A-e3871acb (Undefined)
- Baidu Antivirus as Adware.Win32.InstallCore (Adware)
- avast! as Dropper-gen [Drp] (Undefined)
- Avira AntiVirus as Adware/InstallCore.587709 (Adware)
- Qihoo 360 Security as HEUR/QVM06.1.Malware.Gen (Undefined)
- Dr.Web as Trojan.MulDrop5.10078 (Undefined)
- VIPRE Antivirus as Threat.4150696 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc\3333-5724_speeditup[1].exe
Publisher:
MD5: 6403aa69f98dbf306c4b3378a4b45164
SHA-1: 5ea6a134c4624f27dd972d38ff200fcbb6f316b4
Created: 2014/11/20 8:56:45
Detections: 6
Determination: Adware
- NANO AntiVirus as Trojan.Win32.Revizer.diyexg (Undefined)
- avast! as NSIS:Adware-QI [Adw] (Adware)
- Dr.Web as Trojan.Revizer.235 (Undefined)
- Avira AntiVirus as ADWARE/Adware.Gen4 (Adware)
- ESET NOD32 as Win32/Adware.AddLyrics.DB (variant) (Adware)
- Baidu Antivirus as Adware.Win32.AddLyrics (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc\blockandsurf_2222-5510[1].exe
Publisher:
MD5: 8077df815574e383b9313e8471483b14
SHA-1: 2994b18d3af671b501d2b2550b60b10ad3567c22
Created: 2014/11/21 0:40:20
Detections: 9
Determination: Adware
- NANO AntiVirus as Trojan.Win32.Revizer.diyexg (Undefined)
- avast! as NSIS:Adware-QI [Adw] (Adware)
- Kaspersky as UDS:DangerousObject.Multi.Generic (Undefined)
- Dr.Web as Trojan.Revizer.234 (Undefined)
- Avira AntiVirus as ADWARE/Adware.Gen4 (Adware)
- G Data as NSIS.Adware.AddLyrics (Adware)
- AVG as Generic5 (Undefined)
- Baidu Antivirus as Adware.Win32.AddLyrics (Adware)
- Reason Heuristics as Adware.Revizer.W (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc\spstub[1].exe
Publisher:
MD5: d41d8cd98f00b204e9800998ecf8427e
SHA-1: da39a3ee5e6b4b0d3255bfef95601890afd80709
Created: 2014/11/20 7:16:08
Detections: 4
Determination: Ignore detections (false positive)
- Avira AntiVirus as TR/Dropper.Gen (Undefined)
- ESET NOD32 as Win32/AdWare.SpeedingUpMyPC.N application (Adware)
- AVG as Potentially harmful program HackTool.PJA (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Kazy.474306 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\24kr74ku\reimagepackage1801x64[1].exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 9fe0e27ee94c064b3e99a7ed0336105f
SHA-1: c4180e92cbea3a25b6d367dfd9668ae0f8435ca9
Created: 2014/11/20 7:39:26
Detections: 4
Determination: Adware
- Reason Heuristics as PUP.Optional.ReimageLimited.O (Adware)
- Trend Micro House Call as Suspicious_GEN.F47V0729 (Undefined)
- Dr.Web as Adware.Plugin.171 (Adware)
- Qihoo 360 Security as Malware.QVM10.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\24kr74ku\setup_mbot_jp[1].exe
Publisher:
Signer: Tuto4PC.com
MD5: 9a0c471dccb1ec41fe66228c6fcf2f97
SHA-1: d96d0f287f4391d5065f0c00eae4d3b46e68dad7
Created: 2014/11/21 0:35:42
Detections: 29
Determination: Adware
- Reason Heuristics as PUP.Installer.Tuto4PC.N (Adware)
- avast! as Adware-ASG [PUP] (Adware)
- Lavasoft Ad-Aware as Adware.Eorezo.BZ (Adware)
- Dr.Web as Adware.Downware.9051 (Adware)
- Emsisoft Anti-Malware as Adware.Eorezo.BZ (Adware)
- ESET NOD32 as multiple threats (Undefined)
- VIPRE Antivirus as Threat.4895339 (Undefined)
- Kaspersky as not-a-virus:AdWare.Win32.Eorezo (Adware)
- Norman as Adware.Eorezo.BZ (Adware)
- Sophos as PUA 'Eorezo' (of type Adware) (Adware)
- MicroWorld eScan as Adware.Eorezo.BZ (Adware)
- nProtect as Adware.Eorezo.BZ (Adware)
- Quick Heal as AdWare.EoRezo.r8 (Not a Virus) (Adware)
- ALYac as Adware.Eorezo.BZ (Adware)
- Zillya! Antivirus as Adware.Eorezo.Win32.905 (Adware)
- K7 Gateway Antivirus as Trojan (Undefined)
- K7 AntiVirus as Trojan (Undefined)
- NANO AntiVirus as Riskware.Win32.Eorezo.divfel (Adware)
- F-Prot as W32/S-bd7621bc (Undefined)
- Trend Micro House Call as TROJ_GEN.R00GH07KC14 (Undefined)
- Bitdefender as Adware.Eorezo.BZ (Adware)
- Agnitum Outpost as PUA.EoRezo (Adware)
- Comodo Security as ApplicUnwnt (Undefined)
- F-Secure as Adware.Eorezo.BZ (Adware)
- Avira AntiVirus as ADWARE/EoRezo.Gen4 (Adware)
- Antiy Labs AVL as GrayWare[AdWare:not-a-virus]/Win32.Eorezo (Adware)
- G Data as Adware.Eorezo.BZ (Adware)
- Vba32 AntiVirus as AdWare.Eorezo (Adware)
- AVG as Generic (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\4i51l91w\backups\backup-20141206-230829-967.dll
Publisher: Orbitdownloader.com
Signer: KORAM GAMES LIMITED
MD5: 0120182408d7e9db0c4cb02ccdd63c8e
SHA-1: 7962d4d29b00efbfee797811bc8c1632b94adfe7
Created: 2014/05/01 22:58:40
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.BHO.KORAMGAMESLIMITED.I (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\6gmbur3q\anyprotect[1].exe
Publisher:
MD5: ad470534b0b88ac9c3bf03deb0aa5503
SHA-1: 6434241f198f89296eac012ea5da61a77e64664b
Created: 2014/11/21 0:50:43
Detections: 3
Determination: Adware
- Reason Heuristics as PUP.CMIAnyProtect.K (Adware)
- AVG as Adware Generic_r.WV (Adware)
- K7 Gateway Antivirus as Unwanted-File (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\6gmbur3q\setup[1].exe
Publisher: CMI Limited
Signer: Any Send Pro (ClickMeIn Ltd)
MD5: e1464041c50a7d6a3cc725a8bc3fa2b6
SHA-1: ee79a0994daaa2925c953bed5b6ec08055b25bd8
Created: 2014/11/21 0:48:50
Detections: 7
Determination: Adware
- Reason Heuristics as PUP.Installer.AnySendProClickMeIn.K (Adware)
- Dr.Web as Adware.ClickMeIn.17 (Adware)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- G Data as NSIS.Application.AnyProtect (Undefined)
- AhnLab V3 Security as PUP/Win32.AnyProtect (Adware)
- AVG as Generic (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\7wnafr1p\dl[1].htm
Publisher:
MD5: af23d70c28f95b79d790ec9c96936b9d
SHA-1: 54ba7ced8c5f150beb27dfe0f9306c9515646538
Created: 2014/11/20 9:00:01
Detections: 5
Determination: Adware
- avast! as Win32:Malware-gen (Undefined)
- NANO AntiVirus as Riskware.Win32.ClickMeIn.djkwhd (Adware)
- Baidu Antivirus as PUA.Win32.VOPackage (Adware)
- ESET NOD32 as Win32/VOPackage.AV (variant) (Undefined)
- Reason Heuristics as Threat.Win.Reputation.IMP (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\7wnafr1p\protectorpackage2005x64[1].exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 1ec97dabdbf159478b2cf8863dff2f87
SHA-1: afed0715ea599ab00cf41b6e595a850cc186f9aa
Created: 2014/11/20 7:41:06
Detections: 1
Determination: Inconclusive
- Reason Heuristics as PUP.Optional.ReimageLimited.X (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\7wnafr1p\setup[1].exe
Publisher:
MD5: f1641ff5a600c22b57d8db6831a528c5
SHA-1: 64e32bea79fb7a0e75cfaae902b5183e31833ae2
Created: 2014/11/21 0:46:31
Detections: 8
Determination: Adware
- ESET NOD32 as Win32/InstallCore.PK potentially unwanted application (Adware)
- F-Prot as W32/A-e3871acb (Undefined)
- Baidu Antivirus as Adware.Win32.InstallCore (Adware)
- avast! as Dropper-gen [Drp] (Undefined)
- Avira AntiVirus as Adware/InstallCore.587709 (Adware)
- Qihoo 360 Security as HEUR/QVM06.1.Malware.Gen (Undefined)
- Dr.Web as Trojan.MulDrop5.10078 (Undefined)
- VIPRE Antivirus as Threat.4150696 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\7wnafr1p\vopackage[1].exe
Publisher:
MD5: de578f0fe0474dd2cd6b0396f869556b
SHA-1: 696e52383511834e6110da0e26a74aee1d53c4c5
Created: 2014/11/20 8:58:46
Detections: 9
Determination: Adware
- Trend Micro House Call as Suspicious_GEN.F47V1119 (Undefined)
- avast! as Win32:Dropper-gen [Drp] (Undefined)
- Rising Antivirus as NS:PUF.SilenceInstaller!1.9DDF (Undefined)
- VIPRE Antivirus as Trojan.Win32.Generic (Undefined)
- McAfee Web Gateway as BehavesLike.Win32.Downloader.dc (Undefined)
- McAfee as Artemis!DE578F0FE047 (Undefined)
- Baidu Antivirus as PUA.Win32.VOPackage (Adware)
- ESET NOD32 as Win32/VOPackage.AT (Undefined)
- Reason Heuristics as Adware.CMI.J (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\czfhyu2a\setup[1].exe
Publisher:
MD5: 186f3da37a5e208509ac6203ffea5b90
SHA-1: 5eb6a85954c3636d8bd5d4b78dcd436b26a11e40
Created: 2014/11/21 0:59:10
Detections: 8
Determination: Adware
- ESET NOD32 as Win32/InstallCore.PK potentially unwanted application (Adware)
- F-Prot as W32/A-e3871acb (Undefined)
- Baidu Antivirus as Adware.Win32.InstallCore (Adware)
- avast! as Dropper-gen [Drp] (Undefined)
- Avira AntiVirus as Adware/InstallCore.587709 (Adware)
- Qihoo 360 Security as HEUR/QVM06.1.Malware.Gen (Undefined)
- Dr.Web as Trojan.MulDrop5.10078 (Undefined)
- VIPRE Antivirus as Threat.4150696 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\tzbtrudc\3333-5724_speeditup[1].exe
Publisher:
MD5: 6403aa69f98dbf306c4b3378a4b45164
SHA-1: 5ea6a134c4624f27dd972d38ff200fcbb6f316b4
Created: 2014/11/20 8:56:45
Detections: 6
Determination: Adware
- NANO AntiVirus as Trojan.Win32.Revizer.diyexg (Undefined)
- avast! as NSIS:Adware-QI [Adw] (Adware)
- Dr.Web as Trojan.Revizer.235 (Undefined)
- Avira AntiVirus as ADWARE/Adware.Gen4 (Adware)
- ESET NOD32 as Win32/Adware.AddLyrics.DB (variant) (Adware)
- Baidu Antivirus as Adware.Win32.AddLyrics (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\tzbtrudc\blockandsurf_2222-5510[1].exe
Publisher:
MD5: 8077df815574e383b9313e8471483b14
SHA-1: 2994b18d3af671b501d2b2550b60b10ad3567c22
Created: 2014/11/21 0:40:20
Detections: 9
Determination: Adware
- NANO AntiVirus as Trojan.Win32.Revizer.diyexg (Undefined)
- avast! as NSIS:Adware-QI [Adw] (Adware)
- Kaspersky as UDS:DangerousObject.Multi.Generic (Undefined)
- Dr.Web as Trojan.Revizer.234 (Undefined)
- Avira AntiVirus as ADWARE/Adware.Gen4 (Adware)
- G Data as NSIS.Adware.AddLyrics (Adware)
- AVG as Generic5 (Undefined)
- Baidu Antivirus as Adware.Win32.AddLyrics (Adware)
- Reason Heuristics as Adware.Revizer.W (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\appdata\local\microsoft\windows\inetcache\ie\tzbtrudc\spstub[1].exe
Publisher:
MD5: d41d8cd98f00b204e9800998ecf8427e
SHA-1: da39a3ee5e6b4b0d3255bfef95601890afd80709
Created: 2014/11/20 7:16:08
Detections: 4
Determination: Ignore detections (false positive)
- Avira AntiVirus as TR/Dropper.Gen (Undefined)
- ESET NOD32 as Win32/AdWare.SpeedingUpMyPC.N application (Adware)
- AVG as Potentially harmful program HackTool.PJA (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Kazy.474306 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\ac3filter_2_5b.exe
Publisher: Alexander Vigovsky
MD5: 28577a1789f98076f5a32abc78cb379e
SHA-1: cec6d5b7d6f8a2d613069f3d0f882cfe23c4b92a
Created: 2013/12/31 14:05:44
Detections: 3
Determination: Inconclusive
- K7 AntiVirus as Trojan (Undefined)
- K7 Gateway Antivirus as Trojan (Undefined)
- ESET NOD32 as Win32/OpenCandy (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\brothersoft_downloader_for_cyberlink_dvd_solution3457.exe
Publisher:
Signer: KORAM GAMES LIMITED
MD5: c0c1032812f02892fe4f086ece9b0040
SHA-1: d0b93578e350ffd89855127c8000733d37edb96a
Created: 2014/10/30 22:20:30
Detections: 11
Determination: Adware
- Reason Heuristics as PUP.Optional.KORAMGAMESLIMITED.v (Adware)
- ESET NOD32 as Win32/InstallCore.PS potentially unwanted application (Adware)
- Dr.Web as Trojan.MulDrop5.38502 (Undefined)
- VIPRE Antivirus as Threat.4786140 (Undefined)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- K7 AntiVirus as Unwanted-Program (Adware)
- NANO AntiVirus as Riskware.Win32.InstallCore.djeeiy (Adware)
- SUPERAntiSpyware as Trojan.Agent/Gen-MultDrop (Undefined)
- Avira AntiVirus as ADWARE/InstallCore.Gen9 (Adware)
- Vba32 AntiVirus as Malware-Cryptor.InstallCore.gen (Adware)
- AVG as Generic (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\freemakevideoconvertersetup.exe
Publisher: Ellora Assets Corporation
Signer: Ellora Assets Corp.
MD5: 7cf75d8ddb85c349155eb79be2a83cb2
SHA-1: 14810dc56829dcab9ad47499bb60466043e148dd
Created: 2014/05/01 22:52:06
Detections: 7
Determination: Adware
- Trend Micro House Call as TROJ_GEN.F47V0327 (Undefined)
- Dr.Web as Adware.Toolbar.213 (Adware)
- ESET NOD32 as Win32/OpenCandy (Adware)
- Fortinet FortiGate as Riskware/OpenCandy (Adware)
- Baidu Antivirus as Adware.Win32.OpenCandy (Adware)
- Malwarebytes as PUP.Optional.OpenCandy (Adware)
- Trend Micro as ADW_OPENCANDY (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\gomplayerjpsetup.exe
Publisher: Gretech Corporation
Signer: GRETECH
MD5: d73a69ece335d760ca111f370a852110
SHA-1: cae992a0594b2b4aca6a21147af314ec5ff91a33
Created: 2013/12/31 13:56:40
Detections: 2
Determination: Inconclusive
- ESET NOD32 as Win32/Bundled.Toolbar.Google (Undefined)
- Reason Heuristics as PUP.Optional.Installer.GRETECH.Q (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\nf49401w.exe
Publisher: Toxsoft
MD5: 56a5e12a612eb5361b5006cd8b7c2cd9
SHA-1: 2f9d04a3ab7320a7870f43f900868ddb762d1959
Created: 2014/04/13 13:14:23
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as BScope.Trojan.Agent (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\nf49402w.exe
Publisher: Toxsoft
MD5: 441c87c4263c3cd9deb6f3bdc1f5c976
SHA-1: 6095229c6b854ab2c35e88acb3da361f75d70378
Created: 2014/05/22 6:05:31
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as BScope.Trojan.Agent (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\orbitdownloadersetup.exe
Publisher: www.orbitdownloader.com
Signer: KORAM GAMES LIMITED
MD5: 49055a8ffade6718ea6c917779761c0d
SHA-1: 78c35fc3faebe0801562ea348bc579e65519e3fc
Created: 2014/05/01 22:57:48
Detections: 12
Determination: Adware
- Trend Micro House Call as TROJ_GEN.F47V0117 (Undefined)
- Kaspersky as HEUR:Trojan-DDoS.Win32.OrboDDoS (Undefined)
- Comodo Security as UnclassifiedMalware (Undefined)
- ESET NOD32 as Win32/OpenCandy (Adware)
- IKARUS anti.virus as not-a-virus:NetTool.Win32.GushUnleashed
- Fortinet FortiGate as Riskware/GushUnleashed (Undefined)
- Reason Heuristics as PUP.Optional.Installer.KORAMGAMESLIMITED.U (Adware)
- Quick Heal as NetTool.GushUnleashed.g9 (Not a Virus)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- NANO AntiVirus as Trojan.Win32.OrboDDoS.cthdjh (Undefined)
- Antiy Labs AVL as HackTool[NetTool:not-a-virus]/Win32.GushUnleashed

