悪代官の伏魔殿掲示板
Cantataweb
ニシカワと申します。
相談に乗っていただきたい要件として、Cantatawebの削除方法を教えて頂きたいです。

2か月前ほどに、何かのファイルをダウンロードした拍子にアドウェアが現れるようになりました。
素人なりに調べadwcleanerによるアンインストールやファイルの除去を試みたものの、アドウェアが消えることはありませんでした。
Chromeのみでアドウェアが表示されます。
相談前の作業に書かれていたように、Chromeは推奨されていないとのことでしたが、同期などが便利なことからなるべくChromeを使いたいと考えております。
以下ログでございます。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 0:12:06, on 2015/02/05
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera_crashreporter.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Users\博\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: IntelR CentrinoR Wireless BluetoothR + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem29.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: インテル(R) ラピッド・ストレージ・テクノロジー (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Maxiget Update サービス (mglupdate) (mglupdate) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: Maxiget Update サービス (mglupdatem) (mglupdatem) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: Wi-Fi WALKER WiMAX 2+ setting tool - Unknown owner - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13512 bytes

Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/01/25 6.00 MB 16.0.0.296
Adobe Flash Player 16 PPAPI Adobe Systems Incorporated 2015/01/28 6.00 MB 16.0.0.296
AhnLab Online Security AhnLab, Inc 2014/10/07
Apple Application Support(32 ビット) Apple Inc. 2015/02/02 94.3 MB 3.1.1
Apple Application Support(64 ビット) Apple Inc. 2015/02/02 107 MB 3.1.1
Apple Mobile Device Support Apple Inc. 2015/02/02 27.9 MB 8.1.0.18
Apple Software Update Apple Inc. 2013/04/19 2.38 MB 2.1.3.127
avast! Free Antivirus AVAST Software 2014/10/07 9.0.2021
Bonjour Apple Inc. 2013/04/06 2.00 MB 3.0.0.10
CCleaner Piriform 2015/02/04 5.02
CyberLink Media Suite 10 CyberLink Corp. 2013/04/06 42.0 MB 10.0.1.1916
CyberLink PhotoDirector CyberLink Corp. 2013/04/06 167 MB 2.0.1.3109
CyberLink Power2Go 8 CyberLink Corp. 2013/04/06 263 MB 8.0.1.1924
CyberLink PowerDirector 10 CyberLink Corp. 2013/04/06 532 MB 10.0.1.2006
CyberLink PowerDVD CyberLink Corp. 2013/04/06 243 MB 10.0.6.4330
CyberLink YouCam CyberLink Corp. 2013/04/06 126 MB 4.1.1.3231
Dropbox Dropbox, Inc. 2014/10/07 2.6.24
Energy Star Hewlett-Packard 2013/04/06 3.47 MB 1.0.8
Evernote v. 4.5.7 Evernote Corp. 2013/04/06 126 MB 4.5.7.7146
Google Chrome Google Inc. 2014/12/21 40.0.2214.94
HP 3D DriveGuard Hewlett-Packard Company 2013/04/06 9.08 MB 5.1.5.1
HP Documentation Hewlett-Packard 2013/04/06 470 MB 1.2.0.0
HP ESU for Microsoft Windows 8 Hewlett-Packard Company 2013/04/06 1.71 MB 1.0.1.1
HP HD Webcam Driver SunplusIT 2014/10/07 5.65 MB 3.4.8.16
HP Hotkey Support Hewlett-Packard Company 2014/05/14 10.4 MB 5.0.21.1
HP Registration Service Hewlett-Packard 2013/04/06 75.4 MB 1.0.5976.4186
HP SoftPaq Download Manager Hewlett-Packard Company 2013/04/06 15.7 MB 3.4.6.0
HP Software Framework Hewlett-Packard Company 2013/04/06 8.03 MB 4.6.8.1
HP Software Setup Hewlett-Packard Company 2013/04/06 20.1 MB 8.5.4.1
HP Support Assistant Hewlett-Packard Company 2014/04/01 85.9 MB 7.4.45.4
HP System Default Settings Hewlett-Packard Company 2014/10/13 1.59 MB 2.0.1
HP Wireless Button Driver Hewlett-Packard Company 2015/01/03 733 KB 1.1.2.1
IDT Audio IDT 2013/04/06 1.0.6428.0
Intel(R) Management Engine Components Intel Corporation 2013/04/06 8.1.0.1281
Intel(R) Processor Graphics Intel Corporation 2014/10/06 9.17.10.3347
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel Corporation 2013/04/06 3.83 MB 15.5.0.0344
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Motorola Solutions, Inc 2013/04/06 30.6 MB 2.5.0.0248
Intel(R) Rapid Storage Technology Intel Corporation 2013/04/06 11.5.6.1002
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/10/07 2.0.0.37149
IObit Uninstaller IObit 2015/02/04 4.2.6.2
iTunes Apple Inc. 2015/02/02 234 MB 12.1.0.71
Java 7 Update 67 Oracle 2013/07/16 129 MB 7.0.670
JMicron Flash Media Controller Driver JMicron Technology Corp. 2014/10/07 1.0.72.4
Lhaplus 2014/10/07
McAfee Security Scan Plus McAfee, Inc. 2014/10/07 10.2 MB 3.8.150.1
Microsoft Office Home and Business 2010 Microsoft Corporation 2014/10/07 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/07/24 199 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 2013/04/06 258 KB 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2013/04/06 250 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/04/06 3.22 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2013/04/06 6.88 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/04/06 7.23 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2012/08/01 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/12 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/04/06 5.95 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2014/11/21 230 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/06 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/04/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/12 10.1 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/04/06 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/04/06 15.0 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2014/10/07 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2014/10/07 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 2014/10/07 20.5 MB 12.0.21005.1
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/07 17.1 MB 12.0.21005.1
Opera Stable 27.0.1689.66 Opera Software ASA 2015/02/03 27.0.1689.66
PDF Complete Corporate Edition PDF Complete, Inc 2014/10/07 4.1.8
QuickTime 7 Apple Inc. 2015/01/19 70.2 MB 7.76.80.95
Realtek Ethernet Controller All-In-One Windows Driver Realtek 2013/04/06 8.2.612.2012
Synaptics Pointing Device Driver Synaptics Incorporated 2014/10/07 46.4 MB 17.0.18.8
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/31 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/12/04 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/10/08 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/12/04 17.0 KB 16.0.1016.1
Validity Fingerprint Sensor Driver Validity Sensors, Inc. 2013/04/06 27.8 MB 4.4.228.0
Wi-Fi WALKER WiMAX 2+ setting tool Huawei Technologies Co.,Ltd 2015/02/04 22.001.22.04.824
インテル® PROSet/Wireless ソフトウェア Intel Corporation 2014/10/07 367 MB 16.1.5


宜しくお願い致します。
  • ニシカワ
  • 2015/02/05 (Thu) 00:29:16
返信フォームへ 
直ちにセキュリティソフトを1つに限定しましょう
こんばんは、IVNOと申します。
ログを拝見させていただきましたが、AC(AdwCleaner)を使用された効果か、
ご提示いただいたものに限っては不審なものは見えていない模様です。
これはまた別のログを取得してゆくことで問題点が浮き彫りになると思われます。

さてGoogle Chromeに関してなのですが、
Google Chromeはその同一アカウントの同期設定により、
削除しても削除しても自動的にバックアップから復旧され、
感染状態に逆戻りしてしまうと言う性質があります。
この問題を解決するに当たり、完全手動駆除での処置を行わない限り、
アカウント同期による復旧を阻止する手立てがありません。
よってGoogle Chromeをご利用になられる場合は、処置にそれなりの手間がかかると思われます。

本PC最大の問題点としましては、セキュリティソフトが重複していることです。
セキュリティソフトはPCの中枢部で動作するものなのですが、
ソフトウェアでPCの中枢部まで踏み込むだけの権利を有するものは非常に稀です。
セキュリティソフトはこの特権を有していますが、それはマルウェアがPCの根幹となる
中枢部に対して改変を仕掛けるために、その部分の精査が必要となるのです。
セキュリティソフトが複数導入されていると言うことは、
PCの中枢部に踏み込むソフトウェアが複数存在することを意味します。
そしてPCの中枢部をスキャンする行為と言うのは、
ほかのセキュリティソフトにとって不審な行為となります。
この不審な行為を阻止するため別のセキュリティソフトが干渉しますが、
セキュリティソフトは干渉されても強制的に動作しようとする力が働くようになっています。
片や動こうと懸命になり、片や止めようと懸命になるため、
ここでセキュリティソフト同士の綱引きが発生するわけですね。
これはウイルス等が発見された場合も同様の症状となります。
そうなるとその綱引きをPCは処理しようとするわけですが、
終わりのない力の拮抗した綱引きですので、PCが処理しきれなくなり、
最終的にはフリーズしたりBSoD(ブルースクリーンオブデス)が発生したりします。
そのため、セキュリティソフトの取捨選択は最優先となります。

まずはセキュリティソフトに干渉する可能性の高い以下のソフトウェアを削除してください。

McAfee Security Scan Plus McAfee, Inc. 2014/10/07 10.2 MB 3.8.150.1

次にセキュリティソフトをいずれか1つに限定し、他方は削除してください。

AhnLab Online Security AhnLab, Inc 2014/10/07
avast! Free Antivirus AVAST Software 2014/10/07 9.0.2021

セキュリティソフトの削除が終わりましたら、以下の作業を行ってください。

以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新版の確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml

作業完了後、再度HJT、CCのログを取得し直してください。
CCのログを取得する際、追加で以下の作業も行ってください。
CCのインストール情報ログの取得が完了したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
上記の作業で取得し直したHJT、CCのログと、追加で取得したCCのログすべてを、
下部の返信欄に貼り付けていただき、ご報告をお願いいたします。
上記ログを確認後、次の作業内容をご案内いたします。
  • IVNO
  • MAIL
  • 2015/02/05 (Thu) 04:14:15
返信フォームへ 
Re: Cantataweb
ご返信ありがとうございます。
指示して頂いた通りの作業を致しました。
以下ログでございます。

【HJT】
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:53:08, on 2015/02/05
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera_crashreporter.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Program Files (x86)\Opera\27.0.1689.66\opera.exe
C:\Users\博\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: IntelR CentrinoR Wireless BluetoothR + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem29.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: インテル(R) ラピッド・ストレージ・テクノロジー (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Maxiget Update サービス (mglupdate) (mglupdate) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: Maxiget Update サービス (mglupdatem) (mglupdatem) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: Wi-Fi WALKER WiMAX 2+ setting tool - Unknown owner - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13091 bytes

【CC】
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Adobe Flash Player 16 PPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Apple Application Support(32 ビット) Apple Inc. 2015/02/02 94.3 MB 3.1.1
Apple Application Support(64 ビット) Apple Inc. 2015/02/02 107 MB 3.1.1
Apple Mobile Device Support Apple Inc. 2015/02/02 27.9 MB 8.1.0.18
Apple Software Update Apple Inc. 2013/04/19 2.38 MB 2.1.3.127
avast! Free Antivirus AVAST Software 2014/10/07 9.0.2021
Bonjour Apple Inc. 2013/04/06 2.00 MB 3.0.0.10
CCleaner Piriform 2015/02/04 5.02
CyberLink Media Suite 10 CyberLink Corp. 2013/04/06 42.0 MB 10.0.1.1916
CyberLink PhotoDirector CyberLink Corp. 2013/04/06 167 MB 2.0.1.3109
CyberLink Power2Go 8 CyberLink Corp. 2013/04/06 263 MB 8.0.1.1924
CyberLink PowerDirector 10 CyberLink Corp. 2013/04/06 532 MB 10.0.1.2006
CyberLink PowerDVD CyberLink Corp. 2013/04/06 243 MB 10.0.6.4330
CyberLink YouCam CyberLink Corp. 2013/04/06 126 MB 4.1.1.3231
Dropbox Dropbox, Inc. 2014/10/07 2.6.24
Energy Star Hewlett-Packard 2013/04/06 3.47 MB 1.0.8
Evernote v. 4.5.7 Evernote Corp. 2013/04/06 126 MB 4.5.7.7146
Google Chrome Google Inc. 2014/12/21 40.0.2214.94
HP 3D DriveGuard Hewlett-Packard Company 2013/04/06 9.08 MB 5.1.5.1
HP Documentation Hewlett-Packard 2013/04/06 470 MB 1.2.0.0
HP ESU for Microsoft Windows 8 Hewlett-Packard Company 2013/04/06 1.71 MB 1.0.1.1
HP HD Webcam Driver SunplusIT 2014/10/07 5.65 MB 3.4.8.16
HP Hotkey Support Hewlett-Packard Company 2014/05/14 10.4 MB 5.0.21.1
HP Registration Service Hewlett-Packard 2013/04/06 75.4 MB 1.0.5976.4186
HP SoftPaq Download Manager Hewlett-Packard Company 2013/04/06 15.7 MB 3.4.6.0
HP Software Framework Hewlett-Packard Company 2013/04/06 8.03 MB 4.6.8.1
HP Software Setup Hewlett-Packard Company 2013/04/06 20.1 MB 8.5.4.1
HP Support Assistant Hewlett-Packard Company 2014/04/01 85.9 MB 7.4.45.4
HP System Default Settings Hewlett-Packard Company 2014/10/13 1.59 MB 2.0.1
HP Wireless Button Driver Hewlett-Packard Company 2015/01/03 733 KB 1.1.2.1
IDT Audio IDT 2013/04/06 1.0.6428.0
Intel(R) Management Engine Components Intel Corporation 2013/04/06 8.1.0.1281
Intel(R) Processor Graphics Intel Corporation 2014/10/06 9.17.10.3347
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel Corporation 2013/04/06 3.83 MB 15.5.0.0344
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Motorola Solutions, Inc 2013/04/06 30.6 MB 2.5.0.0248
Intel(R) Rapid Storage Technology Intel Corporation 2013/04/06 11.5.6.1002
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/10/07 2.0.0.37149
IObit Uninstaller IObit 2015/02/04 4.2.6.2
iTunes Apple Inc. 2015/02/02 234 MB 12.1.0.71
Java 8 Update 31 Oracle Corporation 2015/02/05 74.0 MB 8.0.310
JMicron Flash Media Controller Driver JMicron Technology Corp. 2014/10/07 1.0.72.4
Lhaplus 2014/10/07
Microsoft Office Home and Business 2010 Microsoft Corporation 2014/10/07 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/07/24 199 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 2013/04/06 258 KB 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2013/04/06 250 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/04/06 3.22 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2013/04/06 6.88 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/04/06 7.23 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2012/08/01 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/12 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/04/06 5.95 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2014/11/21 230 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/06 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/04/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/12 10.1 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2013/04/06 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2013/04/06 15.0 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2014/10/07 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2014/10/07 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 2014/10/07 20.5 MB 12.0.21005.1
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/07 17.1 MB 12.0.21005.1
Opera Stable 27.0.1689.66 Opera Software ASA 2015/02/03 27.0.1689.66
PDF Complete Corporate Edition PDF Complete, Inc 2014/10/07 4.1.8
QuickTime 7 Apple Inc. 2015/01/19 70.2 MB 7.76.80.95
Realtek Ethernet Controller All-In-One Windows Driver Realtek 2013/04/06 8.2.612.2012
Synaptics Pointing Device Driver Synaptics Incorporated 2014/10/07 46.4 MB 17.0.18.8
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/31 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/12/04 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/10/08 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/12/04 17.0 KB 16.0.1016.1
Validity Fingerprint Sensor Driver Validity Sensors, Inc. 2013/04/06 27.8 MB 4.4.228.0
Wi-Fi WALKER WiMAX 2+ setting tool Huawei Technologies Co.,Ltd 2015/02/04 22.001.22.04.824
インテル® PROSet/Wireless ソフトウェア Intel Corporation 2014/10/07 367 MB 16.1.5

