悪代官の伏魔殿掲示板

はじめまして。グリーンと申します。ネットの検索でミルク王子さんのブログがヒットし，その後に，こちらの掲示板にたどり着きました。少し前から，ネット検索中にJava，Flashのアップデートお知らせ，セキュリティの警告が頻繁にでるようになり困っております。

ちなみに，他の方のログを拝見していると，Softonicというサイトからのダウンロードは良くないと指摘されていらっしゃいますが，心あたりがあります。確か，動画関係のアプリをダウンロードしたときに使ったサイトだと記憶しています…。

以下，HJT，CCの順にログを提示します。お忙しいところ大変恐縮ですが，駆除のためのアドバイスを頂けないでしょうか。

HJT

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:38:51, on 2014/12/16
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
C:\Program Files (x86)\Tapur\tapmgr.exe
C:\Program Files (x86)\Tapur\Tapur.exe
C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe
C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Hidemaru\Hidemaru.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Users\yamabet\Desktop\Spy\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: RightsPlugInBHO - {0BA28B9D-82AB-40f4-8564-55757042B002} - C:\Program Files (x86)\RightsNetwork\RightsPlugIn\Bin\RightsPlugInBHO.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Trend Micro Osprey BHO - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.799\AVG SafeGuard toolbar_toolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MediaSyncAgent] "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
O4 - HKLM\..\Run: [LLHDUSER] "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [TKRTL] "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
O4 - HKLM\..\Run: [CLMSTrayIcon] "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"
O4 - HKCU\..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [TOSHIBA Active Display Off] "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Dropbox.lnk = yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: PcHusen.lnk = C:\PcHusen\PcHusen.exe
O4 - Startup: 秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BbleOsphing - Unknown owner - C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CLHNServiceForToshiba - CyberLink Corp. - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink MediaSync Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
O23 - Service: CyberLink MediaSync Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
O23 - Service: インテル(R) PROSet/Wireless WiMAX Red Bend デバイス管理サービス (DMAgent) - Red Bend Ltd. - C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LLHDClient - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe
O23 - Service: LLHDCloader - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: MsUpdate - Unknown owner - C:\Program Files (x86)\RightsNetwork\RightsPlugIn\Bin\MsUpdate.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OEMRegistrationProgram - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: Toshiba Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
O23 - Service: Toshiba Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.1.9 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: インテル(R) PROSet/Wireless WiMAX サービス (WiMAXAppSrv) - Intel(R) Corporation - C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 18630 bytes

CCのログです。宜しくお願いします。

+Lhaca 2013/12/04
Adobe AIR Adobe Systems Incorporated 2014/11/26 15.0.0.356
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/20 205 MB 11.0.09
Apple Application Support Apple Inc. 2014/10/16 95.2 MB 3.1
Apple Mobile Device Support Apple Inc. 2014/10/16 19.5 MB 8.0.5.6
Apple Software Update Apple Inc. 2013/10/13 2.38 MB 2.1.3.127
AVG SafeGuard toolbar AVG Technologies 2014/12/10 18.1.9.799
Bonjour Apple Inc. 2013/10/13 2.00 MB 3.0.0.10
CCleaner Piriform 2014/12/16 5.00
Cisco Connect Cisco Consumer Products LLC 2013/12/04 1.4.12334.0
Corel VideoStudio X5 Corel Corporation 2013/12/04 609 MB 15.0.1.29
CyberLink MediaShow 6 CyberLink Corp. 2013/07/02 672 MB 6.0.4528
CyberLink MediaSync CyberLink Corp. 2012/12/18 218 MB 1.0.1128.04
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2012/12/18 8.47 MB 1.5.1.4
Dropbox Dropbox, Inc. 2014/12/16 3.0.3
ebi.BookReader4 eBOOK Initiative Japan Co., Ltd. 2012/12/18 11.5 MB 4.01.27
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2012/12/18 4.0.1.27_MSI_T
Evernote v. 5.2.1 Evernote Corp. 2014/03/26 207 MB 5.2.1.3108
Garmin Express Garmin Ltd or its subsidiaries 2014/10/19 115 MB 3.2.18.0
GOM Player Gretech Corporation 2014/12/02 2.2.64.5211
Google Toolbar for Internet Explorer Google Inc. 2014/12/16 7.5.5111.1712
HP ENVY 4500 series ヘルプ Hewlett Packard 2013/11/28 8.35 MB 30.0.0
HP ENVY 4500 series ベーシック デバイス ソフトウェア Hewlett-Packard Co. 2013/11/28 159 MB 32.0.1180.44630
HP FWUpdateEDO2 Hewlett-Packard 2013/12/31 1.53 MB 1.2.0.0
HP Photo Creations HP 2013/12/04 14.6 MB 1.0.0.7702
HP Update Hewlett-Packard 2013/11/28 4.04 MB 5.005.002.002
i-フィルター 6.0 デジタルアーツ株式会社 2012/12/18 27.9 MB 6.00.21.0100
Intel(R) Control Center Intel Corporation 1.2.1.1008
Intel(R) Management Engine Components Intel Corporation 8.1.0.1281
Intel(R) Network Connections Drivers Intel 2013/12/04 916 KB 17.3
Intel(R) Processor Graphics Intel Corporation 10.18.10.3308
Intel(R) Rapid Storage Technology Intel Corporation 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2013/12/04 2.0.0.37149
Intel(R) WiDi Intel Corporation 2013/07/02 121 MB 3.5.40.0
iTunes Apple Inc. 2014/10/16 245 MB 12.0.1.26
Lagarith Lossless Codec (1.3.24) 2013/08/24 931 KB
LAPLINK ヘルプデスク クライアント Intercom, Inc. 2013/12/04 2.02
LoiLoScope 2 LoiLo inc 2012/12/18 166 MB 2.5.2.0
Microsoft Office Home and Student 2013 - en-us Microsoft Corporation 2014/11/21 15.0.4667.1002
Microsoft Office Live Meeting 2007 Microsoft Corporation 2013/12/11 52.3 MB 8.0.6362.215
Microsoft SkyDrive Microsoft Corporation 2014/01/05 26.6 MB 17.0.2015.0811
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/12/18 4.89 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2013/07/02 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2012/12/18 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/12/18 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 4.61 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/19 17.1 MB 12.0.21005.1
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 2013/08/09 2.90 MB 4.30.2117.0
music.jp PLAY 4.0 Ventis Media Inc. 2012/12/18 60.9 MB 4.0
Octoshape add-in for Adobe Flash Player 2014/02/23
OEM Registration Program TOSHIBA CORPORATION 2013/07/02 516 KB 1.1.0
Oracle VM VirtualBox 4.3.12 Oracle Corporation 2014/07/31 153 MB 4.3.12
P-Study System 8 2014/02/01
PCあんしん点検ユーティリティ TOSHIBA Corporation 2013/07/02 1.48 MB 1.1.6.0
PC引越ナビ 東芝情報機器株式会社 2012/12/18 12.7 MB 5.0.2
Pixia ver. 6 Isao Maruoka 2014/11/01 31.1 MB 6.01.0100
PL-2303 USB-to-Serial Prolific Technology INC 2013/07/02 1.7.0
PlayReady PC Runtime x86 Microsoft Corporation 2012/12/18 1.65 MB 1.3.0
Premium Sound HD DTS, Inc. 2013/07/02 1.74 MB 1.12.6000
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
RealPlayer Cloud RealNetworks 2014/11/26 91.7 MB 17.0.15
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2013/12/04 6.0.1.6794
RICOH Media Driver v2.23.17.01 RICOH 2013/07/02 2.23.17.01
RightsNetwork Media Plug-In RightsNetwork 1.0.12.14
Roxio Creator LJ Roxio 2013/12/04 260 MB 12.2.33.5
RZスイート express CyberLink Corp. 2013/07/02 131 MB 1.8.01030
Skype Click to Call Microsoft Corporation 2014/08/07 6.91 MB 7.3.16540.9015
Skype(TM) 6.21 Skype Technologies S.A. 2014/10/20 26.9 MB 6.21.104
Start Menu 8 IObit 2014/12/10 26.7 MB 1.6.0.0
Surfing Protection IObit 2014/06/08 11.9 MB 1.0
Synaptics Pointing Device Driver Synaptics Incorporated 2014/06/09 46.4 MB 17.0.8.2
Tapur 5.3.0.111 tapur.com 2013/08/24 9.33 MB
TOSHIBA Active Display Off Toshiba Corporation 2013/07/02 17.2 MB 1.2.0.0
TOSHIBA Desktop Apps Menu Toshiba Corporation 2012/12/18 464 KB 1.00.09.6405
TOSHIBA eco Utility Toshiba Corporation 2013/07/02 20.4 MB 2.0.1.6408
TOSHIBA Function Key Toshiba Corporation 2013/07/02 31.3 MB 1.00.6626.6409
TOSHIBA HDD Protection Toshiba Corporation 2013/07/02 20.9 MB 2.5.1.1
TOSHIBA Manual TOSHIBA CORPORATION 2013/07/02 27.5 MB 0130.01.3001
TOSHIBA PalaDouga TOSHIBA CORPORATION 2012/12/18 140 MB 2013.0101.0002
TOSHIBA Password Utility Toshiba Corporation 2012/12/18 3.86 MB 3.01.01.6403
TOSHIBA PC Health Monitor Toshiba Corporation 2013/07/02 56.9 MB 1.8.17.640104
TOSHIBA Recovery Media Creator Toshiba Corporation 2012/12/18 2.2.2.54043007
TOSHIBA Resolution+ Plug-in for Windows Media Player TOSHIBA Corporation 2013/07/02 1.2.2.00
TOSHIBA Speech Synthesis TOSHIBA CORPORATION 2013/07/02 65.0 MB 1.5.1.7
TOSHIBA System Driver Toshiba Corporation 2013/07/02 5.52 MB 1.00.0015
TOSHIBA System Settings Toshiba Corporation 2013/07/02 9.87 MB 1.00.0002.32002
TOSHIBA VIDEO PLAYER Toshiba Corporation 2013/07/02 48.3 MB 5.1.0.21-B
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/30 7.60 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/01/30 40.3 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/01/30 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/09/22 17.0 KB 16.0.1016.1
VLC media player VideoLAN 2014/12/13 2.1.5
Windows Media Encoder 9 Series 2013/12/04
Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702) Broadcom Corporation 2013/12/04 10/05/2012 12.0.0.2702
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2014/10/19 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2014/10/19 02/06/2007 3.1
いつもNAVI PC ZENRIN 2012/12/18 6.1.2
おたすけナビ 東芝情報機器株式会社 2012/12/18 20.9 MB 7.0.2
ぱらちゃんV2.3 TOSHIBA Corporation 2012/12/18 33.7 MB 2.3.16
インテル(R) PROSet/Wireless WiMAX ソフトウェア Intel Corporation 2013/07/02 14.8 MB 7.50.0000
インテル® PROSet/Wireless WiFi ソフトウェア Intel Corporation 2013/07/02 165 MB 15.05.6000.1620
ウイルスバスター クラウド トレンドマイクロ株式会社 2014/10/26 450 MB 8.0
東芝ジェスチャコントローラ TOSHIBA CORPORATION 2013/07/02 25.1 MB 3.1.6.0
秀丸エディタ (8.31) 有限会社サイトー企画 2013/12/04 8.31
筆ぐるめ 20 富士ソフト株式会社 2012/12/18 602 MB 20.00.0003
製品改善のための調査 HP ENVY 4500 series Hewlett-Packard Co. 2013/11/28 9.57 MB 32.0.1180.44630

こんばんは。
ここの管理人の悪代官です。

>ネット検索中にJava，Flashのアップデートお知らせ，セキュリティの警告が頻繁にでるようになり困っております

はい、ログも見せてもらいましたが、他の方の相談でも毎度おなじみの偽Java等の騙りですね。
Javaが現在インストールされてないのにアップデートを勧めるとはお笑い草です。
自分としてはこんなのよりもメイド幼なじみのほうがいいんですが（←ご主人様、病院逝ってください

ただ、本題以外にも色々と問題点が見えてます。
RightsNetwork Mediaや、素性不明の怪しいものもあります。
>O23 - Service: BbleOsphing - Unknown owner - C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe

これの素性次第では最悪リカバリでの対処してもらう可能性もあるので、必要なデータ等は最優先でバックアップしておいてください。
念のためお聞きしますが、上記のアプリをご自身で入れた覚えはありますか？
あればどこから入手したどういうものかを次回レスで教えてください。

まず最初にお伝えしておきます。
見てのとおり現在相談者さん多数のため、相談受けてから皆さんに順番にレスできるまで、毎回1日かそれ以上かかる可能性もあるので、すみませんがご了承ください。

では以下の説明をよく見てから、順番に作業をお願いします。
既に準備した物もあるはずですが、一応説明を再度見ておいてください。

隠しファイルと拡張子を表示設定にしてください(やり方↓）
http://pasofaq.jp/windows/mycomputer/hiddenfile.htm
http://support.microsoft.com/kb/978449/ja

下記のツールをダウンロードして、基本の使い方を把握しておいてください。
ただし、配布サイトで他のアプリをダウンロードしろと勧めてくるような広告も出てきたらそれらは絶対にクリックしないでください。
「ATF-Cleaner」（通称：ATF）
説明↓
http://freesoft.tvbok.com/freesoft/pc_system/atf-cleaner.html
ダウンロード↓
http://www.atribune.org/index.php?option=com_content&task=view&id=25&Itemid=25
中央の赤い文字がダウンロードリンクです。
片付けるときはファイルを直接削除してください。

Iobit Uninstaller（通称・IU）
公式ページ↓
http://jp.iobit.com/free/iou.html
解説↓
http://www.japan-secure.com/entry/blog-entry-282.html
片付けのときは以下のサイト様の説明を参考に、
http://www.japan-secure.com/entry/blog-entry-396.html
コントロールパネルからアンインストールですが、ポータブル版をお使いの場合はフォルダごと削除してください。
また、2014年ごろからIUはスポンサーサイトの広告も1週間に1度ほどのペースで表示するようになりました。
以下のページのような広告が表示されても慌てずに、一度PC再起動すればあとはまた次の週まで広告も出ないでしょう
http://okwave.jp/qa/q8644647.html

「CCleaner」（通称：CC）
説明↓
http://www.gigafree.net/system/clean/ccleaner.html
http://note.chiebukuro.yahoo.co.jp/detail/n178757
ダウンロード↓
http://www.piriform.com/ccleaner/download/standard
最新バージョンをダウンロードしてください。なお、インストール時におまけのアプリも勧めてくることがありますが、それらはチェック外してインストールは避けてください。
片付けるときはアンインストールしてください。

ここで重要な注意です。
CCは本来は高い性能を持つメンテナンスソフトですが、間違った使い方すると
【Windowsにダメージを与えてしまうおそれもある】
ので、ここでは解析ツールとしてのみ使います。
説明をしっかり読んで、自分が指示した以外の操作はしないように。

「AdwCleaner」（通称：AC）
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンです。アクセスしてファイルをデスクトップにでも保存しておいてください。
片付けるときは起動後に「uninstall」ボタンを押せば自動で削除されます。

準備できたら作業開始です。

少なくとも下記のアプリは旧バージョンです。
>Skype(TM) 6.21 Skype Technologies S.A. 2014/10/20 26.9 MB 6.21.104
各種アプリの更新を怠っただけでも、脆弱性を悪用されて深刻な感染はあっさり起きます。
使うなら最新版に更新してください。使わないアプリならアンインストールが安全です。
他にも旧バージョンないか調べて、あれば同様に更新するか、アンインストールしてください。
それと、下記のアプリはまだ使用期限残ってますか？
>i-フィルター 6.0 デジタルアーツ株式会社 2012/12/18 27.9 MB 6.00.21.0100
期限切れていれば有料で更新するか、不要ならアンインストールかの２択になります。

ここでWindowsの標準機能である「システムの復元」での復元ポイントをひとつ、手動で作成しておいてください。
これはこの後の作業で、間違って対象外のものをいじってしまうとそれだけでWindowsに深刻な不具合を起こすこともあるので、万一の際に復元可能にしておくためです。
http://windows.microsoft.com/ja-jp/windows7/create-a-restore-point

次にここで一度ACを起動してください。
起動するとまず定義の更新が行われるはずなので、更新だけしてから、それができたらACは一旦終了してください。
ここではスキャンもしなくていいです。

今度はPCをセーフモードで起動してください（やり方↓）
http://freesoft.tvbok.com/win8/tips-and-tools/safemode.html

セーフモードでIUを使って、下記をアンインストールしてください。
>AVG SafeGuard toolbar AVG Technologies 2014/12/10 18.1.9.799

>GOM Player Gretech Corporation 2014/12/02 2.2.64.5211

>Octoshape add-in for Adobe Flash Player 2014/02/23

>RightsNetwork Media Plug-In RightsNetwork 1.0.12.14

>Surfing Protection IObit 2014/06/08 11.9 MB 1.0

IU起動して、該当のアプリを選択して、アンインストール→パワースキャンの順にスキャンして、残骸ファイル、レジストリも表示されたらそれにチェックして削除です。
なお、IUは削除後ごくまれに異常が出ることもあるので、もし異常があればWindows標準のシステムの復元で、削除時の復元ポイントに戻してください。

セーフモードのままでATFを起動して、「Recycle bin」（ゴミ箱）以外の箇所全部にチェックしてから、下部の「Empty selected」を押してください。
これでPC内の一時ファイル等のゴミが掃除できます。
ゴミ箱を空にしないのは、もし間違って安全なファイルを削除しても戻せるようにとの対処です。

HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、こちらが指示した以外のものは絶対にチェックを入れないでください。
>O2 - BHO: RightsPlugInBHO - {0BA28B9D-82AB-40f4-8564-55757042B002} - C:\Program Files (x86)\RightsNetwork\RightsPlugIn\Bin\RightsPlugInBHO.dll

>O3 - Toolbar: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.1.9.799\AVG SafeGuard toolbar_toolbar.dll

>O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot

>O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe"

>O23 - Service: vToolbarUpdater18.1.9 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
探しても見つからないものはスルーして進めていいです。

今度は先にも起動したACを再度起動してください。
起動したら今度は「スキャン」したあと、そのスキャン終了後に続けて「除去」を押してください。
表示された画面で「はい」を選択すると処置開始されます。

処置完了したらそこでPCを通常モードで再起動してください。

再起動後にACのあらたなログが出るので、それをデスクトップにでも保存しておいてください。
ですが、もし作業後にログが出ないorわからない場合はマイコンピュータのCドライブを開くとその直下に以下のような名前のファイルが作成されているので、それがACのログです。
>AdwCleaner[英数字].txt
同じような名前のログが複数ある時は、作成日時が作業処置時のファイルが対象のログです。

今度はCCを起動してください。
起動したら、「ツール」→」「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できるので、ログをデスクトップにでも保存しておいてください。

続いて「InternetExplorer」タブ以下の各タブも順番に開いて、そのログもとっておいてください。
最後の「コンテキストメニュー」ログもお願いします。

CCの各ログをとったらCCは終了してください。

このあとブラウザを起動して、数時間ほどPC状態を様子見したあと、あらたにHJTとCCでのインストール情報ログを取り直してください。

取り直した両ログと、ACとCCの各ログを返信に貼って、状態報告とともにレスください。
それらを見てから続きの作業を指示します。

先に確認したO23エントリの素性や、作業途中の状態によっては安全優先の意味で、途中ででも作業を止めてリカバリをお勧めするかもしれないので、そのこともご了承ください

悪代官様，

023のBbleOsphing.exeについては身に覚えがありません。

Skypeはアップデートし，i-フィルタは削除しました。その他，返信の日時，リカバリ等は了解いたしました。

現状ですが，前の板で指示された内容を実行後もFlash playerアップデートのお知らせは継続してでます。しかし，お知らせしていなかったのですが，Googleで検索後に表示される広告（検索結果の上に出てくるヤツ）が殆どでなくなりました。


加えて，大変申し訳ないのですが　追加で補足させてください。問題が発生してからHJT，CCでスキャンをするまでにJavaとChromeをIObitを使ってアンインストールしました。当初，問題を認識していなかったので，JAVAの警告が出た後，
誤ってJAVAインストールのプログラムをクリックしています。の後，JAVAに関する警告文が頻繁にでてきたので，おかしいと思い，対応方法を検索していると，ミルク王子さんのネットセキュリティブログの記事（2014/11/20）を見つけ，IObitというソフトがあることをしり，このソフトを使ってJAVAをアンインストールしました。次に悪代官さんの掲示板を見つけ，Chromeの危険性を警鐘されていたのでこちらも同じソフトを使って削除しました。そう言えば，JAVAを削除後は，Flashのアラートが出てきます…。

以下，Logを提示します。

-----HJT log----
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:06:23, on 2014/12/17
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
C:\Program Files (x86)\Tapur\tapmgr.exe
C:\Program Files (x86)\Tapur\Tapur.exe
C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe
C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\Hidemaru\Hidemaru.exe
C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\yamabet\Desktop\Spy\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Trend Micro Osprey BHO - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MediaSyncAgent] "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
O4 - HKLM\..\Run: [LLHDUSER] "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [TKRTL] "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
O4 - HKLM\..\Run: [CLMSTrayIcon] "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKCU\..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [TOSHIBA Active Display Off] "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Dropbox.lnk = yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: PcHusen.lnk = C:\PcHusen\PcHusen.exe
O4 - Startup: 秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BbleOsphing - Unknown owner - C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CLHNServiceForToshiba - CyberLink Corp. - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink MediaSync Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
O23 - Service: CyberLink MediaSync Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
O23 - Service: インテル(R) PROSet/Wireless WiMAX Red Bend デバイス管理サービス (DMAgent) - Red Bend Ltd. - C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LLHDClient - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe
O23 - Service: LLHDCloader - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OEMRegistrationProgram - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: Toshiba Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
O23 - Service: Toshiba Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: インテル(R) PROSet/Wireless WiMAX サービス (WiMAXAppSrv) - Intel(R) Corporation - C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 17344 bytes




-----CC Install ----
+Lhaca 2013/12/04
Adobe AIR Adobe Systems Incorporated 2014/11/26 15.0.0.356
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/20 205 MB 11.0.09
Apple Application Support Apple Inc. 2014/10/16 95.2 MB 3.1
Apple Mobile Device Support Apple Inc. 2014/10/16 19.5 MB 8.0.5.6
Apple Software Update Apple Inc. 2013/10/13 2.38 MB 2.1.3.127
Bonjour Apple Inc. 2013/10/13 2.00 MB 3.0.0.10
CCleaner Piriform 2014/12/16 5.00
Cisco Connect Cisco Consumer Products LLC 2013/12/04 1.4.12334.0
Corel VideoStudio X5 Corel Corporation 2013/12/04 609 MB 15.0.1.29
CyberLink MediaShow 6 CyberLink Corp. 2013/07/02 672 MB 6.0.4528
CyberLink MediaSync CyberLink Corp. 2012/12/18 218 MB 1.0.1128.04
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2012/12/18 8.47 MB 1.5.1.4
Dropbox Dropbox, Inc. 2014/12/16 3.0.3
ebi.BookReader4 eBOOK Initiative Japan Co., Ltd. 2012/12/18 11.5 MB 4.01.27
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2012/12/18 4.0.1.27_MSI_T
Evernote v. 5.2.1 Evernote Corp. 2014/03/26 207 MB 5.2.1.3108
Garmin Express Garmin Ltd or its subsidiaries 2014/10/19 115 MB 3.2.18.0
Google Toolbar for Internet Explorer Google Inc. 2014/12/16 7.5.5111.1712
HP ENVY 4500 series ヘルプ Hewlett Packard 2013/11/28 8.35 MB 30.0.0
HP ENVY 4500 series ベーシック デバイス ソフトウェア Hewlett-Packard Co. 2013/11/28 159 MB 32.0.1180.44630
HP FWUpdateEDO2 Hewlett-Packard 2013/12/31 1.53 MB 1.2.0.0
HP Photo Creations HP 2013/12/04 14.6 MB 1.0.0.7702
HP Update Hewlett-Packard 2013/11/28 4.04 MB 5.005.002.002
Intel(R) Control Center Intel Corporation 2013/07/02 1.2.1.1008
Intel(R) Management Engine Components Intel Corporation 2013/07/02 8.1.0.1281
Intel(R) Network Connections Drivers Intel 2013/12/04 916 KB 17.3
Intel(R) Processor Graphics Intel Corporation 2013/12/04 10.18.10.3308
Intel(R) Rapid Storage Technology Intel Corporation 2014/12/17 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2013/12/04 2.0.0.37149
Intel(R) WiDi Intel Corporation 2013/07/02 121 MB 3.5.40.0
IObit Uninstaller IObit 2014/12/17 4.1.5.30
iTunes Apple Inc. 2014/10/16 245 MB 12.0.1.26
Lagarith Lossless Codec (1.3.24) 2013/08/24 931 KB
LAPLINK ヘルプデスク クライアント Intercom, Inc. 2013/12/04 2.02
LoiLoScope 2 LoiLo inc 2012/12/18 166 MB 2.5.2.0
Microsoft Office Home and Student 2013 - en-us Microsoft Corporation 2014/11/21 15.0.4667.1002
Microsoft Office Live Meeting 2007 Microsoft Corporation 2013/12/11 52.3 MB 8.0.6362.215
Microsoft Silverlight Microsoft Corporation 2014/12/17 50.7 MB 5.1.30514.0
Microsoft SkyDrive Microsoft Corporation 2014/01/05 26.6 MB 17.0.2015.0811
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/07/02 4.39 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2013/07/02 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2012/12/18 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/12/18 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 4.61 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/19 17.1 MB 12.0.21005.1
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 2013/08/09 2.90 MB 4.30.2117.0
music.jp PLAY 4.0 Ventis Media Inc. 2012/12/18 60.9 MB 4.0
OEM Registration Program TOSHIBA CORPORATION 2013/07/02 516 KB 1.1.0
Oracle VM VirtualBox 4.3.12 Oracle Corporation 2014/07/31 153 MB 4.3.12
P-Study System 8 2014/02/01
PCあんしん点検ユーティリティ TOSHIBA Corporation 2013/07/02 1.48 MB 1.1.6.0
PC引越ナビ 東芝情報機器株式会社 2012/12/18 12.7 MB 5.0.2
Pixia ver. 6 Isao Maruoka 2014/11/01 31.1 MB 6.01.0100
PL-2303 USB-to-Serial Prolific Technology INC 2013/07/02 1.7.0
PlayReady PC Runtime x86 Microsoft Corporation 2012/12/18 1.65 MB 1.3.0
Premium Sound HD DTS, Inc. 2013/07/02 1.74 MB 1.12.6000
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
RealPlayer Cloud RealNetworks 2014/11/26 91.7 MB 17.0.15
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2013/12/04 6.0.1.6794
RICOH Media Driver v2.23.17.01 RICOH 2013/07/02 2.23.17.01
Roxio Creator LJ Roxio 2013/12/04 260 MB 12.2.33.5
RZスイート express CyberLink Corp. 2013/07/02 131 MB 1.8.01030
Skype Click to Call Microsoft Corporation 2014/08/07 6.91 MB 7.3.16540.9015
Skype(TM) 7.0 Skype Technologies S.A. 2014/12/17 47.7 MB 7.0.102
Start Menu 8 IObit 2014/12/10 26.7 MB 1.6.0.0
Synaptics Pointing Device Driver Synaptics Incorporated 2014/06/09 46.4 MB 17.0.8.2
Tapur 5.3.0.111 tapur.com 2013/08/24 9.33 MB
TOSHIBA Active Display Off Toshiba Corporation 2013/07/02 17.2 MB 1.2.0.0
TOSHIBA Desktop Apps Menu Toshiba Corporation 2012/12/18 464 KB 1.00.09.6405
TOSHIBA eco Utility Toshiba Corporation 2013/07/02 20.4 MB 2.0.1.6408
TOSHIBA Function Key Toshiba Corporation 2013/07/02 31.3 MB 1.00.6626.6409
TOSHIBA HDD Protection Toshiba Corporation 2013/07/02 20.9 MB 2.5.1.1
TOSHIBA Manual TOSHIBA CORPORATION 2013/07/02 27.5 MB 0130.01.3001
TOSHIBA PalaDouga TOSHIBA CORPORATION 2012/12/18 140 MB 2013.0101.0002
TOSHIBA Password Utility Toshiba Corporation 2012/12/18 3.86 MB 3.01.01.6403
TOSHIBA PC Health Monitor Toshiba Corporation 2013/07/02 56.9 MB 1.8.17.640104
TOSHIBA Recovery Media Creator Toshiba Corporation 2012/12/18 2.2.2.54043007
TOSHIBA Resolution+ Plug-in for Windows Media Player TOSHIBA Corporation 2013/07/02 1.2.2.00
TOSHIBA Speech Synthesis TOSHIBA CORPORATION 2013/07/02 65.0 MB 1.5.1.7
TOSHIBA System Driver Toshiba Corporation 2013/07/02 5.52 MB 1.00.0015
TOSHIBA System Settings Toshiba Corporation 2013/07/02 9.87 MB 1.00.0002.32002
TOSHIBA VIDEO PLAYER Toshiba Corporation 2013/07/02 48.3 MB 5.1.0.21-B
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/09/22 4.53 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/09/22 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/01/30 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/09/22 17.0 KB 16.0.1016.1
VLC media player VideoLAN 2014/12/13 2.1.5
Windows Media Encoder 9 Series 2013/12/04
Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702) Broadcom Corporation 2013/12/04 10/05/2012 12.0.0.2702
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2014/10/19 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2014/10/19 02/06/2007 3.1
いつもNAVI PC ZENRIN 2012/12/18 6.1.2
おたすけナビ 東芝情報機器株式会社 2012/12/18 20.9 MB 7.0.2
ぱらちゃんV2.3 TOSHIBA Corporation 2012/12/18 33.7 MB 2.3.16
インテル(R) PROSet/Wireless WiMAX ソフトウェア Intel Corporation 2013/07/02 14.8 MB 7.50.0000
インテル® PROSet/Wireless WiFi ソフトウェア Intel Corporation 2013/07/02 165 MB 15.05.6000.1620
ウイルスバスター クラウド トレンドマイクロ株式会社 2014/10/26 450 MB 8.0
東芝ジェスチャコントローラ TOSHIBA CORPORATION 2013/07/02 25.1 MB 3.1.6.0
秀丸エディタ (8.31) 有限会社サイトー企画 2013/12/04 8.31
筆ぐるめ 20 富士ソフト株式会社 2012/12/18 602 MB 20.00.0003
製品改善のための調査 HP ENVY 4500 series Hewlett-Packard Co. 2013/11/28 9.57 MB 32.0.1180.44630


-----AC log-----------
補足：一度目が「メモリがReadになることができない」というエラーが起きたので，2回目のLogを提示しています。


# AdwCleaner v4.105 - レポート作成日 17/12/2014 時間 22:11:36
# 更新日 08/12/2014 更新元 Xplode
# Database : 2014-12-08.2 [Local]
# オペレーティングシステム : Windows 8.1 (64 bits)
# ユーザー名 : yamabet - YAMABE-PC
# プログラムの実行場所 : C:\Users\yamabet\Desktop\Spy\AdwCleaner.exe
# オプション : 除去