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\reimagerepair (1).exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 757b793134a1b5fa7839321477c8d003
SHA-1: cd0a1b717981500f33d08b277723d111d2ac7e77
Created: 2014/11/20 7:49:27
Detections: 13
Determination: Adware
- McAfee as Artemis!757B793134A1 (Undefined)
- avast! as Win32:Malware-gen (Undefined)
- Dr.Web as Adware.Plugin.171 (Adware)
- McAfee Web Gateway as BehavesLike.Win32.BadFile.bc (Undefined)
- AhnLab V3 Security as Trojan/Win32.FakeAV (Undefined)
- ESET NOD32 as Win32/ReImageRepair (variant) (Undefined)
- Fortinet FortiGate as Riskware/ReImageRepair (Undefined)
- Reason Heuristics as PUP.Optional.ReimageLimited.N (Adware)
- Trend Micro House Call as Suspicious_GEN.F47V1116 (Undefined)
- Agnitum Outpost as Riskware.Agent (Adware)
- Zillya! Antivirus as Downloader.Agent.Win32.227126 (Undefined)
- G Data as Win32.Application.VMDetect (Undefined)
- Baidu Antivirus as PUA.Win32.VMDetect (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\downloads\reimagerepair.exe
Publisher: Reimage®
Signer: Reimage Limited
MD5: 6c8b60c145d31a08e343f1a9d1290428
SHA-1: 49380196a1f1f1a108bb177b05d3480a9b076291
Created: 2014/11/20 7:25:56
Detections: 13
Determination: Adware
- Dr.Web as Adware.Plugin.171 (Adware)
- AhnLab V3 Security as Trojan/Win32.FakeAV (Undefined)
- Reason Heuristics as PUP.Optional.ReimageLimited.N (Adware)
- Trend Micro House Call as Suspicious_GEN.F47V1116 (Undefined)
- avast! as Win32:Rootkit-gen [Rtk] (Undefined)
- Agnitum Outpost as Riskware.Agent (Adware)
- McAfee as Artemis!8DDC6C3D11DC (Undefined)
- McAfee Web Gateway as Artemis (Undefined)
- ESET NOD32 as Win32/ReImageRepair (variant) (Undefined)
- Fortinet FortiGate as Riskware/ReImageRepair (Undefined)
- Zillya! Antivirus as Downloader.Agent.Win32.227126 (Undefined)
- G Data as Win32.Application.VMDetect (Undefined)
- Baidu Antivirus as PUA.Win32.VMDetect (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\desktop\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2014/12/08 23:49:04
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\desktop\iobituninstaller-4-1-5-30\iobituninstaller41.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 705c0e251d48bc5d6af174f165141ba4
SHA-1: f07af60a699988e7285ddb95d2d28877f72c802a
Created: 2014/12/06 20:49:38
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.IObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\desktop\tubes\使用しない\ddec3540inst_jp\ddec3540inst_jp.exe
Publisher:
MD5: 9e409e46649ea933f93322de71526712
SHA-1: 778147cdf3bb3db87fe259919cd1295a3c969bb9
Created: 2013/08/06 5:57:02
Detections: 2
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)
- ViRobot as Trojan.Win32.A.ShipUp.69100 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\pc-user\desktop\tubes\使用しない\wakajiten_chosha\ionic.zip.dll
Publisher: Dino Chiesa
MD5: d66720370b3b1e22fac6d6d74f7a4d24
SHA-1: 00c0c58ad176101f383ebe0231870930f5e5dea6
Created: 2013/01/17 16:28:26
Detections: 1
Determination: Ignore detections (false positive)
- eSafe as Undefined

---------------------------------------------------------------------------------

File path: c:\users\pc-user\desktop\tubes\博物館\メモリの掃除屋さん\memcleanernt.exe
Publisher:
MD5: 7f395deb9ee1059afd1346e30398109c
SHA-1: c477bca07bca01e8293600110d49a35aaed294e8
Created: 2009/10/08 0:00:00
Detections: 1
Determination: Ignore detections (false positive)
- IKARUS anti.virus as Trojan-Dropper.Win32.Farfli (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\atoklib.dll
Publisher: 株式会社ジャストシステム
MD5: c2dd58939eb87113e3479a09b1c31767
SHA-1: 7304cbf435654a73ae149dded2b10f1add5732d8
Created: 2001/01/18 12:00:00
Detections: 1
Determination: Ignore detections (false positive)
- AVG as Win32/Heri (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\ext-ms-win-cluster-clusapi-l1-1-1.dll
Publisher: Microsoft Corporation
MD5: 6f5557e3f97cb2a957da5dcdaf1e22c1
SHA-1: c2a27e776fbfc3666642425dcc5f2b34bb41cb10
Created: 2013/08/22 13:14:14
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Backdoor/Bifrose.fxu (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\gphotos.scr
Publisher: Google Inc.
MD5: f3a63c7a2d8609d3a1c6a3f86f655816
SHA-1: dd254a13c7a40edb96a3f0d6dafb251171fae50a
Created: 2014/03/12 5:07:42
Detections: 1
Determination: Ignore detections (false positive)
- ByteHero BDV as Trojan.Exception.gen.101 (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\kbdcherp.dll
Publisher: Microsoft Corporation
MD5: f992fe1d923f59f806442449f3ea557b
SHA-1: d216f5bc5d466c1c9d94aa57a28c5226b214bdbc
Created: 2013/08/22 13:15:06
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Kryptik.ahcy (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\irfanview\iv_uninstall.exe
Publisher: Irfan Skiljan, IrfanView
MD5: ac874ec0b681f38261a1f622d8814d37
SHA-1: cdd020f8b5cfaeedca5c1330cfe1247cf3213360
Created: 2009/07/12 23:20:00
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\irfanview\plugins\slideshow.exe
Publisher: Irfan Skiljan
MD5: 842e72b112a5a1ed112ee16fea0666b7
SHA-1: 15628a960cdfa37464e92ee459cd5eabde55feff
Created: 2009/07/12 23:20:00
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Posible_Worm32 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\mcafee\msc\compatibilitytester.exe
Publisher: McAfee, Inc.
Signer: McAfee, Inc.
MD5: f3ed4740058c6eaa215c925491820b5c
SHA-1: 34062adff2c997044d1288486292e03887faa21f
Created: 2013/10/04 3:22:42
Detections: 1
Determination: Ignore detections (false positive)
- Comodo Security as Heur.Suspicious

---------------------------------------------------------------------------------

File path: c:\program files\nextftp\nextftp.exe
Publisher:
MD5: 15744a24c7089bfb5c9d2c0317ee5aff
SHA-1: 80bc7c81a9a4606354e550bc26a1ae073570c9f0
Created: 2013/04/05 20:33:27
Detections: 1
Determination: Ignore detections (false positive)
- Vba32 AntiVirus as BScope.Trojan.Agent (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\ripaudicof\jword_plugin.exe
Publisher: web technology Corp.
http://www.webtech.co.jp/exepress/
MD5: b189bd00021e72894cf77ccc95270710
SHA-1: cbf5d4259f866d75863a1c1c0f27b028b2ae1aee
Created: 2005/03/16 10:24:54
Detections: 1
Determination: Inconclusive
- Sophos as CnsMin (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\windowsapps\pixelacorporation.514315c856fc3_1.2.2.13_x64__hqk3z84exj2ft\devlogger.dll
Publisher:
MD5: d41d8cd98f00b204e9800998ecf8427e
SHA-1: da39a3ee5e6b4b0d3255bfef95601890afd80709
Created: 2012/11/22 18:30:16
Detections: 4
Determination: Ignore detections (false positive)
- Avira AntiVirus as TR/Dropper.Gen (Undefined)
- ESET NOD32 as Win32/AdWare.SpeedingUpMyPC.N application (Adware)
- AVG as Potentially harmful program HackTool.PJA (Undefined)
- Lavasoft Ad-Aware as Gen:Variant.Kazy.474306 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\a-one\ラベル屋さんhome\ai.exe
Publisher:
MD5: 418ed4f5aa685d1a7f3e28129d954765
SHA-1: 2435e3c5cf24d3bc90fbd1fed3b7e6ac6af4a2f4
Created: 2013/04/06 6:54:55
Detections: 1
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.Troj.Generic.a.(kcloud) (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\adobe\acrobat 5.0\reader\acrord32.exe
Publisher: Adobe Systems Incorporated
MD5: 9e0d2a448501bf430984ba041e6658f4
SHA-1: ab98775e8dc4e44dc01587d675b11563e46c0513
Created: 2013/04/05 21:08:37
Detections: 1
Determination: Ignore detections (false positive)
- Rising Antivirus as PE:Malware.XPACK/RDM!5.1

---------------------------------------------------------------------------------

File path: c:\program files (x86)\adobe\adobe dreamweaver cs6\configuration\jsextensions\dwfile.dll
Publisher: Adobe Systems Incorporated
Signer: Adobe Systems Incorporated
MD5: 8a8bc7e1879915662e82023d387f79b1
SHA-1: 7115a2347ea48e3728e6d73898726fe4f8fed7ae
Created: 2012/03/31 2:08:16
Detections: 1
Determination: Ignore detections (false positive)
- XVirus List as Win.Detected (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\adobe\adobe dreamweaver cs6\jvm\bin\javaws.exe
Publisher: Sun Microsystems, Inc.
Signer: Sun Microsystems, Inc.
MD5: bf5d27f8eb9f52a2b5e2e504afbae6d6
SHA-1: 15edcad18c0329b41fc4d1fc982620f07173108d
Created: 2012/03/31 0:27:20
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as W32.Clodfa5.Trojan (Undefined)

  • あさくま
  • MAIL
  • 2014/12/09 (Tue) 09:30:32
返信フォームへ 
Re: Reimage等にやられております
OTLログ1(61,000字)

OTL logfile created on: 2014/12/09 8:35:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\PC-User\Desktop
64bit- An unknown product (Version = 6.3.9600) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17416)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.86 Gb Total Physical Memory | 2.82 Gb Available Physical Memory | 73.18% Memory free
7.73 Gb Paging File | 6.76 Gb Available in Paging File | 87.35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 337.94 Gb Total Space | 245.09 Gb Free Space | 72.53% Space Free | Partition Type: NTFS
Drive D: | 338.38 Gb Total Space | 273.32 Gb Free Space | 80.77% Space Free | Partition Type: NTFS

Computer Name: PCUSER | User Name: PC-User | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2014/12/08 23:49:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\PC-User\Desktop\OTL.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2014/10/31 13:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/30 01:24:10 | 002,443,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe -- (ClickToRunSvc)
SRV:[b]64bit:[/b] - [2014/10/07 10:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2014/09/22 12:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2014/09/22 12:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2014/09/04 04:09:02 | 000,603,424 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:[b]64bit:[/b] - [2014/08/20 08:16:12 | 001,041,192 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe -- (mfecore)
SRV:[b]64bit:[/b] - [2014/08/16 12:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/08/16 09:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2014/08/16 09:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/07/24 16:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/06/20 10:30:38 | 000,189,912 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2014/06/20 10:23:12 | 000,219,752 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2014/04/25 18:34:42 | 000,178,528 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\McAfee\MSC\McAPExe.exe -- (McAPExe)
SRV:[b]64bit:[/b] - [2014/03/18 19:00:02 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/03/18 19:00:02 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:56 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:56 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:53 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/03/14 15:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2014/03/08 14:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/03/06 16:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2013/09/11 03:01:28 | 000,335,216 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\McAfee\AppStats\MfeASUM.exe -- (MfeASUM)
SRV:[b]64bit:[/b] - [2013/08/22 20:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013/08/22 20:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013/08/22 20:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013/08/22 20:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013/08/22 20:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013/08/22 20:03:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\SysNative\rundll32.exe -- (b5d879ec)
SRV:[b]64bit:[/b] - [2013/08/22 19:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013/08/22 19:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013/08/22 18:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013/08/22 18:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 18:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013/08/22 18:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 18:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013/08/22 18:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013/08/22 18:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013/08/22 18:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:[b]64bit:[/b] - [2013/07/30 11:45:02 | 000,328,928 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:[b]64bit:[/b] - [2012/12/20 10:52:54 | 000,083,456 | ---- | M] (Softex Inc.) [Auto | Stopped] -- C:\Program Files\Softex\OmniPass\OmniServ.exe -- (omniserv)
SRV:[b]64bit:[/b] - [2012/12/20 10:42:54 | 000,114,688 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Softex\OmniPass\cachesrvr.exe -- (Cachedrv server)
SRV:[b]64bit:[/b] - [2012/11/02 11:28:52 | 000,165,272 | ---- | M] (FUJITSU LIMITED) [On_Demand | Stopped] -- C:\Program Files\Fujitsu\QuickPowerOn\QuickPowerOn.exe -- (FJQuickPowerOn)
SRV:[b]64bit:[/b] - [2012/10/30 09:42:18 | 000,084,888 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe -- (FJAutoSignIn)
SRV:[b]64bit:[/b] - [2012/10/24 20:42:02 | 000,081,264 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe -- (FUJ02E3Service)
SRV:[b]64bit:[/b] - [2012/10/23 16:42:28 | 000,035,256 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe -- (SKARUTE)
SRV:[b]64bit:[/b] - [2012/09/19 18:30:46 | 000,238,960 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe -- (PUSCSRVC)
SRV:[b]64bit:[/b] - [2012/08/31 13:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV:[b]64bit:[/b] - [2012/08/07 10:26:57 | 000,051,608 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\PSUtility\PSUService.exe -- (PowerSavingUtilityService)
SRV:[b]64bit:[/b] - [2012/07/26 11:25:12 | 002,219,520 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe -- (PFNService)
SRV:[b]64bit:[/b] - [2012/04/20 14:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/01/23 22:30:22 | 000,233,328 | ---- | M] (DTS, Inc) [Auto | Stopped] -- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe -- (DTSAudioSvc)
SRV:[b]64bit:[/b] - [2011/11/29 19:48:06 | 000,131,000 | ---- | M] (CypherTec Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\CypherTec\cthwsrv64.exe -- (CypherGuard Info Service)
SRV:[b]64bit:[/b] - [2011/11/29 19:26:28 | 000,127,416 | ---- | M] (CypherTec Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\CypherTec\cgrdsrv64.exe -- (CypherGuard cguard Service 64bit Edition)
SRV:[b]64bit:[/b] - [2011/06/28 18:44:06 | 000,014,336 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files\Fujitsu\chitose\updnvsrv.exe -- (UpdateNaviInstallService)
SRV - [2014/12/06 20:50:14 | 002,631,456 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2014/11/21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/11/21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014/09/12 18:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/08/16 12:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/07/10 06:13:34 | 001,141,848 | ---- | M] (RealNetworks, Inc.) [Auto | Stopped] -- c:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Cloud Service)
SRV - [2014/06/10 22:03:38 | 000,023,552 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2014/06/10 17:50:38 | 000,039,568 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2014/03/14 15:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/03/11 23:36:06 | 000,247,968 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE -- (BBUpdate)
SRV - [2014/03/11 23:36:06 | 000,193,696 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE -- (BBSvc)
SRV - [2014/01/29 23:02:44 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/09/30 17:31:44 | 000,094,208 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\dms_svc.exe -- (My Cloud ビデオ サーバー)
SRV - [2013/08/22 12:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 11:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/07/24 21:44:20 | 000,021,328 | ---- | M] (FUJITSU LIMITED) [Auto | Stopped] -- C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe -- (MyCloudEcoSvc)
SRV - [2013/07/19 10:59:00 | 000,237,976 | ---- | M] (富士通株式会社) [Auto | Stopped] -- C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe -- (FJAgentSVC)
SRV - [2013/04/04 09:39:12 | 000,007,680 | ---- | M] (キヤノンマーケティングジャパン株式会社) [Auto | Stopped] -- C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJService.exe -- (CSPTL-CANONMJService)
SRV - [2013/02/04 18:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/11/13 06:17:08 | 000,170,376 | ---- | M] (PointGrab LTD) [Auto | Stopped] -- C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG_Service_Launcher.exe -- (PG_Service_Launcher)
SRV - [2012/11/13 06:17:00 | 000,055,664 | ---- | M] (PointGrab LTD) [Auto | Stopped] -- C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe -- (PGService)
SRV - [2012/11/07 16:50:38 | 000,030,096 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe -- (UDSS)
SRV - [2012/11/02 15:39:58 | 000,131,168 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe -- (SonicStage Back-End Service2)
SRV - [2012/10/19 02:09:44 | 000,163,424 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2012/09/13 11:59:08 | 002,466,448 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Realtek\Realtek USB Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2012/08/14 14:13:26 | 000,138,752 | ---- | M] (IVT Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe -- (BsHelpCS)
SRV - [2012/08/14 14:04:32 | 001,578,496 | ---- | M] (IVT Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe -- (BlueSoleilCS)
SRV - [2012/08/10 17:13:38 | 000,116,608 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe -- (NetworkPlayer Server)
SRV - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/04/24 14:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2012/03/28 21:49:11 | 000,140,456 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2011/11/29 19:16:12 | 000,109,984 | ---- | M] (CypherTec Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\CypherTec\cgrdsrv32.exe -- (CypherGuard cguard Service 32bit Edition)
SRV - [2010/05/20 16:15:00 | 000,110,736 | R--- | M] (InterVideo) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2010/03/11 14:06:06 | 000,193,824 | ---- | M] (Protexis Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2014/12/09 07:52:39 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2014/11/21 06:14:26 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2014/10/10 10:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/09/22 12:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2014/09/22 12:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2014/09/22 11:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2014/08/20 08:06:14 | 000,096,592 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:[b]64bit:[/b] - [2014/08/20 08:05:28 | 000,445,512 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:[b]64bit:[/b] - [2014/08/15 09:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/07/25 00:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2014/07/25 00:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/07/24 20:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/06/20 10:38:22 | 000,072,128 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2014/06/20 10:31:06 | 000,348,552 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2014/06/20 10:26:02 | 000,786,296 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2014/06/20 10:23:40 | 000,523,792 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2014/06/20 10:21:48 | 000,313,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2014/06/20 10:20:54 | 000,181,704 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:[b]64bit:[/b] - [2014/06/20 10:09:34 | 000,070,600 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2014/05/01 22:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/03/20 12:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:53 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:43 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:41 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:41 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/03/18 18:42:24 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2014/03/13 21:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/03/09 05:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/01/29 23:02:28 | 005,363,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/09/23 13:49:22 | 000,197,704 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:[b]64bit:[/b] - [2013/09/11 03:01:28 | 000,031,408 | ---- | M] (McAfee, Inc.) [Kernel | System | Stopped] -- C:\Program Files\McAfee\AppStats\MfeASKM.sys -- (MfeASKM)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 21:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 21:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013/08/22 21:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Unknown (0) | Disabled | Unknown] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013/08/22 20:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013/08/22 17:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/13 08:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/10 09:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/31 03:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/26 04:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/26 04:05:37 | 002,607,792 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:[b]64bit:[/b] - [2013/06/18 23:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2012/12/14 17:40:22 | 000,123,832 | ---- | M] (CypherTec Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\cymon.sys -- (Cymon)
DRV:[b]64bit:[/b] - [2012/12/13 14:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/10/15 11:17:44 | 000,018,816 | ---- | M] (Pixela) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\pix_tcp_filter.sys -- (pix_tcp_filter)
DRV:[b]64bit:[/b] - [2012/10/08 17:25:34 | 000,250,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2012/09/05 17:44:08 | 001,849,608 | ---- | M] (Sonix Co. Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC)
DRV:[b]64bit:[/b] - [2012/09/01 18:01:56 | 000,647,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/08/24 17:38:28 | 000,448,312 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2012/08/24 17:38:28 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2012/08/24 17:38:26 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/08/20 08:55:56 | 000,090,112 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2012/08/14 20:48:48 | 000,695,392 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtbth.sys -- (rtbth)
DRV:[b]64bit:[/b] - [2012/08/14 10:14:58 | 000,048,736 | ---- | M] (Ralink Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtUrbBtFlt.sys -- (btUrbFilterDrv)
DRV:[b]64bit:[/b] - [2012/08/10 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2012/08/01 22:35:34 | 000,020,848 | ---- | M] (FUJITSU LIMITED) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\FBIOSDRV.sys -- (FBIOSDRV)
DRV:[b]64bit:[/b] - [2012/08/01 22:34:02 | 000,016,368 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02b1.sys -- (FUJ02B1)
DRV:[b]64bit:[/b] - [2012/08/01 22:32:34 | 000,017,264 | ---- | M] (FUJITSU LIMITED) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\fuj02e3.sys -- (FUJ02E3)
DRV:[b]64bit:[/b] - [2012/07/19 17:47:40 | 000,056,904 | ---- | M] (Ralink Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BtL2caScoIf.sys -- (BthL2caScoIfSrv)
DRV:[b]64bit:[/b] - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2012/06/19 07:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2012/06/15 11:22:02 | 000,023,136 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BtAudioBus.sys -- (BtAudioBusSrv)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0147E231-BD7D-4CFF-A5A2-64F7F275F1E5}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0147E231-BD7D-4CFF-A5A2-64F7F275F1E5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAFSJS
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {5449B554-5FED-4F56-B11B-CD6C4F4DB7C0}
IE - HKLM\..\SearchScopes\{0147E231-BD7D-4CFF-A5A2-64F7F275F1E5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAFSJS
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fujitsu13.msn.com
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://azby.fmworld.net/?ref=201301 [binary data]
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes,DefaultScope = {0147E231-BD7D-4CFF-A5A2-64F7F275F1E5}
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes\{0147E231-BD7D-4CFF-A5A2-64F7F275F1E5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAFSJS
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes\{448A051F-1E42-4F0A-9532-05C99370E457}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes\{A5E0F0C5-CF2A-4338-BD4A-29D18F8940CF}: "URL" = http://search.yahoo.co.jp/search?ei=UTF-8&fr=ie8scint&p={searchTerms}
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\SearchScopes\{A7BDBEB3-D60F-48E6-A3E2-777CD3F67802}: "URL" = http://search.yahoo.co.jp/search?ei=UTF-8&fr=mcafeess1&p={SearchTerms}
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>;*.local
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:14235;https=127.0.0.1:14235