【Windows】
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
有効 HKLM:Run BTMTrayAgent Microsoft Corporation rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
有効 HKLM:Run CLMLServer_For_P2G8 CyberLink "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
有効 HKLM:Run CLVirtualDrive CyberLink Corp. "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run PDF Complete PDF Complete Inc C:\Program Files (x86)\PDF Complete\pdfsty.exe
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run QLBController Hewlett-Packard Company C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RemoteControl10 CyberLink Corp. "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run SysTrayApp IDT, Inc. C:\Program Files\IDT\WDM\sttray64.exe
有効 HKLM:Run YouCam Mirage CyberLink "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
有効 HKLM:Run YouCam Tray CyberLink Corp. "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
有効 HKLM:RunOnce NCPluginUpdater Hewlett-Packard "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
有効 Startup User OneNote 2010 画面の領域の取り込みと起動.lnk Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

【InternetExplorer】
有効 Extension [HP Network Check]を起動して接続の問題を解決する Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
有効 Extension Evernote 4 に追加 res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Helper avast! Online Security AVAST Software C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
有効 Helper avast! Online Security AVAST Software C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
有効 Helper ExplorerWnd Helper IObit C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
有効 Helper HP Network Check Helper Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
有効 Helper HP Network Check Helper Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
有効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
有効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

【Google Chrome】
有効 Extension Avast Online Security 10.0.2502.149 Default C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2502.149_1
有効 Extension Cantataweb 1.0.1 Default C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0
有効 Extension User-Agent Switcher for Chrome 1.0.38 Default C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg\1.0.38_0
有効 Plugin Chrome DigitalPersona Agent 1.0.1.2 最初のユーザー c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll
有効 Plugin Chrome PDF Viewer 最初のユーザー C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.94\pdf.dll
有効 Plugin Chrome Remote Desktop Viewer 最初のユーザー internal-remoting-viewer
有効 Plugin Google Update 1.3.24.15 最初のユーザー C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
有効 Plugin Intel® Identity Protection Technology 2.1.42.0 最初のユーザー C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
有効 Plugin iTunes Application Detector 1.0.1.1 最初のユーザー C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
有効 Plugin Java Deployment Toolkit 7.0.450.18 10.45.2.18 最初のユーザー C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
有効 Plugin Java(TM) Platform SE 7 U45 10.45.2.18 最初のユーザー C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
有効 Plugin Microsoft Office 2010 14.0.4730.1010 最初のユーザー C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
有効 Plugin Microsoft Office 2010 14.0.4761.1000 最初のユーザー C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
有効 Plugin Native Client 最初のユーザー C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.94\ppGoogleNaClPluginChrome.dll
有効 Plugin QuickTime Plug-in 7.7.5 7.7.5 (1680.95.13) 最初のユーザー C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
有効 Plugin Shockwave Flash 14,0,0,145 最初のユーザー C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
有効 Plugin Shockwave Flash 14.0.0.177 最初のユーザー C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.94\PepperFlash\pepflashplayer.dll
有効 Plugin Silverlight Plug-In 5.1.30514.0 最初のユーザー c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
有効 Plugin Widevine Content Decryption Module 1.4.4.600 最初のユーザー C:\Users\蜊喀AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll

【スケジュールされたタスク】
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCeeScheduleForRyo Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForRyo (null)
有効 Task MaxigetUpdaterTaskMachineCore C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe /c
有効 Task MaxigetUpdaterTaskMachineUA C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe /ua /installsource scheduler
有効 Task Opera scheduled Autoupdate 1419138170 Opera Software C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1003
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1028
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-500
有効 Task Synaptics TouchPad Enhancements Synaptics Incorporated "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
有効 Task Uninstaller_SkipUac_Ryo IObit C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {59113EB0-A50C-40D7-8F04-85FB2441F573} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\ProgramData\NexonJP\NGM\NGM.exe -c -mode:uninstall -game:16785939 -locale:JP

宜しくお願い致します。
  • ニシカワ
  • 2015/02/06 (Fri) 00:11:23
返信フォームへ 
MBAMとSASで作業を
ログを拝見させていただきました。
確かにGoogle Chromeには表面上にも変なのが居座っていますね。
こちらの処置から行ってゆきましょう。

以下のソフトウェアをご用意ください。

Malwarebytes Anti-Malware(通称:MBAM)
旧バージョンダウンロード↓(ファイル直リンクです。表示して数秒後にダウンロード開始の表示が出ます)
http://www.oldapps.com/malwarebytes.php?old_malwarebytes=12090?download
最新バージョンには動作しなくなるなどの不具合があるため、ここでは旧バージョンを利用します。
インストールの最後に出てくるMalwarebytes Anti-Malware Pro版の無料試用を開始する。のチェックを外します。
このソフトウェアは日本語対応ではありますが、初回起動時は文字化けしておりますので、以下の手順で日本語化を行ってください。
MBAMを起動させてください。
MBAMを起動時に自動アップデートが始まります。
最新バージョンをダウンロードしたと表示されたら、必ずキャンセルを押してください。
次にウイルス定義ファイルのアップデートが始まりますので、アップデート終了までお待ちください。
最新バージョンと旧バージョンは操作方法が大幅に異なりますので、
万一バージョン2.0以降を導入されてしまった場合はご連絡ください。
設定タブを開き、Languageの項目の部分をJapaneseに再度変更することで日本語化が可能です。
片付け時はセーフモードからIUを利用してアンインストールしてください。

SuperAntiSpyware(通称:SAS)
本家のダウンロードサイト↓
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE
インストールの最後に出てくる下部の2つのチェックボックスのうち、
一番下のチェックボックスのチェックをはずしてください。
SASを起動させると、有料版を使用するかと問われますので、Dedineをクリックしてください。
起動画面にあるCheck for Updatesをクリックしてアップデートを行ってください。
アップデートが完了しましたら、現段階では作業を行いませんので、SASを終了させておきましょう。
作業途中で使い方説明をしておりますので、そちらも参考になされてください。
片付け時はセーフモードでIUを利用してアンインストールしてください。

ここで使うのはともにFree(無償版)です。

準備が完了しましたら作業を開始いたします。
CCを起動させ、ツール→スタートアップの各項目を開き、
該当するものを無効→エントリの削除の順番でクリックしてください。

Google Chrome
有効 Extension Cantataweb 1.0.1 Default C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0

無効にできないもの、既に無効になっているものはそのままエントリの削除を、
エントリが存在しない場合は放置で先に進みましょう。
CCでの作業が完了しましたら、PCをセーフモードで起動してください。
MBAMとSASを使って順番にスキャンしてください。
まずはMBAMからスキャンを行いましょう。
MBAMを起動させます。
フルスキャンを選択し、スキャン開始をクリックします。
スキャン終了まで30分~1時間半程度お待ちください。
スキャンが完了したら、詳細を表示をクリックします。
検出されたものの一覧が出ますので、検出されたものすべてを駆除するため、
検出されたものの左側にあるチェックボックスすべてにチェックを入れます。
すべての箇所にチェックを入れたら選択されたアイテムを隔離ボタンを押します。
最後にログが出ますので、ログを分かりやすい場所に保存してください。
ログ保存が完了したら、MBAMを終了させます。

MBAMを終了させたら、SASを起動させてください。
Scan Your Computerをクリックします。
Recommended Pre-Scan Actionsの項目の上から2番目以外のすべてにチェックを入れてください。
次にScanner Optionsの項目のScan inside ZIP archivesにチェックを入れてください。
その後Complete Scanをクリックしてスキャンを行ってください。
30分~1時間程度かかります。
スキャンが完了したら、Continueをクリックし、一覧を表示させます。
一覧に表示されているものすべてに×印のチェックが入っているのを確認し、Continueをクリックします。
SASのログは画面中央の「System Tools」から「Scan logs」を開くと、
スキャンした日時のごとのログのリストが出ます。
そこで最初に処置した日時のログを選んでそれをダブルクリックすると、そのログの内容が表示されます。

両ソフトウェアでの作業が完了しましたら、PCを通常モードで再起動してください。

取得された2つのログを貼り付け、ご報告をお願いいたします。
  • IVNO
  • MAIL
  • 2015/02/06 (Fri) 00:28:46
返信フォームへ 
Re: Cantataweb
迅速なご返信ありがとうございます。
作業が遅れてしまい申し訳ございません。

以下、MBAMとSASで取得したログです

【MBAM】
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

定義バージョン: v2015.02.06.04

Windows 8 x64 NTFS (セーフモード)
Internet Explorer 11.0.9600.17498
Ryo :: NISHIKAWA [管理者]

2015/02/06 23:44:53
mbam-log-2015-02-06 (23-44-53).txt

スキャンタイプ: フルスキャン (C:\|D:\|F:\|)
有効なスキャン領域: メモリ | スタートアップ | レジストリ | ファイルシステム | ヒューリスティック/追加アイテムのスキャン  | ヒューリスティック/Shuriken エンジンを使用してスキャン  | 不審なプログラム (PUP) | 不審な変更 (PUM)
無効なスキャン領域: ピア・ツー・ピアプログラム(P2P)
スキャンしたアイテム数: 646451
経過時間: 57 分, 52 秒

メモリプロセスの検出: 0
(悪意のあるアイテムは検出されていません。)

メモリモジュールの検出: 0
(悪意のあるアイテムは検出されていません。)

レジストリキーの検出: 1
HKCR\Typelib\{157B1AA6-3E5C-404A-9118-C1D91F537040} (PUP.Optional.Multiplug) -> 正常に隔離され削除されました。

レジストリ値の検出: 4
HKCU\Software\Mozilla\Firefox\Extensions|7go@7go.com (PUP.Optional.7Go.A) -> データ: C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com -> 正常に隔離され削除されました。
HKCU\Software\Mozilla\Firefox\Extensions|speedanalysis02@SpeedAnalysis.com (PUP.Optional.SpeedTestAnalysis.A) -> データ: C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com -> 正常に隔離され削除されました。
HKLM\Software\Mozilla\Firefox\Extensions|7go@7go.com (PUP.Optional.7Go.A) -> データ: C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com -> 正常に隔離され削除されました。
HKLM\Software\Mozilla\Firefox\Extensions|speedanalysis02@SpeedAnalysis.com (PUP.Optional.SpeedTestAnalysis.A) -> データ: C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com -> 正常に隔離され削除されました。

レジストリデータ項目の検出: 0
(悪意のあるアイテムは検出されていません。)

フォルダの検出: 10
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\mz (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\skin (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\mz (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\skin (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。

ファイルの検出: 74
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\CantatawebBHO.dll.vir (PUP.Optional.Cantataweb.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\Cantataweb.BOAS.exe.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\Cantataweb.BOASPRT.exe.PendingOverwrite.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\Cantataweb.BOASPRT.exe.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{21f7cd32-4cb1-4b86-afa4-ca2be87a4b89}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{3d6e2a3f-cf27-4a46-b456-8574ded80969}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{7951cbb6-86e2-42f1-9dc0-91a34d50601c}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{7c22657b-6e65-4c12-9eab-b8a87d0142ce}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{c4a31bb4-c9c8-41c8-b5c3-a6e46469a954}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\{f78f8c40-41e0-42c7-99d0-8fc3deb7348e}.dll.vir (Adware.SwiftBrowse) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.BOAS.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.Bromon.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.BroStats.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.CompatibilityChecker.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.GCUpdate.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.PurBrowse.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Cantataweb\bin\plugins\Cantataweb.PurBrowseG.dll.vir (PUP.Optional.Sanbreel.A) -> 正常に隔離され削除されました。
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\roboot64.exe.vir (PUP.Optional.PCPerformer.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Local\Temp\UE70C.tmp\UNTE70D.tmp.exe (PUP.Optional.BPlug) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome.manifest (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\install.rdf (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\background.html (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\bg.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\button.xml (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\config.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\content.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\framework.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\framework.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\framework.xul (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon128.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon128.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon16.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon16.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon18.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon18.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon24.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon24.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon32.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon32.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon48.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon48.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon64.ico (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\icon64.png (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\jquery-1.9.1.min.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\options.xul (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\settings.json (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\mz\background.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\content\mz\content.js (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\7go@7go.com\chrome\skin\framework.css (PUP.Optional.7Go.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome.manifest (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\install.rdf (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\background.html (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\bg.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\button.xml (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\config.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\content.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\framework.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\framework.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\framework.xul (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon128.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon16.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon18.ico (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon18.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon24.ico (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon24.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon32.ico (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon32.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\icon48.png (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\jquery-1.9.1.min.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\options.xul (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\settings.json (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\mz\background.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\content\mz\content.js (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。
C:\Users\博\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com\chrome\skin\framework.css (PUP.Optional.SpeedAnalysis.A) -> 正常に隔離され削除されました。

(終)

【SAS】
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/07/2015 at 10:46 PM

Application Version : 6.0.1170
Database Version : 11742

Scan type : Complete Scan
Total Scan Time : 00:16:16

Operating System Information
Windows 8.1 64-bit (Build 6.03.9600)
UAC Off - Administrator

Memory items scanned : 289
Memory threats detected : 0
Registry items scanned : 62697
Registry threats detected : 0
File items scanned : 25690
File threats detected : 98

Adware.Tracking Cookie
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\DABL73MQ.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\DABL73MQ.txt [ /atdmt.com ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\1WK508FV.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\1WK508FV.txt [ /doubleclick.net ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\8K5BTV9U.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\8K5BTV9U.txt [ /doubleclick.net ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\U8VU88XL.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\U8VU88XL.txt [ /advertising.com ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\N9JNX1OQ.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\N9JNX1OQ.txt [ /statcounter.com ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\72G916D7.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\72G916D7.txt [ /at.atwola.com ]
C:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\5RC17E9K.txtC:\Users\博\AppData\Local\Microsoft\Windows\INetCookies\Low\5RC17E9K.txt [ /doubleclick.net ]
.doubleclick.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
tracking.okwave.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtechjp.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtechus.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adtech.de [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.clickfuse.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
souyona.xxxxxxxx.jp [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
souyona.xxxxxxxx.jp [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.stat.youku.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mmstat.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyeviewads.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.cnzz.mmstat.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tns-counter.ru [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.game-advertising-online.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.rakuten.112.2o7.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.stat.youku.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revenuemantra.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.t.webtracker.jp [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
a.t.webtracker.jp [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.microsoftsto.112.2o7.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.yadro.ru [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.sexvidx.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toroadvertisingmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toroadvertisingmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toroadvertisingmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.toroadvertisingmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.googleadservices.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ad.mlnadvertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.histats.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smgadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ja.one-clickremoval.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ja.one-clickremoval.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.googleadservices.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smgadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smgadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
onclickads.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adition.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.readserver.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.smartadserver.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.casalemedia.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
c1.adform.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adform.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\博\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

============================
Unwanted Programs Detected
============================
YAC (Yet Another Cleaner)

============
End of Log
============

宜しくお願い致します。
  • ニシカワ
  • 2015/02/07 (Sat) 22:56:34
返信フォームへ 
大量です
ログを拝見させていただきましたが、MBAMが壮絶ですね。
SASはクッキーのみですので良いでしょう。
MBAMとSASは必要ありませんので、導入時の指示に従って削除なされてください。