***** [ サービス ] *****


***** [ ファイル / フォルダ ] *****


***** [ タスク ] *****


***** [ ショートカット ] *****


***** [ レジストリ ] *****


***** [ Webブラウザ ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v

[C:\Users\koyu\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : bmiabdepfhhiieiipmeecdmeljggmfee
[C:\Users\koyu\AppData\Local\Google\Chrome\User Data\Default\preferences] - 除去 [Extension] : lifbcibllhkdhoafpjfnlhfpfgnpldfl
[C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11411&l=dis&pf=V7&p2=%5EBBJ%5EOSJ000%5EYY%5EUS&gct=&itbv=12.15.1.20&doi=2014-08-01&apn_uid=68D6AEC7-28B4-4A24-9F15-3B7FC498E129&apn_ptnrs=BBJ&apn_dtid=%5EOSJ000%5EYY%5EUS&apn_dbr=cr_36.0.1985.125&psv=&pt=tb&trgb=CR&q={searchTerms}
[C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Web Data] - 除去 [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [8483 octets] - [17/12/2014 22:06:27]
AdwCleaner[R1].txt - [1655 octets] - [17/12/2014 22:10:40]
AdwCleaner[S0].txt - [7254 octets] - [17/12/2014 22:08:33]
AdwCleaner[S1].txt - [1571 octets] - [17/12/2014 22:11:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1631 octets] ##########




-----CC windows log----
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe




-----CC IE log----
有効 Extension Evernote 5 に追加 C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
有効 Extension HP Smart Print Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
有効 Extension Skype Click to Call settings Microsoft Corporation C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper Evernote extension Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll


-----CC Google Chrome log----
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Gmail 7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google スプレッドシート 1.0 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スプレッドシート 1.0 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スライド 0.8 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google スライド 0.8 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
有効 Extension Skype Click to Call 7.3.16540.9015 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0



-----CC スケジュールされたタスク log----
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Open Chrome c:\program files (x86)\Google\Chrome\Application\chrome.exe --new-window http://toolbar.avg.com/almost-done?pid=safeguard&lang=en
無効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {EA75FBA6-DBFF-4106-A9DA-6A5B4F4C71E7} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\yamabet\AppData\Local\Obrona Block Ads\Uninstaller.exe"



-----CC　テキストされたコンテクスト log----
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll

作業と報告、ご苦労様です。
追加の説明も見せていただきました。

>023のBbleOsphing.exeについては身に覚えがありません

やはりそうですか。
自分のほうでもweb検索で情報を探ってみましたが、これに該当するものはヒットしません。
名前を偽装しているせいでしょうが、それならなおのことまともなプログラムとは思えません。

>現状ですが，前の板で指示された内容を実行後もFlash playerアップデートのお知らせは継続してでます。しかし，お知らせしていなかったのですが，Googleで検索後に表示される広告（検索結果の上に出てくるヤツ）が殆どでなくなりました。

はい、現在異常が少なくなっているならその点はいいでしょう。
ではまた説明を読んでから、続きの作業をお願いします。

先の手順でCCを起動して、「Chrome」タブ内の下記を右クリックから「無効」にしたあと「エントリの削除」してください。
>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0

無効にできないものはそのまま削除でいいです。

次に「スケジュールされたタスク」タブ内の下記も同様に処置です。
>有効 Task Open Chrome c:\program files (x86)\Google\Chrome\Application\chrome.exe --new-window http://toolbar.avg.com/almost-done?pid=safeguard&lang=en
>有効 Task {EA75FBA6-DBFF-4106-A9DA-6A5B4F4C71E7} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\yamabet\AppData\Local\Obrona Block Ads\Uninstaller.exe"

次にPCをセーフモードで、HJTでスキャンして、下記のエントリがまだ残っていればそれをfixしてください。
>O23 - Service: BbleOsphing - Unknown owner - C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe
探しても見つからないときはスルーでいいです。

HJTを終了したら、マイコンピュータのCドライブを開いて、下記のフォルダを探して、見つかれば手動で削除してください。
>C:\Program Files (x86)\BbleOsphing

見つからないor削除できないときはここも飛ばしてください。

次は以下のアプリを準備してください。
Malwarebytes' Anti-Malware（通称・MBAM）
本家サイト
http://www.malwarebytes.org/

ですが、MBAMは現在安定性や動作でかなり難が出ており、普通に使っても正常にスキャンができないバグまで多発中です。
そのため本家サイトから最新版のダウンロードせず、ここではあえて旧バージョンで作業します。

旧バージョンの説明サイト↓
http://fine.tok2.com/home/heto2/0700SecurityApp/Malwarebytes/0001.htm

以下のURLからMBAMの旧バージョンをダウンロードしてください。
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
ファイル直リンです。保存しておいてください。

注）インストール時に日本語でインストールすると文字化けすることがあります。英語でインストール後に日本語化してください。
MBAM起動して「Settings」タブ→「Language」→「Japanese」で日本語化できます。

SuperAntiSpyware（通称・SAS。説明↓）
http://www.softnavi.com/superantispyware.html
本家のダウンロードサイト↓
http://www.superantispyware.com/
こちらは最新版で作業します。

アプリの準備できたら両アプリをインストールとアップデートまでしておいてください。
ただし、ここではまだスキャンはしないように。
なお、ここでMBAMの更新で「プログラム」自体は更新せず、定義だけ更新しておいてください。
プログラム本体を更新すると、バグ多発中の最新版になってしまうので、せっかく旧バージョンでインストールした意味がなくなります。

アップデートまでできたらPCをセーフモードで再起動してから、ATFを使ってゴミファイルの掃除してください。

続いてセーフモードのままMBAMとSASで順番にスキャンしてください。MBAMは「フルスキャン」です。

SASは以下の手順になります。
Scan Your Computerをクリックします。
Recommended Pre-Scan Actionsの項目のすべてにチェックを入れてください。
ただしSASは有料版でしか使えない機能もいくつかあるので、それらの箇所はチェックしなくてもいいです。
次にScanner Optionsの項目のScan inside ZIP archivesにチェックを入れてください。
その後Complete Scanをクリックしてスキャンを行ってください。
30分～1時間程度かかります。
スキャンが完了したら、Continueをクリックし、一覧を表示させます。
一覧に表示されているものすべてに×印のチェックが入っているのを確認し、
Continueをクリックします。
SASのログは画面中央の「System Tools」から「Scan logs」を開くと、
スキャンした日時のごとのログのリストが出ます。
そこで最初に処置した日時のログを選んでそれをダブルクリックすると、そのログの内容が表示されます。

MBAMでのスキャンは以下の手順で。
MBAM起動したら「スキャナー」タブから「フルスキャン」してください。
対象ドライブはCを含めて全ドライブを選択してください。

スキャン対象は全ドライブを選択（チェック）してください。時間はかかりますができるだけ細かくスキャンするためです。
順番はどちらからでもいいですが、なにか検出されたらそれを選択して「remove」（隔離）したあと、再起動を促す表示が出たらそこで一度PCを再起動してください。
もし再起動表示が出ないときは手動で再起動してください。

またMBAMスキャン終了後、「詳細を表示」を押すとその結果が表示されるはずなので、そこで「ログを保存」を押すとそのログが保存可能になります。
そのログをデスクトップにでも保存しておいてください。
このログ確認が特に重要なので、忘れないようにお願いします。

SASログ確認方法はアプリを起動して、画面中央の「System Tools」から「Scan Logs」を開くと、やはり日時ごとのリストが出るので、その中の対象日時のログを選択してダブルクリックするとそのログが表示されます。

このあと両アプリのログを返信に貼り付けて、それを状態報告とともにレスで見せてください。
最大の鍵はやはりBbleOsphingです。これが処置できるか否かが一つ目の壁ですが、HJTでfixできてもそれで処置成功とは油断できません。
まさかとは思いますが下記サイトの情報もよく見ておいてください。偽Java絡みの点からもこの種のランサムウェアのおそれも捨てきれません
http://internet.watch.impress.co.jp/docs/news/20141216_680615.html

悪代官様

Ransomについての情報ありがとうございます。厄介ですね。またまた追加で補足ですが，私は日本で購入したPCをアメリカで使用しています。なので，Ransomについては下記のサイトを参照しました。
アメリカが一番の攻撃国らしいですし…。

http://www.symantec.com/connect/blogs/fake-adobe-flash-update-installs-ransomware-performs-click-fraud



そして，下記の記述を見つけました。

>The attacker’s main goal is to make sure that a successful installation occurs, and presents two options to the user for maximum return.
>Option 1 is a pop-up message that requests the user to download a file named flash_player_updater.exe.
>Option 2 is the “Download Now” button that requests the user to download a file named update_flash_player.exe.

上記，Linkに提示されているFlashのInstall画面については似ているような気もしますし，違うような気もします。正直判断がつきませんが，Ransomの可能性も考えてファイルのバックアップを進めます。Good newsとして，JAVAの更新案内ボタンは押しましたものの，Flashは無視していますので上記のオプションに記載されている.exeファイルはインストールされていないと仮定できると考えています（自分の希望込です）。上記，Linkで説明しているFBIのページは今のところ，出ていません。



ところで，下記の作業は「Some of the selected items cannot be changed as they are protected by the browser」という表示が出て両方とも無効，削除ができませんでした。

> 先の手順でCCを起動して、「Chrome」タブ内の下記を右クリックから「無効」にしたあと「エントリの削除」してください。
>>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0




加えて，悪代官様が懸念されていた023（BbleOsphing）のため，下記の操作を行った後にネット障害が発生しております。IEでは「プロキシサーバーに対応していない」とでてきて繋がりません。
Skypeもつながりません。ただし，他のPCはネットにつながるので対処中のPC特有の問題だと思います。一応，別のPCでSAS，SBAMをダウンロードし，アップデートしていない版でスキャンを行いました。この書き込みも別のPCで行っております。上記のようにCCのChromeのタブでは対応できなかったこと，加えて，同じCC内の「スケジュールされたタスク」では対象物が何故か見つからなかったので実行していません。なのでネット障害は023の対応が起因していると考えられます。

>次にPCをセーフモードで、HJTでスキャンして、下記のエントリがまだ残っていればそれをfixしてください。
>>O23 - Service: BbleOsphing - Unknown owner - C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe


これは復元ポイント（でしたっけ?）で回復させたほうが宜しいのでしょうか。それともリカバリでしょうか??　素人でもうしわけないのですがアドバイスを頂ければ幸いです。

一応，バージョンアップしていないSAS，SBAMで実施したスキャン結果を下記に提示します。

MBAM log-----------
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.04.04.07

Windows 8 x64 NTFS (Safe Mode)
Internet Explorer 11.0.9600.17498
yamabet :: YAMABE-PC [administrator]

2014/12/18 21:53:25
mbam-log-2014-12-18 (21-53-25).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 479842
Time elapsed: 40 minute(s), 11 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Windows\WinSxS\x86_microsoft-windows-atl_31bf3856ad364e35_6.3.9600.16384_none_3fc0044d754c0225\atl.dll (Trojan.FakeMS) -> Quarantined and deleted successfully.
C:\Windows\WinSxS\x86_microsoft-windows-vcm-core-codecs_31bf3856ad364e35_6.3.9600.16384_none_01428598f4095f36\iccvid.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

(end)


SAS log-------------------------
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/18/2014 at 09:32 PM

Application Version : 6.0.1168
Database Version : 11668

Scan type : Complete Scan
Total Scan Time : 00:10:00

Operating System Information
Windows 8.1 64-bit (Build 6.03.9600)
UAC Off - Administrator

Memory items scanned : 319
Memory threats detected : 0
Registry items scanned : 47935
Registry threats detected : 0
File items scanned : 28874
File threats detected : 192

Adware.Tracking Cookie
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J116E6FS.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J116E6FS.txt [ /ad-v.jp ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\68MASEBR.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\68MASEBR.txt [ /bs.serving-sys.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\0T0KGLDW.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\0T0KGLDW.txt [ /imrworldwide.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\RKSOAN03.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\RKSOAN03.txt [ /adv.addeluxe.jp ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\T4LX0CDD.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\T4LX0CDD.txt [ /ads.p161.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\TKA9OSDB.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\TKA9OSDB.txt [ /ad.mlnadvertising.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\F66GGJ9B.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\F66GGJ9B.txt [ /pornative.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\L1AUP52Q.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\L1AUP52Q.txt [ /doubleclick.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\MFIKJUM3.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\MFIKJUM3.txt [ /burstnet.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2YRG1ZBD.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2YRG1ZBD.txt [ /revsci.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\35IPK880.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\35IPK880.txt [ /tacoda.at.atwola.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WMOT317U.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WMOT317U.txt [ /ads.pointroll.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ND84LI2J.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ND84LI2J.txt [ /ads.yahoo.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ZQHW64IP.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ZQHW64IP.txt [ /amazon-adsystem.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IHPU3FAX.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IHPU3FAX.txt [ /eyeviewads.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\V02GOJMX.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\V02GOJMX.txt [ /app.videostat.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\O4BD82KG.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\O4BD82KG.txt [ /basebanner.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\DCYOYSXE.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\DCYOYSXE.txt [ /ads.contextweb.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5XT3N05Z.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5XT3N05Z.txt [ /3acwn.trackvoluum.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\UQM2NOTT.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\UQM2NOTT.txt [ /2o7.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\18VJES4Y.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\18VJES4Y.txt [ /ads.ibtracking.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ESSKSHON.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ESSKSHON.txt [ /friendfinder.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5G81675L.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5G81675L.txt [ /casalemedia.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XOJRAWNN.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XOJRAWNN.txt [ /mmstat.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\OLNRA1E2.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\OLNRA1E2.txt [ /adtechus.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\HV1PDXQF.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\HV1PDXQF.txt [ /www.burstnet.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\V48FS7YZ.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\V48FS7YZ.txt [ /ads.betweendigital.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IEZ6E6B0.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IEZ6E6B0.txt [ /n124adserv.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\4AKCA0JH.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\4AKCA0JH.txt [ /bs.serving-sys.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\6J2E8K58.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\6J2E8K58.txt [ /exoclick.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7X3OZD91.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7X3OZD91.txt [ /c.atdmt.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XRYSBVVG.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XRYSBVVG.txt [ /ads.undertone.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J1YAHD7G.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J1YAHD7G.txt [ /pro-market.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8PYH5HFE.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8PYH5HFE.txt [ /at.atwola.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3NSE0WKX.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3NSE0WKX.txt [ /onclickads.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\BYB4TQQA.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\BYB4TQQA.txt [ /ads.stickyadstv.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\RN1G7UXD.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\RN1G7UXD.txt [ /www.googleadservices.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2SK15GQ5.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2SK15GQ5.txt [ /www.googleadservices.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\S0222DFD.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\S0222DFD.txt [ /247realmedia.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ETHWKUI9.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ETHWKUI9.txt [ /track.adform.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\CQ2WX7HW.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\CQ2WX7HW.txt [ /adultvideo.fc2master.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\BBP7JXZL.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\BBP7JXZL.txt [ /ads.adsrvmedia.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\EVEYKQMS.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\EVEYKQMS.txt [ /adv.gpm-digital.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\34SREBYH.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\34SREBYH.txt [ /ero-advertising.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IAWEW4Q7.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\IAWEW4Q7.txt [ /advertising.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\D9YMIWNL.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\D9YMIWNL.txt [ /ads.pubmatic.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ZP5SLMO3.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\ZP5SLMO3.txt [ /atdmt.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\1UPB76BM.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\1UPB76BM.txt [ /yadro.ru ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\UBZW2XK9.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\UBZW2XK9.txt [ /zedo.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3IFU35ZN.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3IFU35ZN.txt [ /interclick.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XZHLWD16.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XZHLWD16.txt [ /www.pornative.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8BBBO8TB.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8BBBO8TB.txt [ /xxx-video.us ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WL1UDXWZ.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WL1UDXWZ.txt [ /userporn.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\HU7NJM75.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\HU7NJM75.txt [ /mediaplex.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\G02EFMOX.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\G02EFMOX.txt [ /rambler.ru ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\FOQTDTF8.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\FOQTDTF8.txt [ /ad.dmm.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\SYJLJ1SV.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\SYJLJ1SV.txt [ /survey.g.doubleclick.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XBB41SGF.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\XBB41SGF.txt [ /tns-counter.ru ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\YYOYJ6T5.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\YYOYJ6T5.txt [ /tracker.willtrack.info ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\JHB5EUQ2.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\JHB5EUQ2.txt [ /ads.creative-serving.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Z2PZXCMR.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Z2PZXCMR.txt [ /serving-sys.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J3PD0Z8N.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\J3PD0Z8N.txt [ /track.pxxtz.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8NULMURU.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\8NULMURU.txt [ /tracking.okwave.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\MJW1R8S4.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\MJW1R8S4.txt [ /network.realmedia.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7N9DYCTN.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7N9DYCTN.txt [ /videoclick.ru ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\30C39O5N.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\30C39O5N.txt [ /pointroll.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\JANG7R1W.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\JANG7R1W.txt [ /cnzz.mmstat.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\E88EYQG5.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\E88EYQG5.txt [ /adtechjp.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\E867ABT0.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\E867ABT0.txt [ /adlegend.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WNFCNY3C.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\WNFCNY3C.txt [ /otclick-adv.ru ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2H9BJ31B.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2H9BJ31B.txt [ /adform.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\LU3G87L5.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\LU3G87L5.txt [ /smartadserver.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\GLSHH2D1.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\GLSHH2D1.txt [ /ad.maist.jp ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3CR5895C.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\3CR5895C.txt [ /track.affiliate-b.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Y74D805G.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Y74D805G.txt [ /ads.altitude-arena.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\TABGFCDS.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\TABGFCDS.txt [ /c1.adform.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2KA2PO2H.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2KA2PO2H.txt [ /ad.360yield.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Y6CR3L4P.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\Y6CR3L4P.txt [ /ad.auditude.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\S621O1F2.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\S621O1F2.txt [ /ad.propellerads.com ]
.doubleclick.net [ C:\USERS\KOYU\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\KOYU\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\KOYU\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.algoclicks.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
bridge.ame.admarketplace.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.admarketplace.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
harunaissextoy.blog.fc2.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtechus.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.mlnadvertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyeviewads.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adlegend.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.x4cgf.trackvoluum.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revenuemantra.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.samtrack.info [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.samtrack.info [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.basebanner.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
track.adform.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
bs.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
in.getclicky.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
c1.adform.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adform.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
bs.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
statse.webtrendslive.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.cloudtracked.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.cloudtracked.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.googleadservices.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.s7exo.trackvoluum.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.n124adserv.com [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\YAMABET\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 2\COOKIES ]

============
End of Log
============

レスが遅くなってすみません。

>BbleOsphingを削除したらネットにつながらなくなりました…。

>私は日本で購入したPCをアメリカで使用しています

とすると、fixしたエントリは現地プロバイダ絡みでしょうか？
海外でも正規プロバイダのエントリなら検索で情報が出ないのも妙ですが、まずはこれを修復してみましょう。
以下の説明を読んでから、順番に作業してください。

まずインターネットオプションの「接続」タブから「LANの設定」を開いてください。

そこで「LANにプロキシサーバーを使用する」欄にチェックが入っていたらそれを外してください。

このあと一度IEを終了後に再度起動して、それで復旧すれば上記の設定改ざんが原因ということになります。
ですがプロキシ設定に変更がなければここはいじらずにそのままにしておいていいです。

上記の確認で改善できれば以下の作業は不要ですが、改善できないときは次の作業をお願いします。

またHJTを起動して、メインメニュー画面を開いてください（添付画像参照）。

そこで上から3段目の「View the list of backups」を押すと、先にHJTでfixしたエントリのリストが表示されます。

そこでfixしたエントリ全部にチェックを入れて「Restore」を押すと、fixしたものが復元されます。

復元できたらまた一度PC再起動後、IEを起動して復旧の有無を確認後にレスをお願いします

悪代官様，

ありがとうございます。最初のLANの設定を対応すると再度，繋がるようになりました。

私はCOMCASTというプロバイダを使用しています。ネットへの接続ですが，プロバイダから提供された機器にCISCOのLinksys N600というルータを接続し，本PCに無線経由でネットを接続しています。初期設定の時に，この機器とPCをLANで接続しましたので，その際にBbleOsphingがインストールされた可能性はありますが，よくわかりません。申し訳ありません。
加えて，ネット接続の際はルータのセットアップに必要なソフトもインストールしましたがその際に「BbleOsphing」というソフトはなかったと記憶しています。

いずれにしろ復旧しました。ありがとうございました。前に指示を頂いた，MBAM，SASの両方をUpdate（MBAMは定義ファイルのみ）を行い，スキャンしたファイルを参考までに下記に示します。先程スキャンして，1時間ほどしか経過していませんが，Flash playerを含むソフトアップデートの警告は出てきていません。削除したので当たり前と言えば当たり前ですかね??
それと，補足ですが，日本と14時間の時差がありますので，Logは19日の夜になっています。

SAS log-------------------------
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/19/2014 at 09:37 PM

Application Version : 6.0.1168
Database Version : 11670

Scan type : Complete Scan
Total Scan Time : 00:11:04

Operating System Information
Windows 8.1 64-bit (Build 6.03.9600)
UAC Off - Administrator

Memory items scanned : 325
Memory threats detected : 0
Registry items scanned : 47937
Registry threats detected : 0
File items scanned : 28972
File threats detected : 4

Adware.Tracking Cookie
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2UCRQ2ZW.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\2UCRQ2ZW.txt [ /doubleclick.net ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7VV8Y9D8.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\7VV8Y9D8.txt [ /atdmt.com ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5LAADYJ0.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5LAADYJ0.txt [ /counter.hatena.ne.jp ]
C:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5B7NUB0D.txtC:\Users\yamabet\AppData\Local\Microsoft\Windows\INetCookies\Low\5B7NUB0D.txt [ /mediaplex.com ]

============
End of Log
============


MBAM log-------------------------
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.12.19.08

Windows 8 x64 NTFS (Safe Mode)
Internet Explorer 11.0.9600.17498
yamabet :: YAMABE-PC [administrator]

2014/12/19 20:30:30
mbam-log-2014-12-19 (20-30-30).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 595997
Time elapsed: 47 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings|ProxyServer (PUM.Bad.Proxy) -> Data: http=127.0.0.1:9880;https=127.0.0.1:9880 -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\yamabet\Downloads\SoftonicDownloader_for_vlc-windows.exe (PUP.Optional.Softonic) -> Quarantined and deleted successfully.
C:\Users\yamabet\Downloads\ZipSetup.exe (PUP.Optional.JumpyApps) -> Quarantined and deleted successfully.

(end)

レスが遅くなってすみません。

>最初のLANの設定を対応すると再度，繋がるようになりました

はい、復旧したならこれはいいとして、状況とMBAMログを見てもやはりおかしな状態ですね。
まずHJTでレストア（復元）しなくても戻ったということは、先のBbleOsphingはfixしても構わないものということになります。
しかしこれをfixした直後、プロキシ設定が改変されたのは、以前にも幾度か見てますが悪質なマルウェアの挙動の可能性が高いです。

ある種のマルウェアは検出されて処置されると、その処置時にプロキシを含むPCの各種設定を改ざんして、ネット接続やPCの動作自体を狂わせてしまう動きもします。
これは処置逃れが最大の目的ですが、同時にそのあと続きの処置をも逃れるためにネット接続を切断して、web上から情報検索や外部の指示を受けての作業を妨害する目的です。

極端な例では検出されたマルウェアが処置される際に、Windows正規のファイルやシステムを【道連れ】にした状態で削除されたため、マルウェアは削除できてもPCが正常起動できなくなったこともありました。
これはそのマルウェアに対する処置手順と解析データを他の場合にも使われることを逃れるために、PCをリカバリ不可避の状態に持ち込んで証拠隠滅するのが最大の狙いです。
こういう『自爆挙動』型のマルウェアの疑いが見つかったら、たとえマルウェアの処置に成功したように見えても以後のPCの安全と安定使用上から作業後にリカバリしてもらうのが最善なのです。

そしてMBAMのログでも、プロキシに絡む検出処置結果が出ています。
>Registry Values Detected: 1
>HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings|ProxyServer (PUM.Bad.Proxy) -> Data: http=127.0.0.1:9880;https=127.0.0.1:9880 -> Quarantined and deleted successfully.

相当に怪しい状態であることは確実でしょう。

>先程スキャンして，1時間ほどしか経過していませんが，Flash playerを含むソフトアップデートの警告は出てきていません

異常が沈静化しているならその点はいいですが、沈静化しても処置できたと油断はできない状況です。

まずはHJTログと、インストール情報ログと、CCでの各タブのログを取り直して、それらをまたレスで見せてください。
それを見てから次の対処を調べましょう

悪代官様，

リカバリの可能性が高いこと，了解いたしました。心づもりをしておきます。
ただし，言い換えるとリカバリさえすれば再度，PCを使えることになると推察しました。
特秘性が高く，痕を残すことを嫌うマルウェアなら，PCの中心部のみに配置し，
USB，外付けHDなど外部に散乱し，再度感染する可能性は低いのかなと。
素人発想です。また，悲観的に考えても仕方ありませんのでポジティブに（苦笑）

以下，Logです。宜しくお願いします。

HJT------------------
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 12:54:06, on 2014/12/20
Platform: Unknown Windows (WinNT 6.03.1408)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Safe mode

Running processes:
C:\Users\yamabet\Desktop\Spy\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Trend Micro Osprey BHO - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MediaSyncAgent] "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
O4 - HKLM\..\Run: [LLHDUSER] "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [TKRTL] "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
O4 - HKLM\..\Run: [CLMSTrayIcon] "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKCU\..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [TOSHIBA Active Display Off] "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Dropbox.lnk = yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: PcHusen.lnk = C:\PcHusen\PcHusen.exe
O4 - Startup: 秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CLHNServiceForToshiba - CyberLink Corp. - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink MediaSync Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
O23 - Service: CyberLink MediaSync Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
O23 - Service: インテル(R) PROSet/Wireless WiMAX Red Bend デバイス管理サービス (DMAgent) - Red Bend Ltd. - C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LLHDClient - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe
O23 - Service: LLHDCloader - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OEMRegistrationProgram - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: Toshiba Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
O23 - Service: Toshiba Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: インテル(R) PROSet/Wireless WiMAX サービス (WiMAXAppSrv) - Intel(R) Corporation - C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 16001 bytes


CC Install------------------
+Lhaca 2013/12/04
Adobe AIR Adobe Systems Incorporated 2014/11/26 15.0.0.356
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/20 205 MB 11.0.09
Apple Application Support Apple Inc. 2014/10/16 95.2 MB 3.1
Apple Mobile Device Support Apple Inc. 2014/10/16 19.5 MB 8.0.5.6
Apple Software Update Apple Inc. 2013/10/13 2.38 MB 2.1.3.127
Bonjour Apple Inc. 2013/10/13 2.00 MB 3.0.0.10
CCleaner Piriform 2014/12/16 5.00
Cisco Connect Cisco Consumer Products LLC 2013/12/04 1.4.12334.0
Corel VideoStudio X5 Corel Corporation 2013/12/04 609 MB 15.0.1.29
CyberLink MediaShow 6 CyberLink Corp. 2013/07/02 672 MB 6.0.4528
CyberLink MediaSync CyberLink Corp. 2012/12/18 218 MB 1.0.1128.04
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2012/12/18 8.47 MB 1.5.1.4
Dropbox Dropbox, Inc. 2014/12/16 3.0.3
ebi.BookReader4 eBOOK Initiative Japan Co., Ltd. 2012/12/18 11.5 MB 4.01.27
ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2012/12/18 4.0.1.27_MSI_T
Evernote v. 5.2.1 Evernote Corp. 2014/03/26 207 MB 5.2.1.3108
Garmin Express Garmin Ltd or its subsidiaries 2014/10/19 115 MB 3.2.18.0
Google Toolbar for Internet Explorer Google Inc. 2014/12/16 7.5.5111.1712
HP ENVY 4500 series ヘルプ Hewlett Packard 2013/11/28 8.35 MB 30.0.0
HP ENVY 4500 series ベーシック デバイス ソフトウェア Hewlett-Packard Co. 2013/11/28 159 MB 32.0.1180.44630
HP FWUpdateEDO2 Hewlett-Packard 2013/12/31 1.53 MB 1.2.0.0
HP Photo Creations HP 2013/12/04 14.6 MB 1.0.0.7702
HP Update Hewlett-Packard 2013/11/28 4.04 MB 5.005.002.002
Intel(R) Control Center Intel Corporation 2013/07/02 1.2.1.1008
Intel(R) Management Engine Components Intel Corporation 2013/07/02 8.1.0.1281
Intel(R) Network Connections Drivers Intel 2013/12/04 916 KB 17.3
Intel(R) Processor Graphics Intel Corporation 2013/12/04 10.18.10.3308
Intel(R) Rapid Storage Technology Intel Corporation 2014/12/18 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2013/12/04 2.0.0.37149
Intel(R) WiDi Intel Corporation 2013/07/02 121 MB 3.5.40.0
IObit Uninstaller IObit 2014/12/17 4.1.5.30
iTunes Apple Inc. 2014/10/16 245 MB 12.0.1.26
Lagarith Lossless Codec (1.3.24) 2013/08/24 931 KB
LAPLINK ヘルプデスク クライアント Intercom, Inc. 2013/12/04 2.02
LoiLoScope 2 LoiLo inc 2012/12/18 166 MB 2.5.2.0
Malwarebytes Anti-Malware version 1.75.0.1300 Malwarebytes Corporation 2014/12/18 19.3 MB 1.75.0.1300
Microsoft Office Home and Student 2013 - en-us Microsoft Corporation 2014/11/21 15.0.4667.1002
Microsoft Office Live Meeting 2007 Microsoft Corporation 2013/12/11 52.3 MB 8.0.6362.215
Microsoft Silverlight Microsoft Corporation 2014/12/17 50.7 MB 5.1.30514.0
Microsoft SkyDrive Microsoft Corporation 2014/01/05 26.6 MB 17.0.2015.0811
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/07/02 4.39 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2013/07/02 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2012/12/18 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/12/18 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 4.61 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/19 17.1 MB 12.0.21005.1
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 2013/08/09 2.90 MB 4.30.2117.0
music.jp PLAY 4.0 Ventis Media Inc. 2012/12/18 60.9 MB 4.0
OEM Registration Program TOSHIBA CORPORATION 2013/07/02 516 KB 1.1.0
Oracle VM VirtualBox 4.3.12 Oracle Corporation 2014/07/31 153 MB 4.3.12
P-Study System 8 2014/02/01
PCあんしん点検ユーティリティ TOSHIBA Corporation 2013/07/02 1.48 MB 1.1.6.0
PC引越ナビ 東芝情報機器株式会社 2012/12/18 12.7 MB 5.0.2
Pixia ver. 6 Isao Maruoka 2014/11/01 31.1 MB 6.01.0100
PL-2303 USB-to-Serial Prolific Technology INC 2013/07/02 1.7.0
PlayReady PC Runtime x86 Microsoft Corporation 2012/12/18 1.65 MB 1.3.0
Premium Sound HD DTS, Inc. 2013/07/02 1.74 MB 1.12.6000
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
RealPlayer Cloud RealNetworks 2014/11/26 91.7 MB 17.0.15
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2013/12/04 6.0.1.6794
RICOH Media Driver v2.23.17.01 RICOH 2013/07/02 2.23.17.01
Roxio Creator LJ Roxio 2013/12/04 260 MB 12.2.33.5
RZスイート express CyberLink Corp. 2013/07/02 131 MB 1.8.01030
Skype Click to Call Microsoft Corporation 2014/08/07 6.91 MB 7.3.16540.9015
Skype(TM) 7.0 Skype Technologies S.A. 2014/12/17 47.7 MB 7.0.102
Start Menu 8 IObit 2014/12/10 26.7 MB 1.6.0.0
SUPERAntiSpyware SUPERAntiSpyware.com 2014/12/18 48.3 MB 6.0.1168
Synaptics Pointing Device Driver Synaptics Incorporated 2014/06/09 46.4 MB 17.0.8.2
Tapur 5.3.0.111 tapur.com 2013/08/24 9.33 MB
TOSHIBA Active Display Off Toshiba Corporation 2013/07/02 17.2 MB 1.2.0.0
TOSHIBA Desktop Apps Menu Toshiba Corporation 2012/12/18 464 KB 1.00.09.6405
TOSHIBA eco Utility Toshiba Corporation 2013/07/02 20.4 MB 2.0.1.6408
TOSHIBA Function Key Toshiba Corporation 2013/07/02 31.3 MB 1.00.6626.6409
TOSHIBA HDD Protection Toshiba Corporation 2013/07/02 20.9 MB 2.5.1.1
TOSHIBA Manual TOSHIBA CORPORATION 2013/07/02 27.5 MB 0130.01.3001
TOSHIBA PalaDouga TOSHIBA CORPORATION 2012/12/18 140 MB 2013.0101.0002
TOSHIBA Password Utility Toshiba Corporation 2012/12/18 3.86 MB 3.01.01.6403
TOSHIBA PC Health Monitor Toshiba Corporation 2013/07/02 56.9 MB 1.8.17.640104
TOSHIBA Recovery Media Creator Toshiba Corporation 2012/12/18 2.2.2.54043007
TOSHIBA Resolution+ Plug-in for Windows Media Player TOSHIBA Corporation 2013/07/02 1.2.2.00
TOSHIBA Speech Synthesis TOSHIBA CORPORATION 2013/07/02 65.0 MB 1.5.1.7
TOSHIBA System Driver Toshiba Corporation 2013/07/02 5.52 MB 1.00.0015
TOSHIBA System Settings Toshiba Corporation 2013/07/02 9.87 MB 1.00.0002.32002
TOSHIBA VIDEO PLAYER Toshiba Corporation 2013/07/02 48.3 MB 5.1.0.21-B
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/09/22 4.53 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/09/22 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/01/30 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/09/22 17.0 KB 16.0.1016.1
VLC media player VideoLAN 2014/12/13 2.1.5
Windows Media Encoder 9 Series 2013/12/04
Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702) Broadcom Corporation 2013/12/04 10/05/2012 12.0.0.2702
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2014/10/19 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2014/10/19 02/06/2007 3.1
いつもNAVI PC ZENRIN 2012/12/18 6.1.2
おたすけナビ 東芝情報機器株式会社 2012/12/18 20.9 MB 7.0.2
ぱらちゃんV2.3 TOSHIBA Corporation 2012/12/18 33.7 MB 2.3.16
インテル(R) PROSet/Wireless WiMAX ソフトウェア Intel Corporation 2013/07/02 14.8 MB 7.50.0000
インテル® PROSet/Wireless WiFi ソフトウェア Intel Corporation 2013/07/02 165 MB 15.05.6000.1620
ウイルスバスター クラウド トレンドマイクロ株式会社 2014/10/26 450 MB 8.0
東芝ジェスチャコントローラ TOSHIBA CORPORATION 2013/07/02 25.1 MB 3.1.6.0
秀丸エディタ (8.31) 有限会社サイトー企画 2013/12/04 8.31
筆ぐるめ 20 富士ソフト株式会社 2012/12/18 602 MB 20.00.0003
製品改善のための調査 HP ENVY 4500 series Hewlett-Packard Co. 2013/11/28 9.57 MB 32.0.1180.44630