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\WINDOWS\system32\npDeployJava1.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect_x86_64: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.11.0: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=17.0.11: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.11: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=17.0.11: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.11.0: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2014/11/21 00:55:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014/07/10 06:15:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1DD9AC48-0855-4AE7-9934-159B4377FFA2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2014/07/10 06:15:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\msktbird@mcafee.com: C:\Program Files\McAfee\MSK [2014/10/25 06:56:14 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{5ECBF158-7053-DEB4-491A-590F9EBC1AE2}: C:\Program Files (x86)\ver6SpeeditUp\183.xpi


[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: https://chrome.google.com/
CHR - plugin: Error reading preferences file
CHR - Extension: RealPlayer Downloader = C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\17.0.11_0\
CHR - Extension: MTG Finder = C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\infiigcphjnhnkjagipboadmcdefhhld\229\

O1 HOSTS File: ([2013/08/22 22:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
O2:[b]64bit:[/b] - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
O2:[b]64bit:[/b] - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (OmniPass Helper) - {7C5AE885-5C98-4A61-8085-3FA169F7233C} - C:\Program Files\Softex\OmniPass\OpBHO64.dll (Softex Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Bing Bar Helper) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Yahoo!ツールバーフィッシング警告) - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll (Yahoo Japan Corporation. )
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (OmniPass Helper) - {7C5AE885-5C98-4A61-8085-3FA169F7233C} - C:\Program Files\Softex\OmniPass\OpBHO32.dll (Softex Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Yahoo!ツールバーヘルパー) - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Cubeツールバー(&C)) - {0CBC8163-AC34-476a-9E22-4B6D5184E060} - C:\Program Files\CubeToolBar\ToolBarBand.dll (CubeSoft)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Cubeツールバー(&C)) - {0CBC8163-AC34-476a-9E22-4B6D5184E060} - C:\Program Files (x86)\CubeToolBar\ToolBarBand.dll (CubeSoft)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O3 - HKLM\..\Toolbar: (Bing Bar) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
O3 - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\..\Toolbar\WebBrowser: (Yahoo!ツールバー) - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll (Yahoo! JAPAN)
O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [CNAP2 Launcher] C:\Windows\SysNative\spool\drivers\x64\3\CNAP2LAK.EXE (CANON INC.)
O4:[b]64bit:[/b] - HKLM..\Run: [FJUPDNV_Chitose] C:\Program Files\Fujitsu\chitose\updatenv.exe (FUJITSU LIMITED)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [OmniPass] C:\Program Files\Softex\OmniPass\scureapp.exe (Softex Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Adobe Creative Cloud] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BtTray] C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (IVT Corporation)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [CSPTL-CANONMJ] C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJ.exe (キヤノンマーケティングジャパン株式会社)
O4 - HKLM..\Run: [mcpltui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NetworkPlayerServerHelper] C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe (DigiOn, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-3291258898-3594276855-938048873-1002..\Run: [AirGet] C:\Program Files (x86)\sMedio\AirGet\AirGet.exe (sMedio Inc)
O4 - HKU\S-1-5-21-3291258898-3594276855-938048873-1002..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-3291258898-3594276855-938048873-1002..\Run: [DriveStudio] C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe (FUJITSU LIMITED)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: Cube : WEB 検索 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8:[b]64bit:[/b] - Extra context menu item: Cube : リンク文字列を翻訳 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8:[b]64bit:[/b] - Extra context menu item: Cube : 選択範囲を翻訳 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Cube : WEB 検索 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8 - Extra context menu item: Cube : リンク文字列を翻訳 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8 - Extra context menu item: Cube : 選択範囲を翻訳 - C:\Program Files (x86)\CubeToolBar\ToolBar.dll (CubeSoft)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
  • あさくま
  • MAIL
  • 2014/12/09 (Tue) 09:36:47
返信フォームへ 
Re: Reimage等にやられております
OTLログ2(53,000字)

O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:[b]64bit:[/b] - DPF: {0E15796F-7B3A-4FB3-BF69-7B11D20A4A62} https://azby.fmworld.net/register/entrance/UserReg.CAB (AzbyClub ユーザー登録用 コントロール)
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} http://sample3.dmm.co.jp/downloader6/DMMDownloader.cab (DMM Downloader)
O16 - DPF: {0E15796F-7B3A-4FB3-BF69-7B11D20A4A62} https://azby.fmworld.net/register/entrance/UserReg.CAB (AzbyClub ユーザー登録用 コントロール)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.128.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C7E34A04-8911-4175-8EE8-2287095885DF}: DhcpNameServer = 14.193.100.8 14.193.100.40
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB6A45FD-39E9-4796-86C0-A0F7EFF18C69}: DhcpNameServer = 192.168.128.1
O18:[b]64bit:[/b] - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll (Skype Technologies)
O18:[b]64bit:[/b] - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2014/12/09 08:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\マカフィー
[2014/12/08 23:49:04 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\PC-User\Desktop\OTL.exe
[2014/12/08 23:48:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
[2014/12/08 23:48:09 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2014/12/08 09:38:38 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014/12/07 19:48:56 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Local\Apple
[2014/12/07 19:48:33 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Local\Apple Computer
[2014/12/07 15:01:19 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Roaming\Malwarebytes
[2014/12/07 15:00:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/12/07 15:00:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014/12/07 14:53:17 | 010,285,040 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\PC-User\Desktop\mbam-setup-1.75.0.1300.exe
[2014/12/06 23:56:24 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Local\Adobe
[2014/12/06 23:33:27 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\PC-User\Desktop\ATF-Cleaner.exe
[2014/12/06 22:38:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2014/12/06 20:54:48 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Roaming\Oracle
[2014/12/06 20:50:39 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Roaming\ProductData
[2014/12/06 20:50:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2014/12/06 20:49:38 | 000,000,000 | ---D | C] -- C:\Users\PC-User\Desktop\iobituninstaller-4-1-5-30
[2014/12/05 07:28:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
[2014/12/05 07:28:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BurnAware Free
[2014/12/05 07:12:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\cdm
[2014/12/05 07:12:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD Manipulator
[2014/12/05 05:31:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/12/05 05:31:17 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/11/28 19:32:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2014/11/28 06:32:41 | 000,000,000 | ---D | C] -- C:\Users\PC-User\Desktop\学科予算27
[2014/11/27 19:04:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\tasks\ImCleanDisabled
[2014/11/24 06:01:53 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Local\Kinokuniya
[2014/11/23 17:10:49 | 000,000,000 | ---D | C] -- C:\ProgramData\LizardSales
[2014/11/23 04:55:09 | 000,000,000 | ---D | C] -- C:\Users\PC-User\Desktop\TDS_NewYear2014_Mickey用資料
[2014/11/22 17:11:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Moneydown
[2014/11/22 05:23:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/11/22 05:23:42 | 000,093,400 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2014/11/22 05:23:41 | 000,064,216 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2014/11/22 05:23:41 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2014/11/22 05:23:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/11/22 05:23:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/11/20 09:02:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2014/11/20 09:02:05 | 000,272,808 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe
[2014/11/20 09:01:57 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe
[2014/11/20 09:01:57 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe
[2014/11/20 09:01:57 | 000,098,216 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
[2014/11/20 09:01:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/11/20 09:01:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2014/11/20 08:13:57 | 000,000,000 | -HSD | C] -- C:\Users\PC-User\AppData\Local\EmieBrowserModeList
[2014/11/20 07:40:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
[2014/11/14 20:24:55 | 000,714,208 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/11/14 20:24:55 | 000,106,976 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/11/12 22:12:57 | 000,500,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2014/11/12 22:12:57 | 000,394,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2014/11/12 22:12:57 | 000,344,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2014/11/12 22:12:56 | 000,482,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2014/11/12 22:12:56 | 000,272,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2014/11/12 22:12:56 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2014/11/12 22:12:56 | 000,108,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2014/11/12 22:12:52 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpapisrv.dll
[2014/11/12 22:12:51 | 000,104,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2014/11/12 22:12:51 | 000,088,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2014/11/12 22:11:57 | 003,547,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2014/11/12 22:11:56 | 001,441,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014/11/12 22:11:55 | 000,445,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certcli.dll
[2014/11/12 22:11:55 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certcli.dll
[2014/11/12 22:11:54 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2014/11/12 22:11:54 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2014/11/12 22:11:53 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rfxvmt.dll
[2014/11/12 22:11:53 | 000,027,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys
[2014/11/12 22:11:52 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2014/11/12 22:11:52 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msaudite.dll
[2014/11/12 22:11:51 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2014/11/12 22:09:56 | 000,789,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014/11/12 22:09:53 | 003,320,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2014/11/12 22:09:53 | 002,773,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/11/12 22:09:52 | 002,459,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/11/12 22:09:51 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msihnd.dll
[2014/11/12 22:09:50 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msihnd.dll
[2014/11/12 22:09:50 | 000,116,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\consent.exe
[2014/11/12 22:09:39 | 000,894,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2014/11/12 22:09:38 | 001,714,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2014/11/12 22:09:38 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014/11/12 22:09:37 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2014/11/12 22:09:37 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll
[2014/11/12 22:09:37 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014/11/12 22:09:37 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll
[2014/11/12 22:09:37 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014/11/12 22:09:37 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2014/11/12 22:09:36 | 000,055,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2014/11/12 22:09:36 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2014/11/12 22:09:36 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe
[2014/11/12 22:09:36 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014/11/12 22:09:36 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll
[2014/11/12 22:09:36 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuaext.dll
[2014/11/12 22:07:56 | 001,519,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2014/11/12 22:07:54 | 000,258,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys
[2014/11/12 22:07:53 | 000,114,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys
[2014/11/12 22:07:52 | 000,035,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys
[2014/11/12 22:07:49 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winshfhc.dll
[2014/11/12 22:07:49 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winshfhc.dll
[2014/11/12 22:04:11 | 006,040,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/11/12 22:04:03 | 002,865,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/11/12 22:04:02 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/11/12 22:04:02 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2014/11/12 22:04:02 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2014/11/12 22:04:01 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/11/12 22:04:01 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieui.dll
[2014/11/12 22:04:00 | 002,051,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/11/12 22:04:00 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/11/12 22:04:00 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/11/12 22:04:00 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieui.dll
[2014/11/12 22:03:59 | 002,124,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/11/12 22:03:59 | 000,799,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/11/12 22:03:59 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/11/12 22:03:59 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/11/12 22:03:59 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/11/12 22:03:58 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014/11/12 22:03:54 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/11/12 22:03:54 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\html.iec
[2014/11/12 22:03:54 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014/11/12 22:03:54 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014/11/12 22:03:54 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2014/11/12 22:03:54 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014/11/12 22:03:54 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014/11/12 22:03:54 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/11/12 22:03:54 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesysprep.dll
[2014/11/12 22:03:54 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hlink.dll
[2014/11/12 22:03:54 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesysprep.dll
[2014/11/12 22:03:53 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\html.iec
[2014/11/12 22:03:53 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iexpress.exe
[2014/11/12 22:03:53 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014/11/12 22:03:53 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2014/11/12 22:03:53 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IEAdvpack.dll
[2014/11/12 22:03:53 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inseng.dll
[2014/11/12 22:03:53 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/11/12 22:03:53 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inseng.dll
[2014/11/12 22:03:53 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/11/12 22:03:53 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdc.ocx
[2014/11/12 22:03:53 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/11/12 22:03:53 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/11/12 22:03:53 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdc.ocx
[2014/11/12 22:03:53 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/11/12 22:03:52 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014/11/12 22:03:52 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pngfilt.dll
[2014/11/12 22:03:52 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/11/12 22:03:52 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imgutil.dll
[2014/11/12 22:03:52 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014/11/12 22:03:52 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\licmgr10.dll
[2014/11/12 22:03:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\licmgr10.dll
[2014/11/12 22:03:51 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\url.dll
[2014/11/12 22:03:51 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\url.dll
[2014/11/12 22:03:51 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wextract.exe
[2014/11/12 22:03:51 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IEAdvpack.dll
[2014/11/12 22:03:51 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/11/12 22:03:51 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pngfilt.dll
[2014/11/12 22:03:51 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014/11/12 22:03:51 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014/11/12 22:03:50 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iexpress.exe
[2014/11/12 22:03:50 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wextract.exe
[2014/11/12 22:03:50 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014/11/12 22:03:50 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshta.exe
[2014/11/12 22:03:50 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeedssync.exe
[2014/11/12 22:03:50 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msfeedssync.exe
[2014/11/12 22:02:53 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014/11/12 22:02:53 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014/11/12 22:02:52 | 000,537,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014/11/12 22:02:52 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2014/11/12 22:02:51 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014/11/12 22:02:49 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\packager.dll
[2014/11/12 22:02:49 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\packager.dll
[2014/11/12 22:01:43 | 007,484,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2014/11/12 22:01:40 | 002,714,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2014/11/12 22:01:39 | 013,424,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2014/11/12 22:01:30 | 001,053,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/11/12 22:01:30 | 000,941,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2014/11/12 22:01:26 | 000,836,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2014/11/12 22:01:20 | 011,820,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2014/11/12 22:01:19 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2014/11/12 22:01:19 | 000,670,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2014/11/12 22:01:18 | 000,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2014/11/12 22:01:16 | 000,474,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys
[2014/11/12 22:01:15 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\puiobj.dll
[2014/11/12 22:01:15 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\puiobj.dll
[2014/11/12 22:01:12 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2014/11/12 22:01:12 | 000,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/11/12 22:01:11 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2014/11/12 22:01:10 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FXSCOMEX.dll
[2014/11/12 22:01:07 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FXSAPI.dll
[2014/11/12 22:01:06 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FXSAPI.dll
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2014/12/09 08:34:45 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/12/09 08:32:40 | 3315,400,704 | -HS- | M] () -- C:\hiberfil.sys
[2014/12/09 08:32:40 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/12/09 07:52:39 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014/12/09 03:52:45 | 000,000,739 | ---- | M] () -- C:\WINDOWS\SysWow64\bscs.ini
[2014/12/09 03:49:32 | 000,004,799 | ---- | M] () -- C:\WINDOWS\SysWow64\LOCALSERVICE.INI
[2014/12/09 03:49:29 | 000,000,043 | ---- | M] () -- C:\WINDOWS\SysWow64\LOCALDEVICE.INI
[2014/12/08 23:49:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\PC-User\Desktop\OTL.exe
[2014/12/08 23:48:10 | 000,001,133 | ---- | M] () -- C:\Users\Public\Desktop\herdProtect.lnk
[2014/12/08 23:13:45 | 000,083,311 | ---- | M] () -- C:\Users\PC-User\Desktop\Dsc_1045a.jpg
[2014/12/08 22:37:15 | 000,029,561 | ---- | M] () -- C:\Users\PC-User\Desktop\Dsc_1043.jpg
[2014/12/08 22:36:53 | 000,036,783 | ---- | M] () -- C:\Users\PC-User\Desktop\Dsc_1048.jpg
[2014/12/08 22:36:10 | 000,344,526 | ---- | M] () -- C:\Users\PC-User\Desktop\DSC_1045.JPG
[2014/12/08 22:35:23 | 000,043,481 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_1996.jpg
[2014/12/08 22:34:56 | 000,051,098 | ---- | M] () -- C:\Users\PC-User\Desktop\Dsc_0265.jpg
[2014/12/08 22:34:23 | 000,014,299 | ---- | M] () -- C:\Users\PC-User\Desktop\imae.jpeg
[2014/12/08 22:34:00 | 000,014,001 | ---- | M] () -- C:\Users\PC-User\Desktop\mage.jpeg
[2014/12/08 22:19:20 | 000,030,717 | ---- | M] () -- C:\Users\PC-User\Desktop\image.jpeg
[2014/12/08 22:18:24 | 000,067,219 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_7864.jpg
[2014/12/08 21:09:09 | 000,016,695 | ---- | M] () -- C:\Users\PC-User\Documents\mcafee.jpg
[2014/12/07 15:00:15 | 000,001,121 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/12/07 14:53:17 | 010,285,040 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\PC-User\Desktop\mbam-setup-1.75.0.1300.exe
[2014/12/07 14:24:11 | 000,058,822 | ---- | M] () -- C:\Users\PC-User\Desktop\pspbrwse.jbf
[2014/12/07 14:22:07 | 001,214,727 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_4041.JPG
[2014/12/07 12:52:11 | 000,087,596 | ---- | M] () -- C:\Users\PC-User\Desktop\1417673663705.jpg
[2014/12/07 12:51:41 | 000,091,837 | ---- | M] () -- C:\Users\PC-User\Desktop\SubstandardFullSizeRender.jpg
[2014/12/06 23:33:27 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\PC-User\Desktop\ATF-Cleaner.exe
[2014/12/06 23:09:35 | 000,000,296 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_PC-User.job
[2014/12/06 20:50:24 | 000,001,244 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2014/12/06 20:13:43 | 000,000,222 | ---- | M] () -- C:\Users\PC-User\AppData\Roaming\burnaware.ini
[2014/12/05 07:35:32 | 000,000,952 | -HS- | M] () -- C:\ProgramData\KGyGaAvL.sys
[2014/12/05 07:28:13 | 000,001,066 | ---- | M] () -- C:\Users\Public\Desktop\BurnAware Free.lnk
[2014/12/05 07:12:34 | 000,000,949 | ---- | M] () -- C:\Users\PC-User\Desktop\CD Manipulator.lnk
[2014/12/05 06:56:58 | 003,405,946 | ---- | M] () -- C:\Users\PC-User\Desktop\seahawks.wav
[2014/12/05 06:47:52 | 000,292,333 | ---- | M] () -- C:\Users\PC-User\Desktop\seahawks.wma
[2014/12/05 05:50:17 | 000,000,834 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/12/04 09:53:58 | 000,185,344 | ---- | M] () -- C:\Users\PC-User\Desktop\請求書・領収書.jtd
[2014/12/03 22:39:04 | 000,191,255 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_1725.jpg
[2014/12/02 05:37:35 | 000,240,026 | ---- | M] () -- C:\Users\PC-User\Documents\kawaii.jpg
[2014/12/02 05:04:20 | 000,031,567 | ---- | M] () -- C:\Users\PC-User\Desktop\1417415477212.jpg
[2014/12/02 03:12:53 | 000,049,326 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_5791.jpg
[2014/11/29 05:59:38 | 000,114,295 | ---- | M] () -- C:\Users\PC-User\Documents\dame.jpg
[2014/11/29 05:57:12 | 000,727,980 | ---- | M] () -- C:\Users\PC-User\Desktop\日本伝統.pdf
[2014/11/29 02:31:20 | 001,496,524 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/11/29 02:31:20 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/11/29 02:31:20 | 000,500,892 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2014/11/29 02:31:20 | 000,135,664 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2014/11/29 02:31:20 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/11/29 02:26:02 | 000,064,088 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_5231.jpg
[2014/11/29 02:25:45 | 000,062,364 | ---- | M] () -- C:\Users\PC-User\Desktop\IMG_5416.jpg
[2014/11/28 19:32:07 | 605,851,158 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2014/11/27 19:30:06 | 000,000,004 | ---- | M] () -- C:\Users\PC-User\AppData\Roaming\appdataFr2.bin
[2014/11/23 04:13:18 | 000,008,926 | ---- | M] () -- C:\Users\PC-User\Documents\高校ラベルデータ1.lcx
[2014/11/22 05:51:14 | 000,076,518 | ---- | M] () -- C:\Users\PC-User\Documents\tokyo.jpg
[2014/11/21 17:04:06 | 004,031,216 | ---- | M] () -- C:\Users\PC-User\Desktop\TDS_NewYear2014_AMB_141121_Demo.mp3
[2014/11/21 06:14:26 | 000,064,216 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2014/11/21 06:14:12 | 000,093,400 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbamchameleon.sys
[2014/11/21 05:51:37 | 000,714,208 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/11/21 05:51:37 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/11/20 09:01:50 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
[2014/11/20 09:01:48 | 000,272,808 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe
[2014/11/20 09:01:48 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe
[2014/11/20 09:01:47 | 000,175,528 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe
[2014/11/18 06:26:06 | 000,060,397 | ---- | M] () -- C:\Users\PC-User\Documents\age1.jpg
[2014/11/17 03:48:06 | 000,018,714 | ---- | M] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME タイトル 1.mp4
[2014/11/16 21:38:05 | 349,798,608 | ---- | M] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME (1).mp4
[2014/11/16 20:10:44 | 434,266,889 | ---- | M] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME.mp4
[2014/11/16 06:28:17 | 456,001,932 | ---- | M] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME.avi
[2014/11/16 05:56:39 | 013,729,254 | ---- | M] () -- C:\Users\PC-User\Documents\ikimatsu.avi
[2014/11/16 05:47:27 | 002,059,160 | ---- | M] () -- C:\Users\PC-User\Documents\nimura.avi
[2014/11/15 03:14:51 | 000,022,437 | ---- | M] () -- C:\Users\PC-User\Documents\youtube.wlmp
[2014/11/14 20:22:40 | 005,145,536 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/11/14 19:36:52 | 000,185,856 | ---- | M] () -- C:\Users\PC-User\Desktop\請求書・領収書.$td
[2014/11/13 20:50:54 | 000,002,638 | ---- | M] () -- C:\Users\PC-User\Documents\マイ ムービー.wlmp
[2014/11/13 06:41:21 | 000,106,785 | ---- | M] () -- C:\Users\PC-User\Documents\束帯修正.wlmp
[2014/11/13 05:37:04 | 000,029,775 | ---- | M] () -- C:\Users\PC-User\Documents\DSC_4594.jpg
[2014/11/13 05:34:43 | 001,098,976 | ---- | M] () -- C:\Users\PC-User\Documents\pspbrwse.jbf
[2014/11/11 21:22:10 | 000,019,972 | ---- | M] () -- C:\Users\PC-User\Documents\vz.jpg
[2014/11/09 11:38:33 | 000,080,632 | ---- | M] () -- C:\Users\PC-User\Documents\asadon.jpg
[2014/11/09 11:20:13 | 000,044,208 | ---- | M] () -- C:\Users\PC-User\Documents\twit.jpg
[2014/11/09 11:16:41 | 000,070,415 | ---- | M] () -- C:\Users\PC-User\Documents\den.jpg
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014/12/08 23:48:10 | 000,001,133 | ---- | C] () -- C:\Users\Public\Desktop\herdProtect.lnk
[2014/12/08 22:37:44 | 000,083,311 | ---- | C] () -- C:\Users\PC-User\Desktop\Dsc_1045a.jpg
[2014/12/08 22:36:10 | 000,344,526 | ---- | C] () -- C:\Users\PC-User\Desktop\DSC_1045.JPG
[2014/12/08 22:36:00 | 000,029,561 | ---- | C] () -- C:\Users\PC-User\Desktop\Dsc_1043.jpg
[2014/12/08 22:35:52 | 000,036,783 | ---- | C] () -- C:\Users\PC-User\Desktop\Dsc_1048.jpg
[2014/12/08 22:19:46 | 000,014,001 | ---- | C] () -- C:\Users\PC-User\Desktop\mage.jpeg
[2014/12/08 22:19:38 | 000,014,299 | ---- | C] () -- C:\Users\PC-User\Desktop\imae.jpeg
[2014/12/08 22:19:20 | 000,030,717 | ---- | C] () -- C:\Users\PC-User\Desktop\image.jpeg
[2014/12/08 22:19:01 | 000,051,098 | ---- | C] () -- C:\Users\PC-User\Desktop\Dsc_0265.jpg
[2014/12/08 22:17:39 | 000,067,219 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_7864.jpg
[2014/12/08 22:17:39 | 000,043,481 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_1996.jpg
[2014/12/08 21:09:09 | 000,016,695 | ---- | C] () -- C:\Users\PC-User\Documents\mcafee.jpg
[2014/12/07 14:22:06 | 001,214,727 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_4041.JPG
[2014/12/06 23:09:35 | 000,000,296 | ---- | C] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_PC-User.job
[2014/12/05 07:28:33 | 000,000,222 | ---- | C] () -- C:\Users\PC-User\AppData\Roaming\burnaware.ini
[2014/12/05 07:28:13 | 000,001,066 | ---- | C] () -- C:\Users\Public\Desktop\BurnAware Free.lnk
[2014/12/05 07:12:34 | 000,000,949 | ---- | C] () -- C:\Users\PC-User\Desktop\CD Manipulator.lnk
[2014/12/05 06:56:58 | 003,405,946 | ---- | C] () -- C:\Users\PC-User\Desktop\seahawks.wav
[2014/12/05 06:47:52 | 000,292,333 | ---- | C] () -- C:\Users\PC-User\Desktop\seahawks.wma
[2014/12/05 05:31:56 | 000,000,834 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/12/04 22:15:52 | 000,087,596 | ---- | C] () -- C:\Users\PC-User\Desktop\1417673663705.jpg
[2014/12/04 00:32:41 | 000,091,837 | ---- | C] () -- C:\Users\PC-User\Desktop\SubstandardFullSizeRender.jpg
[2014/12/03 22:39:03 | 000,191,255 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_1725.jpg
[2014/12/02 05:49:41 | 000,058,822 | ---- | C] () -- C:\Users\PC-User\Desktop\pspbrwse.jbf
[2014/12/02 05:37:27 | 000,240,026 | ---- | C] () -- C:\Users\PC-User\Documents\kawaii.jpg
[2014/12/02 04:36:45 | 000,031,567 | ---- | C] () -- C:\Users\PC-User\Desktop\1417415477212.jpg
[2014/12/02 03:11:49 | 000,049,326 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_5791.jpg
[2014/11/29 05:59:38 | 000,114,295 | ---- | C] () -- C:\Users\PC-User\Documents\dame.jpg
[2014/11/29 05:57:02 | 000,727,980 | ---- | C] () -- C:\Users\PC-User\Desktop\日本伝統.pdf
[2014/11/29 02:24:50 | 000,064,088 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_5231.jpg
[2014/11/29 02:24:40 | 000,062,364 | ---- | C] () -- C:\Users\PC-User\Desktop\IMG_5416.jpg
[2014/11/28 19:32:07 | 605,851,158 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP
[2014/11/23 18:17:16 | 000,000,004 | ---- | C] () -- C:\Users\PC-User\AppData\Roaming\appdataFr2.bin
[2014/11/23 04:55:09 | 004,031,216 | ---- | C] () -- C:\Users\PC-User\Desktop\TDS_NewYear2014_AMB_141121_Demo.mp3
[2014/11/22 05:51:04 | 000,076,518 | ---- | C] () -- C:\Users\PC-User\Documents\tokyo.jpg
[2014/11/22 05:23:53 | 000,001,121 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/11/17 03:48:05 | 000,018,714 | ---- | C] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME タイトル 1.mp4
[2014/11/16 21:24:42 | 349,798,608 | ---- | C] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME (1).mp4
[2014/11/16 19:55:39 | 434,266,889 | ---- | C] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME.mp4
[2014/11/16 06:13:21 | 456,001,932 | ---- | C] () -- C:\Users\PC-User\Documents\SONY_DVD_RECORDER_VOLUME.avi
[2014/11/16 05:56:16 | 013,729,254 | ---- | C] () -- C:\Users\PC-User\Documents\ikimatsu.avi
[2014/11/16 05:47:18 | 002,059,160 | ---- | C] () -- C:\Users\PC-User\Documents\nimura.avi
[2014/11/14 21:59:56 | 000,022,437 | ---- | C] () -- C:\Users\PC-User\Documents\youtube.wlmp
[2014/11/13 05:37:04 | 000,029,775 | ---- | C] () -- C:\Users\PC-User\Documents\DSC_4594.jpg
[2014/11/12 22:01:05 | 000,389,176 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/11/11 21:22:10 | 000,019,972 | ---- | C] () -- C:\Users\PC-User\Documents\vz.jpg
[2014/11/09 13:46:41 | 000,106,785 | ---- | C] () -- C:\Users\PC-User\Documents\束帯修正.wlmp
[2014/11/09 11:38:33 | 000,080,632 | ---- | C] () -- C:\Users\PC-User\Documents\asadon.jpg
[2014/11/09 11:20:13 | 000,044,208 | ---- | C] () -- C:\Users\PC-User\Documents\twit.jpg
[2014/11/09 11:16:41 | 000,070,415 | ---- | C] () -- C:\Users\PC-User\Documents\den.jpg
[2014/03/18 19:00:08 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 18:59:44 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/01/29 23:02:22 | 000,077,312 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/08/23 00:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/23 00:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 23:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 16:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 12:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 08:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 08:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/08/13 14:00:29 | 000,000,435 | ---- | C] () -- C:\Users\PC-User\.swfinfo
[2013/06/21 05:19:01 | 000,000,110 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2013/04/24 16:38:28 | 000,000,952 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2013/04/06 06:30:41 | 000,002,362 | ---- | C] () -- C:\WINDOWS\Yonde.ini
[2013/04/06 06:30:41 | 000,001,419 | ---- | C] () -- C:\WINDOWS\Ydcrd.ini
[2013/04/05 20:23:21 | 000,000,046 | ---- | C] () -- C:\WINDOWS\JSCFG.INI
[2013/04/05 20:22:56 | 000,010,076 | ---- | C] () -- C:\WINDOWS\JSSETUP.INI
[2013/02/21 11:38:32 | 000,272,928 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin
[2013/02/21 11:38:08 | 000,963,452 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin
[2013/02/19 19:10:19 | 000,004,799 | ---- | C] () -- C:\WINDOWS\SysWow64\LOCALSERVICE.INI
[2013/02/19 19:10:19 | 000,000,043 | ---- | C] () -- C:\WINDOWS\SysWow64\LOCALDEVICE.INI
[2013/02/19 19:04:03 | 000,040,958 | ---- | C] () -- C:\WINDOWS\SysWow64\drivers\RT3298.BIN
[2013/02/19 19:04:02 | 000,014,161 | ---- | C] () -- C:\WINDOWS\SysWow64\RaCoInst.dat
[2013/02/19 18:59:51 | 000,030,088 | ---- | C] () -- C:\WINDOWS\snuvcdsm.exe
[2013/02/19 18:59:51 | 000,015,497 | ---- | C] () -- C:\WINDOWS\snp2uvc.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2014/12/09 06:52:55 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/31 09:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/31 07:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 18:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 11:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 18:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2014/10/25 06:05:07 | 000,000,708 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/10/25 06:05:07 | 000,000,712 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/08/19 11:52:14 | 000,000,264 | ---- | M] () -- C:\WINDOWS\tasks\Synaptics TouchPad Enhancements.job
[2014/12/06 23:09:35 | 000,000,296 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_PC-User.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: WDC WD7500BPVT-16HXZT3
Partitions: 7
Status: OK
Status Info: 0