以下のソフトウェアをご用意ください。

HerdProtect(通称:HP)
http://www.herdprotect.com/downloads.aspx
インストール版でもポータブル版でも構いません。
インストール版の場合、アンインストールの際は、セーフモードでIUを利用してアンインストールされてください。
また、トレンドマイクロのウイルスバスターとの相性が悪いとの報告も受けております。
相性の問題でスキャンが正常にできないときは、その旨をご報告ください。
さらに、本ソフトウェアにより検出されたものすべてがマルウェアと言うわけではありません。
HPは駆除機能もありますが、まずは駆除は行わず、検出のみに使用いたします。

OldTimer Listit(通称:OTL)
http://oldtimer.geekstogo.com/OTL.exe
直リンクです。デスクトップ等、分かりやすい場所に保存してください。
削除する際は起動後に「Cleanup」ボタンを押すことにより、自動的に削除されます。

準備ができましたら、まずゲームのインストーラーなど、極端に重たいファイルがある場合は、
そちらの不要ファイルを事前にPC内から手動削除し、ごみ箱からも消しておいてください。
これらをHPが不審プログラムとして拾うと、1日や2日は平気でスキャンにかかってしまいます。
PCが通常モードで起動していることを確認し、HerdProtectを起動させます。
ソフトウェアの特性として、ファイルのスキャンにインターネット回線を利用します。
インターネット回線がご利用できないセーフモード時では正常に動作しませんので、
セーフモードで起動中の場合は通常モードに切り替えてください。
Scanボタンがありますので、こちらを押してスキャンを行ってください。
スキャンに必要な情報を収集したり、発見された不審なソフトウェアを
各種セキュリティソフトで調査している間は、スキャン作業が停止します。
スキャンが進行しないからと言ってフリーズしたわけではありませんので、
スキャンが完了するまで今しばらくお待ちください。
スキャンが完了しましたらスキャン結果が表示されますので、
画面右上にあるSave resultsという文字をクリックしてログを出力してください。
ログは任意のお名前をつけて、分かりやすいところに保存してください。

以下をメモ帳にコピペしてください。

------コピペこの下より------
%windir%\tasks\*.job
DRIVES
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT
------コピペこの上まで------

コピペが完了しましたら、任意のお名前をつけて分かりやすい場所に保存されてください。
保存が完了しましたら、PCをセーフモードで起動させてください。
OTLを起動させ、表示画面上部中央にあるScan All Usersにチェックを入れてください。
設定が完了しましたら、Custom Scan/Fixesの項目内に先ほど保存したメモ帳の内容を貼り付けてください。
コピペが完了しましたらメモ帳を終了させ、[Run Scan]をクリックしてスキャンを行ってください。
スキャン完了まで数分程度かかりますので、今しばらくお待ちください。
スキャンが完了しましたら、OTLを保存した場所と同じところに、
OTL.txtとExtras.txtが出力されますので、こちら2つと先に保存したHPのログを貼り付けてご連絡ください。
なお、OTLもHPもその特性上、非常に長文となりがちです。
こちらの掲示板の文字数上限がひらがな換算で約3万文字、ローマ字換算で約6万文字です。
(より正確には件名を含めてJIS換算65,535バイトまで。全角文字・全角記号2バイト、
半角文字・半角記号1バイト、絵文字等特殊文字3バイト)
確実に文字数オーバーとなりますので、余裕を見て5万5千文字程度になるように、
以下のURLの文字数カウンター等で確認しつつ、ログを分割されてご連絡ください。
http://www2u.biglobe.ne.jp/~yuichi/rest/strcount.html
  • IVNO
  • MAIL
  • 2015/02/08 (Sun) 00:14:36
返信フォームへ 
HPとOTLでの作業が完了いたしました
HPとOTLでの作業が完了いたしました。
以下、ログでございます。
確認のほど宜しくお願い致します。

【HP】
Saved date: 2015/02/10 22:01:07
Files detected: 26
Files scanned: 10,472
Processes scanned: 83
Modules scanned: 830
ASEPs scanned: 541
Downloads scanned: 0
Deep analysis: 3/5
---------------------------------------------------------------------------------

Files

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\iobit uninstaller\uninstallmonitor.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 399f5ac332cd0b07be87212e3c0bf76d
SHA-1: ea7f2e72a1659f7adbbbd7cb820995948a6ca135
Created: 2015/02/04 23:41:34
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe
Publisher: Hewlett-Packard Company
MD5: 2a8b93a01621e100a578e83c768afa2c
SHA-1: 0d2c353f155651e6834ce40170f2e3385e0d287a
Created: 2013/11/04 18:31:56
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Service.HewlettPackardCompany.M

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\liveupdate\liveupdate.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 87aac3cbd2c5d5ac6ca87ad08a228241
SHA-1: aacd36907710af4589aa9edb3d1c4263892f39fa
Created: 2015/02/04 23:41:45
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_d08a11e2442dc25d\msvcr80.dll
Publisher: Microsoft Corporation
MD5: a58e3c42883f36d743f9be9b21bfc990
SHA-1: 5a3fb51c414bde296273e41198ecb1a2aa9e3b03
Created: 2013/08/22 8:53:00
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\intel\icls client\heciserver.exe
Publisher: Intel(R) Corporation
Signer: Intel® Upgrade Service
MD5: b353f1834fcd36d77be3f74992c147d4
SHA-1: 95db008d29b9ae312ccdda744f474c2d72cc5388
Created: 2012/06/19 19:10:34
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Kazy.20914 (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\cyberlink\power2go8\msvcr71.dll
Publisher: Microsoft Corporation
Signer: CyberLink
MD5: a1a6fc56a1d0dadc164637fe43c40605
SHA-1: 2c66dea7b3062113ee644a03c01c4c115036dc80
Created: 2013/04/06 2:12:58
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Laneul (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\system32\drivers\intcdaud.sys
Publisher: Intel(R) Corporation
MD5: f5495b38bfb9149925f54f65ab40efbf
SHA-1: 3fbef8ee216245a0b26e3fb24f6345605a0b440b
Created: 2012/06/19 11:40:50
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Gen:Variant.Adware.SMSHoax.95 (Adware)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\iobit\iobit uninstaller\iobituninstaler.exe
Publisher: IObit
Signer: IObit Information Technology
MD5: 001de5a072ab18262968f4f656452f18
SHA-1: d9d3a96140383887b1bc8e00e565f1baaca16e54
Created: 2015/02/04 23:41:42
Detections: 1
Determination: Ignore detections (false positive)
- G Data as Win32.Adware.iObit (Adware)

---------------------------------------------------------------------------------

File path: c:\users\博\desktop\adwcleaner_4.109.exe
Publisher:
MD5: fc77986c2f2b9752ee344faca1880ba2
SHA-1: c88dd4b79d1936c7ff1d5d73208b136d6280ec4f
Created: 2015/02/04 23:42:54
Detections: 1
Determination: Ignore detections (false positive)
- Jiangmin as TrojanDownloader.AutoIt.bbr (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\博\desktop\hijackthis.exe
Publisher: Trend Micro Inc.
MD5: 47811d50390a86a17102d7496e6eabb9
SHA-1: 2623749cdb27887f6746acdee7e8065475f8b541
Created: 2015/02/05 0:09:49
Detections: 2
Determination: Ignore detections (false positive)
- Kingsoft AntiVirus as Win32.HeurC.KVM099.a.(kcloud) (Undefined)
- Rising Antivirus as PE:Trojan.VBInject!1.6546 (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\博\desktop\otl.exe
Publisher: OldTimer Tools
MD5: 4adcfee16ee9978f06157634669d36fb
SHA-1: 30b37076552e49276836d02dd73d038c27dbbee9
Created: 2015/02/10 21:22:29
Detections: 2
Determination: Ignore detections (false positive)
- Agnitum Outpost as Packed/PECompact
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\dextuvcb.ax
Publisher: Dext5xx
Signer: Sunplus Innovation Technology Inc.
MD5: f4504b67c3ef7abb03155c2e00a71f24
SHA-1: bf6fe29a076132c5e32271fc6508cc327be2f7f5
Created: 2013/04/06 2:02:39
Detections: 1
Determination: Ignore detections (false positive)
- Clam AntiVirus as Heuristics.Trojan.Swizzor.Gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\ext-ms-win-cluster-clusapi-l1-1-1.dll
Publisher: Microsoft Corporation
MD5: 6f5557e3f97cb2a957da5dcdaf1e22c1
SHA-1: c2a27e776fbfc3666642425dcc5f2b34bb41cb10
Created: 2013/08/22 13:14:14
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Backdoor/Bifrose.fxu (Undefined)

---------------------------------------------------------------------------------

File path: c:\windows\syswow64\kbdcherp.dll
Publisher: Microsoft Corporation
MD5: f992fe1d923f59f806442449f3ea557b
SHA-1: d216f5bc5d466c1c9d94aa57a28c5226b214bdbc
Created: 2013/08/22 13:15:06
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Kryptik.ahcy (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\mobilebrserv\xp_patch\rndis_hotfix_install_for_xp_x86 1.0.1.0\generic\kb959765\sp2qfe\rndismp.sys
Publisher: Microsoft Corporation
MD5: e22e4436ab1695340c395decee622020
SHA-1: 3dfc68fb93da8bb6da63ab9bb2db9eb99be141e1
Created: 2015/02/04 21:07:22
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Nonim (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\application data\temp\{01fb4998-33c4-4431-85ed-079e3eefe75d}\postbuild.exe
Publisher:
MD5: 11b0c4f03d271213ff01fe2a81bc7c6a
SHA-1: 03dd1973f24b6085a24487291876297ccd3e24d9
Created: 2013/04/06 2:19:52
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\mobilebrserv\xp_patch\rndis_hotfix_install_for_xp_x86 1.0.1.0\generic\kb959765\sp2qfe\rndismp.sys
Publisher: Microsoft Corporation
MD5: e22e4436ab1695340c395decee622020
SHA-1: 3dfc68fb93da8bb6da63ab9bb2db9eb99be141e1
Created: 2015/02/04 21:07:22
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.Nonim (Undefined)

---------------------------------------------------------------------------------

File path: c:\programdata\temp\{01fb4998-33c4-4431-85ed-079e3eefe75d}\postbuild.exe
Publisher:
MD5: 11b0c4f03d271213ff01fe2a81bc7c6a
SHA-1: 03dd1973f24b6085a24487291876297ccd3e24d9
Created: 2013/04/06 2:19:52
Detections: 1
Determination: Ignore detections (false positive)
- Antiy Labs AVL as Virus/Win32.Xpaj.gen (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\博\appdata\local\google\chrome\user data\default\extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0\manifest.json
Publisher:
MD5: c111193c885b83749207c80c753e5fd7
SHA-1: 15474601237e3e753a9de49d7073c88e93a3dce3
Created: 2014/11/22 16:41:39
Detections: 1
Determination: Adware
- Reason Heuristics as Adware.Yontoo.ChromePlugin.M (Adware)

---------------------------------------------------------------------------------

File path: c:\users\博\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000
Publisher: SwapSystem
Signer: Maxiget Limited
MD5: dcf1a898d311134ae9cef35dad1aaff6
SHA-1: 8cb48136f28e4a948bd1b938acc8459807b8ac44
Created: 2014/11/21 10:22:00
Detections: 37
Determination: Adware
- Reason Heuristics as PUP.New IT Limited (Adware)
- K7 AntiVirus as Unwanted-Program (Adware)
- K7 Gateway Antivirus as Unwanted-Program (Adware)
- Comodo Security as Application.Win32.4Shared.FG (Adware)
- McAfee Web Gateway as BehavesLike.Win32.AdwareAmonetize.qh (Adware)
- Avira AntiVirus as APPL/Downloader.Gen4 (Adware)
- AhnLab V3 Security as Win-Trojan/Malpacked3.Gen (Undefined)
- Vba32 AntiVirus as suspected of Trojan.Downloader.gen.h (Undefined)
- ESET NOD32 as Win32/4Shared.AE potentially unwanted application (Adware)
- Dr.Web as Adware.Downware.9208 (Adware)
- NANO AntiVirus as Riskware.Win32.ArchSMS.dipmvj (Adware)
- Kaspersky as Trojan-Dropper.Win32.Agent (Undefined)
- Panda Antivirus as Trj/Genetic.gen (Undefined)
- VIPRE Antivirus as Threat.4150696 (Undefined)
- Agnitum Outpost as PUA.4Shared (Adware)
- McAfee as Program.4shared (Adware)
- G Data as Win32.Application.4Shared (Undefined)
- F-Prot as W32/A-63d5a2cf (Undefined)
- Clam AntiVirus as Win.Trojan.4shared-32 (Undefined)
- Baidu Antivirus as Adware.Win32.4Shared (Adware)
- MicroWorld eScan as Gen:Variant.Graftor.163677 (Undefined)
- Bitdefender as Gen:Variant.Graftor.163677 (Undefined)
- ByteHero BDV as Trojan-Downloader.win32.Small.gen.105 (Undefined)
- Lavasoft Ad-Aware as Trojan.Generic.12367563 (Undefined)
- Emsisoft Anti-Malware as Trojan.Generic.12367563 (Undefined)
- F-Secure as Trojan.Generic.12367563 (Undefined)
- AVG as Generic (Undefined)
- Sophos as 4Share Downloader (Undefined)
- Malwarebytes as Adware.Agent (Adware)
- Zillya! Antivirus as Adware.Agent.Win32.22206 (Adware)
- Antiy Labs AVL as GrayWare[AdWare:not-a-virus]/Win32.Agent.grna (Adware)
- IKARUS anti.virus as PUA.4Shared (Adware)
- ViRobot as Worm.Win32.P2P-Palevo.B.Gen (Undefined)
- Norman as Trojan.Generic.12367563 (Undefined)
- Rising Antivirus as PE:Trojan.Win32.badur.a!1075355892 (Undefined)
- nProtect as Trojan.Generic.12366158 (Undefined)
- Jiangmin as TrojanDropper.Agent.cipu (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\idt\wdm\aestsrv.exe
Publisher: Andrea Electronics Corporation
MD5: 827dbc22c96eecf6d36a13162fabafd3
SHA-1: 73bf0e214ebf9924692fb9530ee8f882573235ba
Created: 2013/04/06 2:10:46
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Service.AndreaElectronicsCorporation.H

---------------------------------------------------------------------------------

File path: c:\program files\idt\wdm\sttray.exe
Publisher: IDT, Inc.
MD5: acf67170e216cab5f33024f7a3c7c0e9
SHA-1: 5a9dfbe318472736205c33f886bcaa9e53767686
Created: 2013/04/06 2:10:50
Detections: 1
Determination: Ignore detections (false positive)
- Boost by Reason as Optional.Startup.IDT.G

---------------------------------------------------------------------------------

File path: c:\program files\windowsapps\cyberlinkcorp.hs.youcamforhp_1.0.2.29632_x86__06qsbagp91rvg\imageutility.dll
Publisher: TODO: <Company name>
MD5: 0308ffb6d2cbea51dea139cdd8c5db22
SHA-1: 4f9f3a96153bf47149d7a7150923272a1c8bc1b3
Created: 2013/04/06 2:08:05
Detections: 1
Determination: Ignore detections (false positive)
- Emsisoft Anti-Malware as Android.Riskware.SmsPay.R (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files\windowsapps\naver.linewin8_1.0.9.97_x64__8ptj331gd3tyt\locale.dll
Publisher:
MD5: 275f054ec1004e19853a5b30b6cd004d
SHA-1: 9842a69a50bbdae91a5f170bdc07bc25da3c41f3
Created: 2014/10/23 8:31:44
Detections: 1
Determination: Ignore detections (false positive)
- The Hacker as Trojan/Dropper.VB.nro (Undefined)