CC windows-----------------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe


CC IE-------------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe



CC Chrome---------------
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Gmail 7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google スプレッドシート 1.0 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スプレッドシート 1.0 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スライド 0.8 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google スライド 0.8 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
有効 Extension Skype Click to Call 7.3.16540.9015 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0




CC スケジュールされたタスク--------------
情報なし


CC　テキストコンテクスト-----------------
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll


以上です。

おはようございます。

>リカバリさえすれば再度，PCを使えることになると推察しました。

多くの場合ではそうなりますね。
リカバリはPC購入時の状態にシステムを戻すので、その後感染したマルウェアやユーザー自身が入れたファイルやアプリ、設定もみな消えます。
PC操作に明るくないユーザーさんでもリカバリは難しくないので、時間と手間を考えればリカバリがもっとも手早く安全で確実な対処法となります。

>特秘性が高く，痕を残すことを嫌うマルウェアなら，PCの中心部のみに配置し，
>USB，外付けHDなど外部に散乱し，再度感染する可能性は低いのかなと。
>素人発想です。また，悲観的に考えても仕方ありませんのでポジティブに（苦笑）

いえ、なかなかPCの使い方をよく見ておられます。自分がここで処置レス始めた当時よりもはるかにPCに明るいと思いますよ。

「ルートキット」と称される種の潜伏型マルウェアでは、一般のユーザーでは簡単に見つけられないようなWindowsのシステムのそれも奥深くに隠れるのが常ですから読みは当たってます。
ですが
>再度感染する可能性が低い

これは場合によっては当てはまりません。
リカバリしても生き残るマルウェアが存在するからです。
ある種のルートキットはPCのHDD内に独自のパーティションを作成して、そこに本体（または分身）ファイルを置きます。
このマルウェアにやられるとたとえリカバリしてもそのパーティションはリカバリできないので、そこに残ったマルウェアは以後も活動を続けます。
植物なら毒草の「種」、昆虫なら寄生ハチが「卵」を残して完全駆除を逃れて繁殖するような形ですね。
またUSB等の外部記録媒体に隠れる性質のマルウェアも以前から存在します。
これもPCの本体HDD内以外の場所に巣を張って活動するための作戦です。

マルウェアは常に一般ユーザーの想像を超える動きと仕組みを作り上げます。
それに対してログ解析しての処置に回る自分はあくまでも対症療法しかできないのが現実です。
それを自覚したうえで、可能な限りの処置を指示し、処置が無理かまたは可能であっても危険性が高い場合は安全最優先でリカバリと以後の再被害防止策を案内します。
この辺りもご理解の上で、また説明を読んでから次の作業をお願いします。

まず下記の電子書籍用アプリは使ってなければIUでアンインストールをお勧めします。他の方のスレでも以前からよくない動きや評価があったので。
>ebi.BookReader4 eBOOK Initiative Japan Co., Ltd. 2012/12/18 11.5 MB 4.01.27
>ebi.SampleContents eBOOK Initiative Japan Co., Ltd. 2012/12/18 4.0.1.27_MSI_T

使っているならそのままでいいです。

下記もまだ旧バージョンなので、使わないならアンインストールしてください。
>Skype(TM) 7.0 Skype Technologies S.A. 2014/12/17 47.7 MB 7.0.102
使うなら一度アンインストールのあと、ATFでゴミ掃除した後に公式サイトから最新版を再インストールしてください。これで最新版になるはずです。

またCCを起動して「Chrome」タブ内の下記を右クリックから「エントリの削除」してください。
>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0

次に「スケジュールされたタスク」タブが空白だったようですが、このときCCをセーフモードで作業しましたか？
CCはセーフモードでは一部機能が正常に動作しないので、基本は通常モードで使ってください。
もし通常モードでログが空白だったならそのままでいいですが、そうでなければ再度通常モードでスケジュールタブのログだけ取り直して、次回レスで見せてください。

先のBbleOsphingも今のところ復活はしてないようです。これが復活してたらその時点でリカバリ推奨の判断してたかもしれません。
まずは上記の作業後、追加のログと状態報告をレスください

悪代官様

丁寧で且つ迅速なレスありがとうございます。おっしゃるとおり，ウィルス作成者の考えについては想像もつきませんので細心の注意を払います。厄介ですねぇ…

>まず下記の電子書籍用アプリは使ってなければIUでアンインストールをお勧めします。他の方のスレでも以前からよくない動きや評価があったので。

電子Book Readerは削除しました。


>>Skype(TM) 7.0 Skype Technologies S.A. 2014/12/17 47.7 MB 7.0.102
>使うなら一度アンインストールのあと、ATFでゴミ掃除した後に公式サイトから最新版を再インストールしてください。これで最新版になるはずです。

こちらは再度，Official HPからDLしてインストールしました。今度は大丈夫だと思うのですが…。


>またCCを起動して「Chrome」タブ内の下記を右クリックから「エントリの削除」してください。
>>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0

上記の作業は以前にも試みたのですが，「Some of the selected items cannot be changed as they are protected by the browser」という表示が出て無効，削除ができませんでした。
通常，セーフモードの両方で試みましたがダメでした。


>>次に「スケジュールされたタスク」タブが空白だったようですが、このときCCをセーフモードで作業しましたか？

はい。セーフモードで作業しましたので，通常モードで実行したCCのChromeログを下記に示します。
他のLogが必要な場合はご指示ください。なお，現状でPCは落ち着いています。

CC スケジュールされたタスク Log----------------
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Open Chrome c:\program files (x86)\Google\Chrome\Application\chrome.exe --new-window http://toolbar.avg.com/almost-done?pid=safeguard&lang=en
無効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {EA75FBA6-DBFF-4106-A9DA-6A5B4F4C71E7} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\yamabet\AppData\Local\Obrona Block Ads\Uninstaller.exe"

作業と報告、ご苦労様です。
各種更新等の作業はできたようですが、

>「Some of the selected items cannot be changed as they are protected by the browser」という表示が出て無効，削除ができませんでした。

hrome拡張の処置が詰まっているようですね。
ではこれはとりあえず置いて、以下の説明に沿ってまた作業をお願いします。

PCは通常モードで、CCを起動して「スケジュールされたタスク」タブ内の下記を右クリックから「エントリの削除」してください。
>有効 Task Open Chrome c:\program files (x86)\Google\Chrome\Application\chrome.exe --new-window http://toolbar.avg.com/almost-done?pid=safeguard&lang=en
>有効 Task {EA75FBA6-DBFF-4106-A9DA-6A5B4F4C71E7} Microsoft Corporation C:\WINDOWS\system32\pcalua.exe -a "C:\Users\yamabet\AppData\Local\Obrona Block Ads\Uninstaller.exe"

これができたら以下のツールを用意してください。この種の作業で特に効果が期待できる解析ツールです。
OTL(OldTimer Listit)
ファイル直リンなので、DLしたら保存しておいてください。
http://oldtimer.geekstogo.com/OTL.exe
片付けるときは起動後に「Cleanup」ボタンを押せば自動で削除されます。

他のプログラムを起動しない状態でOTLを起動してください。
起動したら、ウィンドウの上の方にある「Scan All Users」にチェックを入れ、以下のコマンドを「Custom Scan/Fixes」にコピペしてください。

%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT

その後、左上の「Run Scan」を押すとスキャン開始されます。
スキャン開始後、PC環境にもよりますが数分ほどすると、「OTL.txt」と「Extras.txt」がOTL.exeと同じ場所に作成されるはずなので、この2つのファイルをデスクトップあたりに保存しておいてください。
なお、Extras.txtは出ないこともありますが、その場合はOTL.txtだけでもいいです。

このあとOTLログを丸ごと返信に貼り付けてレスで見せてください。
ただしOTLログはかなり長くなるため、一度に送信してもfc2の文字数制限で途切れます。
なのでログも適当なところで分割して、複数回に分けてレス送信してください。

OTLでスキャンしただけでは何も変化は起きません。
この結果を見て、検出されたものを次回以降の作業で処置することになるはずです

悪代官様


お疲れ様です。いつもありがとうございます。今のところ，PCは通常通り動いています。
CCで所定の作業を行った後，OTLでScanを行いました。指示を受けたLogを下記に記します。

OTL, OTL.txt-----------------
OTL logfile created on: 2014/12/21 12:00:00 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\yamabet\Desktop\Spy
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: Japan | Language: JPN | Date Format: yyyy/MM/dd

7.88 Gb Total Physical Memory | 5.36 Gb Available Physical Memory | 68.07% Memory free
10.76 Gb Paging File | 7.39 Gb Available in Paging File | 68.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.19 Gb Total Space | 856.36 Gb Free Space | 93.37% Space Free | Partition Type: NTFS
Drive D: | 6.23 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: YAMABE-PC | User Name: yamabet | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2014/12/21 11:40:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\yamabet\Desktop\Spy\OTL.exe
PRC - [2014/12/17 18:53:05 | 002,631,456 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
PRC - [2014/12/17 18:53:05 | 001,084,704 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
PRC - [2014/12/16 22:40:58 | 000,309,704 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2014/12/08 22:45:28 | 039,207,112 | ---- | M] (Dropbox, Inc.) -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2014/11/26 19:07:29 | 001,141,848 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
PRC - [2014/11/18 15:22:36 | 000,029,984 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
PRC - [2014/11/18 15:22:34 | 000,072,992 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
PRC - [2014/11/18 15:22:26 | 001,724,192 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
PRC - [2014/10/30 05:41:44 | 000,031,856 | ---- | M] () -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2014/10/29 19:06:54 | 000,560,192 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
PRC - [2014/10/26 22:59:38 | 000,369,752 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
PRC - [2014/10/26 22:59:24 | 000,039,568 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2014/10/22 04:58:55 | 000,081,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
PRC - [2014/09/12 04:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/08/27 10:25:42 | 000,441,176 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2014/03/14 17:50:52 | 001,106,784 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
PRC - [2013/06/26 21:56:56 | 002,174,496 | ---- | M] (有限会社サイトー企画) -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe
PRC - [2012/11/28 05:22:15 | 000,078,368 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
PRC - [2012/11/28 05:22:11 | 000,373,280 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe
PRC - [2012/11/28 05:22:08 | 000,295,456 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
PRC - [2012/11/16 00:49:48 | 000,694,216 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
PRC - [2012/11/14 20:39:06 | 000,227,312 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
PRC - [2012/10/26 06:23:09 | 003,363,344 | ---- | M] (Cyberlink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe
PRC - [2012/10/26 06:23:06 | 000,303,632 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
PRC - [2012/10/26 06:22:56 | 000,078,352 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
PRC - [2012/10/23 19:40:04 | 000,054,976 | ---- | M] (Intercom, Inc.) -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
PRC - [2012/10/15 01:37:27 | 000,090,640 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
PRC - [2012/08/04 01:02:22 | 001,548,952 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
PRC - [2012/08/04 01:01:56 | 000,213,136 | ---- | M] () -- C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
PRC - [2012/07/30 21:56:08 | 000,030,392 | ---- | M] (Intercom, Inc.) -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
PRC - [2012/07/24 19:13:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/07/24 19:12:24 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/07/24 19:11:52 | 000,129,856 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012/07/24 19:11:22 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/04/23 10:23:22 | 001,481,728 | ---- | M] (tapur.com) -- C:\Program Files (x86)\Tapur\Tapur.exe
PRC - [2010/08/16 09:34:00 | 000,171,520 | ---- | M] (tapur.com) -- C:\Program Files (x86)\Tapur\tapmgr.exe
PRC - [2010/03/10 00:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2014/12/21 11:32:13 | 000,043,008 | ---- | M] () -- c:\users\yamabet\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpeqjsxi.dll
MOD - [2014/11/26 19:07:29 | 000,573,528 | ---- | M] () -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Lib\r1api.dll
MOD - [2014/11/21 19:39:10 | 000,316,576 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
MOD - [2014/11/18 15:22:06 | 000,348,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\madexcept_.bpl
MOD - [2014/11/18 15:22:04 | 000,183,584 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\madbasic_.bpl
MOD - [2014/11/18 15:22:04 | 000,050,976 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\maddisAsm_.bpl
MOD - [2014/10/29 19:06:54 | 000,560,192 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
MOD - [2014/10/29 19:01:58 | 001,382,048 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\cpprest100_1_2.dll
MOD - [2014/10/21 19:22:50 | 000,750,080 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\libGLESv2.dll
MOD - [2014/10/21 19:22:50 | 000,047,616 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\libEGL.dll
MOD - [2014/10/21 19:22:48 | 000,863,744 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
MOD - [2014/10/21 19:22:46 | 000,200,704 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
MOD - [2014/10/11 12:05:58 | 001,044,776 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2014/03/14 15:50:46 | 000,433,664 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
MOD - [2014/03/14 15:50:36 | 000,315,392 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
MOD - [2014/01/20 13:17:04 | 000,073,544 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/04 01:01:56 | 000,213,136 | ---- | M] () -- C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
MOD - [2011/08/23 21:39:11 | 000,655,360 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_ssl.pyd
MOD - [2011/08/23 21:39:11 | 000,081,920 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_ctypes.pyd
MOD - [2011/08/23 21:39:11 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_socket.pyd
MOD - [2009/07/17 02:32:38 | 000,002,560 | ---- | M] () -- C:\Program Files (x86)\Hidemaru\HIDEMSUB.DLL
MOD - [2006/11/09 00:07:02 | 001,669,824 | ---- | M] () -- C:\Program Files (x86)\Tapur\vidgrab_VC6.ocx
MOD - [2005/11/15 08:24:22 | 001,163,264 | ---- | M] () -- C:\Program Files (x86)\Tapur\vorbis.dll
MOD - [2005/11/15 08:04:40 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Tapur\ogg.dll
MOD - [2005/06/12 05:18:40 | 000,244,736 | ---- | M] () -- C:\Program Files (x86)\Tapur\sqlite3.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - File not found [Auto | Running] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
SRV:[b]64bit:[/b] - [2014/10/30 23:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/30 01:24:10 | 002,443,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe -- (ClickToRunSvc)
SRV:[b]64bit:[/b] - [2014/10/09 09:51:09 | 001,187,376 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe -- (Platinum Host Service)
SRV:[b]64bit:[/b] - [2014/10/06 20:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2014/08/15 22:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/08/15 19:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2014/08/15 19:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/07/24 02:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/07/22 18:31:23 | 000,172,344 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:[b]64bit:[/b] - [2014/03/14 01:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2014/03/08 00:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/03/06 02:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014/02/22 10:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/02/22 04:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/02/22 04:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/02/22 04:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/02/22 04:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2013/12/10 02:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013/08/22 06:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013/08/22 06:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013/08/22 06:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013/08/22 06:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013/08/22 05:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013/08/22 04:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 04:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2012/12/05 02:48:00 | 000,201,872 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE -- (RtkAudioService)
SRV:[b]64bit:[/b] - [2012/11/26 02:00:02 | 000,321,960 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\Teco\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2012/09/24 02:03:12 | 001,153,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:54 | 000,272,176 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:42 | 000,617,776 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:16 | 000,149,296 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:[b]64bit:[/b] - [2012/08/02 23:31:40 | 000,566,696 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\ThpSrv.exe -- (Thpsrv)
SRV:[b]64bit:[/b] - [2012/07/27 19:20:44 | 000,458,152 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\Toshiba\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:[b]64bit:[/b] - [2012/07/18 01:07:06 | 000,514,048 | ---- | M] (Red Bend Ltd.) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe -- (DMAgent)
SRV:[b]64bit:[/b] - [2012/07/18 01:00:52 | 000,979,456 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe -- (WiMAXAppSrv)
SRV:[b]64bit:[/b] - [2012/06/19 05:10:34 | 000,634,632 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2009/07/28 01:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV - [2014/12/17 18:53:05 | 002,631,456 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2014/12/12 11:12:54 | 003,985,408 | -HS- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe -- (BbleOsphing)
SRV - [2014/12/11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/11/26 19:07:29 | 001,141,848 | ---- | M] (RealNetworks, Inc.) [Auto | Running] -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Cloud Service)
SRV - [2014/11/18 15:22:34 | 000,072,992 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe -- (StartMenuService)
SRV - [2014/10/30 05:41:44 | 000,031,856 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2014/10/26 22:59:24 | 000,039,568 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2014/09/12 04:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/08/27 10:25:42 | 000,441,176 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/08/15 22:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/03/14 01:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/09/21 03:22:46 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/08/21 22:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 21:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2012/11/29 03:21:06 | 000,016,384 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\OEM Registration Program\OEMRegistrationProgram.exe -- (OEMRegistrationProgram)
SRV - [2012/11/28 05:22:15 | 000,078,368 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe -- (CyberLink MediaSync Media Server Monitor Service)
SRV - [2012/11/28 05:22:08 | 000,295,456 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe -- (CyberLink MediaSync Media Server Service)
SRV - [2012/11/14 20:39:06 | 000,227,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe -- (TPCHKarteSVC)
SRV - [2012/11/09 02:41:46 | 000,309,944 | ---- | M] (Intercom, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe -- (LLHDClient)
SRV - [2012/10/26 06:23:06 | 000,303,632 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe -- (Toshiba Media Server Service)
SRV - [2012/10/26 06:22:56 | 000,078,352 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe -- (Toshiba Media Server Monitor Service)
SRV - [2012/10/15 01:37:27 | 000,090,640 | ---- | M] (CyberLink Corp.) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe -- (CLHNServiceForToshiba)
SRV - [2012/07/24 19:13:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/24 19:12:24 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/24 19:11:52 | 000,129,856 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012/07/24 19:11:22 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011/06/28 20:44:04 | 000,008,704 | ---- | M] (Intercom, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe -- (LLHDCloader)
SRV - [2010/03/10 00:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2014/12/10 11:12:45 | 000,050,976 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/10/09 20:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/09/21 22:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2014/09/21 22:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2014/09/21 21:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2014/08/14 19:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/07/24 10:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2014/07/24 10:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/07/24 06:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:46 | 000,121,944 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:42 | 000,093,664 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:36 | 000,305,832 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:[b]64bit:[/b] - [2014/07/09 11:03:10 | 000,037,904 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\tmel.sys -- (tmel)
DRV:[b]64bit:[/b] - [2014/07/09 11:02:55 | 000,106,296 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tmeevw.sys -- (tmeevw)
DRV:[b]64bit:[/b] - [2014/06/30 06:06:54 | 000,106,296 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmusa.sys -- (tmusa)
DRV:[b]64bit:[/b] - [2014/05/16 13:03:30 | 000,141,600 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2014/05/01 08:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/03/19 22:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/03/13 07:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/03/08 15:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/02/22 10:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/02/22 07:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013/12/03 18:17:28 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2013/10/25 20:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2013/09/29 23:07:00 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2013/09/29 22:58:11 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013/09/21 03:22:34 | 004,177,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/08/22 17:51:12 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/08/22 17:51:12 | 000,026,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 07:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 07:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013/08/22 07:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:50 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013/08/22 06:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013/08/22 05:27:46 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2013/08/22 03:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/20 03:12:28 | 000,524,016 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2013/08/12 18:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/09 19:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/30 13:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/25 14:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/08 13:37:41 | 003,344,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:[b]64bit:[/b] - [2013/06/18 09:45:26 | 000,460,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
DRV:[b]64bit:[/b] - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,188,896 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xHCIPort.sys -- (XHCIPort)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,047,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:[b]64bit:[/b] - [2012/09/06 04:53:00 | 000,105,984 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\risdxc64.sys -- (risdxc)
DRV:[b]64bit:[/b] - [2012/09/01 04:01:56 | 000,647,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/07/30 22:28:54 | 000,028,632 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Thotkey.sys -- (Thotkey)
DRV:[b]64bit:[/b] - [2012/07/27 23:10:08 | 000,048,512 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\thpdrv.sys -- (Thpdrv)
DRV:[b]64bit:[/b] - [2012/07/25 02:34:24 | 000,032,832 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2012/07/24 19:11:36 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2012/07/24 11:54:00 | 000,031,184 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (TDCMDPST)
DRV:[b]64bit:[/b] - [2012/07/21 01:59:02 | 000,016,768 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:10 | 000,182,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpmp.sys -- (bpmp)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:02 | 000,084,992 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpusb.sys -- (bpusb)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:00 | 000,084,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpenum.sys -- (bpenum)
DRV:[b]64bit:[/b] - [2012/06/25 00:59:58 | 000,018,304 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Thpevm.sys -- (Thpevm)
DRV:[b]64bit:[/b] - [2012/06/21 13:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2012/06/18 17:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2012/06/17 20:30:56 | 000,499,096 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:[b]64bit:[/b] - [2011/07/22 11:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:[b]64bit:[/b] - [2011/07/12 16:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:[b]64bit:[/b] - [2010/03/05 06:19:00 | 000,011,296 | ---- | M] (Intercom, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\llhrcmi6.sys -- (llhrcmi6)
DRV - [2012/07/10 01:22:37 | 000,081,904 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\ntk3_Toshiba_64.sys -- (ntk3_Toshiba)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.co.jp/ [binary data]
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.15.10: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.15: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.15.10: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\tmbepff@trendmicro.com: C:\PROGRAM FILES\TREND MICRO\AMSP\MODULE\20002\9.0.1069\9.0.1069\FIREFOXEXTENSION [2014/10/26 21:00:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014/11/26 19:08:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\tmbepff@trendmicro.com: C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2014/10/26 21:00:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}: C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\ [2014/10/26 21:00:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22181a4d-af90-4ca3-a569-faed9118d6bc}: C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2014/10/26 20:58:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{338950EA-82DB-44C1-930D-0C28E023C9F0}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2014/11/26 19:08:20 | 000,000,000 | ---D | M]


[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.71\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/08/22 08:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
O2:[b]64bit:[/b] - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (TmIEPlugInBHO Class) - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll (Microsoft Corporation)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O2 - BHO: (Evernote extension) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O2 - BHO: (TmIEPlugInBHO Class) - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Trend ツールバー) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O3 - HKLM\..\Toolbar: (Trend ツールバー) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O3:[b]64bit:[/b] - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IntelWirelessWiMAX] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe (Intel® Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Platinum] C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SRS Premium Sound HD] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [TCrdMain] C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TecoResident] C:\Program Files\Toshiba\Teco\TecoResident.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TOSDCR] C:\Program Files\Toshiba\PasswordUtility\TOSDCR.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TosWaitSrv] C:\Program Files\Toshiba\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CLMSTrayIcon] C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe (Cyberlink)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [LLHDUSER] C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe (Intercom, Inc.)
O4 - HKLM..\Run: [MediaSyncAgent] C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe ()
O4 - HKLM..\Run: [TKRTL] C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe File not found
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [HP ENVY 4500 series (NET)] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe (tapur.com)
O4 - HKU\S-1-5-21-2444105407-761587448-759363881-1001..\Run: [TOSHIBA Active Display Off] C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe (TOSHIBA CORPORATION)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PcHusen.lnk = C:\PcHusen\PcHusen.exe ()
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8:[b]64bit:[/b] - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8:[b]64bit:[/b] - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8:[b]64bit:[/b] - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8:[b]64bit:[/b] - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O9:[b]64bit:[/b] - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4