Drive: \\\\.\\PHYSICALDRIVE1 -
Interface type: USB
Media Type:
Model: USB Mass Storage Device USB Device
Partitions: 0
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 768.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 768.00MB
Starting Offset: 806354944
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 260.00MB
Starting Offset: 1611661312
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 338.00GB
Starting Offset: 2018508800
Hidden sectors: 0


DeviceID: Disk #0, Partition #4
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 450.00MB
Starting Offset: 364877185024
Hidden sectors: 0


DeviceID: Disk #0, Partition #5
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 338.00GB
Starting Offset: 365349044224
Hidden sectors: 0


DeviceID: Disk #0, Partition #6
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 20.00GB
Starting Offset: 728679579648
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2014/03/18 18:59:52 | 000,208,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2014/10/08 16:30:59 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2013/08/22 18:53:13 | 000,092,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:14 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2014/04/30 13:14:19 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2013/08/22 18:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2013/08/22 11:48:12 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 18:40:30 | 000,468,992 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2013/08/22 11:38:29 | 000,329,728 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2014/07/24 18:21:23 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2013/08/22 19:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:43 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2014/04/30 13:23:54 | 000,353,280 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2014/04/30 12:46:07 | 000,285,696 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2014/03/04 16:13:06 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2013/08/22 18:44:18 | 000,107,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2013/08/22 20:34:06 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2013/08/22 13:05:54 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,433,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2013/08/22 18:35:27 | 000,403,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2014/03/27 12:15:43 | 000,718,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2013/08/22 18:54:27 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2013/08/22 18:05:22 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2013/08/22 18:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 18:35:48 | 000,387,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 22:25:35 | 000,029,184 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2014/03/06 18:19:44 | 000,115,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2014/07/24 17:18:34 | 000,795,136 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2013/08/22 20:22:30 | 000,101,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,534,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:43 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2013/08/22 20:32:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2013/08/22 22:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2014/04/09 12:33:54 | 000,135,168 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2014/07/24 18:03:18 | 000,324,096 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2013/08/22 18:24:27 | 000,629,760 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2013/08/22 11:27:04 | 000,564,736 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2014/08/02 09:18:31 | 001,212,928 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2013/08/22 19:55:30 | 000,306,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2013/08/22 12:33:38 | 000,248,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2013/08/22 19:00:18 | 000,050,688 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2014/07/24 18:02:28 | 000,220,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2014/03/27 12:10:11 | 001,436,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2014/10/07 10:46:06 | 000,911,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2014/10/07 10:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
No service found with a name of SDRSVC
SRV:[b]64bit:[/b] - [2014/09/22 12:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/08/22 18:44:27 | 001,669,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2013/08/22 18:23:55 | 000,878,080 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2013/08/22 19:39:20 | 000,634,368 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2013/08/22 20:23:10 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2013/08/22 12:56:51 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2013/08/22 18:48:04 | 000,220,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2014/10/18 15:38:57 | 003,557,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2013/08/22 19:30:45 | 000,258,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2014/07/24 17:32:47 | 001,532,416 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2013/08/22 18:54:22 | 000,284,160 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 220 bytes -> C:\Users\PC-User\OneDrive:ms-properties

< End of report >
  • あさくま
  • MAIL
  • 2014/12/09 (Tue) 09:38:43
返信フォームへ 
Re: Reimage等にやられております
EXTRAログ(53,000字)

OTL Extras logfile created on: 2014/12/09 8:35:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\PC-User\Desktop
64bit- An unknown product (Version = 6.3.9600) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17416)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

3.86 Gb Total Physical Memory | 2.82 Gb Available Physical Memory | 73.18% Memory free
7.73 Gb Paging File | 6.76 Gb Available in Paging File | 87.35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 337.94 Gb Total Space | 245.09 Gb Free Space | 72.53% Space Free | Partition Type: NTFS
Drive D: | 338.38 Gb Total Space | 273.32 Gb Free Space | 80.77% Space Free | Partition Type: NTFS