---------------------------------------------------------------------------------

File path: c:\program files (x86)\cyberlink\powerdvd10\audiofilter\dolbyhph.dll
Publisher: Lake Technology Limited, http://www.lake.com.au
MD5: 442b5be8aa79b0496c5d0234b78e20ce
SHA-1: 9956235bf6fe3a3220c73a84c8f57c951226655a
Created: 2012/08/03 22:24:56
Detections: 1
Determination: Ignore detections (false positive)
- Bkav FE as HW32.CDB (Undefined)

---------------------------------------------------------------------------------

File path: c:\users\博\appdata\local\google\chrome\user data\default\extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0\background.js
Publisher:
MD5: 41811e782452221a77b35376664d8d08
SHA-1: d0082b668f934246aa691642b932a2ce25f1d2ad
Created: 2014/11/22 16:41:39
Detections: 1
Determination: Inconclusive
- Dr.Web as Trojan.Yontoo.444 (Undefined)

  • ニシカワ
  • 2015/02/10 (Tue) 22:54:13
返信フォームへ 
OTL Log
OTL logfile created on: 2015/02/10 22:06:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\博\Desktop
64bit- An unknown product (Version = 6.3.9600) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.89 Gb Total Physical Memory | 1.17 Gb Available Physical Memory | 62.22% Memory free
3.07 Gb Paging File | 2.41 Gb Available in Paging File | 78.27% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 280.80 Gb Total Space | 203.53 Gb Free Space | 72.48% Space Free | Partition Type: NTFS
Drive D: | 4.99 Gb Total Space | 4.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive F: | 10.65 Gb Total Space | 1.76 Gb Free Space | 16.54% Space Free | Partition Type: NTFS

Computer Name: NISHIKAWA | User Name: Ryo | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015/02/10 21:22:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\博\Desktop\OTL.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2014/12/06 10:35:00 | 000,229,888 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2014/10/31 13:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014/10/07 00:45:26 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014/10/07 00:45:26 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014/10/07 00:28:38 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2014/09/22 12:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2014/09/22 12:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2014/08/16 12:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014/08/16 09:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2014/08/16 09:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014/07/24 16:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014/07/23 23:22:40 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2014/07/23 08:31:23 | 000,172,344 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:[b]64bit:[/b] - [2014/03/18 19:00:02 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014/03/18 19:00:02 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:56 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:56 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2014/03/18 18:59:53 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2013/08/28 16:24:04 | 003,378,416 | ---- | M] (Intel® Corporation) [Auto | Stopped] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:[b]64bit:[/b] - [2013/08/28 16:23:48 | 000,273,136 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2013/08/28 16:23:40 | 000,626,416 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:[b]64bit:[/b] - [2013/08/28 16:23:20 | 000,149,744 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:[b]64bit:[/b] - [2013/08/22 20:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013/08/22 20:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013/08/22 20:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013/08/22 20:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013/08/22 20:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013/08/22 19:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013/08/22 19:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013/08/22 19:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013/08/22 18:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013/08/22 18:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013/08/22 18:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013/08/22 18:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013/08/22 18:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013/08/22 18:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013/08/22 18:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013/08/22 18:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2012/09/21 01:56:20 | 000,323,072 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:[b]64bit:[/b] - [2012/08/21 17:49:00 | 000,033,600 | ---- | M] (Hewlett-Packard Company) [Auto | Stopped] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:[b]64bit:[/b] - [2012/07/19 08:47:50 | 002,714,232 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\SysNative\vcsFPService.exe -- (vcsFPService)
SRV:[b]64bit:[/b] - [2012/07/17 00:38:26 | 000,731,688 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:[b]64bit:[/b] - [2012/06/19 19:10:34 | 000,634,632 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- c:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012/05/02 13:49:44 | 000,135,952 | ---- | M] (Intel(R) Corporation) [Auto | Stopped] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV - [2015/02/05 15:52:34 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/02/04 23:41:34 | 002,635,552 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2014/10/07 00:28:38 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/08/16 12:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/06/17 12:11:39 | 000,240,208 | ---- | M] () [Auto | Stopped] -- C:\ProgramData\MobileBrServ\mbbService.exe -- (Wi-Fi WALKER WiMAX 2+ setting tool)
SRV - [2014/01/29 23:02:44 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/11/04 18:31:56 | 000,092,160 | ---- | M] (Hewlett-Packard Company) [Auto | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2013/10/16 10:45:20 | 000,681,760 | ---- | M] (Hewlett-Packard Company) [Auto | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe -- (hpHotkeyMonitor)
SRV - [2013/08/22 12:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 11:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2012/08/28 10:05:12 | 000,007,168 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012/08/08 11:23:28 | 001,112,000 | ---- | M] (Motorola Solutions, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012/08/08 11:23:08 | 001,091,520 | ---- | M] (Motorola Solutions, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012/07/19 14:00:54 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/19 14:00:52 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/19 14:00:38 | 000,129,856 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2012/07/19 14:00:28 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/07/19 08:29:58 | 002,342,008 | ---- | M] (Validity Sensors, Inc.) [Auto | Stopped] -- C:\Windows\SysWOW64\vcsFPService.exe -- (vcsFPService)
SRV - [2012/07/17 11:20:02 | 001,134,624 | ---- | M] (PDF Complete Inc) [Auto | Stopped] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2014/12/12 09:51:20 | 000,075,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2014/11/22 16:39:59 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2014/10/13 11:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2014/10/13 11:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014/10/13 11:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014/10/10 10:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014/10/07 00:45:30 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014/10/07 00:45:26 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014/10/07 00:45:26 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014/10/07 00:30:31 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014/09/22 12:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2014/09/22 12:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2014/09/22 11:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2014/08/15 09:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014/07/28 14:52:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2014/07/25 00:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2014/07/25 00:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014/07/24 20:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2014/07/23 23:23:44 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:53 | 000,224,896 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:53 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:53 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:53 | 000,065,776 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:53 | 000,029,208 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:[b]64bit:[/b] - [2014/07/23 23:22:52 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:57 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:53 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:43 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:42 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:41 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2014/03/18 18:59:41 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014/03/18 18:42:24 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
DRV:[b]64bit:[/b] - [2014/01/29 23:02:28 | 005,363,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013/10/30 03:52:48 | 000,549,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2013/10/08 22:12:46 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:[b]64bit:[/b] - [2013/08/30 16:48:09 | 000,022,600 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013/08/22 22:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013/08/22 21:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013/08/22 21:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013/08/22 21:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013/08/22 21:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013/08/22 21:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013/08/22 20:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:30 | 000,131,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthA2DP.sys -- (BthA2DP)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:17 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:[b]64bit:[/b] - [2013/08/22 20:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013/08/22 20:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013/08/22 20:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013/08/22 20:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013/08/22 17:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013/08/13 08:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013/08/10 09:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013/07/31 03:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013/07/26 04:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013/07/22 16:45:58 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:[b]64bit:[/b] - [2013/06/18 23:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:[b]64bit:[/b] - [2012/09/23 17:02:42 | 001,064,184 | ---- | M] (Sunplus) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SPUVCBv_x64.sys -- (SPUVCbv)
DRV:[b]64bit:[/b] - [2012/09/21 01:56:20 | 000,543,744 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:[b]64bit:[/b] - [2012/08/28 10:01:12 | 000,646,712 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012/08/27 19:51:50 | 000,040,944 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:[b]64bit:[/b] - [2012/08/27 14:15:20 | 000,026,504 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:[b]64bit:[/b] - [2012/08/21 17:49:00 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:[b]64bit:[/b] - [2012/08/21 17:48:00 | 000,043,328 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012/08/15 11:39:28 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2012/08/15 11:39:28 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:[b]64bit:[/b] - [2012/08/01 04:05:14 | 000,175,928 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:[b]64bit:[/b] - [2012/07/17 00:39:22 | 000,162,344 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:[b]64bit:[/b] - [2012/07/14 17:36:30 | 000,825,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:[b]64bit:[/b] - [2012/07/04 12:31:40 | 000,055,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:[b]64bit:[/b] - [2012/07/02 19:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2012/06/25 10:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV:[b]64bit:[/b] - [2012/06/19 11:40:50 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2011/07/23 01:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:[b]64bit:[/b] - [2011/07/13 06:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPCOM13/3
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.jp.msn.com/HPCOM13/3
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope =
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=CMNTDFJS


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.jp.msn.com/HPCOM13/3
IE - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.co.jp/NxGame: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@omaha.maxiget.com/Maxiget Updater;version=3: C:\Program Files (x86)\Maxiget\Updater\70.3.29.7018\npMaxigetUpdater3.dll File not found
FF - HKLM\Software\MozillaPlugins\@omaha.maxiget.com/Maxiget Updater;version=9: C:\Program Files (x86)\Maxiget\Updater\70.3.29.7018\npMaxigetUpdater3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/12/21 13:43:52 | 000,000,000 | ---D | M]

[2015/02/07 01:23:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\博\AppData\Roaming\mozilla\Extensions
[2013/06/15 00:44:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Widevine Content Decryption Module (Enabled) = C:\Users\蜊喀\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
CHR - plugin: Intelツョ Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intelツョ Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Java Deployment Toolkit 7.0.450.18 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 U45 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
CHR - plugin: Chrome DigitalPersona Agent (Enabled) = c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
CHR - Extension: No name found = C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0\
CHR - Extension: No name found = C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg\1.0.38_0\
CHR - Extension: No name found = C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\elgfababjopgjalkgbfndlempbfdiecf\2_0\
CHR - Extension: No name found = C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2502.149_1\
CHR - Extension: No name found = C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\

O1 HOSTS File: ([2013/08/22 22:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll (Motorola Solutions, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CLMLServer_For_P2G8] c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
O4 - HKLM..\Run: [CLVirtualDrive] c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [RemoteControl10] c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [YouCam Mirage] c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe (CyberLink Corp.)
O4 - HKU\S-1-5-21-4036144246-473319313-1314510145-1002..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-4036144246-473319313-1314510145-1002..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4:[b]64bit:[/b] - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-4036144246-473319313-1314510145-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:[b]64bit:[/b] - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.100.1 192.168.100.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A120D9D2-D454-4DAA-9CF7-3545B4610BA3}: DhcpNameServer = 192.168.100.1 192.168.100.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FE1D77E2-8569-4E7A-B519-A56106517DD1}: DhcpNameServer = 192.168.100.1 192.168.100.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{e2a713d3-aadf-11e4-befa-c8f73382083d}\Shell - "" = AutoRun
O33 - MountPoints2\{e2a713d3-aadf-11e4-befa-c8f73382083d}\Shell\AutoRun\command - "" = "G:\AutoRun.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/02/10 21:25:33 | 000,000,000 | ---D | C] -- C:\Program Files\Reason
[2015/02/10 21:22:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\博\Desktop\OTL.exe
[2015/02/10 21:21:44 | 002,827,152 | ---- | C] (Reason Company Software Inc.) -- C:\Users\博\Desktop\herdProtectScan_Portable.exe
[2015/02/06 22:55:08 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Roaming\SUPERAntiSpyware.com
[2015/02/06 22:54:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2015/02/06 22:54:46 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2015/02/06 22:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2015/02/06 22:36:50 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Roaming\Malwarebytes
[2015/02/06 22:36:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2015/02/06 22:36:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015/02/06 22:36:22 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2015/02/06 22:36:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2015/02/05 22:24:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015/02/05 22:15:56 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Roaming\Oracle
[2015/02/05 00:09:49 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\博\Desktop\HijackThis.exe
[2015/02/04 23:41:57 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Roaming\ProductData
[2015/02/04 23:41:44 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2015/02/04 23:41:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2015/02/04 23:41:41 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2015/02/04 23:41:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2015/02/04 23:40:53 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Roaming\IObit
[2015/02/04 23:40:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015/02/04 23:40:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015/02/04 23:31:09 | 000,050,688 | ---- | C] (Atribune.org) -- C:\Users\博\Desktop\ATF-Cleaner.exe
[2015/02/04 21:07:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wi-Fi WALKER WiMAX 2+ setting tool
[2015/02/04 21:07:13 | 000,000,000 | ---D | C] -- C:\ProgramData\MobileBrServ
[2015/02/02 21:44:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2015/02/02 21:43:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2015/02/02 21:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2015/02/02 21:42:48 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2015/02/02 21:42:48 | 000,000,000 | ---D | C] -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
[2015/02/02 20:11:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
[2015/01/28 21:32:26 | 000,000,000 | ---D | C] -- C:\Users\博\AppData\Local\Adobe
[2015/01/19 08:42:21 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2015/01/19 08:42:21 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2015/01/19 08:42:20 | 000,360,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll
[2015/01/19 08:42:14 | 000,535,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2015/01/19 08:42:14 | 000,531,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2015/01/19 08:42:14 | 000,465,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2015/01/19 08:42:14 | 000,448,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2015/01/19 08:42:14 | 000,413,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2015/01/19 08:42:14 | 000,413,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2015/01/19 08:42:14 | 000,372,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2015/01/19 08:42:14 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2015/01/19 08:42:14 | 000,136,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2015/01/19 08:42:14 | 000,038,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2015/01/19 08:42:14 | 000,033,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2015/01/19 08:42:13 | 000,500,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2015/01/19 08:42:13 | 000,482,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2015/01/19 08:42:13 | 000,394,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2015/01/19 08:42:13 | 000,344,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2015/01/19 08:42:13 | 000,272,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2015/01/19 08:42:13 | 000,139,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2015/01/19 08:42:13 | 000,108,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2015/01/19 08:42:13 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werdiagcontroller.dll
[2015/01/19 08:42:12 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2015/01/19 08:37:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2015/01/19 08:36:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/02/10 22:10:20 | 001,652,788 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2015/02/10 22:10:20 | 000,787,792 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2015/02/10 22:10:20 | 000,533,258 | ---- | M] () -- C:\WINDOWS\SysNative\perfh011.dat
[2015/02/10 22:10:20 | 000,161,570 | ---- | M] () -- C:\WINDOWS\SysNative\perfc011.dat
[2015/02/10 22:10:20 | 000,161,550 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2015/02/10 22:06:23 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2015/02/10 22:04:18 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/02/10 22:04:12 | 2024,931,328 | -HS- | M] () -- C:\hiberfil.sys
[2015/02/10 21:52:01 | 000,000,626 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2015/02/10 21:33:00 | 000,000,926 | ---- | M] () -- C:\WINDOWS\tasks\MaxigetUpdaterTaskMachineUA.job
[2015/02/10 21:22:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\博\Desktop\OTL.exe
[2015/02/10 21:21:56 | 002,827,152 | ---- | M] (Reason Company Software Inc.) -- C:\Users\博\Desktop\herdProtectScan_Portable.exe
[2015/02/10 11:06:00 | 000,000,718 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2015/02/10 10:33:00 | 000,000,922 | ---- | M] () -- C:\WINDOWS\tasks\MaxigetUpdaterTaskMachineCore.job
[2015/02/10 10:06:00 | 000,000,714 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2015/02/08 22:49:09 | 000,000,344 | ---- | M] () -- C:\WINDOWS\tasks\HPCeeScheduleForRyo.job
[2015/02/06 22:54:52 | 000,001,822 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2015/02/06 22:36:27 | 000,001,123 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/02/05 22:22:25 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll
[2015/02/05 22:22:21 | 000,272,296 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe
[2015/02/05 22:22:21 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe
[2015/02/05 22:22:21 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe
[2015/02/05 12:42:19 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_Ryo.job
[2015/02/05 00:15:10 | 000,000,836 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/02/05 00:09:56 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\博\Desktop\HijackThis.exe
[2015/02/04 23:42:58 | 002,194,432 | ---- | M] () -- C:\Users\博\Desktop\adwcleaner_4.109.exe
[2015/02/04 23:41:43 | 000,001,246 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/04 23:31:15 | 000,050,688 | ---- | M] (Atribune.org) -- C:\Users\博\Desktop\ATF-Cleaner.exe
[2015/02/04 04:31:19 | 000,714,720 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2015/02/04 04:31:19 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2015/02/02 21:44:20 | 000,001,767 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2015/01/31 08:35:42 | 000,400,011 | ---- | M] () -- C:\Users\博\Desktop\無題.png
[2015/01/19 08:37:01 | 000,001,859 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/02/06 22:54:52 | 000,001,822 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2015/02/06 22:36:27 | 000,001,123 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/02/05 00:15:10 | 000,000,836 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015/02/04 23:42:54 | 002,194,432 | ---- | C] () -- C:\Users\博\Desktop\adwcleaner_4.109.exe
[2015/02/04 23:41:45 | 000,000,294 | ---- | C] () -- C:\WINDOWS\tasks\Uninstaller_SkipUac_Ryo.job
[2015/02/04 23:41:43 | 000,001,246 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2015/02/02 21:44:20 | 000,001,767 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2015/01/31 08:35:42 | 000,400,011 | ---- | C] () -- C:\Users\博\Desktop\無題.png
[2015/01/19 08:37:01 | 000,001,859 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2014/11/24 21:07:52 | 000,000,242 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/10/07 01:04:20 | 001,668,922 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2014/03/18 19:00:08 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 18:59:44 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/01/29 23:02:42 | 000,272,928 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin
[2014/01/29 23:02:22 | 000,077,312 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2014/01/29 23:02:20 | 000,963,452 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin
[2013/08/23 00:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/23 00:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 23:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 16:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 12:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 08:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 08:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/08/07 10:52:45 | 000,000,000 | ---- | C] () -- C:\Users\博\AppData\Roaming\pdfperformer
[2013/04/06 02:02:40 | 000,094,776 | ---- | C] () -- C:\WINDOWS\un_dext.exe
[2013/04/06 02:02:40 | 000,014,479 | ---- | C] () -- C:\WINDOWS\TWAIN2080.ini
[2013/04/06 02:02:39 | 000,087,928 | ---- | C] () -- C:\WINDOWS\SPRemove_x64.exe
[2013/04/06 02:02:39 | 000,004,638 | ---- | C] () -- C:\WINDOWS\Remove.ini
[2013/04/06 02:02:39 | 000,004,088 | ---- | C] () -- C:\WINDOWS\Dext_12.ini
[2013/04/06 02:02:39 | 000,004,036 | ---- | C] () -- C:\WINDOWS\Dext_27.ini
[2013/04/06 02:02:39 | 000,004,036 | ---- | C] () -- C:\WINDOWS\Dext_21.ini
[2013/04/06 02:02:39 | 000,004,032 | ---- | C] () -- C:\WINDOWS\Dext_25.ini
[2013/04/06 02:02:39 | 000,003,940 | ---- | C] () -- C:\WINDOWS\Dext_11.ini
[2013/04/06 02:02:39 | 000,003,940 | ---- | C] () -- C:\WINDOWS\Dext_05.ini
[2013/04/06 02:02:39 | 000,003,934 | ---- | C] () -- C:\WINDOWS\Dext_14.ini
[2013/04/06 02:02:39 | 000,003,860 | ---- | C] () -- C:\WINDOWS\Dext_10.ini
[2013/04/06 02:02:39 | 000,003,844 | ---- | C] () -- C:\WINDOWS\Dext_16.ini
[2013/04/06 02:02:39 | 000,003,808 | ---- | C] () -- C:\WINDOWS\Dext_08.ini
[2013/04/06 02:02:39 | 000,003,790 | ---- | C] () -- C:\WINDOWS\Dext_31.ini
[2013/04/06 02:02:39 | 000,003,776 | ---- | C] () -- C:\WINDOWS\Dext_1046.ini
[2013/04/06 02:02:39 | 000,003,774 | ---- | C] () -- C:\WINDOWS\Dext_36.ini
[2013/04/06 02:02:39 | 000,003,750 | --
  • ニシカワ
  • 2015/02/10 (Tue) 22:55:06
返信フォームへ 
Extras Log
OTL Extras logfile created on: 2015/02/10 22:06:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\博\Desktop
64bit- An unknown product (Version = 6.3.9600) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000411 | Country: 日本 | Language: JPN | Date Format: yyyy/MM/dd