OTL, OTL.txtの続きです---------------
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab (DMM Downloader)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{343C4A47-6DCC-4F54-A0F0-46E72CAD09F4}: DhcpNameServer = 172.16.0.1 163.139.230.164 163.139.230.165
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{810E6EFB-1609-4193-98A2-85EC85B8540E}: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll File not found
O18:[b]64bit:[/b] - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmop {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skypec2c - No CLSID value found
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmop {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{2903fec6-7202-11e3-be8b-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{2903fec6-7202-11e3-be8b-b86b23629217}\Shell\AutoRun\command - "" = "E:\AutoRunner.exe"
O33 - MountPoints2\{71dff9c6-38f4-11e3-be85-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{71dff9c6-38f4-11e3-be85-b86b23629217}\Shell\AutoRun\command - "" = "F:\MobileLaunch.exe"
O33 - MountPoints2\{c5e42142-3385-11e3-be82-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{c5e42142-3385-11e3-be82-b86b23629217}\Shell\AutoRun\command - "" = "E:\menu.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2014/12/21 11:38:47 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Apple
[2014/12/20 20:44:18 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014/12/20 20:44:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/12/20 20:44:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014/12/20 12:11:18 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Adobe
[2014/12/20 12:10:47 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Desktop\バックアップ
[2014/12/18 21:52:37 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\Malwarebytes
[2014/12/18 20:39:16 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERSetup
[2014/12/18 20:38:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/12/18 20:38:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/12/18 20:38:01 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2014/12/18 20:38:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014/12/18 20:36:29 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\SUPERAntiSpyware.com
[2014/12/18 20:36:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2014/12/18 20:36:19 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2014/12/18 20:36:19 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2014/12/17 21:35:51 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/12/17 21:28:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014/12/17 21:28:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014/12/17 21:28:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2014/12/17 18:53:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2014/12/17 18:53:11 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2014/12/16 22:47:12 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\Google
[2014/12/16 22:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/12/16 22:41:06 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/12/16 22:41:04 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014/12/16 22:40:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2014/12/16 21:52:39 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Desktop\Spy
[2014/12/16 21:28:16 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Desktop\IObitUninstallerPortable
[2014/12/13 16:54:00 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\ElevatedDiagnostics
[2014/12/13 16:53:00 | 000,000,000 | -HSD | C] -- C:\Program Files (x86)\BbleOsphing
[2014/12/13 16:45:31 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\vlc
[2014/12/13 16:44:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014/12/13 16:44:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014/12/13 16:23:45 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\sMedio
[2014/12/13 16:12:08 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Documents\DVDFab Media Player
[2014/12/11 08:12:19 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/12/11 08:12:18 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/12/11 08:12:14 | 002,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/12/11 08:12:13 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2014/12/11 08:12:11 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\html.iec
[2014/12/11 08:12:11 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2014/12/11 08:12:11 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/12/11 08:11:55 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2014/12/11 08:11:55 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/12/11 08:11:54 | 006,039,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/12/11 08:11:50 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/12/11 08:11:49 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/12/11 08:11:48 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/12/11 08:11:48 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/12/11 08:11:45 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/12/11 08:11:45 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/12/11 08:11:45 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2014/12/11 08:11:38 | 002,125,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/12/11 08:11:38 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\html.iec
[2014/12/10 14:52:43 | 001,762,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2014/12/10 14:52:31 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceSetupStatusProvider.dll
[2014/12/10 14:52:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DeviceSetupStatusProvider.dll
[2014/12/10 14:50:46 | 001,091,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/12/10 14:50:46 | 000,790,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2014/12/10 14:50:29 | 000,238,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2014/12/10 14:50:29 | 000,153,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2014/12/10 14:50:29 | 000,086,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2014/12/10 14:50:29 | 000,039,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2014/12/10 14:50:22 | 001,970,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2014/12/10 11:12:54 | 000,050,976 | ---- | C] (AVG Technologies) -- C:\WINDOWS\SysNative\drivers\avgtpx64.sys
[2014/12/10 11:12:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/12/10 11:12:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
[2014/12/02 21:40:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GRETECH
[2014/11/26 19:23:02 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Diagnostics
[2014/11/26 19:08:30 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\RealNetworks
[2014/11/26 19:08:20 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2014/11/26 19:08:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2014/11/26 19:07:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2014/11/26 19:07:32 | 000,278,600 | ---- | C] (Progressive Networks) -- C:\WINDOWS\SysWow64\pncrt.dll
[2014/11/26 18:10:54 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Documents\StreamTransport
[2014/11/26 18:07:59 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Documents\TokyoLoader
[2014/11/26 18:07:59 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\TokyoLoader
[2014/11/26 16:19:42 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Deployment
[2014/11/25 21:42:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2014/11/25 21:41:30 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Real
[2014/11/24 21:37:01 | 000,000,000 | -HSD | C] -- C:\Users\yamabet\AppData\Local\EmieBrowserModeList
[2014/11/21 19:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\RightsNetwork
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2014/12/21 11:31:41 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/12/21 11:31:32 | 000,000,714 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/12/21 11:29:41 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/12/21 11:29:34 | 2474,762,239 | -HS- | M] () -- C:\hiberfil.sys
[2014/12/20 20:44:18 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/12/20 20:29:41 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_yamabet.job
[2014/12/16 22:45:48 | 000,000,718 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/12/16 19:03:29 | 000,001,204 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2014/12/16 19:03:13 | 000,001,086 | ---- | M] () -- C:\Users\yamabet\Desktop\Dropbox.lnk
[2014/12/15 22:17:23 | 000,000,010 | ---- | M] () -- C:\Users\yamabet\AppData\Local\sponge.last.runtime.cache
[2014/12/10 11:12:45 | 000,050,976 | ---- | M] (AVG Technologies) -- C:\WINDOWS\SysNative\drivers\avgtpx64.sys
[2014/12/10 11:08:32 | 000,165,659 | ---- | M] () -- C:\MyXML.xml
[2014/11/26 19:08:34 | 000,001,191 | ---- | M] () -- C:\Users\yamabet\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2014/11/26 19:08:03 | 000,201,800 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\SysWow64\rmoc3260.dll
[2014/11/26 19:07:42 | 000,001,283 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
[2014/11/26 19:07:32 | 000,278,600 | ---- | M] (Progressive Networks) -- C:\WINDOWS\SysWow64\pncrt.dll
[2014/11/26 16:18:09 | 001,496,524 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/11/26 16:18:09 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/11/26 16:18:09 | 000,500,892 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2014/11/26 16:18:09 | 000,135,664 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2014/11/26 16:18:09 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/11/26 16:10:48 | 000,714,720 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/11/26 16:10:48 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/11/21 21:50:10 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/11/21 21:49:44 | 000,417,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\html.iec
[2014/11/21 21:48:20 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/11/21 21:35:44 | 000,812,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2014/11/21 21:34:07 | 006,039,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/11/21 21:08:06 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/11/21 21:06:47 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2014/11/21 21:06:16 | 000,340,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\html.iec
[2014/11/21 21:05:02 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/11/21 21:05:01 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/11/21 20:55:25 | 000,661,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2014/11/21 20:49:29 | 000,718,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/11/21 20:49:28 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/11/21 20:46:58 | 002,125,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/11/21 20:35:24 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/11/21 20:34:02 | 000,128,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2014/11/21 20:22:49 | 002,052,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/11/21 20:03:42 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/11/21 19:54:44 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014/12/20 20:44:18 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/12/16 22:40:48 | 000,000,718 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/12/16 22:40:48 | 000,000,714 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/12/16 21:28:28 | 000,000,302 | ---- | C] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_yamabet.job
[2014/11/26 19:08:34 | 000,001,191 | ---- | C] () -- C:\Users\yamabet\Application Data\Microsoft\Internet Explorer\Quick Launch\RealPlayer.lnk
[2014/11/26 19:07:42 | 000,001,283 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
[2014/11/04 19:08:40 | 000,000,010 | ---- | C] () -- C:\Users\yamabet\AppData\Local\sponge.last.runtime.cache
[2014/05/12 19:25:41 | 000,000,036 | ---- | C] () -- C:\Users\yamabet\AppData\Local\housecall.guid.cache
[2014/05/03 12:14:23 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/04/02 20:39:34 | 000,000,689 | ---- | C] () -- C:\Users\yamabet\ライブラリ - ショートカット.lnk
[2014/03/18 17:22:33 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/12/09 19:53:03 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/11/28 23:20:08 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013/09/21 03:22:34 | 000,303,104 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013/09/21 03:22:28 | 000,180,736 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/09/21 03:22:26 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013/08/24 07:54:16 | 000,714,526 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2013/08/24 07:54:16 | 000,120,320 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lagarith.dll
[2013/08/24 07:54:16 | 000,001,993 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2013/08/22 10:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 10:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 09:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 02:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/21 22:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/21 18:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/21 18:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/08/09 09:07:40 | 000,000,209 | ---- | C] () -- C:\WINDOWS\Lhaca.ini
[2013/07/02 07:46:53 | 000,000,110 | ---- | C] () -- C:\WINDOWS\wininit.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/30 19:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 17:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 04:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/21 21:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 04:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2014/12/21 11:31:32 | 000,000,714 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/12/16 22:45:48 | 000,000,718 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/12/20 20:29:41 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_yamabet.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MQ01ABD100H
Partitions: 5
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 450.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 260.00MB
Starting Offset: 472907776
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 917.00GB
Starting Offset: 879755264
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 363.00MB
Starting Offset: 985704431616
Hidden sectors: 0


DeviceID: Disk #0, Partition #4
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 13.00GB
Starting Offset: 986085064704
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2014/02/22 07:02:14 | 000,208,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2014/10/08 02:30:59 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2013/08/22 04:53:13 | 000,092,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:14 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2014/04/29 23:14:19 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2013/08/21 21:48:12 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:30 | 000,468,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2013/08/21 21:38:29 | 000,329,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2014/07/24 04:21:23 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2013/08/22 05:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2014/02/22 04:38:56 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2014/04/29 23:23:54 | 000,353,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2014/04/29 22:46:07 | 000,285,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2014/03/04 02:13:06 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2013/08/22 04:44:18 | 000,107,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2013/08/22 06:34:06 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2013/08/21 23:05:54 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2013/12/03 18:17:29 | 000,433,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2013/08/22 04:35:27 | 000,403,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2014/03/26 22:15:43 | 000,718,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:27 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2013/08/22 04:05:22 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 04:35:48 | 000,387,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 08:25:35 | 000,029,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2014/03/06 04:19:44 | 000,115,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2014/07/24 03:18:34 | 000,795,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2013/08/22 06:22:30 | 000,101,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2014/01/28 19:18:11 | 000,534,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2014/02/22 04:38:56 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2013/08/22 06:32:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2013/08/22 08:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2014/04/08 22:33:54 | 000,135,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2014/07/24 04:03:18 | 000,324,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2013/08/22 04:24:27 | 000,629,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2013/08/21 21:27:04 | 000,564,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2014/08/01 19:18:31 | 001,212,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2013/08/22 05:55:30 | 000,306,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2013/08/21 22:33:38 | 000,248,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2013/08/22 05:00:18 | 000,050,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2014/07/24 04:02:28 | 000,220,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2014/03/26 22:10:11 | 001,436,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2014/10/06 20:46:06 | 000,911,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2014/10/06 20:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
No service found with a name of SDRSVC
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/08/22 04:44:27 | 001,669,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2013/08/22 04:23:55 | 000,878,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:39:20 | 000,634,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:23:10 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2013/08/21 22:56:51 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2013/08/22 04:48:04 | 000,220,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2014/10/18 01:38:57 | 003,557,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2013/08/22 05:30:45 | 000,258,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2014/07/24 03:32:47 | 001,532,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:22 | 000,284,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 237 bytes -> C:\Users\yamabet\SkyDrive:ms-properties

< End of report >

すいません，上記の2つ，OTLのLog，OTL Log, continueを投稿しましたが，2つの投稿の間のLogが一部，投稿されていませんでしたので補足で投稿します。

最初の投稿（OTLのLog）

O9:[b]64bit:[/b] - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)

O9:[b]64bit:[/b] - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)

O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)

O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)

O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)

O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)

----最初投稿この途中で切れました。以下が投稿されていないLogです。

O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)

O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)

O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll File not found


O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)

O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)

O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)

ここまで-------------------------------------

2つ目の投稿（OTL Log, continue）はココから開始しました。------------------
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)

O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()

O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()

大変失礼いたしました。

今度はExtras.txtのLogです。宜しくお願いします。

OTL Extras logfile created on: 2014/12/21 12:00:00 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\yamabet\Desktop\Spy
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: Japan | Language: JPN | Date Format: yyyy/MM/dd

7.88 Gb Total Physical Memory | 5.36 Gb Available Physical Memory | 68.07% Memory free
10.76 Gb Paging File | 7.39 Gb Available in Paging File | 68.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.19 Gb Total Space | 856.36 Gb Free Space | 93.37% Space Free | Partition Type: NTFS
Drive D: | 6.23 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: YAMABE-PC | User Name: yamabet | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
.txt[@ = hidemaru.txt] -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.txt [@ = hidemaru.txt] -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A728B28-DFE0-44F2-A1B2-7A3607396424}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1F2B3562-8C80-409A-A29D-0FC850AD9EEF}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{517189D6-3363-4412-B106-4C17B778FEC1}" = lport=10243 | protocol=6 | dir=in | app=system |
"{55E8F12A-E5E9-4EB0-AD0C-E8ECEF083189}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6948C74D-7A97-4024-86FF-09B2C4D04D8D}" = lport=5357 | protocol=6 | dir=in | name=ws-eventing tcp ポート 5357 |
"{6C1428AF-4935-4E56-97C9-39BC405460BB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E3906CE4-1807-45A3-8E6D-6C0B922F46B2}" = rport=10243 | protocol=6 | dir=out | app=system |
"{E4F7D4D8-B209-47B6-9152-3A04914E09A8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EA27E012-5F48-4420-BD6E-3542561054E5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB84D18F-85DC-4585-A5EE-C0351CC69D96}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03CBE4DE-D64D-42D2-825A-39618676EB9B}" = dir=out | name=@{microsoft.bingfinance_3.0.1.299_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{0515DB25-BA00-4FF1-9D0F-992F542D86D5}" = dir=out | name=roxio mediabook express |
"{094C6AE4-E8E8-4A2A-B92D-FB97BAB1CFDD}" = dir=out | name=思い出フォトビューア |
"{0A06D460-E8D7-4E8F-97BB-4DA276BDE6A0}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{0CF540B5-B933-4E0C-A10E-FADEC2534B5F}" = dir=out | name=navitime for toshiba |
"{0DBBB111-E06B-4D17-B0A9-8D32BBB76557}" = dir=in | name=juniper networks junos pulse |
"{0E43C4DD-C2FB-46D2-824C-363855DA23DA}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0EA04CF2-20E3-4230-8647-2CE089CF5099}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\mediasyncagent.exe |
"{0F838544-6651-49C0-A110-9B8E074B13C3}" = dir=out | name=yadotan |
"{10869903-221C-4D2E-89F6-D8FDB12D78A8}" = dir=out | name=デジタル貸金庫 |
"{120A3BB5-E74A-400C-A373-C3F0B4D7B8CD}" = dir=in | name=check point vpn |
"{128A2A83-CE7D-48CC-A857-2A883786CC5F}" = dir=out | name=楽天レシピ |
"{1310558B-D18F-44D7-9D56-540AA09008CF}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{1365F937-8C1F-4F4C-9802-DF1E1CEE2858}" = dir=out | name=@{microsoft.zunemusic_2.2.299.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{162BAEFD-B954-49F0-84C8-882279786DB8}" = dir=out | name=@{microsoft.bingtravel_3.0.1.202_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{16D8520B-EB94-45A1-802C-F8365245FC2F}" = protocol=6 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{1710FE8E-FAC5-4A24-847F-EF8B068BB3A9}" = dir=out | name=ホットペッパー グルメ |
"{1721525C-1413-48A0-8224-E4C4F89F3BE0}" = dir=in | name=f5 vpn |
"{17C031FF-96F8-4B57-BD1A-944F6B766E4C}" = dir=in | name=思い出フォトビューア |
"{194350B9-74CD-4E4E-881B-151ABDA1AE16}" = dir=out | name=yadotan |
"{1EBF229E-EBBC-4CF6-A940-BC6EF19DEDB8}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{1FA527A3-0067-4C24-A8FD-9481CA84E10F}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{2088BDB9-70B7-4B0B-B2DA-81C7E715B025}" = dir=out | name=windows_ie_ac_001 |
"{22D845C0-3515-4BF0-890C-1A8E3BF4283B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2329A85C-7F6D-4067-899F-2428BF6491D1}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.254_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{24C32A29-21B8-4EC5-8A57-B6A0C4F2BA0B}" = dir=out | name=check point vpn |
"{2707C7E5-8D6A-4D00-BC9E-F7F3B56D50B8}" = dir=in | app=c:\program files (x86)\cyberlink\rz player\kernel\dms\toshibamsserver.exe |
"{29924B22-68F8-46D3-9837-DB099413166B}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{2AC75A45-A764-4C02-9BE7-B09B778A9FAB}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{2AC9A461-21F9-4B42-B058-C2B87E3300CF}" = dir=out | name=skype |
"{2BC03BAB-6136-417B-8E77-C874F4FF61B9}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{2E085C5B-AB26-4BCA-9B44-84C75E928BA2}" = protocol=6 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"{2F66E071-7F0F-4E2A-804D-1E00AD9B3960}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{315ACE1C-8DFA-423E-8164-A4294AB37877}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{3343B152-85AE-4A7F-B05A-613333E7160D}" = dir=out | name=@{microsoft.bingtravel_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{3379EDD4-DCD9-4DCA-BBE1-0127CEFC3110}" = dir=out | name=@{microsoft.bingnews_3.0.4.213_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{34167B4F-AFEB-46E7-95B6-477F6E0C921B}" = dir=out | name=juniper networks junos pulse |
"{34381840-BCBE-419A-A61C-CF1FE67C301E}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\kernel\dms\clmsservermediasync.exe |
"{34CABFA4-402B-4034-BD6C-6BFBBC1A81E3}" = dir=in | name=skype |
"{37FE9880-74E4-464F-9B35-223D5CE813AC}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{3819697F-8A3F-46FE-9B35-BFE11798ACE8}" = dir=out | name=hp printer control |
"{394FBF34-EB6B-4F74-977F-36BCB029BD73}" = dir=out | name=楽天レシピ |
"{398519BE-B64C-4ABF-AB2E-373735AC3F00}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{3DED30A9-F498-448C-81D6-A0390BDC647B}" = dir=out | name=tsutaya discas レンタルランキング |
"{3EF4FB91-B97E-47DD-92A3-36C95DD550D4}" = dir=out | name=@{microsoft.bingfinance_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{40B40727-8714-4E77-B2F4-E238DF822E04}" = protocol=6 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{45C334C2-E222-457A-AA36-9AFFA4699F0D}" = dir=in | name=check point vpn |
"{47D2F82A-9E36-4C28-A648-CAE343F104E5}" = dir=in | name=sonicwall mobile connect |
"{484A83EA-B3CC-4844-A026-ABCB6680ACCF}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{51B9DBCB-B520-401B-8E80-4BFE019F5BEE}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{5370AEFA-B817-4898-A9B8-A7FF9DD88F7E}" = dir=out | name=skype |
"{53EEE14B-5D76-41D1-A95C-2107A7A0C65E}" = dir=out | name=tsutaya discas レンタルランキング |
"{546F241F-108F-4212-8B53-55D20DE44821}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{5579DB9D-FBD6-4B6C-8CA2-1A56BC0D4EFE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{57AB43CA-0150-42E8-A305-B22C1D52C18A}" = dir=out | name=f5 vpn |
"{5C5EE2EA-0261-4AE4-82D4-38FA60F8D202}" = dir=out | name=@{microsoft.zunevideo_2.6.432.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{5D26DF7B-F2AD-4A39-8F19-A90F0603629D}" = dir=in | name=hp all-in-one printer remote |
"{5EF5A533-EF7C-401C-994F-D802365C67AF}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{5F2CB441-13C1-430D-B36F-E5E92AA3AF84}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20321_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{60962BE1-C3DF-4C9F-A3DA-ED6B5475EC07}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.201_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{627137BE-EB69-4C2D-805E-D6A374F0BED9}" = dir=out | name=yahoo!オークション (ts) |
"{64458F2B-26E1-4CF0-9A2A-2DA9881BB133}" = dir=out | name=juniper networks junos pulse |
"{6488F08A-B321-4AFB-B1CE-70B76D149F8E}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{65B7C9FF-AD79-46D0-8A70-1636417120B2}" = dir=out | name=windows_ie_ac_001 |
"{68938335-66AA-4669-989E-4F7E0B38A85B}" = protocol=17 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"{68A83DCA-4CE3-42CB-A36B-BEFD8ACA1A5C}" = dir=out | name=roxio mediabook reader |
"{6B16F238-AF68-4B3E-9A1F-F6D484E7908A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6BDC7F02-DD20-4EAA-91A3-4B686E883B6E}" = protocol=6 | dir=in | app=c:\program files (x86)\real\realplayer\rpds\bin\rpdsvc.exe |
"{6BF4B0DC-A5BF-47BB-B7C3-216533D31331}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{6E837587-BA78-40A4-B618-5FD15B87D15B}" = dir=out | name=@{microsoft.bingweather_3.0.4.249_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{6F14AAEC-4341-44D4-98CD-98D3F81B22E7}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{6F1A10A8-2C1A-4B57-B35D-F61B35E56CD1}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7012914D-4D18-4718-A961-06537B873B1E}" = dir=out | name=sonicwall mobile connect |
"{70BA1735-01D6-4500-8DF5-458EC41C97EB}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{70BF1C9A-7B3D-48AC-8631-986792AD8F3D}" = dir=out | name=sonicwall mobile connect |
"{71957E53-5F57-4DCE-B5FA-1A4D9BE139F8}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{720C582A-DCCC-4C7D-84A2-DD237BFC56C2}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{725EC4FB-49E8-430B-A1B3-28047897E690}" = dir=out | name=toshiba media player by smedio truelink+ |
"{72D959C9-32B8-469D-AEF2-6D12B52AAFEA}" = dir=out | name=check point vpn |
"{742FFB4B-4B15-478F-9F2C-E7211A28C27D}" = protocol=6 | dir=out | app=system |
"{789C2A25-B02F-4C59-BE98-444823CCD59F}" = dir=out | name=@{microsoft.bingsports_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{79284681-13AC-48F2-B25A-24CC6AB0EC7C}" = dir=in | name=f5 vpn |
"{7B13031D-0B4C-4002-B61F-FFCCB84A241B}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{83C1C0B3-CACC-4EBB-A589-D91B6C88F787}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8988DC23-EF15-4069-8B8B-E4D2200EA1AE}" = dir=out | name=東芝プレイス |
"{89F1D931-7878-45EB-B38D-594BDC44B1A0}" = dir=out | name=東芝プレイス |
"{8A646EC2-22F6-47A4-ABAE-A0957879041E}" = dir=out | name=楽天gateway |
"{8AB779B4-819C-4DFA-8D38-81B2EA1B50EA}" = dir=out | name=ホットペッパー グルメ |
"{8ADEE186-9E48-45CA-9FBC-5E8A8E1F4580}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{8DA056FF-29AB-435C-832A-97BD617F9A86}" = dir=in | name=思い出フォトビューア |
"{8E901B45-FE90-43A4-8FAE-3D51E8BC8210}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\mediasync.exe |
"{909ACBF3-F264-4FB2-ADE6-BD6720887DDF}" = dir=out | name=@{microsoft.zunemusic_2.6.649.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{93F0FA52-05D6-4D5F-8118-9513108FAFDA}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9C11635A-886F-41BB-B99F-B5F1D7B70322}" = dir=in | name=juniper networks junos pulse |
"{9CDA034F-615F-4E1D-9D64-7641A617DDCA}" = dir=out | name=hp all-in-one printer remote |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9ED0B77C-E053-45F6-8430-C6F436EB6852}" = dir=out | name=楽天gateway |
"{A11CD797-EA49-4611-AF26-7A50C08D10F6}" = dir=in | name=@{14c78905.trendmicromalwaremap_6.5.0.1039_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{A2E3CA98-6D35-4151-AF07-5792B14423AC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A300A196-A140-4ACC-BADE-F8BC8C1B6B0F}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{A3B59F66-216F-4C6B-A738-C07AA34F8FE2}" = dir=out | name=@{microsoft.bingmaps_2.0.2210.2401_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{A77EC5B4-3918-487F-BACA-D472610928B6}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{AB34EA0C-626E-4E04-8173-B7078DEB3BB2}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{ABDE6011-7A5A-4DE7-BF8C-7E04F3908385}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AC4CBE28-1093-40EB-B6E9-9A893C2B869B}" = dir=out | name=f5 vpn |
"{AD338857-A0EA-40AA-9288-ABDBC14E51F6}" = dir=out | name=yahoo!オークション (ts) |
"{ADA495C6-CF58-4684-9311-6FB50D886A17}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{AF5CD243-D2A8-454E-8579-B1E5461F3327}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B1974FFE-B1A5-4F38-BDBC-BD4284DDC36D}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{B4D0E946-8261-4ABA-95A6-2A3EB530B66E}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B5172C99-CF1D-41FD-B9B1-A706E27FE162}" = dir=in | name=hp printer control |
"{B52D6B3E-EB70-441F-976A-442C428F1CBC}" = dir=out | name=music.jp for toshiba |
"{B5E8A475-3DCA-4C83-9E53-65EF6201F504}" = dir=out | name=youcam for toshiba |
"{B74C9712-1C7F-4D2E-A117-1B2C2997AC15}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B852C38F-18FD-4A63-9E4E-B99CBB1F46FD}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{B9B09C8D-2A9E-4057-AC75-2CC0DD577175}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{B9CCBC07-EB60-4E07-A431-22968E9DC7E4}" = dir=out | name=@{microsoft.bingsports_3.0.4.244_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{BA493F21-7B3A-448C-9AFC-B7B38FDDD58F}" = dir=out | name=roxio mediabook reader |
"{BB3EFF35-ECFE-4458-BE84-F8454A1E2E33}" = dir=in | app=c:\program files\hp\hp envy 4500 series\bin\devicesetup.exe |
"{BBD93587-38C7-4FE4-A04A-441C14DE6E5D}" = dir=out | name=windows_ie_ac_001 |
"{BC64A8D3-D0A7-453F-AC22-232D49039CA9}" = dir=in | name=toshiba media player by smedio truelink+ |
"{BE0BF64B-5ECA-4DEE-B404-D5D62FB30CA1}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{BF5A8F9F-8526-45F2-B0D4-00445D598416}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.335_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{C05F05F2-702D-41BE-96AC-84B745FC6547}" = dir=in | app=c:\program files (x86)\cyberlink\rz player\softdma.exe |
"{C37D5D1D-698C-4883-B082-A80C45EBB325}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{C48C5FC4-4671-4E5E-B660-9CC50F9AA9D6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C6699B5B-5833-4630-9177-549414AC48A9}" = dir=out | name=roxio mediabook express |
"{C6D816F8-FD05-4978-A7E8-F0A5FD37ADD7}" = dir=out | name=fresh paint |
"{C7586A3D-539F-4E51-8FDB-1835658275C1}" = dir=in | name=sonicwall mobile connect |
"{C7F29022-443E-4B84-9079-ACF0854410CF}" = dir=in | app=c:\users\yamabet\appdata\local\microsoft\skydrive\skydrive.exe |
"{C8DBC020-C949-45FE-BF24-6A1756F70CA6}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C9223C2F-B0B9-4CF9-95F2-8AFF849C0786}" = dir=in | app=c:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe |
"{C92A27FF-3808-453A-B3D4-08EE189D52F4}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CA88B71B-895C-49B8-BC7D-6490C48B78A9}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CA9BBEAF-BD4F-4457-9B45-4CAAB030254D}" = dir=out | name=@{microsoft.bingnews_3.0.1.321_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/apptitle} |
"{CAE31180-A9CE-447C-A7AF-EC47C99332B6}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CB60C7B0-9377-4A3D-A91C-1315B2BECA08}" = protocol=17 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{CC9597AE-0F1B-481F-BEB8-E25D789EFC23}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{CDA2869C-22A2-4178-BC71-C674BA02697E}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{CF08A68D-88E3-4922-ACAC-51A3E5D1AE8D}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{CF12386D-5E61-4110-95D4-E54DC830E102}" = dir=out | name=@{microsoft.bingweather_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{CFCD81EA-116B-4642-9878-B85DAEF7B63D}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20321_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{D1C5BFC3-1203-4A7C-8CE6-027E85D1D20A}" = dir=out | name=music.jp for toshiba |
"{D1DBBEE9-A42F-40BB-BD14-A8E9D6D974DA}" = protocol=17 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{D40D3E0D-BB06-4D9B-9A75-BDC5A85DE461}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D4572384-44BF-40A5-96CB-027E550A6668}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D557D1E0-E7B5-4C08-8EBF-EC263C884D0E}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D7C944C8-5064-4D35-8570-E0F46ABAF0F2}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D8AD4726-7546-476F-B65D-B767ABAF115D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DCB06C02-9E74-4C4C-8C9F-2F5FF305E501}" = dir=out | name=@{microsoft.zunevideo_2.2.299.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{DEF1544C-E11D-45BF-B1A8-FB78EA7B1C68}" = dir=out | name=toshiba media player by smedio truelink+ |
"{DEFF9D5A-F0B4-489A-909B-57AA495077FD}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{E21789F2-D2B5-40E8-BBE5-056CA3E3BEB3}" = dir=out | name=@{14c78905.trendmicromalwaremap_6.5.0.1039_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{E362EA98-16BC-4D05-BCD5-EC07A762B683}" = dir=in | name=toshiba media player by smedio truelink+ |
"{E3E6C3DC-CB1A-4275-BB87-609F6C2AC9FD}" = dir=out | name=デジタル貸金庫 |
"{E7394345-3592-419B-A262-6B95D75EF1E4}" = dir=out | name=思い出フォトビューア |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EF1ABBE6-2767-4AFF-8DC9-1ABBEEE66D49}" = dir=out | name=navitime for toshiba |
"{EF6DCAA7-DB33-4D58-B695-69ED8B985189}" = dir=in | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{F222CEDA-7554-4944-A223-2F6E83363924}" = dir=out | name=youcam for toshiba |
"{F47E1BE7-2692-48AA-B42C-6C3C466C5969}" = dir=out | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{F56F08E7-0B99-4FDF-A364-8CB5E47740D9}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FB2F22C9-22D2-4302-854E-CDE6038B1CBF}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{FE200DDB-EED2-4D06-BE4A-80FBCDE63C9A}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{FE68F051-FA37-435E-9E35-69B98ACEF730}" = dir=out | name=fresh paint |
"TCP Query User{21F672AF-CA55-4576-B345-910F740859FB}C:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{962C36FC-CB1A-4241-8125-34A48C579E18}F:\usbplayer\usbplayer.exe" = protocol=6 | dir=in | app=f:\usbplayer\usbplayer.exe |
"TCP Query User{971CA8D0-986E-4034-9668-E0079794E337}C:\program files (x86)\tapur\tapur.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"TCP Query User{B95E76BA-6377-4A82-81F5-953641E563B4}C:\program files (x86)\tapur\tapur.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"TCP Query User{EA2D5E5C-174B-4CA7-91B7-BD3900F5086B}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"UDP Query User{558A4B21-80AA-4DCD-BA72-622D2253210B}C:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{BF687708-37C2-4F9A-BA9F-01EA9A50CE71}F:\usbplayer\usbplayer.exe" = protocol=17 | dir=in | app=f:\usbplayer\usbplayer.exe |
"UDP Query User{EB6BB7BA-90F1-438E-83A8-0CF8004878B6}C:\program files (x86)\tapur\tapur.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"UDP Query User{EE56E3AD-B3D6-42E3-B65B-F99616532255}C:\program files (x86)\tapur\tapur.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"UDP Query User{F16BB53A-8288-41E5-AA2F-CDEFDE65692C}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000A208E-1050-4181-AC37-E13DA9254B73}" = Premium Sound HD
"{1593C708-5535-47A4-8C0F-F8D4BE2B4560}" = インテル® PROSet/Wireless WiFi ソフトウェア
"{164CB153-9D0D-4985-A5A8-F7C31851CA6F}" = HP ENVY 4500 series ベーシック デバイス ソフトウェア
"{16562A90-71BC-41A0-B890-D91B0C267120}" = TOSHIBA Function Key
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21E47F47-C9A7-4454-BA48-388327B0EA00}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}" = iTunes
"{320CA1B5-9CD5-4F75-9A25-137B1EDDEB5E}" = TOSHIBA Password Utility
"{5944B9D4-3C2A-48DE-931E-26B31714A2F7}" = TOSHIBA eco Utility
"{5A1CD0BB-7E65-45DC-9A9A-682CE8B62AA4}" = Update for Japanese Microsoft IME Standard Dictionary
"{5F588B19-C575-4750-86FD-6ED2B76E61F1}" = インテル(R) PROSet/Wireless WiMAX ソフトウェア
"{6097158B-0184-4140-BEC3-7885794D2571}" = Intel(R) WiDi
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{75261675-CE76-49D1-8A66-401B2CE69703}" = TOSHIBA Manual
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E59415B-ECAC-43F7-B496-7BCD636C63E1}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{90150000-008F-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{95CCACF0-010D-45F0-82BF-858643D8BC02}" = TOSHIBA Desktop Assist
"{977D1ABF-4089-4CA7-BA33-CC75808B7ACE}" = Intel® Trusted Connect Service Client
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = ウイルスバスター クラウド
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{B2A88B4D-3BC0-49F6-85A4-0E6F0E34D90B}" = TOSHIBA Active Display Off
"{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}" = Oracle VM VirtualBox 4.3.12
"{B618DB1F-BA15-443F-A724-67B210EA3CE3}" = ANT Drivers Installer x64
"{B939BFEB-824F-4456-A4EE-2B86ED04033D}" = Update for Japanese Microsoft IME Trending Words Dictionary
"{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}" = Apple Mobile Device Support
"{C7B204A8-F6FE-44AC-A751-ECEDE4507E07}" = TOSHIBA Speech Synthesis
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D000D1C0-6E80-4FC4-BE4E-A88872C0616F}" = Share64
"{E0DA877B-B17C-4E0B-A220-A6BA13B7B9AB}" = 東芝ジェスチャコントローラ
"{FBA99E61-D20C-4033-B5C3-7D4E0897CC5D}" = 製品改善のための調査 HP ENVY 4500 series
"{FF07604E-C860-40E9-A230-E37FA41F103A}" = TOSHIBA VIDEO PLAYER
"06F641081879AE7F85D9768F27B91E0FEDA3632F" = Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702)
"CCleaner" = CCleaner
"D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2" = Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1)
"F9D2A789F9CFF8CEC36B544F53877C80F1F73C46" = Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
"HomeStudentRetail - en-us" = Microsoft Office Home and Student 2013 - en-us
"ProInst" = Intel PROSet Wireless
"PROSet" = Intel(R) Network Connections Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{1A1BD41E-9854-4957-8959-F9559A8862A7}" = Corel VideoStudio X5
"{02D371DE-95DC-4F6F-A1A6-4C957D6721A9}" = 筆ぐるめ 20
"{05A55927-DB9B-4E26-BA44-828EBFF829F0}" = TOSHIBA System Settings
"{0D04A4D2-7CE9-4EC2-970F-4A639D721D46}" = Pixia ver. 6
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15015752-9990-4516-A2B1-93823281FB8E}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{16CA0E87-913B-44C3-BA6C-DDBDD037752E}" = PC引越ナビ
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1A1BD41E-9854-4957-8959-F9559A8862A7}" = ICA
"{1E6A96A1-2BAB-43EF-8087-30437593C66C}" = TOSHIBA System Driver
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21357E10-BDCB-4CDD-B2A3-905DD7ED653D}_is1" = DigiBookBrowser Version 1.5.1.4
"{21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6}" = TOSHIBA PalaDouga
"{22939821-cd61-449c-8a03-cff0af03c156}" = Garmin Express
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype(TM) 7.0
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2B78F0C7-DD01-4FA6-8C0A-B1CC0AD70563}" = Garmin Express Tray
"{2C96F677-7D9C-4087-8CA5-21EB27150F41}" = Roxio Creator LJ
"{2FD19101-DEFB-49AC-80B5-129B171AE4DF}" = HP ENVY 4500 series ヘルプ
"{389F8A7A-8611-42E8-8169-20D2BAF0C595}" = Microsoft Office Live Meeting 2007
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{4D605B2E-DC56-45f6-809C-E29BF9470DB9}" = CyberLink MediaSync
"{51F0CC36-5EB0-4B9E-8F97-6AE9AD81BD7A}" = PCあんしん点検ユーティリティ
"{5705EC66-E894-454D-A014-ADF1DF920C10}" = いつもNAVI PC
"{5BB655D4-07D7-45E3-B852-FF869EA628A1}" = VSPro
"{5E6D0ABA-ABDE-11E3-9AED-00163E98E7D6}" = Evernote v. 5.2.1
"{62796191-6F12-4ABE-BA8B-B4D4A266C997}" = Video Downloader
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{66C70B5F-730F-4C5D-9FC5-8E56D0FE7D53}" = IPM_VS_Pro
"{6A6F7B28-E178-47AC-8654-A654ADA6C777}" = VSHelp
"{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}" = TOSHIBA Resolution+ Plug-in for Windows Media Player
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6FCD4D5A-20B9-4D79-ABA5-4E7048944025}" = RealDownloader
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74DC8A26-4E05-40B6-AD11-C9428A1AE150}" = Roxio Creator LJ
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}" = Update for Japanese Microsoft IME Standard Extended Dictionary
"{7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}" = Adobe AIR
"{7DB71278-9AD7-4480-AB08-8649C5010B17}" = Update for Japanese Microsoft IME Standard Dictionary
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}" = Apple Application Support
"{86DAC53F-8C9B-46F0-9A47-C29DE27C1CE8}" = Garmin Express
"{89A15676-78AE-4D51-BF5B-DEE3E0D46C94}" = Roxio Creator LJ
"{8AA4F966-EF4B-44D8-99AA-C4EA93B46863}" = VSClassic
"{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink MediaShow 6
"{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
"{90150000-008C-0409-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A8887C7B-0BCC-4FBF-BCEB-9BB4D4B14999}" = Setup
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{aa4bf92b-2aaf-11da-9d78-000129760d75}" = RZスイート express
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{AC76BA86-7AD7-1041-7B44-AB0000000001}" = Adobe Reader XI (11.0.09) - Japanese
"{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}" = HPDiagnosticAlert
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{B69F4E72-CCA4-4352-BF1C-708CE3D96E25}" = OEM Registration Program
"{BAADC016-C971-4653-AEAA-36EABD1351C4}" = Elevated Installer
"{C21D8176-EC78-484D-B702-DD963329EEF8}" = ぱらちゃんV2.3
"{CA486743-5F44-40D5-A38B-77911FB27579}" = Contents
"{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1" = LoiLoScope 2
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{DCDC6934-7428-489E-8651-90B53191488B}" = ISCOM
"{DF3CE489-9C57-4ADA-AD72-DF45C187E657}" = おたすけナビ
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{e6171278-8759-449d-9e0b-c1825debc2ad}" = RealDownloader
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EEBEF66A-70FD-4DF6-B173-82D07E61853E}" = Share
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.24)
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FBEFDC9E-F8FB-4B66-A78B-09B7B380D59D}" = RealDownloader
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FE041B02-234C-4AAA-9511-80DF6482A458}" = RICOH Media Driver v2.23.17.01
"Adobe AIR" = Adobe AIR
"Cisco Connect" = Cisco Connect
"Hidemaru" = 秀丸エディタ (8.31)
"HP Photo Creations" = HP Photo Creations
"InstallShield_{0D04A4D2-7CE9-4EC2-970F-4A639D721D46}" = Pixia ver. 6
"InstallShield_{4D605B2E-DC56-45f6-809C-E29BF9470DB9}" = CyberLink MediaSync
"InstallShield_{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink MediaShow 6
"InstallShield_{aa4bf92b-2aaf-11da-9d78-000129760d75}" = RZスイート express
"IObit_StartMenu8_is1" = Start Menu 8
"IObitUninstall" = IObit Uninstaller
"LAPLINK HelpDesk Client" = LAPLINK ヘルプデスク クライアント
"Lhaca" = +Lhaca
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"music.jp PLAY_is1" = music.jp PLAY 4.0
"P-Study System 8" = P-Study System 8
"RealPlayer 17.0" = RealPlayer Cloud
"Tapur_is1" = Tapur 5.3.0.111
"VLC media player" = VLC media player
"Windows Media Encoder 9" = Windows Media Encoder 9 Series