Computer Name: PCUSER | User Name: PC-User | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JSFind] -- C:\PROGRA~2\JUSTSY~1\JSLIB32\JSFIND.EXE /F%1 (株式会社ジャストシステム)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [JSFind] -- C:\PROGRA~2\JUSTSY~1\JSLIB32\JSFIND.EXE /F%1 (株式会社ジャストシステム)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{021F6B51-F33E-4972-BD47-E4E489B598AB}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\outlook.exe |
"{09AA3C34-A238-4D3F-833B-555240FD2AF7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{12881592-2F03-4A86-8725-6820F9AFA8A0}" = rport=139 | protocol=6 | dir=out | app=system |
"{15CC9067-3990-4E5D-BF36-6E0D7C45D9F2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{36782B04-EB27-4727-90BC-9FA7C30F27C7}" = lport=139 | protocol=6 | dir=in | app=system |
"{4925CE51-36DB-428B-88AB-F2169320289C}" = lport=138 | protocol=17 | dir=in | app=system |
"{4EC63905-C049-4102-B789-377F38608564}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{54BDEDDB-418A-4835-843A-F3D13FD503FA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5642CC1B-AB6D-4F77-94F6-6287DD6EB18A}" = lport=137 | protocol=17 | dir=in | app=system |
"{5D3BF313-D886-4676-8F80-D6E9996BC7B6}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{655E2AAE-F900-4647-8601-EEAE0BE4A2A0}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6E744CA2-4D2E-40F3-8F32-920188BC44B2}" = rport=445 | protocol=6 | dir=out | app=system |
"{709387E1-7116-403E-9632-73EE421E401C}" = rport=137 | protocol=17 | dir=out | app=system |
"{77651E38-0204-47D0-9DC1-41139D2EB5F7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8108023F-DD4F-48AE-8D4E-20F8CFBE3912}" = rport=10243 | protocol=6 | dir=out | app=system |
"{88FE38CB-58B1-4541-82B3-00F9383E5D2A}" = lport=445 | protocol=6 | dir=in | app=system |
"{8EA3B823-C101-48DE-8CB6-A8C48DCF2683}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9D288318-CC6E-4DC0-95AA-65B0E3A26309}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{9F062215-07B5-42F5-84CB-D53622FF26E1}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{A8488AF8-CB1C-4767-8558-704A844D3FD3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AA2035D4-B671-4CE3-BDF2-510F3EC8AE21}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B03C035F-88D5-47E4-A00D-B19F76DA7EBC}" = rport=138 | protocol=17 | dir=out | app=system |
"{B72FCA5C-8FB1-4FFD-AA2D-F750AE94238F}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CCC364B5-B228-474C-AA93-CDC04AD8CDD3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EA8F3A2B-2DD9-47A8-810E-898F5F4FDD29}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{011F68D5-AAF9-4B93-8AE7-83EB13AA55A8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0147065D-A0F4-4795-AE6B-A1D12966CFA6}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{02C8B147-E43E-4B67-9045-1E2C9E9B3796}" = protocol=17 | dir=in | app=c:\program files (x86)\fujitsu\drivestudio\drivestudioservice.exe |
"{04378640-3631-425D-8EB3-057C9FF30FAA}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{0A25FAA9-6898-4B3E-BE99-A0328BA9812C}" = protocol=17 | dir=in | app=c:\program files (x86)\ralink corporation\ralink bluetooth stack\bluesoleilcs.exe |
"{0B49F6EA-815F-4F1D-AC79-447908B19230}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{0BD8B61E-FA3D-42D0-A2FE-C16279B73D13}" = dir=in | name=check point vpn |
"{0F0D011A-5C6B-4435-BF52-9D7463836FC4}" = protocol=6 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{1137E25F-8E1A-43C4-92C4-322EDB336228}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{118B8821-2392-426E-837C-3A762A6D6291}" = dir=out | name=@{microsoft.bingnews_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{1490EC7D-6EA5-41E5-A43A-515F0F3246AE}" = dir=out | name=楽天レシピ |
"{175DBE40-F85B-4179-9CD1-A9400901E145}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{18836E14-2486-4151-9F48-9E2746F2E1A7}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{18BFC88F-EAC0-480E-9A66-644956634885}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{190BF7FB-51A4-4023-B1FD-3F0604C22721}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{19CDE4B0-640E-406B-AE39-D1635907FAD6}" = dir=out | name=マイミュージアム |
"{1AE1A80E-0846-4367-B489-693F506832FC}" = dir=out | name=@{microsoft.zunevideo_1.5.849.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{1BAC92B3-E2D4-4903-A070-621506C1E3D8}" = dir=out | name=@{microsoft.zunemusic_2.2.931.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{1C02E0C1-484C-4DA0-91D3-8A3F8D2C4C8D}" = dir=in | name=富士通アドバイザー |
"{1D5F1317-EE80-4ED0-86A9-05F339DC48B7}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{1DE116BF-24F6-47D8-9815-86BA4015BB97}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{1E1F9DA9-E27C-48C5-8B7C-73D838458D98}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{1EA2ED23-6ECC-47C1-9ABC-110D6F8753F4}" = dir=out | name=windows_ie_ac_001 |
"{2058F3BB-93D5-4A56-8E9C-0E0175679575}" = dir=out | name=windows_ie_ac_001 |
"{21F73131-5EC6-4A7C-9324-528379E5B20D}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{2730C60A-D80A-4FAC-BDE3-068445B0E191}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{2B8039FA-73C6-4EC0-BE97-95AC3E7957A9}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{2CA22BF4-7C32-4AFD-816D-F3B144725714}" = dir=out | name=skype |
"{2D109C2D-2F0B-4A4C-9ECA-B43DF25E298B}" = dir=out | name=@{microsoft.bingsports_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{2F97A7C0-39AC-404E-9297-EF9FD5F91C0C}" = dir=out | name=@{microsoft.bingtravel_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{30D29B92-78FE-4510-82A6-7C99A4DD70B4}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{32158D05-F20E-41ED-B099-513F8B05D17B}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{32B33DA7-F72C-41B2-B7CB-2F3E488EDCCD}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{3344FD8B-82DC-42EC-960A-76F5B8A9C022}" = dir=out | name=yahoo!オークション (ft) |
"{354DF669-F4CA-4E0F-A216-9663D770C2BA}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{35BBE6D8-8FC8-49BD-9512-551D5185AB45}" = dir=in | name=skype |
"{3861EE95-6494-49B9-9C2D-604BE36C9BB0}" = dir=out | name=my cloud メモリーズ |
"{3C300925-299D-43FF-B7B0-77156F1B7D07}" = dir=out | name=juniper networks junos pulse |
"{3EF0F381-52E8-44FB-A170-D6DD4A76FB37}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{41EC4399-22E5-4244-B5C8-034FA79C481D}" = dir=out | name=onenote |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{43C57F00-ABA6-43BD-AD29-02CE0FDA9430}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{446B6CF1-B338-4F9B-9075-51B68297C1E9}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{4A942228-AE7B-48A5-A7AB-7185D2F042B9}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{4A95B267-FEBF-44E0-99C9-352FCEAB3DE1}" = dir=out | name=@{microsoft.zunevideo_2.6.215.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{4C2C97C5-9725-495C-9E7C-C755A124FCAE}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4C42E19A-0EDB-43F6-B33F-ED45C8992254}" = protocol=6 | dir=out | app=system |
"{4CF76843-4F54-45C8-AF02-3AD112C66C7D}" = protocol=6 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{4DD36020-0056-4312-A542-48D8A3EF317B}" = dir=out | name=suumo |
"{4F581752-BF0C-4947-B88B-0FA06B2683B9}" = protocol=6 | dir=in | app=c:\program files (x86)\ralink corporation\ralink bluetooth stack\bluesoleilcs.exe |
"{503E7360-5218-4995-BF6D-41A32DB33700}" = dir=out | name=booksv |
"{5095F91C-2164-4907-987C-7B9485E3EF95}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{518BC5D5-DFD6-4339-81A8-4C4B24A24521}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{52F17736-F6E6-40EF-BD46-8ECDB370B53A}" = protocol=6 | dir=in | app=c:\program files (x86)\fujitsu\drivestudio\drivestudioservice.exe |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{56F5CE6A-A1DE-4869-BDC6-039BA7A4FE8A}" = dir=out | name=ホットペッパー グルメ |
"{58B70070-94AF-4886-A344-5BC6C8AD2E6B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{5B286884-03EC-4CD7-AFB1-F96AE59798A1}" = dir=in | name=f5 vpn |
"{5D48704C-E6CE-4173-BCBD-C5369C635EBA}" = protocol=17 | dir=in | app=c:\program files (x86)\fujitsu\drivestudio\drivestudioservice.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{6089FE14-3C1D-45AD-8B55-8A587010DF78}" = dir=out | name=my cloud サービス最新情報 |
"{6286647F-511E-488F-934E-B177E5559217}" = dir=out | name=norton studio |
"{628C6C47-F31E-416F-9EAA-19F614C6BBB4}" = dir=in | name=my cloud ミュージック |
"{62C0AC9F-4FE9-44B3-B4C7-468ACCB4E240}" = dir=in | name=my cloud スタート |
"{62FE4415-9546-4076-A82C-43F1827157C5}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{64B0D252-B703-4CE5-804A-E42E82E22826}" = dir=out | name=@{microsoft.bingtravel_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{64D4B7C9-5642-4A38-BF9D-1397564F4E60}" = protocol=6 | dir=in | app=c:\program files (x86)\fujitsu\drivestudio\drivestudioservice.exe |
"{66F98A6F-10B0-4FA4-923C-29B9112A8D25}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{687754C2-3209-443C-A24F-36E744253EC5}" = dir=out | name=楽天gateway |
"{6A8AE617-3E40-4FBB-9375-8B15E8E27A4D}" = protocol=6 | dir=in | app=c:\program files (x86)\real\realplayer\rpds\bin\rpdsvc.exe |
"{6B3505FC-3C3A-4CD5-8BC5-EE321482716D}" = dir=out | name=@{microsoft.bingweather_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{6BA3D323-C570-4126-A71D-70F735659B4B}" = dir=out | name=じゃらん |
"{6BB27CB0-B2D9-450D-A1FD-6AFC85081122}" = protocol=17 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{6EF07897-1AFE-4A41-97C8-5E59FA9437D5}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{76B986F4-E67C-443C-8BD2-B135B5208675}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{76DD9399-B77E-4AC2-A4E1-A7D189C84C9C}" = dir=out | name=my cloud フォト |
"{776DAA93-47B5-4FFD-9F0B-19AACAE1B1F8}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{77E0668D-5ED7-44DA-A45E-7AE0D7911805}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{7A46D9C1-5327-433F-8456-8B426EBC5EFE}" = protocol=17 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{7B375DDA-0603-4EDC-A490-51160149BDE6}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{7B8F25EB-E5AD-4175-9FB6-ED29AFB66A7A}" = dir=out | name=f5 vpn |
"{7B8F428E-BE63-4D5E-8382-3ADEE0534F83}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7C006E37-CED5-4ECD-B1A4-9A2A0EFFF563}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{80B17F52-74C9-4B29-A0A1-212C624180F7}" = dir=out | name=my cloud ビデオ+ |
"{80C237A6-F99E-4ECF-BB4A-C24124402A3C}" = dir=out | name=@{microsoft.bingfinance_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{837C2A6B-2D2C-4F19-A836-47E1561A7068}" = dir=in | app=c:\program files (x86)\digion\dixim vdms for fujitsu\dms_svc.exe |
"{8A0FF421-DE6F-4F66-A155-A5DED6A308D1}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{8FBCEAAA-6729-4F8A-BEC0-1AF7EA00CA00}" = dir=out | name=sonicwall mobile connect |
"{908207BA-18DE-4437-AA0A-2927D118E3BF}" = dir=out | name=my cloud スタート |
"{93EA0DF1-0BC8-47E8-B10E-999F4A27B39F}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{94CE1ABF-743A-4E72-84CC-594479527FBA}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{96B296A6-650F-4589-AE55-E0C3C787BB53}" = dir=out | name=my cloud ミュージック |
"{98ACB158-5CC6-47CD-84B6-4AD6D0BFB613}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{99E50C77-F128-4E5B-BEDB-43265BAD6EB2}" = dir=in | name=canon inkjet print utility |
"{9B07942F-4AA6-4ADD-BB5D-9D405CC8087E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9CC4BBF7-6C09-40BE-9793-085CF959E048}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9F9CFA54-2DDB-44F1-B730-4FFD08B1111B}" = dir=in | app=c:\program files (x86)\fujitsu\mcecouty\jre\bin\java.exe |
"{9FBEEAF5-45FB-42D7-89F4-CA94204F7327}" = dir=out | name=@{microsoft.bingmaps_2.1.2922.2139_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{A118D750-6431-4FEF-84F0-4A62D7789C1E}" = dir=out | name=ポンパレ |
"{A2130B88-2607-4F8D-80F7-6D8B9A8B8ABE}" = dir=in | name=juniper networks junos pulse |
"{ACC01814-8932-430C-9EA8-D6BEBBCADB72}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AE1DA56B-EA8E-4BAC-B70D-DA0392B8D70F}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{AEAE0AC6-9EBD-4D0A-9205-8FBD38A5FA53}" = dir=in | name=sonicwall mobile connect |
"{B6E9198B-CF28-4E6B-A5EC-BB44A083CD51}" = dir=in | name=my cloud ビデオ+ |
"{BB00DE27-785F-405E-9725-541E895ED0CD}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{BB0E200E-8C45-426E-90AA-AF3E147F9167}" = dir=in | name=健康生活日記 |
"{BC55240B-484E-474E-9720-7C510DB6197F}" = dir=in | name=onenote |
"{C0AB2627-09C8-445B-B791-E7455DD71F36}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{C6FAAA6F-D3B1-48C6-A225-26A125A7A2BC}" = protocol=6 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{C7FC1536-B9E8-460A-B39E-499EF3C405AB}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.313_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{CA5C3C8D-0FF5-4A89-A842-770242E8E0DD}" = dir=in | app=c:\users\pc-user\appdata\local\microsoft\skydrive\skydrive.exe |
"{CD171F35-9417-45F0-A27A-A45D7F293A6C}" = protocol=17 | dir=in | app=c:\program files (x86)\smedio\airget\airgetservice.exe |
"{CDF7F073-DF62-456F-81BA-D2DEF2FBAF72}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{CE2C6FB6-F269-4BF9-9B31-4B93401A4399}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{D032DCC2-D835-4DE4-AFDB-7937F92B65D9}" = dir=out | name=健康生活日記 |
"{D050977B-B90A-4ECB-88B2-F2121839CBF4}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{D1339CDE-1C45-4EFC-8FD8-DA18DF9A37C2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D167729F-2409-4FDC-A8CB-2F0C0C5B12BE}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D2734205-709C-4AB7-9FF8-7EE549252567}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{D466E044-F79F-43B5-9809-7587F59BCB16}" = dir=out | name=キャッシュバック特典ガチャ |
"{D4BC7853-EEF0-4F13-91AC-DA50A138583D}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{D51F597A-DCCF-4466-B0E9-6931F7398FC2}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D625358B-47F3-4C08-94FA-E27B609D0B19}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D6EED253-B2FE-4CEF-8B19-D63945DFE4F5}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{D98EB83B-DFFA-46A3-A3AB-40AC143231B9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{DB473A82-B937-4641-BF1A-2A0A99CE8277}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DE30D94A-D4F7-48F3-A376-514037E51E63}" = dir=out | name=canon inkjet print utility |
"{DF7E7D3E-4AA3-44BD-B73C-AB9191C56463}" = dir=out | name=@{microsoft.zunemusic_1.5.146.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{E29EB50B-48DB-4BD9-A078-B16A30131A5C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{E2A15E0E-14C0-48F5-A170-EE9181A871E8}" = dir=in | app=c:\program files (x86)\fujitsu\networkplayer server\networkplayerserver.exe |
"{E309D766-F3A1-45CD-8F30-9C993B828375}" = dir=out | name=富士通アドバイザー |
"{E4C004F6-697E-498F-8E76-36561498EB7B}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E971C068-27B9-4473-86FF-D5E20F1518AA}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{EA18FF99-0614-43CD-944C-8DB74D103727}" = dir=out | name=check point vpn |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{ECCE2BF2-BA06-49AE-B3DF-5470849B7864}" = dir=out | name=@{microsoft.bingsports_3.0.2.317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{F29C0559-4D45-41B0-B1B5-C01EACEC950C}" = dir=out | name=windows_ie_ac_001 |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F65E7D75-6DF3-48F5-8D78-053B447376E7}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F76EF6D6-FFAC-40EE-A02C-94C5681FB6B6}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FD2E683D-3D92-4AF1-9437-CF34E03E3AE4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FEDEDA0B-C5B8-4C3A-86C0-6CE82655A98C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A1A3867-F951-440C-87FF-F29895892A47}" = Plugfree NETWORK
"{0AE28F1D-054C-4B48-BFD0-C09F3F937C59}" = PCカルテ
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4200_series" = Canon MG4200 series MP Drivers
"{13031CDF-00D2-4FCE-AB13-8430D8733574}" = Wireless Radio Switch Driver
"{1923566D-9B21-4E47-AA51-200767FB05BE}" = Microsoft SQL Server Compact 4.0 x64 JPN
"{1C725459-5053-42A5-B22A-F3E91484DF65}" = @メニュー
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21E47F47-C9A7-4454-BA48-388327B0EA00}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{25058321-C33E-496B-8915-6FD64D362CAF}" = Windows Live MIME IFilter
"{2DE6247C-7077-451B-8BA7-FFD1A2ABBB47}" = Inst5675
"{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}" = Apple Mobile Device Support
"{314FAD12-F785-4471-BCE8-AB506642B9A1}" = OmniPass
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{43C6E7CB-FEC0-4F0D-B164-410E8A728CF4}" = 電源ボタン設定
"{47BC37A3-35C8-484A-8CBD-851914EB095E}" = アップデートナビ
"{4AA03C57-A578-4DCE-A2C3-5FAC813D85AD}" = BookLive!Reader
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{54233B7A-6467-4AF9-9D3C-967022D84C8D}" = 自動サインイン設定
"{5DA6F56A-5E2D-4FB4-88CB-E9EE2B790A14}" = Microsoft SQL Server Compact 3.5 SP2 x64 JPN
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6226477E-444F-4DFE-BA19-9F4F7D4565BC}" = ワンタッチボタン設定
"{6BBF4252-CB6B-4E0B-9E5B-1719B7934917}_is1" = CubePDF 1.0.0RC4
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7292FFCF-FA9A-4585-AB80-A71961F931AF}" = Fujitsu BIOS Driver
"{7BA64D21-EE46-4a9a-8145-52B0175C3F86}" = Plugfree NETWORK
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E59415B-ECAC-43F7-B496-7BCD636C63E1}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{90150000-008F-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9B4A28AE-D630-4DC5-A5B3-658BE1839063}" = 節電ナビ
"{A794229E-401E-44D4-A8B5-B21E975676DE}" = Anytime USB Charge Utility
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B14DEDED-8159-46D4-BE80-3AD8E123BEE2}" = F-Launcher
"{B351DC34-2758-492A-ADEE-66C17A61860E}" = PowerUtility - スケジュール機能
"{B939BFEB-824F-4456-A4EE-2B86ED04033D}" = Update for Japanese Microsoft IME Trending Words Dictionary
"{BCC8CBC4-0F36-4F2A-B9C6-717FDF266C90}" = Battery Utility
"{C5B12D21-B35E-4AF7-8744-6D533EF605DB}_is1" = Officeprint 1.0.0
"{CF6398CB-0B6D-461D-861E-1A3ACD591950}" = Peakshift setting
"{D2837730-4960-3B35-8088-201387FD3BDB}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN
"{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}" = iTunes
"{DDC49774-40B9-47AE-9C63-5569C08C4082}" = Pointing Device Utility
"{E2C24FE1-C6BB-4A4B-8B7F-BF2521DEB91E}" = Share64
"{E50AF275-8A41-4FCF-847B-D6E60018F388}" = Power Saving Utility
"{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}" = 富士通拡張機能ユーティリティ
"{E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{EC314CDF-3521-482B-A21C-65AC95664814}" = Fujitsu MobilityCenter Extension Utility
"{EC9F4C53-7258-4A37-B555-5A438FA8B4FF}" = Update for Japanese Microsoft IME Standard Dictionary
"{ED818A3C-3DF5-CDCF-3DB2-A646D7B31A16}" = Ralink Bluetooth Stack64
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"3DCA6835C7741E181396F76FD94C05C19F4124A9" = Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02E3) System (06/22/2012 1.30.0.0)
"7D737DCFBBA92B6A4335FA93E0B846D9D2DE908E" = Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02B1) System (06/09/2012 1.23)
"Canon LBP6200" = Canon LBP6200
"CCleaner" = CCleaner
"Cubeツールバー_is1" = Cubeツールバー 64-bit Edition
"HomeBusinessRetail - ja-jp" = Microsoft Office Home and Business 2013 - ja-jp
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - JPN" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語
"NextFTP" = NextFTP
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{E185BD5C-0E10-479F-AF44-63D3A068446A}" = Corel Digital Studio for FUJITSU
"{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}" = Windows Live UX Platform
"{024D6C9E-4775-421D-B0D0-D4F123687778}" = Windows Live Essentials
"{026C3D27-9BE1-46BE-BEAE-6DE38A0F4FBE}" = RealNetworks - Microsoft Visual C++ 2005 Runtime
"{02D371DE-95DC-4F6F-A1A6-4C957D6721A9}" = 筆ぐるめ 20
"{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}" = Windows Live Writer
"{07AAB66E-4718-422D-9218-4AFB3C922A71}" = Photo Gallery
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A3925EA-5B0E-401B-A189-7419149747B2}" = Adobe AIR
"{0BE9E708-5DC0-4963-9CFD-0AA519090E79}" = Junk Mail filter update
"{143EC373-4673-4070-ADF7-765ABEF8F694}" = 筆王ZERO
"{15015752-9990-4516-A2B1-93823281FB8E}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{18A60554-D89D-8859-F0AC-2BB6E800970C}" = ラベル屋さん9
"{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}" = Windows Live Photo Common
"{1E0EE5F4-C6C4-491C-B5C1-EB8FB3872621}" = FaceEngine
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{201C17CA-96E1-45B9-A0B1-04331C1921F2}" = PointGrab Hand Gesture Control
"{20C2051A-1ACA-48B4-9BA5-24625DCBD880}" = RealDownloader
"{21357E10-BDCB-4CDD-B2A3-905DD7ED653D}_is1" = DigiBookBrowser Version 1.5.2.68
"{223469C7-3B3F-4D18-AB4A-4F4B298D0DB2}" = x-APPLICATION Components
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{238FC2D2-3EB3-4796-B342-5731AA37B720}" = キヤノンお知らせメッセンジャー
"{24ED16F3-0312-4D64-A628-F4FBCEFD93BB}" = My Cloud モバイルアクセス設定Utility
"{26A24AE4-039D-4CA4-87B4-2F03217071FF}" = Java 7 Update 71
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2BD8565C-5C4B-43C4-AA00-0AB3C475F0BC}" = ZERO
"{2C12184B-F547-455E-8B36-D81ED4E17C46}" = Roxio Creator LJ
"{3365E735-48A6-4194-9988-CE59AC5AE503}" = Bing Bar
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}" = McAfee SiteAdvisor
"{378C547F-7AE3-467D-9E11-C888B026F62D}" = NetworkPlayer サーバー
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = FJ Camera
"{3B59398C-0DEF-4FEE-A7F4-BB124E486FEC}" = My Cloud エコ
"{3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8}" = PhotoWizard
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{41C61308-6CFD-4D54-AB6A-7136ED08A18E}" = Windows Live Communications Platform
"{44B600AC-5D00-4CF0-A05C-59F08D11D2DE}" = My Cloud ビデオ サーバー
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4869414E-7AEA-4C8E-BE1C-8D40977FD517}" = Adobe Illustrator CS6
"{49830DFB-7C40-4AFD-A703-8599D856B65D}" = ソフトウェアディスク検索
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52D7E962-5F17-4D7E-858F-956EB09A5CB8}" = Windows Live Writer
"{5A42BC5B-07C7-424D-AE22-7854FE446633}" = ブンコビューア
"{5C1F18D2-F6B7-4242-B803-B5A78648185D}" = Corel WinDVD
"{5CE03DAA-0C56-479C-AEB1-61BE74DCEE37}" = MLE2
"{5E848897-1113-49FE-8FCE-D4BF39EDE254}" = Windows Live UX Platform Language Pack
"{5FD7182E-37F9-4BBA-85D6-C4A414AB2BC9}" = 富士通PC 辞書セット(広辞苑第六版+リーダーズ英和辞典+新和英中辞典+現代用語の基礎知識+学研パーソナル統合辞典)
"{619133A5-48DE-4A54-AE4E-9CD480E4D2D7}" = 楽しもう!Office ライフ
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{659CB81C-B54E-4DF1-B618-F35777393A54}" = Windows Live Installer
"{66A580FE-C598-430E-B211-333B3970098C}" = PG Splitter
"{6A83C341-85CB-4816-8844-5A3E36D48D82}" = 電子辞書
"{6B1BB7E3-CF20-4842-B1FE-42C251B95E98}" = Windows Live Messenger
"{6BBF4252-CB6B-4E0B-9E5B-1719B7934917}_is1" = CubePDF 1.0.0RC4
"{70140D68-13DF-427D-8FD8-F8C8EEF8A641}" = バックアップナビ
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{714E162E-CD4F-4F1B-8302-7F5179409C25}" = Windows Live Writer
"{71B85C1D-9792-45C4-8C19-954B243EF030}" = パソコン乗換ガイド
"{74DC8A26-4E05-40B6-AD11-C9428A1AE150}" = Roxio Creator LJ
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}" = Update for Japanese Microsoft IME Standard Extended Dictionary
"{7DB71278-9AD7-4480-AB08-8649C5010B17}" = Update for Japanese Microsoft IME Standard Dictionary
"{82F4EA7F-BBBD-4860-A347-5EC89897C7A4}" = Inspirium辞書検索ライブラリ
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83F00304-550B-4652-A12C-E301CB8B1EE4}" = スクリーンセーバー for FUJITSU PC
"{8561077B-55BB-4B47-8B90-6C744B12F7C0}" = チケットメーカー
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89A15676-78AE-4D51-BF5B-DEE3E0D46C94}" = Roxio Creator LJ
"{89E9AB79-7914-4B67-8D4E-A8B1E39C3D89}" = Microsoft SQL Server Compact 3.5 SP2 JPN
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8EA12696-D38C-44DD-96E5-12C8DF6F8230}" = Windows Live Writer Resources
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}" = Ralink RT2860 Wireless LAN Card
"{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
"{90150000-008C-0411-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95F16192-5C25-4533-9E65-87067A4823F9}" = 紀伊國屋書店 Kinoppy for Windows
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB Card Reader
"{97E3AE69-8FB1-496A-8CA0-AE491902DCD7}" = Movie Maker
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C29C1B7-C76C-4482-8BE8-604CC205DE21}" = Drive Studio設定Utility
"{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}" = Adobe Dreamweaver CS6
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{ABA1AD05-E9B8-4BC8-AA41-AAA5032DF110}" = MLSDK
"{AC76BA86-7AD7-1041-7B44-AB0000000001}" = Adobe Reader XI (11.0.09) - Japanese
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}" = Windows Live PIMT Platform
"{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}" = Windows Live Mail
"{BA0B4781-7874-49CF-BF45-D83DAB54888C}" = x-アプリ
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C5DEA189-ADE3-477C-85AC-9A3F1637394A}" = 書き込み機能拡張ユーティリティ
"{C65ACE72-280B-4A28-8C00-AA0FBEBEEA79}" = My Cloud データ連携Utility
"{C8FEB019-F2E1-4E8F-886E-AB5C68FE531C}" = Windows Live メール
"{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}" = Windows Live SOXE
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1893000-EA77-493C-8DDD-E262436E959B}" = Windows Live SOXE Definitions
"{D6D69EE4-00F6-4DCE-B7AF-E90042BDE39B}" = フォト ギャラリー
"{D6DE02C7-1F47-11D4-9515-00105AE4B89A}" = Paint Shop Pro 7 Anniversary Edition
"{D8FA2A48-A1E8-432E-AE96-5276D9E6A50F}" = Sony Media Library Earth 8.0.00
"{DD67BE4B-7E62-4215-AFA3-F123A800A389}" = Movie Maker
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1754ED2-CD39-4F5F-AC98-0271EAE1C116}" = Setup
"{E185BD5C-0E10-479F-AF44-63D3A068446A}" = ICA
"{E24A5C1E-8647-43FD-838B-DF7149D492E4}" = DeviceIO
"{E2C2F547-4C5B-45F9-8445-C59E223CCB08}" = ContentHD
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{E3C1C994-CA69-4B3C-A290-C311617DE271}" = Contents
"{E5636C06-A318-4CF3-803B-5BD9F5C10822}" = PureHD
"{E5D50A9A-B973-46DE-89E4-8BDDD8A9F988}" = Share
"{E6ABA0E9-65E7-4366-9770-514ED4341611}" = VIO
"{E703613B-BDAB-433E-A66A-DE0263E3D35D}" = Windows Live Messenger
"{E7EFA8C8-4CDE-4466-8E0E-01C04589ED90}" = ISCOM
"{E902DA50-B519-4820-81C2-694226E23B2E}" = @niftyでブロードバンド
"{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder
"{EA6625D5-E563-4FE3-8D98-B3F5B64CBC67}" = IPM_OEM
"{ECE66592-E920-4C43-9D1C-9BC12483EC42}" = AdobePDFSettings11-new-ja_JP
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{EDD9E0C4-B402-40DF-B33D-405CA1E23BA6}" = DFPro
"{EE1012C8-1325-4F26-9E61-924A8F7B15D2}" = My Cloud エコ Utility
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.165
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F37A2CB1-90B7-4AF9-BFFE-9B6DB8431E07}" = 富士通アドバイザー
"{F3BB7E2D-62E0-4008-8727-588EDC274C25}" = Photo Common
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1" = Wondershare データリカバリー(Build 4.6.1.3)
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AC3Filter_is1" = AC3Filter 2.5b
"Adobe Acrobat 5.0" = Adobe Acrobat 5.0
"Adobe AIR" = Adobe AIR
"Adobe Creative Cloud" = Adobe Creative Cloud
"ALUpdate_is1" = ALTools Update
"ALZip_is1" = ALZip 8.61
"BurnAware Free_is1" = BurnAware Free 7.7
"CamSensorAppsCtrl" = カメラセンサー機能ON/OFFツール
"CANON iMAGE GATEWAY 無料会員登録 MG4230" = CANON iMAGE GATEWAY 無料会員登録 MG4230
"Canon MG4200 series On-screen Manual" = Canon MG4200 series On-screen Manual
"Canon My Image Garden" = Canon My Image Garden
"Canon My Image Garden Design Files" = Canon My Image Garden Design Files
"Canon_IJ_Scan_Utility" = Canon IJ Scan Utility
"CANONIJPLM100" = Canon インクジェットプリンタ/スキャナ/ファクス使用状況調査プログラム
"CanonMyPrinter" = Canon マイ プリンタ
"CanonQuickMenu" = Canon Quick Menu
"CD Manipulator_is1" = CD Manipulator
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"com.itec.ngl.NGL" = ラベル屋さん9
"CoreAAC" = CoreAAC
"Cubeツールバー_is1" = Cubeツールバー
"DVD Flick_is1" = DVD Flick 1.3.0.7
"DVD Shrink_is1" = DVD Shrink 3.2
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ELECOM RAKUTIN PRINT" = エレコムらくちんプリント
"EMOBILE GL06P driver" = EMOBILE GL06P driver
"FaceSave" = Sense YOU Technology 設定
"Google Chrome" = Google Chrome
"herdProtectScan" = herdProtect Anti-Malware Scanner
"ins_beat" = BEAT!MusicPlayer
"InstallShield_{13031CDF-00D2-4FCE-AB13-8430D8733574}" = Wireless Radio Switch Driver
"InstallShield_{1C725459-5053-42A5-B22A-F3E91484DF65}" = @メニュー
"InstallShield_{201C17CA-96E1-45B9-A0B1-04331C1921F2}" = PointGrab Hand Gesture Control
"InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}" = OmniPass
"InstallShield_{43C6E7CB-FEC0-4F0D-B164-410E8A728CF4}" = 電源ボタン設定
"InstallShield_{49830DFB-7C40-4AFD-A703-8599D856B65D}" = ソフトウェアディスク検索
"InstallShield_{54233B7A-6467-4AF9-9D3C-967022D84C8D}" = 自動サインイン設定
"InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}" = ワンタッチボタン設定
"InstallShield_{6A83C341-85CB-4816-8844-5A3E36D48D82}" = 電子辞書
"InstallShield_{70140D68-13DF-427D-8FD8-F8C8EEF8A641}" = バックアップナビ
"InstallShield_{71B85C1D-9792-45C4-8C19-954B243EF030}" = パソコン乗換ガイド
"InstallShield_{7292FFCF-FA9A-4585-AB80-A71961F931AF}" = Fujitsu BIOS Driver
"InstallShield_{83F00304-550B-4652-A12C-E301CB8B1EE4}" = スクリーンセーバー for FUJITSU PC
"InstallShield_{8561077B-55BB-4B47-8B90-6C744B12F7C0}" = チケットメーカー
"InstallShield_{88E68070-10DE-479B-89D0-0E654F8763A0}" = サポートツール 「パソコンの情報」と「トラブル解決ナビの起動」
"InstallShield_{9B4A28AE-D630-4DC5-A5B3-658BE1839063}" = 節電ナビ
"InstallShield_{A794229E-401E-44D4-A8B5-B21E975676DE}" = Anytime USB Charge Utility
"InstallShield_{B14DEDED-8159-46D4-BE80-3AD8E123BEE2}" = F-Launcher
"InstallShield_{B351DC34-2758-492A-ADEE-66C17A61860E}" = PowerUtility - スケジュール機能
"InstallShield_{BA0B4781-7874-49CF-BF45-D83DAB54888C}" = x-アプリ 5.0.01
"InstallShield_{BCC8CBC4-0F36-4F2A-B9C6-717FDF266C90}" = Battery Utility
"InstallShield_{C65ACE72-280B-4A28-8C00-AA0FBEBEEA79}" = My Cloud データ連携Utility
"InstallShield_{CF6398CB-0B6D-461D-861E-1A3ACD591950}" = Peakshift setting
"InstallShield_{D8FA2A48-A1E8-432E-AE96-5276D9E6A50F}" = Sony Media Library Earth 8.0.00
"InstallShield_{DDC49774-40B9-47AE-9C63-5569C08C4082}" = Pointing Device Utility
"InstallShield_{E50AF275-8A41-4FCF-847B-D6E60018F388}" = Power Saving Utility
"InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}" = 富士通拡張機能ユーティリティ
"InstallShield_{E91C1011-2083-4DD6-858D-11753DCDFF2D}" = Corel Direct DiscRecorder 3.7
"InstallShield_{EC314CDF-3521-482B-A21C-65AC95664814}" = Fujitsu MobilityCenter Extension Utility
"InstallShield_{F37A2CB1-90B7-4AF9-BFFE-9B6DB8431E07}" = 富士通アドバイザー
"IObit Surfing Protection_is1" = Surfing Protection
"IObitUninstall" = IObit Uninstaller
"JUSTSYSTEM" = JUSTSYSTEMアプリケーションの追加と削除
"Lhaplus" = Lhaplus
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware バージョン 2.0.4.1028
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware バージョン 1.75.0.1300
"MSC" = マカフィー セキュリティセンター
"NextFTP" = NextFTP
"Picasa 3" = Picasa 3
"RealPlayer 17.0" = RealPlayer Cloud
"ripaudicof" = Rip!AudiCO FREE Ver 4.03
"SoundEngine Free" = SoundEngine Free
"Update Engine" = Sony Ericsson Update Engine
"WinLiveSuite" = Windows Live Essentials
"Yahoo!Jツールバー" = Yahoo!ツールバー
"Yonde" = 読んde!!ココ
"ラジ録2_is1" = ラジ録2 2.2.1
"ラベル屋さんHOME" = ラベル屋さんHOME