1.89 Gb Total Physical Memory | 1.17 Gb Available Physical Memory | 62.22% Memory free
3.07 Gb Paging File | 2.41 Gb Available in Paging File | 78.27% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 280.80 Gb Total Space | 203.53 Gb Free Space | 72.48% Space Free | Partition Type: NTFS
Drive D: | 4.99 Gb Total Space | 4.99 Gb Free Space | 100.00% Space Free | Partition Type: FAT32
Drive F: | 10.65 Gb Total Space | 1.76 Gb Free Space | 16.54% Space Free | Partition Type: NTFS

Computer Name: NISHIKAWA | User Name: Ryo | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Users\博\AppData\Roaming\File Scout\filescout.exe" /open "%1"
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Users\博\AppData\Roaming\File Scout\filescout.exe" /open "%1"
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{149618B7-49CF-4364-BAE7-B9902D62EF27}" = lport=10243 | protocol=6 | dir=in | app=system |
"{220646A8-665D-49F9-8933-84ED927853F0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3CD9673C-B8F0-4367-9D34-DEDED90EABBF}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4137EA80-F4B4-42AC-BFA4-0342FC0A6A5B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4947D12C-ADAE-45AE-B8C0-A7EAFE2ED531}" = rport=10243 | protocol=6 | dir=out | app=system |
"{6087F61B-B560-452D-AC2E-CCD2C1F602C9}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{7509A549-31C6-4D09-BD0D-D0DA63F9A51E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7626BA8B-0715-44BC-BE5D-B74071588010}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{93812CDB-8B77-40C6-AB5A-ECAF680C5396}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BF48421C-DB69-41D1-9C04-69AA3DD58ED5}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{CA7D9D74-6F0D-4A12-BD37-17686E07060F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D3B81E5B-3501-4B7F-96DD-CA0FE6FAE421}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D7828973-9BED-4D7C-869D-27EDA692DB2A}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0154BF61-5B4B-44D0-B5AC-FC469E9CDE9C}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{02490A9A-335C-4C0F-8E97-4E01C51CDEC2}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{0385B719-D661-4E8B-8AA4-AEF77C7FC20B}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{049D3682-AF04-49CD-9700-4E89A237C0C3}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{08927E36-4531-488F-B7AB-2DC7AE55A6F9}" = dir=out | name=getting started with windows 8 |
"{08CA22D3-93E7-4B7E-BED3-815A3ABE8328}" = dir=in | name=skype |
"{08E2CB37-3D0D-448E-B3C4-BF26B4FB7F3A}" = dir=out | name=youcam for hp |
"{0987177E-D9CC-4AEF-A037-4194AD55C15D}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{098F27B6-D80A-44F4-B490-933CEC112D09}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{10D229EE-F17C-4AFE-A4C9-F50252EE94B0}" = dir=in | name=skype |
"{154E4A53-4AAE-4E30-9449-EDA968FCE991}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{162259F5-2144-4463-81F6-3F4F86E3AEDC}" = dir=out | name=@{microsoft.bingnews_3.0.4.268_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{174E0DE7-F01D-4CF7-B935-55222BEF73D8}" = dir=out | name=@{microsoft.bingsports_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{179A0B36-A680-4BAA-940E-CE6B0019E5EF}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{186B2F63-85B5-4E49-9417-A712D7941389}" = dir=in | name=check point vpn |
"{194062ED-0610-4463-91BA-0D1600CEF110}" = dir=out | name=getting started with windows 8 |
"{19A47E77-1E93-4A48-94F4-9AED48DC24E9}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{19F378F0-2B9B-40E8-81B3-E4FA952F436D}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{1A3AFB4D-28C4-44DB-A48D-94884480B40D}" = dir=in | name=juniper networks junos pulse |
"{1DA6B01A-F050-4F74-8ADB-030643F81A83}" = dir=in | name=media suite for hp |
"{1ED7F754-C29A-4592-91E6-B42C818B4482}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{1FD31436-2807-46A1-B39A-955DF8F3E40C}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{2058F3BB-93D5-4A56-8E9C-0E0175679575}" = dir=out | name=windows_ie_ac_001 |
"{21E26960-B233-4667-BC39-EC2B7ED35A25}" = dir=out | name=evernote |
"{2505CF0B-F8CE-47F0-A567-237198D75B7D}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{265AE090-1AD7-4193-A670-5B528405D103}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{275E806A-D506-4B21-A897-0B6D541A3378}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{2D3EBE28-52B4-4F75-8764-52CCC9418047}" = dir=out | name=skype |
"{2D6A85CA-5D49-43BF-930C-237E942FF342}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{2D7CDCBF-C01B-44ED-AB6B-9760348A25E3}" = dir=in | name=evernote |
"{2E840521-2766-4FFC-843B-EA021F45687E}" = dir=out | name=@{microsoft.bingweather_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{2EA212D0-A16A-48A0-A60A-35F3CD41A50D}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{30BE4C6F-39FD-485B-AF7A-3090BB0953FE}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{30C87470-2068-4526-A3E9-FDDC20E0A399}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{31FCE339-4E13-46C1-B2B6-46DA3412DA79}" = dir=out | name=@{ad2f1837.gettingstartedwithwindows8_1.5.3.1_neutral__v10z8vjag6ke6?ms-resource://ad2f1837.gettingstartedwithwindows8/resources/id_app_title} |
"{34F2898B-9D27-4298-9583-478E8B845EF5}" = protocol=6 | dir=out | app=system |
"{35448709-DF53-49B3-BD60-F157BA14116C}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{3C0DB60D-6BFE-4744-A2D1-3839B82DDC45}" = dir=out | name=line |
"{3F45B50C-A88B-4A40-A48E-99E3851BE987}" = dir=out | name=media suite for hp |
"{3FF88B60-18EE-4B4E-8C57-70FC71032807}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{414BBADC-3ED7-44E5-872C-25F7E8AC02C6}" = dir=in | name=skype |
"{41E7EC9E-10FC-4DE8-8777-7C5FF554CCCA}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{41EE2E13-F8F7-4991-96B7-05747DDF9EAD}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe |
"{42658395-7B72-4BEB-8891-1150204D3BBC}" = dir=out | name=twitter |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4327298F-C6B6-4242-8754-AD3A8F89CC76}" = dir=out | name=@{microsoft.bingnews_2.0.0.320_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{442883DA-C263-407B-AE9A-7DE1E987590A}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.253_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{455D80B6-CACF-403C-8457-B54CE8D588B1}" = dir=out | name=evernote |
"{4689F6D5-5187-43F4-98F1-6BC92B2DECFD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{49B2D954-D990-4787-82ED-1144E08F19A7}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{4CC3EDF1-EF39-4E5D-858F-0B6D3D022070}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4E5111EE-D6A4-4D53-B21F-30E29B7FD417}" = dir=out | name=juniper networks junos pulse |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{561EFB72-C03B-42EC-B07B-C9211EDE9566}" = dir=in | name=f5 vpn |
"{5843262D-0216-422E-90BD-D302B3481119}" = dir=out | name=onenote |
"{5BDAB223-40B0-4439-91CB-0140DFD71F27}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{5C041CF8-5632-444F-8F49-78CE8DAA944A}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{5C0E8328-C24B-4441-981E-ACD5F5962DE4}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{5D1FC270-F22B-4E6C-B71D-9621704ED01E}" = dir=out | name=@{microsoft.bingtravel_2.0.0.319_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{63A657D3-3140-4575-B98E-705A2E6165FC}" = dir=out | name=media suite for hp |
"{677EFB88-C81B-47AB-9293-3CD8CFABF3FA}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{67C4D1E6-3D39-4593-93A0-DA4599871968}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{69FC9A8C-6349-4F25-902E-BB964956AD3B}" = dir=out | name=@{microsoft.bingsports_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{6A4A4E4C-DF53-465E-98B6-17B306C475F3}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{6B01D36B-DEF4-43B1-BD1A-1DDBD2F37F35}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{6D8B97DD-974A-48A8-BBC0-CF92228DEAB5}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{6E9871C1-E442-4679-B152-AF789E8F00EC}" = dir=out | name=media suite for hp |
"{701F9C0A-65D5-4AF8-89FD-CCA41314ECC6}" = dir=out | name=evernote touch |
"{71C991D7-8A8F-40A6-8713-ACDC90267F67}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{71FAFA5E-EC81-44B5-909B-8B8873F0D25D}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{75175C02-D4DA-4668-B77A-75399623DD72}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7526ACF5-0D35-4BD4-839F-A9C89F8344D1}" = dir=out | name=@{microsoft.zunemusic_1.5.216.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{754D8521-421D-4CF6-BFED-8CC5C3C59829}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{77426884-5533-4153-BC0C-08947F38157B}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{78438B5F-9340-4B3B-95E7-3F654ACEC525}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{79937D6D-EA3F-46EC-9552-9C3CC736FFE2}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{7A6DF4B4-D102-4552-B5F5-1DAC318C407E}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{7B102116-7F75-4670-8DA7-790EC62B9374}" = dir=in | name=@{ad2f1837.gettingstartedwithwindows8_1.5.3.1_neutral__v10z8vjag6ke6?ms-resource://ad2f1837.gettingstartedwithwindows8/resources/id_app_title} |
"{7D55C6A6-4182-45D6-960A-6A9B0B58E8A2}" = dir=in | name=sonicwall mobile connect |
"{7D994655-D089-4531-833F-97053ED1CA06}" = dir=out | name=skype |
"{7EBD09E2-E4EC-4077-959F-79273A7047BC}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{85C3B436-3B9B-4984-9790-3AB60186E3C5}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{85E1AD6A-8AD0-4414-9D37-99B9E11093F6}" = dir=out | name=evernote |
"{89062F79-BD57-4F07-A6C9-6A154258C256}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{8942636B-C9AC-4AFB-B2D0-43B8742F47BD}" = dir=out | name=check point vpn |
"{89963C9C-69F6-41E7-9D37-4EB803CAE56D}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{8A872FFD-DA7B-47C7-AB0A-BA44F278A7B7}" = protocol=58 | dir=in | app=system |
"{8AF5069C-60B3-4C31-83C7-2E33EEEE8B18}" = dir=out | name=skype |
"{8FFBE939-746B-404C-AAFD-DF4CE0C68FFD}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{91FD2A38-20D1-4BB7-8640-D098791CB4CF}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{9354B258-22FB-4EFE-A665-6A1CE5BAA0AA}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{947D840C-8E6F-45AC-BD76-FD4999B2AF84}" = dir=in | name=skype |
"{9587D233-6BC6-4F23-A95F-7BAE4CCBC472}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{95F7A670-649B-4410-8DAE-15A1E61A0D79}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{9682A3AE-EC01-41EE-A2AF-BE94504E455C}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{9A1BA331-3343-4F47-98F0-F23D8DC03520}" = protocol=17 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{9ABA00BA-C262-426F-BEB0-BA0D7CAE45D5}" = dir=out | name=@{microsoft.bingfinance_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{9BCD7036-6C44-4089-8468-87D4524A29FA}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A0C88B16-DAAE-46AB-878B-FB1A71A326DE}" = dir=out | name=windows_ie_ac_001 |
"{A252F7EC-F1D9-4E1A-A47D-DD6EFE4990B7}" = dir=out | name=@{microsoft.zunevideo_1.5.909.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{A7161F1B-F0CC-400F-A09C-A9C63E99D50A}" = dir=out | name=@{microsoft.bingtravel_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{A8812E0D-F971-4C58-822A-B483107D75BD}" = dir=out | name=getting started with windows 8 |
"{AA0A4C2E-3491-4525-A02D-937A21260CFE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AD18CABD-242C-4D6C-BA57-17EAD54AE38F}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B0FD1948-C6AF-4285-B11D-B9219F4DC25B}" = protocol=6 | dir=in | app=c:\programdata\nexonjp\ngm\ngm.exe |
"{B2BDD023-E035-4391-9344-A0C40F2866F3}" = dir=in | name=evernote |
"{B335CC97-C18A-436E-B169-5DD92ABF8D93}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{B379A02C-49E3-4CA6-AE9B-6C84407CC100}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{B5331087-CC57-4797-BBE1-74E5F2F27D77}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{B8BA856A-1C0F-4602-94C4-53E06F3130D5}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{B9CCE13F-C59A-4252-AA3C-0DB318D78BC1}" = dir=out | name=youcam for hp |
"{B9F6A11F-A6D4-44B8-942E-98F919DC27B3}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{BA7B86D5-EE87-4D8B-ADC0-C4762527CB6B}" = dir=out | name=sonicwall mobile connect |
"{C0E76C12-DE88-4D39-849D-62D51E23A809}" = dir=out | name=f5 vpn |
"{C20A6B2E-E18F-4EEE-BA46-84792369F139}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{C550753C-BD87-42F5-B583-822037B40077}" = dir=in | name=onenote |
"{C59611B7-429C-489C-8B86-E67CDBCFA84E}" = dir=out | name=youcam for hp |
"{CB2652EF-8E4E-4D88-AB1C-6761FAA3E0FC}" = dir=out | name=media suite for hp |
"{CD88F937-E916-4FA0-B449-9CFEA8328AE8}" = dir=out | name=@{microsoft.bingfinance_2.0.0.320_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{CFF82E54-324A-44CA-BFBB-9CBCF8235A28}" = dir=out | name=youcam for hp |
"{D15004BC-86B2-4452-8A24-8258AA2B2CEB}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{D1F58706-3DD1-4C3F-8ABA-3B612914BFDF}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{D50643DD-FB95-4901-B5AA-74A31946D6C9}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{D63568DD-ACDE-4906-914C-69D45510087C}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D6BA85BC-7EB0-436F-854A-1C89B6EB332F}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{D7473F65-9F71-43FB-816B-35535669C052}" = dir=out | name=skype |
"{D8352EB9-B998-43C9-BC93-74D64D016C54}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D873CDB8-88A7-465B-920D-8A6E33ED33BF}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{D8903EDD-B10C-4CE6-A0B9-30AFFC7F0A07}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{D929B36C-3F3A-444A-954C-DED1692B5731}" = dir=in | name=evernote |
"{D9B96124-B9F0-44B0-9969-5720C4C7A2D8}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DD4E33DE-EAFB-4393-B38E-D762B8CD1511}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{E418BCCD-1912-4E8E-88D8-17AC85A87E4B}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{E6DB7AC1-D68F-4B86-A3E2-D96B10DEB649}" = dir=out | name=@{microsoft.zunemusic_2.6.653.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{E733BEA5-E713-452A-83E1-1252CDFD0C64}" = dir=out | name=windows_ie_ac_001 |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E869476D-534C-4043-8341-8ABF032EB167}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{EADCFCA6-910F-4F96-9333-2D9BE0128218}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{EB4BD988-A349-49F9-A980-250559059360}" = dir=out | name=@{microsoft.zunevideo_2.6.434.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{EBA3BF99-4CAA-408E-BEA3-4D389F755324}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{ED067171-9961-4D42-A1AB-3D4010B9AE14}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{EDB5AC9D-53AA-4DDC-9E1C-6750126FDBF4}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{F0829CCE-4CE9-49A3-BB21-AB2C93E57F70}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{F5FB8A31-1580-4971-9FA9-B7FD09C43C21}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F7734837-3052-4F45-A8BF-1FEF2A4ACBD3}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F7B62AAC-7F7E-462A-88CF-5A0DCC91712B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F8E41D89-3458-4765-8641-8AD190965799}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F9A4B8E9-C6EE-4341-95E2-32CF826F3840}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{FA928A0D-6A6A-42A5-862E-75D14DA53B82}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector10\pdr10.exe |
"{FB0EC273-1F9E-490D-A680-027BC4E272C5}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{FD22C002-E1DA-4943-B68D-9885625B3D04}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{FD92743C-60AC-455B-BEEF-48FFE829C29B}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{FF8398F5-6241-42CC-8DCC-9AE273651957}" = dir=in | name=evernote touch |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0FA995CC-C849-4755-B14B-5404CC75DC24}" = Energy Star
"{1334eac7-d6ef-4177-8780-05c963853cd3}" = Intel(R) PRO/Wireless Driver
"{1B2C85A0-2B9E-4291-8B37-468D57503E98}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{28791292-D18D-42FA-AE66-3D3D20AA8618}" = Apple Application Support(64 ビット)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{5A1CD0BB-7E65-45DC-9A9A-682CE8B62AA4}" = Update for Japanese Microsoft IME Standard Dictionary
"{5ED7462B-EF58-4757-B609-53755021EC34}" = Apple Mobile Device Support
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E14E6D6-3175-4E1A-B934-CAB5A86367CD}" = HP Postscript Converter
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7854AA22-A2F0-4F29-A2E9-D0C5A2B685E7}" = Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
"{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}" = iTunes
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89478C31-5CE8-461A-9084-9A0AF059F84F}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0028-0411-1000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0411-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Japanese) 2010
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{977D1ABF-4089-4CA7-BA33-CC75808B7ACE}" = Intel® Trusted Connect Service Client
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{AA51ED2E-DCE7-415F-9C32-CB9B561D216D}" = Validity Fingerprint Sensor Driver
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6468CEC-2E09-4406-9B8A-8728A0D65709}" = HP 3D DriveGuard
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{B939BFEB-824F-4456-A4EE-2B86ED04033D}" = Update for Japanese Microsoft IME Trending Words Dictionary
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D61F48DA-627B-404E-9315-32A651B18B64}" = Intel® PROSet/Wireless WiFi Software
"{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}" = HP Registration Service
"{E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
"CCleaner" = CCleaner
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{0BE73D3C-B5AF-11E1-933A-984BE15F174E}" = Evernote v. 4.5.7
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15015752-9990-4516-A2B1-93823281FB8E}" = Update for Japanese Microsoft IME Postal Code Dictionary
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{2749c485-3a8b-4533-92ff-7cf6e8221cff}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}" = Apple Application Support(32 ビット)
"{30B2D1D8-0A07-4B71-9553-0710C5D31E35}" = HP Wireless Button Driver
"{34ffd2d4-8e73-410f-ac90-23aece7068e3}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{402ED4A1-8F5B-387A-8688-997ABF58B8F2}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50F16F43-54B8-43DB-B96F-255546DFB990}" = HP ESU for Microsoft Windows 8
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.2.3
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}" = Update for Japanese Microsoft IME Standard Extended Dictionary
"{7DB71278-9AD7-4480-AB08-8649C5010B17}" = Update for Japanese Microsoft IME Standard Dictionary
"{7eaaa6c0-a745-427c-bd6f-bbc33d651540}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{7F7E2060-7212-4A53-9875-55173E4BA3F0}" = HP Hotkey Support
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90140000-0016-0411-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Japanese) 2010
"{90140000-0018-0411-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Japanese) 2010
"{90140000-001A-0411-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Japanese) 2010
"{90140000-001B-0411-0000-0000000FF1CE}" = Microsoft Office Word MUI (Japanese) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0411-0000-0000000FF1CE}" = Microsoft Office Proof (Japanese) 2010
"{90140000-0028-0411-0000-0000000FF1CE}" = Microsoft Office IME (Japanese) 2010
"{90140000-002C-0411-0000-0000000FF1CE}" = Microsoft Office Proofing (Japanese) 2010
"{90140000-006E-0411-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Japanese) 2010
"{90140000-00A1-0411-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Japanese) 2010
"{91140000-0013-0000-0000-0000000FF1CE}" = Microsoft Office Essentials 2010
"{987210BB-D707-48FC-88FA-4374765D108D}" = HP System Default Settings
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B50981AD-95E8-4E4D-912A-7C4B738387CA}" = HP SoftPaq Download Manager
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{c9967fbd-e3c3-4ed0-992a-5b33260f2944}" = インテル® PROSet/Wireless ソフトウェア
"{d07b0db5-8dad-40e1-be90-88026298a46b}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}" = HP Software Setup
"{D62BEA6A-CEAA-40CD-9C2B-A178EB6F4A88}" = HP Software Framework
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD
"{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}" = HP Support Assistant
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}" = Realtek Ethernet Controller All-In-One Windows Driver
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FCD58C04-324A-40D1-BA9E-1A754DF1736D}" = HP Documentation
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe Flash Player PPAPI" = Adobe Flash Player 16 PPAPI
"avast" = avast! Free Antivirus
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector
"InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD
"IObitUninstall" = IObit Uninstaller
"Lhaplus" = Lhaplus
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware バージョン 1.75.0.1300
"Office14.EssentialsR" = Microsoft Office Home and Business 2010
"Opera 27.0.1689.66" = Opera Stable 27.0.1689.66
"PDF Complete" = PDF Complete Corporate Edition
"Sunplus SPUVCb" = HP HD Webcam Driver
"Wi-Fi WALKER WiMAX 2+ setting tool" = Wi-Fi WALKER WiMAX 2+ setting tool