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-2444105407-761587448-759363881-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"SkyDriveSetup.exe" = Microsoft SkyDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2014/08/15 20:17:24 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/15 20:48:14 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/15 21:10:51 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/16 11:31:02 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/16 12:21:42 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/16 12:26:56 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

Error - 2014/08/18 19:38:05 | Computer Name = Yamabe-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2014/08/18 19:38:05 | Computer Name = Yamabe-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1172

Error - 2014/08/18 19:38:05 | Computer Name = Yamabe-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1172

Error - 2014/08/18 22:07:15 | Computer Name = Yamabe-PC | Source = SideBySide | ID = 16842785
Description = "C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe"
のアクティブ化コンテキストの生成に失敗しました。 従属アセンブリ rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
が見つかりませんでした。 詳細な診断を行うには sxstrace.exe を実行してください。

[ System Events ]
Error - 2014/10/08 18:16:13 | Computer Name = Yamabe-PC | Source = DCOM | ID = 10010
Description =

Error - 2014/10/09 21:32:20 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/09 21:32:25 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 2014/10/11 14:39:38 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/11 14:39:43 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 2014/10/12 21:11:37 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/12 21:11:42 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 2014/10/12 22:49:36 | Computer Name = Yamabe-PC | Source = DCOM | ID = 10010
Description =

Error - 2014/10/13 20:45:56 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/13 20:46:03 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =


< End of report >

作業と報告、ご苦労様です。
OTLログを見せてもらったところ、少しゴミが見つかりました。これをOTLで掃除しましょう。
このレスの最後にスクリプトを貼っておくので、それを丸ごとコピーして、それをWindowsのメモ帳ファイルに貼り付けて保存しておいてください。

用意できたらPCをまたセーフモードで再起動してOTL起動してください。
起動したらOTLのウインドウ下部にスクリプトを貼り付けて、今度は「Run fix」（赤字のボタン）を押してください。
これでOTLでの処置が開始されます。

しばらく待って処置ができたらPCを通常モードで再起動すると、またOTLのログが出るはずなので、それを保存してから、しばらく様子見の後、OTLのログとともに状態報告をレスください。
OTLのスクリプトは以下になります。破線(-----)を含まない箇所を丸ごとコピーして、それをOTLに貼って作業してください
------------------------------------------
:OTL
DRV:[b]64bit:[/b] - [2014/12/10 11:12:45 | 000,050,976 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
E - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2444105407-761587448-759363881-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
[2014/11/26 18:07:59 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Documents\TokyoLoader
[2014/11/26 18:07:59 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Roaming\TokyoLoader
[2014/11/21 19:46:26 | 000,000,000 | ---D | C] -- C:\ProgramData\RightsNetwork
[2014/12/10 11:12:45 | 000,050,976 | ---- | M] (AVG Technologies) -- C:\WINDOWS\SysNative\drivers\avgtpx64.sys

:Files
C:\Users\yamabet\Documents\TokyoLoader
C:\Users\yamabet\AppData\Roaming\TokyoLoader
C:\ProgramData\RightsNetwork
C:\WINDOWS\SysNative\drivers\avgtpx64.sys

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------------------------------------------

悪代官様，

最近のPCの動作状況について，強いて挙げれば，時々ネットの接続が遮断されるような気がしますが，再接続を行えばすぐに繋がりますので，それほど気にはしていません。このネット遮断については，Windows ネットワーク診断で「アクセスポイント，ルーター，またはケーブルモデムとインターネット間の接続が中断しました。デフォルトゲートウェイは使用できません。」という表示たでた後に解決します。
ちなみに，悪代官様に依頼後は指示を受けたソフトのインストールとIU経由で推奨されたDriver Boosterというソフトをインストールしました。

以上です。以下，OTLのLogです。
宜しくお願いします。


All processes killed
========== OTL ==========
Service avgtp stopped successfully!
Service avgtp deleted successfully!
C:\Windows\SysNative\drivers\avgtpx64.sys moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-21-2444105407-761587448-759363881-1001\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2444105407-761587448-759363881-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
C:\Users\yamabet\Documents\TokyoLoader folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader\Local Store\#SharedObjects\TokyoLoader.swf folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader\Local Store\#SharedObjects folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader\Local Store\#ApplicationUpdater folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader\Local Store folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader\#airversion folder moved successfully.
C:\Users\yamabet\AppData\Roaming\TokyoLoader folder moved successfully.
C:\ProgramData\RightsNetwork\RightsPlugIn folder moved successfully.
C:\ProgramData\RightsNetwork folder moved successfully.
File C:\WINDOWS\SysNative\drivers\avgtpx64.sys not found.
File rity] not found.
File sethosts] not found.
File ptytemp] not found.
File eaterestorepoint] not found.
File boot] not found.

OTL by OldTimer - Version 3.2.69.0 log created on 12222014_115141

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

作業と報告、ご苦労様です。

>最近のPCの動作状況について，強いて挙げれば，時々ネットの接続が遮断されるような気がしますが，再接続を行えばすぐに繋がりますので，それほど気にはしていません。このネット遮断については，Windows ネットワーク診断で「アクセスポイント，ルーター，またはケーブルモデムとインターネット間の接続が中断しました。デフォルトゲートウェイは使用できません。」という表示たでた後に解決します。

OTL処置後の設定変更に絡む症状でしょうか。
とりあえずすぐに復旧するならここはいいかと思います。

>IU経由で推奨されたDriver Boosterというソフトをインストールしました。

はい、Iobit社のアプリを入れている環境のPCでは、昨日あたりに一斉に『かなり行儀悪い形で』インストールされたようですね。
Driver BoosterはPCをセーフモードでアンインストールしていいです。
アンインストールしたらそのあとにPC再起動後、しばらく状態報告の後にまた情報ログと、CCで各タブのログを取り直して、それらを状態報告とともにレスください。
CCのログは「コンテキストメニュー」タブのログもとってください。

おそらくアンインストールしたあともDriver Boosterの残骸が残っているはずなのでそれも掃除することになりそうです

悪代官様，

あっ，すいません。同じメーカーで推奨されたソフトのメーカーだったので思わずポチと押してしまいました…。申し訳ありません。IUで削除しました。PCの現状については特に異常はありません。

一つ教えて頂きたいのですが，悪代官様はどのようにして最新版のソフトのバージョンを確認されていますでしょうか。下記のSkypeについて，再インストールしても旧バージョンだと指摘されたので再度インストールしたのですが
同じ版しかインストールできませんでした。

>Skype(TM) 7.0 Skype Technologies S.A. 2014/12/23 47.9 MB 7.0.102

ダウンロードサイトはコチラ（Skype for windows desktop）です。

http://www.skype.com/ja/download-skype/skype-for-computer/

以下CCのログです。通常モードで取得しています。

CC情報ログ（Install）---------------
+Lhaca 2014/12/21
Adobe AIR Adobe Systems Incorporated 2014/12/21 15.0.0.356
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/20 205 MB 11.0.09
Apple Application Support Apple Inc. 2014/10/16 95.2 MB 3.1
Apple Mobile Device Support Apple Inc. 2014/10/16 19.5 MB 8.0.5.6
Apple Software Update Apple Inc. 2013/10/13 2.38 MB 2.1.3.127
Bonjour Apple Inc. 2013/10/13 2.00 MB 3.0.0.10
CCleaner Piriform 2014/12/23 5.01
Cisco Connect Cisco Consumer Products LLC 2014/12/21 1.4.12334.0
Corel VideoStudio X5 Corel Corporation 2014/12/21 609 MB 15.0.1.29
CyberLink MediaShow 6 CyberLink Corp. 2013/07/02 672 MB 6.0.4528
CyberLink MediaSync CyberLink Corp. 2012/12/18 218 MB 1.0.1128.04
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2012/12/18 8.47 MB 1.5.1.4
Dropbox Dropbox, Inc. 2014/12/16 3.0.3
Evernote v. 5.2.1 Evernote Corp. 2014/03/26 207 MB 5.2.1.3108
Garmin Express Garmin Ltd or its subsidiaries 2014/12/21 115 MB 3.2.18.0
Google Toolbar for Internet Explorer Google Inc. 2014/12/21 7.5.5111.1712
HP ENVY 4500 series ヘルプ Hewlett Packard 2013/11/28 8.35 MB 30.0.0
HP ENVY 4500 series ベーシック デバイス ソフトウェア Hewlett-Packard Co. 2013/11/28 159 MB 32.0.1180.44630
HP FWUpdateEDO2 Hewlett-Packard 2013/12/31 1.53 MB 1.2.0.0
HP Photo Creations HP 2014/12/21 14.6 MB 1.0.0.7702
HP Update Hewlett-Packard 2013/11/28 4.04 MB 5.005.002.002
Intel(R) Control Center Intel Corporation 1.2.1.1008
Intel(R) Management Engine Components Intel Corporation 8.1.0.1281
Intel(R) Network Connections Drivers Intel 2013/12/04 916 KB 17.3
Intel(R) Processor Graphics Intel Corporation 10.18.10.3308
Intel(R) Rapid Storage Technology Intel Corporation 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/12/21 2.0.0.37149
Intel(R) WiDi Intel Corporation 2013/07/02 121 MB 3.5.40.0
IObit Uninstaller IObit 2014/12/17 4.1.5.30
iTunes Apple Inc. 2014/10/16 245 MB 12.0.1.26
Lagarith Lossless Codec (1.3.24) 2013/08/24 931 KB
LAPLINK ヘルプデスク クライアント Intercom, Inc. 2014/12/21 2.02
LoiLoScope 2 LoiLo inc 2012/12/18 166 MB 2.5.2.0
Malwarebytes Anti-Malware version 1.75.0.1300 Malwarebytes Corporation 2014/12/18 19.3 MB 1.75.0.1300
Microsoft Office Home and Student 2013 - en-us Microsoft Corporation 2014/11/21 15.0.4667.1002
Microsoft Office Live Meeting 2007 Microsoft Corporation 2013/12/11 52.3 MB 8.0.6362.215
Microsoft Silverlight Microsoft Corporation 2014/12/17 50.7 MB 5.1.30514.0
Microsoft SkyDrive Microsoft Corporation 2014/01/05 26.6 MB 17.0.2015.0811
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2012/12/18 4.89 MB 8.0.59193
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2013/07/02 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2012/12/18 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/12/18 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 4.61 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/12/21 17.1 MB 12.0.21005.1
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 2013/08/09 2.90 MB 4.30.2117.0
music.jp PLAY 4.0 Ventis Media Inc. 2012/12/18 60.9 MB 4.0
OEM Registration Program TOSHIBA CORPORATION 2013/07/02 516 KB 1.1.0
Oracle VM VirtualBox 4.3.12 Oracle Corporation 2014/07/31 153 MB 4.3.12
P-Study System 8 2014/12/21
PCあんしん点検ユーティリティ TOSHIBA Corporation 2013/07/02 1.48 MB 1.1.6.0
PC引越ナビ 東芝情報機器株式会社 2012/12/18 12.7 MB 5.0.2
Pixia ver. 6 Isao Maruoka 2014/11/01 31.1 MB 6.01.0100
PL-2303 USB-to-Serial Prolific Technology INC 2013/07/02 1.7.0
PlayReady PC Runtime x86 Microsoft Corporation 2012/12/18 1.65 MB 1.3.0
Premium Sound HD DTS, Inc. 2013/07/02 1.74 MB 1.12.6000
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
RealPlayer Cloud RealNetworks 2014/12/21 91.7 MB 17.0.15
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2014/12/22 6.0.1.7246
RICOH Media Driver v2.23.17.01 RICOH 2013/07/02 2.23.17.01
Roxio Creator LJ Roxio 2014/12/21 260 MB 12.2.33.5
RZスイート express CyberLink Corp. 2013/07/02 131 MB 1.8.01030
Skype Click to Call Microsoft Corporation 2014/08/07 6.91 MB 7.3.16540.9015
Skype(TM) 7.0 Skype Technologies S.A. 2014/12/23 47.9 MB 7.0.102
Start Menu 8 IObit 2014/12/10 26.7 MB 1.6.0.0
SUPERAntiSpyware SUPERAntiSpyware.com 2014/12/18 48.3 MB 6.0.1168
Synaptics Pointing Device Driver Synaptics Incorporated 2014/06/09 46.4 MB 17.0.8.2
Tapur 5.3.0.111 tapur.com 2013/08/24 9.33 MB
TOSHIBA Active Display Off Toshiba Corporation 2013/07/02 17.2 MB 1.2.0.0
TOSHIBA Desktop Apps Menu Toshiba Corporation 2012/12/18 464 KB 1.00.09.6405
TOSHIBA eco Utility Toshiba Corporation 2013/07/02 20.4 MB 2.0.1.6408
TOSHIBA Function Key Toshiba Corporation 2013/07/02 31.3 MB 1.00.6626.6409
TOSHIBA HDD Protection Toshiba Corporation 2013/07/02 20.9 MB 2.5.1.1
TOSHIBA Manual TOSHIBA CORPORATION 2013/07/02 27.5 MB 0130.01.3001
TOSHIBA PalaDouga TOSHIBA CORPORATION 2012/12/18 140 MB 2013.0101.0002
TOSHIBA Password Utility Toshiba Corporation 2012/12/18 3.86 MB 3.01.01.6403
TOSHIBA PC Health Monitor Toshiba Corporation 2013/07/02 56.9 MB 1.8.17.640104
TOSHIBA Recovery Media Creator Toshiba Corporation 2012/12/18 2.2.2.54043007
TOSHIBA Resolution+ Plug-in for Windows Media Player TOSHIBA Corporation 2013/07/02 1.2.2.00
TOSHIBA Speech Synthesis TOSHIBA CORPORATION 2013/07/02 65.0 MB 1.5.1.7
TOSHIBA System Driver Toshiba Corporation 2013/07/02 5.52 MB 1.00.0015
TOSHIBA System Settings Toshiba Corporation 2013/07/02 9.87 MB 1.00.0002.32002
TOSHIBA VIDEO PLAYER Toshiba Corporation 2013/07/02 48.3 MB 5.1.0.21-B
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/30 7.60 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/01/30 40.3 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/01/30 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/09/22 17.0 KB 16.0.1016.1
VLC media player VideoLAN 2014/12/21 2.1.5
Windows Media Encoder 9 Series 2014/12/21
Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702) Broadcom Corporation 2013/12/04 10/05/2012 12.0.0.2702
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2014/10/19 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2014/10/19 02/06/2007 3.1
いつもNAVI PC ZENRIN 2012/12/18 6.1.2
おたすけナビ 東芝情報機器株式会社 2012/12/18 20.9 MB 7.0.2
ぱらちゃんV2.3 TOSHIBA Corporation 2012/12/18 33.7 MB 2.3.16
インテル(R) PROSet/Wireless WiMAX ソフトウェア Intel Corporation 2013/07/02 14.8 MB 7.50.0000
インテル® PROSet/Wireless WiFi ソフトウェア Intel Corporation 2013/07/02 165 MB 15.05.6000.1620
ウイルスバスター クラウド トレンドマイクロ株式会社 2014/10/26 450 MB 8.0
東芝ジェスチャコントローラ TOSHIBA CORPORATION 2013/07/02 25.1 MB 3.1.6.0
秀丸エディタ (8.31) 有限会社サイトー企画 2014/12/21 8.31
筆ぐるめ 20 富士ソフト株式会社 2012/12/18 602 MB 20.00.0003
製品改善のための調査 HP ENVY 4500 series Hewlett-Packard Co. 2013/11/28 9.57 MB 32.0.1180.44630


CC Windows Log----------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe


CC IE Log-------------------
有効 Extension Evernote 5 に追加 C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
有効 Extension HP Smart Print Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension Skype Click to Call settings C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper Evernote extension Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll


CC Google Chrome Log-------------------
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Gmail 7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google スプレッドシート 1.0 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スプレッドシート 1.0 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スライド 0.8 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google スライド 0.8 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
有効 Extension Skype Click to Call 7.3.16540.9015 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0

CC スケジュールされたタスク Log---------------
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task Driver Booster Scan C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe /scan
有効 Task Driver Booster SkipUAC (yamabet) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe /skipuac
有効 Task Driver Booster Update C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe /auto
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer


CC コンテキスト log--------------------
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll

作業と報告、ご苦労様です。

>Skype(TM) 7.0

ごめんなさい、これは自分が見落としてました。それで最新のはずなのでいいです。

>どのようにして最新版のソフトのバージョンを確認されていますでしょうか

一例としては下記のようなアプリがありますが、
http://jvndb.jvn.jp/apis/myjvn/vccheck.html

自分は基本的に目視で毎日各アプリ確認してますね。
また、この掲示板に毎日来る相談者さんの投稿を見ても各アプリのインストール日とバージョンがわかるので、それも参考にしてます。

ではまた以下の手順で作業をお願いします。

またCCを起動して「Windows」タブ内の下記を「エントリの削除」してください。
>有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot

次に「Chrome」タブの下記を同様に処置です。
>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0

続いて「スケジュール」タブの下記も同様に処置を。アンインストール後もここにDriver Boosterがまだ残るのがわかってるので、掃除しておきます。
>有効 Task Driver Booster Scan C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe /scan
>有効 Task Driver Booster SkipUAC (yamabet) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe /skipuac
>有効 Task Driver Booster Update C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe /auto

ここまでできたら一度PC再起動後、少し様子見後にまたCCで各タブのログだけ取り直して、それをレスで見せてください

悪代官様，

>ごめんなさい、これは自分が見落としてました。それで最新のはずなのでいいです。

良かったです。海外組にとってSkypeは必須なのでホッとしています。また最新版を確認するソフトの紹介ありがとうございました。またPCは今のところ順調です。



>次に「Chrome」タブの下記を同様に処置です。
>無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
>有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0

このChromeタブの2つですが，今回も，「Some of the selected items cannot be changed as they are protected by the browser」という表示のために削除できませんでしたので放置しています。

以下，CCの各タブのログを提示します。宜しくお願いします。

CC Windows--------------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe


CC IE-----------------------------
有効 Extension Evernote 5 に追加 C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
有効 Extension HP Smart Print Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension Skype Click to Call settings C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper Evernote extension Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll



CC Chrome-------------------------------
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Gmail 7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google スプレッドシート 1.0 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スプレッドシート 1.0 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0
有効 Extension Google スライド 0.8 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google スライド 0.8 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
無効 Extension Search App By Ask v2 52.10 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf\52.10_0
有効 Extension Skype Click to Call 7.3.16540.9015 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
無効 Extension Skype Click to Call 7.3.16540.9015 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\7.3.16540.9015_0
有効 Extension TokyoLoader for Chrome 0.71.0 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coihpngclddhabbmolcacebmnaffhncl\0.71.0_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 1 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0
無効 Extension Trend ツールバー 8.0.0.1184 Profile 2 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1184_0


CC スケジュールされたタスク----------------
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
無効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer



CC コンテクスト-----------------------------
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll

こんばんは、IVNOと申します。
以下の件でご連絡をいたします。

Some of the selected items cannot be changed as they are protected by the browser

これを訳すと、「ブラウザにより保護されているため、該当データの変更ができませんでした。」となります。
よってこちらの設定変更はGoogle Chromeから直接行う必要があります。
Google Chromeを開いてください。
右上にある三のようなマークをクリックし、設定を開きます。
画面左側の拡張機能と言う文字をクリックし、
Search App By Ask
TokyoLoader for Chrome
上記2つを直接削除してください。
以降は悪代官さんのご案内に従ってください。

INVO様

丁寧な説明ありがとうございます。助かります。一つ補足させていただくと，以前の掲示板でも下記のように記載させていただきたのですが，現在，Chromeは削除しているんですよ…。英語の意味は何となく把握していたのですがソフトそのものがないので，どうしよう…と迷っていたのです。ぱっと思いつくのは「再度，インストールしてから指示頂いた方法を実施する」と思ったのですが如何でしょうか。ご意見いただければ幸いです。宜しくお願いします。


>加えて，大変申し訳ないのですが　追加で補足させてください。問題が発生してからHJT，CCでスキャンをするまでにJavaとChromeをIObitを使ってアンインストールしました。

まずはこちらから書かせていただきます。

Merry Christmas!

と言うことでもうそんな時期になってまいりました。
過ぎてしまえばあっという間の一年でしたが、
喉元過ぎれば何とやらと言うやつなのかもしれません。

Google Chromeを再インストールして削除するのはありでしょう。
このまま強引に削除することは可能ではありますが、
そうなるとごみだけが残る可能性がありますので、
安全策としてGoogle Chromeの再インストールを行い、
PC内部に残っている設定の削除を行うのが現段階では安全でしょう。
Google Chromeが必要なくなりましたら、セーフモードでIUを利用して削除なされてください。
この際、パワフルスキャンでできる限りごみを取り除くと良いでしょう。

INVO様

ありがとうございます。クリスマスも対応ありがとうございます。感謝です。ご指示通り，Chromeをインストールして所定のファイルを削除しました。Goole Chromeについては，今回の対応のために削除しましたが，また使用したいと考えておりました。したがって，折角インストールしたので，このままにさせてもらえればと思っております。

なお，今のところ，PCは問題なく動いております。

再度，CCの各タブのログを提示します。宜しくお願いします。

CC Windows------------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
無効 HKCU:Run Skype Skype Technologies S.A. "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe


CC IE-------------------------
有効 Extension Evernote 5 に追加 C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
有効 Extension HP Smart Print Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension Skype Click to Call settings C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper Evernote extension Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
無効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll


CC Chrome-----------------------
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.2 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.19 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.5 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
有効 Extension Docs 0.0.0.6 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Plugin Adobe Acrobat 11.0.0.379 USER C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
有効 Plugin Chrome PDF Viewer USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
有効 Plugin Chrome Remote Desktop Viewer USER internal-remoting-viewer
有効 Plugin Google Update 1.3.21.153 USER C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
有効 Plugin Intel® Identity Protection Technology 2.1.42.0 USER C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll
有効 Plugin Shockwave Flash 11.8.800.97 USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll


CC スケジュールされたタスク-------------
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
有効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer


CC コンテクスト-----------------
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll

またレスが遅くなってごめんなさい。
IVNOさん、今回もフォローありがとうございます。

ログも見せてもらいましたが、タスケからaskとtokyoloaderも消えてますね。
ではこれもいいでしょう。

現在もう異常も出てないとは思いますが、何か出ていればその旨報告ください。

何もなければ様子見に入りましょう。
そのまま普通にPCを使いながら1週間様子見して、そのあと異常の有無を含めて状態報告のレスをお願いします。
この時点で再発も出なければ「解決」に持って行けそうですが、何かあったら1週間待たなくていいのでそこでレスください

悪代官様

色々ありがとうございます。最初はどうなることかと思いましたが解決にむけた適切なアドアイス
大変助かりました。

差し出がましいのですが一つ提案があります。問題の発端は偽のJAVAのアップデートのお知らせがでてきて，これをアンインストールしたら，JAVAのお知らせがFlash playerの偽アップデートのお知らせに変わりました。そしてこれらのソフトをアンストールして指示頂いた作業を行っていくと警告が出てこなくなりました。

私のPCが安定していると考えられる理由は以下の2つかと思います。

①脅威となるウィルスが取り除かれた，
②ウィルスは残っているがアップデート対象となるソフトが無いのででてこないだけ
　→これはランサム関連のみ。アドウェアはないと思います。

②の可能性を排除するために，JAVA，Flash Playerのいずれか（あるいは両方）をインストールした後，
様子見をさせて頂ければと思うのですが宜しいでしょうか。インストールして問題が発生しなければ安心できるかなと思いました。個人的には①だと信じておりますが，初めてのことなので少し神経質になっているのかもしれません。それと，英語の勉強のブログ（動画付）を見たい時にFlashがないので困ったことが何回かありますので将来的には再インストールも考えています。

こんばんは。
様子見に入る前の質問ですね。

現在PCが安定している可能性はやはり、ログにも見えていたアドウェア群が掃除されたことで、PCに負担かけていた問題も片付いて軽くなったためでしょう。
ですが今回自分が特に要注意としたのは、最初のレスでも確認した「BbleOsphing」です。
これをHJTでfixした途端プロキシ設定を改ざんして、その後の作業を阻害しようと狙ったあたり並みのアドウェアとは思えません。
web検索しても情報が出ないことからも、名前を偽装しているのは確実ですが、正体が何であるかが特定できないのが気がかりです。

様子見終了時にまたHJTとインストール情報と、CCでの各タブのログもまた見せてください。
もしこの時点で上記のBbleOsphingが復活しているようなら、今度こそその時点でリカバリ推奨となるでしょう

悪代官様，

レスありがとうございます。様子見の後にHJT，CCの情報を報告いたします。何もなければ年末か，年明けすぐの報告になると思います。何かあればすぐに相談させてください。

何もないことを祈って…，少し早いですが良いお年をお過ごしください。それでは失礼します。

悪代官様，

あけましておめでとうございます。下記に様子見後のHJT，CCの各Logを提示します。
その後，PCは順調なのですが，昨日，Google Chromeを使用すると，下記のHPに強制的に2，3回，飛ばされました。また，多少，重いような気がしますが，その後はHPに飛ばされることなく普通に動いてると思います。ネットを検索すると，たとえば下記のように同様な症状に関する書き込みを確認できたのですが，解決方法は見つけることができませんでした。これは何か対応したほうがよろしいのでしょうか。


ネットの書き込みの例（ほかにも複数ありました）
http://forums.nasioc.com/forums/showthread.php?p=42935668