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3291258898-3594276855-938048873-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"OneDriveSetup.exe" = Microsoft OneDrive
"Yahoo! JAPANアプリ ショートカット" = Yahoo! JAPANアプリ ショートカット

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2014/12/08 14:49:24 | Computer Name = PCUser | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1629281

Error - 2014/12/08 14:49:24 | Computer Name = PCUser | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1629281

Error - 2014/12/08 14:49:44 | Computer Name = PCUser | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: LogonUI.exe、バージョン: 6.3.9600.16384、タイム スタンプ: 0x5215f6c5
障害が発生しているモジュール名:
ntdll.dll、バージョン: 6.3.9600.17278、タイム スタンプ: 0x53eebd22 例外コード: 0xc0000374 障害オフセット: 0x00000000000f0d6c
障害が発生しているプロセス
ID: 0x1d44 障害が発生しているアプリケーションの開始時刻: 0x01d012faa60da293 障害が発生しているアプリケーション パス: C:\WINDOWS\system32\LogonUI.exe
障害が発生しているモジュール
パス: C:\WINDOWS\SYSTEM32\ntdll.dll レポート ID: f8e3c4ee-7f0a-11e4-bf6a-c0d9623efefb 障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2014/12/08 18:58:39 | Computer Name = PCUser | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: herdProtectScan.exe、バージョン: 1.0.3.9、タイム スタンプ: 0x542a3c80
障害が発生しているモジュール名:
LSASRV.dll、バージョン: 6.3.9600.17396、タイム スタンプ: 0x5434d70f 例外コード: 0xc0000005 障害オフセット:
0x000000000005036a 障害が発生しているプロセス ID: 0x2490 障害が発生しているアプリケーションの開始時刻: 0x01d012f6088012ff
障害が発生しているアプリケーション
パス: C:\Program Files\Reason\herdProtect\Scanner\herdProtectScan.exe 障害が発生しているモジュール
パス: C:\WINDOWS\SYSTEM32\LSASRV.dll レポート ID: bf6248bc-7f2d-11e4-bf6a-c0d9623efefb
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2014/12/08 19:30:40 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1508
Description = レジストリを読み込めませんでした。メモリが不足しているか、セキュリティの権限が不足している可能性があります。 詳細 - 構成レジストリ
データベースが壊れています。 - C:\Users\PC-User\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error - 2014/12/08 19:30:40 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Windows がクラス レジストリ ファイルをロードできません。 詳細 - 構成レジストリ データベースが壊れています。

Error - 2014/12/08 19:30:40 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1508
Description = レジストリを読み込めませんでした。メモリが不足しているか、セキュリティの権限が不足している可能性があります。 詳細 - 構成レジストリ
データベースが壊れています。 - C:\Users\PC-User\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error - 2014/12/08 19:30:40 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Windows がクラス レジストリ ファイルをロードできません。 詳細 - 構成レジストリ データベースが壊れています。

Error - 2014/12/08 19:33:27 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1508
Description = レジストリを読み込めませんでした。メモリが不足しているか、セキュリティの権限が不足している可能性があります。 詳細 - 構成レジストリ
データベースが壊れています。 - C:\Users\PC-User\AppData\Local\Microsoft\Windows\\UsrClass.dat

Error - 2014/12/08 19:33:27 | Computer Name = PCUser | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Windows がクラス レジストリ ファイルをロードできません。 詳細 - 構成レジストリ データベースが壊れています。

[ System Events ]
Error - 2014/09/27 9:26:36 | Computer Name = PCUser | Source = DCOM | ID = 10010
Description =

Error - 2014/09/27 9:29:35 | Computer Name = PCUser | Source = DCOM | ID = 10000
Description =

Error - 2014/09/27 9:30:17 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: Microsoft.ZuneVideo。

Error - 2014/09/27 9:30:20 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: Microsoft.BingSports。

Error - 2014/09/27 9:30:32 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: CyberLinkCorp.fu.MyCloud。

Error - 2014/09/27 9:30:39 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: Microsoft.BingMaps。

Error - 2014/09/27 9:30:47 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: Microsoft.Office.OneNote。

Error - 2014/09/27 9:31:05 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: Microsoft.ZuneMusic。

Error - 2014/09/27 9:32:21 | Computer Name = PCUser | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = インストールの失敗: エラー 0x80070002 で次の更新プログラムのインストールに失敗しました: microsoft.windowscommunicationsapps。

Error - 2014/09/27 10:13:47 | Computer Name = PCUser | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =


< End of report >
  • あさくま
  • MAIL
  • 2014/12/09 (Tue) 09:40:38
返信フォームへ 
HPが仕事してくれています
ログを確認させていただきました。
HPがこれでもかと言うくらい検出しています。
誤検出も多いですが、OTLでは拾えないものをしっかり拾ってきているのが分かります。
HPは不要ですので、導入時の指示に従って削除なされてください。

メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commandsの3つはOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:OTL
SRV - [2014/11/21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/11/21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
DRV:[b]64bit:[/b] - [2014/12/09 07:52:39 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2014/11/21 06:14:26 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2013/04/04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>;*.local
IE - HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:14235;
[2014/12/08 23:48:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect
[2014/12/08 09:38:38 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014/12/07 15:01:19 | 000,000,000 | ---D | C] -- C:\Users\PC-User\AppData\Roaming\Malwarebytes
[2014/12/07 15:00:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/12/07 15:00:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014/12/07 14:53:17 | 010,285,040 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\PC-User\Desktop\mbam-setup-1.75.0.1300.exe
[2014/11/22 17:11:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Moneydown
[2014/11/22 05:23:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/11/22 05:23:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/11/20 07:40:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair