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-4036144246-473319313-1314510145-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2015/02/07 15:16:37 | Computer Name = nishikawa | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 10826687

Error - 2015/02/09 9:21:08 | Computer Name = nishikawa | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 2015/02/09 11:53:58 | Computer Name = nishikawa | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ Microsoft.BingWeather_8wekyb3d8bbwe!App のライセンス認証がエラーで失敗しました: -2144927148。詳しくは、Microsoft-Windows-TWinUI/Operational
ログをご覧ください。

Error - 2015/02/09 12:35:41 | Computer Name = nishikawa | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 2015/02/09 12:35:41 | Computer Name = nishikawa | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 13156

Error - 2015/02/09 12:35:41 | Computer Name = nishikawa | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 13156

Error - 2015/02/09 18:49:50 | Computer Name = nishikawa | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ Microsoft.BingWeather_8wekyb3d8bbwe!App のライセンス認証がエラーで失敗しました: -2144927148。詳しくは、Microsoft-Windows-TWinUI/Operational
ログをご覧ください。

Error - 2015/02/09 18:58:49 | Computer Name = nishikawa | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 2015/02/10 8:18:12 | Computer Name = nishikawa | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ Microsoft.BingWeather_8wekyb3d8bbwe!App のライセンス認証がエラーで失敗しました: -2144927148。詳しくは、Microsoft-Windows-TWinUI/Operational
ログをご覧ください。

Error - 2015/02/10 8:28:19 | Computer Name = nishikawa | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: herdProtectScan.exe、バージョン: 1.0.3.9、タイム スタンプ: 0x549300f9
障害が発生しているモジュール名:
LSASRV.dll、バージョン: 6.3.9600.17396、タイム スタンプ: 0x5434d70f 例外コード: 0xc0000005 障害オフセット:
0x000000000005036a 障害が発生しているプロセス ID: 0x2048 障害が発生しているアプリケーションの開始時刻: 0x01d0452cb0c7df58
障害が発生しているアプリケーション
パス: C:\Program Files\Reason\herdProtect\Scanner_Portable\herdProtectScan.exe 障害が発生しているモジュール
パス: C:\WINDOWS\SYSTEM32\LSASRV.dll レポート ID: 4ae68e0f-b120-11e4-bf02-b4b52f8b2b9a
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

Error - 2015/02/10 8:32:36 | Computer Name = nishikawa | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = アプリ Microsoft.BingWeather_8wekyb3d8bbwe!App のライセンス認証がエラーで失敗しました: -2144927148。詳しくは、Microsoft-Windows-TWinUI/Operational
ログをご覧ください。

Error - 2015/02/10 8:59:06 | Computer Name = nishikawa | Source = Application Error | ID = 1000
Description = 障害が発生しているアプリケーション名: herdProtectScan.exe、バージョン: 1.0.3.9、タイム スタンプ: 0x549300f9
障害が発生しているモジュール名:
LSASRV.dll、バージョン: 6.3.9600.17396、タイム スタンプ: 0x5434d70f 例外コード: 0xc0000005 障害オフセット:
0x000000000005036a 障害が発生しているプロセス ID: 0x2048 障害が発生しているアプリケーションの開始時刻: 0x01d0452cb0c7df58
障害が発生しているアプリケーション
パス: C:\Program Files\Reason\herdProtect\Scanner_Portable\herdProtectScan.exe 障害が発生しているモジュール
パス: C:\WINDOWS\SYSTEM32\LSASRV.dll レポート ID: 97fc7c11-b124-11e4-bf02-b4b52f8b2b9a
障害が発生しているパッケージの完全な名前:
障害が発生しているパッケージに関連するアプリケーション ID:

[ Hewlett-Packard Events ]
Error - 2013/11/09 7:27:46 | Computer Name = nishikawa | Source = hpsa_service.exe | ID = 2000
Description =

Error - 2013/11/09 7:27:48 | Computer Name = nishikawa | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088hpsa_service.exe 場所 HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.Detect()

場所 HP.SupportFramework.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan, Boolean isAsync) Message: One HP Active Check Local Mode job
already running. StackTrace: 場所 HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.Detect()

場所 HP.SupportFramework.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan, Boolean isAsync) Source: HP.ActiveCheckLocalMode.SessionManager

Name:
hpsa_service.exe Version: 07.00.00.01 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\hpsa_service.exe Format: ja-JP RAM: 1930 Ram Utilization: 60 TargetSite:
Void Detect()

Error - 2014/05/13 22:44:34 | Computer Name = nishikawa | Source = HPSF.exe | ID = 2000
Description =

Error - 2014/05/13 22:46:15 | Computer Name = nishikawa | Source = HPSF.exe | ID = 2000
Description =

Error - 2014/05/13 22:46:41 | Computer Name = nishikawa | Source = HPSF.exe | ID = 2000
Description =

Error - 2014/05/13 22:47:38 | Computer Name = nishikawa | Source = HPSF.exe | ID = 2000
Description =

Error - 2014/10/13 8:53:33 | Computer Name = nishikawa | Source = HPSF.exe | ID = 2000
Description =

[ HP Software Framework Events ]
Error - 2015/02/04 12:13:27 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/05 01:13:27.182|00001C60|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/04 23:38:11 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/05 12:38:11.826|00000308|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/04 23:38:12 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/05 12:38:12.148|00001FC4|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/05 0:47:32 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/05 13:47:32.629|0000123C|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/05 0:47:33 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/05 13:47:33.206|00001018|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/05 14:17:29 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/06 03:17:28.623|00001018|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/07 9:25:02 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/07 22:25:02.797|000012F4|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/07 9:25:04 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/07 22:25:04.192|000010F8|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/07 9:52:13 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/07 22:52:13.865|0000093C|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