飛ばされたサイト
http://lemode-mgz.com/fd/9701/special-report.html?voluumdata=vid..00000006-a1e1-4d74-8000-000000000000__vpid..9b1cf800-92f4-11e4-815b-5e645f9a0c6b__caid..421c6fa2-56dc-4806-b48a-6b536e9f021f__lid..bff93220-e016-4ecf-a273-35ae172f42ef__rt..R__oid1..8bfe4f62-90ad-4bb6-8c54-086a90ed4b42__oid2..c513c887-62ff-4f35-8139-6560e0792fd4__var1..ru%5C_%5Cbike__var2..BK__var3..1__var4..728-90%3Fit%3D1420257255531&account=ru_bike&campaign=BK&afgroup=1&banner=728-90?it=1420257255531&refurl=http://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1280255392779665&format=728x90&output=html&h=90&slotname=8452778836&adk=3298350538&w=728&lmt=1420257254&flash=16.0.0&url=http://chokoti.blog.fc2.com/blog-entry-404.html&dt=1420257254696&bpp=28&bdt=588&shv=r20141209&cbv=r20141212&saldr=aa&correlator=5104237547521&frm=20&ga_vid=837249176.1419706356&ga_sid=1420257255&ga_hid=327476806&ga_fc=0&u_tz=-300&u_his=2&u_java=1&u_h=768&u_w=1360&u_ah=728&u_aw=1360&u_cd=24&u_nplug=20&u_nmime=98&dff=%20%20%20%20&dfs=13&adx=252&ady=720&biw=1343&bih=643&eid=317150304&oid=3&ref=http://chokoti.blog.fc2.com.2-t.jp/97oJ&rx=0&eae=0&fc=8&brdim=0,0,0,0,1360,0,1360,728,1360,643&vis=1&abl=NS&ppjl=u&srr=1&fu=0&bc=1&ifi=1&xpc=ttBsGf4j8n&p=http://chokoti.blog.fc2.com&dtd=78




HJT Log-----------------------------------
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 18:13:51, on 2015/01/03
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
C:\Program Files (x86)\Tapur\tapmgr.exe
C:\Program Files (x86)\Tapur\Tapur.exe
C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
C:\Program Files (x86)\Hidemaru\Hidemaru.exe
C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe
C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\Titanium\UIFramework\TmBrowserProxy.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Users\yamabet\Desktop\Spy\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
O2 - BHO: Trend Micro Osprey BHO - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: TmBpIeBHO - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O3 - Toolbar: Trend ツールバー - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [MediaSyncAgent] "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
O4 - HKLM\..\Run: [LLHDUSER] "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [TKRTL] "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
O4 - HKLM\..\Run: [CLMSTrayIcon] "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKCU\..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [TOSHIBA Active Display Off] "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
O4 - HKCU\..\Run: [HP ENVY 4500 series (NET)] "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Dropbox.lnk = yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
O4 - Startup: PcHusen.lnk = C:\PcHusen\PcHusen.exe
O4 - Startup: 秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe
O4 - Global Startup: RealPlayer Cloud Service UI.lnk = C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} (DMM Downloader) - http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - (no file)
O18 - Protocol: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
O18 - Protocol: tmop - {69FD7CE3-4604-4FE6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
O18 - Protocol: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Trend Micro Solution Platform (Amsp) - Trend Micro Inc. - C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CLHNServiceForToshiba - CyberLink Corp. - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CyberLink MediaSync Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
O23 - Service: CyberLink MediaSync Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
O23 - Service: インテル(R) PROSet/Wireless WiMAX Red Bend デバイス管理サービス (DMAgent) - Red Bend Ltd. - C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LLHDClient - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe
O23 - Service: LLHDCloader - Intercom, Inc. - C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: OEMRegistrationProgram - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe
O23 - Service: Platinum Host Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: RealPlayer Cloud Service - RealNetworks, Inc. - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) - Unknown owner - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: TOSHIBA HDD Protection (Thpsrv) - Unknown owner - C:\windows\system32\ThpSrv.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\Toshiba\Teco\TecoService.exe
O23 - Service: Toshiba Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
O23 - Service: Toshiba Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
O23 - Service: TPCHKarteSVC - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: インテル(R) PROSet/Wireless WiMAX サービス (WiMAXAppSrv) - Intel(R) Corporation - C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 17314 bytes


CC Install-------------------------
+Lhaca 2014/12/21
Adobe AIR Adobe Systems Incorporated 2014/12/21 15.0.0.356
Adobe Reader XI (11.0.09) - Japanese Adobe Systems Incorporated 2014/09/20 205 MB 11.0.09
Apple Application Support Apple Inc. 2014/10/16 95.2 MB 3.1
Apple Mobile Device Support Apple Inc. 2014/10/16 19.5 MB 8.0.5.6
Apple Software Update Apple Inc. 2013/10/13 2.38 MB 2.1.3.127
Bonjour Apple Inc. 2013/10/13 2.00 MB 3.0.0.10
CCleaner Piriform 2014/12/23 5.01
Cisco Connect Cisco Consumer Products LLC 2014/12/21 1.4.12334.0
Corel VideoStudio X5 Corel Corporation 2014/12/21 609 MB 15.0.1.29
CyberLink MediaShow 6 CyberLink Corp. 2013/07/02 672 MB 6.0.4528
CyberLink MediaSync CyberLink Corp. 2012/12/18 218 MB 1.0.1128.04
DigiBookBrowser Version 1.5.1.4 TriWorks Corp.JAPAN 2012/12/18 8.47 MB 1.5.1.4
Dropbox Dropbox, Inc. 2014/12/16 3.0.3
Evernote v. 5.2.1 Evernote Corp. 2014/03/26 207 MB 5.2.1.3108
Garmin Express Garmin Ltd or its subsidiaries 2014/12/21 115 MB 3.2.18.0
Google Chrome Google Inc. 2014/12/24 39.0.2171.95
Google Toolbar for Internet Explorer Google Inc. 2014/12/21 7.5.5111.1712
HP ENVY 4500 series ヘルプ Hewlett Packard 2013/11/28 8.35 MB 30.0.0
HP ENVY 4500 series ベーシック デバイス ソフトウェア Hewlett-Packard Co. 2013/11/28 159 MB 32.0.1180.44630
HP FWUpdateEDO2 Hewlett-Packard 2013/12/31 1.53 MB 1.2.0.0
HP Photo Creations HP 2014/12/21 14.6 MB 1.0.0.7702
HP Update Hewlett-Packard 2013/11/28 4.04 MB 5.005.002.002
Intel(R) Control Center Intel Corporation 1.2.1.1008
Intel(R) Management Engine Components Intel Corporation 8.1.0.1281
Intel(R) Network Connections Drivers Intel 2013/12/04 916 KB 17.3
Intel(R) Processor Graphics Intel Corporation 10.18.10.3308
Intel(R) Rapid Storage Technology Intel Corporation 11.6.0.1030
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/12/21 2.0.0.37149
Intel(R) WiDi Intel Corporation 2013/07/02 121 MB 3.5.40.0
IObit Uninstaller IObit 2014/12/17 4.1.5.30
iTunes Apple Inc. 2014/10/16 245 MB 12.0.1.26
Lagarith Lossless Codec (1.3.24) 2013/08/24 931 KB
LAPLINK ヘルプデスク クライアント Intercom, Inc. 2014/12/21 2.02
LoiLoScope 2 LoiLo inc 2012/12/18 166 MB 2.5.2.0
Malwarebytes Anti-Malware version 1.75.0.1300 Malwarebytes Corporation 2014/12/18 19.3 MB 1.75.0.1300
Microsoft Office Home and Student 2013 - en-us Microsoft Corporation 2014/12/23 15.0.4675.1003
Microsoft Office Live Meeting 2007 Microsoft Corporation 2013/12/11 52.3 MB 8.0.6362.215
Microsoft Silverlight Microsoft Corporation 2014/12/17 50.7 MB 5.1.30514.0
Microsoft SkyDrive Microsoft Corporation 2014/01/05 26.6 MB 17.0.2015.0811
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2014/12/26 3.22 MB 8.0.61001
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2013/07/02 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2014/12/26 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2012/12/18 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2012/12/18 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2014/12/26 10.1 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/07/02 4.61 MB 10.0.40219
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/12/21 17.1 MB 12.0.21005.1
MSXML 4.0 SP3 Parser (KB2758694) Microsoft Corporation 2013/08/09 2.90 MB 4.30.2117.0
music.jp PLAY 4.0 Ventis Media Inc. 2012/12/18 60.9 MB 4.0
OEM Registration Program TOSHIBA CORPORATION 2013/07/02 516 KB 1.1.0
Oracle VM VirtualBox 4.3.12 Oracle Corporation 2014/07/31 153 MB 4.3.12
P-Study System 8 2014/12/21
PCあんしん点検ユーティリティ TOSHIBA Corporation 2013/07/02 1.48 MB 1.1.6.0
PC引越ナビ 東芝情報機器株式会社 2012/12/18 12.7 MB 5.0.2
Pixia ver. 6 Isao Maruoka 2014/11/01 31.1 MB 6.01.0100
PL-2303 USB-to-Serial Prolific Technology INC 2013/07/02 1.7.0
PlayReady PC Runtime x86 Microsoft Corporation 2012/12/18 1.65 MB 1.3.0
Premium Sound HD DTS, Inc. 2013/07/02 1.74 MB 1.12.6000
QuickTime 7 Apple Inc. 2014/10/26 70.2 MB 7.76.80.95
RealPlayer Cloud RealNetworks 2014/12/21 91.7 MB 17.0.15
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 2014/12/22 6.0.1.7246
RICOH Media Driver v2.23.17.01 RICOH 2013/07/02 2.23.17.01
Roxio Creator LJ Roxio 2014/12/21 260 MB 12.2.33.5
RZスイート express CyberLink Corp. 2013/07/02 131 MB 1.8.01030
Skype Click to Call Microsoft Corporation 2014/08/07 6.91 MB 7.3.16540.9015
Skype(TM) 7.0 Skype Technologies S.A. 2014/12/23 47.9 MB 7.0.102
Start Menu 8 IObit 2014/12/10 26.7 MB 1.6.0.0
SUPERAntiSpyware SUPERAntiSpyware.com 2014/12/18 48.3 MB 6.0.1168
Synaptics Pointing Device Driver Synaptics Incorporated 2014/06/09 46.4 MB 17.0.8.2
Tapur 5.3.0.111 tapur.com 2013/08/24 9.33 MB
TOSHIBA Active Display Off Toshiba Corporation 2013/07/02 17.2 MB 1.2.0.0
TOSHIBA Desktop Apps Menu Toshiba Corporation 2012/12/18 464 KB 1.00.09.6405
TOSHIBA eco Utility Toshiba Corporation 2013/07/02 20.4 MB 2.0.1.6408
TOSHIBA Function Key Toshiba Corporation 2013/07/02 31.3 MB 1.00.6626.6409
TOSHIBA HDD Protection Toshiba Corporation 2013/07/02 20.9 MB 2.5.1.1
TOSHIBA Manual TOSHIBA CORPORATION 2013/07/02 27.5 MB 0130.01.3001
TOSHIBA PalaDouga TOSHIBA CORPORATION 2012/12/18 140 MB 2013.0101.0002
TOSHIBA Password Utility Toshiba Corporation 2012/12/18 3.86 MB 3.01.01.6403
TOSHIBA PC Health Monitor Toshiba Corporation 2013/07/02 56.9 MB 1.8.17.640104
TOSHIBA Recovery Media Creator Toshiba Corporation 2012/12/18 2.2.2.54043007
TOSHIBA Resolution+ Plug-in for Windows Media Player TOSHIBA Corporation 2013/07/02 1.2.2.00
TOSHIBA Speech Synthesis TOSHIBA CORPORATION 2013/07/02 65.0 MB 1.5.1.7
TOSHIBA System Driver Toshiba Corporation 2013/07/02 5.52 MB 1.00.0015
TOSHIBA System Settings Toshiba Corporation 2013/07/02 9.87 MB 1.00.0002.32002
TOSHIBA VIDEO PLAYER Toshiba Corporation 2013/07/02 48.3 MB 5.1.0.21-B
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/30 7.60 MB 15.0.1759
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/01/30 40.3 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/01/30 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/09/22 17.0 KB 16.0.1016.1
VLC media player VideoLAN 2014/12/21 2.1.5
Windows Media Encoder 9 Series 2014/12/21
Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702) Broadcom Corporation 2013/12/04 10/05/2012 12.0.0.2702
Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) Dynastream Innovations, Inc. 2014/10/19 04/11/2012 1.2.40.201
Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) Silicon Labs Software 2014/10/19 02/06/2007 3.1
いつもNAVI PC ZENRIN 2012/12/18 6.1.2
おたすけナビ 東芝情報機器株式会社 2012/12/18 20.9 MB 7.0.2
ぱらちゃんV2.3 TOSHIBA Corporation 2012/12/18 33.7 MB 2.3.16
インテル(R) PROSet/Wireless WiMAX ソフトウェア Intel Corporation 2013/07/02 14.8 MB 7.50.0000
インテル® PROSet/Wireless WiFi ソフトウェア Intel Corporation 2013/07/02 165 MB 15.05.6000.1620
ウイルスバスター クラウド トレンドマイクロ株式会社 2014/10/26 450 MB 8.0
東芝ジェスチャコントローラ TOSHIBA CORPORATION 2013/07/02 25.1 MB 3.1.6.0
秀丸エディタ (8.31) 有限会社サイトー企画 2014/12/21 8.31
筆ぐるめ 20 富士ソフト株式会社 2012/12/18 602 MB 20.00.0003
製品改善のための調査 HP ENVY 4500 series Hewlett-Packard Co. 2013/11/28 9.57 MB 32.0.1180.44630


CC Windwows----------------------
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
有効 HKCU:Run HP ENVY 4500 series (NET) Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN38I2M25X05X4:NW" -scfn "HP ENVY 4500 series (NET)" -AutoStart 1
有効 HKCU:Run SUPERAntiSpyware SUPERAntiSpyware C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
有効 HKCU:Run Tapur tapur.com C:\Program Files (x86)\Tapur\tapmgr.exe
有効 HKCU:Run TOSHIBA Active Display Off TOSHIBA CORPORATION "C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe" /start
無効 HKLM:Run Adobe ARM Adobe Systems Incorporated "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run CLMSTrayIcon Cyberlink "C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe"
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run HP Software Update Hewlett-Packard C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run IMSS Intel Corporation "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
有効 HKLM:Run IntelWirelessWiMAX Intel® Corporation "C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe" /tasktray /nosplash
無効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
有効 HKLM:Run LLHDUSER Intercom, Inc. "C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe"
有効 HKLM:Run MediaSyncAgent CyberLink Corp. "C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe"
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe" -StartUp
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RealDownloader RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
有効 HKLM:Run RtHDVCpl Realtek Semiconductor C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
有効 HKLM:Run SRS Premium Sound HD SRS Labs, Inc. "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_HD.zip" /h
有効 HKLM:Run TCrdMain TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\Hotkey\TCrdMain_Win8.exe
有効 HKLM:Run TecoResident TOSHIBA Corporation C:\Program Files\TOSHIBA\Teco\TecoResident.exe
有効 HKLM:Run TkBellExe RealNetworks, Inc. "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
有効 HKLM:Run TKRTL TOSHIBA Corporation "C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe" -h
有効 HKLM:Run TODDMain TOSHIBA CORPORATION C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
有効 HKLM:Run TOSDCR TOSHIBA CORPORATION %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe
有効 HKLM:Run TosWaitSrv TOSHIBA Corporation %ProgramFiles%\TOSHIBA\TPHM\TosWaitSrv.exe
有効 HKLM:Run Trend Micro Client Framework Trend Micro Inc. "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
有効 HKLM:Run TSleepSrv TOSHIBA Corporation C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
有効 Startup Common RealPlayer Cloud Service UI.lnk RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpsystray.exe
有効 Startup User Dropbox.lnk Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
有効 Startup User EvernoteClipper.lnk Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
有効 Startup User PcHusen.lnk C:\PcHusen\PcHusen.exe
有効 Startup User 秀丸.lnk 有限会社サイトー企画 C:\Program Files (x86)\Hidemaru\Hidemaru.exe


CC IE------------------------
有効 Extension Evernote 5 に追加 C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
有効 Extension HP Smart Print Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
有効 Extension Lync Click to Call Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
有効 Extension OneNote Linked Notes Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
有効 Extension Send to OneNote Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
有効 Extension Skype Click to Call settings C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
無効 Helper Evernote extension Evernote Corp., 305 Walnut Street, Redwood City, CA 94063 C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Helper Google Toolbar Helper Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Helper Lync Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
有効 Helper Microsoft SkyDrive Pro Browser Helper Microsoft Corporation C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
有効 Helper RealNetworks Download and Record Plugin for Internet Explorer RealDownloader C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll
無効 Helper TmBpIeBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll
無効 Helper TmIEPlugInBHO Class Trend Micro Inc. C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll
有効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
有効 Helper TSToolbarBHO Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
有効 Toolbar Google Toolbar Google Inc. C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
有効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll
有効 Toolbar Trend ツールバー Trend Micro Inc. C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll


CC Chrome----------------------
有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
無効 Extension Evernote Web Clipper 6.2.6 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Trend ツールバー 8.0.0.1225 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1225_0
有効 Plugin Adobe Acrobat 11.0.0.379 USER C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
有効 Plugin Chrome PDF Viewer USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
有効 Plugin Chrome Remote Desktop Viewer USER internal-remoting-viewer
有効 Plugin Google Update 1.3.21.153 USER C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
有効 Plugin Intel® Identity Protection Technology 2.1.42.0 USER C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll
有効 Plugin Shockwave Flash 11.8.800.97 USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll


CC　スケジュールされたタスク----------------
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GarminUpdaterTask Garmin International, Inc. C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCustParticipation HP ENVY 4500 series Hewlett-Packard Co. "C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe" /UA 12.5 /DDV 0x0b00
有効 Task Microsoft Office 15 Sync Maintenance for YAMABE-PC-yamabet Yamabe-PC Microsoft Corporation C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe
無効 Task Optimize Start Menu Cache Files-S-1-5-21-2444105407-761587448-759363881-1001
有効 Task RealDownloader Update Check RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe /scheduler
有効 Task RealDownloaderDownloaderScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe /bgrecordaliveevent
有効 Task RealDownloaderRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /logoncheck
有効 Task RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe /scheduledcheck
有効 Task RealPlayerRealUpgradeLogonTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /logoncheck
有効 Task RealPlayerRealUpgradeScheduledTaskS-1-5-21-2444105407-761587448-759363881-1001 RealNetworks, Inc. C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe /scheduledcheck
有効 Task StartMenuAutoupdate IObit C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe /AUTORUN
有効 Task Trend Micro Inspect of Platinum Trend Micro Inc. "C:\Program Files\Trend Micro\Titanium\plugin\Pt\win32\Inspect\Inspect.exe" -id "efd91a34-d7eb-4b66-ada2-f57737a84976" -usertoken "EDAD4D4597A24172BCEBFEC2294D8214e42c97dd7a8fc9b328a659f10afdaab38879492e" -runonce 0 -pid c32t3201v2.1.1163l1p5889r1o21 -lguid EDAD4D4597A24172BCEBFEC2294D8214 -hashedsn e42c97dd7a8fc9b328a659f10afdaab38879492e -vid JPOB001001 -lpid TE80
有効 Task Uninstaller_SkipUac_yamabet IObit C:\Users\yamabet\Desktop\IObitUninstallerPortable\App\uninstaller\IObitUninstaler.exe /UninstallExplorer


CC コンテキストメニュー----------------
有効 Directory DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 Directory IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Directory VLCメディアプレイヤーで再生 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1"
有効 Directory VLCメディアプレイヤーのプレイリストに追加 VideoLAN "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1"
有効 File DropboxExt Dropbox, Inc. C:\Users\yamabet\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll
有効 File IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 File MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 File {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll
有効 File {4A7C4306-57E0-4C0C-83A9-78C1528F618C} RealNetworks, Inc. C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin64\rpcloudview.dll
有効 Folder IObitUnstaler IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight64.dll
有効 Folder MBAMShlExt Malwarebytes Corporation C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
有効 Folder {48F45200-91E6-11CE-8A4F-0080C81A28D4} Trend Micro Inc. C:\Program Files\Trend Micro\UniClient\UiFrmwrk\tmdshell.dll

新年あけましておめでとうございます。

様子見中にまた異常が出たようですね。今度はChromeで発生してますか。
他のブラウザでは出ないならまたChrome拡張に食い込んでいる疑いがありますね。

ではまず確認です。

CCの「Chrome」タブを開いて、そこで下記の拡張を見てください。
>有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll

この拡張はご自身で必要として入れたものですか？

まずはこれを右クリックから「無効」にしてください。

そのあと一度Chromeを終了後に再度起動してしばらく様子見後に異常再発の有無を報告ください。
異常が見えなければ1日ほど待ってから報告したいいでしょう。
それと前述のPlugin Native Clientについても教えてください

悪代官様

ご指示ありがとうございました。

>CCの「Chrome」タブを開いて、そこで下記の拡張を見てください。
>>有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll

Google ChromeのPlug-inはEvernote，Google document，Trend Micro関連だけをインストールしたつもりなので，上記の拡張は記憶にありません。なお，この機能を無効に変更後，特に異常は見られていません。色々，対応ありがとうございます。

作業と報告、ご苦労様です。

>有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll

>Google ChromeのPlug-inはEvernote，Google document，Trend Micro関連だけをインストールしたつもりなので，上記の拡張は記憶にありません。なお，この機能を無効に変更後，特に異常は見られていません

はい、やはりそれが偽装してた曲者でしたか。
では今度はCC上からそれを「エントリの削除」してください。
これで上記も消えます。

異常が消えたと思ってもこれまでの経緯からまだ油断できません。
念のためあと1週間様子見をお願いします。
特にChromeでの感染は解析と処置で手間取るのが常ですから、隠れていたものが動き出すおそれも少なくありません。

1週間後にHJTとインストール情報と、CCでの各タブのログを取り直して、それらを状態報告とともにレスください。

年越しで手間をかけてしまいますが、再発がなければこの様子見でいよいよ山場のはずです

悪代官様

>はい、やはりそれが偽装してた曲者でしたか。
>では今度はCC上からそれを「エントリの削除」してください。
>これで上記も消えます。

ご指示頂いた「エントリの削除」を選択できませんでした…。
削除の必要があればご指示頂けないでしょうか。
特に必要なければ1週間後に再度，Logの提示と現状を報告させてください。
宜しくお願い申し上げます。

レスが遅くなってすみません。

>ご指示頂いた「エントリの削除」を選択できませんでした…

ここでもChromeが詰まってますか。

では再度OTLで調べ直してみましょう。
とりあえず1週間の様子見後でいいので、またOTLを用意して先の要領で「Run scan」してからそのログをレスでみせてください

%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT

悪代官様

ご無沙汰しています。様子見後のOTLファイルを添付します。
その後，Chrome，ほかのブラウザでも今のところ，不具合は見当たりません。
色々，ありがとうございます。

OTL TXT #1---------------------
OTL logfile created on: 2015/01/18 11:41:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\yamabet\Desktop\Spy
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: Japan | Language: JPN | Date Format: yyyy/MM/dd

7.88 Gb Total Physical Memory | 5.47 Gb Available Physical Memory | 69.39% Memory free
9.63 Gb Paging File | 6.48 Gb Available in Paging File | 67.23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.19 Gb Total Space | 853.86 Gb Free Space | 93.10% Space Free | Partition Type: NTFS
Drive D: | 6.87 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: YAMABE-PC | User Name: yamabet | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/01/18 11:25:36 | 001,087,816 | ---- | M] (Google Inc.) -- C:\Windows\Temp\CR_13E90.tmp\setup.exe
PRC - [2015/01/17 22:34:39 | 040,756,304 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\Install\{923E1B22-0FD7-4F41-BC5A-1E8A419C01A6}\39.0.2171.99_chrome_installer.exe
PRC - [2014/12/21 11:44:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\yamabet\Desktop\Spy\OTL (1).exe
PRC - [2014/12/17 18:53:05 | 002,631,456 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
PRC - [2014/12/17 18:53:05 | 001,084,704 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
PRC - [2014/12/08 22:45:28 | 039,207,112 | ---- | M] (Dropbox, Inc.) -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2014/12/05 20:50:53 | 000,856,904 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014/11/26 19:07:29 | 001,141,848 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
PRC - [2014/11/26 19:07:25 | 000,296,520 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2014/11/18 15:22:36 | 000,029,984 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
PRC - [2014/11/18 15:22:34 | 000,072,992 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
PRC - [2014/11/18 15:22:26 | 001,724,192 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
PRC - [2014/11/11 19:41:23 | 000,081,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
PRC - [2014/10/30 05:41:44 | 000,031,856 | ---- | M] () -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2014/10/29 19:06:54 | 000,560,192 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
PRC - [2014/10/26 22:59:24 | 000,039,568 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2014/09/12 04:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/08/27 10:25:42 | 000,441,176 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2014/07/20 14:05:01 | 000,093,864 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\chromeextension\NativeMessageHost\ToolbarNativeMsgHost.exe
PRC - [2014/07/11 06:32:02 | 000,832,048 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\chrome_extension2\host\chrome_native_msg_host.exe
PRC - [2014/06/30 06:11:36 | 001,038,896 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\AMSP\module\20013\ChromeExt\chromeextension\TmopChromeMsgHost32.exe
PRC - [2014/03/14 17:50:52 | 001,106,784 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
PRC - [2013/08/21 21:54:00 | 000,312,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cmd.exe
PRC - [2013/06/26 21:56:56 | 002,174,496 | ---- | M] (有限会社サイトー企画) -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe
PRC - [2012/11/28 05:22:15 | 000,078,368 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe
PRC - [2012/11/28 05:22:11 | 000,373,280 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe
PRC - [2012/11/28 05:22:08 | 000,295,456 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe
PRC - [2012/11/16 00:49:48 | 000,694,216 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe
PRC - [2012/11/14 20:39:06 | 000,227,312 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe
PRC - [2012/10/26 06:23:09 | 003,363,344 | ---- | M] (Cyberlink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe
PRC - [2012/10/26 06:23:06 | 000,303,632 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe
PRC - [2012/10/26 06:22:56 | 000,078,352 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe
PRC - [2012/10/23 19:40:04 | 000,054,976 | ---- | M] (Intercom, Inc.) -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhrcusr.exe
PRC - [2012/10/15 01:37:27 | 000,090,640 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe
PRC - [2012/08/04 01:02:22 | 001,548,952 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
PRC - [2012/08/04 01:01:56 | 000,213,136 | ---- | M] () -- C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
PRC - [2012/07/30 21:56:08 | 000,030,392 | ---- | M] (Intercom, Inc.) -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe
PRC - [2012/07/24 19:13:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/07/24 19:12:24 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/07/24 19:11:52 | 000,129,856 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2012/07/24 19:11:22 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/04/23 10:23:22 | 001,481,728 | ---- | M] (tapur.com) -- C:\Program Files (x86)\Tapur\Tapur.exe
PRC - [2010/08/16 09:34:00 | 000,171,520 | ---- | M] (tapur.com) -- C:\Program Files (x86)\Tapur\tapmgr.exe
PRC - [2010/03/10 00:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015/01/18 11:25:36 | 000,043,008 | ---- | M] () -- c:\users\yamabet\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3ms5s1.dll
MOD - [2014/12/05 20:50:51 | 014,913,352 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
MOD - [2014/12/05 20:50:50 | 009,009,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
MOD - [2014/12/05 20:50:46 | 001,077,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
MOD - [2014/12/05 20:50:45 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
MOD - [2014/12/05 20:50:44 | 001,677,128 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
MOD - [2014/11/21 19:39:10 | 000,316,576 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
MOD - [2014/11/18 15:22:06 | 000,348,960 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\madexcept_.bpl
MOD - [2014/11/18 15:22:04 | 000,183,584 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\madbasic_.bpl
MOD - [2014/11/18 15:22:04 | 000,050,976 | ---- | M] () -- C:\Program Files (x86)\IObit\Start Menu 8\maddisAsm_.bpl
MOD - [2014/10/29 19:07:02 | 000,065,600 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\dtvhooks.dll
MOD - [2014/10/29 19:06:54 | 000,560,192 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
MOD - [2014/10/29 19:01:58 | 001,382,048 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\cpprest100_1_2.dll
MOD - [2014/10/21 19:22:50 | 000,750,080 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\libGLESv2.dll
MOD - [2014/10/21 19:22:50 | 000,047,616 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\libEGL.dll
MOD - [2014/10/21 19:22:48 | 000,863,744 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
MOD - [2014/10/21 19:22:46 | 000,200,704 | ---- | M] () -- C:\Users\yamabet\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
MOD - [2014/10/11 12:05:58 | 001,044,776 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2014/07/20 14:05:01 | 000,049,152 | ---- | M] () -- C:\Program Files\Trend Micro\Titanium\UIFramework\boost_thread-vc110-mt-1_49.dll
MOD - [2014/07/20 14:05:01 | 000,039,424 | ---- | M] () -- C:\Program Files\Trend Micro\Titanium\UIFramework\boost_date_time-vc110-mt-1_49.dll
MOD - [2014/03/14 15:50:46 | 000,433,664 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
MOD - [2014/03/14 15:50:36 | 000,315,392 | ---- | M] () -- C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
MOD - [2014/01/20 13:17:04 | 000,073,544 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/08/04 01:01:56 | 000,213,136 | ---- | M] () -- C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
MOD - [2011/08/23 21:39:11 | 000,655,360 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_ssl.pyd
MOD - [2011/08/23 21:39:11 | 000,081,920 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_ctypes.pyd
MOD - [2011/08/23 21:39:11 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\CyberLink\MediaSync\Common\Koan\_socket.pyd
MOD - [2009/07/17 02:32:38 | 000,002,560 | ---- | M] () -- C:\Program Files (x86)\Hidemaru\HIDEMSUB.DLL
MOD - [2006/11/09 00:07:02 | 001,669,824 | ---- | M] () -- C:\Program Files (x86)\Tapur\vidgrab_VC6.ocx
MOD - [2005/11/15 08:24:22 | 001,163,264 | ---- | M] () -- C:\Program Files (x86)\Tapur\vorbis.dll
MOD - [2005/11/15 08:04:40 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Tapur\ogg.dll
MOD - [2005/06/12 05:18:40 | 000,244,736 | ---- | M] () -- C:\Program Files (x86)\Tapur\sqlite3.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - File not found [Auto | Running] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
SRV:[b]64bit:[/b] - [2014/12/05 20:35:00 | 000,229,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2014/11/12 00:06:52 | 002,449,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe -- (ClickToRunSvc)
SRV:[b]64bit:[/b] - [2014/10/30 23:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/09 09:51:09 | 001,187,376 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe -- (Platinum Host Service)
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2014/08/15 22:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/08/15 19:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2014/08/15 19:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/07/24 02:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/07/22 18:31:23 | 000,172,344 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:[b]64bit:[/b] - [2014/03/14 01:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2014/03/08 00:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/03/06 02:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014/02/22 10:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/02/22 04:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/02/22 04:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/02/22 04:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014/02/22 04:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2013/12/10 02:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013/08/22 06:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013/08/22 06:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013/08/22 06:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013/08/22 06:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013/08/22 05:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013/08/22 04:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 04:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2012/12/05 02:48:00 | 000,201,872 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE -- (RtkAudioService)
SRV:[b]64bit:[/b] - [2012/11/26 02:00:02 | 000,321,960 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\Teco\TecoService.exe -- (TOSHIBA eco Utility Service)
SRV:[b]64bit:[/b] - [2012/09/24 02:03:12 | 001,153,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:54 | 000,272,176 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:42 | 000,617,776 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:[b]64bit:[/b] - [2012/09/24 02:02:16 | 000,149,296 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:[b]64bit:[/b] - [2012/08/02 23:31:40 | 000,566,696 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\ThpSrv.exe -- (Thpsrv)
SRV:[b]64bit:[/b] - [2012/07/27 19:20:44 | 000,458,152 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\Toshiba\TPHM\TPCHSrv.exe -- (TPCHSrv)
SRV:[b]64bit:[/b] - [2012/07/18 01:07:06 | 000,514,048 | ---- | M] (Red Bend Ltd.) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe -- (DMAgent)
SRV:[b]64bit:[/b] - [2012/07/18 01:00:52 | 000,979,456 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe -- (WiMAXAppSrv)
SRV:[b]64bit:[/b] - [2012/06/19 05:10:34 | 000,634,632 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2009/07/28 01:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
SRV - [2014/12/17 18:53:05 | 002,631,456 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2014/12/12 11:12:54 | 003,985,408 | -HS- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\BbleOsphing\BbleOsphing.exe -- (BbleOsphing)
SRV - [2014/12/11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/11/26 19:07:29 | 001,141,848 | ---- | M] (RealNetworks, Inc.) [Auto | Running] -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Cloud Service)
SRV - [2014/11/18 15:22:34 | 000,072,992 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe -- (StartMenuService)
SRV - [2014/10/30 05:41:44 | 000,031,856 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2014/10/26 22:59:24 | 000,039,568 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2014/09/12 04:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/08/27 10:25:42 | 000,441,176 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/08/15 22:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/03/14 01:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/09/21 03:22:46 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/08/21 22:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 21:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2012/11/29 03:21:06 | 000,016,384 | ---- | M] (TOSHIBA CORPORATION) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA\OEM Registration Program\OEMRegistrationProgram.exe -- (OEMRegistrationProgram)
SRV - [2012/11/28 05:22:15 | 000,078,368 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSMonitorServiceMediaSync.exe -- (CyberLink MediaSync Media Server Monitor Service)
SRV - [2012/11/28 05:22:08 | 000,295,456 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\MediaSync\Kernel\DMS\CLMSServerMediaSync.exe -- (CyberLink MediaSync Media Server Service)
SRV - [2012/11/14 20:39:06 | 000,227,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\TKRTL\TPCHKarteSVC.exe -- (TPCHKarteSVC)
SRV - [2012/11/09 02:41:46 | 000,309,944 | ---- | M] (Intercom, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDClient.exe -- (LLHDClient)
SRV - [2012/10/26 06:23:06 | 000,303,632 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSServer.exe -- (Toshiba Media Server Service)
SRV - [2012/10/26 06:22:56 | 000,078,352 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\ToshibaMSMonitorService.exe -- (Toshiba Media Server Monitor Service)
SRV - [2012/10/15 01:37:27 | 000,090,640 | ---- | M] (CyberLink Corp.) [Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\CLHNServiceForToshiba.exe -- (CLHNServiceForToshiba)
SRV - [2012/07/24 19:13:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/24 19:12:24 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/24 19:11:52 | 000,129,856 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012/07/24 19:11:22 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011/06/28 20:44:04 | 000,008,704 | ---- | M] (Intercom, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\LLHDCldr.exe -- (LLHDCloader)
SRV - [2010/03/10 00:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2014/12/11 19:51:20 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/10/12 21:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/10/09 20:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/09/21 22:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2014/09/21 22:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2014/09/21 21:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2014/08/14 19:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/07/24 10:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2014/07/24 10:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/07/24 06:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:46 | 000,121,944 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:42 | 000,093,664 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:[b]64bit:[/b] - [2014/07/14 02:39:36 | 000,305,832 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:[b]64bit:[/b] - [2014/07/09 11:03:10 | 000,037,904 | ---- | M] (Trend Micro Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\tmel.sys -- (tmel)
DRV:[b]64bit:[/b] - [2014/07/09 11:02:55 | 000,106,296 | ---- | M] (Trend Micro Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tmeevw.sys -- (tmeevw)
DRV:[b]64bit:[/b] - [2014/06/30 06:06:54 | 000,106,296 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmusa.sys -- (tmusa)
DRV:[b]64bit:[/b] - [2014/05/16 13:03:30 | 000,141,600 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2014/05/01 08:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/03/19 22:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/03/13 07:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/03/08 15:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/02/22 10:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/02/22 10:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/02/22 07:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013/12/03 18:17:28 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2013/10/25 20:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2013/09/29 23:07:00 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2013/09/29 22:58:11 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013/09/21 03:22:34 | 004,177,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/08/22 17:51:12 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013/08/22 17:51:12 | 000,026,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 08:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 07:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 07:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 07:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 07:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013/08/22 07:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:50 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 06:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 06:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 06:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 06:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013/08/22 06:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013/08/22 05:27:46 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:[b]64bit:[/b] - [2013/08/22 03:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/20 03:12:28 | 000,524,016 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2013/08/12 18:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/09 19:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/30 13:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/25 14:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/08 13:37:41 | 003,344,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:[b]64bit:[/b] - [2013/06/18 09:45:26 | 000,460,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
DRV:[b]64bit:[/b] - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,188,896 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xHCIPort.sys -- (XHCIPort)
DRV:[b]64bit:[/b] - [2012/10/09 04:48:48 | 000,047,072 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usb3Hub.sys -- (usb3Hub)
DRV:[b]64bit:[/b] - [2012/09/06 04:53:00 | 000,105,984 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\risdxc64.sys -- (risdxc)
DRV:[b]64bit:[/b] - [2012/09/01 04:01:56 | 000,647,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/07/30 22:28:54 | 000,028,632 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Thotkey.sys -- (Thotkey)
DRV:[b]64bit:[/b] - [2012/07/27 23:10:08 | 000,048,512 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\thpdrv.sys -- (Thpdrv)
DRV:[b]64bit:[/b] - [2012/07/25 02:34:24 | 000,032,832 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ.SYS -- (TVALZ)
DRV:[b]64bit:[/b] - [2012/07/24 19:11:36 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2012/07/24 11:54:00 | 000,031,184 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (TDCMDPST)
DRV:[b]64bit:[/b] - [2012/07/21 01:59:02 | 000,016,768 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:10 | 000,182,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpmp.sys -- (bpmp)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:02 | 000,084,992 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpusb.sys -- (bpusb)
DRV:[b]64bit:[/b] - [2012/07/03 01:10:00 | 000,084,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bpenum.sys -- (bpenum)
DRV:[b]64bit:[/b] - [2012/06/25 00:59:58 | 000,018,304 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Thpevm.sys -- (Thpevm)
DRV:[b]64bit:[/b] - [2012/06/21 13:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2012/06/18 17:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2012/06/17 20:30:56 | 000,499,096 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
DRV:[b]64bit:[/b] - [2011/07/22 11:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:[b]64bit:[/b] - [2011/07/12 16:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:[b]64bit:[/b] - [2010/03/05 06:19:00 | 000,011,296 | ---- | M] (Intercom, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\llhrcmi6.sys -- (llhrcmi6)
DRV - [2014/12/22 10:06:42 | 000,026,528 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV - [2012/07/10 01:22:37 | 000,081,904 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMP\ntk3_Toshiba_64.sys -- (ntk3_Toshiba)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