:Files
c:\users\pc-user\appdata\local\google\chrome\user data\default\extensions\infiigcphjnhnkjagipboadmcdefhhld
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\24kr74ku
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\4i51l91w
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\6gmbur3q
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\czfhyu2a
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc
c:\users\pc-user\downloads\ac3filter_2_5b.exe
c:\users\pc-user\downloads\brothersoft_downloader_for_cyberlink_dvd_solution3457.exe
c:\users\pc-user\downloads\freemakevideoconvertersetup.exe
c:\users\pc-user\downloads\gomplayerjpsetup.exe
c:\users\pc-user\downloads\orbitdownloadersetup.exe
c:\users\pc-user\downloads\reimagerepair (1).exe
c:\users\pc-user\downloads\reimagerepair.exe
c:\program files\ripaudicof\jword_plugin.exe

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行うと処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
  • IVNO
  • MAIL
  • 2014/12/10 (Wed) 08:23:58
返信フォームへ 
Re: Reimage等にやられております
処置ログをお送り致します。

All processes killed
========== OTL ==========
Error: No service named MBAMService was found to stop!
Service\Driver key MBAMService not found.
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe moved successfully.
Error: No service named MBAMScheduler was found to stop!
Service\Driver key MBAMScheduler not found.
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe moved successfully.
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
C:\Windows\SysNative\drivers\MBAMSwissArmy.sys moved successfully.
Service MBAMWebAccessControl stopped successfully!
Service MBAMWebAccessControl deleted successfully!
C:\Windows\SysNative\drivers\mwac.sys moved successfully.
Error: No service named MBAMProtector was found to stop!
Service\Driver key MBAMProtector not found.
File C:\Windows\SysNative\drivers\mbam.sys not found.
HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
HKU\S-1-5-21-3291258898-3594276855-938048873-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\herdProtect\ not found.
File C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys not found.
C:\Users\PC-User\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\PC-User\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\PC-User\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\PC-User\AppData\Roaming\Malwarebytes folder moved successfully.
Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\ not found.
Folder C:\Program Files (x86)\Malwarebytes' Anti-Malware\ not found.
C:\Users\PC-User\Desktop\mbam-setup-1.75.0.1300.exe moved successfully.
C:\Program Files (x86)\Moneydown folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\Plugins folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\Languages folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware\accessible folder moved successfully.
C:\Program Files (x86)\Malwarebytes Anti-Malware folder moved successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair folder moved successfully.
File rity] not found.
File sethosts] not found.
File ptytemp] not found.
File eaterestorepoint] not found.
File boot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 12102014_201605

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • あさくま
  • MAIL
  • 2014/12/10 (Wed) 20:28:58
返信フォームへ 
OTLのやり直しをお願いいたします
OTLのログを拝見させていただきましたが、割と頻発しているOTLの処置不良があります。
そのため、以下のスクリプトを用いて再度OTLでの処置を行ってください。

------コピペここから------
:Files
c:\users\pc-user\appdata\local\google\chrome\user data\default\extensions\infiigcphjnhnkjagipboadmcdefhhld
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\24kr74ku
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\4i51l91w
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\6gmbur3q
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\czfhyu2a
c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc
c:\users\pc-user\downloads\ac3filter_2_5b.exe
c:\users\pc-user\downloads\brothersoft_downloader_for_cyberlink_dvd_solution3457.exe
c:\users\pc-user\downloads\freemakevideoconvertersetup.exe
c:\users\pc-user\downloads\gomplayerjpsetup.exe
c:\users\pc-user\downloads\orbitdownloadersetup.exe
c:\users\pc-user\downloads\reimagerepair (1).exe
c:\users\pc-user\downloads\reimagerepair.exe
c:\program files\ripaudicof\jword_plugin.exe

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペここまで------
  • IVNO
  • MAIL
  • 2014/12/11 (Thu) 07:04:09
返信フォームへ 
Re: Reimage等にやられております
やり直しをいたしました。

All processes killed
========== FILES ==========
c:\users\pc-user\appdata\local\google\chrome\user data\default\extensions\infiigcphjnhnkjagipboadmcdefhhld\229 folder moved successfully.
c:\users\pc-user\appdata\local\google\chrome\user data\default\extensions\infiigcphjnhnkjagipboadmcdefhhld folder moved successfully.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\24kr74ku not found.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\4i51l91w not found.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\6gmbur3q not found.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\7wnafr1p not found.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\czfhyu2a not found.
File\Folder c:\users\pc-user\appdata\local\microsoft\windows\inetcache\content.ie5\tzbtrudc not found.
c:\users\pc-user\downloads\ac3filter_2_5b.exe moved successfully.
c:\users\pc-user\downloads\Brothersoft_downloader_For_CyberLink_DVD_Solution3457.exe moved successfully.
c:\users\pc-user\downloads\FreemakeVideoConverterSetup.exe moved successfully.
c:\users\pc-user\downloads\GOMPLAYERJPSETUP.EXE moved successfully.
c:\users\pc-user\downloads\OrbitDownloaderSetup.exe moved successfully.
c:\users\pc-user\downloads\ReimageRepair (1).exe moved successfully.
c:\users\pc-user\downloads\ReimageRepair.exe moved successfully.
c:\program files\ripaudicof\jword_plugin.exe moved successfully.
File\Folder :Commands not found.
File\Folder [purity] not found.
File\Folder [resethosts] not found.
File\Folder [emptytemp] not found.
File\Folder [createrestorepoint] not found.
File\Folder [reboot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 12112014_202314

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
  • あさくま
  • MAIL
  • 2014/12/11 (Thu) 20:33:23
返信フォームへ 
HJT、CCのログのご提示と状況報告を
OTLのログを確認いたしました。
前回処置できていなかった部分も今回はしっかり処置できている模様です。
OTLは不要となりますので、導入時の指示に従って削除なされてください。
それでは本日一日ほど様子見を行い、様子見の結果をご連絡いただければと思います。
連絡の際に、HJTのログ、CCのインストール情報ログ、
同じくCCのスタートアップの各ログもお願いいたします。
  • IVNO
  • MAIL
  • 2014/12/12 (Fri) 07:54:52
返信フォームへ 
Re: Reimage等にやられております
状況報告申し上げます。

おかげさまにて、IE、Cromeとも広告の立ち上がり、常駐状態等は解消されております。

HJTログ

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 6:17:17, on 2014/12/13
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2RPK.EXE
C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNABDSWK.EXE
C:\Program Files (x86)\sMedio\AirGet\AirGet.exe
C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe
C:\Program Files\Softex\OmniPass\hook\OpHook32BitProcess.exe
C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe
C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
C:\Program Files (x86)\Justsystem\JSLIB32\JSQSF32.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
C:\Program Files\NextFTP\NXFTRAY.EXE
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
C:\Program Files (x86)\Canon\Quick Menu\CNQMSWCS.exe
C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\yphb.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\PC-User\AppData\Local\Microsoft\Windows\INetCache\IE\CJLDAQUQ\HijackThis.exe

R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O2 - BHO: Yahoo!ツールバーフィッシング警告 - {1F68E72C-50E5-44B8-8F56-6A54D3AF1DA4} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: OmniPassBHO - {7C5AE885-5C98-4A61-8085-3FA169F7233C} - C:\Program Files\Softex\OmniPass\OpBHO32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Yahoo!ツールバーヘルパー - {EEBA90E6-2B14-413F-9BF8-61A8BDF92258} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Yahoo!ツールバー - {AEF44653-C059-42CB-A5B7-41C640DA4A67} - C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
O3 - Toolbar: Cubeツールバー(&C) - {0CBC8163-AC34-476a-9E22-4B6D5184E060} - C:\Program Files (x86)\CubeToolBar\ToolBarBand.dll
O3 - Toolbar: Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NetworkPlayerServerHelper] "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
O4 - HKLM\..\Run: [BtTray] "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [CSPTL-CANONMJ] C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJ.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AirGet] "C:\Program Files (x86)\sMedio\AirGet\AirGet.exe" silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [DriveStudio] "C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe" silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1418390687
O4 - Global Startup: ATOK14環境移行支援ツール.LNK = C:\Program Files (x86)\Justsystem\ATOK14\ATOK14PC.EXE
O4 - Global Startup: JSクイックサーチファイル 自動更新.LNK = C:\Program Files (x86)\Justsystem\JSLIB32\JSQSF32.EXE
O4 - Global Startup: JSクイックランチ.LNK = C:\Program Files (x86)\Justsystem\JSLIB32\JSQLNCH.EXE
O4 - Global Startup: PointGrab ハンドジェスチャーコントロール.lnk = C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O4 - Global Startup: 常駐NextFTP.lnk = C:\Program Files\NextFTP\NXFTRAY.EXE
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Cube : WEB 検索 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/search.html
O8 - Extra context menu item: Cube : リンク文字列を翻訳 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/anchor.html
O8 - Extra context menu item: Cube : 選択範囲を翻訳 - res://C:\Program Files (x86)\CubeToolBar\ToolBar.dll/translation.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader6/DMMDownloader.cab
O16 - DPF: {0E15796F-7B3A-4FB3-BF69-7B11D20A4A62} (AzbyClub ユーザー登録用 コントロール) - https://azby.fmworld.net/register/entrance/UserReg.CAB
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\windows\SysWow64\skype4com.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
O23 - Service: Softex OmniPass Cachedrv Service (Cachedrv server) - Unknown owner - C:\Program Files\Softex\OmniPass\cachesrvr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CSPTL-CANONMJService - キヤノンマーケティングジャパン株式会社 - C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJService.exe
O23 - Service: CypherGuard cguard Service 32bit Edition - CypherTec Inc. - C:\Program Files (x86)\Common Files\CypherTec\cgrdsrv32.exe
O23 - Service: CypherGuard cguard Service 64bit Edition - CypherTec Inc. - C:\Program Files\Common Files\CypherTec\cgrdsrv64.exe
O23 - Service: CypherGuard Info Service - CypherTec Inc. - C:\Program Files\Common Files\CypherTec\cthwsrv64.exe
O23 - Service: DTSAudioSvc - DTS, Inc - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FJAgentSVC - 富士通株式会社 - C:\Program Files (x86)\Fujitsu\FJAgent\Core\bin\FJAgentSVC.exe
O23 - Service: FJAutoSignIn - FUJITSU LIMITED - C:\Program Files\Fujitsu\AutoSignIn\AutoSignInService.exe
O23 - Service: FJQuickPowerOn - FUJITSU LIMITED - C:\Program Files\Fujitsu\QuickPowerOn\QuickPowerOn.exe
O23 - Service: FUJ02E3Service - FUJITSU LIMITED - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon インクジェットプリンタ/スキャナ/ファクス使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: マカフィー パーソナルファイアウォール サービス (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Application Statistics Service (MfeASUM) - McAfee, Inc. - C:\Program Files\McAfee\AppStats\MfeASUM.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\windows\system32\mfevtps.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: My Cloud ビデオ サーバー - Unknown owner - C:\Program Files (x86)\DigiOn\DiXiM VDMS for FUJITSU\dms_svc.exe
O23 - Service: My Cloud エコ PC Service (MyCloudEcoSvc) - FUJITSU LIMITED - C:\Program Files (x86)\Fujitsu\MCEco\MyCloudEchoSvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NetworkPlayer Server - Unknown owner - C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServer.exe
O23 - Service: Softex OmniPass Service (omniserv) - Softex Inc. - C:\Program Files\Softex\OmniPass\OmniServ.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\PACSPTISVR.exe
O23 - Service: PFNService - FUJITSU LIMITED - C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
O23 - Service: PGService - PointGrab LTD - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe
O23 - Service: PG_Service_Launcher - PointGrab LTD - C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG_Service_Launcher.exe
O23 - Service: PowerSavingUtilityService - FUJITSU LIMITED - C:\Program Files\Fujitsu\PSUtility\PSUService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: PowerUtility - スケジュール機能 (PUSCSRVC) - FUJITSU LIMITED - C:\Program Files\Fujitsu\PowerUtility\schedule\PUSCSRVC.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PCカルテ スケジュール サービス (SKARUTE) - FUJITSU LIMITED - C:\Program Files\Fujitsu\SKARUTE\fjkartemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service2 - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeService2.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SSPF HGW Service (SSPFHGWService) - Unknown owner - C:\Program Files (x86)\Fujitsu\MCEcoUty\MCEcoUty.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: UDSS - Unknown owner - C:\Program Files (x86)\Common Files\Ulead Systems\UDSS\UDSS.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\chitose\updnvsrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 20908 bytes