Error - 2015/02/07 9:52:14 | Computer Name = nishikawa | Source = hpCasl | ID = 5
Description = 2015/02/07 22:52:14.195|00001020|Error |[hpcasl]Command::Get{hpCasl.enReturnCode(string,object&)}|An
exception occurred 指定されたキャストは有効ではありません。

[ System Events ]
Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = TCP/IP NetBIOS Helper サービスは、次のエラーが原因で開始できなかった Ancillary Function Driver
for Winsock サービスに依存しています: %%31

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = Network Store Interface Service サービスは、次のエラーが原因で開始できなかった NSI Proxy
Service Driver サービスに依存しています: %%31

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = Workstation サービスは、次のエラーが原因で開始できなかった Network Store Interface Service
サービスに依存しています: %%1068

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = IP Helper サービスは、次のエラーが原因で開始できなかった Network Store Interface Service
サービスに依存しています: %%1068

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = SMB MiniRedirector Wrapper and Engine サービスは、次のエラーが原因で開始できなかった Redirected
Buffering Sub System サービスに依存しています: %%31

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = SMB 1.x MiniRedirector サービスは、次のエラーが原因で開始できなかった SMB MiniRedirector
Wrapper and Engine サービスに依存しています: %%1068

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = SMB 2.0 MiniRedirector サービスは、次のエラーが原因で開始できなかった SMB MiniRedirector
Wrapper and Engine サービスに依存しています: %%1068

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = Network Location Awareness サービスは、次のエラーが原因で開始できなかった DHCP Client サービスに依存しています:
%%1068

Error - 2015/02/04 10:52:56 | Computer Name = nishikawa | Source = Service Control Manager | ID = 7001
Description = WinHTTP Web Proxy Auto-Discovery Service サービスは、次のエラーが原因で開始できなかった DHCP
Client サービスに依存しています: %%1068

Error - 2015/02/04 10:53:13 | Computer Name = nishikawa | Source = DCOM | ID = 10005
Description =


< End of report >
  • ニシカワ
  • 2015/02/10 (Tue) 22:56:02
返信フォームへ 
OTLで処置を行いましょう
ログを確認させていただきました。
ひょっとして、現在Windowsストアがご利用できない状況ではないでしょうか。
一度Windowsストアが正常に起動するかご確認ください。
OTLのログが文字数上限で途切れていますが、途切れている部分には感染はないと信じてスルーします。
KB959765と言うのがXP用のパッチなので妖しさ満点なのですが、今回は同じくスルーしておきましょう。
HPは不要ですので、導入時の指示に従って削除なされてください。

メモ帳を起動させ、以下をコピペしてください。
なお、:OTL、:Files、:Commandsの3つはOTLでの処理方法を決める命令文です。
削除なされないようご注意ください。

------コピペこの下より------
:OTL
DRV:[b]64bit:[/b] - [2014/03/17 18:04:00 | 000,168,664 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mkd3kfnt.sys -- (Mkd3kfNt)
DRV:[b]64bit:[/b] - [2014/02/24 11:22:00 | 000,098,520 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2BthF.sys -- (Mkd2Bthf)
DRV:[b]64bit:[/b] - [2014/02/24 11:21:00 | 000,112,856 | ---- | M] (AhnLab, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Mkd2Nadr.sys -- (Mkd2Nadr)
[2015/02/10 21:21:44 | 002,827,152 | ---- | C] (Reason Company Software Inc.) -- C:\Users\博\Desktop\herdProtectScan_Portable.exe

:Files
c:\users\博\appdata\local\google\chrome\user data\default\extensions\adhpnckllpbmcldfpibodmmnokfliddm
c:\users\博\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000

:Commands
[purity]
[resethosts]
[emptytemp]
[createrestorepoint]
[reboot]
------コピペこの上まで------

コピペが完了しましたら、分かりやすいお名前をつけて保存してください。
その後、PCをセーフモードで起動させてください。
再度OTLを起動させ、Custom Scan/Fixesの項目内に上記で保存した内容をコピペしてください。
今回は駆除作業のため、その他のチェック項目はありません。
赤い文字の[Run Fix]をクリックして処置を開始してください。
OTLの処置に従って進めてゆき、通常モードで再起動を行うと処置ログが表示されますので、
そちらのログを貼り付けてご連絡ください。
またその際に状況報告もお願いいたします。
  • IVNO
  • MAIL
  • 2015/02/10 (Tue) 23:34:43
返信フォームへ 
OTLでの処置が完了しました。
Windowsストアに関しては利用が可能でした。
以下、OTLで処置したログを貼らせていただきます。

All processes killed
========== OTL ==========
Service Mkd3kfNt stopped successfully!
Service Mkd3kfNt deleted successfully!
C:\Windows\SysNative\drivers\mkd3kfnt.sys moved successfully.
Service Mkd2Bthf stopped successfully!
Service Mkd2Bthf deleted successfully!
C:\Windows\SysNative\drivers\Mkd2BthF.sys moved successfully.
Service Mkd2Nadr stopped successfully!
Service Mkd2Nadr deleted successfully!
C:\Windows\SysNative\drivers\Mkd2Nadr.sys moved successfully.
C:\Users\博\Desktop\herdProtectScan_Portable.exe moved successfully.
========== FILES ==========
c:\users\博\appdata\local\google\chrome\user data\default\extensions\adhpnckllpbmcldfpibodmmnokfliddm\1.0.1_0 folder moved successfully.
c:\users\博\appdata\local\google\chrome\user data\default\extensions\adhpnckllpbmcldfpibodmmnokfliddm folder moved successfully.
c:\users\博\appdata\local\google\chrome\user data\default\file system\001\t\00\00000000 moved successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: h09y2_000

User: Public

User: rnish_000

User: Ryo

User: Z
->Temp folder emptied: 81736 bytes

User: 博
->Temp folder emptied: 4385619 bytes
->Temporary Internet Files folder emptied: 31703934 bytes
->Java cache emptied: 353710 bytes
->Google Chrome cache emptied: 361350690 bytes
->Flash cache emptied: 46530 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20058682 bytes
RecycleBin emptied: 81645 bytes

Total Files Cleaned = 399.00 mb

Unable to start System Restore Service. Error code 1084

OTL by OldTimer - Version 3.2.69.0 log created on 02142015_195446

Files\Folders moved on Reboot...
C:\Users\博\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

宜しくお願い致します。
  • ニシカワ
  • 2015/02/14 (Sat) 20:01:22
返信フォームへ 
本日一日は通常利用いただき、結果のご報告を
OTLでの処置は正常に完了した模様です。
それでは本日一日は通常利用を行い、動作確認をお願いいたします。
後日確認した結果をお知らせください。
  • IVNO
  • MAIL
  • 2015/02/14 (Sat) 21:39:52
返信フォームへ 
Re: Cantataweb
返事が大変遅くなり申し訳ございません。
Chromeを使ったところ、正常に作動しております。
この度は本当にありがとうございました。
  • ニシカワ
  • 2015/03/04 (Wed) 22:29:26
返信フォームへ 
まだ最終チェックが残っています
様子見の結果が異常なしと言うことですので、ここで見直しを行いましょう。
HJTのログ、CCのインストール情報ログ、同じくCCのスタートアップの各ログを取得し、
それらすべてを貼り付けてご連絡をお願いいたします。
このログ解析により処置続行とするか解決とするかが分かれます。
  • IVNO
  • MAIL
  • 2015/03/04 (Wed) 22:42:24
返信フォームへ 
早とちりで申し訳ありません
以下、ログです。

【HJT】
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 17:31:06, on 2015/03/11
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\博\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: IntelR CentrinoR Wireless BluetoothR + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem29.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: インテル(R) ラピッド・ストレージ・テクノロジー (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Maxiget Update サービス (mglupdate) (mglupdate) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: Maxiget Update サービス (mglupdatem) (mglupdatem) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: Wi-Fi WALKER WiMAX 2+ setting tool - Unknown owner - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13081 bytes

【CC install】
Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Adobe Flash Player 16 PPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Apple Application Support(32 ビット) Apple Inc. 2015/03/02 94.2 MB 3.1.2
Apple Application Support(64 ビット) Apple Inc. 2015/03/02 107 MB 3.1.2
Apple Mobile Device Support Apple Inc. 2015/03/02 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2013/04/19 2.38 MB 2.1.3.127
avast! Free Antivirus AVAST Software 2014/10/07 9.0.2021
Bonjour Apple Inc. 2013/04/06 2.00 MB 3.0.0.10
CCleaner Piriform 2015/03/11 5.03
CyberLink Media Suite 10 CyberLink Corp. 2013/04/06 42.0 MB 10.0.1.1916
CyberLink PhotoDirector CyberLink Corp. 2013/04/06 167 MB 2.0.1.3109
CyberLink Power2Go 8 CyberLink Corp. 2013/04/06 263 MB 8.0.1.1924
CyberLink PowerDirector 10 CyberLink Corp. 2013/04/06 532 MB 10.0.1.2006
CyberLink PowerDVD CyberLink Corp. 2013/04/06 243 MB 10.0.6.4330
CyberLink YouCam CyberLink Corp. 2013/04/06 126 MB 4.1.1.3231
Dropbox Dropbox, Inc. 2014/10/07 2.6.24
Energy Star Hewlett-Packard 2013/04/06 3.47 MB 1.0.8
Evernote v. 4.5.7 Evernote Corp. 2013/04/06 126 MB 4.5.7.7146
Google Chrome Google Inc. 2014/12/21 40.0.2214.115
HP 3D DriveGuard Hewlett-Packard Company 2013/04/06 9.08 MB 5.1.5.1
HP Documentation Hewlett-Packard 2013/04/06 470 MB 1.2.0.0
HP ESU for Microsoft Windows 8 Hewlett-Packard Company 2013/04/06 1.71 MB 1.0.1.1
HP HD Webcam Driver SunplusIT 2014/10/07 5.65 MB 3.4.8.16
HP Hotkey Support Hewlett-Packard Company 2014/05/14 10.4 MB 5.0.21.1
HP Registration Service Hewlett-Packard 2013/04/06 75.4 MB 1.0.5976.4186
HP SoftPaq Download Manager Hewlett-Packard Company 2013/04/06 15.7 MB 3.4.6.0
HP Software Framework Hewlett-Packard Company 2013/04/06 8.03 MB 4.6.8.1
HP Software Setup Hewlett-Packard Company 2013/04/06 20.1 MB 8.5.4.1
HP Support Assistant Hewlett-Packard Company 2014/04/01 85.9 MB 7.4.45.4
HP System Default Settings Hewlett-Packard Company 2014/10/13 1.59 MB 2.0.1
HP Wireless Button Driver Hewlett-Packard Company 2015/01/03 733 KB 1.1.2.1
IDT Audio IDT 2013/04/06 1.0.6428.0
Intel(R) Management Engine Components Intel Corporation 2013/04/06 8.1.0.1281
Intel(R) Processor Graphics Intel Corporation 2014/10/06 9.17.10.3347
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel Corporation 2013/04/06 3.83 MB 15.5.0.0344
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Motorola Solutions, Inc 2013/04/06 30.6 MB 2.5.0.0248
Intel(R) Rapid Storage Technology Intel Corporation 2013/04/06 11.5.6.1002
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/10/07 2.0.0.37149
iTunes Apple Inc. 2015/03/02 234 MB 12.1.1.4
Java 8 Update 31 Oracle Corporation 2015/02/05 74.0 MB 8.0.310
JMicron Flash Media Controller Driver JMicron Technology Corp. 2014/10/07 1.0.72.4
Lhaplus 2014/10/07
Microsoft Office Home and Business 2010 Microsoft Corporation 2014/10/07 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/07/24 199 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 2013/04/06 258 KB 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2013/04/06 250 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/04/06 3.22 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2013/04/06 6.88 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/04/06 7.23 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2012/08/01 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/12 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/04/06 5.95 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2014/11/21 230 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/06 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/04/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/12 10.1 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 15.0 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2014/10/07 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2014/10/07 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 2014/10/07 20.5 MB 12.0.21005.1
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/07 17.1 MB 12.0.21005.1
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/12 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/12 10.0.50903
Opera Stable 27.0.1689.76 Opera Software ASA 2015/02/24 27.0.1689.76
PDF Complete Corporate Edition PDF Complete, Inc 2014/10/07 4.1.8
QuickTime 7 Apple Inc. 2015/01/19 70.2 MB 7.76.80.95
Realtek Ethernet Controller All-In-One Windows Driver Realtek 2013/04/06 8.2.612.2012
Synaptics Pointing Device Driver Synaptics Incorporated 2014/10/07 46.4 MB 17.0.18.8
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/31 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/12/04 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/10/08 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/12/04 17.0 KB 16.0.1016.1
Validity Fingerprint Sensor Driver Validity Sensors, Inc. 2013/04/06 27.8 MB 4.4.228.0
Wi-Fi WALKER WiMAX 2+ setting tool Huawei Technologies Co.,Ltd 2015/02/04 22.001.22.04.824
インテル® PROSet/Wireless ソフトウェア Intel Corporation 2014/10/07 367 MB 16.1.5

【Startup】
有効 HKCU:Run CCleaner Monitoring Piriform Ltd "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
有効 HKLM:Run APSDaemon Apple Inc. "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
有効 HKLM:Run AvastUI.exe AVAST Software "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
有効 HKLM:Run BTMTrayAgent Microsoft Corporation rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
有効 HKLM:Run CLMLServer_For_P2G8 CyberLink "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
有効 HKLM:Run CLVirtualDrive CyberLink Corp. "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
有効 HKLM:Run HotKeysCmds Intel Corporation "C:\WINDOWS\system32\hkcmd.exe"
有効 HKLM:Run IAStorIcon Intel Corporation C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
有効 HKLM:Run IgfxTray Intel Corporation "C:\WINDOWS\system32\igfxtray.exe"
有効 HKLM:Run iTunesHelper Apple Inc. "C:\Program Files\iTunes\iTunesHelper.exe"
有効 HKLM:Run PDF Complete PDF Complete Inc C:\Program Files (x86)\PDF Complete\pdfsty.exe
有効 HKLM:Run Persistence Intel Corporation "C:\WINDOWS\system32\igfxpers.exe"
有効 HKLM:Run QLBController Hewlett-Packard Company C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
有効 HKLM:Run QuickTime Task Apple Inc. "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
有効 HKLM:Run RemoteControl10 CyberLink Corp. "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
有効 HKLM:Run SynTPEnh Synaptics Incorporated %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
有効 HKLM:Run SysTrayApp IDT, Inc. C:\Program Files\IDT\WDM\sttray64.exe
有効 HKLM:Run YouCam Mirage CyberLink "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
有効 HKLM:Run YouCam Tray CyberLink Corp. "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
有効 Startup User OneNote 2010 画面の領域の取り込みと起動.lnk Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE

【IE】
有効 Extension [HP Network Check]を起動して接続の問題を解決する Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
有効 Extension Evernote 4 に追加 res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote に送る Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Extension OneNote リンク ノート(K) Microsoft Corporation C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
有効 Helper avast! Online Security AVAST Software C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
有効 Helper avast! Online Security AVAST Software C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
有効 Helper HP Network Check Helper Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
有効 Helper HP Network Check Helper Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
有効 Helper Java(tm) Plug-In 2 SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
有効 Helper Java(tm) Plug-In SSV Helper Oracle Corporation C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
有効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
有効 Helper Office Document Cache Handler Microsoft Corporation C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL

【Google Chrome】
有効 App Gmail 7 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
有効 App Google ドライブ 6.4 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0
有効 App Google 検索 0.0.0.20 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
有効 App YouTube 4.2.7 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0
有効 Extension Avast Online Security 10.2.0.187 Ryo NISHIKAWA C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.187_0
無効 Extension avast! Online Security 9.0.2021.112 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2021.112_0
有効 Extension Google スプレッドシート 1.1 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0
有効 Extension Google スライド 0.9 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0
有効 Extension Google ドキュメント 0.9 ユーザー 1 C:\Users\博\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
有効 Extension User-Agent Switcher for Chrome 1.0.43 Ryo NISHIKAWA C:\Users\博\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg\1.0.43_0
有効 Plugin Chrome DigitalPersona Agent 1.0.1.2 Ryo NISHIKAWA c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\ChromeExt\components\npChromeDPAgent.dll
有効 Plugin Chrome PDF Viewer Ryo NISHIKAWA C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\pdf.dll
有効 Plugin Chrome Remote Desktop Viewer Ryo NISHIKAWA internal-remoting-viewer
有効 Plugin Google Update 1.3.24.15 Ryo NISHIKAWA C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
有効 Plugin Intel® Identity Protection Technology 2.1.42.0 Ryo NISHIKAWA C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
有効 Plugin iTunes Application Detector 1.0.1.1 Ryo NISHIKAWA C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
有効 Plugin Java Deployment Toolkit 7.0.450.18 10.45.2.18 Ryo NISHIKAWA C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
有効 Plugin Java(TM) Platform SE 7 U45 10.45.2.18 Ryo NISHIKAWA C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
有効 Plugin Microsoft Office 2010 14.0.4730.1010 Ryo NISHIKAWA C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
有効 Plugin Microsoft Office 2010 14.0.4761.1000 Ryo NISHIKAWA C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
有効 Plugin Native Client Ryo NISHIKAWA C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\ppGoogleNaClPluginChrome.dll
有効 Plugin QuickTime Plug-in 7.7.5 7.7.5 (1680.95.13) Ryo NISHIKAWA C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
有効 Plugin Shockwave Flash 14,0,0,145 Ryo NISHIKAWA C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll
有効 Plugin Shockwave Flash 14.0.0.177 Ryo NISHIKAWA C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.115\PepperFlash\pepflashplayer.dll
有効 Plugin Silverlight Plug-In 5.1.30514.0 Ryo NISHIKAWA c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
有効 Plugin Widevine Content Decryption Module 1.4.4.600 Ryo NISHIKAWA C:\Users\蜊喀AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll

【Schedule】
有効 Task Adobe Flash Player Updater Adobe Systems Incorporated C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
有効 Task CCleanerSkipUAC Piriform Ltd "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
有効 Task GoogleUpdateTaskMachineCore Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
有効 Task GoogleUpdateTaskMachineUA Google Inc. C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
有効 Task HPCeeScheduleForRyo Hewlett-Packard C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForRyo (null)
有効 Task MaxigetUpdaterTaskMachineCore C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe /c
有効 Task MaxigetUpdaterTaskMachineUA C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe /ua /installsource scheduler
有効 Task Opera scheduled Autoupdate 1419138170 Opera Software C:\Program Files (x86)\Opera\launcher.exe --scheduledautoupdate
無効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1002
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1003
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-1028
有効 Task Optimize Start Menu Cache Files-S-1-5-21-4036144246-473319313-1314510145-500
有効 Task Synaptics TouchPad Enhancements Synaptics Incorporated "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
有効 Task Uninstaller_SkipUac_Ryo C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe /UninstallExplorer
有効 Task {59113EB0-A50C-40D7-8F04-85FB2441F573} Microsoft Corporation C:\Windows\system32\pcalua.exe -a C:\ProgramData\NexonJP\NGM\NGM.exe -c -mode:uninstall -game:16785939 -locale:JP

よろしくお願いします。
  • ニシカワ
  • 2015/03/11 (Wed) 17:39:45
返信フォームへ 
Javaの更新と削除を行いましょう
ログを確認させていただきました。
Javaは最新バージョンがリリースされておりますので、
以下URLの「Javaアンインストール・ツール」と言う文字をクリックし、
最新バージョンの確認と旧バージョンの削除を行われてください。
https://java.com/ja/download/faq/remove_olderversions.xml

両方とも完了しましたら、CCのインストール情報ログだけ再取得し、
そちらを貼り付けてご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/03/11 (Wed) 18:41:21
返信フォームへ 
CCインストール情報
宜しくお願い致します。

Adobe Flash Player 16 NPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Adobe Flash Player 16 PPAPI Adobe Systems Incorporated 2015/02/05 6.00 MB 16.0.0.305
Apple Application Support(32 ビット) Apple Inc. 2015/03/02 94.2 MB 3.1.2
Apple Application Support(64 ビット) Apple Inc. 2015/03/02 107 MB 3.1.2
Apple Mobile Device Support Apple Inc. 2015/03/02 27.9 MB 8.1.1.3
Apple Software Update Apple Inc. 2013/04/19 2.38 MB 2.1.3.127
avast! Free Antivirus AVAST Software 2014/10/07 9.0.2021
Bonjour Apple Inc. 2013/04/06 2.00 MB 3.0.0.10
CCleaner Piriform 2015/03/11 5.03
CyberLink Media Suite 10 CyberLink Corp. 2013/04/06 42.0 MB 10.0.1.1916
CyberLink PhotoDirector CyberLink Corp. 2013/04/06 167 MB 2.0.1.3109
CyberLink Power2Go 8 CyberLink Corp. 2013/04/06 263 MB 8.0.1.1924
CyberLink PowerDirector 10 CyberLink Corp. 2013/04/06 532 MB 10.0.1.2006
CyberLink PowerDVD CyberLink Corp. 2013/04/06 243 MB 10.0.6.4330
CyberLink YouCam CyberLink Corp. 2013/04/06 126 MB 4.1.1.3231
Dropbox Dropbox, Inc. 2014/10/07 2.6.24
Energy Star Hewlett-Packard 2013/04/06 3.47 MB 1.0.8
Evernote v. 4.5.7 Evernote Corp. 2013/04/06 126 MB 4.5.7.7146
Google Chrome Google Inc. 2014/12/21 40.0.2214.115
HP 3D DriveGuard Hewlett-Packard Company 2013/04/06 9.08 MB 5.1.5.1
HP Documentation Hewlett-Packard 2013/04/06 470 MB 1.2.0.0
HP ESU for Microsoft Windows 8 Hewlett-Packard Company 2013/04/06 1.71 MB 1.0.1.1
HP HD Webcam Driver SunplusIT 2014/10/07 5.65 MB 3.4.8.16
HP Hotkey Support Hewlett-Packard Company 2014/05/14 10.4 MB 5.0.21.1
HP Registration Service Hewlett-Packard 2013/04/06 75.4 MB 1.0.5976.4186
HP SoftPaq Download Manager Hewlett-Packard Company 2013/04/06 15.7 MB 3.4.6.0
HP Software Framework Hewlett-Packard Company 2013/04/06 8.03 MB 4.6.8.1
HP Software Setup Hewlett-Packard Company 2013/04/06 20.1 MB 8.5.4.1
HP Support Assistant Hewlett-Packard Company 2014/04/01 85.9 MB 7.4.45.4
HP System Default Settings Hewlett-Packard Company 2014/10/13 1.59 MB 2.0.1
HP Wireless Button Driver Hewlett-Packard Company 2015/01/03 733 KB 1.1.2.1
IDT Audio IDT 2013/04/06 1.0.6428.0
Intel(R) Management Engine Components Intel Corporation 2013/04/06 8.1.0.1281
Intel(R) Processor Graphics Intel Corporation 2014/10/06 9.17.10.3347
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed Intel Corporation 2013/04/06 3.83 MB 15.5.0.0344
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology Motorola Solutions, Inc 2013/04/06 30.6 MB 2.5.0.0248
Intel(R) Rapid Storage Technology Intel Corporation 2013/04/06 11.5.6.1002
Intel(R) SDK for OpenCL - CPU Only Runtime Package Intel Corporation 2014/10/07 2.0.0.37149
iTunes Apple Inc. 2015/03/02 234 MB 12.1.1.4
Java 8 Update 40 Oracle Corporation 2015/03/13 9.10 MB 8.0.400
JMicron Flash Media Controller Driver JMicron Technology Corp. 2014/10/07 1.0.72.4
Lhaplus 2014/10/07
Microsoft Office Home and Business 2010 Microsoft Corporation 2014/10/07 14.0.7015.1000
Microsoft Silverlight Microsoft Corporation 2014/07/24 199 MB 5.1.30514.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 Microsoft Corporation 2013/04/06 258 KB 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 2013/04/06 250 KB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 2013/04/06 3.22 MB 8.0.59193
Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Corporation 2013/04/06 6.88 MB 8.0.61000
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 2013/04/06 7.23 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 2012/08/01 13.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 2013/04/12 13.2 MB 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 2013/04/06 5.95 MB 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Corporation 2014/11/21 230 KB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 2013/04/06 10.2 MB 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 2013/04/06 10.1 MB 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 2013/04/12 10.1 MB 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 13.8 MB 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 2015/02/12 15.0 MB 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 Microsoft Corporation 2014/10/07 20.5 MB 11.0.61030.0
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 Microsoft Corporation 2014/10/07 17.3 MB 11.0.61030.0
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 Microsoft Corporation 2014/10/07 20.5 MB 12.0.21005.1
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 Microsoft Corporation 2014/10/07 17.1 MB 12.0.21005.1
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Microsoft Corporation 2015/02/12 10.0.50903
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - 日本語 Microsoft Corporation 2015/02/12 10.0.50903
Opera Stable 28.0.1750.40 Opera Software ASA 2015/03/11 28.0.1750.40
PDF Complete Corporate Edition PDF Complete, Inc 2014/10/07 4.1.8
QuickTime 7 Apple Inc. 2015/01/19 70.2 MB 7.76.80.95
Realtek Ethernet Controller All-In-One Windows Driver Realtek 2013/04/06 8.2.612.2012
Search App by Ask APN, LLC 2015/03/13 6.66 MB 12.24.1.51
Synaptics Pointing Device Driver Synaptics Incorporated 2014/10/07 46.4 MB 17.0.18.8
Update for Japanese Microsoft IME Postal Code Dictionary Microsoft Corporation 2014/10/31 7.60 MB 16.0.1171.1
Update for Japanese Microsoft IME Standard Dictionary Microsoft Corporation 2014/12/04 34.8 MB 15.0.1215
Update for Japanese Microsoft IME Standard Extended Dictionary Microsoft Corporation 2014/10/08 11.5 MB 15.0.1215
Update for Japanese Microsoft IME Trending Words Dictionary Microsoft Corporation 2014/12/04 17.0 KB 16.0.1016.1
Validity Fingerprint Sensor Driver Validity Sensors, Inc. 2013/04/06 27.8 MB 4.4.228.0
Wi-Fi WALKER WiMAX 2+ setting tool Huawei Technologies Co.,Ltd 2015/02/04 22.001.22.04.824
インテル® PROSet/Wireless ソフトウェア Intel Corporation 2014/10/07 367 MB 16.1.5
  • ニシカワ
  • 2015/03/13 (Fri) 21:29:49
返信フォームへ 
再感染しました
Javaを導入なされた際にきちんと読まれてなかったのですね。
Askツールバーと言うマルウェアが再感染しています。
お手数ですが追加でHJTのログを取得し、ご連絡をお願いいたします。
  • IVNO
  • MAIL
  • 2015/03/13 (Fri) 23:04:24
返信フォームへ 
お手数おかけして申し訳ありません
私の不注意からお手数おかけして申し訳ありません。

以下、HJTのログです。

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 23:31:25, on 2015/03/13
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Users\博\AppData\Local\AskPartnerNetwork\Toolbar\Updater\IDC\IdcLdr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\博\Desktop\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Search App by Ask BHO - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [RemoteControl10] "c:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe /start
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: OneNote 2010 画面の領域の取り込みと起動.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: Bluetoothへの送信 - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: OneNote に送る(&N) - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: OneNote に送る - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: OneNote に送る(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote リンク ノート(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra button: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Bluetoothへの送信 - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: IntelR CentrinoR Wireless BluetoothR + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update サービス (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update サービス (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: @oem29.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: インテル(R) ラピッド・ストレージ・テクノロジー (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Maxiget Update サービス (mglupdate) (mglupdate) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: Maxiget Update サービス (mglupdatem) (mglupdatem) - Unknown owner - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: Wi-Fi WALKER WiMAX 2+ setting tool - Unknown owner - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - IntelR Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13716 bytes


改めて、宜しくお願い致します。
  • ニシカワ
  • 2015/03/13 (Fri) 23:33:17
返信フォームへ 
HJTとIUで処置後にACでスキャンを
ではまずはACです。
「AdwCleaner」(通称:AC)
http://www.bleepingcomputer.com/download/adwcleaner/dl/125/
ファイル直リンクです。アクセスしてファイルを分かりやすい場所に保存しておいてください。
ソフトウェアを一度起動させることにより自動的にアップデートが始まります。
アップデートが完了しましたら今は何もせずに終了させてください。
本ソフトウェアの削除指示があった際は起動後に「アンインストール」ボタンを押せば自動で削除されます。

PCをセーフモードで起動し、HJTを起動させ、スキャンを行ってください。
スキャン結果が表示されましたら、以下の項目にチェックを入れてください。
ただし、特にHJTでの作業は一歩間違えれば簡単にPCが起動しなくなるため、
こちらが指示した以外のものは絶対にチェックを入れないでください。

O2 - BHO: Search App by Ask BHO - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O3 - Toolbar: Search App by Ask - {4F524A2D-5350-4500-76A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (file missing)
O4 - HKLM\..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
O23 - Service: Ask Update Service (APNMCP) - APN LLC. - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe

必要な項目すべてにチェックが入りましたら、Fix checkedをクリックしてください。
上記のFixが完了したら、IU起動させ、以下を削除してください。

Search App by Ask APN, LLC 2015/03/13 6.66 MB 12.24.1.51

削除ボタンを押し、削除が完了したらパワフルスキャンを行い、検出されたごみすべてにチェックを入れて削除してください。
IUでのアンインストールが完了しましたらIUを終了させ、ATFで掃除を行ってください。
Select Allにチェックを入れ、Empty Selectedをクリックします。
ATFでの掃除が完了しましたら、ACを使用してマルウェアの掃除を行いましょう。
ACを起動させ、Scanまたはスキャンをクリックします。
スキャンが終了しましたら、Cleaningまたは除去をクリックして掃除を行います。
掃除が完了すると再起動を求められますので、指示に従って通常モードで再起動を行ってください。
これでセーフモードから通常モードに移行します。
再起動前にACのログが表示された場合、分かりやすい場所に保存しておいてください。
再起動後にACのログが表示された場合も分かりやすい場所に保存してください。

その後、CCを起動させてください。
起動したら、「ツール」→「スタートアップ」→「Windows」タブを開いてください。
そこで右下の「テキストとして保存」を押すと、表示の内容がログとして保存できますので、
デスクトップ等、分かりやすい場所に最新のログのみ保存しておきましょう。
続いて「InternetExplorer」タブのログ、導入されておられるのであれば「Firefox」タブ、
同じく導入されておられるのであれば「Google Chrome」タブ、そして「スケジュールされたタスク」タブのログを取得してください。
ただし、「コンテキストメニュー」のログは取得していただく必要がございません。
CCの各ログを取得されましたら、CCは終了させて問題ありません。
ACとCCのログを返信欄に貼り付けていただき、ご報告をお願いいたします。
  • IVNO
  • MAIL
  • 2015/03/14 (Sat) 00:00:03
返信フォームへ 

返信フォーム
プレビュー (投稿前に内容を確認)
  
Template by  マシマロック