OTL TXTの続きです。



[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.co.jp/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.15.10: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=17.0.15: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.15.10: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\tmbepff@trendmicro.com: C:\PROGRAM FILES\TREND MICRO\AMSP\MODULE\20002\9.0.1069\9.0.1069\FIREFOXEXTENSION [2015/01/03 18:35:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014/11/26 19:08:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\tmbepff@trendmicro.com: C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2015/01/03 18:35:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}: C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\ [2015/01/03 18:36:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22181a4d-af90-4ca3-a569-faed9118d6bc}: C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2014/10/26 20:58:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{338950EA-82DB-44C1-930D-0C28E023C9F0}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2014/11/26 19:08:20 | 000,000,000 | ---D | M]


[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Disabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Intelﾂｮ Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intelﾂｮ Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0\
CHR - Extension: No name found = C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/08/22 08:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
O2:[b]64bit:[/b] - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (TmIEPlugInBHO Class) - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll (Microsoft Corporation)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (TSToolbarBHO) - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O2 - BHO: (Evernote extension) - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O2 - BHO: (TmIEPlugInBHO Class) - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Trend ツールバー) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O3 - HKLM\..\Toolbar: (Trend ツールバー) - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IntelWirelessWiMAX] C:\Program Files\Intel\WiMAX\Bin\WiMAXCU.exe (Intel® Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Platinum] C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [SRS Premium Sound HD] C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [TCrdMain] C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TecoResident] C:\Program Files\Toshiba\Teco\TecoResident.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [TODDMain] C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TOSDCR] C:\Program Files\Toshiba\PasswordUtility\TOSDCR.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [TosWaitSrv] C:\Program Files\Toshiba\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [TSleepSrv] C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CLMSTrayIcon] C:\Program Files (x86)\CyberLink\RZ Player\Kernel\DMS\CLMSTrayIcon.exe (Cyberlink)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [LLHDUSER] C:\Program Files (x86)\Intercom\LAPLINK HelpDesk Client\llhuser.exe (Intercom, Inc.)
O4 - HKLM..\Run: [MediaSyncAgent] C:\Program Files (x86)\CyberLink\MediaSync\MediaSyncAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RealDownloader] C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [TKRTL] C:\Program Files (x86)\TOSHIBA\TKRTL\KarteLite.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TOSDCR] %ProgramFiles%\TOSHIBA\PasswordUtility\TOSDCR.exe File not found
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_F85F8D87300E3C47CCA529AC1680A5BA] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKCU..\Run: [HP ENVY 4500 series (NET)] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4 - HKCU..\Run: [Tapur] C:\Program Files (x86)\Tapur\tapmgr.exe (tapur.com)
O4 - HKCU..\Run: [TOSHIBA Active Display Off] C:\Program Files\TOSHIBA\ActiveDisplayOff\ActiveDisplayOff.exe (TOSHIBA CORPORATION)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\yamabet\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PcHusen.lnk = C:\PcHusen\PcHusen.exe ()
O4 - Startup: C:\Users\yamabet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\秀丸.lnk = C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8:[b]64bit:[/b] - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8:[b]64bit:[/b] - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8:[b]64bit:[/b] - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8:[b]64bit:[/b] - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8 - Extra context menu item: URL をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8 - Extra context menu item: このページをクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8 - Extra context menu item: 画像をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8 - Extra context menu item: 新規ノート - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8 - Extra context menu item: 選択部分をクリップ - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O9:[b]64bit:[/b] - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnie.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ochelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll File not found
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe (Hewlett-Packard)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\onbttnie.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\onbttnielinkednotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html ()
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {0725D9DE-4CB8-4BC3-8219-3E74C0D544F7} http://sample3.dmm.co.jp/downloader5/DMMDownloader.cab (DMM Downloader)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{343C4A47-6DCC-4F54-A0F0-46E72CAD09F4}: DhcpNameServer = 172.16.0.1 163.139.230.164 163.139.230.165
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{810E6EFB-1609-4193-98A2-85EC85B8540E}: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll File not found
O18:[b]64bit:[/b] - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmop {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skypec2c - No CLSID value found
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmop {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtb {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmtbim {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/29 12:58:44 | 000,000,034 | R--- | M] () - D:\AUTORUN.INF -- [ UDF ]
O33 - MountPoints2\{2903fec6-7202-11e3-be8b-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{2903fec6-7202-11e3-be8b-b86b23629217}\Shell\AutoRun\command - "" = "E:\AutoRunner.exe"
O33 - MountPoints2\{71dff9c6-38f4-11e3-be85-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{71dff9c6-38f4-11e3-be85-b86b23629217}\Shell\AutoRun\command - "" = "E:\MobileLaunch.exe"
O33 - MountPoints2\{c5e42142-3385-11e3-be82-b86b23629217}\Shell - "" = AutoRun
O33 - MountPoints2\{c5e42142-3385-11e3-be82-b86b23629217}\Shell\AutoRun\command - "" = "E:\menu.exe"
O33 - MountPoints2\{d2c8c853-e30f-11e2-be6c-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d2c8c853-e30f-11e2-be6c-806e6f6e6963}\Shell\AutoRun\command - "" = D:\PC_Clickme.exe -- [2009/08/19 15:23:21 | 003,775,838 | R--- | M] (Macromedia, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/01/14 06:13:32 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2015/01/14 06:13:31 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2015/01/14 06:13:30 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll
[2015/01/14 06:13:29 | 000,535,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2015/01/14 06:13:29 | 000,531,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2015/01/14 06:13:29 | 000,500,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2015/01/14 06:13:29 | 000,482,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2015/01/14 06:13:29 | 000,465,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2015/01/14 06:13:29 | 000,448,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2015/01/14 06:13:29 | 000,413,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2015/01/14 06:13:29 | 000,413,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2015/01/14 06:13:29 | 000,394,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2015/01/14 06:13:29 | 000,372,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2015/01/14 06:13:29 | 000,344,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2015/01/14 06:13:29 | 000,272,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2015/01/14 06:13:29 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2015/01/14 06:13:29 | 000,139,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2015/01/14 06:13:29 | 000,136,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2015/01/14 06:13:29 | 000,108,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2015/01/14 06:13:29 | 000,038,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2015/01/14 06:13:29 | 000,033,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2015/01/14 06:13:29 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werdiagcontroller.dll
[2015/01/14 06:13:28 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2015/01/04 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2014/12/31 21:28:23 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Desktop\新しいフォルダー
[2014/12/30 09:24:47 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Apple
[2014/12/26 13:10:23 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Adobe
[2014/12/24 19:47:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014/12/23 17:50:12 | 000,000,000 | ---D | C] -- C:\Users\yamabet\AppData\Local\Apple Computer
[2014/12/23 12:47:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014/12/23 12:47:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014/12/23 02:29:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/12/23 02:29:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/12/22 11:51:41 | 000,000,000 | ---D | C] -- C:\_OTL
[2014/12/22 10:12:10 | 002,834,648 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2014/12/22 10:12:10 | 001,959,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2014/12/22 10:12:09 | 001,286,872 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2014/12/22 10:12:09 | 001,022,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2014/12/22 10:12:09 | 000,628,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2014/12/22 10:12:07 | 002,800,344 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RltkAPO64.dll
[2014/12/22 10:12:07 | 000,948,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2014/12/22 10:11:59 | 002,770,976 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/12/22 10:11:58 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/12/22 10:11:57 | 000,209,096 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2014/12/22 10:06:42 | 000,026,528 | ---- | C] (REALiX(tm)) -- C:\WINDOWS\SysWow64\drivers\HWiNFO64A.SYS
[2014/12/20 20:44:18 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014/12/20 12:10:47 | 000,000,000 | ---D | C] -- C:\Users\yamabet\Desktop\バックアップ
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/01/18 11:30:42 | 001,496,524 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2015/01/18 11:30:42 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2015/01/18 11:30:42 | 000,500,892 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2015/01/18 11:30:42 | 000,135,664 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2015/01/18 11:30:42 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2015/01/18 11:24:45 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2015/01/18 11:23:37 | 000,000,714 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2015/01/18 11:22:43 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/01/18 11:22:36 | 2474,762,239 | -HS- | M] () -- C:\hiberfil.sys
[2015/01/16 16:59:35 | 000,000,010 | ---- | M] () -- C:\Users\yamabet\AppData\Local\sponge.last.runtime.cache
[2015/01/05 19:08:45 | 000,714,720 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2015/01/05 19:08:45 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2015/01/04 01:23:25 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_yamabet.job
[2014/12/26 16:20:29 | 001,081,197 | ---- | M] () -- C:\Users\yamabet\Desktop\GGBE60610.0-315342.pdf
[2014/12/24 19:57:05 | 000,002,296 | ---- | M] () -- C:\Users\yamabet\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/12/24 19:47:18 | 000,002,272 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/12/23 12:47:02 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/12/22 10:12:10 | 002,834,648 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll
[2014/12/22 10:12:10 | 001,959,128 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl
[2014/12/22 10:12:09 | 001,286,872 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll
[2014/12/22 10:12:09 | 001,099,203 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2014/12/22 10:12:09 | 001,022,168 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll
[2014/12/22 10:12:09 | 000,628,952 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtDataProc64.dll
[2014/12/22 10:12:07 | 002,800,344 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RltkAPO64.dll
[2014/12/22 10:12:07 | 000,948,952 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll
[2014/12/22 10:11:59 | 002,770,976 | ---- | M] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/12/22 10:11:58 | 000,113,576 | ---- | M] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/12/22 10:11:57 | 000,209,096 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll
[2014/12/22 10:06:42 | 000,026,528 | ---- | M] (REALiX(tm)) -- C:\WINDOWS\SysWow64\drivers\HWiNFO64A.SYS
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014/12/26 16:20:29 | 001,081,197 | ---- | C] () -- C:\Users\yamabet\Desktop\GGBE60610.0-315342.pdf
[2014/12/24 19:47:18 | 000,002,296 | ---- | C] () -- C:\Users\yamabet\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/12/24 19:47:18 | 000,002,272 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/12/23 12:47:02 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014/12/22 10:12:08 | 001,099,203 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2014/11/04 19:08:40 | 000,000,010 | ---- | C] () -- C:\Users\yamabet\AppData\Local\sponge.last.runtime.cache
[2014/05/12 19:25:41 | 000,000,036 | ---- | C] () -- C:\Users\yamabet\AppData\Local\housecall.guid.cache
[2014/05/03 12:14:23 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/04/02 20:39:34 | 000,000,689 | ---- | C] () -- C:\Users\yamabet\ライブラリ - ショートカット.lnk
[2014/03/18 17:22:33 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/12/09 19:53:03 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/11/28 23:20:08 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013/09/21 03:22:34 | 000,303,104 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2013/09/21 03:22:28 | 000,180,736 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2013/09/21 03:22:26 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2013/08/24 07:54:16 | 000,714,526 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2013/08/24 07:54:16 | 000,120,320 | ---- | C] ( ) -- C:\WINDOWS\SysWow64\lagarith.dll
[2013/08/24 07:54:16 | 000,001,993 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2013/08/22 10:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 10:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 09:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 02:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/21 22:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/21 18:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/21 18:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/08/09 09:07:40 | 000,000,209 | ---- | C] () -- C:\WINDOWS\Lhaca.ini
[2013/07/02 07:46:53 | 000,000,110 | ---- | C] () -- C:\WINDOWS\wininit.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2015/01/04 00:24:40 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/30 19:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 17:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 04:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/21 21:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 04:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %windir%\tasks\*.job >[/color]
[2015/01/18 11:23:37 | 000,000,714 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/12/16 22:45:48 | 000,000,718 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2015/01/04 01:23:25 | 000,000,302 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_yamabet.job

[color=#E56717]========== Drive Information ==========[/color]

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: TOSHIBA MQ01ABD100H
Partitions: 5
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 450.00MB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: GPT: System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 260.00MB
Starting Offset: 472907776
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: GPT: Basic Data
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 917.00GB
Starting Offset: 879755264
Hidden sectors: 0


DeviceID: Disk #0, Partition #3
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 363.00MB
Starting Offset: 985704431616
Hidden sectors: 0


DeviceID: Disk #0, Partition #4
PartitionType: GPT: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: False
Size: 13.00GB
Starting Offset: 986085064704
Hidden sectors: 0


[color=#E56717]========== Base Services ==========[/color]
SRV:[b]64bit:[/b] - [2014/02/22 07:02:14 | 000,208,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:[b]64bit:[/b] - [2014/10/08 02:30:59 | 000,110,080 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:[b]64bit:[/b] - [2013/08/22 04:53:13 | 000,092,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:[b]64bit:[/b] - [2013/08/22 05:19:14 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:[b]64bit:[/b] - [2014/04/29 23:14:19 | 000,827,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2013/08/21 21:48:12 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 04:40:30 | 000,468,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2013/08/21 21:38:29 | 000,329,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:[b]64bit:[/b] - [2014/07/24 04:21:23 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:[b]64bit:[/b] - [2013/08/22 05:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:[b]64bit:[/b] - [2014/02/22 04:38:56 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:[b]64bit:[/b] - [2014/04/29 23:23:54 | 000,353,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2014/04/29 22:46:07 | 000,285,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2014/03/04 02:13:06 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:[b]64bit:[/b] - [2013/08/22 04:44:18 | 000,107,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:[b]64bit:[/b] - [2013/08/22 06:34:06 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2013/08/21 23:05:54 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:[b]64bit:[/b] - [2013/12/03 18:17:29 | 000,433,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:[b]64bit:[/b] - [2013/08/22 04:35:27 | 000,403,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:[b]64bit:[/b] - [2014/03/26 22:15:43 | 000,718,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:27 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:[b]64bit:[/b] - [2013/08/22 04:05:22 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:[b]64bit:[/b] - [2013/08/22 04:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2014/12/05 20:41:58 | 000,391,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 08:25:35 | 000,029,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:[b]64bit:[/b] - [2014/03/06 04:19:44 | 000,115,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:[b]64bit:[/b] - [2014/07/24 03:18:34 | 000,795,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:[b]64bit:[/b] - [2013/08/22 06:22:30 | 000,101,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:[b]64bit:[/b] - [2014/01/28 19:18:11 | 000,534,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:[b]64bit:[/b] - [2014/02/22 04:38:56 | 000,753,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:[b]64bit:[/b] - [2013/08/22 06:32:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:[b]64bit:[/b] - [2013/08/22 08:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:[b]64bit:[/b] - [2014/04/08 22:33:54 | 000,135,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:[b]64bit:[/b] - [2014/07/24 04:03:18 | 000,324,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:[b]64bit:[/b] - [2013/08/22 04:24:27 | 000,629,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2013/08/21 21:27:04 | 000,564,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:[b]64bit:[/b] - [2014/08/01 19:18:31 | 001,212,928 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:[b]64bit:[/b] - [2013/08/22 05:55:30 | 000,306,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2013/08/21 22:33:38 | 000,248,320 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:[b]64bit:[/b] - [2013/08/22 05:00:18 | 000,050,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2014/12/08 20:50:34 | 000,225,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:[b]64bit:[/b] - [2014/03/26 22:10:11 | 001,436,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:[b]64bit:[/b] - [2014/10/28 20:02:48 | 000,911,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:[b]64bit:[/b] - [2014/12/05 20:35:00 | 000,229,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
No service found with a name of SDRSVC
SRV:[b]64bit:[/b] - [2014/09/21 22:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2013/08/22 04:44:27 | 001,669,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:[b]64bit:[/b] - [2013/08/22 04:23:55 | 000,878,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:[b]64bit:[/b] - [2013/08/22 05:39:20 | 000,634,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:[b]64bit:[/b] - [2013/08/22 06:23:10 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV - [2013/08/21 22:56:51 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV:[b]64bit:[/b] - [2013/08/22 04:48:04 | 000,220,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:[b]64bit:[/b] - [2014/10/18 01:38:57 | 003,557,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:[b]64bit:[/b] - [2013/08/22 05:30:45 | 000,258,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:[b]64bit:[/b] - [2014/07/24 03:32:47 | 001,532,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:[b]64bit:[/b] - [2013/08/22 04:54:22 | 000,284,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 237 bytes -> C:\Users\yamabet\SkyDrive:ms-properties

< End of report >

Extras.txtのLogになります。宜しくお願いします。
今，気が付いたのですがERRORがありました…。必要であれば，再度LOGを取得します。必要でしたら指示頂けないでしょうか。すいません。

-------------------
OTL Extras logfile created on: 2015/01/18 11:41:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\yamabet\Desktop\Spy
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: Japan | Language: JPN | Date Format: yyyy/MM/dd