CCインストール情報ログ

niftyでブロードバンド ニフティ株式会社 2012/11/22 1.00.000
AC3Filter 2.5b Alexander Vigovsky 2013/12/31 15.2 MB 2.5b
Adobe Acrobat 5.0 Adobe Systems, Inc. 2014/12/13 5.0
Adobe AIR Adobe Systems Incorporated 2014/12/13 13.0.0.111
Adobe Creative Cloud Adobe Systems Incorporated 2014/12/13 196 MB 2.7.1.418
Adobe Dreamweaver CS6 Adobe Systems Incorporated 12
Adobe Help Manager Adobe Systems Incorporated 2014/12/13 4.0.244
Adobe Illustrator CS6 Adobe Systems Incorporated 16.0
Adobe Photoshop CS6 Adobe Systems Incorporated 13.0
Adobe Reader XI (11.0.10) - Japanese Adobe Systems Incorporated 2014/12/10 203 MB 11.0.10
Adobe Widget Browser Adobe Systems Incorporated. 2014/12/13 2.0 Build 348
ALTools Update ESTsoft Corp. 2014/12/13 v10.4
ALZip 8.61 ESTsoft Corp. 2014/12/13 v8.61
Anytime USB Charge Utility FUJITSU LIMITED 2012/11/22 2.01.00.000
Apple Application Support Apple Inc. 2013/11/28 64.0 MB 2.3.6
Apple Mobile Device Support Apple Inc. 2013/11/28 27.3 MB 7.0.0.117
Apple Software Update Apple Inc. 2013/11/28 2.38 MB 2.1.3.127
Battery Utility FUJITSU LIMITED 2013/02/19 4.01.20.000
BEAT!MusicPlayer 2014/12/13
Bing Bar Microsoft Corporation 2014/03/23 724 KB 7.3.132.0
Bonjour Apple Inc. 2013/11/28 2.04 MB 3.0.0.10
BookLive!Reader BookLive 2013/04/27 70.9 MB 2.3.10
BurnAware Free 7.7 Burnaware 2014/12/05 34.8 MB
Canon Easy-WebPrint EX 2014/12/13
Canon IJ Scan Utility ‪Canon Inc.‬ 2014/12/13
CANON iMAGE GATEWAY 無料会員登録 MG4230 Canon Inc.‎ 2014/12/13
Canon LBP6200 2014/08/19
Canon MG4200 series MP Drivers Canon Inc. 2014/08/19 1.01
Canon MG4200 series On-screen Manual Canon Inc. 2014/12/13 7.5.0
Canon My Image Garden Canon Inc. 2014/12/13 1.0.0
Canon My Image Garden Design Files Canon Inc. 2014/12/13 1.0.0
Canon Quick Menu Canon Inc. 2014/12/13 2.0.0
Canon インクジェットプリンタ/スキャナ/ファクス使用状況調査プログラム Canon Inc. 2014/12/13 4.0.0
Canon マイ プリンタ Canon Inc. 2014/12/13 3.0.0
CCleaner Piriform 2014/12/05 5.00
CD Manipulator Y.Kanechika 2014/12/13
Cisco EAP-FAST Module Cisco Systems, Inc. 2013/02/19 1.55 MB 2.2.14
Cisco LEAP Module Cisco Systems, Inc. 2013/02/19 644 KB 1.0.19
Cisco PEAP Module Cisco Systems, Inc. 2013/02/19 1.23 MB 1.1.6
CoreAAC 2014/12/13
Corel Digital Studio for FUJITSU Corel Corporation 1.5.23.118
Corel WinDVD Corel Inc. 2013/02/19 211 MB 10.8.0.279
CubePDF 1.0.0RC4 CubeSoft 2013/04/06 29.2 MB
CubePDF 1.0.0RC4 CubeSoft 2013/04/06
Cubeツールバー CubeSoft 2013/04/06 3.20 MB
Cubeツールバー 64-bit Edition CubeSoft 2013/04/06 3.55 MB
DigiBookBrowser Version 1.5.2.68 TriWorks Corp.JAPAN 2012/11/22 1.5.2.68
Drive Studio設定Utility FUJITSU LIMITED 2013/11/03 126 MB 1.00.0000
DVD Flick 1.3.0.7 Dennis Meuwissen 2014/08/26 1.3.0.7
DVD Shrink 3.2 DVD Shrink 2014/12/13
EMOBILE GL06P driver Huawei Technologies Co.,Ltd 2014/12/13 21.001.07.02.168
F-Launcher V1.0
F-Launcher FUJITSU LIMITED 2012/11/22 1.61 MB 2.0.0.0
FJ Camera Sonix 2013/02/19 6.0.1209.0_WHQL
Fujitsu BIOS Driver FUJITSU LIMITED 2012/11/22 1.34 MB 1.1.0.0
Fujitsu MobilityCenter Extension Utility FUJITSU LIMITED 2012/11/22 4.01.00.000
Google Chrome Google Inc. 2013/04/06 38.0.2125.111
Google Toolbar for Internet Explorer Google Inc. 2013/04/06 7.5.5111.1712
Inspirium辞書検索ライブラリ Fujitsu 2012/11/22 1.16 MB 2.0.8
Intel(R) Management Engine Components Intel Corporation 8.1.0.1252
Intel(R) Processor Graphics Intel Corporation 9.17.10.3347
Intel(R) Rapid Storage Technology Intel Corporation 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2.0.0.37149
IObit Uninstaller IObit 2014/12/06 4.1.5.30
iTunes Apple Inc. 2013/11/28 215 MB 11.1.3.8
Java 7 Update 71 Oracle 2014/11/20 119 MB 7.0.710
JUSTSYSTEMアプリケーションの追加と削除 2014/12/13
Lhaplus 2014/12/13
Malwarebytes Anti-Malware バージョン 2.0.4.1028 Malwarebytes Corporation 2014/12/04 57.3 MB 2.0.4.1028
McAfee SiteAdvisor McAfee, Inc. 3.7.154
Microsoft Office Home and Business 2013 - ja-jp Microsoft Corporation 2014/11/20 15.0.4667.1002
Microsoft OneDrive Microsoft Corporation 2014/08/19 26.7 MB 17.0.4035.0328
Microsoft Silverlight Microsoft Corporation 2014/07/24 249 MB 5.1.30514.0
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 2014/06/10 1.92 MB 3.1.0000
Microsoft SQL Server Compact 3.5 SP2 JPN Microsoft Corporation 2012/11/22 4.89 MB 3.5.8080.0
Microsoft SQL Server Compact 3.5 SP2 x64 JPN Microsoft Corporation 2012/11/22 7.08 MB 3.5.8080.0
Microsoft SQL Server Compact 4.0 x64 JPN Microsoft Corporation 2014/11/02 18.9 MB 4.0.8482.1
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/08/19 2.66 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2012/11/22 1.24 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/02/19 7.32 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 2012/11/22 13.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/04 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/02/19 4.53 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/02/19 9.63 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/11/22 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/04 1.29 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2014/10/17 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2014/10/17 11.1 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 11.0.61030.0
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2014/10/17 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2014/10/17 10.0.50903
My Cloud エコ FUJITSU LIMITED 2013/11/03 3.02 MB 1.0.3.0
My Cloud エコ Utility FUJITSU LIMITED 2013/11/03 152 MB 1.0.3.0
My Cloud データ連携Utility 富士通株式会社 2013/11/03 15.9 MB 1.00.02.011
My Cloud ビデオ サーバー DigiOn 2013/11/03 9.41 MB 2.1.4.0
My Cloud モバイルアクセス設定Utility FUJITSU LIMITED 2013/11/03 134 MB 2.03.0005
NetworkPlayer サーバー DigiOn 2012/11/22 4.51
NextFTP 2014/12/13
Officeprint 1.0.0 プリントパック 2014/10/16 24.8 MB
OmniPass Softex Inc. 2013/04/02 42.9 MB 8.00.15(x64)
OmniPass Softex Inc. 2013/04/02 8.00.15(x64)
Paint Shop Pro 7 Anniversary Edition Jasc Software Inc 2013/04/05 279 MB 7.0.4.0000
PCカルテ FUJITSU LIMITED 2012/11/22 5.31 MB 1.1.0.1
Peakshift setting FUJITSU LIMITED 2013/02/19 2.01.00.000
PG Splitter PointGrabSplitter 2013/02/19 6.51 MB 01.01.0025
PhotoWizard Microsoft 2012/11/22 338 MB 1.3.0
Picasa 3 Google, Inc. 2014/12/13 3.9
Plugfree NETWORK 富士通株式会社 2014/08/19 7.0.0.1
PointGrab Hand Gesture Control PointGrab 2013/02/19 93.3 MB 03.01.01.11717
Pointing Device Utility FUJITSU LIMITED 2012/11/22 1.75 MB 2.0.0.0
Power Saving Utility FUJITSU LIMITED 2012/11/22 33.01.01.000
PowerUtility - スケジュール機能 FUJITSU LIMITED 2012/11/22 22.0 MB 4.15.1.0
Ralink Bluetooth Stack64 Ralink Corporation 2013/02/19 72.2 MB 9.0.717.0
Ralink RT2860 Wireless LAN Card Ralink 2013/04/02 1.2.0.41
Realtek Ethernet Controller Driver Realtek 2012/11/22 8.3.730.2012
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 6.0.1.6714
Realtek USB Card Reader Realtek Semiconductor Corp. 2012/11/22 6.2.9200.30146
Rip!AudiCO FREE Ver 4.03 2014/12/13
Roxio Creator LJ Roxio 2012/11/22 12.2.37.7
Sense YOU Technology 設定 FUJITSU LIMITED 2014/12/13 3.0.0.1
Shared C Run-time for x64 McAfee 2013/04/02 2.78 MB 10.0.0
Sony Ericsson Update Engine Sony Ericsson Communications AB 2014/12/13 2.13.6.201305161305
Sony Media Library Earth 8.0.00 Sony Corporation 2013/10/06 46.3 MB 8.0.00.10191
Sony PC Companion 2.10.165 Sony 2013/06/25 2.10.165
SoundEngine Free Coderium 2013/04/06 5.0.2.2
Surfing Protection IObit 2014/01/29 11.3 MB 1.0
Synaptics Pointing Device Driver Synaptics Incorporated 2014/08/19 46.4 MB 16.2.10.12
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/30 7.60 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/08/27 34.8 MB 16.0.668.1
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/08/21 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/08/27 17.0 KB 16.0.1016.1
Windows Live Essentials Microsoft Corporation 2014/06/10 16.4.3528.0331
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02B1) System (06/09/2012 1.23) FUJITSU LIMITED 2014/08/19 06/09/2012 1.23
Windows ドライバ パッケージ - FUJITSU LIMITED (FUJ02E3) System (06/22/2012 1.30.0.0) FUJITSU LIMITED 2014/08/19 06/22/2012 1.30.0.0
Wireless Radio Switch Driver FUJITSU LIMITED 2012/11/22 1.34 MB 1.0.0.0
Wondershare データリカバリー(Build 4.6.1.3) Wondershare Software Co.,Ltd. 2014/09/04 4.6.1.3
x-アプリ 5.0.01 Sony Corporation 2013/10/06 88.2 MB 9.0.01
Yahoo! JAPANアプリ ショートカット Yahoo! JAPAN. 2014/08/19 1.0.0
Yahoo!ツールバー Yahoo! JAPAN. 7.3.0.20
アップデートナビ FUJITSU LIMITED 2014/10/17 2.03 MB 1.3.0021
エレコムらくちんプリント 2014/12/13
カメラセンサー機能ON/OFFツール FUJITSU LIMITED 2014/12/13 1.01
キヤノンお知らせメッセンジャー キヤノンマーケティングジャパン株式会社 2013/04/20 2.0.2.0
サポートツール 「パソコンの情報」と「トラブル解決ナビの起動」 FUJITSU LIMITED 2012/11/22 1.97 MB 1.0.0.0
スクリーンセーバー for FUJITSU PC FUJITSU LIMITED 2012/11/22 324 KB 2.6.0.1
ソフトウェアディスク検索 FUJITSU LIMITED 2012/11/22 1.86 MB 2.0.0.0
チケットメーカー FUJITSU LIMITED 2012/11/22 833 KB 3.1.0.0
バックアップナビ FUJITSU LIMITED 2012/11/22 23.7 MB 2.0.0.2
パソコン乗換ガイド 株式会社富士通ソフトウェアテクノロジーズ 2012/11/22 15.2 MB 1.0.1.1
ブンコビューア SHARP 2013/05/20 15.5 MB 6.0.4
マカフィー セキュリティセンター McAfee, Inc. 2014/12/13 12.8.992
ラジ録2 2.2.1 マグノリア 2013/08/13
ラベル屋さん9 A-one Co.,Ltd. 2014/12/13 9.0.600
ラベル屋さんHOME
ワンタッチボタン設定 FUJITSU LIMITED 2012/11/22 3.20 MB 8.5.1.0
富士通PC 辞書セット(広辞苑第六版+リーダーズ英和辞典+新和英中辞典+現代用語の基礎知識+学研パーソナル統合辞典) 富士通株式会社 2012/11/22 513 KB 2.0.0
富士通アドバイザー FUJITSU LIMITED 2012/11/22 21.6 MB 4.1.0.0
富士通拡張機能ユーティリティ FUJITSU LIMITED 2012/11/22 2.89 MB 3.5.1.0
書き込み機能拡張ユーティリティ FUJITSU LIMITED 2012/11/22 2.0.0.0
楽しもう!Office ライフ Microsoft Corporation 2012/11/22 636 KB 1.0.0
筆ぐるめ 20 富士ソフト株式会社 2012/11/22 717 MB 20.00.0003
筆王ZERO SOURCENEXT 2013/06/21 14.0.0
節電ナビ FUJITSU LIMITED 2012/11/22 2.23 MB 2.0.0.0
紀伊國屋書店 Kinoppy for Windows 紀伊國屋書店 2014/11/02 50.6 MB 1.5.3
自動サインイン設定 FUJITSU LIMITED 2012/11/22 390 KB 1.0.1.0
読んde!!ココ
電子辞書 FUJITSU LIMITED 2012/11/22 21.4 MB 5.0.0.0
電源ボタン設定 FUJITSU LIMITED 2013/02/19 443 KB 2.0.1.0
@メニュー V7.0
@メニュー FUJITSU LIMITED 2012/11/22 3.08 MB 7.0.0.0


CCスタートアップログ

有効 HKCU:Run AirGet sMedio Inc "C:\Program Files (x86)\sMedio\AirGet\AirGet.exe" silent
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run DriveStudio FUJITSU LIMITED "C:\Program Files (x86)\Fujitsu\DriveStudio\DriveStudio.exe" silent
無効 HKCU:Run msnmsgr Microsoft Corporation "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
有効 HKCU:RunOnce Adobe Speed Launcher 1418390687
有効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run Adobe Creative Cloud Adobe Systems Incorporated "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
有効 HKLM:Run AdobeAAMUpdater-1.0 Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
有効 HKLM:Run AdobeCS6ServiceManager Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run BtTray IVT Corporation "C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe"
有効 HKLM:Run CanonQuickMenu CANON INC. C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
有効 HKLM:Run CNAP2 Launcher CANON INC. C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE
無効 HKLM:Run CSPTL-CANONMJ キヤノンマーケティングジャパン株式会社 C:\Program Files (x86)\CMJ\CSPTL-CANONMJ\CSPTL-CANONMJ.exe
有効 HKLM:Run FJUPDNV_Chitose FUJITSU LIMITED C:\Program Files\Fujitsu\chitose\updatenv.exe
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run mcpltui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
有効 HKLM:Run mcui_exe McAfee, Inc. "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
有効 HKLM:Run NetworkPlayerServerHelper DigiOn, Inc. "C:\Program Files (x86)\Fujitsu\NetworkPlayer Server\NetworkPlayerServerHelper.exe"
有効 HKLM:Run OmniPass Softex Inc. C:\Program Files\Softex\OmniPass\scureapp.exe
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run RtHDVBg_DTS Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /DTSU2P
有効 HKLM:Run RTHDVCPL Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SunJavaUpdateSched Oracle Corporation "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
有効 HKLM:Run SwitchBoard Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
有効 Startup Common ATOK14環境移行支援ツール.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\ATOK14\ATOK14PC.EXE
有効 Startup Common JSクイックサーチファイル 自動更新.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\JSLIB32\JSQSF32.EXE
有効 Startup Common JSクイックランチ.LNK 株式会社ジャストシステム C:\Program Files (x86)\Justsystem\JSLIB32\JSQLNCH.EXE
有効 Startup Common PointGrab ハンドジェスチャーコントロール.lnk PointGrab LTD C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGPanel.exe
無効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup Common 常駐NextFTP.lnk C:\Program Files\NextFTP\NXFTRAY.EXE


  • あさくま
  • MAIL
  • 2014/12/13 (Sat) 06:44:57
返信フォームへ 
ログが不足しております
ログを拝見んさせていただきましたが、
CCのスタートアップログはWindowsログのみとなっております。
その他スタートアップの取得可能なログすべてをご提示ください。
  • IVNO
  • MAIL
  • 2014/12/13 (Sat) 08:32:13
返信フォームへ 
Re: Reimage等にやられております
失礼致しました

IEログ

無効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension このコンテンツを引用 Microsoft Corporation C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
無効 Helper Adobe PDF Reader Link Helper Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
無効 Helper Bing Bar Helper Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
無効 Helper Bing Bar Helper Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll
有効 Helper Canon Easy-WebPrint EX BHO CANON INC. C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
無効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre7\bin\ssv.dll
無効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
無効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
無効 Helper McAfee SiteAdvisor BHO McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
無効 Helper OmniPass Helper Softex Inc. C:\Program Files\Softex\OmniPass\OpBHO32.dll
無効 Helper OmniPass Helper Softex Inc. C:\Program Files\Softex\OmniPass\OpBHO64.dll
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
無効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
有効 Helper Yahoo!ツールバーフィッシング警告 Yahoo Japan Corporation. C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\ypho.dll
有効 Helper Yahoo!ツールバーヘルパー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll
無効 Toolbar Bing Bar Microsoft Corporation. C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll
無効 Toolbar Bing Bar Microsoft Corporation. "C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll"
有効 Toolbar Canon Easy-WebPrint EX CANON INC. C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
無効 Toolbar Cubeツールバー(C) CubeSoft C:\Program Files (x86)\CubeToolBar\ToolBarBand.dll
無効 Toolbar Cubeツールバー(C) CubeSoft C:\Program Files\CubeToolBar\ToolBarBand.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
無効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
無効 Toolbar McAfee SiteAdvisor Toolbar McAfee, Inc. c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
有効 Toolbar Yahoo!ツールバー Yahoo! JAPAN C:\Program Files (x86)\Yahoo!J\Toolbar\7_3_0_20\Modules\YahooToolBar.dll

Chromeログ

無効 Extension MTG Finder 229 最初のユーザー C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\infiigcphjnhnkjagipboadmcdefhhld\229
無効 Extension RealPlayer Downloader 17.0.11 最初のユーザー C:\Users\PC-User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\17.0.11_0

スケジュールされたタスク

有効 Task AdobeAAMUpdater-1.0-MicrosoftAccount-jmickey@ozzio.jp Adobe Systems Incorporated C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task Microsoft Office 15 Sync Maintenance for PCUSER-PC-User PCUser Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Optimize Start Menu Cache Files-S-1-5-21-3291258898-3594276855-938048873-1002
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-3291258898-3594276855-938048873-1002 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task Synaptics TouchPad Enhancements Synaptics Incorporated \Program Files\Synaptics\SynTP\SynTPEnh.exe
有効 Task Task_ShellExecuteAs Google Inc. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "http://www.gomplayer.jp/?utm_source=promo&utm_medium=pic&utm_campaign=cancel"
有効 Task Uninstaller_SkipUac_PC-User IObit "C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer
有効 Task {382BCD9C-2C95-47FD-AA8F-6E5AE4B29913} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HY21K894\iview425j.exe" -d C:\Users\PC-User\Desktop
有効 Task {5AF2E88D-91B8-417E-A91D-71758F2ABBCE} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TA3AIC9J\pfset125.exe" -d C:\Users\PC-User\Desktop
有効 Task {CE89D875-E7E9-468D-BA93-A9AB496474C7} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Users\PC-User\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\14M4GW4N\ElRakupr.exe" -d C:\Users\PC-User\Desktop
有効 Task {F09C2F07-B98D-401E-9A7C-338C2FB345BB} Microsoft Corporation C:\windows\system32\pcalua.exe -a "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" -c scenario=install baseurl="C:\Program Files\Microsoft Office 15" platform=x86 version=15.0.4631.1002 culture=ja-jp productstoremove=HomeBusinessRetail_ja-jp_x-none

コンテキストメニュー

有効 Directory ALZip ESTsoft Corp. C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll
有効 Directory Browse in Adobe Bridge CS6 Adobe Systems, Inc. C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L"
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory JSファイル検索ツールで検索(J)... 株式会社ジャストシステム C:\PROGRA~2\JUSTSY~1\JSLIB32\JSFIND.EXE /F%1
有効 Directory UnLockerMenu IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Drive ALZip ESTsoft Corp. C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll
有効 Drive JSファイル検索ツールで検索(J)... 株式会社ジャストシステム C:\PROGRA~2\JUSTSY~1\JSLIB32\JSFIND.EXE /F%1
有効 Drive Lhaplus C:\Program Files (x86)\Lhaplus\LplsShlx.dll
有効 Drive ドライブのロックを解除(U)...
有効 File AccExt C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
有効 File ALZip ESTsoft Corp. C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll
有効 File BthSendToContextMenuExt TODO: <公司名> C:\windows\system32\BSAppShlExt.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File Lhaplus C:\Program Files (x86)\Lhaplus\LplsShlx.dll
有効 File McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
有効 File UnLockerMenu IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. c:\program files (x86)\real\realplayer\RPDS\Bin64\rpcloudview.dll
有効 Folder AccExt C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
有効 Folder ALZip ESTsoft Corp. C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder Lhaplus C:\Program Files (x86)\Lhaplus\LplsShlx.dll
有効 Folder McCtxMenuFrmWrk McAfee, Inc. c:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll
有効 Folder UnLockerMenu IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
  • あさくま
  • MAIL
  • 2014/12/14 (Sun) 04:13:43
返信フォームへ 
ツールバーの削除と最後の処置を行って自衛しつつ解決で
ログ上では異常はなさそうですが、ツールバーが複数起動しています。
普段ご利用になられていないツールバーも自動起動しているため、
PCの動作が重くなる原因ともなっており、
またツールバーの複数併用はブラウザの動作が不安定になることから、
ツールバーは一つに限定しましょう。

以下のツールバーのうち使うものを残して削除なされてください。
削除方法は問いません。

Bing Bar Microsoft Corporation 2014/03/23 724 KB 7.3.132.0
Cubeツールバー CubeSoft 2013/04/06 3.20 MB
Cubeツールバー 64-bit Edition CubeSoft 2013/04/06 3.55 MB
Google Toolbar for Internet Explorer Google Inc. 2013/04/06 7.5.5111.1712
Yahoo!ツールバー Yahoo! JAPAN. 7.3.0.20

最後の処置を行いましょう。
今回の処置は、今後の再感染を防止するための自衛措置のひとつとなります。
セキュリティソフトを起動させ、設定を開いてください。
PUP(不審なソフトウェア)の検出機能があれば、そちらを有効な状態に設定してください。
PUPの検出機能につきましては、ご利用のセキュリティソフトにより名称や設定方法が異なるため、
有料版のセキュリティソフトをご利用の場合は、セキュリティベンダーにお問い合わせいただくのが手っ取り早いでしょう。
セキュリティソフトでは、スキャンに非常に時間がかかるようになると言う理由により、
初期状態では圧縮フォルダ内はスキャンしない設定になっていることが大半です。
しかしこの機能が標準では無効になっていることを利用して、PC内に潜入するマルウェアも多いです。
セキュリティを向上させるため、スキャン設定の項目で圧縮フォルダ内もスキャンを行う設定を有効にしてください。
ヒューリスティック検知あるいはスキャンを有効にする項目があれば、そちらも有効になされてください。
レピュテーション(評価)機能を有効にする項目があれば、こちらも有効になされてください。
スキャン対象が限定されている場合、全体をスキャンするように設定変更を行ってください。
以上で最後の処置を行いますが、この最後の処置は回答者により異なるため、
ほかの回答者の方の処置案内も確認され、今後の自衛策に役立てると良いでしょう。

問題もないようですので、以下に記載する自衛を遵守しつつ、本件を解決といたしましょう。
再度感染しないように、Windows Updateを怠らない、怪しいサイトには行かない、フリーウェアは極力使わない、
P2Pファイル共有ソフトには一切手を出さないなどの「自衛」はしっかりと行ってください。
また上記でも記述いたしましたが、ほかの方の質問や回答を見て、色々なものへの対応策を身につけるのも一つの自衛です。
近年情報流出が激化しておりますが、セキュリティソフトだけではこのようなマルウェアは防げません。
セキュリティソフトは、「常に後手」であるソフトウェアです。
これは、誰かが新種ウイルスに感染し、その感染が報告されない限り、
セキュリティソフトのベンダーとしてもウイルスに対応することができないのです。
ですので、セキュリティソフトは自衛のためのサポートツールであるということを常に念頭に置き、
今回のような他人に頼らざるを得ない状況となった伏魔殿での苦い経験を今後の糧に、
ご自身のPCと真剣に向き合いつつ、有益で安全なPCライフを実現してゆきましょう。
なお自衛は今だけの話ではなく、PCを扱う限り一生行うようにしましょう。
今回使用したツールはすべて導入時の案内に沿って片付けておいてください。
それではご安全に。
  • IVNO
  • MAIL
  • 2014/12/14 (Sun) 09:41:26
返信フォームへ 
謝辞
ツールバー削除、セキュリティ設定の強化を実施いたしました。
ご指導誠にありがとうございました。
今後は自衛の意識をもって、有害因子を近づけぬよう努力していきたいと思います。
お手数をおかけいたしました。
  • あさくま
  • MAIL
  • 2014/12/15 (Mon) 07:10:06
返信フォームへ 

返信フォーム
プレビュー (投稿前に内容を確認)
  
Template by  マシマロック