7.88 Gb Total Physical Memory | 5.47 Gb Available Physical Memory | 69.39% Memory free
9.63 Gb Paging File | 6.48 Gb Available in Paging File | 67.23% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 917.19 Gb Total Space | 853.86 Gb Free Space | 93.10% Space Free | Partition Type: NTFS
Drive D: | 6.87 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: YAMABE-PC | User Name: yamabet | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
.txt[@ = hidemaru.txt] -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.txt [@ = hidemaru.txt] -- C:\Program Files (x86)\Hidemaru\Hidemaru.exe (有限会社サイトー企画)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A728B28-DFE0-44F2-A1B2-7A3607396424}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1F2B3562-8C80-409A-A29D-0FC850AD9EEF}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{517189D6-3363-4412-B106-4C17B778FEC1}" = lport=10243 | protocol=6 | dir=in | app=system |
"{55E8F12A-E5E9-4EB0-AD0C-E8ECEF083189}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{58B68D9E-CF59-41E3-A759-BE28F69E6599}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{6948C74D-7A97-4024-86FF-09B2C4D04D8D}" = lport=5357 | protocol=6 | dir=in | name=ws-eventing tcp ポート 5357 |
"{6C1428AF-4935-4E56-97C9-39BC405460BB}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E3906CE4-1807-45A3-8E6D-6C0B922F46B2}" = rport=10243 | protocol=6 | dir=out | app=system |
"{E4F7D4D8-B209-47B6-9152-3A04914E09A8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{EA27E012-5F48-4420-BD6E-3542561054E5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{EB84D18F-85DC-4585-A5EE-C0351CC69D96}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03CBE4DE-D64D-42D2-825A-39618676EB9B}" = dir=out | name=@{microsoft.bingfinance_3.0.1.299_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{0515DB25-BA00-4FF1-9D0F-992F542D86D5}" = dir=out | name=roxio mediabook express |
"{094C6AE4-E8E8-4A2A-B92D-FB97BAB1CFDD}" = dir=out | name=思い出フォトビューア |
"{0A06D460-E8D7-4E8F-97BB-4DA276BDE6A0}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{0CF540B5-B933-4E0C-A10E-FADEC2534B5F}" = dir=out | name=navitime for toshiba |
"{0DBBB111-E06B-4D17-B0A9-8D32BBB76557}" = dir=in | name=juniper networks junos pulse |
"{0EA04CF2-20E3-4230-8647-2CE089CF5099}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\mediasyncagent.exe |
"{0F838544-6651-49C0-A110-9B8E074B13C3}" = dir=out | name=yadotan |
"{10869903-221C-4D2E-89F6-D8FDB12D78A8}" = dir=out | name=デジタル貸金庫 |
"{120A3BB5-E74A-400C-A373-C3F0B4D7B8CD}" = dir=in | name=check point vpn |
"{128A2A83-CE7D-48CC-A857-2A883786CC5F}" = dir=out | name=楽天レシピ |
"{1310558B-D18F-44D7-9D56-540AA09008CF}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{1365F937-8C1F-4F4C-9802-DF1E1CEE2858}" = dir=out | name=@{microsoft.zunemusic_2.2.299.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{162BAEFD-B954-49F0-84C8-882279786DB8}" = dir=out | name=@{microsoft.bingtravel_3.0.1.202_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{16D8520B-EB94-45A1-802C-F8365245FC2F}" = protocol=6 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{1710FE8E-FAC5-4A24-847F-EF8B068BB3A9}" = dir=out | name=ホットペッパー グルメ |
"{1721525C-1413-48A0-8224-E4C4F89F3BE0}" = dir=in | name=f5 vpn |
"{17C031FF-96F8-4B57-BD1A-944F6B766E4C}" = dir=in | name=思い出フォトビューア |
"{182CDE2E-AE58-4064-BF64-DB8F171C6530}" = dir=out | name=hp all-in-one printer remote |
"{194350B9-74CD-4E4E-881B-151ABDA1AE16}" = dir=out | name=yadotan |
"{1EBF229E-EBBC-4CF6-A940-BC6EF19DEDB8}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{1FA527A3-0067-4C24-A8FD-9481CA84E10F}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{2088BDB9-70B7-4B0B-B2DA-81C7E715B025}" = dir=out | name=windows_ie_ac_001 |
"{21FD64A6-384B-4BF7-B3E1-24100908BA26}" = dir=out | name=@{microsoft.bingnews_3.0.4.255_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{22D845C0-3515-4BF0-890C-1A8E3BF4283B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2329A85C-7F6D-4067-899F-2428BF6491D1}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.254_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{24C32A29-21B8-4EC5-8A57-B6A0C4F2BA0B}" = dir=out | name=check point vpn |
"{2707C7E5-8D6A-4D00-BC9E-F7F3B56D50B8}" = dir=in | app=c:\program files (x86)\cyberlink\rz player\kernel\dms\toshibamsserver.exe |
"{29924B22-68F8-46D3-9837-DB099413166B}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{2AC75A45-A764-4C02-9BE7-B09B778A9FAB}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{2AC9A461-21F9-4B42-B058-C2B87E3300CF}" = dir=out | name=skype |
"{2BC03BAB-6136-417B-8E77-C874F4FF61B9}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{2E085C5B-AB26-4BCA-9B44-84C75E928BA2}" = protocol=6 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"{2F66E071-7F0F-4E2A-804D-1E00AD9B3960}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{315ACE1C-8DFA-423E-8164-A4294AB37877}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{3343B152-85AE-4A7F-B05A-613333E7160D}" = dir=out | name=@{microsoft.bingtravel_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{34167B4F-AFEB-46E7-95B6-477F6E0C921B}" = dir=out | name=juniper networks junos pulse |
"{34381840-BCBE-419A-A61C-CF1FE67C301E}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\kernel\dms\clmsservermediasync.exe |
"{34CABFA4-402B-4034-BD6C-6BFBBC1A81E3}" = dir=in | name=skype |
"{37FE9880-74E4-464F-9B35-223D5CE813AC}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{3819697F-8A3F-46FE-9B35-BFE11798ACE8}" = dir=out | name=hp printer control |
"{394FBF34-EB6B-4F74-977F-36BCB029BD73}" = dir=out | name=楽天レシピ |
"{398519BE-B64C-4ABF-AB2E-373735AC3F00}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{3DED30A9-F498-448C-81D6-A0390BDC647B}" = dir=out | name=tsutaya discas レンタルランキング |
"{3EF4FB91-B97E-47DD-92A3-36C95DD550D4}" = dir=out | name=@{microsoft.bingfinance_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{40B40727-8714-4E77-B2F4-E238DF822E04}" = protocol=6 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{45C334C2-E222-457A-AA36-9AFFA4699F0D}" = dir=in | name=check point vpn |
"{47D2F82A-9E36-4C28-A648-CAE343F104E5}" = dir=in | name=sonicwall mobile connect |
"{484A83EA-B3CC-4844-A026-ABCB6680ACCF}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{51B9DBCB-B520-401B-8E80-4BFE019F5BEE}" = protocol=17 | dir=in | app=c:\program files\intel\wimax\bin\appsrv.exe |
"{53EEE14B-5D76-41D1-A95C-2107A7A0C65E}" = dir=out | name=tsutaya discas レンタルランキング |
"{546F241F-108F-4212-8B53-55D20DE44821}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{5579DB9D-FBD6-4B6C-8CA2-1A56BC0D4EFE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{57AB43CA-0150-42E8-A305-B22C1D52C18A}" = dir=out | name=f5 vpn |
"{5EF5A533-EF7C-401C-994F-D802365C67AF}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{5F2CB441-13C1-430D-B36F-E5E92AA3AF84}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20321_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{60962BE1-C3DF-4C9F-A3DA-ED6B5475EC07}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.201_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{627137BE-EB69-4C2D-805E-D6A374F0BED9}" = dir=out | name=yahoo!オークション (ts) |
"{64458F2B-26E1-4CF0-9A2A-2DA9881BB133}" = dir=out | name=juniper networks junos pulse |
"{64639A64-FCD2-4213-8122-787FE480CEC5}" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6488F08A-B321-4AFB-B1CE-70B76D149F8E}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{65B7C9FF-AD79-46D0-8A70-1636417120B2}" = dir=out | name=windows_ie_ac_001 |
"{68938335-66AA-4669-989E-4F7E0B38A85B}" = protocol=17 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"{68A83DCA-4CE3-42CB-A36B-BEFD8ACA1A5C}" = dir=out | name=roxio mediabook reader |
"{6B16F238-AF68-4B3E-9A1F-F6D484E7908A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6BDC7F02-DD20-4EAA-91A3-4B686E883B6E}" = protocol=6 | dir=in | app=c:\program files (x86)\real\realplayer\rpds\bin\rpdsvc.exe |
"{6BF4B0DC-A5BF-47BB-B7C3-216533D31331}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{6E837587-BA78-40A4-B618-5FD15B87D15B}" = dir=out | name=@{microsoft.bingweather_3.0.4.249_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{6F14AAEC-4341-44D4-98CD-98D3F81B22E7}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{6F1A10A8-2C1A-4B57-B35D-F61B35E56CD1}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7012914D-4D18-4718-A961-06537B873B1E}" = dir=out | name=sonicwall mobile connect |
"{70BA1735-01D6-4500-8DF5-458EC41C97EB}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{70BF1C9A-7B3D-48AC-8631-986792AD8F3D}" = dir=out | name=sonicwall mobile connect |
"{71957E53-5F57-4DCE-B5FA-1A4D9BE139F8}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{720C582A-DCCC-4C7D-84A2-DD237BFC56C2}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{725EC4FB-49E8-430B-A1B3-28047897E690}" = dir=out | name=toshiba media player by smedio truelink+ |
"{72D959C9-32B8-469D-AEF2-6D12B52AAFEA}" = dir=out | name=check point vpn |
"{742FFB4B-4B15-478F-9F2C-E7211A28C27D}" = protocol=6 | dir=out | app=system |
"{789C2A25-B02F-4C59-BE98-444823CCD59F}" = dir=out | name=@{microsoft.bingsports_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{79284681-13AC-48F2-B25A-24CC6AB0EC7C}" = dir=in | name=f5 vpn |
"{7B13031D-0B4C-4002-B61F-FFCCB84A241B}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{83C1C0B3-CACC-4EBB-A589-D91B6C88F787}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{860070A1-DA1F-4D1D-BEC8-7866C4403174}" = dir=out | name=@{microsoft.zunemusic_2.6.653.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{8988DC23-EF15-4069-8B8B-E4D2200EA1AE}" = dir=out | name=東芝プレイス |
"{89F1D931-7878-45EB-B38D-594BDC44B1A0}" = dir=out | name=東芝プレイス |
"{8A646EC2-22F6-47A4-ABAE-A0957879041E}" = dir=out | name=楽天gateway |
"{8AB779B4-819C-4DFA-8D38-81B2EA1B50EA}" = dir=out | name=ホットペッパー グルメ |
"{8ADEE186-9E48-45CA-9FBC-5E8A8E1F4580}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{8DA056FF-29AB-435C-832A-97BD617F9A86}" = dir=in | name=思い出フォトビューア |
"{8E901B45-FE90-43A4-8FAE-3D51E8BC8210}" = dir=in | app=c:\program files (x86)\cyberlink\mediasync\mediasync.exe |
"{93F0FA52-05D6-4D5F-8118-9513108FAFDA}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9C11635A-886F-41BB-B99F-B5F1D7B70322}" = dir=in | name=juniper networks junos pulse |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9ED0B77C-E053-45F6-8430-C6F436EB6852}" = dir=out | name=楽天gateway |
"{A11CD797-EA49-4611-AF26-7A50C08D10F6}" = dir=in | name=@{14c78905.trendmicromalwaremap_6.5.0.1039_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{A2E3CA98-6D35-4151-AF07-5792B14423AC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A300A196-A140-4ACC-BADE-F8BC8C1B6B0F}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{A3B59F66-216F-4C6B-A738-C07AA34F8FE2}" = dir=out | name=@{microsoft.bingmaps_2.0.2210.2401_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{A77EC5B4-3918-487F-BACA-D472610928B6}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{AB34EA0C-626E-4E04-8173-B7078DEB3BB2}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{ABDE6011-7A5A-4DE7-BF8C-7E04F3908385}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AC4CBE28-1093-40EB-B6E9-9A893C2B869B}" = dir=out | name=f5 vpn |
"{AD338857-A0EA-40AA-9288-ABDBC14E51F6}" = dir=out | name=yahoo!オークション (ts) |
"{ADA495C6-CF58-4684-9311-6FB50D886A17}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{AF5CD243-D2A8-454E-8579-B1E5461F3327}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B1974FFE-B1A5-4F38-BDBC-BD4284DDC36D}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{B5172C99-CF1D-41FD-B9B1-A706E27FE162}" = dir=in | name=hp printer control |
"{B52D6B3E-EB70-441F-976A-442C428F1CBC}" = dir=out | name=music.jp for toshiba |
"{B5E8A475-3DCA-4C83-9E53-65EF6201F504}" = dir=out | name=youcam for toshiba |
"{B74C9712-1C7F-4D2E-A117-1B2C2997AC15}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B852C38F-18FD-4A63-9E4E-B99CBB1F46FD}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{B96C60C0-F837-4F62-964D-F699206C793C}" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{B9B09C8D-2A9E-4057-AC75-2CC0DD577175}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{B9CCBC07-EB60-4E07-A431-22968E9DC7E4}" = dir=out | name=@{microsoft.bingsports_3.0.4.244_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{BA493F21-7B3A-448C-9AFC-B7B38FDDD58F}" = dir=out | name=roxio mediabook reader |
"{BB3EFF35-ECFE-4458-BE84-F8454A1E2E33}" = dir=in | app=c:\program files\hp\hp envy 4500 series\bin\devicesetup.exe |
"{BBD93587-38C7-4FE4-A04A-441C14DE6E5D}" = dir=out | name=windows_ie_ac_001 |
"{BC6062D9-BD27-4ADA-817E-529C673AFC8A}" = dir=out | name=@{microsoft.zunevideo_2.6.434.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{BC64A8D3-D0A7-453F-AC22-232D49039CA9}" = dir=in | name=toshiba media player by smedio truelink+ |
"{BE0BF64B-5ECA-4DEE-B404-D5D62FB30CA1}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{BF5A8F9F-8526-45F2-B0D4-00445D598416}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.335_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{C05F05F2-702D-41BE-96AC-84B745FC6547}" = dir=in | app=c:\program files (x86)\cyberlink\rz player\softdma.exe |
"{C37D5D1D-698C-4883-B082-A80C45EBB325}" = protocol=6 | dir=in | app=c:\program files\intel\wimax\bin\dmagent.exe |
"{C48C5FC4-4671-4E5E-B660-9CC50F9AA9D6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C6699B5B-5833-4630-9177-549414AC48A9}" = dir=out | name=roxio mediabook express |
"{C6D816F8-FD05-4978-A7E8-F0A5FD37ADD7}" = dir=out | name=fresh paint |
"{C7586A3D-539F-4E51-8FDB-1835658275C1}" = dir=in | name=sonicwall mobile connect |
"{C7F29022-443E-4B84-9079-ACF0854410CF}" = dir=in | app=c:\users\yamabet\appdata\local\microsoft\skydrive\skydrive.exe |
"{C8DBC020-C949-45FE-BF24-6A1756F70CA6}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C9223C2F-B0B9-4CF9-95F2-8AFF849C0786}" = dir=in | app=c:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe |
"{C92A27FF-3808-453A-B3D4-08EE189D52F4}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CA88B71B-895C-49B8-BC7D-6490C48B78A9}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CA9BBEAF-BD4F-4457-9B45-4CAAB030254D}" = dir=out | name=@{microsoft.bingnews_3.0.1.321_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/apptitle} |
"{CAE31180-A9CE-447C-A7AF-EC47C99332B6}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CB60C7B0-9377-4A3D-A91C-1315B2BECA08}" = protocol=17 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{CC9597AE-0F1B-481F-BEB8-E25D789EFC23}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{CDA2869C-22A2-4178-BC71-C674BA02697E}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{CF08A68D-88E3-4922-ACAC-51A3E5D1AE8D}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{CF12386D-5E61-4110-95D4-E54DC830E102}" = dir=out | name=@{microsoft.bingweather_3.0.1.203_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{CFCD81EA-116B-4642-9878-B85DAEF7B63D}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20321_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{D1C5BFC3-1203-4A7C-8CE6-027E85D1D20A}" = dir=out | name=music.jp for toshiba |
"{D1DBBEE9-A42F-40BB-BD14-A8E9D6D974DA}" = protocol=17 | dir=in | app=c:\program files (x86)\rightsnetwork\rightsplugin\bin\msupdate.exe |
"{D39145EB-057B-432B-8BE8-CE719FBC50D9}" = dir=in | name=hp all-in-one printer remote |
"{D40D3E0D-BB06-4D9B-9A75-BDC5A85DE461}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D4572384-44BF-40A5-96CB-027E550A6668}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D557D1E0-E7B5-4C08-8EBF-EC263C884D0E}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D7C944C8-5064-4D35-8570-E0F46ABAF0F2}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D8AD4726-7546-476F-B65D-B767ABAF115D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\live meeting 8\console\pwconsole.exe |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DCB06C02-9E74-4C4C-8C9F-2F5FF305E501}" = dir=out | name=@{microsoft.zunevideo_2.2.299.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{DEF1544C-E11D-45BF-B1A8-FB78EA7B1C68}" = dir=out | name=toshiba media player by smedio truelink+ |
"{DEFF9D5A-F0B4-489A-909B-57AA495077FD}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{E21789F2-D2B5-40E8-BBE5-056CA3E3BEB3}" = dir=out | name=@{14c78905.trendmicromalwaremap_6.5.0.1039_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{E362EA98-16BC-4D05-BCD5-EC07A762B683}" = dir=in | name=toshiba media player by smedio truelink+ |
"{E3E6C3DC-CB1A-4275-BB87-609F6C2AC9FD}" = dir=out | name=デジタル貸金庫 |
"{E7394345-3592-419B-A262-6B95D75EF1E4}" = dir=out | name=思い出フォトビューア |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EF1ABBE6-2767-4AFF-8DC9-1ABBEEE66D49}" = dir=out | name=navitime for toshiba |
"{EF6DCAA7-DB33-4D58-B695-69ED8B985189}" = dir=in | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{F222CEDA-7554-4944-A223-2F6E83363924}" = dir=out | name=youcam for toshiba |
"{F47E1BE7-2692-48AA-B42C-6C3C466C5969}" = dir=out | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{F56F08E7-0B99-4FDF-A364-8CB5E47740D9}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FB2F22C9-22D2-4302-854E-CDE6038B1CBF}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{FE200DDB-EED2-4D06-BE4A-80FBCDE63C9A}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{FE68F051-FA37-435E-9E35-69B98ACEF730}" = dir=out | name=fresh paint |
"TCP Query User{21F672AF-CA55-4576-B345-910F740859FB}C:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{962C36FC-CB1A-4241-8125-34A48C579E18}F:\usbplayer\usbplayer.exe" = protocol=6 | dir=in | app=f:\usbplayer\usbplayer.exe |
"TCP Query User{971CA8D0-986E-4034-9668-E0079794E337}C:\program files (x86)\tapur\tapur.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"TCP Query User{B95E76BA-6377-4A82-81F5-953641E563B4}C:\program files (x86)\tapur\tapur.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"TCP Query User{E28CF8DC-CEDC-44B1-B1BF-E72A06E02FC3}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"UDP Query User{558A4B21-80AA-4DCD-BA72-622D2253210B}C:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\yamabet\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{BF687708-37C2-4F9A-BA9F-01EA9A50CE71}F:\usbplayer\usbplayer.exe" = protocol=17 | dir=in | app=f:\usbplayer\usbplayer.exe |
"UDP Query User{E0BB350F-EA25-48E4-BD2F-30DB4EDBA2D9}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"UDP Query User{EB6BB7BA-90F1-438E-83A8-0CF8004878B6}C:\program files (x86)\tapur\tapur.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |
"UDP Query User{EE56E3AD-B3D6-42E3-B65B-F99616532255}C:\program files (x86)\tapur\tapur.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tapur\tapur.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000A208E-1050-4181-AC37-E13DA9254B73}" = Premium Sound HD
"{1593C708-5535-47A4-8C0F-F8D4BE2B4560}" = インテル® PROSet/Wireless WiFi ソフトウェア
"{164CB153-9D0D-4985-A5A8-F7C31851CA6F}" = HP ENVY 4500 series ベーシック デバイス ソフトウェア
"{16562A90-71BC-41A0-B890-D91B0C267120}" = TOSHIBA Function Key
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21E47F47-C9A7-4454-BA48-388327B0EA00}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}" = iTunes
"{320CA1B5-9CD5-4F75-9A25-137B1EDDEB5E}" = TOSHIBA Password Utility
"{5944B9D4-3C2A-48DE-931E-26B31714A2F7}" = TOSHIBA eco Utility
"{5A1CD0BB-7E65-45DC-9A9A-682CE8B62AA4}" = Update for Japanese Microsoft IME Standard Dictionary
"{5F588B19-C575-4750-86FD-6ED2B76E61F1}" = インテル(R) PROSet/Wireless WiMAX ソフトウェア
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6097158B-0184-4140-BEC3-7885794D2571}" = Intel(R) WiDi
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{75261675-CE76-49D1-8A66-401B2CE69703}" = TOSHIBA Manual
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E59415B-ECAC-43F7-B496-7BCD636C63E1}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{90150000-008F-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{95CCACF0-010D-45F0-82BF-858643D8BC02}" = TOSHIBA Desktop Assist
"{977D1ABF-4089-4CA7-BA33-CC75808B7ACE}" = Intel® Trusted Connect Service Client
"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = ウイルスバスター クラウド
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{B2A88B4D-3BC0-49F6-85A4-0E6F0E34D90B}" = TOSHIBA Active Display Off
"{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}" = Oracle VM VirtualBox 4.3.12
"{B618DB1F-BA15-443F-A724-67B210EA3CE3}" = ANT Drivers Installer x64
"{B939BFEB-824F-4456-A4EE-2B86ED04033D}" = Update for Japanese Microsoft IME Trending Words Dictionary
"{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}" = Apple Mobile Device Support
"{C7B204A8-F6FE-44AC-A751-ECEDE4507E07}" = TOSHIBA Speech Synthesis
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D000D1C0-6E80-4FC4-BE4E-A88872C0616F}" = Share64
"{E0DA877B-B17C-4E0B-A220-A6BA13B7B9AB}" = 東芝ジェスチャコントローラ
"{FBA99E61-D20C-4033-B5C3-7D4E0897CC5D}" = 製品改善のための調査 HP ENVY 4500 series
"{FF07604E-C860-40E9-A230-E37FA41F103A}" = TOSHIBA VIDEO PLAYER
"06F641081879AE7F85D9768F27B91E0FEDA3632F" = Windows ドライバ パッケージ - Broadcom Corporation (bcbtums) Bluetooth (10/05/2012 12.0.0.2702)
"CCleaner" = CCleaner
"D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2" = Windows ドライバ パッケージ - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1)
"F9D2A789F9CFF8CEC36B544F53877C80F1F73C46" = Windows ドライバ パッケージ - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
"HomeStudentRetail - en-us" = Microsoft Office Home and Student 2013 - en-us
"ProInst" = Intel PROSet Wireless
"PROSet" = Intel(R) Network Connections Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{1A1BD41E-9854-4957-8959-F9559A8862A7}" = Corel VideoStudio X5
"{02D371DE-95DC-4F6F-A1A6-4C957D6721A9}" = 筆ぐるめ 20
"{05A55927-DB9B-4E26-BA44-828EBFF829F0}" = TOSHIBA System Settings
"{0D04A4D2-7CE9-4EC2-970F-4A639D721D46}" = Pixia ver. 6
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15015752-9990-4516-A2B1-93823281FB8E}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{16CA0E87-913B-44C3-BA6C-DDBDD037752E}" = PC引越ナビ
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1A1BD41E-9854-4957-8959-F9559A8862A7}" = ICA
"{1E6A96A1-2BAB-43EF-8087-30437593C66C}" = TOSHIBA System Driver
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{21357E10-BDCB-4CDD-B2A3-905DD7ED653D}_is1" = DigiBookBrowser Version 1.5.1.4
"{21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6}" = TOSHIBA PalaDouga
"{22939821-cd61-449c-8a03-cff0af03c156}" = Garmin Express
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype(TM) 7.0
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2B78F0C7-DD01-4FA6-8C0A-B1CC0AD70563}" = Garmin Express Tray
"{2C96F677-7D9C-4087-8CA5-21EB27150F41}" = Roxio Creator LJ
"{2FD19101-DEFB-49AC-80B5-129B171AE4DF}" = HP ENVY 4500 series ヘルプ
"{389F8A7A-8611-42E8-8169-20D2BAF0C595}" = Microsoft Office Live Meeting 2007
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{4D605B2E-DC56-45f6-809C-E29BF9470DB9}" = CyberLink MediaSync
"{51F0CC36-5EB0-4B9E-8F97-6AE9AD81BD7A}" = PCあんしん点検ユーティリティ
"{5705EC66-E894-454D-A014-ADF1DF920C10}" = いつもNAVI PC
"{5BB655D4-07D7-45E3-B852-FF869EA628A1}" = VSPro
"{5E6D0ABA-ABDE-11E3-9AED-00163E98E7D6}" = Evernote v. 5.2.1
"{62796191-6F12-4ABE-BA8B-B4D4A266C997}" = Video Downloader
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{66C70B5F-730F-4C5D-9FC5-8E56D0FE7D53}" = IPM_VS_Pro
"{6A6F7B28-E178-47AC-8654-A654ADA6C777}" = VSHelp
"{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}" = TOSHIBA Resolution+ Plug-in for Windows Media Player
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6FCD4D5A-20B9-4D79-ABA5-4E7048944025}" = RealDownloader
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{74DC8A26-4E05-40B6-AD11-C9428A1AE150}" = Roxio Creator LJ
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}" = Update for Japanese Microsoft IME Standard Extended Dictionary
"{7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}" = Adobe AIR
"{7DB71278-9AD7-4480-AB08-8649C5010B17}" = Update for Japanese Microsoft IME Standard Dictionary
"{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}" = Apple Application Support
"{86DAC53F-8C9B-46F0-9A47-C29DE27C1CE8}" = Garmin Express
"{89A15676-78AE-4D51-BF5B-DEE3E0D46C94}" = Roxio Creator LJ
"{8AA4F966-EF4B-44D8-99AA-C4EA93B46863}" = VSClassic
"{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink MediaShow 6
"{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component
"{90150000-008C-0409-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component
"{912D30CF-F39E-4B31-AD9A-123C6B794EE2}" = HP Update
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A8887C7B-0BCC-4FBF-BCEB-9BB4D4B14999}" = Setup
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{aa4bf92b-2aaf-11da-9d78-000129760d75}" = RZスイート express
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{AC76BA86-7AD7-1041-7B44-AB0000000001}" = Adobe Reader XI (11.0.09) - Japanese
"{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}" = HPDiagnosticAlert
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator
"{B69F4E72-CCA4-4352-BF1C-708CE3D96E25}" = OEM Registration Program
"{BAADC016-C971-4653-AEAA-36EABD1351C4}" = Elevated Installer
"{C21D8176-EC78-484D-B702-DD963329EEF8}" = ぱらちゃんV2.3
"{CA486743-5F44-40D5-A38B-77911FB27579}" = Contents
"{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1" = LoiLoScope 2
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{DCDC6934-7428-489E-8651-90B53191488B}" = ISCOM
"{DF3CE489-9C57-4ADA-AD72-DF45C187E657}" = おたすけナビ
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3AE96D6-E196-45B4-AF62-2B41998B9E37}" = UpdateService
"{e6171278-8759-449d-9e0b-c1825debc2ad}" = RealDownloader
"{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}" = PL-2303 USB-to-Serial
"{EEBEF66A-70FD-4DF6-B173-82D07E61853E}" = Share
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.24)
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FBEFDC9E-F8FB-4B66-A78B-09B7B380D59D}" = RealDownloader
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FE041B02-234C-4AAA-9511-80DF6482A458}" = RICOH Media Driver v2.23.17.01
"Adobe AIR" = Adobe AIR
"Cisco Connect" = Cisco Connect
"Google Chrome" = Google Chrome
"Hidemaru" = 秀丸エディタ (8.31)
"HP Photo Creations" = HP Photo Creations
"InstallShield_{0D04A4D2-7CE9-4EC2-970F-4A639D721D46}" = Pixia ver. 6
"InstallShield_{4D605B2E-DC56-45f6-809C-E29BF9470DB9}" = CyberLink MediaSync
"InstallShield_{8FCCB703-3FBF-49e7-A43F-A81E27D9B07E}" = CyberLink MediaShow 6
"InstallShield_{aa4bf92b-2aaf-11da-9d78-000129760d75}" = RZスイート express
"IObit_StartMenu8_is1" = Start Menu 8
"IObitUninstall" = IObit Uninstaller
"LAPLINK HelpDesk Client" = LAPLINK ヘルプデスク クライアント
"Lhaca" = +Lhaca
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
"music.jp PLAY_is1" = music.jp PLAY 4.0
"P-Study System 8" = P-Study System 8
"RealPlayer 17.0" = RealPlayer Cloud
"Tapur_is1" = Tapur 5.3.0.111
"VLC media player" = VLC media player
"Windows Media Encoder 9" = Windows Media Encoder 9 Series

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"SkyDriveSetup.exe" = Microsoft SkyDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2015/01/18 12:23:52 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:23:52 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:37:56 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ 14C78905.TrendMicroMalwareMap_y1xsffnhj35f6!App のライセンス認証がエラーで失敗しました:
-2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:37:57 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:37:57 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:37:57 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:52:52 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ 14C78905.TrendMicroMalwareMap_y1xsffnhj35f6!App のライセンス認証がエラーで失敗しました:
-2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:52:52 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 12:52:52 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
のライセンス認証がエラーで失敗しました: -2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

Error - 2015/01/18 13:07:51 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ 14C78905.TrendMicroMalwareMap_y1xsffnhj35f6!App のライセンス認証がエラーで失敗しました:
-2144927141。詳しくは、Microsoft-Windows-TWinUI/Operational ログをご覧ください。

[ System Events ]
Error - 2014/10/18 22:40:07 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 3 回目です。

Error - 2014/10/18 22:40:10 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 2014/10/19 12:09:19 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/19 12:09:25 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =

Error - 2014/10/19 16:21:13 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7031
Description = Garmin Core Update Service サービスは予期せぬ原因により終了しました。このサービスの終了は 1 回目です。次の修正操作が
60000 ミリ秒以内に実行されます: サービスの再開。

Error - 2014/10/20 23:27:27 | Computer Name = Yamabe-PC | Source = DCOM | ID = 10010
Description =

Error - 2014/10/20 23:27:28 | Computer Name = Yamabe-PC | Source = DCOM | ID = 10010
Description =

Error - 2014/10/20 23:27:28 | Computer Name = Yamabe-PC | Source = DCOM | ID = 10010
Description =

Error - 2014/10/21 0:10:19 | Computer Name = Yamabe-PC | Source = Service Control Manager | ID = 7034
Description = Toshiba Media Server Service サービスは予期せぬ原因により終了しました。このサービスの強制終了は 1 回目です。

Error - 2014/10/21 0:10:27 | Computer Name = Yamabe-PC | Source = Microsoft-Windows-Kernel-Power | ID = 137
Description =


< End of report >

レスが遅くなってすみません。

>その後，Chrome，ほかのブラウザでも今のところ，不具合は見当たりません。

はい、OTLログを見たところ、おかしな痕跡は見えませんね。
先に無効化はできても削除できなかった下記ですが、
>Plugin Native Client

これは元はChromeデフォルトで入っている拡張のようですが、しばらく前にこれも異常に絡んでいた事例が見つかったので処置対象にしていました。
その後他の方の相談ログも見てましたが、どうも異常が見つかった事例では偽装したものの疑いも出てきてます。
自分が過剰反応で処置してたということになるでしょうが、Chromeの再インストール後も出ている点を見ると今回は正規のNative Clientのようですね。
なのでこれはCCから「有効」に戻していいでしょう。
戻しても戻せなくてもあるいは削除できても、正規のものならChrome再インスト後に復活するはずなので。

CCから修復できたらそのあとCCでChromeログだけ取り直して、それをレスで見せてください

悪代官様，

下記にChromeのPlugin Native Clientを有効にした後，CCのChromeのLogを下記に示します。偽装の件についてはよくわかりません。あと見逃すよりも過剰に反応していただけた方が個人的には助かります。確認宜しくお願いします。




有効 App Gmail 7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Gmail 7 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
有効 App Google ドライブ 6.3 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google ドライブ 6.3 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
有効 App Google 検索 0.0.0.20 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App Google 検索 0.0.0.20 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 App YouTube 4.2.6 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
有効 Extension Evernote Web Clipper 6.2.6 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
無効 Extension Evernote Web Clipper 6.2.6 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pioclpoplcdbaefihamjohnefbikjilc\6.2.6_0
有効 Extension Google ドキュメント 0.7 Default C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Google ドキュメント 0.7 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0
有効 Extension Trend ツールバー 8.0.0.1225 Profile 3 C:\Users\yamabet\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf\8.0.0.1225_0
有効 Plugin Adobe Acrobat 11.0.0.379 USER C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
有効 Plugin Chrome PDF Viewer USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
有効 Plugin Chrome Remote Desktop Viewer USER internal-remoting-viewer
有効 Plugin Google Update 1.3.21.153 USER C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
有効 Plugin Intel® Identity Protection Technology 2.1.42.0 USER C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll
有効 Plugin Shockwave Flash 11.8.800.97 USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll

レスが遅くなってすみません。

またレスが遅くなってすみません。

>あと見逃すよりも過剰に反応していただけた方が個人的には助かります

はい、確かに見落とすよりも敏感に反応したほうがいいかもしれませんね。
ただ、一般ユーザーさんの場合はアンチウイルスソフトで何か検出や警告が出たら慌ててすぐに「削除」したがる方が多数です。
そしてアンチウイルスソフトでは多くの場合、検出されても「隔離」「削除」「無視」から選択する形になっています。
「隔離」はアンチウイルスソフト内の特殊なフォルダ（隔離ボックスや隔離チェストと呼ばれます）に検出したファイルを文字通り隔離して閉じ込めます。
これを実行するとマルウェアであってもなくてもそのファイルは動けなくなります。

逆に「無視」すると検出されたものは何も変わりません。過剰反応（誤検出）の場合はこれが正常な対処になります。

そして「削除」ですが、これは検出されたものを文字通りその場でPC上から削除してしまいます。
本当に危険なマルウェアファイルに間違いなければこの対処でもいいですが、もし誤検出だった場合そのファイルは復元できなくなり、Windowsの正規で重要なファイルだった場合は取り返しがつかなくなるわけです。

なのでアンチウイルスソフトで検出されたものは一度「隔離」して、それをじっくり調べてから、本当にマルウェアと判断したらその時点で隔離ボックスから完全に「削除」することで完全に消えます。
隔離しただけなら誤検出と判明しても隔離ボックスから復元は可能です。

隔離や削除の意味もこうやって微妙に違うので、セキュリティソフトの設定と機能をできるだけ把握して正しく使うことも理解しておいてください。

さて、CCでChromeログを見たところ、下記も「有効」に戻ってますね。
>有効 Plugin Native Client USER C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ppGoogleNaClPluginChrome.dll

ではこれももういいでしょう。

現在もう他に異常は出ていませんか？
あればその報告をください。

何もなければ片付けに入れそうです

悪代官様

はい，その後は特に異常なく快適なネットライフを楽しんでおります。
本当に色々，ありがとうございました。最初は，どうなることか…，と思いましたが
悪代官様のおかげで何とか解決できました。
上手く言えませんが本当に感謝しています。

その後の片づけについて指示をお願いします。

またレスが遅くなってすみません。

その後は異常もないみたいですね。
では「解決」になります。
作業に使った各ツールは導入時の説明手順に沿って片付ければいいです。

片付け後は以後の再被害を防ぐための自衛策も固めてください。
ブラウザの設定を少し固めるだけでも、セキュリティ上の効果を高めることが可能です。
「インターネットオプション」→「プライバシー」→「詳細設定」と開いて、「自動cookie処理」と「サードパーティのcookieをブロック」にチェックして「適用」して「OK」。
これをやっておくと、多くの危険サイトからの保護にかなり有効です。
が、これもすべての危険サイトに有効でもないし、本物の危険サイトではこの程度ではまったく太刀打ちできないので、過信はしないこと。
また、「すべてのcookieをブロックする」設定にすると、プロバイダのメールボックスなどログイン必要なページに入れなくなる弊害も出るので、これは状況を考えて使い分けるといいでしょう。
安全なサイトでもcookieブロックだと閲覧や投稿ができなくなるところもあるのでこれも注意。

次に、アンチウイルスやファイアウォール等のセキュリティソフトの使い方も注意してください。
セキュリティソフトはただ入れてさえいればそれだけでフル機能を発揮するものではありません。
設定と機能をできるだけ把握して、正しく使うことが重要です。
間違った使い方すると、本来ならブロックできた感染でもあっさりスルーします。

また、いくら高性能なセキュリティソフトがあっても、ユーザーが自分から危険なサイトやファイルにアクセスしてたらまったく保護もできません。
セキュリティソフトは使い方次第でその性能を、倍にも半にも無にも変動させます。

そして百聞は一見にしかず。
現在この掲示板で継続中や解決済みの他スレもできるだけ見ておくことをおすすめします。
同様、類似、別種含めて参考になる部分は多いでしょう。

他の方のスレも見てもらうとわかるでしょうが、迷惑広告感染事例は各事例ごとにまったく違う手順でないと処置できないことが多く、同じ手順がそのまま2度続けて通用する事のほうがきわめて稀です。
ネット上の信頼できないサイトにアクセスしてよくわからないまま「はい」や「ok」をクリックするとそれだけでもPC内に何を仕込まれてもおかしくないです。
インストール時の説明も重要な部分ほど見えにくい、長々しい呪文のような「使用規約」を読まずにスルーしてokしたら、それはユーザー側の過失が原因という言い訳が通用するので曲者アプリの製作配布者の責任も問えなくなります。

怪しいサイトやファイルを見分けるだけの目と判断力を養うことが自衛の上で大きな力になります。
最初から全部頭に詰め込む必要はないので、ひとつずつでも消化しながらPC環境とセキュリティ意識を再構築していってください。

慣れない作業を頑張ってくれてお疲れ様でした。
以後は安全で快適なPCライフを

悪代官様，

この度は本当にありがとうございました。最初はどうなることかと思いましたが，何とかお力を借りて解決することができました。今後は，ほかの方のLogを参照しながら自衛に努めたいと思います。

グリーン